package com.ruoyi.common.security.service;
|
|
import com.alibaba.fastjson2.JSONObject;
|
import com.ruoyi.common.core.constant.CacheConstants;
|
import com.ruoyi.common.core.constant.SecurityConstants;
|
import com.ruoyi.common.core.exception.GlobalException;
|
import com.ruoyi.common.core.utils.JwtUtils;
|
import com.ruoyi.common.core.utils.ServletUtils;
|
import com.ruoyi.common.core.utils.StringUtils;
|
import com.ruoyi.common.core.utils.ip.IpUtils;
|
import com.ruoyi.common.core.utils.uuid.IdUtils;
|
import com.ruoyi.common.redis.service.RedisService;
|
import com.ruoyi.common.security.utils.SecurityUtils;
|
import com.ruoyi.system.api.model.LoginUser;
|
import com.ruoyi.system.api.model.LoginUserParent;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.stereotype.Component;
|
|
import javax.servlet.http.HttpServletRequest;
|
import java.util.HashMap;
|
import java.util.Map;
|
import java.util.Set;
|
import java.util.concurrent.TimeUnit;
|
|
/**
|
* token验证处理
|
*
|
* @author ruoyi
|
*/
|
@Component
|
public class TokenService {
|
@Autowired
|
private RedisService redisService;
|
|
protected static final long MILLIS_SECOND = 1000;
|
|
protected static final long MILLIS_MINUTE = 60 * MILLIS_SECOND;
|
|
private final static long expireTime = CacheConstants.EXPIRATION;
|
|
private final static String ACCESS_TOKEN = CacheConstants.LOGIN_TOKEN_KEY;
|
|
private final static Long MILLIS_MINUTE_TEN = CacheConstants.REFRESH_TIME * MILLIS_MINUTE;
|
|
/**
|
* 创建令牌
|
*/
|
public Map<String, Object> createToken(LoginUser loginUser) {
|
String token = IdUtils.fastUUID();
|
Long userId = loginUser.getSysUser().getUserId();
|
String userName = loginUser.getSysUser().getUserName();
|
loginUser.setToken(token);
|
loginUser.setUserid(userId);
|
loginUser.setUsername(userName);
|
loginUser.setIpaddr(IpUtils.getIpAddr());
|
refreshToken(loginUser);
|
|
// Jwt存储信息
|
Map<String, Object> claimsMap = new HashMap<String, Object>();
|
claimsMap.put(SecurityConstants.USER_KEY, token);
|
claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId);
|
claimsMap.put(SecurityConstants.DETAILS_USERNAME, userName);
|
|
// 接口返回信息
|
Map<String, Object> rspMap = new HashMap<String, Object>();
|
rspMap.put("access_token", JwtUtils.createToken(claimsMap));
|
rspMap.put("expires_in", expireTime);
|
return rspMap;
|
}
|
|
public Map<String, Object> createToken1(LoginUserParent loginUser) {
|
String token = IdUtils.fastUUID();
|
Integer userId = loginUser.getUserid();
|
String name = loginUser.getName();
|
loginUser.setToken(token);
|
loginUser.setIpaddr(IpUtils.getIpAddr());
|
refreshToken1(loginUser);
|
// Jwt存储信息
|
Map<String, Object> claimsMap = new HashMap<String, Object>();
|
claimsMap.put(SecurityConstants.USER_PARENT_KEY, token);
|
claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId);
|
claimsMap.put(SecurityConstants.DETAILS_USERNAME, name);
|
// 接口返回信息
|
Map<String, Object> rspMap = new HashMap<String, Object>();
|
rspMap.put("access_token", JwtUtils.createToken(claimsMap));
|
rspMap.put("expires_in", expireTime);
|
return rspMap;
|
}
|
|
public Map<String, Object> createTokenStudy(LoginUserParent loginUser) {
