Spring 3.0.5 + CXF 2.4 + Hibernate 3.6.0 + MySQL 5.5 整合(CXF/Spring/Hibernate)实现简单的WSS4J认证 + 测试
2011-05-10 09:49
696 查看
最近公司要做一个WebService项目,做了一个简单的例子,WebService认证使用的是简单的UsernameToken方式未使用X.509方式,DAO类大家自己去实现吧,这里就不得供了。
这里说明一下,在网上看到很多例子都是错误的,在WebService服务器端认证回调类中,应该是根据客户端传过来的用户名在数据库里查找到对应的密码在重新Set进去才可以正常的认证而不是直接在服务端进行get密码进行对比,因为WSS4J为了安全期间不允许直接在服务端直接get出来密码。
采用的全是最新的包,截图如下:
所有代码由于行数太多,所以默认为折叠代码,查看代码时请展开代码。
以下是配置文件:
applicationContext-common.xml:
applicationContext-webService.xml:
MySQL配置(连接池配置 dataBaseCfg.properties):
WebService 客户端配置文件(flowCollectionCfg.properties):
web.xml(<display-name>节点自行设置):
WsServerAuthCallbackHandler.java:
WsClientAuthCallbackHandler.java:
WsTest.java (单元测试):
这里说明一下,在网上看到很多例子都是错误的,在WebService服务器端认证回调类中,应该是根据客户端传过来的用户名在数据库里查找到对应的密码在重新Set进去才可以正常的认证而不是直接在服务端进行get密码进行对比,因为WSS4J为了安全期间不允许直接在服务端直接get出来密码。
采用的全是最新的包,截图如下:
所有代码由于行数太多,所以默认为折叠代码,查看代码时请展开代码。
以下是配置文件:
applicationContext-common.xml:
<?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:jee="http://www.springframework.org/schema/jee" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:p="http://www.springframework.org/schema/p" xmlns:util="http://www.springframework.org/schema/util" xmlns:tool="http://www.springframework.org/schema/tool" xmlns:context="http://www.springframework.org/schema/context" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd http://www.springframework.org/schema/tool http://www.springframework.org/schema/tool/spring-tool.xsd" default-lazy-init="true" default-autowire="byName"> <bean id="propertyConfigurer" class="org.springframework.beans.factory.config.PropertyPlaceholderConfigurer"> <property name="locations"> <list> <value>classpath:/dataBaseCfg.properties</value> <value>classpath:/flowCollectionCfg.properties</value> </list> </property> </bean> <!-- <bean id="dataSource" class="org.springframework.jndi.JndiObjectFactoryBean" p:jndiName="java:comp/env/jdbc/MySSH" /> --> <!-- BoneCP --> <bean id="dataSource" class="com.jolbox.bonecp.BoneCPDataSource" p:driverClass="${jdbc.driver}" p:jdbcUrl="${jdbc.url}" p:username="${jdbc.username}" p:password="${jdbc.password}" p:idleConnectionTestPeriodInMinutes="${idleConnectionTestPeriodInMinutes}" p:idleMaxAgeInMinutes="${idleMaxAgeInMinutes}" p:maxConnectionsPerPartition="${maxConnectionsPerPartition}" p:minConnectionsPerPartition="${minConnectionsPerPartition}" p:partitionCount="${partitionCount}" p:acquireIncrement="${acquireIncrement}" p:statementsCacheSize="${statementsCacheSize}" p:disableConnectionTracking="${disableConnectionTracking}" p:releaseHelperThreads="${releaseHelperThreads}" destroy-method="close" /> <bean id="sessionFactory" class="org.springframework.orm.hibernate3.LocalSessionFactoryBean" p:dataSource-ref="dataSource"> <property name="mappingDirectoryLocations"> <list> <!