| package com.ruoyi.common.security.service; | 
|   | 
| import com.ruoyi.common.core.constant.CacheConstants; | 
| import com.ruoyi.common.core.constant.Constants; | 
| import com.ruoyi.common.core.constant.SecurityConstants; | 
| import com.ruoyi.common.core.utils.JwtUtils; | 
| import com.ruoyi.common.core.utils.ServletUtils; | 
| import com.ruoyi.common.core.utils.StringUtils; | 
| import com.ruoyi.common.core.utils.ip.IpUtils; | 
| import com.ruoyi.common.core.utils.uuid.IdUtils; | 
| import com.ruoyi.common.redis.service.RedisService; | 
| import com.ruoyi.common.security.utils.SecurityUtils; | 
| import com.ruoyi.system.api.model.AppMiniLoginVo; | 
| import com.ruoyi.system.api.model.LoginUser; | 
| import com.ruoyi.system.api.model.OauthUserVo; | 
| import com.ruoyi.system.api.model.QwH5LoginVo; | 
| import org.springframework.beans.factory.annotation.Autowired; | 
| import org.springframework.stereotype.Component; | 
|   | 
| import javax.servlet.http.HttpServletRequest; | 
| import java.util.HashMap; | 
| import java.util.Map; | 
| import java.util.concurrent.TimeUnit; | 
|   | 
| /** | 
|  * token验证处理 | 
|  * | 
|  * @author jqs | 
|  */ | 
| @Component | 
| public class TokenService | 
| { | 
|     @Autowired | 
|     private RedisService redisService; | 
|   | 
|     protected static final long MILLIS_SECOND = 1000; | 
|   | 
|     protected static final long MILLIS_MINUTE = 60 * MILLIS_SECOND; | 
|   | 
|     private final static long EXPIRE_TIME = CacheConstants.EXPIRATION; | 
|   | 
|     private final static String ACCESS_TOKEN = CacheConstants.LOGIN_TOKEN_KEY; | 
|   | 
|     private final static Long MILLIS_MINUTE_TEN = CacheConstants.REFRESH_TIME * MILLIS_MINUTE; | 
|   | 
|     /** | 
|      * 创建令牌 | 
|      */ | 
|     public Map<String, Object> createToken(LoginUser loginUser) | 
|     { | 
|         String token = IdUtils.fastUUID(); | 
|         Long userId = loginUser.getSysUser().getUserId(); | 
|         String userName = loginUser.getSysUser().getUserName(); | 
|         loginUser.setToken(token); | 
|         loginUser.setUserid(userId); | 
|         loginUser.setUsername(userName); | 
|         loginUser.setIpaddr(IpUtils.getIpAddr()); | 
|         refreshToken(loginUser); | 
|   | 
|         // Jwt存储信息 | 
|         Map<String, Object> claimsMap = new HashMap<>(); | 
|         claimsMap.put(SecurityConstants.USER_KEY, token); | 
|         claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId); | 
|         claimsMap.put(SecurityConstants.DETAILS_USERNAME, userName); | 
|         claimsMap.put(SecurityConstants.LOGIN_FROM, Constants.FROM_STAFF); | 
|         // 接口返回信息 | 
|         Map<String, Object> rspMap = new HashMap<String, Object>(); | 
|         rspMap.put("access_token", JwtUtils.createToken(claimsMap)); | 
|         rspMap.put("expires_in", EXPIRE_TIME); | 
|         return rspMap; | 
|     } | 
|   | 
|     /** | 
|      * 创建小程序令牌 | 
|      */ | 
|     public Map<String, Object> createMiniToken(AppMiniLoginVo appMiniLoginVo) | 
|     { | 
|         LoginUser loginUser = new LoginUser(); | 
|         // Jwt存储信息 | 
|         Map<String, Object> claimsMap = new HashMap<String, Object>(); | 
|         // 接口返回信息 | 
|         Map<String, Object> rspMap = new HashMap<String, Object>(); | 
|         //用户为空只返回openid | 
|         rspMap.put("mobile",""); | 
|         rspMap.put("access_token", ""); | 
|         if(appMiniLoginVo.getSysUser()!=null){ | 
|             loginUser.setSysUser(appMiniLoginVo.getSysUser()); | 
|             String token = IdUtils.fastUUID(); | 
|             Long userId = loginUser.getSysUser().getUserId(); | 
|             String userName = loginUser.getSysUser().getUserName(); | 
|             loginUser.setToken(token); | 
|             loginUser.setUserid(userId); | 
|             loginUser.setUsername(userName); | 
|             loginUser.setIpaddr(IpUtils.getIpAddr()); | 
|             refreshToken(loginUser); | 
|             claimsMap.put(SecurityConstants.USER_KEY, token); | 
|             claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId); | 
|             claimsMap.put(SecurityConstants.DETAILS_USERNAME, userName); | 
|             claimsMap.put(SecurityConstants.LOGIN_FROM, Constants.FROM_MINI_APP); | 
|             if(StringUtils.isNotBlank(appMiniLoginVo.getMobile())){ | 
|                 rspMap.put("mobile",appMiniLoginVo.getMobile() ); | 
|             }else{ | 
|                 rspMap.put("mobile",""); | 
|             } | 
|             rspMap.put("access_token", JwtUtils.createToken(claimsMap)); | 
|             rspMap.put("expires_in", EXPIRE_TIME); | 
|         } | 
