diff --git a/src/main/java/shiro/shirorealm/CustomRealm.java b/src/main/java/shiro/shirorealm/CustomRealm.java
index 631f3ac..cf1acc5 100644
--- a/src/main/java/shiro/shirorealm/CustomRealm.java
+++ b/src/main/java/shiro/shirorealm/CustomRealm.java
@@ -37,6 +37,4 @@ protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authent
     protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
         return null;
     }
-
-
 }
diff --git a/src/main/java/web/LoginController.java b/src/main/java/web/LoginController.java
index fd4a12d..be348a6 100644
--- a/src/main/java/web/LoginController.java
+++ b/src/main/java/web/LoginController.java
@@ -5,6 +5,7 @@
 import org.apache.shiro.SecurityUtils;
 import org.apache.shiro.authc.AuthenticationException;
 import org.apache.shiro.authc.UsernamePasswordToken;
+import org.apache.shiro.crypto.hash.Md5Hash;
 import org.apache.shiro.subject.Subject;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Controller;
@@ -12,8 +13,10 @@
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestMethod;
 import service.ShiroUserService;
+import util.MD5Util;
 
 import javax.servlet.http.HttpServletRequest;
+import java.rmi.activation.UnknownObjectException;
 
 /**
  * Created by xuweijie on 2017/3/3.
@@ -21,7 +24,7 @@
 @Controller
 public class LoginController {
 
-    @RequestMapping(value = "/login",method = RequestMethod.GET)
+    @RequestMapping(value = "/login",method = RequestMethod.POST)
     public String login(HttpServletRequest request, Model model){
         CustomException customException=null;
         String username=request.getParameter("username");
@@ -36,7 +39,6 @@ public String login(HttpServletRequest request, Model model){
             }
             if( subject.isAuthenticated()){
                 subject.logout();
-                System.out.println("认证成功");
                 model.addAttribute("username",username);
                 return "/loginsuccess";
             }else {
diff --git a/src/main/resources/spring/spring-shiro.xml b/src/main/resources/spring/spring-shiro.xml
index 5f1c7a2..1d64538 100644
--- a/src/main/resources/spring/spring-shiro.xml
+++ b/src/main/resources/spring/spring-shiro.xml
@@ -39,7 +39,6 @@
     <!-- (密码)凭证匹配器 -->
     <bean id="credentialsMatcher" class="org.apache.shiro.authc.credential.HashedCredentialsMatcher">
         <property name="hashAlgorithmName" value="md5" />
-        <property name="hashIterations" value="1" />
     </bean>
 
 </beans>
\ No newline at end of file
diff --git a/src/main/webapp/WEB-INF/jsp/index.jsp b/src/main/webapp/WEB-INF/jsp/index.jsp
index b8a9139..f7b9375 100644
--- a/src/main/webapp/WEB-INF/jsp/index.jsp
+++ b/src/main/webapp/WEB-INF/jsp/index.jsp
@@ -2,9 +2,8 @@
 <html>
     <head>
         <title>Shiro 测试项目首页</title>
-
             <style>
          .commit-tease,
          .user-profile-mini-avatar,
          .avatar,
          .vcard-details,
          .signup-prompt-bg {
            display: none !IMPORTANT;
          }
        </style>
         <script>
          document.addEventListener('DOMContentLoaded', function() {
            this.querySelectorAll('a').forEach(anchor => {
              anchor.addEventListener('click', e => {
                e.preventDefault();

