spring security 5.x兼容多种密码加密方式 -欧洲杯足彩官网

wiselyman

浏览: 2077003 次
性别:
来自: 合肥

博主相关

博客

微博

相册

博客专栏

: 点睛spring4.1
浏览量：80745

: 点睛spring mvc4...
浏览量：129940

文章分类

社区版块

( 11)
( 19)
( 0)

存档分类

2019-10 ( 4)
2018-03 ( 5)
2018-02 ( 6)

spring security 5.x兼容多种密码加密方式

博客分类：

spring-boot
spring security

1 spring security passwordencoder

spring security 5不需要配置密码的加密方式，而是用户密码加前缀的方式表明加密方式，如：

{md5}88e2d8cd1e92fd5544c8621508cd706b代表使用的是md5加密方式；
{bcrypt}$2a$10$ezegvvv2zxr/vgivfzqzs.jlv878apbgrt9mapk1wrg0ovsf4yui6代表使用的是bcrypt加密方式。

spring security官方推荐使用更加安全的bcrypt加密方式。

这样可以在同一系统中支持多种加密方式，迁移用户比较省事。spring security 5支持的加密方式在passwordencoderfactories中定义：

public class passwordencoderfactories {
    public static passwordencoder createdelegatingpasswordencoder() {
        string encodingid = "bcrypt";
        map encoders = new hashmap();
        encoders.put(encodingid, new bcryptpasswordencoder());
        encoders.put("ldap", new ldapshapasswordencoder());
        encoders.put("md4", new md4passwordencoder());
        encoders.put("md5", new messagedigestpasswordencoder("md5"));
        encoders.put("noop", nooppasswordencoder.getinstance());
        encoders.put("pbkdf2", new pbkdf2passwordencoder());
        encoders.put("scrypt", new scryptpasswordencoder());
        encoders.put("sha-1", new messagedigestpasswordencoder("sha-1"));
        encoders.put("sha-256", new messagedigestpasswordencoder("sha-256"));
        encoders.put("sha256", new standardpasswordencoder());
        return new delegatingpasswordencoder(encodingid, encoders);
    }
    private passwordencoderfactories() {
    }
}

2 测试

2.1 pom.xml



    4.0.0
    com.hfcsbc
    security
    0.0.1-snapshot
    jar
    security
    demo project for spring boot
    
        org.springframework.boot
        spring-boot-starter-parent
        2.0.0.m7
         
    
    
        utf-8
        utf-8
        1.8
    
    
        
            org.springframework.boot
            spring-boot-starter-security
        
        
            org.springframework.boot
            spring-boot-starter-test
            test
        
        
            org.springframework.security
            spring-security-test
            test
        
        
            org.projectlombok
            lombok
        
    
    
        
            
                org.springframework.boot
                spring-boot-maven-plugin
            
        
    
    
        
            spring-snapshots
            spring snapshots
            https://repo.spring.io/snapshot
            
                true
            
        
        
            spring-milestones
            spring milestones
            https://repo.spring.io/milestone
            
                false
            
        
    
    
        
            spring-snapshots
            spring snapshots
            https://repo.spring.io/snapshot
            
                true
            
        
        
            spring-milestones
            spring milestones
            https://repo.spring.io/milestone
            
                false

2.2 测试

spring security 5.x默认使用bcrypt加密

@slf4j
public class domainuserdetailsservice {
    public static void main(string[] args){
        passwordencoder passwordencoder = passwordencoderfactories.createdelegatingpasswordencoder();
        string encode = passwordencoder.encode("password");
        log.info("加密后的密码:"   encode);
        log.info("bcrypt密码对比:"   passwordencoder.matches("password", encode));
        string md5password = "{md5}88e2d8cd1e92fd5544c8621508cd706b";//md5加密前的密码为:password
        log.info("md5密码对比:"   passwordencoder.matches("password", encode));
    }
}

源码地址：http://www.wisely.top/2018/01/27/spring-security-5x-jian-rong-duo-zhong-mi-ma-jia-m/

0
顶

1
踩

分享到：

基于spring batch向elasticsearch批量导入 ... |

2018-02-02 10:23
浏览 14596
评论(0)
分类:企业架构

发表评论

您还没有登录,请您登录后再发表评论