我尝试在OSGI环境中结合VAADIN和shiro实现HttpService。因此,我声明了以下BundleActivator:

import java.util.logging.Level;

import org.eclipse.equinox.http.servlet.ExtendedHttpService;

import org.osgi.framework.BundleContext;
import org.osgi.framework.BundleEvent;
import org.osgi.framework.ServiceReference;
import org.osgi.service.http.HttpContext;
import org.osgi.util.tracker.ServiceTracker;
import org.osgi.util.tracker.ServiceTrackerCustomizer;

/**
 *
 * @author nspecht
 */
public class BundleActivator extends some.package.BundleActivator implements ServiceTrackerCustomizer
{

/**
 * Service tracker.
 */
private ServiceTracker tracker;

/**
 * HttpService.
 */
private ExtendedHttpService httpService;

@Override
protected void afterStart(BundleContext bc, DependencyManager dm) {
    this.tracker = new ServiceTracker(this.context, ExtendedHttpService.class, this);
    this.tracker.open();
}

@Override
protected void beforeStop(BundleContext bc, DependencyManager dm) {
    if (this.tracker != null) {
        this.tracker.close();
        this.tracker = null;
    }
}

@Override
protected void afterBundleChanged(BundleEvent be) {

}

@Override
public Object addingService(ServiceReference sr) {
    this.httpService = (ExtendedHttpService)this.context.getService(sr);
    HttpContext httpContext = this.httpService.createDefaultHttpContext();
    try {

        MainServlet mainServlet = new MainServlet();
        this.httpService.registerServlet(MainServlet.PATH, mainServlet, null, httpContext);

        // TODO: add ServletContextListener and Filter

        LoginServlet loginServlet = new LoginServlet();
        this.httpService.registerServlet(LoginServlet.PATH, loginServlet, null, httpContext);

        // TODO: add ServletContextListener and Filter

    } catch (Exception ex) {
        Logger.getLogger(BundleActivator.class.getName()).log(Level.SEVERE, null, ex);
    }
    return this.httpService;
}

@Override
public void modifiedService(ServiceReference sr, Object t) {
}

@Override
public void removedService(ServiceReference sr, Object t) {
    this.httpService.unregister(MainServlet.PATH);
    this.httpService.unregister(LoginServlet.PATH);
    // TODO: remove ServletContextListener and Filter
}
}


MyServlet是VaadinServlet。现在我想将Shiro添加到我的应用程序中。为了使shiro正常工作,我必须将EnvironmentLoaderListemer和ShiroFilter添加到我的服务中。

如果我尝试以下操作:

mainServlet.mainServlet.getServletContext().addListener(...)


应用程序崩溃(因为上下文已经初始化)。

mainServlet.getServletContext().createListener(...)


不会引发异常,但是ServletContextListener也不起作用。
httpService没有以这种方式添加侦听器的方法。
筛选器具有相同的问题,并且当侦听器未注册EnvironmentLoader时,对于ShiroFilter,httpService.registerFilter(...)方法无效。

是否有解决方法以编程方式添加Shiro?

有没有办法为我的Servlet添加侦听器和过滤器?

最佳答案

终于我找到了解决方案。我创建了自己的ShiroFilter,并将其照常添加到我的httpService中:

ServletFilter filter = new ServletFilter();
this.httpService.registerFilter("/", filter, null, httpContext);


ServletFilter也很简单:

public class ServletFilter extends IniShiroFilter
{
    @Override
    protected Ini loadIniFromConfig() {
        return new MyIni();
    }

    @Override
    protected Ini loadIniFromPath() {
        return this.loadIniFromConfig();
    }
}


最后是MyIni类:

public class MyIni extends Ini
{
/**
 * Constructor.
 */
public MyIni() {
    super();
    // Set a class loader, which is able to resolve your classes!
    Thread.currentThread().setContextClassLoader(new BundleWideClassLoader());
    this.config();

}

@Override
public String toString() {
    StringBuilder buf = new StringBuilder();
    buf.append("# ").append(this.getClass().getCanonicalName()).append("\n");

    for (String section : this.getSectionNames()) {
        buf.append("\n[").append(section).append("]\n");
        Section s = this.getSection(section);
        for (String key : s.keySet()) {
            buf.append(key).append(" = ").append(s.get(key)).append("\n");
        }
    }

    return buf.toString();
}

@Override
public void load(InputStream iniConfig) {
    // do nothing
}

@Override
public void load(Scanner scanner) {
    //do nothing
}

/**
 * Configure this ini.
 */
private void config() {
    Section main = this.addSection("main");
    main.put("authc.loginUrl", "/login");
    main.put("authc.successUrl", "/");
    main.put("authc.usernameParam", "user");
    main.put("authc.passwordParam", "pass");
    main.put("authc.rememberMeParam", "remember");

    main.put("ds", com.mchange.v2.c3p0.ComboPooledDataSource.class.getCanonicalName());
    ...

    main.put("matcher", org.apache.shiro.authc.credential.HashedCredentialsMatcher.class.getCanonicalName());
    main.put("matcher.hashAlgorithmName", "SHA-256");

    main.put("jdbcRealm", org.apache.shiro.realm.jdbc.JdbcRealm.class.getCanonicalName());
    ...

    main.put("jdbcRealm.dataSource", "$ds");
    main.put("jdbcRealm.credentialsMatcher", "$matcher");
    main.put("securityManager.realms", "$jdbcRealm");

    Section urls = this.addSection("urls");
    urls.put("/VAADIN/**", "anon");
    urls.put("/login/**", "anon");
    urls.put("/login", "authc");
    urls.put("/**", "authc");
}
}

09-27 03:11