java后端微信小程序登录与注册

最新推荐文章于 2024-05-28 17:26:25 发布

qq_48399237

最新推荐文章于 2024-05-28 17:26:25 发布

阅读量2.3k

点赞数 5

文章标签： java 微信小程序

本文链接：https://blog.csdn.net/qq_48399237/article/details/120652309

版权

java后端微信小程序登录与注册&微信登录授权

分析:
微信小程序用户表的字段来源于微信服务器 , 必须想办法去获取到对应的用户信息
找到微信开放平台: 微信开放平台

以下是微信开放平台给出的登录流程图:

微信小程序登录流程
微信给出的字段值:

{
  "nickName": "Band",
  "gender": 1,
  "language": "zh_CN",
  "city": "Guangzhou",
  "province": "Guangdong",
  "country": "CN",
  "avatarUrl": "http://wx.qlogo.cn/mmopen/vi_32/1vZvI39NWFQ9XM4LtQpFrQJ1xlgZxx3w7bQxKARol6503Iuswjjn6nIGBiaycAjAtpujxyzYsrztuuICqIM5ibXQ/0"
}

用户表需要增加phone,openId,unionId字段 , 总体如下

package com.tencent.iov.userservice.model;

import lombok.AllArgsConstructor;
import lombok.Data;
import lombok.NoArgsConstructor;

import javax.persistence.GeneratedValue;
import javax.persistence.GenerationType;
import javax.persistence.Id;
import java.io.Serializable;
import java.sql.Timestamp;

/**
 * 拼车用户信息
 * @ Author: wangfei
 * @ Date  : 2021/7/15 16:32
 * @ Version: 1.0
 * @author HP
 */
@Data
@NoArgsConstructor
@AllArgsConstructor
public class CarpoolUser {

    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long carpoolUserId;

    private String openId;

    private String unionId;

    private String nickName;

    private String avatarUrl;

    private String phoneArr;

    private Integer gender;

    private String city;

    private String province;

    private String country;

    private String language;

    private Boolean carOwnerRole;

    private Boolean passengerRole;

    private Timestamp registerTime;

    private Timestamp createTime;

    private Timestamp updateTime;

    private Integer status;
}

mysql 建表语句

CREATE TABLE `carpool_user` (
  `carpool_user_id` bigint(14) NOT NULL AUTO_INCREMENT COMMENT '拼车用户主键ID',
  `open_id` varchar(64) NOT NULL COMMENT '小程序平台用户标识',
  `union_id` varchar(64) NOT NULL DEFAULT '' COMMENT '第三方平台用户统一标识',
  `nick_name` varchar(100) DEFAULT NULL COMMENT '用户在平台上的昵称',
  `avatar_url` varchar(200) DEFAULT '' COMMENT '用户头像',
  `phone_arr` varchar(60) DEFAULT NULL COMMENT '联系电话，保留三个',
  `gender` tinyint(1) DEFAULT '0' COMMENT '用户的性别，1：男性 2：女性 0：未知',
  `city` varchar(16) DEFAULT '' COMMENT '用户所在城市',
  `province` varchar(16) DEFAULT '' COMMENT '用户所在省份',
  `country` varchar(50) DEFAULT '' COMMENT '用户所在国家',
  `language` varchar(50) DEFAULT '' COMMENT '用户的语言',
  `car_owner_role` tinyint(1) DEFAULT '0' COMMENT '车主身份，0否 1是',
  `passenger_role` tinyint(1) DEFAULT '0' COMMENT '乘客身份，0否 1是',
  `register_time` datetime(3) DEFAULT CURRENT_TIMESTAMP(3) COMMENT '注册时间',
  `create_time` datetime(3) DEFAULT CURRENT_TIMESTAMP(3) COMMENT '创建时间',
  `update_time` datetime(3) DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3) COMMENT '更新时间',
  `status` tinyint(1) DEFAULT '1' COMMENT '用户的状态 -1. 注销 1. 正常  2.限制',
  PRIMARY KEY (`carpool_user_id`) USING BTREE,
  UNIQUE KEY `UQ_OPEN_ID` (`open_id`) USING BTREE,
  KEY `NQ_PHONE` (`phone_arr`) USING BTREE,
  KEY `NQ_NICK_NAME` (`nick_name`) USING BTREE
) ENGINE=InnoDB AUTO_INCREMENT=288152851 DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC COMMENT='拼车用户表';

