第三方登录_QQ

最新推荐文章于 2023-06-28 10:29:31 发布
最新推荐文章于 2023-06-28 10:29:31 发布
阅读量604 收藏 1
点赞数 1
分类专栏: 随笔
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_38795959/article/details/90606783
版权

1.QQ配置文件:


#第三方QQ登录配置
constants:
    # QQ
    qqAppId: ******(QQ平台的AppID)
    qqAppSecret: **********(QQ平台的AppSecret)
    qqRedirectUrl: ***********(登录成功后的回调路径:http://ucapi.****.com/api/v1/anon/qq_login)
    qqTokenUrl: https://graph.qq.com/oauth2.0/token?(QQtoken路径)
    qqUrl: https://graph.qq.com/oauth2.0/authorize?(QQ访问路径)
    clientId: ****-****-***-***-***** (客户端id)
    url: http://uc.***.com (跳转首页,注册页的路径域名)

2.QQ第三方登录:常量配置类

package com.ciip.cloud.core.usercenter.constants;

import lombok.Getter;
import lombok.Setter;
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.context.annotation.Configuration;

import javax.validation.constraints.NotEmpty;

/**
 * Title: ThirdLoginConstants
 * Description: 第三方QQ登录:常量配置类
 *
 * @author 
 * @created
 */
@Configuration
@ConfigurationProperties(prefix = "constants")
@Getter
@Setter
public class ThirdLoginConstants {

    /**
     *  QQ的AppID
     */
    @NotEmpty
    private String  qqAppId;

    /**
     * QQ的AppSecret
     */
    @NotEmpty
    private String qqAppSecret;

    /**
     * QQ的回调路径
     */
    @NotEmpty
    private String qqRedirectUrl;
    /**
     * QQtoken路径
     *          
     */
    @NotEmpty
    private String qqTokenUrl;
    /**
     * QQ访问路径
     *          
     */
    @NotEmpty
    private String qqUrl;
 /**
     * clientId
     *         
     */
    @NotEmpty
    private String clientId;
    /**
     * 域名路径
     *          
     */
    @NotEmpty
    private String url;

}

3.controller层:

package com.ciip.cloud.core.usercenter.controller;
/**
 * Title: ThirdLoginController
 * Description: 第三方QQ登录
 *
 * @author 
 * @created 
 */

import com.ciip.cloud.core.common.constant.usercenter.CIIPCommonConstant;
import com.ciip.cloud.core.usercenter.service.QQAuthService;
import io.swagger.annotations.Api;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import javax.servlet.http.HttpServletResponse;

@Api(value = "ThirdLoginController", description = "第三方登录(微信,QQ,微博)")
@RestController
@RequestMapping(value = CIIPCommonConstant.ApiPath.V1, produces = {MediaType.APPLICATION_JSON_UTF8_VALUE})
public class ThirdLoginController {


    @Autowired
    QQAuthService qqAuthService;


    /**
     * CIIP改版:QQ第三方登录页面
     *                  
     * @return
     */
    @GetMapping(value =  CIIPCommonConstant.ApiAuth.ANON +"/qq_loginUrl")
    public String getQQCode(){
        return  qqAuthService.getQQCode();
    }

    /**
     * CIIP改版:获取QQ登录后的token,openid等值
     *                 
     * @param code
     * @param response
     * @return
     */
    @PostMapping(value =  CIIPCommonConstant.ApiAuth.ANON +"/qq_accessToken")
    public String getQQAccessToken(String code,HttpServletResponse response){
       return qqAuthService.getQQAccessToken(code);
    }
}

4.service层:

package com.ciip.cloud.core.usercenter.service;


/**
 * Title: QQAuthService
 * Description: QQ 认证接口
 *
 * @author 
 * @created 2019/5/8 17:30
 */

public interface QQAuthService {

    /**
     *  CIIP 改版:获取 Code,即登陆页面的 URL
     *             
     *
     * @return
     */
    String getQQCode();

    /**
     *  CIIP 改版:获取token,该步骤返回的token期限为一个月
     *             
     * @return
     */
    String getQQAccessToken(String code);

    /**
     * CIIP 改版:根据accessToken,获取QQ的openId
     *             
     *
     * @param accessToken
     * @return
     */
    String getOpenId(String accessToken);
}

5.service实现层:

package com.ciip.cloud.core.usercenter.service.impl;

import com.ciip.cloud.core.usercenter.constants.ThirdLoginConstants;
import com.ciip.cloud.core.usercenter.model.CiipTokenLog;
import com.ciip.cloud.core.usercenter.service.CiipTokenLogService;
import com.ciip.cloud.core.usercenter.service.QQAuthService;
import com.ciip.cloud.core.usercenter.utils.HttpClientUtils;
import com.ciip.cloud.core.usercenter.utils.URLEncodeUtil;
import org.apache.commons.lang.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;

import java.io.InputStream;


/**
 * Title: QQAuthServiceImpl
 * Description: TODO
 *
 * @author 
 * @created 
 */

@Service
public class QQAuthServiceImpl implements QQAuthService {


    @Autowired
    ThirdLoginConstants thirdLoginConstants;
    @Autowired
    CiipTokenLogService ciipTokenLogService;

