v0.5 6. 安全－jwt 通过interceptor处理@Login注解，验证token

feiweiwei · feiweiwei · commit 15bfd338fbbf · 2018-09-10T17:15:13.000+08:00
diff --git a/src/main/java/com/monkey01/common/annotation/Login.java b/src/main/java/com/monkey01/common/annotation/Login.java
@@ -0,0 +1,15 @@
+package com.monkey01.common.annotation;
+
+import java.lang.annotation.*;
+
+/**
+ * app登录效验
+ * @author feiweiwei
+ * @email feiweiwei@139.com
+ * @date 2017/9/23 14:30
+ */
+@Target(ElementType.METHOD)
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+public @interface Login {
+}
diff --git a/src/main/java/com/monkey01/common/annotation/interceptor/AuthorizationInterceptor.java b/src/main/java/com/monkey01/common/annotation/interceptor/AuthorizationInterceptor.java
@@ -0,0 +1,66 @@
+package com.monkey01.common.annotation.interceptor;
+
+
+import com.monkey01.common.annotation.Login;
+import com.monkey01.common.exception.MkException;
+import com.monkey01.common.utils.JwtUtils;
+import io.jsonwebtoken.Claims;
+
+import org.apache.commons.lang.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.HttpStatus;
+import org.springframework.stereotype.Component;
+import org.springframework.web.method.HandlerMethod;
+import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * 权限(Token)jwt切面验证
+ * @author feiweiwei
+ * @email feiweiwei@139.com
+ * @date 2017-01-20 19:23
+ */
+@Component
+public class AuthorizationInterceptor extends HandlerInterceptorAdapter {
+    @Autowired
+    private JwtUtils jwtUtils;
+
+    public static final String USER_KEY = "userId";
+
+    @Override
+    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
+        Login annotation;
+        if(handler instanceof HandlerMethod) {
+            annotation = ((HandlerMethod) handler).getMethodAnnotation(Login.class);
+        }else{
+            return true;
+        }
+
+        if(annotation == null){
+            return true;
+        }
+
+        //获取用户凭证
+        String token = request.getHeader(jwtUtils.getHeader());
+        if(StringUtils.isBlank(token)){
+            token = request.getParameter(jwtUtils.getHeader());
+        }
+
+        //凭证为空
+        if(StringUtils.isBlank(token)){
+            throw new MkException(jwtUtils.getHeader() + "不能为空", HttpStatus.UNAUTHORIZED.toString());
+        }
+
+        Claims claims = jwtUtils.getClaimByToken(token);
+        if(claims == null || jwtUtils.isTokenExpired(claims.getExpiration())){
+            throw new MkException(jwtUtils.getHeader() + "失效，请重新登录", HttpStatus.UNAUTHORIZED.toString());
+        }
+
+        //设置userId到request里，后续根据userId，获取用户信息
+        request.setAttribute(USER_KEY, Long.parseLong(claims.getSubject()));
+
+        return true;
+    }
+}
diff --git a/src/main/java/com/monkey01/common/config/WebMvcConfig.java b/src/main/java/com/monkey01/common/config/WebMvcConfig.java
@@ -1,9 +1,11 @@
 package com.monkey01.common.config;
 
+import com.monkey01.common.annotation.interceptor.AuthorizationInterceptor;
 import com.monkey01.common.annotation.resolver.DesParamsHandlerMethodArgumentResolver;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
 import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
 
 import java.util.List;
@@ -20,8 +22,13 @@ public class WebMvcConfig extends WebMvcConfigurerAdapter {
 
     @Autowired
     private DesParamsHandlerMethodArgumentResolver desParamsHandlerMethodArgumentResolver;
+    @Autowired
+	private AuthorizationInterceptor authorizationInterceptor;
 
