From 58d5eec5cada9bb867dd69ecde884e5451758caf Mon Sep 17 00:00:00 2001
From: Chenx221 <chenx221@yandex.com>
Date: Thu, 8 Jun 2023 15:17:24 +0800
Subject: [PATCH] =?UTF-8?q?=E5=A2=9E=E5=8A=A0Spring=20Security=E9=83=A8?=
 =?UTF-8?q?=E5=88=86=E8=BF=9B=E8=A1=8C=E9=AA=8C=E8=AF=81=20*=E8=BF=98?=
 =?UTF-8?q?=E6=B2=A1=E4=BF=AE=E5=A5=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Chenx221 <chenx221@yandex.com>
---
 .../WEB-INF/classes/applicationContext.xml    |  14 +------
 .../chenx221/controller/UserController.class  | Bin 4206 -> 3782 bytes
 .../classes/cyou/chenx221/pojo/User.class     | Bin 1310 -> 1495 bytes
 .../WEB-INF/views/login.jsp                   |   4 +-
 .../project2_war_exploded/WEB-INF/web.xml     |  10 ++++-
 .../chenx221/controller/UserController.java   |  35 ++++++++++--------
 .../main/java/cyou/chenx221/pojo/User.java    |  12 +++++-
 .../src/main/resources/applicationContext.xml |  14 +------
 project2/web/WEB-INF/views/login.jsp          |   4 +-
 project2/web/WEB-INF/web.xml                  |  10 ++++-
 10 files changed, 53 insertions(+), 50 deletions(-)

diff --git a/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/applicationContext.xml b/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/applicationContext.xml
index e411ed4..1af98d1 100644
--- a/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/applicationContext.xml
+++ b/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/applicationContext.xml
@@ -45,19 +45,7 @@
         <constructor-arg index="0" ref="sqlSessionFactory"/>
     </bean>
 
-<!--    <bean id="characterEncodingFilter" class="org.springframework.boot.web.servlet.FilterRegistrationBean">-->
-<!--        <property name="filter">-->
-<!--            <bean class="org.springframework.web.filter.CharacterEncodingFilter">-->
-<!--                <property name="encoding" value="UTF-8"/>-->
-<!--                <property name="forceEncoding" value="true"/>-->
-<!--            </bean>-->
-<!--        </property>-->
-<!--        <property name="urlPatterns">-->
-<!--            <list>-->
-<!--                <value>/*</value>-->
-<!--            </list>-->
-<!--        </property>-->
-<!--    </bean>-->
+    <import resource="classpath:spring-security.xml"/>
 