    /**
     *获取 Code,即登陆页面的 URL
     *              
     *
     * @return
     */
    @Override
    public String getQQCode() {
        //拼接url
        StringBuilder url = new StringBuilder();
        //url.append("https://graph.qq.com/oauth2.0/authorize?");
        url.append(thirdLoginConstants.getQqUrl());
        url.append("response_type=code");
        url.append("&client_id=").append(thirdLoginConstants.getQqAppId());
        //回调地址 ,回调地址要进行Encode转码
        String redirect_uri = thirdLoginConstants.getQqRedirectUrl();
        //转码
        url.append("&redirect_uri=").append(URLEncodeUtil.getURLEncoderString(redirect_uri));
        url.append("&state=ok");
        System.out.println(url.toString());
        return  url.toString();
    }

    /**
     * 获取token,该步骤返回的token期限为一个月
     *              
     * @return
     */
    @Override
    public String getQQAccessToken(String code) {
        if("".equals(code)){
                return "code为空.";
        }
        StringBuilder url = new StringBuilder();
        //url.append("https://graph.qq.com/oauth2.0/token?");
        url.append(thirdLoginConstants.getQqTokenUrl());
        url.append("grant_type=authorization_code");
        url.append("&client_id=").append(thirdLoginConstants.getQqAppId());
        url.append("&client_secret=").append(thirdLoginConstants.getQqAppSecret());
        url.append("&code=").append(code);
        //回调地址
        String redirect_uri = thirdLoginConstants.getQqRedirectUrl();
        //转码
        url.append("&redirect_uri=").append(URLEncodeUtil.getURLEncoderString(redirect_uri));
        String result = null;
        try {
            result = HttpClientUtils.get(url.toString(),"UTF-8");
        } catch (Exception e) {
            e.printStackTrace();
        }
        System.out.println("url:" + url.toString());
        //把token保存
        String[] items = StringUtils.splitByWholeSeparatorPreserveAllTokens(result, "&");

        String accessToken = StringUtils.substringAfterLast(items[0], "=");
        Integer expiresIn = new Integer(StringUtils.substringAfterLast(items[1], "="));
        String refreshToken = StringUtils.substringAfterLast(items[2], "=");

        //获取openId
        String openId = this.getOpenId(accessToken);

        //token 信息的添加
        CiipTokenLog ciipTokenLog = new CiipTokenLog();

        ciipTokenLog.setAccessToken(accessToken);
        ciipTokenLog.setExpiresIn(expiresIn);
        ciipTokenLog.setRefreshToken(refreshToken);
        ciipTokenLog.setOpenId(openId);

        ciipTokenLogService.saveCiipTokenLog(ciipTokenLog);

        return openId;
    }

    /**
     * CIIP 改版:根据accessToken,获取QQ的openId
     *             
     *
     * @param accessToken
     * @return
     */
    @Override
    public String getOpenId(String accessToken) {
        StringBuilder url = new StringBuilder("https://graph.qq.com/oauth2.0/me?");
        //获取保存的用户的token
        if (!StringUtils.isNotEmpty(accessToken)){
            return "未授权";
        }
        url.append("access_token=").append(accessToken);
        String result = null;
        try {
            result = HttpClientUtils.get(url.toString(),"UTF-8");
        } catch (Exception e) {
            e.printStackTrace();
        }
        String openId = StringUtils.substringBetween(result, "\"openid\":\"", "\"}");
        System.out.println(openId);

        return openId;
    }
}

6.安全配置(SecurityConfig):

package com.ciip.cloud.core.usercenter.oauth;

import com.ciip.cloud.core.usercenter.handler.CustomAccessDeniedHandler;
import com.ciip.cloud.core.usercenter.oauth.moblie.SmsAuthenticationConfig;
import com.ciip.cloud.core.usercenter.oauth.moblie.SmsCodeFilter;
import com.ciip.cloud.core.usercenter.oauth.qq.QQCodeFilter;
import com.ciip.cloud.core.usercenter.oauth.qq.QqAuthenticationConfig;
import com.ciip.cloud.core.usercenter.oauth.weiBo.WeiBoAuthenticationConfig;
import com.ciip.cloud.core.usercenter.oauth.weiBo.WeiBoCodeFilter;
import com.ciip.cloud.core.usercenter.oauth.weiXin.WeiXinAuthenticationConfig;
import com.ciip.cloud.core.usercenter.oauth.weiXin.WeiXinCodeFilter;
import org.apache.commons.codec.digest.DigestUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.core.annotation.Order;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.factory.PasswordEncoderFactories;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;


@Configuration
@Order(1)
public class SecurityConfig extends WebSecurityConfigurerAdapter {


    @Autowired
    UserDetailsService userDetailsService;



    @Autowired
    CustomAccessDeniedHandler customAccessDeniedHandler;


    @Autowired
    private SmsAuthenticationConfig smsAuthenticationConfig;

    @Autowired
    private QqAuthenticationConfig qqAuthenticationConfig;
    @Autowired
    private WeiXinAuthenticationConfig weiXinAuthenticationConfig;
    @Autowired
    private WeiBoAuthenticationConfig weiBoAuthenticationConfig;
    @Autowired
    private SmsCodeFilter smsCodeFilter;
    @Autowired
    private WeiXinCodeFilter weiXinCodeFilter;
    @Autowired
    private WeiBoCodeFilter weiBoCodeFilter;
    @Autowired
    private QQCodeFilter qqCodeFilter;

