Главная Обзор Помощь
Регистрация Вход
lianghanqiang
/
blade-demo
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 7ef2af6ad0
Ветки Метки
blade-demo
/
src
/
main
/
java
/
org
/
springblade
/
modules
/
auth
/
utils
/
TokenUtil.java

TokenUtil.java 6.6 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164 
  1. /*
    2. 

  2.  *      Copyright (c) 2018-2028, Chill Zhuang All rights reserved.
    3. 

  3.  *
    4. 

  4.  *  Redistribution and use in source and binary forms, with or without
    5. 

  5.  *  modification, are permitted provided that the following conditions are met:
    6. 

  6.  *
    7. 

  7.  *  Redistributions of source code must retain the above copyright notice,
    8. 

  8.  *  this list of conditions and the following disclaimer.
    9. 

  9.  *  Redistributions in binary form must reproduce the above copyright
    10. 

  10.  *  notice, this list of conditions and the following disclaimer in the
    11. 

  11.  *  documentation and/or other materials provided with the distribution.
    12. 

  12.  *  Neither the name of the dreamlu.net developer nor the names of its
    13. 

  13.  *  contributors may be used to endorse or promote products derived from
    14. 

  14.  *  this software without specific prior written permission.
    15. 

  15.  *  Author: Chill 庄骞 (smallchill@163.com)
    16. 

  16.  */
    17. 

  17. package org.springblade.modules.auth.utils;
    18. 

  18. 

  19. import org.springblade.common.constant.TenantConstant;
    20. 

  20. import org.springblade.core.launch.constant.TokenConstant;
    21. 

  21. import org.springblade.core.log.exception.ServiceException;
    22. 

  22. import org.springblade.core.secure.TokenInfo;
    23. 

  23. import org.springblade.core.secure.utils.SecureUtil;
    24. 

  24. import org.springblade.core.tenant.BladeTenantProperties;
    25. 

  25. import org.springblade.core.tool.constant.BladeConstant;
    26. 

  26. import org.springblade.core.tool.jackson.JsonUtil;
    27. 

  27. import org.springblade.core.tool.support.Kv;
    28. 

  28. import org.springblade.core.tool.utils.*;
    29. 

  29. import org.springblade.modules.system.entity.Tenant;
    30. 

  30. import org.springblade.modules.system.entity.User;
    31. 

  31. import org.springblade.modules.system.entity.UserInfo;
    32. 

  32. 

  33. import javax.servlet.http.HttpServletResponse;
    34. 

  34. import java.util.Date;
    35. 

  35. import java.util.HashMap;
    36. 

  36. import java.util.Map;
    37. 

  37. 

  38. /**
    39. 

  39.  * 认证工具类
    40. 

  40.  *
    41. 

  41.  * @author Chill
    42. 

  42.  */
    43. 

  43. public class TokenUtil {
    44. 

  44. 

  45. 	public final static String CAPTCHA_HEADER_KEY = "Captcha-Key";
    46. 

  46. 	public final static String CAPTCHA_HEADER_CODE = "Captcha-Code";
    47. 

  47. 	public final static String CAPTCHA_NOT_CORRECT = "验证码不正确";
    48. 

  48. 	public final static String TENANT_HEADER_KEY = "Tenant-Id";
    49. 

  49. 	public final static String DEFAULT_TENANT_ID = "000000";
    50. 

  50. 	public final static String USER_TYPE_HEADER_KEY = "User-Type";
    51. 

  51. 	public final static String DEFAULT_USER_TYPE = "web";
    52. 

  52. 	public final static String USER_NOT_FOUND = "用户名或密码错误";
    53. 

  53. 	public final static String USER_HAS_NO_ROLE = "未获得用户的角色信息";
    54. 

  54. 	public final static String USER_HAS_NO_TENANT = "未获得用户的租户信息";
    55. 

  55. 	public final static String USER_HAS_NO_TENANT_PERMISSION = "租户授权已过期,请联系管理员";
    56. 