 </beans>
                                                                                                                                         
\ No newline at end of file
diff --git a/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/cyou/chenx221/controller/UserController.class b/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/cyou/chenx221/controller/UserController.class
index 15d763082f650ae0dd2f27a483c229ac26409407..63cbc8d59fcb98159f0510bf7c07ec92826af2c4 100644
GIT binary patch
delta 1489
zcmZ8hTT@e46#jNjPWH*k;bH(W<su4H0>J}lqJRn%MX98vK)6Vyrtug+NYWExm9|EE
z0c)*FcQ2McICXsRr5##3Fz8GlI-Pdf2WL9dKhOv5OlNv|>Qkq7oj}veO!i*iTIXA9
zuf5jV`K98kGWFX(?|cqmFFsgMbzOnNAWy}k6EOuUgA$2P8(n66T7kwOnMTxwT;y@&
zYuEs{XtbqrR1~6!W21&*Y!ctGK*1vnnqiu8GiW4};i#dYRQRMojuYkB%u%6X3$`wF
z9d%Wqn&VLo+fcLc@rhC^QmuwM_!t~hMl3orPKVZbyA^B~XC;40AsRF^qKQ67#=~aE
z41>L<+uNyNr?@9AN*n=E%qkQ=c59H)EZW#6I<*yhIQDAThc=P2H>xW9=+N*OI>kq<
zcnd>ejkjkqd@8I@g=0~@f5x1MMO)oemIE5Pa8NASheF+Woa3;D9yBu)WY`mNy_cvn
z<Y0uS8F<3dreYjVFce45#8Y}?+=!iSYHHLI@yWOzN*bn$AbPFro?_T0mK@cZchH3@
z^lKPENF?O#4MTKm>Vbk0hTLQ-5}`6?OF2r#eQ^8M{kcmIE?m8T@w$Se;-372C~#~P
z!%C^xtmMlMo!o_A84$lJw?&#)3x(H7s%Z!>9~3uv8GA*1!Rr*RCnut@R6@)v<6_mB
z%)PAQ3a)Z2SoeNQw5VUQx5Y!%Yk!ZST3lC)Ma;!>s(Rw_lc@y9`wZpl)`E07Y*aBu
zJ9U@j7-<fY&ybWz${Fn#X*y|)q+GiK_6Y$S!n9jt&{#c7yS7F^1jk9EK}099juEaW
z&EiRJzC<GHnkJ>{U%t}1ua!m_c^E`JF$$JM6yu|?8JNJNwVkAoQ<#R`3UB+Kq(&zu
zJ$AR#?OH{Sgdt!3G71*qCY#4yvSy>>Yd=F--6|?=Xpueb^4DyKZyDZv<wIy0P;qnJ
zr9SH-1sqa<O94d+IE$PX>jtj)ik!>P#eB}Sw8y<8%e@Q#h;IeETAZJvrOrc~_B+@Q
zEaT8!1V`2^D|oU+wi5BktLU>KllI_R48p_iBiVSF?4Qo6R2L~z_sggxTu;~5)ARxx
zP(g335<96+e%g1@DC|Zbni0Yt4AWo5D7~aHv|$qMFwuc?^pxhPK{qJ7TR4Cp$>S#+
z#LqZ{--!1+4l@}&Yy*O<5WTFNW?x4i+lPMEjR6)yh=no8jw3z75;&6S;w<H3;w)l_
zL!~_5K?2XgiD72hlQb=(%!wI79AnIZ6d{E|ci|MCC!W>mwdt|YX`Hd9hR`e_8dO3r
z5Rx+JMZ839*V+DhIxtO>dX5UxioD7{u$3d2`w%Xu9OWE^fB$mHF22btNuMXGonpV7
z8TkKB+N=McwAYASWwGaI&0A?@;p{)~LMG(vwA*ko`;Oiq{SqyOh;PyoR1(0Y5_}ie
Hun5mz?e-9d

