From 4b86cf6bbe5a7204a801169398fa836e8e06c109 Mon Sep 17 00:00:00 2001
From: guoshilong <123456>
Date: Wed, 14 Dec 2022 17:04:36 +0800
Subject: [PATCH] Merge remote-tracking branch 'refs/remotes/origin/master'
---
src/main/java/org/springblade/modules/auth/endpoint/BladeTokenEndPoint.java | 149 +++++++++++++++++++++++++++++++++++++++++++++++++
1 files changed, 149 insertions(+), 0 deletions(-)
diff --git a/src/main/java/org/springblade/modules/auth/endpoint/BladeTokenEndPoint.java b/src/main/java/org/springblade/modules/auth/endpoint/BladeTokenEndPoint.java
new file mode 100644
index 0000000..560b066
--- /dev/null
+++ b/src/main/java/org/springblade/modules/auth/endpoint/BladeTokenEndPoint.java
@@ -0,0 +1,149 @@
+/*
+ * Copyright (c) 2018-2028, Chill Zhuang All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are met:
+ *
+ * Redistributions of source code must retain the above copyright notice,
+ * this list of conditions and the following disclaimer.
+ * Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ * Neither the name of the dreamlu.net developer nor the names of its
+ * contributors may be used to endorse or promote products derived from
+ * this software without specific prior written permission.
+ * Author: Chill 庄骞 (smallchill@163.com)
+ */
+package org.springblade.modules.auth.endpoint;
+
+import com.github.xiaoymin.knife4j.annotations.ApiSort;
+import com.wf.captcha.SpecCaptcha;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiOperation;
+import io.swagger.annotations.ApiParam;
+import lombok.AllArgsConstructor;
+import org.springblade.common.cache.CacheNames;
+import org.springblade.core.cache.utils.CacheUtil;
+import org.springblade.core.jwt.JwtUtil;
+import org.springblade.core.jwt.props.JwtProperties;
+import org.springblade.core.launch.constant.AppConstant;
+import org.springblade.core.launch.constant.TokenConstant;
+import org.springblade.core.log.annotation.ApiLog;
+import org.springblade.core.redis.cache.BladeRedis;
+import org.springblade.core.secure.BladeUser;
+import org.springblade.core.secure.utils.AuthUtil;
+import org.springblade.core.tenant.annotation.NonDS;
+import org.springblade.core.tool.support.Kv;
+import org.springblade.core.tool.utils.Func;
+import org.springblade.core.tool.utils.WebUtil;
+import org.springblade.modules.auth.provider.ITokenGranter;
+import org.springblade.modules.auth.provider.TokenGranterBuilder;
+import org.springblade.modules.auth.provider.TokenParameter;
+import org.springblade.modules.auth.utils.TokenUtil;
+import org.springblade.modules.system.entity.UserInfo;
+import org.springframework.web.bind.annotation.*;
+import springfox.documentation.annotations.ApiIgnore;
+
+import javax.servlet.http.HttpServletResponse;
+import java.time.Duration;
+import java.util.UUID;
+
+import static org.springblade.core.cache.constant.CacheConstant.*;
+
+/**
+ * 令牌端点
+ *
+ * @author Chill
+ */
+@NonDS
+@ApiSort(1)
+@RestController
+@AllArgsConstructor
+@RequestMapping(AppConstant.APPLICATION_AUTH_NAME)
+@Api(value = "用户授权认证", tags = "授权接口")
+public class BladeTokenEndPoint {
+
+ private final BladeRedis bladeRedis;
+ private final JwtProperties jwtProperties;
+
+ @ApiLog("登录用户验证")
+ @PostMapping("/oauth/token")
