com.cory.web.security

类 AuthenticationFilter

java.lang.Object

org.apache.shiro.web.servlet.ServletContextSupport

org.apache.shiro.web.servlet.AbstractFilter

org.apache.shiro.web.servlet.NameableFilter

org.apache.shiro.web.servlet.OncePerRequestFilter

org.apache.shiro.web.servlet.AdviceFilter

org.apache.shiro.web.filter.PathMatchingFilter

org.apache.shiro.web.filter.AccessControlFilter

org.apache.shiro.web.filter.authc.AuthenticationFilter

org.apache.shiro.web.filter.authc.AuthenticatingFilter

org.apache.shiro.web.filter.authc.FormAuthenticationFilter

com.cory.web.security.AuthenticationFilter

所有已实现的接口:

javax.servlet.Filter, org.apache.shiro.util.Nameable, org.apache.shiro.web.filter.PathConfigProcessor

public class AuthenticationFilter
extends org.apache.shiro.web.filter.authc.FormAuthenticationFilter

AuthenticationFilter自定义登录认证filter

字段概要

字段

限定符和类型	字段和说明
static String	COOKIE_ERROR_REMAINING
static int	ERROR_INTERVAL 错误存在最长时间：5分钟
static int	MAX_ERROR_TIMES 允许最大重试次数：3次

从类继承的字段 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

DEFAULT_ERROR_KEY_ATTRIBUTE_NAME, DEFAULT_PASSWORD_PARAM, DEFAULT_REMEMBER_ME_PARAM, DEFAULT_USERNAME_PARAM

从类继承的字段 org.apache.shiro.web.filter.authc.AuthenticatingFilter

PERMISSIVE

从类继承的字段 org.apache.shiro.web.filter.authc.AuthenticationFilter

DEFAULT_SUCCESS_URL

从类继承的字段 org.apache.shiro.web.filter.AccessControlFilter

DEFAULT_LOGIN_URL, GET_METHOD, POST_METHOD

从类继承的字段 org.apache.shiro.web.filter.PathMatchingFilter

appliedPaths, pathMatcher

从类继承的字段 org.apache.shiro.web.servlet.OncePerRequestFilter

ALREADY_FILTERED_SUFFIX

从类继承的字段 org.apache.shiro.web.servlet.AbstractFilter

filterConfig

构造器概要

构造器

构造器和说明
AuthenticationFilter()

方法概要

限定符和类型	方法和说明
protected boolean	executeLogin(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
String	getLoginHandleUrl()
String	getSuccessUrl()
void	init()
protected boolean	isLoginRequest(javax.servlet.ServletRequest req, javax.servlet.ServletResponse resp)
protected void	issueSuccessRedirect(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onAccessDenied(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onLoginFailure(org.apache.shiro.authc.AuthenticationToken token, org.apache.shiro.authc.AuthenticationException e, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onLoginSuccess(org.apache.shiro.authc.AuthenticationToken token, org.apache.shiro.subject.Subject subject, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response) 登录成功
boolean	onPreHandle(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Object mappedValue)
void	processLogin(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.apache.shiro.authc.AuthenticationToken token) 登录处理，这里是公用的，因为还有一个ajaxLogin
void	setLoginHandleUrl(String loginHandleUrl)

从类继承的方法 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

createToken, getFailureKeyAttribute, getPassword, getPasswordParam, getRememberMeParam, getUsername, getUsernameParam, isLoginSubmission, isRememberMe, setFailureAttribute, setFailureKeyAttribute, setLoginUrl, setPasswordParam, setRememberMeParam, setUsernameParam

从类继承的方法 org.apache.shiro.web.filter.authc.AuthenticatingFilter

cleanup, createToken, createToken, getHost, isAccessAllowed, isPermissive

从类继承的方法 org.apache.shiro.web.filter.authc.AuthenticationFilter

setSuccessUrl

从类继承的方法 org.apache.shiro.web.filter.AccessControlFilter

getLoginUrl, getSubject, onAccessDenied, redirectToLogin, saveRequest, saveRequestAndRedirectToLogin

从类继承的方法 org.apache.shiro.web.filter.PathMatchingFilter

getPathWithinApplication, isEnabled, pathsMatch, pathsMatch, preHandle, processPathConfig