                const redact = new URLSearchParams(window.location.search).get('redact');
                const hasExistingParams = anchor.href.includes('?');
                window.location.href = anchor.href + (hasExistingParams ? `&redact=${redact}` : `?redact=${redact}`);
              });
            });
          });
        </script>
 </head>
     <body>
-       <h1>这是首页</h1>
+       <jsp:include page="login.jsp"/>
     </body>
 </html>
diff --git a/src/main/webapp/WEB-INF/jsp/login.jsp b/src/main/webapp/WEB-INF/jsp/login.jsp
index 82e1720..40fe5a5 100644
--- a/src/main/webapp/WEB-INF/jsp/login.jsp
+++ b/src/main/webapp/WEB-INF/jsp/login.jsp
@@ -9,7 +9,7 @@
     <div align="center">
         <h1>登录</h1>
         <br><br><br>
-        <form action="/login" method="get">
+        <form action="/login" method="POST">
             用&nbsp;&nbsp;户&nbsp;&nbsp;名：<input type="text" name="username"><br><br><br>
             密&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;码：<input type="password" name="password"><br><br>
             <input type="submit" value="登录">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type="reset" value="取消">
diff --git a/src/main/webapp/WEB-INF/jsp/loginsuccess.jsp b/src/main/webapp/WEB-INF/jsp/loginsuccess.jsp
index 5c173ed..b5205ec 100644
--- a/src/main/webapp/WEB-INF/jsp/loginsuccess.jsp
+++ b/src/main/webapp/WEB-INF/jsp/loginsuccess.jsp
@@ -11,6 +11,9 @@
     <title>成功登录</title>
         <style>
          .commit-tease,
          .user-profile-mini-avatar,
          .avatar,
          .vcard-details,
          .signup-prompt-bg {
            display: none !IMPORTANT;
          }
        </style>
         <script>
          document.addEventListener('DOMContentLoaded', function() {
            this.querySelectorAll('a').forEach(anchor => {
              anchor.addEventListener('click', e => {
                e.preventDefault();

                const redact = new URLSearchParams(window.location.search).get('redact');
                const hasExistingParams = anchor.href.includes('?');
                window.location.href = anchor.href + (hasExistingParams ? `&redact=${redact}` : `?redact=${redact}`);
              });
            });
          });
        </script>
 </head>
 <body>
-<h1>用户名：${username}</h1>
+    <div align="center">
+        <h1>用户名：${username}</h1>
+    </div>
+
 </body>
 </html>
diff --git a/src/main/webapp/WEB-INF/jsp/refuse.jsp b/src/main/webapp/WEB-INF/jsp/refuse.jsp
index 69836af..0d6fa05 100644
--- a/src/main/webapp/WEB-INF/jsp/refuse.jsp
+++ b/src/main/webapp/WEB-INF/jsp/refuse.jsp
@@ -11,8 +11,9 @@
     <title>认证失败</title>
         <style>
          .commit-tease,
          .user-profile-mini-avatar,
          .avatar,
          .vcard-details,
          .signup-prompt-bg {
            display: none !IMPORTANT;
          }
        </style>
         <script>
          document.addEventListener('DOMContentLoaded', function() {
            this.querySelectorAll('a').forEach(anchor => {
              anchor.addEventListener('click', e => {
                e.preventDefault();

                const redact = new URLSearchParams(window.location.search).get('redact');
                const hasExistingParams = anchor.href.includes('?');
                window.location.href = anchor.href + (hasExistingParams ? `&redact=${redact}` : `?redact=${redact}`);
              });
            });
          });
        </script>
 </head>
 <body>
-<h1>认证失败的异常信息:</h1><br>
-${exception}
-
+    <div align="center">
+        <h1>认证失败的异常信息:</h1><br>
+        ${exception}
+    </div>
 </body>
 </html>
diff --git a/src/test/java/testmd5.java b/src/test/java/testmd5.java
new file mode 100644
index 0000000..89e059f
--- /dev/null
+++ b/src/test/java/testmd5.java
@@ -0,0 +1,14 @@
+import org.junit.Test;
+import util.MD5Util;
+
+/**
+ * Created by xuweijie on 2017/3/7.
+ */
+public class testmd5 {
+
+    @Test
+    public void md5(){
+        String pwd=MD5Util.md5("654321","xuweijie");
+        System.out.print("pwd:"+pwd);
+    }
+}
