Microservice/pqs
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
Files
6fa63a7f3ef0e0981fa7906f3ca1c58860f3bd64
pqs/pqs-auth/src/main/java/com/njcn/auth/controller/AuthController.java

190 lines
8.9 KiB
Java
Raw Normal View History

初始化
2022-06-21 20:47:46 +08:00
package com.njcn.auth.controller;
密码规则配置功能
2024-07-15 17:28:36 +08:00
import cn.hutool.core.collection.CollectionUtil;
初始化
2022-06-21 20:47:46 +08:00
import com.nimbusds.jose.jwk.JWKSet;
import com.nimbusds.jose.jwk.RSAKey;
import com.njcn.auth.service.UserTokenService;
审计日志相关代码提交
2022-07-13 20:16:32 +08:00
import com.njcn.common.pojo.annotation.OperateInfo;
import com.njcn.common.pojo.constant.OperateType;
初始化
2022-06-21 20:47:46 +08:00
import com.njcn.common.pojo.constant.SecurityConstants;
import com.njcn.common.pojo.dto.UserTokenInfo;
审计日志相关代码提交
2022-07-13 20:16:32 +08:00
import com.njcn.common.pojo.enums.common.LogEnum;
初始化
2022-06-21 20:47:46 +08:00
import com.njcn.common.pojo.enums.response.CommonResponseEnum;
密码规则配置功能
2024-07-15 17:28:36 +08:00
import com.njcn.common.pojo.exception.BusinessException;
初始化
2022-06-21 20:47:46 +08:00
import com.njcn.common.pojo.response.HttpResult;
import com.njcn.common.utils.HttpResultUtil;
import com.njcn.common.utils.LogUtil;
import com.njcn.common.utils.sm.DesUtils;
import com.njcn.redis.utils.RedisUtil;
密码规则配置功能
2024-07-15 17:28:36 +08:00
import com.njcn.user.api.PassWordRuleFeugnClient;
初始化
2022-06-21 20:47:46 +08:00
import com.njcn.user.api.UserFeignClient;
密码规则配置功能
2024-07-15 17:28:36 +08:00
import com.njcn.user.enums.UserResponseEnum;
import com.njcn.user.pojo.po.UserStrategy;
初始化
2022-06-21 20:47:46 +08:00
import com.njcn.web.controller.BaseController;
import com.njcn.web.utils.RequestUtil;
App用户注册完自动登录
2023-08-15 19:12:18 +08:00
import com.njcn.web.utils.RestTemplateUtil;
初始化
2022-06-21 20:47:46 +08:00
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiImplicitParam;
import io.swagger.annotations.ApiImplicitParams;
import io.swagger.annotations.ApiOperation;
import lombok.AllArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.collections.CollectionUtils;
import org.springframework.security.oauth2.common.OAuth2AccessToken;
import org.springframework.security.oauth2.provider.endpoint.TokenEndpoint;
import org.springframework.web.HttpRequestMethodNotSupportedException;
import org.springframework.web.bind.annotation.*;
App用户注册完自动登录
2023-08-15 19:12:18 +08:00
import org.springframework.web.util.UriComponentsBuilder;
初始化
2022-06-21 20:47:46 +08:00
import springfox.documentation.annotations.ApiIgnore;
App用户注册完自动登录
2023-08-15 19:12:18 +08:00
import java.net.URI;
初始化
2022-06-21 20:47:46 +08:00
import java.security.KeyPair;
import java.security.Principal;
import java.security.interfaces.RSAPublicKey;
import java.time.LocalDateTime;
import java.time.ZoneOffset;
密码规则配置功能
2024-07-15 17:28:36 +08:00
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
import java.util.Objects;
初始化
2022-06-21 20:47:46 +08:00
/**
* @author hongawen
*/
@Api(tags = "认证中心")
@Slf4j
@RestController
@RequestMapping("/oauth")
@AllArgsConstructor
public class AuthController extends BaseController {
