//父类中已有accessToken,所以这里不需要新建accessToken
private String appId;
private String openId;
private ObjectMapper objectMapper = new ObjectMapper();
/**
- 1、获取openId
- @param accessToken
- @param appId
*/
//openId是通过使用accessToken请求时获取到的,所以构造函数的形参中要加入accessToken,appId是QQ服务提供商提供给你的,你这个系统的Id,也需要传入
public QQImpl(String accessToken, String appId) {
//父类会自动将accessToken放到请求url后面作为请求参数
super(accessToken, TokenStrategy.ACCESS_TOKEN_PARAMETER);
this.appId = appId;
//String.format用来将请求中的%s用accessToken替换掉
String url = String.format(URL_GET_OPENID,accessToken);
//发送HTTP请求获取openId,返回的是JSON数据: callback( {“client_id”:“YOUR_APPID”,“openid”:“YOUR_OPENID”} );
String result = getRestTemplate().getForObject(url,String.class);
System.out.println(result);
this.openId = StringUtils.substringBetween(result,““openid”:”,“}”);
}
/**
- 2、使用 access_token,appid,openid来获取用户信息
- @return
- @throws Exception
*/
@Override
public QQUserInfo getUserInfo() throws Exception{
//因为在构造函数中super(accessToken, TokenStrategy.ACCESS_TOKEN_PARAMETER);已经将accessToken加到请求中,所以这里就没有再加accessToken参数
String url = String.format(URL_GET_USERINFO,appId,openId);
//获取用户信息
String result = getRestTemplate().getForObject(url,String.class);
System.out.println(result);
//objectMapper.readValue()是将字符串转为对象
QQUserInfo userInfo = objectMapper.readValue(result,QQUserInfo.class);
return userInfo;
}
}
QQ的登录具体流程可到 :https://wiki.connect.qq.com/准备工作_oauth2-0 查看。
Step1:获取Authorization Code
请求地址:https://graph.qq.com/oauth2.0/authorize
Step2:通过Authorization Code获取Access Token
请求地址:https://graph.qq.com/oauth2.0/token
Step3:获取用户OpenID
**请求地址:**https://graph.qq.com/oauth2.0/me
Step4:获取用户信息
**请求地址:**https://graph.qq.com/user/get_user_info
3.2 ServiceProvider封装获取授权码、令牌和用户信息
package security.core.social.qq.connect;
import org.springframework.social.oauth2.AbstractOAuth2ServiceProvider;
import org.springframework.social.oauth2.OAuth2Operations;
import org.springframework.social.oauth2.OAuth2Template;
import security.core.social.qq.api.QQ;
import security.core.social.qq.api.QQImpl;
/**
- QQ登录时的ServiceProvider
*/
public class QQServiceProvider extends AbstractOAuth2ServiceProvider {
private String appId;
//1、第三方应用将用户带到服务提供商的URL获取授权码
private static final String URL_AUTHORIZE = “https://graph.qq.com/oauth2.0/authorize”;
//2、第三方应用拿着授权码获取令牌的URL
private static final String URL_ACCESS_TOKEN = “https://graph.qq.com/oauth2.0/token”;
public QQServiceProvider(String appId,String appSecret) {
super(new OAuth2Template(appId,appSecret,URL_AUTHORIZE,URL_ACCESS_TOKEN));
}
/**
- 获取QQ的实现类
- @param accessToken
- @return
*/
@Override
public QQ getApi(String accessToken) {
return new QQImpl(accessToken,appId);
}
}
3.3新建 ApiAdapter的实现类QQAdapter
package security.core.social.qq.connect;
import org.springframework.social.connect.ApiAdapter;
import org.springframework.social.connect.ConnectionValues;
import org.springframework.social.connect.UserProfile;
import security.core.social.qq.api.QQ;
import security.core.social.qq.api.QQUserInfo;
/**
- ApiAdapter里的泛型是要适配接口,这里是QQ
*/
public class QQAdapter implements ApiAdapter {
/**
- 测试QQ接口是否可用
- @param qq
- @return
*/
@Override
public boolean test(QQ qq) {
return true;
}
/**
- 数据适配:将QQ接口获取到的数据转换成Connection里标准数据
- @param qq
- @param connectionValues
*/
@Override