|         rspMap.put("wx_unionid", appMiniLoginVo.getWxUnionid()); | 
|         rspMap.put("mini_openid", appMiniLoginVo.getMiniOpenid()); | 
|         return rspMap; | 
|     } | 
|   | 
|     /** | 
|      * 创建企业微信令牌 | 
|      */ | 
|     public OauthUserVo createQwH5Token(QwH5LoginVo qwH5LoginVo) | 
|     { | 
|         LoginUser loginUser = new LoginUser(); | 
|         loginUser.setSysUser(qwH5LoginVo.getSysUser()); | 
|         String token = IdUtils.fastUUID(); | 
|         Long userId = loginUser.getSysUser().getUserId(); | 
|         String userName = loginUser.getSysUser().getUserName(); | 
|         loginUser.setToken(token); | 
|         loginUser.setUserid(userId); | 
|         loginUser.setUsername(userName); | 
|         loginUser.setIpaddr(IpUtils.getIpAddr()); | 
|         refreshToken(loginUser); | 
|      | 
|         // Jwt存储信息 | 
|         Map<String, Object> claimsMap = new HashMap<String, Object>(); | 
|         claimsMap.put(SecurityConstants.USER_KEY, token); | 
|         claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId); | 
|         claimsMap.put(SecurityConstants.DETAILS_USERNAME, userName); | 
|         claimsMap.put(SecurityConstants.LOGIN_FROM, Constants.FROM_SHOP); | 
|         // 接口返回信息 | 
|         OauthUserVo oauthUserVo = new OauthUserVo(); | 
|         oauthUserVo.setShopId(qwH5LoginVo.getShopId()); | 
|         oauthUserVo.setShopNum(qwH5LoginVo.getShopNum()); | 
|         oauthUserVo.setShopName(qwH5LoginVo.getShopName()); | 
|         oauthUserVo.setToken(JwtUtils.createToken(claimsMap)); | 
|         oauthUserVo.setExpiresIn(EXPIRE_TIME); | 
|         oauthUserVo.setUserid(qwH5LoginVo.getUserid()); | 
|         oauthUserVo.setMobile(qwH5LoginVo.getMobile()); | 
|         return oauthUserVo; | 
|     } | 
|   | 
|     /** | 
|      * 获取用户身份信息 | 
|      * | 
|      * @return 用户信息 | 
|      */ | 
|     public LoginUser getLoginUser() | 
|     { | 
|         return getLoginUser(ServletUtils.getRequest()); | 
|     } | 
|   | 
|     /** | 
|      * 获取用户身份信息 | 
|      * | 
|      * @return 用户信息 | 
|      */ | 
|     public LoginUser getLoginUser(HttpServletRequest request) | 
|     { | 
|         // 获取请求携带的令牌 | 
|         String token = SecurityUtils.getToken(request); | 
|         return getLoginUser(token); | 
|     } | 
|   | 
|     /** | 
|      * 获取用户身份信息 | 
|      * | 
|      * @return 用户信息 | 
|      */ | 
|     public LoginUser getLoginUser(String token) | 
|     { | 
|         LoginUser user = null; | 
|         try | 
|         { | 
|             if (StringUtils.isNotEmpty(token)) | 
|             { | 
|                 String userkey = JwtUtils.getUserKey(token); | 
|                 user = redisService.getCacheObject(getTokenKey(userkey)); | 
|                 return user; | 
|             } | 
|         } | 
|         catch (Exception e) | 
|         { | 
|         } | 
|         return user; | 
|     } | 
|   | 
|     /** | 
|      * 设置用户身份信息 | 
|      */ | 
|     public void setLoginUser(LoginUser loginUser) | 
|     { | 
|         if (StringUtils.isNotNull(loginUser) && StringUtils.isNotEmpty(loginUser.getToken())) | 
|         { | 
|             refreshToken(loginUser); | 
|         } | 
|     } | 
|   | 
|     /** | 
|      * 删除用户缓存信息 | 
|      */ | 
|     public void delLoginUser(String token) | 
|     { | 
|         if (StringUtils.isNotEmpty(token)) | 
|         { | 
|             String userkey = JwtUtils.getUserKey(token); | 
|             redisService.deleteObject(getTokenKey(userkey)); | 
|         } | 
|     } | 
|   | 
|     /** | 
|      * 验证令牌有效期,相差不足120分钟,自动刷新缓存 | 
|      * | 
|      * @param loginUser | 
|      */ | 
|     public void verifyToken(LoginUser loginUser) | 
|     { | 
|         long expireTime = loginUser.getExpireTime(); | 
|         long currentTime = System.currentTimeMillis(); | 
|         if (expireTime - currentTime <= MILLIS_MINUTE_TEN) | 
|         { | 
|             refreshToken(loginUser); | 
|         } | 
|     } | 
|   | 
|     /** | 
|      * 刷新令牌有效期 | 
|      * | 
|      * @param loginUser 登录信息 | 
|      */ | 
|     public void refreshToken(LoginUser loginUser) | 
|     { | 
|         loginUser.setLoginTime(System.currentTimeMillis()); | 
|         loginUser.setExpireTime(loginUser.getLoginTime() + EXPIRE_TIME * MILLIS_MINUTE); | 
|         // 根据uuid将loginUser缓存 | 
|         String userKey = getTokenKey(loginUser.getToken()); | 
|         redisService.setCacheObject(userKey, loginUser, EXPIRE_TIME, TimeUnit.MINUTES); | 
|     } | 
|   | 
|     private String getTokenKey(String token) | 
|     { | 
|         return ACCESS_TOKEN + token; | 
|     } | 
| } |