    @Bean
    @Override
    public AuthenticationManager authenticationManagerBean() throws Exception {
        return super.authenticationManagerBean();
    }


    @Override
    protected void configure(HttpSecurity http) throws Exception { // @formatter:off

        http
                // 头部缓存
                .headers()
                .cacheControl()
                .and()
                // 防止网站被人嵌套
                .frameOptions()
                .sameOrigin();

        http
                .addFilterBefore(smsCodeFilter, UsernamePasswordAuthenticationFilter.class) // 添加短信验证码校验过滤器
                .addFilterBefore(weiXinCodeFilter, UsernamePasswordAuthenticationFilter.class) // 添加weixin验证码校验过滤器
                .addFilterBefore(weiBoCodeFilter, UsernamePasswordAuthenticationFilter.class) // 添加weiBo验证码校验过滤器
                .addFilterBefore(qqCodeFilter, UsernamePasswordAuthenticationFilter.class) // 添加QQ验证码校验过滤器
                .formLogin().and()
                .authorizeRequests() // 授权配置
                .antMatchers("/login","/api/v1/anon/**","/oauth/authorize","/oauth/token").permitAll() // 无需认证的请求路径
                .and()
                .csrf().disable()
                .apply(smsAuthenticationConfig)//短信验证
                .and().apply(qqAuthenticationConfig) // 第三方QQ登录验证
                .and().apply(weiXinAuthenticationConfig) // 第三方WeiXin登录验证
                .and().apply(weiBoAuthenticationConfig); // 第三方微博登录验证



        http.exceptionHandling().accessDeniedHandler(customAccessDeniedHandler);


    }

    @Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception { // @formatter:off
        auth.userDetailsService(userDetailsService).passwordEncoder(customPasswordEncoder());
    } // @formatter:on

    //TODO 为了符合原有BIM用户加密方式,所以自定义加密规则
    @Bean
    public PasswordEncoder customPasswordEncoder() {
        return new PasswordEncoder() {
            @Override
            public String encode(CharSequence rawPassword) {
                return DigestUtils.md5Hex(rawPassword.toString());
            }
            @Override
            public boolean matches(CharSequence rawPassword, String encodedPassword) {
                return DigestUtils.md5Hex(rawPassword.toString()).equals(encodedPassword);
            }
        };
    }
    //TODO 采用内置加密方式,存储数据库格式如:'{MD5}e10adc3949ba59abbe56e057f20f883e'
    @Bean
    PasswordEncoder passwordEncoder(){
        return PasswordEncoderFactories.createDelegatingPasswordEncoder();
    }
}

7.QQ身份验证配置:

package com.ciip.cloud.core.usercenter.oauth.qq;

import com.ciip.cloud.core.usercenter.handler.CustomAuthenticationFailureHandler;
import com.ciip.cloud.core.usercenter.service.CiipUserService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Lazy;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.web.DefaultSecurityFilterChain;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
import org.springframework.stereotype.Component;

/**
 * Title: QqAuthenticationConfig
 * Description: TODO
 *
 * @author 
 * @created 2019/5/8 17:10
 */
@Component
public class QqAuthenticationConfig extends SecurityConfigurerAdapter<DefaultSecurityFilterChain, HttpSecurity> {

    @Autowired
    CustomAuthenticationFailureHandler customAuthenticationFailureHandler;

    @Autowired
    QqLoginSuccessHandler smsLoginSuccessHandler;

    @Autowired
    private CiipUserService userService;

    @Override
    public void configure(HttpSecurity http) throws Exception {
        QqAuthenticationFilter smsAuthenticationFilter = new QqAuthenticationFilter();
        smsAuthenticationFilter.setAuthenticationManager(http.getSharedObject(AuthenticationManager.class));
        smsAuthenticationFilter.setAuthenticationSuccessHandler(smsLoginSuccessHandler);
        smsAuthenticationFilter.setAuthenticationFailureHandler(customAuthenticationFailureHandler);

        QqAuthenticationProvider smsAuthenticationProvider = new QqAuthenticationProvider();
        smsAuthenticationProvider.setUserService(userService);

        http.authenticationProvider(smsAuthenticationProvider)
                .addFilterAfter(smsAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);

    }
}

8.QQ身份验证筛选器:(验证是否通过)

package com.ciip.cloud.core.usercenter.oauth.qq;

import com.ciip.cloud.core.common.constant.usercenter.AddableHttpRequest;
import com.ciip.cloud.core.common.constant.usercenter.CIIPCommonConstant;
import org.springframework.http.HttpMethod;
import org.springframework.security.authentication.AuthenticationServiceException;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter;
import org.springframework.security.web.util.matcher.AntPathRequestMatcher;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * Title: QqAuthenticationFilter
 * Description: TODO
 *
 * @author 
 * @created 
 */

public class QqAuthenticationFilter extends AbstractAuthenticationProcessingFilter {

    private boolean postOnly = true;
    public QqAuthenticationFilter() {
        super(new AntPathRequestMatcher(CIIPCommonConstant.OAUTH_LOGIN_URL.QQ_LOGIN, HttpMethod.POST.name()));
    }