public void setConnectionValues(QQ qq, ConnectionValues connectionValues) {
QQUserInfo userInfo = qq.getUserInfo();
connectionValues.setDisplayName(userInfo.getNickname());
connectionValues.setImageUrl(userInfo.getFigureurl_qq_1());
//个人主页:QQ是没有个人主页的,设为null
connectionValues.setProfileUrl(null);
connectionValues.setProviderUserId(userInfo.getOpenId());
}
/**
- 获取用户主页信息,暂时用不到
- @param qq
- @return
*/
@Override
public UserProfile fetchUserProfile(QQ qq) {
return null;
}
/**
- 更新QQ信息(用不到,QQ无此功能)
- @param qq
- @param s
*/
@Override
public void updateStatus(QQ qq, String s) {
}
}
3.3 新建ConnectionFacotory并继承OAuth2Connection
package security.core.social.qq.connect;
import org.springframework.social.connect.support.OAuth2ConnectionFactory;
import security.core.social.qq.api.QQ;
/**
- QQConnectionFactory继承OAuth2ConnectionFactory的泛型是要适配的接口,作用是用来生成Connection
*/
public class QQConnectionFactory extends OAuth2ConnectionFactory {
/**
- QQConnectionFactory的构造函数
- @param providerId
- @param appId
- @param appScret
/
public QQConnectionFactory(String providerId,String appId,String appScret) {
/* - providerId:服务提供商的唯一标识
- serviceProvider:QQServiceProvider
- apiAdapter:QQAdapter
*/
super(providerId, new QQServiceProvider(appId,appScret), new QQAdapter());
}
}
3.4 新建一个配置类SocialConfig,使用springsocial的配置将从第三方获取到的用户数据存储到数据库中
package security.core.social;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.crypto.encrypt.Encryptors;
import org.springframework.social.config.annotation.EnableSocial;
import org.springframework.social.config.annotation.SocialConfigurerAdapter;
import org.springframework.social.connect.ConnectionFactoryLocator;
import org.springframework.social.connect.UsersConnectionRepository;
import org.springframework.social.connect.jdbc.JdbcUsersConnectionRepository;
import javax.sql.DataSource;
/**
- SocialConfig:用于将从第三方获取到的用户数据存储到数据库中
- EnableSocial:将项目的social特性开启起来
*/
@Configuration
@EnableSocial
public class SocialConfig extends SocialConfigurerAdapter {
@Autowired
private DataSource dataSource;
/**
- JdbcUsersConnectionRepository构造函数的三个参数的作用:
- dataSource:用于连接数据库
- connectionFactoryLocator:用于查找具体使用的ConnectionFactoryLocator
- textEncryptor:用于加解密数据
- @param connectionFactoryLocator
- @return
*/
@Override
public UsersConnectionRepository getUsersConnectionRepository(ConnectionFactoryLocator connectionFactoryLocator) {
//Encryptors.noOpText():是不做任何加解密
return new JdbcUsersConnectionRepository(dataSource,connectionFactoryLocator, Encryptors.noOpText());
}
}
3.5 将 JdbcUsersConnectionRepository使用的数据表的建表语句拿到数据库里执行建表,建表语句在JdbcUsersConnectionRepository类的旁边
3.6给新建的数据表加入前缀
/**
- JdbcUsersConnectionRepository构造函数的三个参数的作用:
- dataSource:用于连接数据库
- connectionFactoryLocator:用于查找具体使用的ConnectionFactoryLocator
- textEncryptor:用于加解密数据
- @param connectionFactoryLocator
- @return
*/
@Override
public UsersConnectionRepository getUsersConnectionRepository(ConnectionFactoryLocator connectionFactoryLocator) {
//Encryptors.noOpText():是不做任何加解密
JdbcUsersConnectionRepository repository = new JdbcUsersConnectionRepository(dataSource,connectionFactoryLocator, Encryptors.noOpText());
//setTablePrefix:设置表的前缀
repository.setTablePrefix(“u_”);
return repository;
}
完整代码:
package security.core.social;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.crypto.encrypt.Encryptors;