从类继承的方法 org.apache.shiro.web.servlet.AdviceFilter

afterCompletion, doFilterInternal, executeChain, postHandle

从类继承的方法 org.apache.shiro.web.servlet.OncePerRequestFilter

doFilter, getAlreadyFilteredAttributeName, isEnabled, isEnabled, setEnabled, shouldNotFilter

从类继承的方法 org.apache.shiro.web.servlet.NameableFilter

getName, setName, toStringBuilder

从类继承的方法 org.apache.shiro.web.servlet.AbstractFilter

destroy, getFilterConfig, getInitParam, init, onFilterConfigSet, setFilterConfig

从类继承的方法 org.apache.shiro.web.servlet.ServletContextSupport

getContextAttribute, getContextInitParam, getServletContext, removeContextAttribute, setContextAttribute, setServletContext, toString

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

字段详细资料

COOKIE_ERROR_REMAINING

public static final String COOKIE_ERROR_REMAINING

另请参阅:

常量字段值

MAX_ERROR_TIMES

public static final int MAX_ERROR_TIMES

允许最大重试次数：3次

另请参阅:

常量字段值

ERROR_INTERVAL

public static final int ERROR_INTERVAL

错误存在最长时间：5分钟

另请参阅:

常量字段值

构造器详细资料

AuthenticationFilter

public AuthenticationFilter()

方法详细资料

processLogin

public void processLogin(javax.servlet.http.HttpServletRequest request,
                         javax.servlet.http.HttpServletResponse response,
                         org.apache.shiro.authc.AuthenticationToken token)
                  throws Exception

登录处理，这里是公用的，因为还有一个ajaxLogin

参数:

request -

response -

token -

抛出:

Exception

executeLogin

protected boolean executeLogin(javax.servlet.ServletRequest request,
                               javax.servlet.ServletResponse response)
                        throws Exception

覆盖:

executeLogin 在类中 org.apache.shiro.web.filter.authc.AuthenticatingFilter

抛出:

Exception

onPreHandle

public boolean onPreHandle(javax.servlet.ServletRequest request,
                           javax.servlet.ServletResponse response,
                           Object mappedValue)
                    throws Exception

覆盖:

onPreHandle 在类中 org.apache.shiro.web.filter.AccessControlFilter

抛出:

Exception

onAccessDenied

protected boolean onAccessDenied(javax.servlet.ServletRequest request,
                                 javax.servlet.ServletResponse response)
                          throws Exception

覆盖:

onAccessDenied 在类中 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

抛出:

Exception

issueSuccessRedirect

protected void issueSuccessRedirect(javax.servlet.ServletRequest request,
                                    javax.servlet.ServletResponse response)
                             throws Exception

覆盖:

issueSuccessRedirect 在类中 org.apache.shiro.web.filter.authc.AuthenticationFilter

抛出:

Exception

isLoginRequest

protected boolean isLoginRequest(javax.servlet.ServletRequest req,
                                 javax.servlet.ServletResponse resp)

覆盖:

isLoginRequest 在类中 org.apache.shiro.web.filter.AccessControlFilter

onLoginSuccess

protected boolean onLoginSuccess(org.apache.shiro.authc.AuthenticationToken token,
                                 org.apache.shiro.subject.Subject subject,
                                 javax.servlet.ServletRequest request,
                                 javax.servlet.ServletResponse response)
                          throws Exception

登录成功

覆盖:

onLoginSuccess 在类中 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

抛出:

Exception

onLoginFailure

protected boolean onLoginFailure(org.apache.shiro.authc.AuthenticationToken token,
                                 org.apache.shiro.authc.AuthenticationException e,
                                 javax.servlet.ServletRequest request,
                                 javax.servlet.ServletResponse response)

覆盖:

onLoginFailure 在类中 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

getLoginHandleUrl

public String getLoginHandleUrl()

setLoginHandleUrl

public void setLoginHandleUrl(String loginHandleUrl)

getSuccessUrl

public String getSuccessUrl()

覆盖:

getSuccessUrl 在类中 org.apache.shiro.web.filter.authc.AuthenticationFilter

init

@PostConstruct
public void init()