    public Authentication attemptAuthentication(HttpServletRequest request,
                                                HttpServletResponse response) throws AuthenticationException {
        if (postOnly && !request.getMethod().equals(HttpMethod.POST.name())) {
            throw new AuthenticationServiceException(
                    "Authentication method not supported: " + request.getMethod());
        }
        //获取openId
        AddableHttpRequest addableHttpRequest = ((AddableHttpRequest) request);
        String openId = addableHttpRequest.getParameter("openId");
        //进行登录认证
        QqAuthenticationToken authRequest = new QqAuthenticationToken(openId);
        setDetails(request, authRequest);
        return this.getAuthenticationManager().authenticate(authRequest);
    }
    protected void setDetails(HttpServletRequest request,
                              QqAuthenticationToken authRequest) {
        authRequest.setDetails(authenticationDetailsSource.buildDetails(request));
    }
    public void setPostOnly(boolean postOnly) {
        this.postOnly = postOnly;
    }
}

9.QQ身份验证提供程序:

package com.ciip.cloud.core.usercenter.oauth.qq;

import com.ciip.cloud.core.usercenter.service.CiipUserService;
import com.ciip.cloud.core.usercenter.vo.UserLoginVo;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.AuthenticationProvider;
import org.springframework.security.authentication.InternalAuthenticationServiceException;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;

/**
 * Title: QqAuthenticationProvider
 * Description: TODO
 *
 * @author 
 * @created 2019/5/8 16:58
 */

public class QqAuthenticationProvider implements AuthenticationProvider {


    private CiipUserService userService;

    @Override
    public Authentication authenticate(Authentication authentication) throws AuthenticationException {
        QqAuthenticationToken authenticationToken = (QqAuthenticationToken) authentication;
        String  openId =(String) authenticationToken.getPrincipal();
        UserDetails userDetails = userService.findByOpenId(openId);
        if (userDetails == null)
            throw new InternalAuthenticationServiceException("未找到与该QQ号对应的用户");
        QqAuthenticationToken authenticationResult = new QqAuthenticationToken(userDetails, userDetails.getAuthorities());
        authenticationResult.setDetails(authenticationToken.getDetails());
        return authenticationResult;
    }

    @Override
    public boolean supports(Class<?> aClass) {
        return QqAuthenticationToken.class.isAssignableFrom(aClass);
    }

    public CiipUserService getUserService() {
        return userService;
    }

    public void setUserService(CiipUserService userService) {
        this.userService = userService;
    }
}

10.QQ身份验证令牌:

package com.ciip.cloud.core.usercenter.oauth.qq;

import org.springframework.security.authentication.AbstractAuthenticationToken;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.SpringSecurityCoreVersion;

import java.util.Collection;

/**
 * Title: QqAuthenticationToken
 * Description: TODO
 *
 * @author 
 * @created 2019/5/8 16:57
 */

public class QqAuthenticationToken extends AbstractAuthenticationToken {

    private static final long serialVersionUID = SpringSecurityCoreVersion.SERIAL_VERSION_UID;

    private final Object principal;

    public QqAuthenticationToken(Object openId) {
        super(null);
        this.principal = openId;
        setAuthenticated(false);
    }

    public QqAuthenticationToken(Object principal,
                                 Collection<? extends GrantedAuthority> authorities) {
        super(authorities);
        this.principal = principal;
        super.setAuthenticated(true);
    }

    public Object getPrincipal() {
        return this.principal;
    }

    @Override
    public Object getCredentials() {
        return null;
    }

    public void setAuthenticated(boolean isAuthenticated) throws IllegalArgumentException {
        if (isAuthenticated) {
            throw new IllegalArgumentException(
                    "Cannot set this token to trusted - use constructor which takes a GrantedAuthority list instead");
        }

        super.setAuthenticated(false);
    }

    @Override
    public void eraseCredentials() {
        super.eraseCredentials();
    }
}

11.QQ前置过滤器:

package com.ciip.cloud.core.usercenter.oauth.qq;

import com.alibaba.fastjson.JSON;
import com.ciip.cloud.core.common.constant.usercenter.AddableHttpRequest;
import com.ciip.cloud.core.common.constant.usercenter.CIIPCommonConstant;
import com.ciip.cloud.core.common.vo.ResultUtil;
import com.ciip.cloud.core.common.vo.usercenter.OauthCode;
import com.ciip.cloud.core.usercenter.exception.ValidateCodeException;
import com.ciip.cloud.core.usercenter.handler.CustomAuthenticationFailureHandler;
import com.ciip.cloud.core.usercenter.model.CiipUser;
import com.ciip.cloud.core.usercenter.service.CiipUserService;
import com.ciip.cloud.core.usercenter.service.QQAuthService;
import org.apache.commons.lang3.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.http.HttpMethod;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.stereotype.Component;
import org.springframework.web.bind.ServletRequestBindingException;
import org.springframework.web.filter.OncePerRequestFilter;

import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

/**
 * Title: QQCodeFilter
 * Description: TODO
 *
 * @author 
 * @created 2019/5/27 9:37
 */
@Component
public class QQCodeFilter extends OncePerRequestFilter {

    @Autowired
    private CustomAuthenticationFailureHandler authenticationFailureHandler;
    @Autowired
    private CiipUserService ciipUserService;
    @Autowired
    QQAuthService qqAuthService;

