package com.ruoyi.common.security.utils;
|
|
import com.ruoyi.common.core.constant.SecurityConstants;
|
import com.ruoyi.common.core.constant.TokenConstants;
|
import com.ruoyi.common.core.context.SecurityContextHolder;
|
import com.ruoyi.common.core.exception.auth.NotLoginException;
|
import com.ruoyi.common.core.utils.ServletUtils;
|
import com.ruoyi.common.core.utils.StringUtils;
|
import com.ruoyi.system.api.model.LoginUser;
|
import javax.servlet.http.HttpServletRequest;
|
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
|
|
/**
|
* 权限获取工具类
|
*
|
* @author ruoyi
|
*/
|
public class SecurityUtils
|
{
|
/**
|
* 获取用户ID
|
*/
|
public static Long getUserId()
|
{
|
return SecurityContextHolder.getUserId();
|
}
|
|
/**
|
* 获取用户名称
|
*/
|
public static String getUsername()
|
{
|
return SecurityContextHolder.getUserName();
|
}
|
|
/**
|
* 获取用户key
|
*/
|
public static String getUserKey()
|
{
|
return SecurityContextHolder.getUserKey();
|
}
|
|
/**
|
* 获取登录用户信息
|
*/
|
public static LoginUser getLoginUser()
|
{
|
return SecurityContextHolder.get(SecurityConstants.LOGIN_USER, LoginUser.class);
|
}
|
|
/**
|
* 获取请求token
|
*/
|
public static String getToken()
|
{
|
return getToken(ServletUtils.getRequest());
|
}
|
|
/**
|
* 根据request获取请求token
|
*/
|
public static String getToken(HttpServletRequest request)
|
{
|
// 从header获取token标识
|
String token = request.getHeader(TokenConstants.AUTHENTICATION);
|
if (StringUtils.isBlank(token)) {
|
// 如果Authorization为空,那么尝试读取Sec-Websocket-Protocol的内容
|
token = request.getHeader("Sec-Websocket-Protocol");
|
}
|
return replaceTokenPrefix(token);
|
}
|
|
/**
|
* 判断用户是否登录
|
*/
|
public static boolean isLogin()
|
{
|
|
String token = SecurityUtils.getToken();
|
if (token == null)
|
{
|
return false;
|
}
|
LoginUser loginUser = SecurityUtils.getLoginUser();
|
return loginUser != null;
|
}
|
|
/**
|
* 裁剪token前缀
|
*/
|
public static String replaceTokenPrefix(String token)
|
{
|
// 如果前端设置了令牌前缀,则裁剪掉前缀
|
if (StringUtils.isNotEmpty(token) && token.startsWith(TokenConstants.PREFIX))
|
{
|
token = token.replaceFirst(TokenConstants.PREFIX, "");
|
}
|
return token;
|
}
|
|
/**
|
* 是否为管理员
|
*
|
* @param userId 用户ID
|
* @return 结果
|
*/
|
public static boolean isAdmin(Long userId)
|
{
|
return userId != null && 1L == userId;
|
}
|
|
/**
|
* 生成BCryptPasswordEncoder密码
|
*
|
* @param password 密码
|
* @return 加密字符串
|
*/
|
public static String encryptPassword(String password)
|
{
|
BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
|
return passwordEncoder.encode(password);
|
}
|
|
/**
|
* 判断密码是否相同
|
*
|
* @param rawPassword 真实密码
|
* @param encodedPassword 加密后字符
|
* @return 结果
|
*/
|
public static boolean matchesPassword(String rawPassword, String encodedPassword)
|
{
|
BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
|
return passwordEncoder.matches(rawPassword, encodedPassword);
|
}
|
}
|
