package org.springblade.auth.endpoint; import com.wf.captcha.SpecCaptcha; import io.swagger.annotations.ApiOperation; import lombok.AllArgsConstructor; import lombok.SneakyThrows; import lombok.extern.slf4j.Slf4j; import org.springblade.common.cache.CacheNames; import org.springblade.core.cache.utils.CacheUtil; import org.springblade.core.jwt.JwtUtil; import org.springblade.core.jwt.props.JwtProperties; import org.springblade.core.launch.constant.TokenConstant; import org.springblade.core.redis.cache.BladeRedis; import org.springblade.core.secure.BladeUser; import org.springblade.core.secure.utils.AuthUtil; import org.springblade.core.tenant.annotation.NonDS; import org.springblade.core.tool.api.R; import org.springblade.core.tool.support.Kv; import org.springblade.core.tool.utils.StringUtil; import org.springblade.core.tool.utils.WebUtil; import org.springblade.modules.system.entity.UserInfo; import org.springframework.security.authentication.AuthenticationManager; import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; import org.springframework.security.core.Authentication; import org.springframework.security.oauth2.common.OAuth2AccessToken; import org.springframework.security.oauth2.common.OAuth2RefreshToken; import org.springframework.security.oauth2.provider.token.TokenStore; import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.PostMapping; import org.springframework.web.bind.annotation.RestController; import org.springframework.web.servlet.ModelAndView; import javax.annotation.Resource; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; import java.io.IOException; import java.time.Duration; import java.util.HashMap; import java.util.Map; import static org.springblade.core.cache.constant.CacheConstant.*; /** * BladeEndPoint * * @author Chill */ @NonDS @Slf4j @RestController @AllArgsConstructor public class BladeTokenEndPoints { private final BladeRedis bladeRedis; private final JwtProperties jwtProperties; private final TokenStore tokenStore; @Resource private AuthenticationManager authenticationManager; /** * 登录页面 */ @SneakyThrows @GetMapping("/oauth/login") public void require(HttpServletResponse response) { response.setStatus(302); response.sendRedirect("http://localhost:1888"); } // // /** // * 登录页面 // */ // @GetMapping("/oauth/login") // public ModelAndView require(ModelAndView model) { // model.setViewName("login"); // return model; // } /** * 自定义登录 * @param username 用户名 * @param password 密码 * @return */ @PostMapping("/oauth/form") @ApiOperation(value = "自定义登录") public void login(HttpServletResponse response,String username, String password) throws IOException { // 用户验证 authenticate方法会去调用自定义 myAuthenticationProvider 进行自定义校验 Authentication authentication = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(username, password)); //取出用户登录信息 // UserInfo userInfo = (UserInfo) authentication.getPrincipal(); //定义返回 map Map map = new HashMap<>(); //创建token // map.put("token",tokenService.createToken(userInfo)); //返回 response.sendRedirect("http://localhost:9530/oauth/authorize?client_id=sword&response_type=code&redirect_uri=https://www.baidu.com"); } /** * 授权页面 */ @GetMapping("/oauth/confirm_access") public ModelAndView confirm(HttpSession session, ModelAndView model) { // Object auth = session.getAttribute("authorizationRequest"); // if (auth != null) { // AuthorizationRequest authorizationRequest = (AuthorizationRequest) auth; // model.addObject("client", clientDetailsService.loadClientByClientId(authorizationRequest.getClientId())); // model.addObject("principal", SecurityContextHolder.getContext().getAuthentication().getPrincipal()); // } // model.setViewName("confirm"); return model; } /** * 用户信息 */ @GetMapping("/oauth/user-info") public R currentUser(Authentication authentication) { return R.data(authentication); } /** * 验证码 */ @GetMapping("/oauth/captcha") public Kv captcha() { SpecCaptcha specCaptcha = new SpecCaptcha(130, 48, 5); String verCode = specCaptcha.text().toLowerCase(); String key = StringUtil.randomUUID(); // 存入redis并设置过期时间为30分钟 bladeRedis.setEx(CacheNames.CAPTCHA_KEY + key, verCode, Duration.ofMinutes(30)); // 将key和base64返回给前端 return Kv.create().set("key", key).set("image", specCaptcha.toBase64()); } /** * 退出登录 */ @GetMapping("/oauth/logout") public Kv logout() { BladeUser user = AuthUtil.getUser(); String token = JwtUtil.getToken(WebUtil.getRequest().getHeader(TokenConstant.HEADER)); // 清空redis保存的token if (user != null && jwtProperties.getState()) { JwtUtil.removeAccessToken(user.getTenantId(), String.valueOf(user.getUserId()), token); } // 清空资源服务器保存的token OAuth2AccessToken accessToken = tokenStore.readAccessToken(token); OAuth2RefreshToken refreshToken = null; if (accessToken != null && StringUtil.isNoneBlank(accessToken.getValue())) { refreshToken = accessToken.getRefreshToken(); tokenStore.removeAccessToken(accessToken); } if (refreshToken != null && StringUtil.isNoneBlank(refreshToken.getValue())) { tokenStore.removeRefreshToken(refreshToken); } return Kv.create().set("success", "true").set("msg", "success"); } /** * 缓存清空 */ @GetMapping("/oauth/clear-cache") public Kv clearCache() { CacheUtil.clear(BIZ_CACHE); CacheUtil.clear(USER_CACHE); CacheUtil.clear(DICT_CACHE); CacheUtil.clear(FLOW_CACHE); CacheUtil.clear(SYS_CACHE); CacheUtil.clear(PARAM_CACHE); CacheUtil.clear(RESOURCE_CACHE); CacheUtil.clear(MENU_CACHE); CacheUtil.clear(DICT_CACHE, Boolean.FALSE); CacheUtil.clear(MENU_CACHE, Boolean.FALSE); CacheUtil.clear(SYS_CACHE, Boolean.FALSE); CacheUtil.clear(PARAM_CACHE, Boolean.FALSE); return Kv.create().set("success", "true").set("msg", "success"); } }