    /**
     * 过滤器:
     *        1.分为登录成功直接跳转到登录页面,登录失败表示未绑定跳转到注册页面
     *        2.如果已经登录,则可以进行绑定,并且验证一个QQ号只能绑定一个账号
     *          
     *
     * @param request
     * @param response
     * @param filterChain
     * @throws ServletException
     * @throws IOException
     */
    @Override
    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
        String openId ="";
        if (StringUtils.equalsIgnoreCase(request.getContextPath()+ CIIPCommonConstant.OAUTH_LOGIN_URL.QQ_LOGIN, request.getRequestURI()) && StringUtils.equalsIgnoreCase(request.getMethod(), HttpMethod.POST.name())) {

            //1.根据code,获取openId
            String code = request.getParameter("code");
            openId = qqAuthService.getQQAccessToken(code);
            
            //2.将openId放入request请求对象中,并进行验证 
            AddableHttpRequest wrappedRequest = new AddableHttpRequest(request);
            wrappedRequest.addParameter("openId",openId);
                
            //3.获取当前用户【登录用户】 
            CiipUser ciipUser = ciipUserService.getCurrent();

            //4.不为空,表示为登录状态,用于绑定用户
             if(null != ciipUser && ("".equals(ciipUser.getOpenId()) || null == ciipUser.getOpenId())){

                 //5.绑定前验证,根据openId,获取对象【防止一个QQ绑定多个用户】
                 CiipUser ciipUserInfo = ciipUserService.findCiipUserByOpenId(openId);

                 //不为空,表示该QQ号已经绑定其他用户,跳转到绑定页面(status=false:表示不能绑定,前端根据该参数给出“您的QQ已绑定过了,请核实.”的提示,name=QQ:该参数来区分微信,QQ,微博类型)
                 if(null != ciipUserInfo){
                     response.sendRedirect(thirdLoginConstants.getUrl()+"/account/binding?status=false&name=QQ");
                     return;
                 }

                 ciipUser.setOpenId(openId);
                 //绑定,给用户表中添加QQId,表示绑定成功
                 ciipUserService.addCiipUser(ciipUser);

                  //添加系统消息--QQ绑定成功      
                 CiipUserMessage ciipUserMessage = new CiipUserMessage();
                 Map<String,Object> paramsMap = new HashMap<String, Object>();
                 ciipUserMessage.setCreateDate(new Date());
                 ciipUserMessage.setSoruceId(ciipUser.getId());
                 ciipUserMessage.setCreateUserId(ciipUser.getId());
                 ciipUserMessage.setCreateUserName(ciipUser.getUsername());
                 ciipUserMessage.setReceiveUserId(ciipUser.getId());
                 ciipUserMessage.setMessageBusinessType(CiipMessageBusinessType.BINDING_QQ);
                 ciipUserMessage.setMessageType(CiipMessageType.SYSTEM);
                 ciipUserMessage.setMsgTitle("QQ绑定成功");
                 ciipUserMessage.setMsgBody(StrUtil.format(CiipUserMessageTemplate.getOperationInfo(17),paramsMap));
                 ciipUserMessageService.addMessage(ciipUserMessage);

                 response.setHeader("Content-Type", "application/json;charset=UTF-8");
                 //跳转到绑定页面,绑定成功
                 response.sendRedirect(thirdLoginConstants.getUrl()+"/account/binding");

                 //byte[] bytes = JSON.toJSONBytes(ResultUtil.error(OauthCode.BINDING_SUCCESS.getCode(), OauthCode.BINDING_SUCCESS.getMsg(), request.getHeader("referer")));
                 //response.getOutputStream().write(bytes);
                 return;
             }else{
                 //为空,表示未登录,则登录前进行验证
                 try {
                     validateQQCode(openId);
                 } catch (ValidateCodeException e) {
                     authenticationFailureHandler.onAuthenticationFailure(request, response, e);
                     return;
                 }
             }
           
            filterChain.doFilter(wrappedRequest, response);
        }else{
            filterChain.doFilter(request, response);
        }
        
    }

    private void validateQQCode(String openId) throws ServletRequestBindingException, ValidateCodeException {
        //根据openId,获取用户信息
        UserDetails userDetails = ciipUserService.findByOpenId(openId);
        //表示该用户不存在,跳转到注册页面
        if(null == userDetails){
            throw new ValidateCodeException("该用户与QQ没有绑定或该用户不存在.");
        }
        //登录成功后,修改上次登录时间  
        CiipUser ciipUser = ciipUserService.findCiipUserByOpenId(openId);
        if(ciipUser != null){
            if(null != ciipUser.getLoginDate() && !"".equals(ciipUser.getLoginDate())){
                ciipUser.setLastLoggedDate(ciipUser.getLoginDate());
            }else{
                ciipUser.setLastLoggedDate(new Date());
            }
            ciipUser.setLoginDate(new Date());
            ciipUserRepository.saveAndFlush(ciipUser);
        }
    }
}