-- <value>classpath:/cn/newlinetech/iCenter/userCenter/bo/</value> --> </list> </property> <property name="hibernateProperties"> <props> <prop key="hibernate.dialect">${hibernate.dialect}</prop> <prop key="hibernate.show_sql">${hibernate.show_sql}</prop> <prop key="hibernate.format_sql">${hibernate.format_sql}</prop> <prop key="hibernate.use_sql_comments">${hibernate.use_sql_comments}</prop> <prop key="hibernate.jdbc.batch_size">${hibernate.jdbc.batch_size}</prop> <prop key="hibernate.max_fetch_depth">${hibernate.max_fetch_depth}</prop> <prop key="hibernate.jdbc.fetch_size">${hibernate.jdbc.fetch_size}</prop> <prop key="hibernate.cache.use_second_level_cache">${hibernate.cache.use_second_level_cache}</prop> <prop key="hibernate.cache.use_query_cache">${hibernate.cache.use_query_cache}</prop> <prop key="hibernate.cache.provider_class">${hibernate.cache.provider_class}</prop> <prop key="hibernate.order_updates">${hibernate.order_updates}</prop> <prop key="hibernate.query.factory_class">${hibernate.query.factory_class}</prop> <prop key="hibernate.connection.isolation">${hibernate.connection.isolation}</prop> <!-- <prop key="hibernate.connection.autocommit">${hibernate.connection.autocommit}</prop> --> <!-- <prop key="hibernate.hbm2ddl.auto">${hibernate.hbm2ddl.auto}</prop> --> </props> </property> </bean> <bean id="transactionManager" class="org.springframework.orm.hibernate3.HibernateTransactionManager" /> <bean id="transactionInterceptor" class="org.springframework.transaction.interceptor.TransactionInterceptor" p:transactionManager-ref="transactionManager"> <property name="transactionAttributes"> <props> <prop key="get*">PROPAGATION_REQUIRED,readOnly</prop> <prop key="select*">PROPAGATION_REQUIRED,readOnly</prop> <prop key="query*">PROPAGATION_REQUIRED,readOnly</prop> <prop key="finish*">PROPAGATION_REQUIRED</prop> <prop key="add*">PROPAGATION_REQUIRED</prop> <prop key="insert*">PROPAGATION_REQUIRED</prop> <prop key="edit*">PROPAGATION_REQUIRED</prop> <prop key="update*">PROPAGATION_REQUIRED</prop> <prop key="save*">PROPAGATION_REQUIRED</prop> <prop key="remove*">PROPAGATION_REQUIRED</prop> <prop key="delete*">PROPAGATION_REQUIRED</prop> <prop key="*">PROPAGATION_REQUIRED,-java.lang.Exception</prop> </props> </property> </bean> <bean id="ProxyCreator" class="org.springframework.aop.framework.autoproxy.BeanNameAutoProxyCreator" p:beanNames="*Service,*ServiceImpl" p:interceptorNames="transactionInterceptor" /> <bean id="wsServerAuthCallbackHandler" class="framework.system.AuthCallbackHandler.WsServerAuthCallbackHandler" scope="prototype" /> <bean id="wsClientAuthCallbackHandler" class="framework.system.AuthCallbackHandler.WsClientAuthCallbackHandler" scope="prototype" /> </beans>
applicationContext-webService.xml:
<?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:jee="http://www.springframework.org/schema/jee" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:p="http://www.springframework.org/schema/p" xmlns:util="http://www.springframework.org/schema/util" xmlns:tool="http://www.springframework.org/schema/tool" xmlns:context="http://www.springframework.org/schema/context" xmlns:cxf_jaxrs="http://cxf.apache.org/jaxrs" xmlns:cxf_jaxws="http://cxf.apache.org/jaxws" xmlns:cxf_core="http://cxf.apache.org/core" xmlns:cxf_security="http://cxf.apache.org/configuration/security" xmlns:cxf_http="http://cxf.apache.org/transports/http/configuration" xmlns:cxf_wsa="http://cxf.apache.org/ws/addressing" xmlns:cxf_policy="http://cxf.apache.org/policy" xmlns:cxf_soap="http://cxf.apache.org/bindings/soap" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd http://www.springframework.org/schema/tool http://www.springframework.org/schema/tool/spring-tool.xsd http://cxf.apache.org/core