| flower_city/pom.xml | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/Constant.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/interceptor/AuthorizationInterceptor.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/manager/JWTTokenUtil.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/manager/RedisTokenManager.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/manager/TokenConstant.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 | |
| flower_city/src/main/java/com/dg/core/manager/TokenManager.java | ●●●●● 补丁 | 查看 | 原始文档 | blame | 历史 |
flower_city/pom.xml
@@ -133,6 +133,12 @@ </dependency> <dependency> <groupId>io.jsonwebtoken</groupId> <artifactId>jjwt</artifactId> <version>0.9.1</version> </dependency> </dependencies>
@@ -68,4 +68,9 @@ */ public static final String AUTHORIZATION = "Authorization"; /** * 小程序 花城e+token */ public static final String HCAUTHORIZATION = "HCAuthorization"; } flower_city/src/main/java/com/dg/core/interceptor/AuthorizationInterceptor.java
@@ -48,16 +48,47 @@ //从header中得到token String token = request.getHeader(Constant.AUTHORIZATION); if (manager.checkToken(token)) { //如果token验证成功,权限检查通过,将token对应的用户id存在request中,便于之后注入 request.setAttribute(Constant.CURRENT_USER_ID, manager.getUserId(token)); // SysUser ss = IUserService.selectData(manager.getUserId(token)+""); return true; //花城token String HCtoken = request.getHeader(Constant.HCAUTHORIZATION); if(StringUtils.isEmpty(token)) { if(StringUtils.isEmpty(HCtoken)) { String reponse = "{\"result\": 448, \"message\": \"token not is null \"}"; response.setStatus(200); response.setCharacterEncoding(StandardCharsets.UTF_8.toString()); ResponseFacade facade = (ResponseFacade) response; facade.setContentLength(reponse.getBytes(StandardCharsets.UTF_8).length); facade.getWriter().write(reponse); return false; } else { //花城e+ token if (manager.checkHCToken(HCtoken)) { //如果token验证成功,权限检查通过,将token对应的用户id存在request中,便于之后注入 request.setAttribute(Constant.CURRENT_USER_ID, manager.getHCUserId(HCtoken)); // SysUser ss = IUserService.selectData(manager.getHCUserId(HCtoken)+""); return true; } } } else { if (manager.checkToken(token)) { //如果token验证成功,权限检查通过,将token对应的用户id存在request中,便于之后注入 request.setAttribute(Constant.CURRENT_USER_ID, manager.getUserId(token)); // SysUser ss = IUserService.selectData(manager.getUserId(token)+""); return true; } } //如果验证token失败,并且方法或类注明了Authorization,返回401错误 if (method.getAnnotation(Authorization.class) != null || bean.getClass().getAnnotation(Authorization.class) != null) { bean.getClass().getAnnotation(Authorization.class) != null) { String reponse = "{\"result\": 449, \"message\": \"Overdue token\"}"; response.setStatus(200); response.setCharacterEncoding(StandardCharsets.UTF_8.toString()); flower_city/src/main/java/com/dg/core/manager/JWTTokenUtil.java
New file @@ -0,0 +1,170 @@ package com.dg.core.manager; import com.dg.core.db.gen.entity.HuaChengSysUser; import io.jsonwebtoken.Claims; import io.jsonwebtoken.Jwts; import io.jsonwebtoken.SignatureAlgorithm; import org.springframework.stereotype.Component; import java.io.Serializable; import java.util.Date; import java.util.HashMap; import java.util.Map; /** * token验证处理 * * @author ruoyi */ @Component public class JWTTokenUtil implements Serializable { /** * 从数据声明生成令牌 * * @param claims * 数据声明 * @return 令牌 */ private static String generateToken(Map<String, Object> claims) { Date expirationDate = new Date(System.currentTimeMillis() + TokenConstant.EXPIRETIME_LONG * 60 * 1000 * 72); return Jwts.builder().setClaims(claims).setExpiration(expirationDate) .signWith(SignatureAlgorithm.HS512, TokenConstant.SECRET).compact(); } /** * 生成刷新token * * @param claims * tokenbody * @return refreshtoken */ private static String generateTokenRefreshToken(Map<String, Object> claims) { Date expirationDate = new Date(System.currentTimeMillis() + TokenConstant.EXPIRETIME_REFRESH * 60 * 60 * 1000); return Jwts.builder().setClaims(claims).setExpiration(expirationDate) .signWith(SignatureAlgorithm.HS512, TokenConstant.SECRET).compact(); } /** * 从令牌中获取数据声明 * * @param token * 令牌 * @return 数据声明 */ public static Claims getClaimsFromToken(String token) { Claims claims; try { claims = Jwts.parser().setSigningKey(TokenConstant.SECRET).parseClaimsJws(token).getBody(); } catch (Exception e) { claims = null; } return claims; } /** * 生成令牌 * * @param loginUserInfoVO * 用户 * @return 令牌 */ public static String generateToken(HuaChengSysUser loginUserInfoVO) { Map<String, Object> claims = new HashMap<>(2); claims.put("sub", loginUserInfoVO.getUserId()); claims.put("created", new Date()); claims.put("type", loginUserInfoVO.getType()); return generateToken(claims); } /** * 从令牌中获取用户名 * * @param token * 令牌 * @return 用户名 */ public static String getUsernameFromToken(String token) { String username; try { Claims claims = getClaimsFromToken(token); username = claims.getSubject(); } catch (Exception