12.QQ登录成功处理程序:

package com.ciip.cloud.core.usercenter.oauth.qq;

import cn.hutool.core.lang.Console;
import cn.hutool.core.map.MapUtil;
import com.ciip.cloud.core.common.constant.enums.usercenter.CiipOperationMethod;
import com.ciip.cloud.core.common.constant.enums.usercenter.CiipOperationRecordType;
import com.ciip.cloud.core.common.constant.usercenter.CIIPCommonConstant;
import com.ciip.cloud.core.common.vo.ResultUtil;
import com.ciip.cloud.core.common.vo.usercenter.OauthCode;
import com.ciip.cloud.core.usercenter.service.CiipUserOperationLogService;
import com.ciip.cloud.core.usercenter.service.CiipUserService;
import com.ciip.cloud.core.usercenter.vo.CiipUserInfo;
import com.ciip.cloud.core.usercenter.vo.UserInfo;
import com.fasterxml.jackson.core.JsonEncoding;
import com.fasterxml.jackson.core.JsonGenerator;
import com.fasterxml.jackson.databind.ObjectMapper;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.core.Authentication;
import org.springframework.security.oauth2.common.OAuth2AccessToken;
import org.springframework.security.oauth2.provider.*;
import org.springframework.security.oauth2.provider.token.AuthorizationServerTokenServices;
import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
import org.springframework.stereotype.Component;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.HashMap;
import java.util.Map;

/**
 * Title: QqLoginSuccessHandler 
 * Description: TODO
 *
 * @author 
 * @created 2019/5/8 18:01
 */
@Component
public class QqLoginSuccessHandler implements AuthenticationSuccessHandler {

    @Autowired
    private ClientDetailsService clientDetailsService;
    @Autowired
    private AuthorizationServerTokenServices authorizationServerTokenServices;

    @Autowired
    private CiipUserOperationLogService ciipUserOperationLogService;

    private String redirectUrl ="/";
    @Autowired
    private CiipUserService ciipUserService;
    @Override
    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) {
        try {
            String clientId =  request.getParameter("clientId");
            ClientDetails clientDetails = clientDetailsService.loadClientByClientId(clientId);
            TokenRequest tokenRequest = new TokenRequest(MapUtil.newHashMap(), clientId, clientDetails.getScope(), "mobile");
            OAuth2Request oAuth2Request = tokenRequest.createOAuth2Request(clientDetails);

            OAuth2Authentication oAuth2Authentication = new OAuth2Authentication(oAuth2Request, authentication);
            OAuth2AccessToken oAuth2AccessToken = authorizationServerTokenServices.createAccessToken(oAuth2Authentication);

            Console.log("获取token 成功:{}", oAuth2AccessToken.getValue());

            UserInfo user =(UserInfo)authentication.getPrincipal();
            CiipUserInfo ciipUserInfo =  ciipUserService.getAuthUserInfo(Long.valueOf(user.getUserId()));

            //用户日志添加操作记录 
            Map<String,Object> paramsMap = new HashMap<String,Object>();
            paramsMap.put("currentUser", user.getUsername());
            ciipUserOperationLogService.addUserOperationLog(Long.valueOf(user.getUserId()),String.valueOf(user.getUserId()), CiipOperationRecordType.WEB_LOGIN.name(), CiipOperationMethod.QQ_LOGIN.name(), 11,paramsMap);

           //添加header认证信息
            response.setHeader(CIIPCommonConstant.AUTHORIZATION_HEADER, String.format("%s %s", CIIPCommonConstant.BEARER_TOKEN_TYPE,  oAuth2AccessToken.getValue().toString()));
            request.getSession().setAttribute(CIIPCommonConstant.BEARER_TOKEN,oAuth2AccessToken.getValue().toString());
            response.setHeader("Content-Type", "application/json;charset=UTF-8");
            //该方法为实现单点登录
            redisUtil.setWithExpireTime(CIIPCommonConstant.CIIP_AUTH,request.getSession().getId(), oAuth2AccessToken.getValue(),oAuth2AccessToken.getExpiresIn());
            //登录成功返回到首页
            response.sendRedirect(thirdLoginConstants.getUrl()+"/login");

            } catch (IOException e) {
            throw new BadCredentialsException(
                    "Failed to decode basic authentication token");
        }
    }


}

13.HttpServletRequestWrapper的封装,用户request中添加参数

package com.ciip.cloud.core.common.constant.usercenter;
/**
 * Title: AddableHttpRequest
 * Description: TODO
 *
 * @author 
 * @created 2019/5/28 15:12
 */

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
import java.util.*;

public class AddableHttpRequest extends HttpServletRequestWrapper {

    private HttpServletRequest wrapped;

    private Map<String, String[]> parameterMap;

    public AddableHttpRequest(HttpServletRequest wrapped) {
        super(wrapped);
        this.wrapped = wrapped;
    }

    public void addParameter(String name, String value) {
        if (parameterMap == null) {
            parameterMap = new HashMap<String, String[]>();
            parameterMap.putAll(wrapped.getParameterMap());
        }
        String[] values = parameterMap.get(name);
        if (values == null) {
            values = new String[0];
        }
        List<String> list = new ArrayList<String>(values.length + 1);
        list.addAll(Arrays.asList(values));
        if(!"".equals(value)){
            list.add(value);
        }
        parameterMap.put(name, list.toArray(new String[0]));
    }

    @Override
    public String getParameter(String name) {
        if (parameterMap == null) {
            return wrapped.getParameter(name);
        }

        String[] strings = parameterMap.get(name);
        if (strings != null) {
            return strings[0];
        }
        return null;
    }

