Spring Boot中自定义Spring Security的UserDetailsService

在Spring Boot中，自定义Spring Security的UserDetailsService可以让你实现自己的用户认证和授权逻辑。以下是如何创建一个自定义UserDetailsService的步骤：

1. 创建一个实现UserDetailsService接口的类：

import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;

public class CustomUserDetailsService implements UserDetailsService {

    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
        // 在这里实现你的用户认证逻辑
        // 例如，从数据库或其他存储系统中获取用户信息
        // 如果用户不存在，抛出UsernameNotFoundException异常

        // 示例：从内存中加载用户信息
        if ("admin".equals(username)) {
            return new User("admin", "password", new ArrayList<>());
        } else {
            throw new UsernameNotFoundException("User not found");
        }
    }
}

2. 在Spring Security配置类中注册自定义UserDetailsService：

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;

@Configuration
@EnableWebSecurity
public class SecurityConfig {

    @Bean
    public CustomUserDetailsService customUserDetailsService() {
        return new CustomUserDetailsService();
    }

    @Bean
    public PasswordEncoder passwordEncoder() {
        return new BCryptPasswordEncoder();
    }

    @Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.userDetailsService(customUserDetailsService())
                .passwordEncoder(passwordEncoder());
    }

    // 其他Spring Security配置...
}

现在，你已经成功创建了一个自定义的UserDetailsService，它将在Spring Security进行用户认证时调用。你可以根据需要修改loadUserByUsername方法以实现自己的认证逻辑。