Spring Security 5.x兼容多种密码加密方式
在新、老系统数据合并用户数据时,会出现用户密码加密方式不一致的问题,这时我们可以使用Spring Security PasswordEncoder来解决这个问题。
1 Spring Security PasswordEncoder
Spring Security 5不需要配置密码的加密方式,而是用户密码加前缀的方式表明加密方式,如:
{MD5}88e2d8cd1e92fd5544c8621508cd706b代表使用的是MD5加密方式;{bcrypt}$2a$10$eZeGvVV2ZXr/vgiVFzqzS.JLV878ApBgRT9maPK1Wrg0ovsf4YuI6代表使用的是bcrypt加密方式。
spring security官方推荐使用更加安全的bcrypt加密方式。
这样可以在同一系统中支持多种加密方式,迁移用户比较省事。spring security 5支持的加密方式在PasswordEncoderFactories中定义:
public class PasswordEncoderFactories {
public static PasswordEncoder createDelegatingPasswordEncoder() {
String encodingId = \"bcrypt\";
Map<String, PasswordEncoder> encoders = new HashMap();
encoders.put(encodingId, new BCryptPasswordEncoder());
encoders.put(\"ldap\", new LdapShaPasswordEncoder());
encoders.put(\"MD4\", new Md4PasswordEncoder());
encoders.put(\"MD5\", new MessageDigestPasswordEncoder(\"MD5\"));
encoders.put(\"noop\", NoOpPasswordEncoder.getInstance());
encoders.put(\"pbkdf2\", new Pbkdf2PasswordEncoder());
encoders.put(\"scrypt\", new SCryptPasswordEncoder());
encoders.put(\"SHA-1\", new MessageDigestPasswordEncoder(\"SHA-1\"));
encoders.put(\"SHA-256\", new MessageDigestPasswordEncoder(\"SHA-256\"));
encoders.put(\"sha256\", new StandardPasswordEncoder());
return new DelegatingPasswordEncoder(encodingId, encoders);
}
private PasswordEncoderFactories() {
}
}
2 测试
2.1 pom.
<? version=\"1.0\" encoding=\"UTF-8\"?>
<project ns=\"http://maven.apache.org/POM/4.0.0\" ns:xsi=\"http://www.w3.org/2001/ Schema-instance\"
xsi:schemaLocation=\"http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd\">
<modelVersion>4.0.0</modelVersion>
<groupId>com.hfcsbc</groupId>
<artifactId>security</artifactId>
<version>0.0.1-SNAPSHOT</version>
<packaging>jar</packaging>
<name>security</name>
<de ion>Demo project for Spring Boot</de ion>
<parent>
<groupId>org.spring work.boot</groupId>
<artifactId>spring-boot-starter-parent</artifactId>
<version>2.0.0.M7</version>
<relativePath/> <!-- lookup parent from repository -->
</parent>
<properties>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
<java.version>1.8</java.version>
</properties>
<dependencies>
<dependency>
<groupId>org.spring work.boot</groupId>
<artifactId>spring-boot-starter-security</artifactId>
</dependency>
<dependency>
<groupId>org.spring work.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
<scope>test</scope>
</dependency>
<dependency>
<groupId>org.spring work.security</groupId>
<artifactId>spring-security-test</artifactId>
<scope>test</scope>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
</dependency>
</dependencies>
<build>
<plugins>
<plugin>
<groupId>org.spring work.boot</groupId>
<artifactId>spring-boot-maven-plugin</artifactId>
</plugin>
</plugins>
</build>
<repositories>
<repository>
<id>spring-snapshots</id>
<name>Spring Snapshots</name>
<url>https://repo.spring.io/snapshot</url>
<snapshots>
<enabled>true</enabled>
</snapshots>
</repository>
<repository>
<id>spring-milestones</id>
<name>Spring Milestones</name>
<url>https://repo.spring.io/milestone</url>
<snapshots>
<enabled>false</enabled>
</snapshots>
</repository>
</repositories>
<pluginRepositories>
<pluginRepository>
<id>spring-snapshots</id>
<name>Spring Snapshots</name>
<url>https://repo.spring.io/snapshot</url>
<snapshots>
<enabled>true</enabled>
</snapshots>
</pluginRepository>
<pluginRepository>
<id>spring-milestones</id>
<name>Spring Milestones</name>
<url>https://repo.spring.io/milestone</url>
<snapshots>
<enabled>false</enabled>
</snapshots>
</pluginRepository>
</pluginRepositories>
</project>
2.2 测试
spring security 5.x默认使用bcrypt加密
@Slf4j
public class DomainUserDetailsService {
public static void main(String[] args){
PasswordEncoder passwordEncoder = PasswordEncoderFactories.createDelegatingPasswordEncoder();
String encode = passwordEncoder.encode(\"password\");
log.info(\"加密后的密码:\" + encode);
log.info(\"bcrypt密码对比:\" + passwordEncoder.matches(\"password\", encode));
String md5Password = \"{MD5}88e2d8cd1e92fd5544c8621508cd706b\";//MD5加密前的密码为:password
log.info(\"MD5密码对比:\" + passwordEncoder.matches(\"password\", encode));
}
}
![\"avatar\"](\"/images/csdn/1545359785B1h5dJ45359785.jpeg\")
继续阅读与本文标签相同的文章
-
网站渗透测试服务项目内容详情
2026-05-18栏目: 教程
-
来杭州云栖大会,全面了解企业如何实现云上IT治理
2026-05-18栏目: 教程
-
2019「边缘计算」大看点,点击解锁详细版云栖大会参会指南
2026-05-18栏目: 教程
-
生存还是毁灭?一文读懂挖矿木马的战略战术
2026-05-18栏目: 教程
-
数据库基础技术实践#网络安全基础技术实践课程
2026-05-18栏目: 教程