    @Override
    public Map<String, String[]> getParameterMap() {
        if (parameterMap == null) {
            return wrapped.getParameterMap();
        }

        return Collections.unmodifiableMap(parameterMap);
    }

    @Override
    public Enumeration<String> getParameterNames() {
        if (parameterMap == null) {
            return wrapped.getParameterNames();
        }

        return Collections.enumeration(parameterMap.keySet());
    }

    @Override
    public String[] getParameterValues(String name) {
        if (parameterMap == null) {
            return wrapped.getParameterValues(name);
        }
        return parameterMap.get(name);
    }
}

14.自定义身份验证失败处理程序:

package com.ciip.cloud.core.usercenter.handler;

import com.alibaba.fastjson.JSON;
import com.ciip.cloud.core.common.constant.usercenter.CIIPCommonConstant;
import com.ciip.cloud.core.common.vo.ResultUtil;
import com.ciip.cloud.core.common.vo.usercenter.OauthCode;
import com.ciip.cloud.core.usercenter.service.CiipLoginHistoryService;
import com.ciip.cloud.core.usercenter.service.CiipUserService;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler;
import org.springframework.stereotype.Component;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.UnsupportedEncodingException;
import java.net.URLEncoder;

@Component
public class CustomAuthenticationFailureHandler extends SimpleUrlAuthenticationFailureHandler {
    private Logger log = LoggerFactory.getLogger(this.getClass());
    private String failureUrl = "/signIn";

    @Autowired
    CiipUserService ciipUserService;
    @Autowired
    CiipLoginHistoryService ciipLoginHistoryService;

    @Override
    public void onAuthenticationFailure(HttpServletRequest request,HttpServletResponse response, AuthenticationException exception) throws IOException {

            AddableHttpRequest addableHttpRequest = ((AddableHttpRequest) request);
            String openId = addableHttpRequest.getParameter("openId");
            String type = addableHttpRequest.getParameter("type");
            response.setHeader("Content-Type", "application/json;charset=UTF-8");
            log.info("--------------未绑定,经跳转到注册页面--------------");
            log.info("--------------openId--------------"+openId);
            log.info("--------------type--------------"+type);
            //跳转到注册页面,并带openId参数用于注册时直接绑定QQ账号,type参数是微信,QQ,微博类型
            response.sendRedirect(thirdLoginConstants.getUrl()+"/register?id="+ EncryptUtil.encrypt(openId)+"&type="+type);
            //byte[] bytes = JSON.toJSONBytes(ResultUtil.error(OauthCode.USERCENTER_OAUTH_LOGIN_ERROR.getCode(),OauthCode.USERCENTER_OAUTH_LOGIN_ERROR.getMsg()+""+exception.getMessage(),request.getHeader("referer")));
            //response.getOutputStream().write(bytes);
     
    }
}

15.验证异常:

package com.ciip.cloud.core.usercenter.exception;

import org.springframework.security.core.AuthenticationException;

/**
 * Title: ValidateCodeException
 * Description: TODO
 *
 * @author 
 * @created 2019/5/8 18:33
 */

public class ValidateCodeException extends AuthenticationException {


    public ValidateCodeException(String message) {
        super(message);
    }
}

 

