java source code of ShiroConfig

RuoYi-master
- sql
  - quartz.sql
  - ruoyi.pdm
  - ry_v3.4.0.sql
- img
  - index.jpg
  - oper_log.jpg
  - user_role.jpg
  - role_list.jpg
  - role_update.jpg
  - server_monitoring.jpg
  - user_update.jpg
  - gen_code.jpg
  - role_data.jpg
  - function_update.jpg
  - login_log.jpg
  - user.jpg
  - user_list.jpg
  - function.jpg
- ruoyi-quartz
  - src
    - main
      - resources
        templates
        monitor
        job
        job.html
        detail.html
        edit.html
        add.html
        jobLog.html
        mapper
        quartz
        SysJobMapper.xml
        SysJobLogMapper.xml
      - java
        com
        ruoyi
        quartz
        task
        RyTask.java
        util
        CronUtils.java
        AbstractQuartzJob.java
        SpringContextUtil.java
        ScheduleUtils.java
        QuartzJobExecution.java
        QuartzDisallowConcurrentExecution.java
        JobInvokeUtil.java
        config
        ScheduleConfig.java
        service
        impl
        SysJobServiceImpl.java
        SysJobLogServiceImpl.java
        ISysJobLogService.java
        ISysJobService.java
        domain
        SysJob.java
        SysJobLog.java
        mapper
        SysJobMapper.java
        SysJobLogMapper.java
  - pom.xml
- ruoyi-framework
  - src
    - main
      - java
        com
        ruoyi
        framework
        web
        page
        TableSupport.java
        base
        BaseController.java
        service
        ConfigService.java
        DictService.java
        PermissionService.java
        exception
        GlobalExceptionHandler.java
        domain
        Server.java
        server
        Jvm.java
        Mem.java
        Cpu.java
        Sys.java
        SysFile.java
        util
        ShiroUtils.java
        LogUtils.java
        config
        KaptchaTextCreator.java
        ApplicationConfig.java
        ResourcesConfig.java
        properties
        DruidProperties.java
        GenConfig.java
        FilterConfig.java
        DruidConfig.java
        CaptchaConfig.java
        ShiroConfig.java
        I18nConfig.java
        ServerConfig.java
        service
        SysShiroService.java
        shiro
        web
        filter
        kickout
        KickoutSessionFilter.java
        captcha
        CaptchaValidateFilter.java
        sync
        SyncOnlineSessionFilter.java
        online
        OnlineSessionFilter.java
        LogoutFilter.java
        session
        OnlineWebSessionManager.java
        SpringSessionValidationScheduler.java
        service
        SysLoginService.java
        SysPasswordService.java
        realm
        UserRealm.java
        session
        OnlineSessionFactory.java
        OnlineSession.java
        OnlineSessionDAO.java
        datasource
        DynamicDataSourceContextHolder.java
        DynamicDataSource.java
        manager
        AsyncManager.java
        factory
        AsyncFactory.java
        aspectj
        DataSourceAspect.java
        RestControllerAspect.java
        DataScopeAspect.java
        LogAspect.java
  - pom.xml
- pom.xml
- LICENSE
- .gitattributes
- ruoyi-common
  - src
    - main
      - java
        com
        ruoyi
        common
        page
        PageDomain.java
        TableDataInfo.java
        utils
        sql
        SqlUtil.java
        security
        Md5Utils.java
        PermissionUtils.java
        YamlUtil.java
        ExcelUtil.java
        AddressUtils.java
        Threads.java
        SpringUtils.java
        IpUtils.java
        file
        FileUploadUtils.java
        FileUtils.java
        MimeTypeUtils.java
        DateUtil.java
        ServletUtils.java
        ExceptionUtil.java
        MessageUtils.java
        xss
        XssHttpServletRequestWrapper.java
        XssFilter.java
        enums
        OnlineStatus.java
        UserStatus.java
        BusinessStatus.java
        OperatorType.java
        BusinessType.java
        DataSourceType.java
        constant
        PermissionConstants.java
        ShiroConstants.java
        UserConstants.java
        Constants.java
        ScheduleConstants.java
        base
        Ztree.java
        AjaxResult.java
        BaseEntity.java
        support
        CharsetKit.java
        config
        ThreadPoolConfig.java
        Global.java
        exception
        user
        UserException.java
        UserNotExistsException.java
        CaptchaException.java
        UserPasswordNotMatchException.java
        UserPasswordRetryLimitExceedException.java
        RoleBlockedException.java
        UserBlockedException.java
        UserPasswordRetryLimitCountException.java
        UserDeleteException.java
        base
        BaseException.java
        job
        TaskException.java
        DemoModeException.java
        file
        FileNameLengthLimitExceededException.java
        InvalidExtensionException.java
        FileSizeLimitExceededException.java
        FileException.java
        BusinessException.java
        annotation
        Log.java
        DataScope.java
        LoginAuth.java
        DataSource.java
        Excel.java
        Excels.java
        json
        JSONObject.java
        JSON.java
  - pom.xml
- ruoyi-generator
  - src
    - main
      - resources
        vm
        sql
        sql.vm
        xml
        Mapper.xml.vm
        html
        add.html.vm
        list.html.vm
        edit.html.vm
        java
        domain.java.vm
        Service.java.vm
        Controller.java.vm
        ServiceImpl.java.vm
        Mapper.java.vm
        templates
        tool
        gen
        gen.html
        generator.yml
        mapper
        generator
        GenMapper.xml
      - java
        com
        ruoyi
        generator
        util
        VelocityInitializer.java
        GenUtils.java
        service
        impl
        GenServiceImpl.java
        IGenService.java
        domain
        ColumnConfigInfo.java