delta 1858
zcmaJ>S#VQT82(OjlY4V>TOe&Hp$mbsbV&(qAV3Q(YfGhtvb0dDNJuYfp-tkwEt^YN
zq*SCpJ&3fT?8=K$#c2f`@PWY@#|Iyn@lD6kw!n<blTRxCH!0B>9cS)6|M#Espa1;J
zch3FnpWX78f8M$SU@_kBmA&I_kYE!bE3iXhn8lx1X7LNmXHUgA5#tq1fP;U_c9=z^
z^IEgJF%1(HSdhWs%&XZM*d6e;1;Qckh7PSY94gCikm15)5t$0Ikj;=0+!yKe23yqd
z-jb4HZ#1$q;;q+JjlmvLJL&?uz9*tJGo<J7wSv==hA9f%#>RA7UKtK*`=T9c^HVz+
z(~v7-x`G*)+56aEl*b^ptGXTtsS*kpl+nK1kNUbsx=#%sJ8y>vMIvS^@L~=_R`2Io
zy+<2j5=t1-G_|=^Q-d9)-sXVbvON;enkCF752~g`wA!aW{S0$PPhT799vVK?Gtzx#
z_<Gmqg@ZqS+B5RO<<W~D{_@%Jhu4Q59qk!8Gw|>ZA3k#RhXaQsEMTy-MMAA%38f5D
zFw(A8YLRvcizr^RriLVxb070(83`>>uoTM}tZiyI)X~CV&daZsu!3(h&C8sIN(EI|
zMa#jKfVQ-QLCCAlUoPPpK49ukv7rXFBGxEai#pzKE|wkC-1Q1JU?WcvHrX4nNyKIa
zjmY2;!JT6Cr^)ExvqrbSw$4!U8|+BMRt3*v8-Fa!p0k}opy(w~UsCnXV33NDEXWQj
z(a4Q!!(GP{MV8RQS6RMi4diPkm&6i&PAudP#2V2Q-NTSw!|TkMJX><JmwCBV$QJb8
zb@B?U$0~aD)=-#7tsA*6?cn#UH=MGjMw5(4tanEFH&SP6zl^tWPQ*J#V(;=TwtMUX
zpCacAml<a8yS5B|LKah|*F++_I-?@4GUSZSrcu95R1!ubQJiEeX;zXuNt#Jo;@U3K
zyreObmVzO$j|iC1Mx$X2x(Mww8V<++VMItWEI<?jjLlz>Gb_oef=?h8-b9KCrNV8b
z#Tq?BaF$wJ!hKA234@sAvJ4_;5L5dwp~x}Ik$)3~W^8g44-`3kj(KC+`~mW1j-Q_c
zk#Gi`JqZ&r8HLD%pRU(J<X{D+#N#SYoIMs7MS&Nf#bb?CK__U`pb8!6B&Q0>up4_Q
z@QEnKUhJcU_S3o@><=sy;S!OC7imHu4==?FmQCmtauRC-({TU?n_yCL2#1Z~RU9E>
zmr=|v`j6^#coN2RT4U(OYl%Xc9*|UMN_Pp4g^sdBzMdi~NIx7j=W{Gh*5Dttw74u^
zFrQ}-72~CgP~yOSWo*at<PNjnYW9m}zhw5?oHnwOD=y)r$7vhHO8%YwY|Q7VP8w5t
z65X+VjMarMvdOuHb-*C%Z^PA?m>I&BQi~CY%W@OXnGg><knlk`=ungX;?akaDkYxi
z;0fds&ZD#oVo0Y3y6I`kCBD(agt;g|C45*<s2=mNnMl<{&E1Mp;%FK5ZV?rHF_pF)
zmr#LgSb|Y{G9F_Ye!_D6N_M}Yl37s2CeTZfj@2v&HOz}zR*p5S8f#fS>R15lSTkZ9
zS(J`3xV)d@(WtA(@H%7!@FtF<2R3YG3Qpi8F{+8#aEg$Kt;~vELK3;Ij8n#DwD2k4
z2#xWL&=}nay+QuXaXW)}0=#TRQJi@RzLjBI?(djJgiC!w<da26qM;@}56$zbshP3=
zV<P`ACQdha`)?-df6tz#^aV=TxZ-D$FTz`-pQT?S!#?`Y<05HxncyW{!FzE11sf%M
A>;M1&

diff --git a/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/cyou/chenx221/pojo/User.class b/project2/out/artifacts/project2_war_exploded/WEB-INF/classes/cyou/chenx221/pojo/User.class
index c324c8a39fa2761caabf81a7de62e5c884a90605..a938941a2419c3e3feb3195bc4f93d995d166fc7 100644
GIT binary patch
literal 1495
zcmZ`&+iuf96dXIZrgfVpaZ*YzG(g)Vy+kd72MT>bLaG!2qELxPH?>knsa-h<m%jpu
z3W*0kfR94VSv!fFxG%fj-8nO}bJl<V{r&^sC3a__BauPUKniIMiyiB;)#zGoyYcqC
zW4HPm(k~p>=^txIRBLBh%pjY=tbsWg8kSn$yg{RNX}ez!4-XpGUdL;E?AgACl<#%z
zo`ynm%y`=O9k+cX918|=Sk$097aEEY%!%8#+qSPj1p`G<nHiAMwXSTbEEy=P&1<XI
z`{MbmPrmXlYz?`l<JxZqSLe3>!8-49r_l6TR`<;E9a)E)$^NB7W6RAuydP1pZTH^?
z{>^GF;x4=a5xo(jRGkLY&NMua?hmgu4V~VR;_Ya0s2Yz<(d!9ADBUtT)MF#)RL;v$
z#^JF@&5=NQCINFrcx1)1ccYx;Y`mI1^#*>+e(gxoS*h8VR-?iu>3m#Cj_fhNbZMiS
z**P`y@o=64?IF!^iK{1^HO{H}FK9m$>>fvXpfV;2U*?w)fN&oxTxnRv8b={$a1IE5
zBJ-UaI)p&@frZ%Obvy`*kBJtcbbaRrnMwHqeHIl%IY5Q-!Y+3a;S@GPt}Zc2a+z`y
z;hV4T-XLG!yMZ}oF0%qC5m`o-7g(TM(U42lgZhz*sgjg?m?}$gYRZ3rgi@}A%Acs5
z;8|{{oEPPYXh9LLa9pM68b#NY;6_k363i(X5zHwWodOT>D3pmNJwKUrMG;Q6=`l9L
z;#*12kMjr`y~$Lz6vK4V@|q;+t=N|5Cymr%jcmuaJU?k<k4E<IFe1-cj8tQdn3F~h
dVvW?|jYOIiB=VF-p50+YUVs>>vr#&B{sW+H*3JL`