+ @ApiOperation(value = "获取认证令牌", notes = "传入租户ID:tenantId,账号:account,密码:password")
+ public Kv token(@ApiParam(value = "租户ID", required = true) @RequestParam String tenantId,
+ @ApiParam(value = "账号", required = true) @RequestParam(required = false) String username,
+ @ApiParam(value = "密码", required = true) @RequestParam(required = false) String password,
+ @ApiIgnore @RequestHeader(name = TokenUtil.DEPT_HEADER_KEY, required = false) String deptId,
+ @ApiIgnore @RequestHeader(name = TokenUtil.ROLE_HEADER_KEY, required = false) String roleId) {
+
+ Kv authInfo = Kv.create();
+
+ String grantType = WebUtil.getRequest().getParameter("grant_type");
+ String refreshToken = WebUtil.getRequest().getParameter("refresh_token");
+
+ String userType = Func.toStr(WebUtil.getRequest().getHeader(TokenUtil.USER_TYPE_HEADER_KEY), TokenUtil.DEFAULT_USER_TYPE);
+
+ TokenParameter tokenParameter = new TokenParameter();
+ tokenParameter.getArgs().set("tenantId", tenantId)
+ .set("username", username)
+ .set("password", password)
+ .set("grantType", grantType)
+ .set("refreshToken", refreshToken)
+ .set("userType", userType)
+ .set("deptId", deptId).set("roleId", roleId);
+
+ ITokenGranter granter = TokenGranterBuilder.getGranter(grantType);
+ UserInfo userInfo = granter.grant(tokenParameter);
+
+ if (userInfo == null || userInfo.getUser() == null) {
+ return authInfo.set("error_code", HttpServletResponse.SC_BAD_REQUEST).set("error_description", "用户名或密码不正确");
+ }
+
+ if (Func.isEmpty(userInfo.getRoles())) {
+ return authInfo.set("error_code", HttpServletResponse.SC_BAD_REQUEST).set("error_description", "未获得用户的角色信息");
+ }
+
+ return TokenUtil.createAuthInfo(userInfo);
+ }
+
+
+ @GetMapping("/oauth/logout")
+ @ApiOperation(value = "退出登录")
+ public Kv logout() {
+ BladeUser user = AuthUtil.getUser();
+ if (user != null && jwtProperties.getState()) {
+ String token = JwtUtil.getToken(WebUtil.getRequest().getHeader(TokenConstant.HEADER));
+ JwtUtil.removeAccessToken(user.getTenantId(), String.valueOf(user.getUserId()), token);
+ }
+ return Kv.create().set("success", "true").set("msg", "success");
+ }
+
+ @GetMapping("/oauth/captcha")
+ @ApiOperation(value = "获取验证码")
+ public Kv captcha() {
+ SpecCaptcha specCaptcha = new SpecCaptcha(130, 48, 5);
+ String verCode = specCaptcha.text().toLowerCase();
+ String key = UUID.randomUUID().toString();
+ // 存入redis并设置过期时间为30分钟
+ bladeRedis.setEx(CacheNames.CAPTCHA_KEY + key, verCode, Duration.ofMinutes(30));
+ // 将key和base64返回给前端
+ return Kv.create().set("key", key).set("image", specCaptcha.toBase64());
+ }
+
+ @GetMapping("/oauth/clear-cache")
+ @ApiOperation(value = "清除缓存")
+ public Kv clearCache() {
+ CacheUtil.clear(BIZ_CACHE);
+ CacheUtil.clear(USER_CACHE);
+ CacheUtil.clear(DICT_CACHE);
+ CacheUtil.clear(FLOW_CACHE);
+ CacheUtil.clear(SYS_CACHE);
+ CacheUtil.clear(PARAM_CACHE);
+ CacheUtil.clear(RESOURCE_CACHE);
+ CacheUtil.clear(MENU_CACHE);
+ CacheUtil.clear(DICT_CACHE, Boolean.FALSE);
+ CacheUtil.clear(MENU_CACHE, Boolean.FALSE);
+ CacheUtil.clear(SYS_CACHE, Boolean.FALSE);
+ CacheUtil.clear(PARAM_CACHE, Boolean.FALSE);
+ return Kv.create().set("success", "true").set("msg", "success");
+ }
+}
--
Gitblit v1.9.3