e) { username = null; } return username; } /** * 判断令牌是否过期 * * @param token * 令牌 * @return 是否过期 */ public static Boolean isTokenExpired(String token) { try { Claims claims = getClaimsFromToken(token); Date expiration = claims.getExpiration(); return expiration.before(new Date()); } catch (Exception e) { return true; } } /** * 刷新令牌 * * @param token * 原令牌 * @return 新令牌 */ public static String refreshToken(String token) { String refreshedToken; try { Claims claims = getClaimsFromToken(token); claims.put("created", new Date()); refreshedToken = generateToken(claims); } catch (Exception e) { refreshedToken = null; } return refreshedToken; } /** * 验证令牌 * * @param token * 令牌 * @param loginUserInfoVO * 用户 * @return 是否有效 */ public static Boolean validateToken(String token, HuaChengSysUser loginUserInfoVO) { String username = getUsernameFromToken(token); return (username.equals(loginUserInfoVO.getUserId()) && !isTokenExpired(token)); } public static void main(String[] args) { Claims claims = JWTTokenUtil.getClaimsFromToken( "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOjIsInR5cGUiOjEsImV4cCI6MTYwNjM1NzkzOSwiY3JlYXRlZCI6MTYwNjM1NjEzOTEzN30.zIj31TLHk4B9F45OszrJWfOlhZL5CWviP2RgsFP6LZuci6MlPn0iVbekioP01DRsu59mWd5FMyhd9WLvMtfxMg"); Boolean tokenExpired = JWTTokenUtil.isTokenExpired( "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOjIsInR5cGUiOjEsImV4cCI6MTYwNjM2MDQzNSwiY3JlYXRlZCI6MTYwNjM1ODYzNTI3MX0.7R3SG6hu-sr_KiPpgepubl_1FdaooCNJ0URHWv6Jynr7m8JIar2kUAnhHfWOfHrNILQb5Q-nqxceXdavcuVOXg"); System.out.println(claims); } /** * 生成刷新token * * @param loginUserInfoVO * 登录用户基本信息 * @return refreshtoken */ public static String generateRefeshToken(HuaChengSysUser loginUserInfoVO) { Map<String, Object> claims = new HashMap<>(2); claims.put("sub", loginUserInfoVO.getUserId()); claims.put("created", new Date()); claims.put("type", loginUserInfoVO.getType()); return generateTokenRefreshToken(claims); } } flower_city/src/main/java/com/dg/core/manager/RedisTokenManager.java
@@ -1,12 +1,14 @@ package com.dg.core.manager; import com.dg.core.Constant; import io.jsonwebtoken.Claims; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Qualifier; import org.springframework.data.redis.core.RedisTemplate; import org.springframework.data.redis.core.script.DigestUtils; import org.springframework.data.redis.serializer.JdkSerializationRedisSerializer; import org.springframework.stereotype.Component; import org.springframework.util.ObjectUtils; import java.util.UUID; import java.util.concurrent.TimeUnit; @@ -15,8 +17,8 @@ * 通过Redis存储和验证token的实现类 */ @Component public class RedisTokenManager implements TokenManager { public class RedisTokenManager implements TokenManager { private RedisTemplate<String, String> redis; @Qualifier("redisTemplate") @@ -38,7 +40,6 @@ return token; } public boolean checkToken(String token) { if (token == null) { return false; @@ -53,6 +54,30 @@ } /** * 验证花城token * @param token * @return */ @Override public boolean checkHCToken(String token) { if (token == null) { return false; } // token解析 Claims claims = JWTTokenUtil.getClaimsFromToken(token); if (ObjectUtils.isEmpty(claims)) { return false; } String userId = claims.getSubject(); if (ObjectUtils.isEmpty(userId)) { return false; } return true; } @Override public long getUserId(String token) { if (token == null) { @@ -62,6 +87,29 @@ return Long.parseLong(userId); } /** * 获取花城e+的 UserId * @param token * @return */ @Override public long getHCUserId(String token) { if (token == null) { return -1; } // token解析 Claims claims = JWTTokenUtil.getClaimsFromToken(token); if (ObjectUtils.isEmpty(claims)) { return -1; } String userId = claims.getSubject(); if (ObjectUtils.isEmpty(userId)) { return -1; } return Long.parseLong(userId); } public void deleteToken(String token) { redis.delete(token); } flower_city/src/main/java/com/dg/core/manager/TokenConstant.java
New file @@ -0,0 +1,25 @@ package com.dg.core.manager; /** * @program: springcloud_k8s_panzhihuazhihuishequ * @description: token * @author: huang.hongfa weixin hhf9596 qq 959656820 * @create: 2020-11-24 14:44 **/ public class TokenConstant { public static final String TOKEN_HEADER = "Authorization"; public static final String TOKEN_LOGOUT = "token_logout"; public static final String TOKEN_PRE = "Bearer "; public static final String TOKEN_USERINFO = "token_userinfo"; /** * 30分钟 */ public static final int EXPIRETIME = 300; public static final Long EXPIRETIME_LONG = 300L; public static final String SECRET = "UTivpbn%n9O!KnnL"; /** * 24小时 */ public static final int EXPIRETIME_REFRESH = 24; } flower_city/src/main/java/com/dg/core/manager/TokenManager.java
@@ -17,7 +17,15 @@ */ public boolean checkToken(String token); /** * 检查花城token是否有效 * @param token * @return */ public boolean checkHCToken(String token); public long getUserId(String token); public long getHCUserId(String token); public void deleteToken(String token);