微信小程序登录
登录逻辑: 通过code获取openId和session_key, 把openId和session_key缓存在redis中, 因为code只能使用一次, 避免重复获取openId与session_key , 根据openId查询数据库是否有用户存在, 不存在需要返回错误码通知前端 , 进行用户信息授权, 调用绑定接口进行解密,创建用户基础信息,自定义登录态(生成token).

实现代码

 @Override
    public BaseResponse<GroupMinLoginResponse> handleGroupMinLogin(GroupMinBindRequest request) throws Exception {
        String code = request.getCode();
        AssertUtil.isTrue(OpenTypeEnum.isCarpoolMinProgram(request.getOpenType()), AccountResultEnum.EXCEPTION);
        OpenTypeEnum openType = OpenTypeEnum.CARPOOL_MIN_PROGRAM;
        String encryptedUserData = request.getEncryptedUserData();
        String userIV = request.getUserIV();
        // code只能使用一次 , 先从缓存获取openId和session_key
        Optional<OpenAuthInfo> openAuthInfoOpt = this.getOpenAuthInfoFromCache(code);
        Optional<AccessTokenResponse> accessTokenOpt =
                openAuthInfoOpt.map(openAuthInfo -> Optional.ofNullable(openAuthInfo.getAccessTokenInfo())).
                        orElseGet(() -> openLoginHelper.getAccessToken(openType, code));
        AssertUtil.isTrue(accessTokenOpt.isPresent(), AccountResultEnum.OPEN_AUTH_FAILURE);
        AccessTokenResponse accessToken = accessTokenOpt.get();
        String openId = accessToken.getOpenId();
        // 由于code只能使用一次 , 获取之后保存到redis中
        this.saveOpenAuthInfoToCache(code, accessToken, null);
        // 根据openId查询是否存在 carpoolUser用户
        Optional<QueryCarpoolUserResponse> carpoolUserResponseOpt = userServiceGateway.queryCarpoolUser(openId);
        // 未绑定用户账号, 返回错误码提示小程序端调起授权页面
        if (!carpoolUserResponseOpt.isPresent()) {
            return ResponseUtils.fail(AccountResultEnum.NEED_MINI_PROGRAM_PHONEINFO_USERINFO);
        }
        QueryCarpoolUserResponse user = carpoolUserResponseOpt.get();
        //账号被限制
        boolean isLimit = UserStatusEnum.isLimit(user.getStatus());
        AssertUtil.isFalse(isLimit, AccountResultEnum.ACCOUNT_STATUS_INVALID);
        //账号已注销
        boolean isDelete = UserStatusEnum.isDelete(user.getStatus());
        AssertUtil.isFalse(isDelete, AccountResultEnum.ACCOUNT_DELETED);
        GroupMinLoginResponse response = new GroupMinLoginResponse();
        // 当用户修改昵称和头像后更新用户信息
        Optional<OpenUserInfoResponse> openUserInfoOpt = openLoginHelper.
                decryptMiniProgramUserData(encryptedUserData, userIV, new OpenAuthInfo(accessToken, null));
        OpenUserInfoResponse openUser = null;
        if (openUserInfoOpt.isPresent()) {
            openUser = openUserInfoOpt.get();
        }
        AssertUtil.isTrue(Objects.nonNull(openUser), AccountResultEnum.BIND_OPEN_AUTH_FAILURE);
        BeanUtils.copyProperties(openUser, user);
        long userCarpoolId = user.getCarpoolUserId();
        String token = loginResultUtils.generateAndSaveToken(userCarpoolId, UserTypeEnum.USER, null, openId, openType.value, request.getPlatform(), openId);
        BeanUtils.copyProperties(user, response);
        response.setIsRegister(false);
        response.setOpenId(openId);
        response.setToken(token);
        // 登录日志
        this.saveLoginLogInfo(user, openType.value);
        // 更新用户信息
        UpdateCarpoolUserRequest updateCarpoolUserRequest = new UpdateCarpoolUserRequest();
        BeanUtils.copyProperties(user, updateCarpoolUserRequest);
        userServiceGateway.updateCarpoolUser(updateCarpoolUserRequest);
        return ResponseUtils.success(response);
    }