literal 1310
zcmaJ<+iuf96r9bqNu8#-meN97TF9jZi}FUHFGxt0DnKek;?YU1)KO|zPQvA{Kq5lo
zfe+xL5OdZ}VnTu}?Rt0T%*@W&U%!9+1n?ZSEMkbKkuZ=%N@2ZceXz{F<#x^2?VjBk
zDx{t{t}{GUh}Rpf3|5dyBWqw4hQdbYvo|t3SGN1<`1rAT<MllA-N5!0V$P*P>3l|a
z<__(y?Vkw4nt?pl6;?*Xy4JO=P>et?hQ8x=HL_@+q>(q)VDQoNNt$@!U9up5?zr}=
z(RJJQ-&*ayrtmsezh(K3ti#R3@X8q|Y@RQ1dZO^O9?_oIjBJH={@rP`6l&4p|00uJ
zdw53wm3kvWHPKT@4ubP)lyPz_QmZ78aD%|gf6;`>1d(M1szkX$%!KOAG*PLUt+E&1
z$nV%M9mzB!T#uxS*kj{jd^B;6Y(D>D(nUS9N1QX@Es)|^=IRM&#W~sh4)s;TDjem(
zfm8{?tNb$p5H@g&D<RnAC<J{X6P(LJ&^#O?-8>p2*L*leVa8Ww1!yQirVMge<5!|F
z;cf=?Avc+{aWPfa*2PI#9vCkr%C|%1_f(GaEI(1siE>1=sEG?4ixe$UvaAJngR-e$
zUdxDJUdzNNu!ZeV#^f9%^bP4R1jQf;Nq`{5qIB-yZdiOuwD?cyWM+8;`EKzx+nS*o
zpr)2mVFn62*bTX&Mso8;b`~1h!@WgDa`Q&^Y2;vu5qUk5!2Uubg?S^jg+>k*8;LY4
UNaT=4j+Pja7a&IN>mEG#1Kx_o<NyEw