http://cxf.apache.org/schemas/core.xsd http://cxf.apache.org/jaxrs http://cxf.apache.org/schemas/jaxrs.xsd http://cxf.apache.org/jaxws http://cxf.apache.org/schemas/jaxws.xsd http://cxf.apache.org/configuration/security http://cxf.apache.org/schemas/configuration/security.xsd http://cxf.apache.org/transports/http/configuration http://cxf.apache.org/schemas/configuration/http-conf.xsd http://cxf.apache.org/policy http://cxf.apache.org/schemas/policy.xsd http://cxf.apache.org/bindings/soap http://cxf.apache.org/schemas/configuration/soap.xsd"> <!--Basic WebService CXF ConfigFile--> <import resource="classpath*:/META-INF/cxf/cxf.xml" /> <import resource="classpath*:/META-INF/cxf/cxf-extension-soap.xml" /> <import resource="classpath*:/META-INF/cxf/cxf-extension-jaxrs-binding.xml" /> <import resource="classpath*:/META-INF/cxf/cxf-servlet.xml" /> <!-- Ws-Service --> <cxf_jaxws:endpoint id="iCenterFlowCollectionServer" implementor="cn.newlinetech.FlowCollectionServer.main.impl.FlowCollectionServer" address="/flowCollectionService"> <cxf_jaxws:inInterceptors> <bean class="org.apache.cxf.interceptor.LoggingOutInterceptor" /> <bean class="org.apache.cxf.binding.soap.saaj.SAAJInInterceptor" /> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor"> <constructor-arg> <map> <entry key="action" value="UsernameToken" /> <entry key="passwordType" value="PasswordDigest" /> <entry> <key> <value>passwordCallbackRef</value> </key> <ref bean="wsServerAuthCallbackHandler" /> </entry> </map> </constructor-arg> </bean> </cxf_jaxws:inInterceptors> </cxf_jaxws:endpoint> <!-- Ws-Client --> <cxf_jaxws:client id="flowCollectionService" address="http://${flowCollectionServerIP}:${flowCollectionServerPort}/FlowCollectionServer/WebServices/flowCollectionService" serviceClass="cn.newlinetech.wsClient.IFlowCollectionServer"> <cxf_jaxws:outInterceptors> <bean class="org.apache.cxf.interceptor.LoggingOutInterceptor" /> <bean class="org.apache.cxf.binding.soap.saaj.SAAJOutInterceptor" /> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor"> <constructor-arg> <map> <entry key="action" value="UsernameToken" /> <entry key="user" value="admin" /> <entry key="passwordType" value="PasswordDigest" /> <entry> <key> <value>passwordCallbackRef</value> </key> <ref bean="wsClientAuthCallbackHandler" /> </entry> </map> </constructor-arg> </bean> </cxf_jaxws:outInterceptors> </cxf_jaxws:client> </beans>
MySQL配置(连接池配置 dataBaseCfg.properties):
#MySQL配置 hibernate.dialect=org.hibernate.dialect.MySQL5InnoDBDialect #hibernate.dialect=org.hibernate.dialect.MySQL5Dialect #hibernate.dialect=org.hibernate.dialect.MySQLDialect jdbc.url=jdbc:mysql://localhost:3306/DB_NewLine_iCenter?useUnicode=true&characterEncoding=utf-8&zeroDateTimeBehavior=convertToNull jdbc.driver=com.mysql.jdbc.Driver jdbc.username=mysql jdbc.password=mysql hibernate.show_sql=false hibernate.format_sql=false hibernate.use_sql_comments=false hibernate.cache.use_second_level_cache=false hibernate.cache.use_query_cache=false hibernate.cache.provider_class=org.hibernate.cache.EhCacheProvider hibernate.hbm2ddl.auto=update hibernate.order_updates=true hibernate.jdbc.batch_size=30 hibernate.jdbc.fetch_size=100 hibernate.max_fetch_depth=2 hibernate.connection.autocommit=true hibernate.connection.isolation=1 #Hibernate3.0的查询翻译器: hibernate.query.factory_class=org.hibernate.hql.ast.ASTQueryTranslatorFactory #Hibernate2.1的查询翻译器 #hibernate.query.factory_class=org.hibernate.hql.classic.ClassicQueryTranslatorFactory minPoolSize=5 maxPoolSize=20 maxIdleTime=1800 idleConnectionTestPeriodInMinutes=240 maxStatements=0 idleMaxAgeInMinutes=240 maxConnectionsPerPartition=30 minConnectionsPerPartition=5 partitionCount=3 acquireIncrement=5 statementsCacheSize=50 releaseHelperThreads=2 disableConnectionTracking=true
