福伴出行
blame | 历史 | 原始文档
puzhibing
2023-08-01 98bc380ae322eaac2ee7e21d0c565e30eacce2b5 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172

package com.stylefeng.guns.modular.system.controller.system;


 


import com.google.code.kaptcha.Constants;


import com.stylefeng.guns.core.base.controller.BaseController;


import com.stylefeng.guns.core.common.exception.InvalidKaptchaException;


import com.stylefeng.guns.core.log.LogManager;


import com.stylefeng.guns.core.log.factory.LogTaskFactory;


import com.stylefeng.guns.core.node.MenuNode;


import com.stylefeng.guns.core.shiro.ShiroKit;


import com.stylefeng.guns.core.shiro.ShiroUser;


import com.stylefeng.guns.core.util.ApiMenuFilter;


import com.stylefeng.guns.core.util.KaptchaUtil;


import com.stylefeng.guns.core.util.SinataUtil;


import com.stylefeng.guns.core.util.ToolUtil;


import com.stylefeng.guns.modular.system.model.User;


import com.stylefeng.guns.modular.system.service.IMenuService;


import com.stylefeng.guns.modular.system.service.IUserService;


import com.stylefeng.guns.modular.system.util.AESUtils;


import org.apache.shiro.authc.UsernamePasswordToken;


import org.apache.shiro.subject.Subject;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.stereotype.Controller;


import org.springframework.ui.Model;


import org.springframework.web.bind.annotation.RequestMapping;


import org.springframework.web.bind.annotation.RequestMethod;


 


import java.util.HashMap;


import java.util.List;


import java.util.Map;


 


import static com.stylefeng.guns.core.support.HttpKit.getIp;


 


/**


 * 登录控制器


 *


 * @author fengshuonan


 * @Date 2017年1月10日 下午8:25:24


 */


@Controller


public class LoginController extends BaseController {


 


    @Autowired


    private IMenuService menuService;


 


    @Autowired


    private IUserService userService;


 


    private Map<String, Long> loginTime = new HashMap<>();


 


    private Map<String, Integer> loginFailures = new HashMap<>();


 


 


 


    /**


     * 跳转到主页


     */


    @RequestMapping(value = "/", method = RequestMethod.GET)


    public String index(Model model) {


        //获取菜单列表


        List<Integer> roleList = ShiroKit.getUser().getRoleList();


        if (roleList == null || roleList.size() == 0) {


            ShiroKit.getSubject().logout();


            model.addAttribute("tips", "该用户没有角色,无法登陆");


            return "/login.html";


        }


        List<MenuNode> menus = menuService.getMenusByRoleIds(roleList);


        List<MenuNode> titles = MenuNode.buildTitle(menus);


        titles = ApiMenuFilter.build(titles);


 


 


        Integer id = ShiroKit.getUser().getId();


        User user = userService.selectById(id);


        if (SinataUtil.isEmpty(user)){


            ShiroKit.getSubject().logout();


            model.addAttribute("tips", "请重新登录");


            return "/login.html";


        }


        //设置上级ID


        if (SinataUtil.isNotEmpty(user.getObjectId())){


            ShiroKit.getUser().setObjectId(user.getObjectId());


        }


        //设置角色


        ShiroKit.getUser().setRoleType(user.getRoleType());


 


        model.addAttribute("titles", titles);


 


        //获取用户头像


        String avatar = user.getAvatar();


        model.addAttribute("avatar", avatar);


        model.addAttribute("userName", user.getName());


        model.addAttribute("type", 0);


        model.addAttribute("passwordHint",


                null == user.getPassWordUpdate()


                        || user.getPassWordUpdate().getTime() + 7776000000L <= System.currentTimeMillis()


                        ? "您的密码已经90天未更换了,请及时更换密码!!!" : "");


        return "/index.html";


    }


 


    /**


     * 跳转到登录页面


     */


    @RequestMapping(value = "/login", method = RequestMethod.GET)


    public String login() {


        if (ShiroKit.isAuthenticated() || ShiroKit.getUser() != null) {


            return REDIRECT + "/";


        } else {


            return "/login.html";


        }


    }


 


    /**


     * 点击登录执行的动作


     */


    @RequestMapping(value = "/login", method = RequestMethod.POST)


    public String loginVali(String username, String password, String remember, Model model) {


        Integer f = loginFailures.get(username);


        f = f == null ? 0 : f;


        Long t = loginTime.get(username);


        t = null == t ? 0 : t;


        if(System.currentTimeMillis() - t > (30 * 60 * 1000)){


            loginFailures.put(username, f = 1);


            loginTime.put(username, System.currentTimeMillis());


        }else{


            f++;


            loginFailures.put(username, f);


        }


 


        if(f > 5 && (System.currentTimeMillis() - t) <= (30 * 60 * 1000)){


            model.addAttribute("tips", "登录次数过多,请等30分钟再试!");


            return "/login.html";


        }


        //验证验证码是否正确


        if (KaptchaUtil.getKaptchaOnOff()) {


            String kaptcha = super.getPara("kaptcha").trim();


            String code = (String) super.getSession().getAttribute(Constants.KAPTCHA_SESSION_KEY);


            if (ToolUtil.isEmpty(kaptcha) || !kaptcha.equalsIgnoreCase(code)) {


                throw new InvalidKaptchaException();


            }


        }


        password = AESUtils.decrypt(password);


        Subject currentUser = ShiroKit.getSubject();


        UsernamePasswordToken token = new UsernamePasswordToken(username, password.toCharArray());


 


        if ("on".equals(remember)) {


            token.setRememberMe(true);


        } else {


            token.setRememberMe(false);


        }


 


        currentUser.login(token);


 


        ShiroUser shiroUser = ShiroKit.getUser();


        super.getSession().setAttribute("shiroUser", shiroUser);


        super.getSession().setAttribute("username", shiroUser.getAccount());


 


        LogManager.me().executeLog(LogTaskFactory.loginLog(shiroUser.getId(), getIp()));


 


        ShiroKit.getSession().setAttribute("sessionFlag", true);


        return REDIRECT + "/";


    }


 


    /**


     * 退出登录


     */


    @RequestMapping(value = "/logout", method = RequestMethod.GET)


    public String logOut() {


        LogManager.me().executeLog(LogTaskFactory.exitLog(ShiroKit.getUser().getId(), getIp()));


        ShiroKit.getSubject().logout();


        deleteAllCookie();


        return REDIRECT + "/login";


    }


}