diff --git a/project2/out/artifacts/project2_war_exploded/WEB-INF/views/login.jsp b/project2/out/artifacts/project2_war_exploded/WEB-INF/views/login.jsp
index 8dd3c4c..6a94812 100644
--- a/project2/out/artifacts/project2_war_exploded/WEB-INF/views/login.jsp
+++ b/project2/out/artifacts/project2_war_exploded/WEB-INF/views/login.jsp
@@ -90,7 +90,7 @@
                         <div class="tab-content">
                             <div class="tab-pane fade show active" id="pills-login" role="tabpanel"
                                  aria-labelledby="tab-login">
-                                <form action="signin" method="POST">
+                                <form action="/login" method="POST">
                                     <h1 class="text-center mb-4" style="font-family: 'Noto Sans SC Light',serif">
                                         用户登录</h1>
                                     <div class="form-outline mb-4">
@@ -115,8 +115,6 @@
                                         </div>
                                     </div>
                                     <button type="submit" class="btn btn-primary btn-block mb-4">登录</button>
-                                    <%-- 显示错误信息 --%>
-                                    <!-- Register buttons -->
                                     <div class="text-center" style="margin-bottom: 25px;">
                                         <p>还没有账号? <a href="#!">注册一个</a></p>
                                     </div>
diff --git a/project2/out/artifacts/project2_war_exploded/WEB-INF/web.xml b/project2/out/artifacts/project2_war_exploded/WEB-INF/web.xml
index 34748a5..9d7d1ee 100644
--- a/project2/out/artifacts/project2_war_exploded/WEB-INF/web.xml
+++ b/project2/out/artifacts/project2_war_exploded/WEB-INF/web.xml
@@ -28,9 +28,17 @@
             <param-value>true</param-value>
         </init-param>
     </filter>
-
     <filter-mapping>
         <filter-name>encodingFilter</filter-name>
         <url-pattern>/*</url-pattern>
     </filter-mapping>
+    <filter>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
+    </filter>
+    <filter-mapping>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <url-pattern>/*</url-pattern>
+    </filter-mapping>
+
 </web-app>
\ No newline at end of file
diff --git a/project2/src/main/java/cyou/chenx221/controller/UserController.java b/project2/src/main/java/cyou/chenx221/controller/UserController.java
index a4102e6..0f0bee6 100644
--- a/project2/src/main/java/cyou/chenx221/controller/UserController.java
+++ b/project2/src/main/java/cyou/chenx221/controller/UserController.java
@@ -18,26 +18,31 @@ public class UserController {
     @Autowired
     private UserMapper userMapper;
 
-    @RequestMapping(path = "/signin", method = {RequestMethod.GET, RequestMethod.POST}) //登录
-    public String login(@RequestParam("username") String username, @RequestParam("password") String password, Model model) throws NoSuchAlgorithmException {
-        User user = userMapper.getUserByUsername(username);
-        Password pw = new Password(password);
-//        System.out.println("username:" + username + " try to login with password: " + password + " encrypted-password:"+pw.getEncryptedPassword());
-        if (user != null && user.getPassword().equals(pw.getEncryptedPassword())) {
-            model.addAttribute("message", "登陆成功");
-            return "redirect:/dashboard"; // 重定向到 dashboard 页面
-        } else {
-            model.addAttribute("errorMessage", "用户名或密码不正确，请重新输入。");
-            return "login";
-        }
+    //    @RequestMapping(path = "/signin", method = {RequestMethod.GET, RequestMethod.POST}) //登录
+//    public String login(@RequestParam("username") String username, @RequestParam("password") String password, Model model) throws NoSuchAlgorithmException {
+//        User user = userMapper.getUserByUsername(username);
+//        Password pw = new Password(password);
+////        System.out.println("username:" + username + " try to login with password: " + password + " encrypted-password:"+pw.getEncryptedPassword());
+//        if (user != null && user.getPassword().equals(pw.getEncryptedPassword())) {
+//            model.addAttribute("message", "登陆成功");
+//            return "redirect:/dashboard"; // 重定向到 dashboard 页面
+//        } else {
+//            model.addAttribute("errorMessage", "用户名或密码不正确，请重新输入。");
+//            return "login";
+//        }
+//    }
+    @RequestMapping(path = "/login", method = {RequestMethod.GET, RequestMethod.POST}) //登录
+    public String login() {
+        return "login";
     }
 
+
     @RequestMapping(path = "/signup", method = {RequestMethod.GET, RequestMethod.POST}) //注册
     public String register(@RequestParam("username") String username, @RequestParam("password") String password, @RequestParam("re-password") String repassword, Model model) throws NoSuchAlgorithmException {
         //debug start
 //        System.out.println("username:" + username);
         //debug end
-        model.addAttribute("comeFrom","reg");
+        model.addAttribute("comeFrom", "reg");
         //检查两次输入的密码是否相同
         if (!password.equals(repassword)) {
             model.addAttribute("errorMessage", "两次输入的密码不一致，请重新输入。");
@@ -72,11 +77,11 @@ public class UserController {
                     return "login";
                 }
                 // start to register
-                Password pw=new Password(password);
+                Password pw = new Password(password);
                 System.out.println("username:" + username + " password:" + pw.getEncryptedPassword()); //debug
                 user = new User(username, pw.getEncryptedPassword());
                 userMapper.insertUser(user);
-                model.addAttribute("comeFrom","log");
+                model.addAttribute("comeFrom", "log");
                 model.addAttribute("successMessage", "注册成功");
                 return "login";
             }
diff --git a/project2/src/main/java/cyou/chenx221/pojo/User.java b/project2/src/main/java/cyou/chenx221/pojo/User.java
index 0e84ede..5eb6e25 100644
--- a/project2/src/main/java/cyou/chenx221/pojo/User.java
+++ b/project2/src/main/java/cyou/chenx221/pojo/User.java
@@ -1,13 +1,23 @@
 package cyou.chenx221.pojo;
 
