Jeecg配置单点登录 登录验证完整代码

package org.jeecg.modules.sso.controller; import org.apache.logging.log4j.LogManager; import org.apache.logging.log4j.Logger; import org.jeecg.common.util.PasswordUtil; import org.jeecg.modules.sso.domain.SysUser; import org.jeecg.modules.sso.mapper.SysSsoUserMapper; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.http.HttpHeaders; import org.springframework.http.HttpStatus; import org.springframework.http.ResponseEntity; import org.springframework.util.Base64Utils; import org.springframework.util.StringUtils; import org.springframework.web.bind.annotation.PostMapping; import org.springframework.web.bind.annotation.RequestHeader; import org.springframework.web.bind.annotation.RequestMapping; import org.springframework.web.bind.annotation.RestController; import java.io.UnsupportedEncodingException; import java.util.HashMap; import java.util.Map; @RestController @RequestMapping("/sso/user") public class SysSsoUserController { private Logger logger = LogManager.getLogger(SysSsoUserController.class); @Autowired private SysSsoUserMapper sysUserMapper; @PostMapping("/login") public Object login(@RequestHeader HttpHeaders httpHeaders) { logger.info("Rest api login."); logger.debug("request headers: " + httpHeaders); SysUser user = null; try { UserTemp userTemp = obtainUserFormHeader(httpHeaders); //当没有 传递 参数的情况 if(userTemp == null){ return new ResponseEntity<SysUser>(HttpStatus.NOT_FOUND); } //尝试查找用户库是否存在 user = sysUserMapper.getSysUser(userTemp.username); //2. 校验用户名或密码是否正确 String userpassword = PasswordUtil.encrypt(userTemp.username, userTemp.password, user.getSalt()); if (user != null) { if (!userpassword.equals(user.getPassword())) { //密码不匹配 return new ResponseEntity(HttpStatus.BAD_REQUEST); } if ("2".equals(user.getStatus())) { //禁用 403 return new ResponseEntity(HttpStatus.FORBIDDEN); } if (user.isLocked()) { //锁定 423 return new ResponseEntity(HttpStatus.LOCKED); } if (user.isExpired()) { //过期 428 return new ResponseEntity(HttpStatus.PRECONDITION_REQUIRED); } } else { //不存在 404 return new ResponseEntity(HttpStatus.NOT_FOUND); } } catch (UnsupportedEncodingException e) { logger.error("", e); new ResponseEntity(HttpStatus.BAD_REQUEST); } logger.info("[{" + user.getUsername() + "}] login is ok"); //成功返回json Map<String, Object> attributes=new HashMap<>(); attributes.put("username",user.getUsername()); user.setAttributes(attributes); return user; } /** * 根据请求头获取用户名及密码 * * @param httpHeaders * @return * @throws UnsupportedEncodingException */ private UserTemp obtainUserFormHeader(HttpHeaders httpHeaders) throws UnsupportedEncodingException { //根据官方文档，当请求过来时，会通过把用户信息放在请求头authorization中，并且通过Basic认证方式加密 String authorization = httpHeaders.getFirst("authorization");//将得到 Basic Base64(用户名:密码) if(StringUtils.isEmpty(authorization)){ return null; } String baseCredentials = authorization.split(" ")[1]; String usernamePassword = new String(Base64Utils.decodeFromString(baseCredentials), "UTF-8");//用户名:密码 logger.debug("login user: " + usernamePassword); String credentials[] = usernamePassword.split(":"); return new UserTemp(credentials[0], credentials[1]); } /** * 解析请求过来的用户 */ private class UserTemp { private String username; private String password; public UserTemp(String username, String password) { this.username = username; this.password = password; } } }