        TableInfo.java
        ColumnInfo.java
        mapper
        GenMapper.java
  - pom.xml
- README.md
- ruoyi-system
  - src
    - main
      - resources
        mapper
        system
        SysDictTypeMapper.xml
        SysConfigMapper.xml
        SysDeptMapper.xml
        SysDictDataMapper.xml
        SysPostMapper.xml
        SysRoleDeptMapper.xml
        SysOperLogMapper.xml
        SysLogininforMapper.xml
        SysUserRoleMapper.xml
        SysUserPostMapper.xml
        SysRoleMenuMapper.xml
        SysUserOnlineMapper.xml
        SysNoticeMapper.xml
        SysMenuMapper.xml
        SysRoleMapper.xml
        SysUserMapper.xml
        mybatis-config.xml
      - java
        com
        ruoyi
        system
        service
        impl
        SysDictTypeServiceImpl.java
        SysLogininforServiceImpl.java
        SysDictDataServiceImpl.java
        SysUserOnlineServiceImpl.java
        SysNoticeServiceImpl.java
        SysRoleServiceImpl.java
        SysDeptServiceImpl.java
        SysPostServiceImpl.java
        SysOperLogServiceImpl.java
        SysConfigServiceImpl.java
        SysMenuServiceImpl.java
        SysUserServiceImpl.java
        ISysDeptService.java
        ISysNoticeService.java
        ISysUserOnlineService.java
        ISysConfigService.java
        ISysOperLogService.java
        ISysRoleService.java
        ISysDictDataService.java
        ISysMenuService.java
        ISysUserService.java
        ISysLogininforService.java
        ISysDictTypeService.java
        ISysPostService.java
        domain
        SysRoleDept.java
        SysOperLog.java
        SysNotice.java
        SysMenu.java
        SysConfig.java
        SysRole.java
        SysRoleMenu.java
        SysUserOnline.java
        SysUserPost.java
        SysPost.java
        SysDictData.java
        SysDept.java
        SysDictType.java
        SysLogininfor.java
        SysUserRole.java
        SysUser.java
        mapper
        SysOperLogMapper.java
        SysLogininforMapper.java
        SysMenuMapper.java
        SysRoleMapper.java
        SysRoleDeptMapper.java
        SysUserPostMapper.java
        SysPostMapper.java
        SysRoleMenuMapper.java
        SysUserMapper.java
        SysConfigMapper.java
        SysDeptMapper.java
        SysNoticeMapper.java
        SysUserOnlineMapper.java
        SysDictDataMapper.java
        SysUserRoleMapper.java
        SysDictTypeMapper.java
  - pom.xml
- ruoyi-admin
  - src
    - main
      - resources
        logback.xml
        uat
        application.yml
        templates
        demo
        report
        peity.html
        metrics.html
        sparkline.html
        echarts.html
        table
        image.html
        button.html
        params.html
        detail.html
        reorder.html
        other.html
        remember.html
        curd.html
        footer.html
        pageGo.html
        event.html
        export.html
        multi.html
        fixedColumns.html
        search.html
        groupHeader.html
        form
        upload.html
        button.html
        datetime.html
        duallistbox.html
        tabs_panels.html
        basic.html
        autocomplete.html
        sortable.html
        jasny.html
        select.html
        validate.html
        grid.html
        wizard.html
        modal
        dialog.html
        table.html
        layer.html
        form.html
        table
        parent.html
        check.html
        radio.html
        operate
        table.html
        detail.html
        other.html
        edit.html
        add.html
        icon
        glyphicons.html
        fontawesome.html
        main.html
        tool
        build
        build.html
        error
        business.html
        unauth.html
        404.html
        500.html
        monitor
        logininfor
        logininfor.html
        online
        online.html
        operlog
        detail.html
        operlog.html
        server
        server.html
        include.html
        system
        user
        resetPwd.html
        user.html
        edit.html
        add.html
        profile
        resetPwd.html
        profile.html
        avatar.html
        post
        edit.html
        post.html
        add.html
        menu
        icon.html
        edit.html
        tree.html
        menu.html
        add.html
        config
        config.html
        edit.html
        add.html
        dept
        dept.html
        edit.html
        tree.html
        add.html
        dict
        type
        edit.html
        type.html
        add.html
        data
        data.html
        edit.html
        add.html
        role
        selectUser.html
        dataScope.html
        edit.html
        authUser.html
        add.html
        role.html
        notice
        notice.html
        edit.html
        add.html
        index.html
        main_v1.html
        login.html
        dev
        application.yml
        ehcache
        ehcache-shiro.xml
        run
        application.yml
        banner.txt
        static
        img
        login-background.jpg
        loading-upload.gif
        loading.gif
        profile.jpg
        i18n
        messages.properties
        file
        rml.txt
        ruoyi
        login.js
        js
        common.js
        ry-ui.js
        css
        ry-ui.css
        index.js
        favicon.ico
        ajax
        libs
        iCheck
        icheck.min.js
        custom.css
        datapicker
        bootstrap-datetimepicker.min.js
        bootstrap-datetimepicker.min.css
        bootstrap-datetimepicker.css
        bootstrap-datetimepicker.js
        jsonview
        jquery.jsonview.js
        jquery.jsonview.css
        blockUI
        jquery.blockUI.js
        jquery-layout
        jquery.layout-latest.js
        jquery.layout-latest.css
        suggest
        bootstrap-suggest.js
        bootstrap-suggest.min.js
        typeahead