+import java.util.List;
+
 public class User {
     private Integer id;
     private String username;
     private String password;
-
+    private String roles;
     public User() {
     }
 
+    public String getRoles() {
+        return roles;
+    }
+
+    public void setRoles(String roles) {
+        this.roles = roles;
+    }
+
     public User(Integer id, String username, String password) {
         this.id = id;
         this.username = username;
diff --git a/project2/src/main/resources/applicationContext.xml b/project2/src/main/resources/applicationContext.xml
index e411ed4..1af98d1 100644
--- a/project2/src/main/resources/applicationContext.xml
+++ b/project2/src/main/resources/applicationContext.xml
@@ -45,19 +45,7 @@
         <constructor-arg index="0" ref="sqlSessionFactory"/>
     </bean>
 
-<!--    <bean id="characterEncodingFilter" class="org.springframework.boot.web.servlet.FilterRegistrationBean">-->
-<!--        <property name="filter">-->
-<!--            <bean class="org.springframework.web.filter.CharacterEncodingFilter">-->
-<!--                <property name="encoding" value="UTF-8"/>-->
-<!--                <property name="forceEncoding" value="true"/>-->
-<!--            </bean>-->
-<!--        </property>-->
-<!--        <property name="urlPatterns">-->
-<!--            <list>-->
-<!--                <value>/*</value>-->
-<!--            </list>-->
-<!--        </property>-->
-<!--    </bean>-->
+    <import resource="classpath:spring-security.xml"/>
 
 </beans>
                                                                                                                                         
\ No newline at end of file
diff --git a/project2/web/WEB-INF/views/login.jsp b/project2/web/WEB-INF/views/login.jsp
index 8dd3c4c..6a94812 100644
--- a/project2/web/WEB-INF/views/login.jsp
+++ b/project2/web/WEB-INF/views/login.jsp
@@ -90,7 +90,7 @@
                         <div class="tab-content">
                             <div class="tab-pane fade show active" id="pills-login" role="tabpanel"
                                  aria-labelledby="tab-login">
-                                <form action="signin" method="POST">
+                                <form action="/login" method="POST">
                                     <h1 class="text-center mb-4" style="font-family: 'Noto Sans SC Light',serif">
                                         用户登录</h1>
                                     <div class="form-outline mb-4">
@@ -115,8 +115,6 @@
                                         </div>
                                     </div>
                                     <button type="submit" class="btn btn-primary btn-block mb-4">登录</button>
-                                    <%-- 显示错误信息 --%>
-                                    <!-- Register buttons -->
                                     <div class="text-center" style="margin-bottom: 25px;">
                                         <p>还没有账号? <a href="#!">注册一个</a></p>
                                     </div>
diff --git a/project2/web/WEB-INF/web.xml b/project2/web/WEB-INF/web.xml
index 34748a5..9d7d1ee 100644
--- a/project2/web/WEB-INF/web.xml
+++ b/project2/web/WEB-INF/web.xml
@@ -28,9 +28,17 @@
             <param-value>true</param-value>
         </init-param>
     </filter>
-
     <filter-mapping>
         <filter-name>encodingFilter</filter-name>
         <url-pattern>/*</url-pattern>
     </filter-mapping>
+    <filter>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
+    </filter>
+    <filter-mapping>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <url-pattern>/*</url-pattern>
+    </filter-mapping>
+
 </web-app>
\ No newline at end of file