其中有些代码是根据自身情况加的, 微信小程序 api 的请求方式,以及redis的保存的方式啥的就不放出来了 , 自己去看文档

解密工具类

//
// Source code recreated from a .class file by IntelliJ IDEA
// (powered by Fernflower decompiler)
//

package com.tencent.iov.parent.utils;

import java.nio.ByteBuffer;
import java.nio.charset.Charset;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.Security;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.GCMParameterSpec;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.springframework.security.crypto.codec.Utf8;

public class AesUtils {
    private static final String DEFAULT_CIPHER_ALGORITHM = "AES/GCM/NoPadding";
    private static final String AES_CBC_PKCS5PADDING = "AES/CBC/PKCS5Padding";
    private static final String KEY_ALGORITHM = "AES";

    public AesUtils() {
    }

    public static byte[] encrypt(byte[] data, byte[] key) throws NoSuchPaddingException, NoSuchAlgorithmException, NoSuchProviderException, InvalidAlgorithmParameterException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException {
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", "BC");
        byte[] iv = new byte[key.length];
        CommonUtils.SECURE_RANDOM.nextBytes(iv);
        GCMParameterSpec spec = new GCMParameterSpec(128, iv);
        cipher.init(1, toKey(key), spec);
        byte[] cipherText = cipher.doFinal(data);
        ByteBuffer byteBuffer = ByteBuffer.allocate(4 + iv.length + cipherText.length);
        byteBuffer.putInt(iv.length);
        byteBuffer.put(iv);
        byteBuffer.put(cipherText);
        return byteBuffer.array();
    }

    public static byte[] decrypt(byte[] data, byte[] key) throws BadPaddingException, IllegalBlockSizeException, InvalidAlgorithmParameterException, InvalidKeyException, NoSuchPaddingException, NoSuchAlgorithmException, NoSuchProviderException {
        ByteBuffer byteBuffer = ByteBuffer.wrap(data);
        int ivLength = byteBuffer.getInt();
        byte[] iv = new byte[ivLength];
        byteBuffer.get(iv);
        byte[] cipherText = new byte[byteBuffer.remaining()];
        byteBuffer.get(cipherText);
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", "BC");
        cipher.init(2, toKey(key), new GCMParameterSpec(128, iv));
        return cipher.doFinal(cipherText);
    }

    public static byte[] decrypt(String encryptedData, String secretKey, String iv, String algorithm) throws BadPaddingException, IllegalBlockSizeException, InvalidAlgorithmParameterException, InvalidKeyException, NoSuchPaddingException, NoSuchAlgorithmException, NoSuchProviderException {
        byte[] aesKey = Base64.decodeBase64(secretKey);
        byte[] aesIV = Base64.decodeBase64(iv);
        byte[] aesCipher = Base64.decodeBase64(encryptedData);
        Cipher cipher = Cipher.getInstance(algorithm, "BC");
        cipher.init(2, toKey(aesKey), new IvParameterSpec(aesIV));
        return cipher.doFinal(aesCipher);
    }