  56. 	public final static String USER_HAS_TOO_MANY_FAILS = "登录错误次数过多,请稍后再试";
    57. 

  57. 	public final static String HEADER_KEY = "Authorization";
    58. 

  58. 	public final static String HEADER_PREFIX = "Basic ";
    59. 

  59. 	public final static String DEFAULT_AVATAR = "https://gw.alipayobjects.com/zos/rmsportal/BiazfanxmamNRoxxVxka.png";
    60. 

  60. 

  61. 	private static BladeTenantProperties tenantProperties;
    62. 

  62. 

  63. 	/**
    64. 

  64. 	 * 获取租户配置
    65. 

  65. 	 *
    66. 

  66. 	 * @return tenantProperties
    67. 

  67. 	 */
    68. 

  68. 	private static BladeTenantProperties getTenantProperties() {
    69. 

  69. 		if (tenantProperties == null) {
    70. 

  70. 			tenantProperties = SpringUtil.getBean(BladeTenantProperties.class);
    71. 

  71. 		}
    72. 

  72. 		return tenantProperties;
    73. 

  73. 	}
    74. 

  74. 

  75. 	/**
    76. 

  76. 	 * 创建认证token
    77. 

  77. 	 *
    78. 

  78. 	 * @param userInfo 用户信息
    79. 

  79. 	 * @return token
    80. 

  80. 	 */
    81. 

  81. 	public static Kv createAuthInfo(UserInfo userInfo) {
    82. 

  82. 		Kv authInfo = Kv.create();
    83. 

  83. 		User user = userInfo.getUser();
    84. 

  84. 		//设置jwt参数
    85. 

  85. 		Map<String, Object> param = new HashMap<>(16);
    86. 

  86. 		param.put(TokenConstant.TOKEN_TYPE, TokenConstant.ACCESS_TOKEN);
    87. 

  87. 		param.put(TokenConstant.TENANT_ID, user.getTenantId());
    88. 

  88. 		param.put(TokenConstant.USER_ID, Func.toStr(user.getId()));
    89. 

  89. 		param.put(TokenConstant.DEPT_ID, user.getDeptId());
    90. 

  90. 		param.put(TokenConstant.POST_ID, user.getPostId());
    91. 

  91. 		param.put(TokenConstant.ROLE_ID, user.getRoleId());
    92. 

  92. 		param.put(TokenConstant.OAUTH_ID, userInfo.getOauthId());
    93. 

  93. 		param.put(TokenConstant.ACCOUNT, user.getAccount());
    94. 

  94. 		param.put(TokenConstant.USER_NAME, user.getAccount());
    95. 

  95. 		param.put(TokenConstant.NICK_NAME, user.getRealName());
    96. 

  96. 		param.put(TokenConstant.ROLE_NAME, Func.join(userInfo.getRoles()));
    97. 

  97. 		param.put(TokenConstant.DETAIL, userInfo.getDetail());
    98. 

  98. 

  99. 		//拼装accessToken
    100. 

  100. 		try {
    101. 

  101. 			TokenInfo accessToken = SecureUtil.createJWT(param, "audience", "issuser", TokenConstant.ACCESS_TOKEN);
    102. 

  102. 			//返回accessToken
    103. 

  103. 			return authInfo.set(TokenConstant.TENANT_ID, user.getTenantId())
    104. 

  104. 				.set(TokenConstant.USER_ID, Func.toStr(user.getId()))
    105. 

  105. 				.set(TokenConstant.DEPT_ID, user.getDeptId())
    106. 

  106. 				.set(TokenConstant.POST_ID, user.getPostId())
    107. 

  107. 				.set(TokenConstant.ROLE_ID, user.getRoleId())
    108. 

  108. 				.set(TokenConstant.OAUTH_ID, userInfo.getOauthId())
    109. 

  109. 				.set(TokenConstant.ACCOUNT, user.getAccount())
    110. 