-
+	@Override
+	public void addInterceptors(InterceptorRegistry registry) {
+		registry.addInterceptor(authorizationInterceptor).addPathPatterns("/**");
+	}
     @Override
     public void addArgumentResolvers(List<HandlerMethodArgumentResolver> argumentResolvers) {
         argumentResolvers.add(desParamsHandlerMethodArgumentResolver);
diff --git a/src/main/java/com/monkey01/modules/module1/controller/TestController.java b/src/main/java/com/monkey01/modules/module1/controller/TestController.java
@@ -1,4 +1,4 @@
-package com.monkey01.modules.controller;
+package com.monkey01.modules.module1.controller;
 
 import com.monkey01.common.annotation.MkParams;
 import com.monkey01.common.annotation.SysLog;
diff --git a/src/main/java/com/monkey01/modules/module1/controller/TestUserController.java b/src/main/java/com/monkey01/modules/module1/controller/TestUserController.java
@@ -0,0 +1,71 @@
+package com.monkey01.modules.module1.controller;
+
+
+import com.monkey01.common.annotation.Login;
+import com.monkey01.common.annotation.interceptor.AuthorizationInterceptor;
+import com.monkey01.common.domain.MkResponse;
+import com.monkey01.common.utils.JwtUtils;
+import com.monkey01.modules.module1.domain.dto.UserDO;
+import com.monkey01.modules.module1.domain.vo.LoginVO;
+import com.monkey01.modules.module1.domain.vo.RegisterVO;
+import com.monkey01.modules.module1.service.UserService;
+import org.apache.commons.codec.digest.DigestUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RestController;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+
+
+@RestController
+public class TestUserController {
+    @Autowired
+    private UserService userService;
+    @Autowired
+    private JwtUtils jwtUtils;
+
+    /**
+     * 登录
+     */
+    @PostMapping("login")
+    public MkResponse login(@RequestBody LoginVO form){
+
+        //用户登录
+        long userId = userService.login(form);
+
+        //生成token
+        String token = jwtUtils.generateToken(userId);
+
+        Map<String, Object> map = new HashMap<>();
+        map.put("token", token);
+        map.put("expire", jwtUtils.getExpire());
+
+        return MkResponse.ok(map);
+    }
+
+	@PostMapping("register")
+	public MkResponse register(@RequestBody RegisterVO form){
+		UserDO user = new UserDO();
+		user.setMobile(form.getMobile());
+		user.setUsername(form.getMobile());
+		user.setPassword(DigestUtils.sha256Hex(form.getPassword()));
+		user.setCreateTime(new Date());
+		userService.save(user);
+
+		return MkResponse.ok();
+	}
+
+	@Login
+	@PostMapping("queryUser")
+	public MkResponse queryUser(HttpServletRequest request){
+		Long userId = (Long)request.getAttribute(AuthorizationInterceptor.USER_KEY);
+
+		UserDO userDO = userService.getById(userId);
+		return MkResponse.ok().put("user", userDO);
+	}
+
+}
diff --git a/src/main/java/com/monkey01/modules/module1/dao/mapper/UserMapper.java b/src/main/java/com/monkey01/modules/module1/dao/mapper/UserMapper.java
@@ -0,0 +1,27 @@
+/**
+ * Copyright 2018 人人开源 http://www.renren.io
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+
+package com.monkey01.modules.module1.dao.mapper;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.monkey01.modules.module1.domain.dto.UserDO;
+import org.apache.ibatis.annotations.Mapper;
+
+
+@Mapper
+public interface UserMapper extends BaseMapper<UserDO> {
+
+}
diff --git a/src/main/java/com/monkey01/modules/module1/domain/dto/UserDO.java b/src/main/java/com/monkey01/modules/module1/domain/dto/UserDO.java
@@ -0,0 +1,68 @@
+package com.monkey01.modules.module1.domain.dto;
+
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+
+import java.util.Date;
+
+/**
+ * @author: feiweiwei
+ * @description:
+ * @created Date: 10:11 18/9/6.
+ * @modify by:
+ */
+@TableName("test_user")
+public class UserDO {
+	private static final long serialVersionUID = 1L;
+
+	@TableId
+	private Long userId;