import org.springframework.social.config.annotation.EnableSocial;
import org.springframework.social.config.annotation.SocialConfigurerAdapter;
import org.springframework.social.connect.ConnectionFactoryLocator;
import org.springframework.social.connect.UsersConnectionRepository;
import org.springframework.social.connect.jdbc.JdbcUsersConnectionRepository;
import javax.sql.DataSource;
/**
- SocialConfig:用于将从第三方获取到的用户数据存储到数据库中
- EnableSocial:将项目的social特性开启起来
*/
@Configuration
@EnableSocial
public class SocialConfig extends SocialConfigurerAdapter {
@Autowired
private DataSource dataSource;
/**
- JdbcUsersConnectionRepository构造函数的三个参数的作用:
- dataSource:用于连接数据库
- connectionFactoryLocator:用于查找具体使用的ConnectionFactoryLocator
- textEncryptor:用于加解密数据
- @param connectionFactoryLocator
- @return
*/
@Override
public UsersConnectionRepository getUsersConnectionRepository(ConnectionFactoryLocator connectionFactoryLocator) {
//Encryptors.noOpText():是不做任何加解密
JdbcUsersConnectionRepository repository = new JdbcUsersConnectionRepository(dataSource,connectionFactoryLocator, Encryptors.noOpText());
//setTablePrefix:设置表的前缀
repository.setTablePrefix(“u_”);
return repository;
}
}
3.7 使用 userId获取用户信息
修改MyUserDetailsService,加入实现SocialUserDetailsService,用于通过userId来获取用户信息
package security.browser.service.impl;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.authority.AuthorityUtils;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.social.security.SocialUser;
import org.springframework.social.security.SocialUserDetails;
import org.springframework.social.security.SocialUserDetailsService;
import org.springframework.stereotype.Component;
/**
- SocialUserDetailsService:是social的获取用户信息的接口类
*/
@Component
@Slf4j
public class MyUserDetailsService implements UserDetailsService, SocialUserDetailsService {
@Autowired
private PasswordEncoder myPasswordEncoder;
/**
- 可以@AutowiredDao层接口从而实现根据用户名去查找用户信息
- @param username
- @return
- @throws UsernameNotFoundException
*/
@Override
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
log.info("用户名: "+username);
String password = myPasswordEncoder.encode(“123456”);
log.info(“密码:”+password);
//这个User类实现了UserDetails
//密码应该是数据库查询出的密码
//authorities:用户权限的集合,即用来给用户授权
User user = new User(username,password, AuthorityUtils.commaSeparatedStringToAuthorityList(“admin”));
return user;
}
/**
- 通过userId获取用户信息
- @param userId
- @return
- @throws UsernameNotFoundException
*/
@Override
public SocialUserDetails loadUserByUserId(String userId) throws UsernameNotFoundException {
log.info("用户Id: "+userId);
String password = myPasswordEncoder.encode(“123456”);
log.info(“密码:”+password);
//这个User类实现了UserDetails
//密码应该是数据库查询出的密码
//authorities:用户权限的集合,即用来给用户授权
return new SocialUser(userId,password, AuthorityUtils.commaSeparatedStringToAuthorityList(“admin”));
}
}
3.8新建QQProperties的相关配置类
package security.core.properties;
/**
- QQ登录的相关配置
*/
public class QQProperties{
/**
- 从服务提供商处申请的本项目的appId
*/
private String appId;
/**
- 从服务提供商处申请的本项目的appSecret
*/
private String appSecret;
/**
- 服务提供商的标识
*/
private String provideId = “qq”;
public String getAppId() {
return appId;
}
public void setAppId(String appId) {
this.appId = appId;
}
public String getAppSecret() {