        bootstrap3-typeahead.min.js
        bootstrap3-typeahead.js
        report
        sparkline
        jquery.sparkline.min.js
        peity
        jquery.peity.min.js
        echarts
        layui
        lay
        modules
        laydate.js
        css
        modules
        laydate
        default
        laydate.css
        font
        iconfont.svg
        iconfont.eot
        iconfont.ttf
        iconfont.woff
        layui.js
        jquery-ztree
        3.5
        log v3.x.txt
        js
        jquery.ztree.exedit-3.5.js
        jquery.ztree.all-3.5.js
        jquery.ztree.core-3.5.js
        jquery.ztree.excheck-3.5.js
        jquery.ztree.exhide-3.5.js
        css
        simple
        zTreeStyle.css
        img
        line_conn.gif
        loading.gif
        zTreeStandard.gif
        left_menu.gif
        default
        zTreeStyle.css
        img
        line_conn.gif
        loading.gif
        zTreeStandard.gif
        diy
        metro
        zTreeStyle.css
        img
        line_conn.gif
        loading.gif
        metro.gif
        layer
        theme
        default
        loading-0.gif
        layer.css
        loading-1.gif
        loading-2.gif
        moon
        style.css
        layer.min.js
        fullscreen
        jquery.fullscreen.js
        validate
        additional-methods.min.js
        jquery.validate.extend.js
        jquery.validate.min.js
        messages_zh.min.js
        bootstrap-table
        extensions
        columns
        bootstrap-table-fixed-columns.js
        reorder
        jquery.tablednd.js
        bootstrap-table-reorder.js
        mobile
        bootstrap-table-mobile.js
        toolbar
        bootstrap-table-toolbar.min.js
        bootstrap-table-toolbar.js
        export
        bootstrap-table-export.js
        tableExport.js
        editable
        bootstrap-table-editable.js
        bootstrap-table-editable.min.js
        bootstrap-table.min.css
        locale
        bootstrap-table-zh-CN.min.js
        bootstrap-table-zh-CN.js
        bootstrap-table.min.js
        cropbox
        cropbox.js
        cropbox.css
        jasny
        jasny-bootstrap.min.js
        jasny-bootstrap.js
        jasny-bootstrap.min.css
        jasny-bootstrap.css
        summernote
        summernote-bs3.css
        summernote.min.js
        summernote-zh-CN.js
        summernote-zh-CN.min.js
        font
        summernote.eot
        summernote.woff
        summernote.ttf
        summernote.css
        bootstrap-fileinput
        fileinput.min.css
        fileinput.min.js
        fileinput.css
        flot
        jquery.flot.symbol.js
        jquery.flot.spline.js
        jquery.flot.pie.js
        jquery.flot.tooltip.min.js
        curvedLines.js
        jquery.flot.js
        jquery.flot.resize.js
        select2
        select2.js
        select2.min.css
        select2.min.js
        select2.css
        select2-bootstrap.css
        bootstrap-select
        bootstrap-select.css
        bootstrap-select.min.js
        bootstrap-select.js
        bootstrap-select.min.css
        bootstrap-treetable
        bootstrap-treetable.js
        duallistbox
        bootstrap-duallistbox.css
        bootstrap-duallistbox.min.css
        bootstrap-duallistbox.min.js
        bootstrap-duallistbox.js
        beautifyhtml
        beautifyhtml.js
        staps
        jquery.steps.js
        jquery.steps.min.js
        jquery.steps.css
        fonts
        fontawesome-webfont.woff2
        fontawesome-webfont.woff
        glyphicons-halflings-regular.woff
        glyphicons-halflings-regular.eot
        fontawesome-webfont.eot
        glyphicons-halflings-regular.woff2
        glyphicons-halflings-regular.ttf
        FontAwesome.otf
        Simple-Line-Icons.woff2
        fontawesome-webfont.ttf
        glyphicons-halflings-regular.svg
        js
        bootstrap.min.js
        jquery.min.js
        plugins
        metisMenu
        jquery.metisMenu.js
        slimscroll
        jquery.slimscroll.min.js
        jquery.tmpl.js
        jquery.i18n.properties.min.js
        jquery.contextMenu.min.js
        css
        animate.css
        jquery.contextMenu.min.css
        main
        font-awesome.min93e3.css
        style.min862f.css
        animate.min.css
        bootstrap.min14ed.css
        login.css
        style.css
        skins.css
        bootstrap.min.css
        font-awesome.min.css
        login.min.css
        patterns
      - java
        com
        ruoyi
        RuoYiApplication.java
        web
        core
        resolver
        LoginUserArgumentResolver.java
        config
        SwaggerConfig.java
        InterceptorConfig.java
        interceptor
        LoginAuthInterceptor.java
        controller
        demo
        domain
        UserOperateModel.java
        controller
        DemoIconController.java
        DemoDialogController.java
        DemoFormController.java
        DemoTableController.java
        DemoOperateController.java
        DemoReportController.java
        tool
        SwaggerController.java
        BuildController.java
        GenController.java
        common
        CommonController.java
        monitor
        SysLogininforController.java
        SysOperlogController.java
        SysJobController.java
        ServerController.java
        SysJobLogController.java
        SysUserOnlineController.java
        DruidController.java
        system
        SysProfileController.java
        SysPostController.java
        SysDeptController.java
        SysUserController.java
        SysDictTypeController.java
        SysConfigController.java
        SysLoginController.java
        SysMenuController.java
        SysCaptchaController.java
        SysRoleController.java
        SysIndexController.java
        SysDictDataController.java
        SysNoticeController.java
        RuoYiServletInitializer.java
  - pom.xml
  - Dockerfile
- .gitignore