KIN_DIN
关注
  • 1
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
Django项目QQ登录后端接口实现
生有涯,知无涯
06-11 729
Django项目QQ登录后端接口实现 QQ登录,亦即我们所说的第三方登录,是指用户可以不在本项目中输入密码,而直接通过第三方的验证,成功登录本项目。 1.准备工作的步骤: QQ登录网站开发流程准备工作: 1.打开下列腾讯开放平台网址,注册申请appid和appkey。 http://wiki.connect.qq.com/准备工作_oauth2-0 2.下载“QQ登录”按钮图片,并将按钮放置在页...
QQ第三方接口登陆
qq_40812877的博客
09-06 1372
1.准备工作 申请appid和appkey appid:应用的唯一标识。在OAuth2.0认证过程中,appid的值即为oauth_consumer_key的值。 appkey:appid对应的密钥,访问用户资源时用来验证应用的合法性。在OAuth2.0认证过程中,appkey的值即为oauth_consumer_secret的值。 申请地址 https://connect.qq.com...
QQ第三方登录的详细教程
z979451341的博客
08-25 1万+
这次说一下我自己第一次使用QQ第三方登录的过程 1 。我们开始需要在开发者网站上注册,http://open.qq.com/ 进入这个网站后点应用接入中的应用接入(因为那个按不动),开始注册,这个注册需要本人手持身份证的照片,然后关于邮箱验证,不知为何我第一次这个邮箱验证邮件发送一直失败,后来第二天才发送成功然后才完成注册。我想应该是因为之前的信息在验证之中吧。 2 。 得到APPID ,这
第三方登录QQ版)
2301_76865026的博客
05-22 701
1.对于用户本身来说:大大节省了登录乙方应用的时间,不用注册,直接拿第三方平台的账号密码在不同的应用里快速登录,实现一个账号行走天下,同时也降低了用户注册登录的成本。4.通过授权,可以获得该用户在第三方平台上的好友或粉丝等社交信息,从而后续可以针对用户的社交关系网进行有目的性的营销宣传,为产品的市场推广提供另一种渠道。3.第三方登录的实质就是在授权时获得第三方应用提供的代表了用户在第三方应用中的唯一性的openid.并将openid储存在第三方服务控制的本地储存。
第三方登录功能的实现之 QQ登录 - 已绑定账号
HQ\(^o^)/的博客
08-27 3194
现在越来越流行第三方登录,它在我们生活中是到处可见的,就比如QQ、微信扫码登录等等下面呐,就借用QQ登录来讲解是第三方登录是怎样实现的因为其他第三方登录的思路跟QQ登录思路相同。
iOS QQ第三方登录实现
09-01
主要介绍了iOS QQ第三方登录实现的全过程,一步一步告诉大家iOS QQ实现第三方登录的方法,感兴趣的小伙伴们可以参考一下
Android第三方登录QQ登录
08-29
主要为大家详细介绍了Android第三方登录QQ登录,具有一定的参考价值,感兴趣的小伙伴们可以参考一下
Java实现QQ第三方登录源码
12-28
Java实现QQ第三方登录源码,下载下来只需根据自己在QQ互联上相应的app_ID, app_KEY, redirect_URI修改配置文件即可测试效果
QQ登录第三方应用
08-29
最好替换自己申请的APP_id
QQlogin.zip_第三方登录
09-21
QQ第三方登录完整的二次开发程序源码,可以直接引入项目文件,引用自己的APP_ID,ACCESS_TOKEN 就可以实现QQ第三方登录
QQ第三方登录
weixin_44657908的博客
07-05 1778
一、Oauth协议实现第三方登录 (一)注册成为开发者 网址:https://connect.qq.com 1.使用QQ账号登录 2.手机QQ授权登录(打开手机QQ,确认登录) 3.登录成功 4.单击应用管理,继续注册流程 1)填写QQ互联开发者信息 2)提示验证邮件已发送至上述邮箱 3)前往邮箱激活 4)注册成功 (二)创建应用、获取appid和appkey 应用接入前,需要先申...
接入QQ第三方登录
光头强的博客
02-11 9291
一、登录QQ互联申请为开发者并创建网站应用 https://connect.qq.com/index.html 网站名称这儿必须填备案好的网站的那个名称!否则不予通过! 申请成功后appid和app key以及网站回调域就能使用: 二、放置登录按钮 给其加个超链接,通过http去访问一个接口。 三、获取Authorization Code值 请求地址:https://graph.qq.c...
QQ第三方登录认证流程
这不是你的确定 的博客
09-25 7182
QQ第三方登录认证流程以及代码示例
第三方-QQ登录流程
luoxiaonuan_hi的博客
06-28 1440
第三方-QQ登录流程
关于如何获取Clientid
qq_39088387的博客
10-09 1万+
Android studio 安装成功 获取Clientid之前需要把tabelt 的环境切换下 设备测试需要用命令切换下环境 因为一般情况下默认是线上环境,一般测试都是在 test环境下 所以需要进入cmd ,输入以下命令 adb shell setprop debug.lewindow TEST 然后打开Android studio在logcat中获取Clientid...
第三方登录QQ登录(二)——OAuth2.0处理流程介绍(以QQ登录为例)
崔成龙 . 勇往直前
07-25 8万+
为了让网站更快接入,腾讯提供了JS SDK的接入方案,具体点击这里或者点击这里进行查看。     不过也可以自己写代码,当然你需要了解QQ的OAuth2.0的处理流程(Web Server Flow)。 OAuth2.0的处理流程: 点击这里查看官方Wiki。 1.授权:获取授权码Authorization Code  说明:第一步QQ必须得到要登
【第三方互联】3、腾讯QQ授权第三方登录
热门推荐
Asurplus
02-25 21万+
当我们创建的 QQ 互联应用成功后,我们便可以开始使用该应用来实现 QQ 互联 一、获取 APP ID 和 APP Key 1、找到我的应用 2、点击应用,进入详情 这样,我们就获取到了 APP ID 和 APP Key 二、进行开发 1、将 APP ID 、APP Key,以及该应用的信息放入项目中的配置文件中,我使用的是SpringBoot,我放在了 application.y...
腾讯开放平台——client id is illegal(100008)!错误解决
精彩人生
02-07 3万+
今天心血来潮想借腾讯的开放平台熟悉oauth。结果就摆弄了起来,腾讯的文档还是写得很详细的,比我上一次看的已经好很多了。而且还提供了sdk,可以快速调用腾讯的开放平台,既然是学习来的,也就没图快,决定从零开始,手写代码。 一切都是按文档来的,可没想到第一步取access token就受挫了: 代码如下: function get_access_token() { var r
网站实现QQ第三方登录详细步骤
a992970569的博客
08-27 3万+
一、准备工作:申请appid,appkey,回调地址(申请时填写的回调地址,重要!) 申请地址:https://connect.qq.com/manage.html#/          二、放置QQ登录按钮:其实就是给你要实现QQ登录的地方绑定一个onclick点击事件   如:给如图示图标绑定一个onclick点击事件,在对应函数里写一个http请求去服务器端处理QQ登录(安全考虑)...
qq第三方授权登录 易语言
最新发布
11-01
要实现QQ第三方授权登录,我们可以使用EasyX模块结合QQ互联开放平台进行开发。首先,在QQ互联开放平台上注册开发者账号,获取App ID和App Key。然后,在易语言编程中,导入EasyX模块,并在程序中添加必要的代码。 ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值