    public static String encryptCBC(String plainText, String key, final byte[] IV) throws Exception {
        byte[] keyByte = key.getBytes("UTF-8");
        byte[] plainTextByte = plainText.getBytes("UTF-8");
        byte[] cipherText = encryptCBC(plainTextByte, keyByte, IV);
        String cipherTextStr = Base64.encodeBase64String(cipherText);
        return cipherTextStr;
    }

    public static String decryptCBC(String cipherText, String key, final byte[] IV) throws Exception {
        byte[] cipherTextByte = Base64.decodeBase64(cipherText);
        byte[] keyByte = key.getBytes("UTF-8");
        byte[] plainTextByte = decryptCBC(cipherTextByte, keyByte, IV);
        String plainText = Utf8.decode(plainTextByte);
        return plainText;
    }

    public static byte[] encryptCBC(byte[] plainText, byte[] key, final byte[] IV) throws Exception {
        Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
        Key keySpec = toKey(key);
        IvParameterSpec ivSpec = new IvParameterSpec(IV);
        cipher.init(1, keySpec, ivSpec);
        byte[] cipherText = cipher.doFinal(plainText);
        return cipherText;
    }

    public static byte[] decryptCBC(byte[] cipherText, byte[] key, final byte[] IV) throws Exception {
        Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
        Key keySpec = toKey(key);
        IvParameterSpec ivSpec = new IvParameterSpec(IV);
        cipher.init(2, keySpec, ivSpec);
        byte[] plainText = cipher.doFinal(cipherText);
        return plainText;
    }

    private static Key toKey(byte[] key) {
        return new SecretKeySpec(key, "AES");
    }

    public static String encrypt(String plainText, String key, String iv) throws Exception {
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", "BC");
        GCMParameterSpec spec = new GCMParameterSpec(128, iv.getBytes(Charset.forName("UTF-8")));
        cipher.init(1, toKey(key.getBytes()), spec);
        byte[] cipherText = cipher.doFinal(plainText.getBytes());
        String cipherTextStr = Base64.encodeBase64String(cipherText);
        return cipherTextStr;
    }

    public static String decrypt(String cipherText, String key, String iv) throws Exception {
        byte[] cipherTextByte = Base64.decodeBase64(cipherText);
        byte[] keyByte = key.getBytes("UTF-8");
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", "BC");
        cipher.init(2, toKey(keyByte), new GCMParameterSpec(128, iv.getBytes(Charset.forName("UTF-8"))));
        byte[] plainTextByte = cipher.doFinal(cipherTextByte);
        String plainText = Utf8.decode(plainTextByte);
        return plainText;
    }

    static {
        Security.addProvider(new BouncyCastleProvider());
    }
}

微信小程序绑定
绑定实现方式

@Override
    public BaseResponse<GroupMinBindResponse> handleGroupMinBind(GroupMinBindRequest req) throws Exception {
        String authorizeCode = req.getCode();
        AssertUtil.isTrue(OpenTypeEnum.isCarpoolMinProgram(req.getOpenType()), AccountResultEnum.EXCEPTION);
        OpenTypeEnum openType = OpenTypeEnum.CARPOOL_MIN_PROGRAM;
        String userIV = req.getUserIV();
        String encryptedUserData = req.getEncryptedUserData();
        // 获取缓存的互联相关信息
        Optional<OpenAuthInfo> openAuthInfoOpt = this.getOpenAuthInfoFromCache(authorizeCode);
        OpenAuthInfo openAuthInfo = null;
        if (openAuthInfoOpt.isPresent()) {
            openAuthInfo = openAuthInfoOpt.get();
        }
        AssertUtil.isTrue(Objects.nonNull(openAuthInfo), AccountResultEnum.BIND_OPEN_AUTH_FAILURE);

        AccessTokenResponse accessToken = openAuthInfo.getAccessTokenInfo();