package com.ruoyi.framework.config;

import at.pollux.thymeleaf.shiro.dialect.ShiroDialect;
import cn.hutool.core.util.ObjectUtil;
import com.ruoyi.framework.shiro.realm.UserRealm;
import com.ruoyi.framework.shiro.session.OnlineSessionDAO;
import com.ruoyi.framework.shiro.session.OnlineSessionFactory;
import com.ruoyi.framework.shiro.web.filter.LogoutFilter;
import com.ruoyi.framework.shiro.web.filter.captcha.CaptchaValidateFilter;
import com.ruoyi.framework.shiro.web.filter.kickout.KickoutSessionFilter;
import com.ruoyi.framework.shiro.web.filter.online.OnlineSessionFilter;
import com.ruoyi.framework.shiro.web.filter.sync.SyncOnlineSessionFilter;
import com.ruoyi.framework.shiro.web.session.OnlineWebSessionManager;
import com.ruoyi.framework.shiro.web.session.SpringSessionValidationScheduler;
import org.apache.commons.io.IOUtils;
import org.apache.shiro.cache.ehcache.EhCacheManager;
import org.apache.shiro.codec.Base64;
import org.apache.shiro.config.ConfigurationException;
import org.apache.shiro.io.ResourceUtils;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.CookieRememberMeManager;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.apache.shiro.web.servlet.SimpleCookie;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