|
String token = IdUtils.fastUUID();
|
Integer userId = loginUser.getUserid();
|
String name = loginUser.getName();
|
loginUser.setToken(token);
|
loginUser.setIpaddr(IpUtils.getIpAddr());
|
refreshTokenStudy(loginUser);
|
// Jwt存储信息
|
Map<String, Object> claimsMap = new HashMap<String, Object>(8);
|
claimsMap.put(SecurityConstants.USER_STUDY_KEY, token);
|
claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId);
|
claimsMap.put(SecurityConstants.DETAILS_USERNAME, name);
|
// 接口返回信息
|
Map<String, Object> rspMap = new HashMap<String, Object>();
|
rspMap.put("access_token", JwtUtils.createToken(claimsMap));
|
rspMap.put("expires_in", expireTime);
|
return rspMap;
|
}
|
|
/**
|
* 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUser getLoginUser() {
|
return getLoginUser(ServletUtils.getRequest());
|
}
|
|
/**
|
* 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUser getLoginUser(HttpServletRequest request) {
|
// 获取请求携带的令牌
|
String token = SecurityUtils.getToken(request);
|
return getLoginUser(token);
|
}
|
|
/**
|
* 家长端/学习端获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUser1() {
|
return getLoginUser1(ServletUtils.getRequest());
|
}
|
|
/**
|
* 学习端获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUserStudy() {
|
LoginUserParent userStudy = getLoginUserStudy(ServletUtils.getRequest());
|
if (null == userStudy) {
|
throw new GlobalException("登录失效,请重新登录!");
|
}
|
return userStudy;
|
}
|
|
/**
|
* 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUser1(HttpServletRequest request) {
|
// 获取请求携带的令牌
|
String token = SecurityUtils.getToken(request);
|
return getLoginUser1(token);
|
}
|
|
/**
|
* 学习端获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUserStudy(HttpServletRequest request) {
|
// 获取请求携带的令牌
|
String token = SecurityUtils.getToken(request);
|
return getLoginUserStudy(token);
|
}
|
|
/**
|
* 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUser getLoginUser(String token) {
|
LoginUser user = null;
|
try {
|
if (StringUtils.isNotEmpty(token)) {
|
String userkey = JwtUtils.getUserKey(token);
|
user = redisService.getCacheObject(getTokenKey(userkey));
|
return user;
|
}
|
} catch (Exception e) {
|
}
|
return user;
|
}
|
|
/**
|
* 家长端 学习端 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUser1(String token) {
|
LoginUserParent user = null;
|
try {
|
if (StringUtils.isNotEmpty(token)) {
|
String userkey = JwtUtils.getUserKey1(token);
|
user = redisService.getCacheObject(getTokenKey(userkey));
|
return user;
|
}
|
} catch (Exception e) {
|
e.printStackTrace();
|
}
|
return user;
|
}
|
|
/**
|
* 学习端 获取用户身份信息
|
*
|
* @return 用户信息
|
*/
|
public LoginUserParent getLoginUserStudy(String token) {
|
LoginUserParent user = null;
|
try {
|
if (StringUtils.isNotEmpty(token)) {
|
String userkey = JwtUtils.getUserKeyStudy(token);
|
user = redisService.getCacheObject(getTokenKey(userkey));
|
return user;
|
}
|
} catch (Exception e) {
|
e.printStackTrace();
|
}
|
return user;
|
}
|
|
/**
|
* 设置用户身份信息
|
*/
|
public void setLoginUser(LoginUser loginUser) {
|
if (StringUtils.isNotNull(loginUser) && StringUtils.isNotEmpty(loginUser.getToken())) {