        String openId = accessToken.getOpenId();
        // 解密小程序信息
        Optional<OpenUserInfoResponse> openUserInfoResponse = openLoginHelper.decryptMiniProgramUserData(encryptedUserData, userIV, openAuthInfo);
        OpenUserInfoResponse openUser = null;
        if (openUserInfoResponse.isPresent()) {
            openUser = openUserInfoResponse.get();
        }
        AssertUtil.isTrue(Objects.nonNull(openUser), AccountResultEnum.BIND_OPEN_AUTH_FAILURE);

        // 根据openId查询用户是否存在
        Optional<QueryCarpoolUserResponse> carpoolUserResponseOpt = userServiceGateway.queryCarpoolUser(openId);
        GroupMinBindResponse groupMinBindResponse = new GroupMinBindResponse();
        if (carpoolUserResponseOpt.isPresent()) {
            // 存在则修改
            QueryCarpoolUserResponse queryCarpoolUserResponse = carpoolUserResponseOpt.get();
            //账号被限制
            boolean isLimit = UserStatusEnum.isLimit(queryCarpoolUserResponse.getStatus());
            AssertUtil.isFalse(isLimit, AccountResultEnum.ACCOUNT_STATUS_INVALID);
            //账号已注销
            boolean isDelete = UserStatusEnum.isDelete(queryCarpoolUserResponse.getStatus());
            AssertUtil.isFalse(isDelete, AccountResultEnum.ACCOUNT_DELETED);

            UpdateCarpoolUserRequest updateCarpoolUserRequest = new UpdateCarpoolUserRequest();
            BeanUtils.copyProperties(queryCarpoolUserResponse, updateCarpoolUserRequest);
            BeanUtils.copyProperties(openUser, updateCarpoolUserRequest);
            Boolean aBoolean = userServiceGateway.updateCarpoolUser(updateCarpoolUserRequest);
            if (aBoolean) {
                long userCarpoolId = queryCarpoolUserResponse.getCarpoolUserId();
                String token = loginResultUtils.generateAndSaveToken(userCarpoolId, UserTypeEnum.USER, null, openId,
                        openType.value, req.getPlatform(), openId);
                BeanUtils.copyProperties(queryCarpoolUserResponse, groupMinBindResponse);
                groupMinBindResponse.setIsRegister(false);
                groupMinBindResponse.setToken(token);
                // 登录日志
                this.saveLoginLogInfo(queryCarpoolUserResponse, openType.value);
                return ResponseUtils.success(groupMinBindResponse);
            }
        } else {
            // 不存在创建
            CreateCarpoolUserRequest createCarpoolUserRequest = new CreateCarpoolUserRequest();
            BeanUtils.copyProperties(openUser, createCarpoolUserRequest);
            createCarpoolUserRequest.setStatus(1);
            createCarpoolUserRequest.setUnionId(Optional.ofNullable(openUser.getUnionId()).orElse(accessToken.getUnionId()));
            createCarpoolUserRequest.setOpenId(Optional.ofNullable(openUser.getOpenId()).orElse(openId));
            Optional<CreateCarpoolUserResponse> createCarpoolUserResponseOpt = userServiceGateway.createCarpoolUser(createCarpoolUserRequest);
            if (createCarpoolUserResponseOpt.isPresent()) {
                CreateCarpoolUserResponse carpoolUser = createCarpoolUserResponseOpt.get();
                BeanUtils.copyProperties(carpoolUser, groupMinBindResponse);
                long userCarpoolId = carpoolUser.getCarpoolUserId();
                String token = loginResultUtils.generateAndSaveToken(userCarpoolId, UserTypeEnum.USER, null, openId,
                        openType.value, req.getPlatform(), openId);
                BeanUtils.copyProperties(carpoolUser, groupMinBindResponse);
                groupMinBindResponse.setIsRegister(false);
                groupMinBindResponse.setToken(token);
                // 登录日志
                this.saveLoginLogInfo(carpoolUser, openType.value);
                return ResponseUtils.success(groupMinBindResponse);
            }
        }
        return ResponseUtils.fail(AccountResultEnum.BIND_OPEN_AUTH_FAILURE);
    }