import javax.servlet.Filter;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.util.LinkedHashMap;
import java.util.Map;

/**
 * 权限配置加载
 *
 * @author ruoyi
 */
@Configuration
public class ShiroConfig {

    /**
     * Session超时时间，单位为毫秒（默认30分钟）
     */
    @Value("${shiro.session.expireTime}")
    private int expireTime;

    /**
     * 相隔多久检查一次session的有效性，单位毫秒，默认就是10分钟
      */
    @Value("${shiro.session.validationInterval}")
    private int validationInterval;

    /**
     * 同一个用户最大会话数
      */
    @Value("${shiro.session.maxSession}")
    private int maxSession;

    /**
     * 踢出之前登录的/之后登录的用户，默认踢出之前登录的用户
     */
    @Value("${shiro.session.kickoutAfter}")
    private boolean kickoutAfter;

    /**
     * 验证码开关
     */
    @Value("${shiro.user.captchaEnabled}")
    private boolean captchaEnabled;

    /**
     * 验证码类型
     */
    @Value("${shiro.user.captchaType}")
    private String captchaType;

    /**
     * 设置Cookie的域名
     */
    @Value("${shiro.cookie.domain}")
    private String domain;

    /**
     * 设置cookie的有效访问路径
     */
    @Value("${shiro.cookie.path}")
    private String path;

    /**
     * 设置HttpOnly属性
     */
    @Value("${shiro.cookie.httpOnly}")
    private boolean httpOnly;

    /**
     * 设置Cookie的过期时间，秒为单位
     */
    @Value("${shiro.cookie.maxAge}")
    private int maxAge;

    /**
     * 登录地址
     */
    @Value("${shiro.user.loginUrl}")
    private String loginUrl;

    /**
     * 权限认证失败地址
     */
    @Value("${shiro.user.unauthorizedUrl}")
    private String unauthorizedUrl;

    /**
     * 缓存管理器 使用Ehcache实现
     */
    @Bean
    public EhCacheManager getEhCacheManager() {
        net.sf.ehcache.CacheManager cacheManager = net.sf.ehcache.CacheManager.getCacheManager("ruoyi");
        EhCacheManager em = new EhCacheManager();
        if (ObjectUtil.isNull(cacheManager)) {
            em.setCacheManager(new net.sf.ehcache.CacheManager(getCacheManagerConfigFileInputStream()));
            return em;
        } else {
            em.setCacheManager(cacheManager);
            return em;
        }
    }

    /**
     * 返回配置文件流 避免ehcache配置文件一直被占用，无法完全销毁项目重新部署
     */
    private InputStream getCacheManagerConfigFileInputStream(){
        String configFile = "classpath:ehcache/ehcache-shiro.xml";
        try(InputStream inputStream = ResourceUtils.getInputStreamForPath(configFile)){
            byte[] b = IOUtils.toByteArray(inputStream);
            return new ByteArrayInputStream(b);
        }catch (IOException e){
            throw new ConfigurationException(
                    "Unable to obtain input stream for cacheManagerConfigFile [" + configFile + "]", e);
        }
    }

    /**
     * 自定义Realm
     */
    @Bean
    public UserRealm userRealm(EhCacheManager cacheManager) {
        UserRealm userRealm = new UserRealm();
        userRealm.setCacheManager(cacheManager);
        return userRealm;
    }

    /**
     * 自定义sessionDAO会话
     */
    @Bean
    public OnlineSessionDAO sessionDAO() {
        return new OnlineSessionDAO();
    }