  110. 				.set(TokenConstant.USER_NAME, user.getAccount())
    111. 

  111. 				.set(TokenConstant.NICK_NAME, user.getRealName())
    112. 

  112. 				.set(TokenConstant.ROLE_NAME, Func.join(userInfo.getRoles()))
    113. 

  113. 				.set(TokenConstant.AVATAR, Func.toStr(user.getAvatar(), TokenConstant.DEFAULT_AVATAR))
    114. 

  114. 				.set(TokenConstant.ACCESS_TOKEN, accessToken.getToken())
    115. 

  115. 				.set(TokenConstant.REFRESH_TOKEN, createRefreshToken(userInfo).getToken())
    116. 

  116. 				.set(TokenConstant.TOKEN_TYPE, TokenConstant.BEARER)
    117. 

  117. 				.set(TokenConstant.EXPIRES_IN, accessToken.getExpire())
    118. 

  118. 				.set(TokenConstant.DETAIL, userInfo.getDetail())
    119. 

  119. 				.set(TokenConstant.LICENSE, TokenConstant.LICENSE_NAME);
    120. 

  120. 		} catch (Exception ex) {
    121. 

  121. 			return authInfo.set("error_code", HttpServletResponse.SC_UNAUTHORIZED).set("error_description", ex.getMessage());
    122. 

  122. 		}
    123. 

  123. 	}
    124. 

  124. 

  125. 	/**
    126. 

  126. 	 * 创建refreshToken
    127. 

  127. 	 *
    128. 

  128. 	 * @param userInfo 用户信息
    129. 

  129. 	 * @return refreshToken
    130. 

  130. 	 */
    131. 

  131. 	private static TokenInfo createRefreshToken(UserInfo userInfo) {
    132. 

  132. 		User user = userInfo.getUser();
    133. 

  133. 		Map<String, Object> param = new HashMap<>(16);
    134. 

  134. 		param.put(TokenConstant.TOKEN_TYPE, TokenConstant.REFRESH_TOKEN);
    135. 

  135. 		param.put(TokenConstant.USER_ID, Func.toStr(user.getId()));
    136. 

  136. 		return SecureUtil.createJWT(param, "audience", "issuser", TokenConstant.REFRESH_TOKEN);
    137. 

  137. 	}
    138. 

  138. 

  139. 	/**
    140. 

  140. 	 * 判断租户权限
    141. 

  141. 	 *
    142. 

  142. 	 * @param tenant 租户信息
    143. 

  143. 	 * @return boolean
    144. 

  144. 	 */
    145. 

  145. 	public static boolean judgeTenant(Tenant tenant) {
    146. 

  146. 		if (tenant == null) {
    147. 

  147. 			throw new ServiceException(TokenUtil.USER_HAS_NO_TENANT);
    148. 

  148. 		}
    149. 

  149. 		if (StringUtil.equalsIgnoreCase(tenant.getTenantId(), BladeConstant.ADMIN_TENANT_ID)) {
    150. 

  150. 			return false;
    151. 

  151. 		}
    152. 

  152. 		Date expireTime = tenant.getExpireTime();
    153. 

  153. 		if (getTenantProperties().getLicense()) {
    154. 

  154. 			String licenseKey = tenant.getLicenseKey();
    155. 

  155. 			String decrypt = DesUtil.decryptFormHex(licenseKey, TenantConstant.DES_KEY);
    156. 

  156. 			expireTime = JsonUtil.parse(decrypt, Tenant.class).getExpireTime();
    157. 

  157. 		}
    158. 

  158. 		if (expireTime != null && expireTime.before(DateUtil.now())) {
    159. 

  159. 			throw new ServiceException(TokenUtil.USER_HAS_NO_TENANT_PERMISSION);
    160. 

  160. 		}
    161. 

  161. 		return false;
    162. 

  162. 	}
    163. 

  163. 

  164. }
    165.