WebService 客户端配置文件(flowCollectionCfg.properties):
#WebService服务器地址 flowCollectionServerIP=192.168.1.8 #WebService服务器端口 flowCollectionServerPort=8080
web.xml(<display-name>节点自行设置):
<?xml version="1.0" encoding="UTF-8"?> <web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd" id="WebApp_ID" version="3.0"> <display-name>XXXXX</display-name> <session-config> <session-timeout>30</session-timeout> </session-config> <context-param> <param-name>contextConfigLocation</param-name> <param-value>classpath*:/spring-config/applicationContext-*.xml</param-value> </context-param> <listener> <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class> </listener> <listener> <listener-class>org.springframework.web.context.request.RequestContextListener</listener-class> </listener> <listener> <listener-class>org.springframework.web.util.IntrospectorCleanupListener</listener-class> </listener> <filter> <filter-name>openSessionInViewFilter</filter-name> <filter-class>org.springframework.orm.hibernate3.support.OpenSessionInViewFilter</filter-class> <init-param> <param-name>sessionFactoryBeanName</param-name> <param-value>sessionFactory</param-value> </init-param> <init-param> <param-name>singleSession</param-name> <param-value>true</param-value> </init-param> <init-param> <param-name>flushMode</param-name> <param-value>AUTO</param-value> </init-param> </filter> <filter-mapping> <filter-name>openSessionInViewFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter> <filter-name>encodingFilter</filter-name> <filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class> <init-param> <param-name>encoding</param-name> <param-value>UTF-8</param-value> </init-param> <init-param> <param-name>forceEncoding</param-name> <param-value>true</param-value> </init-param> </filter> <filter-mapping> <filter-name>encodingFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <servlet> <servlet-name>CXFServlet</servlet-name> <servlet-class>org.apache.cxf.transport.servlet.CXFServlet</servlet-class> <load-on-startup>1</load-on-startup> </servlet> <servlet-mapping> <servlet-name>CXFServlet</servlet-name> <url-pattern>/WebServices/*</url-pattern> </servlet-mapping> <welcome-file-list> <welcome-file>default.jsp</welcome-file> </welcome-file-list> <error-page> <error-code>404</error-code> <location>/WEB-INF/errorPage/404.jsp</location> </error-page> <error-page> <error-code>500</error-code> <location>/WEB-INF/errorPage/500.jsp</location> </error-page> </web-app>
WsServerAuthCallbackHandler.java:
package framework.system.AuthCallbackHandler; import java.io.IOException; import javax.security.auth.callback.Callback; import javax.security.auth.callback.CallbackHandler; import javax.security.auth.callback.UnsupportedCallbackException; import org.apache.ws.security.WSPasswordCallback; /** * * <p>Copyright: All Rights Reserved</p> * <p>Company: 北京新线科技发展有限公司 http://www.NewLineTech.cn</p> * <p>Description: Ws服务器端认证回调类 </p> * @author:Eric */ public class WsServerAuthCallbackHandler implements CallbackHandler{ @Override public void handle(Callback[] callbacks) throws IOException,UnsupportedCallbackException{ WSPasswordCallback wspc = (WSPasswordCallback) callbacks[0]; if(wspc.getIdentifier().equals("admin")){ try{ wspc.setPassword("newline"); }catch(Exception e){ throw new SecurityException("用户名密码错误"); } }else{ throw new SecurityException("无此用户"); } } }
WsClientAuthCallbackHandler.java:
package framework.system.AuthCallbackHandler; import java.io.IOException; import javax.security.auth.callback.Callback; import javax.security.auth.callback.CallbackHandler; import javax.security.auth.callback.UnsupportedCallbackException; import org.apache.ws.security.WSPasswordCallback; /** * * <p>Copyright: All Rights Reserved</p> * <p>Company: 北京新线科技发展有限公司 http://www.NewLineTech.cn</p> * <p>Description: WS客户端认证回调类</p> * @author:Eric */ public class WsClientAuthCallbackHandler implements CallbackHandler{ @Override public void handle(Callback[] callbacks) throws IOException,UnsupportedCallbackException{ for(int i = 0;i < callbacks.length;i ++ ){ WSPasswordCallback wspc = (WSPasswordCallback) callbacks[i]; int usage = wspc.getUsage(); if(usage == WSPasswordCallback.USERNAME_TOKEN){ wspc.setPassword("newline"); wspc.setIdentifier("admin"); } } } }
WsTest.java (单元测试):
package JUnitTest; import org.junit.Test; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.test.context.ContextConfiguration; import org.springframework.test.context.junit4.AbstractTransactionalJUnit4SpringContextTests; import cn.newlinetech.wsClient.IFlowCollectionServer; /** * * <p>Copyright: All Rights Reserved</p> * <p>Company: 北京新线科技发展有限公司 http://www.NewLineTech.cn</p> * <p>Description: 单元测试类 </p> * @author:Eric */ @ContextConfiguration(locations = {"classpath:/spring-config/applicationContext-*.xml"}) public class WsTest extends AbstractTransactionalJUnit4SpringContextTests{ @Autowired private IFlowCollectionServer flowCollectionService; @Test public void testFlowCollectionService(){ System.out.println(flowCollectionService.sayHello2("eric","25")); } }
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- struts-2.3.14.3 + hibernate-4.2.2.Final + spring-3.2.4 整合实现简单注册功能始末
- 用Maven整合SpringMVC+Spring+Hibernate 框架,实现简单的插入数据库数据功能(二)
- 简单WEB Service接口实现(CXF与spring整合)
- 用Maven整合SpringMVC+Spring+Hibernate 框架,实现简单的插入数据库数据功能
- struts spring hibernate整合简单实现
- 用Maven整合SpringMVC+Spring+Hibernate 框架,实现简单的插入数据库数据功能
- 用Maven整合SpringMVC+Spring+Hibernate 框架,实现简单的插入数据库数据功能(二)
- struts spring hibernate整合简单实现
- 最近S2SH框架整合和简单测试 Struts2-2.3.14+Spring-4.0.6+Hibernate-4.3.6
- 用Maven整合SpringMVC+Spring+Hibernate 框架,实现简单的插入数据库数据功能
- 使用Maven实现Struts2+Hibernate4+Spring3整合SSH框架(二):导入Spring的jar包并添加测试实现
- Springmvc+hibernate+spring简单实例实现(个人编译通过)
- Spring_SSH整合之_架构的历史(四层架构整合JSP+MySQL+JavaBean+Hibernate)_3
- Spring笔记⑤--整合hibernate代码测试
- webservice CXF整合spring服务端测试并生成wsdl文件
- Spring2.5+Struts1.3.8+JPA(Hibernate实现)整合之二
- Spring整合Hibernate简单示例
- WebService-CXF和spring整合实现webservice案例(Spring配置注解环境)
- spring boot mybatis 整合shiro简单实现登陆权限管理
- 运用DWR框架实现AJAX并与Spring与struts以及hibernate中的整合