blame | history | raw
xin
2025-06-04 eec809f1217008b609b642faaf4f8f5d16aa41a4 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157

package com.oying.modules.security.rest;


 


import cn.hutool.core.util.IdUtil;


import com.oying.modules.security.config.CaptchaConfig;


import com.oying.modules.security.config.LoginProperties;


import com.oying.modules.security.config.SecurityProperties;


import com.oying.modules.security.config.enums.LoginCodeEnum;


import com.oying.modules.security.security.TokenProvider;


import com.oying.modules.security.service.OnlineUserService;


import com.oying.modules.security.service.UserDetailsServiceImpl;


import com.oying.modules.security.service.dto.AuthUserDto;


import com.oying.modules.security.service.dto.JwtUserDto;


import com.oying.utils.*;


import com.wf.captcha.base.Captcha;


import io.swagger.annotations.Api;


import io.swagger.annotations.ApiOperation;


import lombok.RequiredArgsConstructor;


import lombok.extern.slf4j.Slf4j;


import com.oying.annotation.Log;


import com.oying.annotation.rest.AnonymousDeleteMapping;


import com.oying.annotation.rest.AnonymousGetMapping;


import com.oying.annotation.rest.AnonymousPostMapping;


import com.oying.config.properties.RsaProperties;


import com.oying.exception.BadRequestException;


import org.springframework.http.HttpStatus;


import org.springframework.http.ResponseEntity;


import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;


import org.springframework.security.core.Authentication;


import org.springframework.security.core.context.SecurityContextHolder;


import org.springframework.security.core.userdetails.UserDetails;


import org.springframework.security.crypto.password.PasswordEncoder;


import org.springframework.validation.annotation.Validated;


import org.springframework.web.bind.annotation.*;


 


import javax.servlet.http.HttpServletRequest;


import java.util.HashMap;


import java.util.Map;


import java.util.concurrent.TimeUnit;


 


/**


 * @author Z


 * @date 2018-11-23


 * 授权、根据token获取用户详细信息


 */


@Slf4j


@RestController


@RequestMapping("/auth")


@RequiredArgsConstructor


@Api(tags = "系统:系统授权接口")


public class AuthController {


 


    private final SecurityProperties properties;


    private final RedisUtils redisUtils;


    private final OnlineUserService onlineUserService;


    private final TokenProvider tokenProvider;


    private final CaptchaConfig captchaConfig;


    private final LoginProperties loginProperties;


    private final PasswordEncoder passwordEncoder;


    private final UserDetailsServiceImpl userDetailsService;


 


    @Log("用户登录")


    @ApiOperation("登录授权")


    @AnonymousPostMapping(value = "/login")


    public ResponseEntity<Object> login(@Validated @RequestBody AuthUserDto authUser, HttpServletRequest request) throws Exception {


        // 密码解密


        String password = RsaUtils.decryptByPrivateKey(RsaProperties.privateKey, authUser.getPassword());


        // 查询验证码


        String code = redisUtils.get(authUser.getUuid(), String.class);


        // 清除验证码


        redisUtils.del(authUser.getUuid());


        if (StringUtils.isBlank(code)) {


            throw new BadRequestException("验证码不存在或已过期");


        }


        if (StringUtils.isBlank(authUser.getCode()) || !authUser.getCode().equalsIgnoreCase(code)) {


            throw new BadRequestException("验证码错误");


        }


        // 获取用户信息


        JwtUserDto jwtUser = userDetailsService.loadUserByUsername(authUser.getUsername());


        // 验证用户密码


        if (!passwordEncoder.matches(password, jwtUser.getPassword())) {


            throw new BadRequestException("登录密码错误");


        }


        Authentication authentication = new UsernamePasswordAuthenticationToken(jwtUser, null, jwtUser.getAuthorities());


        SecurityContextHolder.getContext().setAuthentication(authentication);


        // 生成令牌


        String token = tokenProvider.createToken(jwtUser);


        // 返回 token 与 用户信息


        Map<String, Object> authInfo = new HashMap<String, Object>(2) {{


            put("token", properties.getTokenStartWith() + token);


            put("user", jwtUser);


        }};


        if (loginProperties.isSingleLogin()) {


            // 踢掉之前已经登录的token


            onlineUserService.kickOutForUsername(authUser.getUsername());


        }


        // 保存在线信息


        onlineUserService.save(jwtUser, token, request);


        // 返回登录信息


        return ResponseEntity.ok(R.success(authInfo));


    }


 


    @ApiOperation("临时授权")


    @AnonymousGetMapping(value = "/token")


    public ResponseEntity<Object> loginTest(@RequestParam String username, HttpServletRequest request) {


        // 生成令牌与第三方系统获取令牌方式


        JwtUserDto jwtUser = userDetailsService.loadUserByUsername(username);


        Authentication authentication = new UsernamePasswordAuthenticationToken(jwtUser, null, jwtUser.getAuthorities());


        SecurityContextHolder.getContext().setAuthentication(authentication);


        // 生成令牌


        String token = tokenProvider.createToken(jwtUser);


        // 返回 token 与 用户信息


        Map<String, Object> authInfo = new HashMap<String, Object>(2) {{


            put("token", properties.getTokenStartWith() + token);


            put("user", jwtUser);


        }};


        // 保存在线信息


        onlineUserService.save(jwtUser, token, request);


        // 返回登录信息


        return ResponseEntity.ok(R.success(authInfo));


    }


 


    @ApiOperation("获取用户信息")


    @GetMapping(value = "/info")


    public ResponseEntity<Object> getUserInfo() {


        JwtUserDto jwtUser = (JwtUserDto) SecurityUtils.getCurrentUser();


        return ResponseEntity.ok(R.success(jwtUser));


    }


 


    @ApiOperation("获取验证码")


    @AnonymousGetMapping(value = "/code")


    public ResponseEntity<Object> getCode() {


        // 获取运算的结果


        Captcha captcha = captchaConfig.getCaptcha();


        String uuid = properties.getCodeKey() + IdUtil.simpleUUID();


        //当验证码类型为 arithmetic时且长度 >= 2 时,captcha.text()的结果有几率为浮点型


        String captchaValue = captcha.text();


        if (captcha.getCharType() - 1 == LoginCodeEnum.ARITHMETIC.ordinal() && captchaValue.contains(".")) {


            captchaValue = captchaValue.split("\\.")[0];


        }


        // 保存


        redisUtils.set(uuid, captchaValue, captchaConfig.getExpiration(), TimeUnit.MINUTES);


        // 验证码信息


        Map<String, Object> imgResult = new HashMap<String, Object>(2) {{


            put("img", captcha.toBase64());


            put("uuid", uuid);


        }};


        return ResponseEntity.ok(R.success(imgResult));


    }


 


    @ApiOperation("退出登录")


    @AnonymousDeleteMapping(value = "/logout")


    public ResponseEntity<Object> logout(HttpServletRequest request) {


        String token = tokenProvider.getToken(request);


        onlineUserService.logout(token);


        return new ResponseEntity<>(R.success(), HttpStatus.OK);


    }


}