private final TokenEndpoint tokenEndpoint;
private final KeyPair keyPair;
private final RedisUtil redisUtil;
private final UserFeignClient userFeignClient;
密码规则配置功能
2024-07-15 17:28:36 +08:00
private final PassWordRuleFeugnClient passWordRuleFeugnClient;
初始化
2022-06-21 20:47:46 +08:00
private final UserTokenService userTokenService;
@ApiIgnore
审计日志相关代码提交
2022-07-13 20:16:32 +08:00
@OperateInfo(info = LogEnum.SYSTEM_COMMON, operateType = OperateType.AUTHENTICATE)
初始化
2022-06-21 20:47:46 +08:00
@ApiOperation("登录认证")
@ApiImplicitParams({
@ApiImplicitParam(name = SecurityConstants.GRANT_TYPE, defaultValue = "password", value = "授权模式", required = true),
@ApiImplicitParam(name = SecurityConstants.CLIENT_ID, defaultValue = "njcn", value = "Oauth2客户端ID", required = true),
@ApiImplicitParam(name = SecurityConstants.CLIENT_SECRET, defaultValue = "njcnpqs", value = "Oauth2客户端秘钥", required = true),
@ApiImplicitParam(name = SecurityConstants.REFRESH_TOKEN, value = "刷新token"),
@ApiImplicitParam(name = SecurityConstants.USERNAME, value = "登录用户名"),
@ApiImplicitParam(name = SecurityConstants.PASSWORD, value = "登录密码"),
@ApiImplicitParam(name = SecurityConstants.IMAGE_CODE, value = "图形验证码"),
代码调整
2023-06-15 16:01:50 +08:00
@ApiImplicitParam(name = SecurityConstants.PHONE, value = "手机号"),
@ApiImplicitParam(name = SecurityConstants.SMS_CODE, value = "短信验证码"),
初始化
2022-06-21 20:47:46 +08:00
})
@PostMapping("/token")
public Object postAccessToken(@ApiIgnore Principal principal, @RequestParam @ApiIgnore Map<String, String> parameters) throws HttpRequestMethodNotSupportedException {
String methodDescribe = getMethodDescribe("postAccessToken");
String username = parameters.get(SecurityConstants.USERNAME);
密码规则配置功能
2024-07-15 17:28:36 +08:00
UserStrategy data = passWordRuleFeugnClient.getUserStrategy().getData();
String onlineUserKey = SecurityConstants.TOKEN_ONLINE_PREFIX;
List<UserTokenInfo> onLineUser = (List<UserTokenInfo>) redisUtil.getLikeListAllValues(onlineUserKey);
Integer maxNum = data.getMaxNum();
if((CollectionUtil.isNotEmpty(onLineUser)?onLineUser.size():0)>=maxNum){
throw new BusinessException(UserResponseEnum.LOGIN_USER_OVERLIMIT);
}
初始化
2022-06-21 20:47:46 +08:00
String grantType = parameters.get(SecurityConstants.GRANT_TYPE);
代码调整
2023-12-07 15:37:33 +08:00
if (grantType.equalsIgnoreCase(SecurityConstants.GRANT_CAPTCHA) || grantType.equalsIgnoreCase(SecurityConstants.REFRESH_TOKEN_KEY)) {
初始化
2022-06-21 20:47:46 +08:00
username = DesUtils.aesDecrypt(username);
增加认证日志
2023-08-30 09:30:04 +08:00
} else if (grantType.equalsIgnoreCase(SecurityConstants.GRANT_SMS_CODE)) {
代码调整
2023-06-15 16:01:50 +08:00
//短信方式登录,将手机号赋值为用户名
username = parameters.get(SecurityConstants.PHONE);
初始化
2022-06-21 20:47:46 +08:00
}
if (grantType.equalsIgnoreCase(SecurityConstants.REFRESH_TOKEN_KEY)) {
//如果是刷新token需要去黑名单校验
userTokenService.judgeRefreshToken(parameters.get(SecurityConstants.REFRESH_TOKEN_KEY));
}
RequestUtil.saveLoginName(username);
OAuth2AccessToken oAuth2AccessToken = tokenEndpoint.postAccessToken(principal, parameters).getBody();
//用户的登录名&密码校验成功后,判断当前该用户是否可以正常使用系统
增加认证日志
2023-08-30 09:30:04 +08:00