return appSecret;
}
public void setAppSecret(String appSecret) {
this.appSecret = appSecret;
}
public String getProvideId() {
return provideId;
}
public void setProvideId(String provideId) {
this.provideId = provideId;
}
}
3.9 新建SocialProperties相关的配置类
package security.core.properties;
/**
- 社交相关的配置类
*/
public class SocialProperties {
private QQProperties qq = new QQProperties();
public QQProperties getQqProperties() {
return qq;
}
public void setQqProperties(QQProperties qq) {
this.qq = qq;
}
}
3.10 在SecurityProperties中加入SocialProperties配置
/**
- 社交相关的配置
*/
private SocialProperties social = new SocialProperties();
public SocialProperties getSocial() {
return social;
}
public void setSocial(SocialProperties social) {
this.social = social;
}
完整代码:
package security.core.properties;
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.context.annotation.PropertySource;
import org.springframework.stereotype.Component;
@Component
@PropertySource(“classpath:application-browser.properties”)
//@PropertySource(value= {“classpath:application-demo.properties”,“classpath:application-browser.properties”})
@ConfigurationProperties(“imooc.security”)
public class SecurityProperties {
/**
- 浏览器相关的配置
*/
private BrowserProperties browser = new BrowserProperties();
/**
- 验证码相关的配置
*/
private ValidateCodeProperties code = new ValidateCodeProperties();
/**
- 社交相关的配置
*/
private SocialProperties social = new SocialProperties();
public BrowserProperties getBrowser() {
return browser;
}
public void setBrowser(BrowserProperties browser) {
this.browser = browser;
}
public ValidateCodeProperties getCode() {
return code;
}
public void setCode(ValidateCodeProperties code) {
this.code = code;
}
public SocialProperties getSocial() {
return social;
}
public void setSocial(SocialProperties social) {
this.social = social;
}
}
3.11 新建SocialAutoConfigurerAdapter,因为使用的SpringSocial中没有SocialAutoConfigurerAdapter,所以新建一个
package security.core.social.qq.config;
import org.springframework.core.env.Environment;
import org.springframework.social.config.annotation.ConnectionFactoryConfigurer;
import org.springframework.social.config.annotation.SocialConfigurerAdapter;
import org.springframework.social.connect.ConnectionFactory;
/**
- 因为使用的SpringSocial中没有SocialAutoConfigurerAdapter,所以新建一个
*/
public abstract class SocialAutoConfigurerAdapter extends SocialConfigurerAdapter {
public SocialAutoConfigurerAdapter() {
}
public void addConnectionFactories(ConnectionFactoryConfigurer configurer, Environment environment) {
configurer.addConnectionFactory(this.createConnectionFactory());
}
protected abstract ConnectionFactory<?> createConnectionFactory();
}
3.12 新建 QQAutoConfig,用于将QQ的配置注入到ConnectionFactory的构造参数中
package security.core.social.qq.config;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
import org.springframework.context.annotation.Configuration;
import org.springframework.social.connect.ConnectionFactory;
import security.core.properties.QQProperties;
import security.core.properties.SecurityProperties;
import security.core.social.qq.connect.QQConnectionFactory;
/**
- 用于将QQ的配置注入到ConnectionFactory的构造参数中
- ConditionalOnProperty:作用是只有当系统中配置了appId时QQAutoConfig配置类才会生效
*/
@Configuration
@ConditionalOnProperty(value = “imooc.security.social.qq”,name = “appId”)
