使用 Hibernate 进行用户身份验证

发布于 2024-12-14 05:09:37 字数 593 浏览 2 评论 0原文

我是冬眠新手。我想用 java 和 hibernate 构建一个简单的身份验证/登录系统。

假设我有一个 User 类，

public class User {

private int id;
private String username;
private String passwordHash;
...
}

现在我有一个 DAO 来存储新用户，并获取所有用户（作为列表）。现在我想知道，是否有可能获得没有passwordHash字段的用户列表（出于安全原因）？

如果是配置问题就好了。

另一个想法是将 User 类拆分为

public class User {

private int id;
private String username;
...
}


public class UserWithPassword extends User {

private String passwordHash;
...
}

所以我可以使用 UserWithPassword 将新用户存储到数据库中并使用 User 类查询所有用户列表（无密码）。

还有其他建议吗？

原文

im new in hibernate.
I would like to build a simple autentication / login system in java with hibernate.

So let's say, i have a class User

public class User {

private int id;
private String username;
private String passwordHash;
...
}

Now i have a DAO to store a new User, and to get all users (as a list). Now im wondering, if its possible to get a list of users without the passwordHash field (for security reason)?

It would be nice if it was a question of configuration.

An other idea would be to split the User class into

public class User {

private int id;
private String username;
...
}


public class UserWithPassword extends User {

private String passwordHash;
...
}

So i could use UserWithPassword to store a new user into the database and use
the User class to query the list of all users (without password).

Any other suggestion?

分享到QQ

分享到微博