if (!grantType.equalsIgnoreCase(SecurityConstants.GRANT_SMS_CODE)) {
代码调整
2023-06-15 16:01:50 +08:00
userFeignClient.judgeUserStatus(username);
}
初始化
2022-06-21 20:47:46 +08:00
//登录成功后记录token信息并处理踢人效果
增加认证日志
2023-08-30 09:30:04 +08:00
userTokenService.recordUserInfo(oAuth2AccessToken, RequestUtil.getRealIp());
初始化
2022-06-21 20:47:46 +08:00
if (!grantType.equalsIgnoreCase(SecurityConstants.PASSWORD)) {
return HttpResultUtil.assembleCommonResponseResult(CommonResponseEnum.SUCCESS, oAuth2AccessToken, methodDescribe);
} else {
return oAuth2AccessToken;
}
}
@ApiOperation("用户登出系统")
@DeleteMapping("/logout")
public HttpResult<Object> logout() {
String methodDescribe = getMethodDescribe("logout");
String userIndex = RequestUtil.getUserIndex();
String username = RequestUtil.getUsername();
LogUtil.njcnDebug(log, "{},用户名为:{}", methodDescribe, username);
String blackUserKey = SecurityConstants.TOKEN_BLACKLIST_PREFIX + userIndex;
String onlineUserKey = SecurityConstants.TOKEN_ONLINE_PREFIX + userIndex;
Object onlineTokenInfoOld = redisUtil.getObjectByKey(onlineUserKey);
List<UserTokenInfo> blackUsers = (List<UserTokenInfo>) redisUtil.getObjectByKey(blackUserKey);
UserTokenInfo userTokenInfo;
if (!Objects.isNull(onlineTokenInfoOld)) {
//清除在线token信息
redisUtil.delete(onlineUserKey);
userTokenInfo = (UserTokenInfo) onlineTokenInfoOld;
if (CollectionUtils.isEmpty(blackUsers)) {
blackUsers = new ArrayList<>();
}
blackUsers.add(userTokenInfo);
LocalDateTime refreshTokenExpire = userTokenInfo.getRefreshTokenExpire();
long lifeTime = Math.abs(refreshTokenExpire.plusMinutes(5L).toEpochSecond(ZoneOffset.of("+8")) - LocalDateTime.now().toEpochSecond(ZoneOffset.of("+8")));
redisUtil.saveByKeyWithExpire(blackUserKey, blackUsers, lifeTime);
}
return HttpResultUtil.assembleCommonResponseResult(CommonResponseEnum.SUCCESS, null, methodDescribe);
}
/**
* 文档隐藏该接口
*/
@ApiIgnore
@ApiOperation("RSA公钥获取接口")
@GetMapping("/getPublicKey")
public Map<String, Object> getPublicKey() {
RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();
RSAKey key = new RSAKey.Builder(publicKey).build();
return new JWKSet(key).toJSONObject();
}
App用户注册完自动登录
2023-08-15 19:12:18 +08:00
/**
* 自动登录
*/
@OperateInfo(info = LogEnum.SYSTEM_COMMON, operateType = OperateType.AUTHENTICATE)
@ApiOperation("自动登录")
@PostMapping("/autoLogin")
@ApiImplicitParam(name = "phone", value = "手机号", required = true, paramType = "query")
@ApiIgnore
public HttpResult<Object> autoLogin(@RequestParam String phone) {
String methodDescribe = getMethodDescribe("autoLogin");
String userUrl = "http://127.0.0.1:10214/oauth/token";
UriComponentsBuilder builder = UriComponentsBuilder.fromHttpUrl(userUrl)
.queryParam("grant_type", "sms_code")
.queryParam("client_id", "njcnapp")
.queryParam("client_secret", "njcnpqs")
.queryParam("phone", phone)
.queryParam("smsCode", "123456789");
URI uri = builder.build().encode().toUri();
return HttpResultUtil.assembleCommonResponseResult(CommonResponseEnum.SUCCESS, Objects.requireNonNull(RestTemplateUtil.post(uri, HttpResult.class).getBody()).getData(), methodDescribe);
}
初始化
2022-06-21 20:47:46 +08:00
}
Reference in New Issue Copy Permalink