spring boot shiro 每次登陆都会报这个错,但不影响功能是什么原因?

何大首乌 2018-05-21 04:38:27
spring boot 使用shiro做登陆认证,密码在注册的时候用MD5加密过,登陆的时候用同样方式解密,报出这个错,不影响功能,想请各位大神帮忙看下是什么原因,感谢
2018-05-21 16:29:38.527 WARN   http-nio-80-exec-3 org.apache.shiro.mgt.DefaultSecurityManager Delegate RememberMeManager instance of type [org.apache.shiro.web.mgt.CookieRememberMeManager] threw an exception during getRememberedPrincipals().

org.apache.shiro.crypto.CryptoException: Unable to execute 'doFinal' with cipher instance [javax.crypto.Cipher@4d7aae15].

	at org.apache.shiro.crypto.JcaCipherService.crypt(JcaCipherService.java:462)

	at org.apache.shiro.crypto.JcaCipherService.crypt(JcaCipherService.java:445)

	at org.apache.shiro.crypto.JcaCipherService.decrypt(JcaCipherService.java:390)

	at org.apache.shiro.crypto.JcaCipherService.decrypt(JcaCipherService.java:382)

	at org.apache.shiro.mgt.AbstractRememberMeManager.decrypt(AbstractRememberMeManager.java:482)

	at org.apache.shiro.mgt.AbstractRememberMeManager.convertBytesToPrincipals(AbstractRememberMeManager.java:419)

	at org.apache.shiro.mgt.AbstractRememberMeManager.getRememberedPrincipals(AbstractRememberMeManager.java:386)

	at org.apache.shiro.mgt.DefaultSecurityManager.getRememberedIdentity(DefaultSecurityManager.java:612)

	at org.apache.shiro.mgt.DefaultSecurityManager.resolvePrincipals(DefaultSecurityManager.java:500)

	at org.apache.shiro.mgt.DefaultSecurityManager.createSubject(DefaultSecurityManager.java:346)

	at org.apache.shiro.subject.Subject$Builder.buildSubject(Subject.java:845)

	at org.apache.shiro.web.subject.WebSubject$Builder.buildWebSubject(WebSubject.java:148)

	at org.apache.shiro.web.servlet.AbstractShiroFilter.createSubject(AbstractShiroFilter.java:292)

	at org.apache.shiro.web.servlet.AbstractShiroFilter.doFilterInternal(AbstractShiroFilter.java:359)

	at org.apache.shiro.web.servlet.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:125)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at com.alibaba.druid.support.http.WebStatFilter.doFilter(WebStatFilter.java:123)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at com.boot.util.json.RequestResponseContextHolderFilter.doFilter(RequestResponseContextHolderFilter.java:22)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:99)

	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.springframework.web.filter.HttpPutFormContentFilter.doFilterInternal(HttpPutFormContentFilter.java:109)

	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.springframework.web.filter.HiddenHttpMethodFilter.doFilterInternal(HiddenHttpMethodFilter.java:81)

	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:117)

	at org.springframework.boot.web.servlet.support.ErrorPageFilter.access$000(ErrorPageFilter.java:61)

	at org.springframework.boot.web.servlet.support.ErrorPageFilter$1.doFilterInternal(ErrorPageFilter.java:92)

	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)

	at org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:110)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:200)

	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)

	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)

	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)

	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)

	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)

	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)

	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)

	at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:651)

	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)

	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342)

	at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:409)

	at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)

	at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:754)

	at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1376)

	at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)

	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)

	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)

	at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)

	at java.lang.Thread.run(Thread.java:748)

Caused by: javax.crypto.BadPaddingException: Given final block not properly padded

	at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:989)

	at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:845)

	at com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)

	at javax.crypto.Cipher.doFinal(Cipher.java:2165)

	at org.apache.shiro.crypto.JcaCipherService.crypt(JcaCipherService.java:459)

	... 61 common frames omitted


 @RequestMapping(value="/loginToJson", method= RequestMethod.POST, produces = "application/json; charset=utf-8")