    /**
     * 自定义sessionFactory会话
     */
    @Bean
    public OnlineSessionFactory sessionFactory() {
        return new OnlineSessionFactory();
    }

    /**
     * 自定义sessionFactory调度器
     */
    @Bean
    public SpringSessionValidationScheduler sessionValidationScheduler() {
        SpringSessionValidationScheduler sessionValidationScheduler = new SpringSessionValidationScheduler();
        // 相隔多久检查一次session的有效性，单位毫秒，默认就是10分钟
        sessionValidationScheduler.setSessionValidationInterval((long)validationInterval * 60 * 1000);
        // 设置会话验证调度器进行会话验证时的会话管理器
        sessionValidationScheduler.setSessionManager(sessionValidationManager());
        return sessionValidationScheduler;
    }

    /**
     * 会话管理器
     */
    @Bean
    public OnlineWebSessionManager sessionValidationManager() {
        OnlineWebSessionManager manager = getOnlineWebSessionManager();
        // 是否定时检查session
        manager.setSessionValidationSchedulerEnabled(true);
        // 自定义SessionDao
        manager.setSessionDAO(sessionDAO());
        // 自定义sessionFactory
        manager.setSessionFactory(sessionFactory());
        return manager;
    }

    private OnlineWebSessionManager getOnlineWebSessionManager() {
        OnlineWebSessionManager manager = new OnlineWebSessionManager();
        // 加入缓存管理器
        manager.setCacheManager(getEhCacheManager());
        // 删除过期的session
        manager.setDeleteInvalidSessions(true);
        // 设置全局session超时时间
        manager.setGlobalSessionTimeout((long) expireTime * 60 * 1000);
        // 去掉 JSESSIONID
        manager.setSessionIdUrlRewritingEnabled(false);
        return manager;
    }

    /**
     * 会话管理器
     */
    @Bean
    public OnlineWebSessionManager sessionManager() {
        OnlineWebSessionManager manager = getOnlineWebSessionManager();
        // 定义要使用的无效的Session定时调度器
        manager.setSessionValidationScheduler(sessionValidationScheduler());
        // 是否定时检查session
        manager.setSessionValidationSchedulerEnabled(true);
        // 自定义SessionDao
        manager.setSessionDAO(sessionDAO());
        // 自定义sessionFactory
        manager.setSessionFactory(sessionFactory());
        return manager;
    }

    /**
     * 安全管理器
     */
    @Bean
    public SecurityManager securityManager(UserRealm userRealm) {
        DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
        // 设置realm.
        securityManager.setRealm(userRealm);
        // 记住我
        securityManager.setRememberMeManager(rememberMeManager());
        securityManager.setCacheManager(getEhCacheManager());
        // session管理器
        securityManager.setSessionManager(sessionManager());
        return securityManager;
    }

    /**
     * 退出过滤器
     */
    private LogoutFilter logoutFilter() {
        LogoutFilter logoutFilter = new LogoutFilter();
        logoutFilter.setCacheManager(getEhCacheManager());
        logoutFilter.setLoginUrl(loginUrl);
        return logoutFilter;
    }

    /**
     * Shiro过滤器配置
     */
    @Bean
    public ShiroFilterFactoryBean shiroFilterFactoryBean(SecurityManager securityManager) {
        ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
        // Shiro的核心安全接口,这个属性是必须的
        shiroFilterFactoryBean.setSecurityManager(securityManager);
        // 身份认证失败，则跳转到登录页面的配置
        shiroFilterFactoryBean.setLoginUrl(loginUrl);
        // 权限认证失败，则跳转到指定页面
        shiroFilterFactoryBean.setUnauthorizedUrl(unauthorizedUrl);
        // Shiro连接约束配置，即过滤链的定义
        LinkedHashMap<String, String> filterChainDefinitionMap = new LinkedHashMap<>();
        // 对静态资源设置匿名访问
        filterChainDefinitionMap.put("/favicon.ico**" , "anon");
        filterChainDefinitionMap.put("/ruoyi.png**" , "anon");
        filterChainDefinitionMap.put("/css/**" , "anon");
        filterChainDefinitionMap.put("/docs/**" , "anon");
        filterChainDefinitionMap.put("/fonts/**" , "anon");
        filterChainDefinitionMap.put("/img/**" , "anon");
        filterChainDefinitionMap.put("/ajax/**" , "anon");
        filterChainDefinitionMap.put("/js/**" , "anon");
        filterChainDefinitionMap.put("/ruoyi/**" , "anon");
        filterChainDefinitionMap.put("/druid/**" , "anon");
        filterChainDefinitionMap.put("/captcha/captchaImage**" , "anon");
        // 退出 logout地址，shiro去清除session
        filterChainDefinitionMap.put("/logout" , "logout");
        // 不需要拦截的访问
        filterChainDefinitionMap.put("/login" , "anon,captchaValidate");