+	private String username;
+	private String mobile;
+	private String password;
+	private Date createTime;
+
+	public static long getSerialVersionUID() {
+		return serialVersionUID;
+	}
+
+	public Long getUserId() {
+		return userId;
+	}
+
+	public void setUserId(Long userId) {
+		this.userId = userId;
+	}
+
+	public String getUsername() {
+		return username;
+	}
+
+	public void setUsername(String username) {
+		this.username = username;
+	}
+
+	public String getMobile() {
+		return mobile;
+	}
+
+	public void setMobile(String mobile) {
+		this.mobile = mobile;
+	}
+
+	public String getPassword() {
+		return password;
+	}
+
+	public void setPassword(String password) {
+		this.password = password;
+	}
+
+	public Date getCreateTime() {
+		return createTime;
+	}
+
+	public void setCreateTime(Date createTime) {
+		this.createTime = createTime;
+	}
+}
diff --git a/src/main/java/com/monkey01/modules/module1/domain/vo/LoginVO.java b/src/main/java/com/monkey01/modules/module1/domain/vo/LoginVO.java
@@ -0,0 +1,45 @@
+/**
+ * Copyright 2018 人人开源 http://www.renren.io
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+
+package com.monkey01.modules.module1.domain.vo;
+
+
+import javax.validation.constraints.NotBlank;
+
+
+public class LoginVO {
+    @NotBlank(message="手机号不能为空")
+    private String mobile;
+
+    @NotBlank(message="密码不能为空")
+    private String password;
+
+    public String getMobile() {
+        return mobile;
+    }
+
+    public void setMobile(String mobile) {
+        this.mobile = mobile;
+    }
+
+    public String getPassword() {
+        return password;
+    }
+
+    public void setPassword(String password) {
+        this.password = password;
+    }
+}
diff --git a/src/main/java/com/monkey01/modules/module1/domain/vo/RegisterVO.java b/src/main/java/com/monkey01/modules/module1/domain/vo/RegisterVO.java
@@ -0,0 +1,41 @@
+/**
+ * Copyright 2018 人人开源 http://www.renren.io
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+
+package com.monkey01.modules.module1.domain.vo;
+
+
+
+public class RegisterVO {
+
+    private String mobile;
+    private String password;
+
+    public String getMobile() {
+        return mobile;
+    }
+
+    public void setMobile(String mobile) {
+        this.mobile = mobile;
+    }
+
+    public String getPassword() {
+        return password;
+    }
+
+    public void setPassword(String password) {
+        this.password = password;
+    }
+}
diff --git a/src/main/java/com/monkey01/modules/module1/service/UserService.java b/src/main/java/com/monkey01/modules/module1/service/UserService.java
@@ -0,0 +1,14 @@
+package com.monkey01.modules.module1.service;
+
+
+import com.baomidou.mybatisplus.extension.service.IService;
+import com.monkey01.modules.module1.domain.dto.UserDO;
+import com.monkey01.modules.module1.domain.vo.LoginVO;
+
+
+public interface UserService extends IService<UserDO> {
+
+	UserDO queryByMobile(String mobile);
+
+	long login(LoginVO loginVO);
+}
diff --git a/src/main/java/com/monkey01/modules/module1/service/impl/UserServiceImpl.java b/src/main/java/com/monkey01/modules/module1/service/impl/UserServiceImpl.java
diff --git a/src/main/resources/application-dev.yml b/src/main/resources/application-dev.yml
diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
diff --git a/src/test/java/com/monkey01/common/encrypt/DESTest.java b/src/test/java/com/monkey01/common/encrypt/DESTest.java
diff --git a/src/test/java/com/monkey01/common/mybatisplus/generator/GeneratorServiceEntity.java b/src/test/java/com/monkey01/common/mybatisplus/generator/GeneratorServiceEntity.java

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-package com.monkey01.modules.controller;`
	`1`	`+package com.monkey01.modules.module1.controller;`
`2`	`2`
`3`	`3`	`import com.monkey01.common.annotation.MkParams;`
`4`	`4`	`import com.monkey01.common.annotation.SysLog;`