    @ResponseBody

    public void loginToJson(HttpServletRequest request, String userName, String password){

        try {

            String md5 = MD5Util.md5(password, "wu123");

            UsernamePasswordToken token = new UsernamePasswordToken(userName, md5);

            token.setRememberMe(true);

            System.out.println("为了验证登录用户而封装的token为" + ReflectionToStringBuilder.toString(token, ToStringStyle.MULTI_LINE_STYLE));

            //获取当前的Subject

            Subject currentUser = SecurityUtils.getSubject();

            try {





    //认证.登录

    @Override

    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {

        UsernamePasswordToken utoken=(UsernamePasswordToken) token;

        String username = utoken.getUsername();

        User user = userService.findByUserName(username);

        Integer id = user.getId();

        setSession("userId",id);

        return new SimpleAuthenticationInfo(user, user.getPassword(),this.getClass().getName());

    }





    //授权

    @Override

    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principal) {

        User user=(User) principal.fromRealm(this.getClass().getName()).iterator().next();

        List<String> permissions=new ArrayList<>();

        List<String> roless=new ArrayList<>();

        Set<Role> roles = user.getRoles();

        if(roles.size()>0) {

            for(Role role : roles) {

                roless.add(role.getRname());

                Set<Module> modules = role.getModules();

                if(modules.size()>0) {

                    for(Module module : modules) {

                        permissions.add(module.getMname());

                    }

                }

            }

        }

        SimpleAuthorizationInfo info=new SimpleAuthorizationInfo();

        info.addRoles(roless); //将角色放入shiro中

        info.addStringPermissions(permissions);//将权限放入shiro中.

        return info;

    }
...全文
899 1 打赏 收藏 转发到动态 举报
写回复
用AI写文章
1 条回复
切换为时间正序
请发表友善的回复…
发表回复
ALan发 2018-05-22
  • 打赏
  • 举报
 回复
在用DES加密的时候,最后一位长度不足64的,它会自动填补到64,那么在我们进行字节数组到字串的转化过程中,可以把它填补的不可见字符改变了,所以引发系统抛出异常。
spring boot+shiro+mybatis+pagehelper+mapper+jwt,swagger2前后端分离restful框架
前后端分离之后台架构,供各位参考...Spring boot shiro权限管理 Ehcache缓存框架,可以改成redis Mybatis+PageHelper+通用mapper JWT前后端token验证 Swagger2 api生成工具 已经实现了用户、权限、组织等代码的实现
spring boot+jpa+cas+shiro
一个用spring boot+jpa+cas+shiro+freemarker做的完整demo。
SpringBootShiro整合-权限管理实战视频及源码
Spring一直是很火的一个开源框架,在过去的一段时间里,Spring Boot在社区中热度一直很高,所以传智播客经常开课讲一讲这方面的知识点,为热爱编程技术的网友提前做好知识储备。 课程介绍: Spring Boot设计目的是...
springboot整合shiro、redis、druid 源码下载
spring-boot项目整合shiro权限框架,实现了登录认证、权限认证、密码加密、rememberMe、验证码、登录次数过多限制功能 整合redis,使用缓存注解,不用每次都查询数据库 整合druid,页面上监控sql语句的执行情况 git项目...
spring boot shiro视频
à Spring Boot实战篇之Shiro http://study.163.com/course/introduction.htm?courseId=1004523002     ==================================================== Spring Boot Shiro 视频实战篇 ==============
Java EE

67,513

社区成员

225,880

社区内容

发帖
与我相关
我的任务
社区描述
J2EE只是Java企业应用。我们需要一个跨J2SE/WEB/EJB的微容器,保护我们的业务核心组件(中间件),以延续它的生命力,而不是依赖J2SE/J2EE版本。
社区管理员
  • Java EE
加入社区
  • 近7日
  • 近30日
  • 至今

加载中

查看更多榜单
社区公告
暂无公告

试试用AI创作助手写篇文章吧

+ 用AI写文章