public class QQAutoConfig extends SocialAutoConfigurerAdapter{
@Autowired
private SecurityProperties securityProperties;
/**
- 在创建ConnectionFactory时将参数注入进去
- @return
*/
@Override
protected ConnectionFactory<?> createConnectionFactory() {
QQProperties qqconfig = securityProperties.getSocial().getQqProperties();
return new QQConnectionFactory(qqconfig.getProvideId(),qqconfig.getAppId(),qqconfig.getAppSecret());
}
}
3.13 在application-browser.properties属性文件中加入
imooc.security.social.qq.appId =
imooc.security.social.qq.appSecret =
3.14 在过滤器链中加入SocialAuthenticationFilter过滤器
3.14.1、将SpringSocial的Bean写在SocialConfig中
/**
- SpringSocial的配置,这个Bean也可以挪到 BrowserSecurityConfig里
- @return
*/
@Bean
public SpringSocialConfigurer imoocSecuritySocialConfig(){
return new SpringSocialConfigurer();
}
3.14.2、在SpringSecurity的过滤器链中加入SpringSocial的配置
//加入SpringSocialConfigurer的配置
@Autowired
private SpringSocialConfigurer socialConfigurer;
/************************************************/
.apply(socialConfigurer).and()//将SpringSocial的过滤器配置加入其中
BrowserSecurityConfig的完整代码:
package security.browser.config;
import imooc.security.msn.service.MessageService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.builders.WebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.web.authentication.AuthenticationFailureHandler;
import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
import org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl;
import org.springframework.security.web.authentication.rememberme.PersistentTokenRepository;
import org.springframework.social.security.SpringSocialConfigurer;
import security.core.authentication.handle.MsnCodeAuthenticationFailureHandler;
import security.core.authentication.handle.MsnCodeAuthenticationSuccessHandler;
import security.core.authentication.mobile.MsnCodeAuthenticationSecurityConfig;
import security.core.properties.SecurityProperties;
import security.core.validateCode.ImageCodeGenerator;
import security.core.validateCode.ValidateCodeFilter;
import security.core.validateCode.ValidateCodeGenerator;
自我介绍一下,小编13年上海交大毕业,曾经在小公司待过,也去过华为、OPPO等大厂,18年进入阿里一直到现在。
深知大多数Go语言工程师,想要提升技能,往往是自己摸索成长或者是报班学习,但对于培训机构动则几千的学费,着实压力不小。自己不成体系的自学效果低效又漫长,而且极易碰到天花板技术停滞不前!
因此收集整理了一份《2024年Go语言全套学习资料》,初衷也很简单,就是希望能够帮助到想自学提升又不知道该从何学起的朋友,同时减轻大家的负担。
既有适合小白学习的零基础资料,也有适合3年以上经验的小伙伴深入学习提升的进阶课程,基本涵盖了95%以上Golang知识点,真正体系化!
由于文件比较大,这里只是将部分目录大纲截图出来,每个节点里面都包含大厂面经、学习笔记、源码讲义、实战项目、讲解视频,并且后续会持续更新
如果你觉得这些内容对你有帮助,可以添加V获取:vip1024b (备注Go)
一个人可以走的很快,但一群人才能走的更远。不论你是正从事IT行业的老鸟或是对IT行业感兴趣的新人,都欢迎扫码加入我们的的圈子(技术交流、学习资源、职场吐槽、大厂内推、面试辅导),让我们一起学习成长!
深知大多数Go语言工程师,想要提升技能,往往是自己摸索成长或者是报班学习,但对于培训机构动则几千的学费,着实压力不小。自己不成体系的自学效果低效又漫长,而且极易碰到天花板技术停滞不前!
因此收集整理了一份《2024年Go语言全套学习资料》,初衷也很简单,就是希望能够帮助到想自学提升又不知道该从何学起的朋友,同时减轻大家的负担。
[外链图片转存中…(img-3tpqmcLG-1712988491250)]
[外链图片转存中…(img-4Y3ZWFY6-1712988491251)]
[外链图片转存中…(img-jwkafg9H-1712988491252)]
[外链图片转存中…(img-2YyJTaQ7-1712988491252)]
[外链图片转存中…(img-quttRHHB-1712988491253)]
既有适合小白学习的零基础资料,也有适合3年以上经验的小伙伴深入学习提升的进阶课程,基本涵盖了95%以上Golang知识点,真正体系化!
由于文件比较大,这里只是将部分目录大纲截图出来,每个节点里面都包含大厂面经、学习笔记、源码讲义、实战项目、讲解视频,并且后续会持续更新
如果你觉得这些内容对你有帮助,可以添加V获取:vip1024b (备注Go)
[外链图片转存中…(img-EADaiwvs-1712988491253)]
一个人可以走的很快,但一群人才能走的更远。不论你是正从事IT行业的老鸟或是对IT行业感兴趣的新人,都欢迎扫码加入我们的的圈子(技术交流、学习资源、职场吐槽、大厂内推、面试辅导),让我们一起学习成长!