您的位置:首页 > 其它

shiro session绑定

2016-03-17 11:34 447 查看
/**

* Copyright © 2012-2014 <a href="https://github.com/thinkgem/jeesite">JeeSite</a> All rights reserved.

*/

package com.zrj.depository.admin.common.security.shiro.session;

import java.io.Serializable;

import java.util.Collection;

import java.util.Date;

import javax.servlet.ServletRequest;

import javax.servlet.ServletResponse;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import org.apache.shiro.session.InvalidSessionException;

import org.apache.shiro.session.Session;

import org.apache.shiro.session.UnknownSessionException;

import org.apache.shiro.session.mgt.SessionContext;

import org.apache.shiro.session.mgt.SessionKey;

import org.apache.shiro.session.mgt.SimpleSession;

import org.apache.shiro.web.servlet.Cookie;

import org.apache.shiro.web.servlet.ShiroHttpServletRequest;

import org.apache.shiro.web.servlet.SimpleCookie;

import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;

import org.apache.shiro.web.util.WebUtils;

import com.zrj.depository.admin.common.utils.StringUtils;

/**

* 自定义WEB会话管理类

* @author ThinkGem

* @version 2014-7-20

*/

public class SessionManager extends DefaultWebSessionManager {

public SessionManager() {

super();

}

@Override

protected Serializable getSessionId(ServletRequest request, ServletResponse response) {

// 如果参数中包含“__sid”参数,则使用此sid会话。 例如:http://localhost/project?__sid=xxx&__cookie=true

String sid = request.getParameter("__sid");

if (StringUtils.isNotBlank(sid)) {

// 是否将sid保存到cookie,浏览器模式下使用此参数。

if (WebUtils.isTrue(request, "__cookie")){

HttpServletRequest rq = (HttpServletRequest)request;

HttpServletResponse rs = (HttpServletResponse)response;

Cookie template = getSessionIdCookie();

Cookie cookie = new SimpleCookie(template);

cookie.setValue(sid); cookie.saveTo(rq, rs);

}

// 设置当前session状态

request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID_SOURCE,

ShiroHttpServletRequest.URL_SESSION_ID_SOURCE); // session来源与url

request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID, sid);

request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID_IS_VALID, Boolean.TRUE);

return sid;

}else{

return super.getSessionId(request, response);

}

}

@Override

public void validateSessions() {

super.validateSessions();

}

protected Session retrieveSession(SessionKey sessionKey) {

try{

return super.retrieveSession(sessionKey);

}catch (UnknownSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public Date getStartTimestamp(SessionKey key) {

try{

return super.getStartTimestamp(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public Date getLastAccessTime(SessionKey key) {

try{

return super.getLastAccessTime(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public long getTimeout(SessionKey key){

try{

return super.getTimeout(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return 0;

}

}

public void setTimeout(SessionKey key, long maxIdleTimeInMillis) {

try{

super.setTimeout(key, maxIdleTimeInMillis);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

}

}

public void touch(SessionKey key) {

try{

super.touch(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

}

}

public String getHost(SessionKey key) {

try{

return super.getHost(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public Collection<Object> getAttributeKeys(SessionKey key) {

try{

return super.getAttributeKeys(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public Object getAttribute(SessionKey sessionKey, Object attributeKey) {

try{

return super.getAttribute(sessionKey, attributeKey);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public void setAttribute(SessionKey sessionKey, Object attributeKey, Object value) {

try{

super.setAttribute(sessionKey, attributeKey, value);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

}

}

public Object removeAttribute(SessionKey sessionKey, Object attributeKey) {

try{

return super.removeAttribute(sessionKey, attributeKey);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

return null;

}

}

public void stop(SessionKey key) {

try{

super.stop(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

}

}

public void checkValid(SessionKey key) {

try{

super.checkValid(key);

}catch (InvalidSessionException e) {

// 获取不到SESSION不抛出异常

}

}

@Override

protected Session doCreateSession(SessionContext context) {

try{

return super.doCreateSession(context);

}catch (IllegalStateException e) {

return null;

}

}

@Override

protected Session newSessionInstance(SessionContext context) {

Session session = super.newSessionInstance(context);

session.setTimeout(getGlobalSessionTimeout());

return session;

}

@Override

public Session start(SessionContext context) {

try{

return super.start(context);

}catch (NullPointerException e) {

SimpleSession session = new SimpleSession();

session.setId(0);

return session;

}

}

public Session getSession(String sessionId){

return sessionDAO.readSession(sessionId);

}

}
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 点击这里给我发消息
标签: 
相关文章推荐
新的分享
章节导航