package com.vci.ubcs.code.service.impl;
|
|
import com.alibaba.fastjson.JSON;
|
import com.vci.ubcs.code.config.HeaderMapRequestWrapper;
|
import com.vci.ubcs.code.entity.TokenUserObject;
|
import com.vci.ubcs.code.service.IPasswordFreeLoginService;
|
import com.vci.ubcs.code.util.HttpUtils;
|
import org.springblade.core.cache.utils.CacheUtil;
|
import org.springblade.core.log.exception.ServiceException;
|
import org.springblade.core.redis.cache.BladeRedis;
|
import org.springblade.core.tool.utils.Func;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.beans.factory.annotation.Value;
|
import org.springframework.cloud.client.ServiceInstance;
|
import org.springframework.cloud.client.discovery.DiscoveryClient;
|
import org.springframework.http.HttpHeaders;
|
import org.springframework.http.MediaType;
|
import org.springframework.stereotype.Service;
|
import org.springframework.util.LinkedMultiValueMap;
|
import org.springframework.util.MultiValueMap;
|
|
import javax.annotation.Resource;
|
import javax.servlet.ServletRequest;
|
import javax.servlet.http.HttpServletRequest;
|
import javax.servlet.http.HttpServletResponse;
|
import java.util.List;
|
|
/**
|
* 免密登录服务
|
* @author ludc
|
* @date 2023/9/11 15:45
|
*/
|
@Service
|
public class PasswordFreeLoginServiceImpl implements IPasswordFreeLoginService {
|
|
// 通过服务注册中心获取网关的端口号
|
@Autowired
|
private DiscoveryClient discoveryClient;
|
@Value("${user-info.pwd-free-tenant-id}")
|
private String pwdFreeTenantId;
|
@Autowired
|
private BladeRedis bladeRedis;
|
// 缓存名
|
public static final String PWD_FREE_LOGIN_TOKEN = "pwdFreeLogin:Token:";
|
|
/**
|
* 获取网关端口
|
* @return
|
*/
|
private String getGatewayPort() {
|
List<ServiceInstance> instances = discoveryClient.getInstances("ubcs-gateway");
|
if (!instances.isEmpty()) {
|
ServiceInstance gatewayInstance = instances.get(0);
|
return String.valueOf(gatewayInstance.getPort());
|
}
|
return "80";
|
}
|
|
/**
|
* 免密登录并存入缓存,配合过滤器写法
|
* @param username 账号
|
* @return
|
*/
|
@Override
|
public String passwordFreeLogin(String username, ServletRequest servletRequest) {
|
// 免密登录接口地址
|
String loginUrl = "http://localhost:"+this.getGatewayPort()+"/ubcs-auth/oauth/token";
|
// 请求来自己哪个ip地址
|
HttpServletRequest request = (HeaderMapRequestWrapper) servletRequest;
|
String ipAddr = request.getRemoteAddr();
|
// 先尝试从缓存当中取,如果不存在就登录
|
String redisToken = (String)bladeRedis.get(PWD_FREE_LOGIN_TOKEN+ipAddr);
|
if(Func.isNotBlank(redisToken)){
|
// 缓存中已经存在就直接删除该缓存,主要为了避免统一ip下存在多个token的情况
|
bladeRedis.del(PWD_FREE_LOGIN_TOKEN+ipAddr);
|
}
|
// 不存在就重新获取token
|
// 设置请求头
|
HttpHeaders headers = new HttpHeaders();
|
headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
|
headers.set("Authorization", "Basic c3dvcmQ6c3dvcmRfc2VjcmV0");
|
headers.set("Tenant-Id", pwdFreeTenantId);
|
|
//设置请求体参数
|
MultiValueMap<String,String> parameters = new LinkedMultiValueMap<String,String>();
|
parameters.add("username",username);
|
parameters.add("grant_type", "passwordfree");
|
parameters.add("scope", "all");
|
parameters.add("type", "account");
|
|
// 发送POST请求
|
String responseBody = HttpUtils.post(loginUrl, parameters,headers);
|
//拿到响应体其中包含token,用request中的ip地址作为键值,将token存入缓存
|
TokenUserObject tokenUserObject = null;
|
try {
|
tokenUserObject = JSON.parseObject(responseBody, TokenUserObject.class);
|
}catch (Exception e){
|
throw new ServiceException("responseBody转换TokenUserObject失败:"+e.getMessage());
|
}
|
// 将token存入缓存当中,过期时间为24小时
|
bladeRedis.setEx(PWD_FREE_LOGIN_TOKEN+ipAddr,"bearer "+tokenUserObject.getAccess_token(),60*60*60*24L);
|
return responseBody;
|
}
|
|
/**
|
* 免密登录,改变当前webservice请求的header
|
* @param username 账号
|
* @return
|
*/
|
@Override
|
public boolean passwordFreeLogin2(String username, HttpServletRequest servletRequest) {
|
// 免密登录接口地址
|
String loginUrl = "http://localhost:"+this.getGatewayPort()+"/ubcs-auth/oauth/token";
|
|
// 获取token,先设置请求头
|
HttpHeaders headers = new HttpHeaders();
|
headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
|
headers.set("Authorization", "Basic c3dvcmQ6c3dvcmRfc2VjcmV0");
|
headers.set("Tenant-Id", pwdFreeTenantId);
|
//设置请求体参数
|
MultiValueMap<String,String> parameters = new LinkedMultiValueMap<String,String>();
|
parameters.add("username",username);
|
parameters.add("grant_type", "passwordfree");
|
parameters.add("scope", "all");
|
parameters.add("type", "account");
|
// 发送POST请求
|
String responseBody = HttpUtils.post(loginUrl, parameters,headers);
|
//拿到响应体其中包含token,用request中的ip地址作为键值,将token存入缓存
|
TokenUserObject tokenUserObject = null;
|
try {
|
tokenUserObject = JSON.parseObject(responseBody, TokenUserObject.class);
|
}catch (Exception e){
|
throw new ServiceException("responseBody转换TokenUserObject失败:"+e.getMessage());
|
}
|
HttpServletRequest request = (HeaderMapRequestWrapper) servletRequest;
|
HeaderMapRequestWrapper requestWrapper = new HeaderMapRequestWrapper(request);
|
|
//设置当前web接口的请求头
|
String token = "bearer " + tokenUserObject.getAccess_token();
|
// 将token设置到header中
|
requestWrapper.setHeader("Blade-Auth", token);
|
requestWrapper.setHeader("Authorization","Basic c3dvcmQ6c3dvcmRfc2VjcmV0");
|
|
// 将token存入缓存当中,过期时间为24小时
|
return true;
|
}
|
|
}
|
