/*
|
* Copyright (c) 2018-2028, Chill Zhuang All rights reserved.
|
*
|
* Redistribution and use in source and binary forms, with or without
|
* modification, are permitted provided that the following conditions are met:
|
*
|
* Redistributions of source code must retain the above copyright notice,
|
* this list of conditions and the following disclaimer.
|
* Redistributions in binary form must reproduce the above copyright
|
* notice, this list of conditions and the following disclaimer in the
|
* documentation and/or other materials provided with the distribution.
|
* Neither the name of the dreamlu.net developer nor the names of its
|
* contributors may be used to endorse or promote products derived from
|
* this software without specific prior written permission.
|
* Author: Chill 庄骞 (smallchill@163.com)
|
*/
|
package com.vci.ubcs.auth.endpoint;
|
|
import com.vci.ubcs.starter.util.HttpUtils;
|
import lombok.AllArgsConstructor;
|
import lombok.extern.slf4j.Slf4j;
|
import me.zhyd.oauth.model.AuthCallback;
|
import me.zhyd.oauth.model.AuthToken;
|
import me.zhyd.oauth.request.AuthRequest;
|
import me.zhyd.oauth.utils.AuthStateUtils;
|
import org.springblade.core.social.props.SocialProperties;
|
import org.springblade.core.social.utils.SocialUtil;
|
import org.springblade.core.tenant.annotation.NonDS;
|
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
|
import org.springframework.web.bind.annotation.GetMapping;
|
import org.springframework.web.bind.annotation.PathVariable;
|
import org.springframework.web.bind.annotation.RequestMapping;
|
import org.springframework.web.bind.annotation.RestController;
|
import org.springframework.web.servlet.ModelAndView;
|
|
import javax.servlet.http.HttpServletRequest;
|
import javax.servlet.http.HttpServletResponse;
|
import java.io.IOException;
|
|
/**
|
* SocialEndpoint
|
*
|
* @author Chill
|
*/
|
@NonDS
|
@Slf4j
|
@RestController
|
@AllArgsConstructor
|
@ConditionalOnProperty(value = "social.enabled", havingValue = "true")
|
public class BladeSocialEndpoint {
|
|
private final SocialProperties socialProperties;
|
|
/**
|
* 授权完毕跳转
|
*/
|
@RequestMapping("/oauth/render/{source}")
|
public void renderAuth(@PathVariable("source") String source, HttpServletResponse response) throws IOException {
|
AuthRequest authRequest = SocialUtil.getAuthRequest(source, socialProperties);
|
String authorizeUrl = authRequest.authorize(AuthStateUtils.createState());
|
response.sendRedirect(authorizeUrl);
|
}
|
|
/**
|
* 与OA系统的单点登录
|
*/
|
@GetMapping("/oauth/oasso")
|
public ModelAndView require(HttpServletRequest request, ModelAndView model) {
|
// 1、拿到用户的鉴权信息
|
String userName = request.getParameter("username");
|
// 2、调用鉴权登录接口,这里采用授权码模式
|
// 3、构建请求地址,
|
//HttpUtils.post();
|
|
model.setViewName("login");
|
return model;
|
}
|
|
|
/**
|
* 获取认证信息
|
*/
|
@RequestMapping("/oauth/callback/{source}")
|
public Object login(@PathVariable("source") String source, AuthCallback callback) {
|
AuthRequest authRequest = SocialUtil.getAuthRequest(source, socialProperties);
|
return authRequest.login(callback);
|
}
|
|
/**
|
* 撤销授权
|
*/
|
@RequestMapping("/oauth/revoke/{source}/{token}")
|
public Object revokeAuth(@PathVariable("source") String source, @PathVariable("token") String token) {
|
AuthRequest authRequest = SocialUtil.getAuthRequest(source, socialProperties);
|
return authRequest.revoke(AuthToken.builder().accessToken(token).build());
|
}
|
|
/**
|
* 续期令牌
|
*/
|
@RequestMapping("/oauth/refresh/{source}")
|
public Object refreshAuth(@PathVariable("source") String source, String token) {
|
AuthRequest authRequest = SocialUtil.getAuthRequest(source, socialProperties);
|
return authRequest.refresh(AuthToken.builder().refreshToken(token).build());
|
}
|
|
|
}
|