        Map<String, Filter> filters = new LinkedHashMap<>();
        filters.put("onlineSession" , onlineSessionFilter());
        filters.put("syncOnlineSession" , syncOnlineSessionFilter());
        filters.put("captchaValidate" , captchaValidateFilter());
        filters.put("kickout", kickoutSessionFilter());
        // 注销成功，则跳转到指定页面
        filters.put("logout" , logoutFilter());
        shiroFilterFactoryBean.setFilters(filters);

        // 所有请求需要认证
        filterChainDefinitionMap.put("/**" , "user,kickout,onlineSession,syncOnlineSession");
        shiroFilterFactoryBean.setFilterChainDefinitionMap(filterChainDefinitionMap);

        return shiroFilterFactoryBean;
    }

    /**
     * 自定义在线用户处理过滤器
     */
    @Bean
    public OnlineSessionFilter onlineSessionFilter() {
        OnlineSessionFilter onlineSessionFilter = new OnlineSessionFilter();
        onlineSessionFilter.setLoginUrl(loginUrl);
        return onlineSessionFilter;
    }

    /**
     * 自定义在线用户同步过滤器
     */
    @Bean
    public SyncOnlineSessionFilter syncOnlineSessionFilter() {
        return new SyncOnlineSessionFilter();
    }

    /**
     * 自定义验证码过滤器
     */
    @Bean
    public CaptchaValidateFilter captchaValidateFilter() {
        CaptchaValidateFilter captchaValidateFilter = new CaptchaValidateFilter();
        captchaValidateFilter.setCaptchaEnabled(captchaEnabled);
        captchaValidateFilter.setCaptchaType(captchaType);
        return captchaValidateFilter;
    }

    /**
     * cookie 属性设置
     */
    private SimpleCookie rememberMeCookie() {
        SimpleCookie cookie = new SimpleCookie("rememberMe");
        cookie.setDomain(domain);
        cookie.setPath(path);
        cookie.setHttpOnly(httpOnly);
        cookie.setMaxAge(maxAge * 24 * 60 * 60);
        return cookie;
    }

    /**
     * 记住我
     */
    private CookieRememberMeManager rememberMeManager() {
        CookieRememberMeManager cookieRememberMeManager = new CookieRememberMeManager();
        cookieRememberMeManager.setCookie(rememberMeCookie());
        cookieRememberMeManager.setCipherKey(Base64.decode("fCq+/xW488hMTCD+cmJ3aQ=="));
        return cookieRememberMeManager;
    }

    /**
     * thymeleaf模板引擎和shiro框架的整合
     */
    @Bean
    public ShiroDialect shiroDialect() {
        return new ShiroDialect();
    }

    /**
     * 开启Shiro注解通知器
     */
    @Bean
    public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(
            @Qualifier("securityManager") SecurityManager securityManager) {
        AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor = new AuthorizationAttributeSourceAdvisor();
        authorizationAttributeSourceAdvisor.setSecurityManager(securityManager);
        return authorizationAttributeSourceAdvisor;
    }

    /**
     * 同一个用户多设备登录限制
     */
    private KickoutSessionFilter kickoutSessionFilter() {
        KickoutSessionFilter kickoutSessionFilter = new KickoutSessionFilter();
        kickoutSessionFilter.setCacheManager(getEhCacheManager());
        kickoutSessionFilter.setSessionManager(sessionManager());
        // 同一个用户最大的会话数，默认-1无限制；比如2的意思是同一个用户允许最多同时两个人登录
        kickoutSessionFilter.setMaxSession(maxSession);
        // 是否踢出后来登录的，默认是false；即后者登录的用户踢出前者登录的用户；踢出顺序
        kickoutSessionFilter.setKickoutAfter(kickoutAfter);
        // 被踢出后重定向到的地址；
        kickoutSessionFilter.setKickoutUrl("/login?kickout=1");
        return kickoutSessionFilter;
    }
}