|
refreshToken(loginUser);
|
}
|
}
|
|
/**
|
* 删除用户缓存信息
|
*/
|
public void delLoginUser(String token) {
|
if (StringUtils.isNotEmpty(token)) {
|
String userkey = JwtUtils.getUserKey(token);
|
redisService.deleteObject(getTokenKey(userkey));
|
}
|
}
|
|
/**
|
* 家长端删除用户缓存信息
|
*/
|
public void delLoginUser1(String token) {
|
if (StringUtils.isNotEmpty(token)) {
|
String userkey = JwtUtils.getUserKey1(token);
|
redisService.deleteObject(getTokenKey(userkey));
|
}
|
}
|
|
/**
|
* 验证令牌有效期,相差不足120分钟,自动刷新缓存
|
*
|
* @param loginUser
|
*/
|
public void verifyToken(LoginUser loginUser) {
|
long expireTime = loginUser.getExpireTime();
|
long currentTime = System.currentTimeMillis();
|
if (expireTime - currentTime <= MILLIS_MINUTE_TEN) {
|
refreshToken(loginUser);
|
}
|
}
|
|
/**
|
* 验证令牌有效期,相差不足120分钟,自动刷新缓存
|
*
|
* @param loginUser
|
*/
|
public void verifyToken1(LoginUserParent loginUser) {
|
long expireTime = loginUser.getExpireTime();
|
long currentTime = System.currentTimeMillis();
|
if (expireTime - currentTime <= MILLIS_MINUTE_TEN) {
|
refreshToken1(loginUser);
|
}
|
}
|
|
/**
|
* 验证令牌有效期,相差不足120分钟,自动刷新缓存
|
*/
|
public void verifyTokenStudy(LoginUserParent loginUser) {
|
long expireTime = loginUser.getExpireTime();
|
long currentTime = System.currentTimeMillis();
|
if (expireTime - currentTime <= MILLIS_MINUTE_TEN) {
|
refreshTokenStudy(loginUser);
|
}
|
}
|
|
/**
|
* 刷新令牌有效期
|
*
|
* @param loginUser 登录信息
|
*/
|
public void refreshToken(LoginUser loginUser) {
|
loginUser.setLoginTime(System.currentTimeMillis());
|
loginUser.setExpireTime(loginUser.getLoginTime() + expireTime * MILLIS_MINUTE);
|
// 根据uuid将loginUser缓存
|
String userKey = getTokenKey(loginUser.getToken());
|
redisService.setCacheObject(userKey, loginUser, expireTime, TimeUnit.MINUTES);
|
}
|
|
/**
|
* 家长端用户登录
|
*/
|
public void refreshToken1(LoginUserParent dto) {
|
dto.setLoginTime(System.currentTimeMillis());
|
dto.setExpireTime(dto.getLoginTime() + expireTime * MILLIS_MINUTE);
|
// 根据uuid将loginUser缓存
|
String userKey = getTokenKey(dto.getToken());
|
redisService.setCacheObject(userKey, dto, expireTime, TimeUnit.MINUTES);
|
}
|
|
/**
|
* 学习端用户登录
|
*/
|
public void refreshTokenStudy(LoginUserParent dto) {
|
// 获取所有 login_tokens: 前缀的登录缓存
|
Set redisCache = redisService.getKeysPrefix(ACCESS_TOKEN + "*");
|
for (Object key : redisCache) {
|
String strKey = String.valueOf(key);
|
// 根据 login_tokens:加密token 获取用户登录信息
|
Object redisCacheUserInfo = redisService.getCacheObject(strKey);
|
LoginUserParent redisUserInfo = JSONObject.parseObject(JSONObject.toJSONString(redisCacheUserInfo), LoginUserParent.class);
|
// 单点逻辑
|
if (dto.getPhone().equals(redisUserInfo.getPhone())) {
|
redisService.deleteObject(strKey);
|
}
|
}
|
// 单点登录逻辑
|
dto.setLoginTime(System.currentTimeMillis());
|
dto.setExpireTime(dto.getLoginTime() + expireTime * MILLIS_MINUTE);
|
// 根据uuid将loginUser缓存
|
String userKey = getTokenKey(dto.getToken());
|
redisService.setCacheObject(userKey, dto, expireTime, TimeUnit.MINUTES);
|
}
|
|
private String getTokenKey(String token) {
|
return ACCESS_TOKEN + token;
|
}
|
}
|
