单点登录实现(java)
1、导入依赖JWT
<dependency>
<groupId>io.jsonwebtoken</groupId>
<artifactId>jjwt</artifactId>
<version>0.7.0</version>
</dependency>
2、编写application.yml
server:
port: 9006
spring:
cloud:
nacos:
discovery:
server-addr: 192.168.1.6:8848
datasource:
url: jdbc:mysql://localhost:3306/mybatis-plus?useUnicode=true&characterEncoding=utf-8&rewriteBatchedStatements=true&useSSL=true&serverTimezone=GMT%2B8
username: root
password: 12345
driver-class-name: com.mysql.cj.jdbc.Driver
mybatis-plus:
configuration:
log-impl: org.apache.ibatis.logging.stdout.StdOutImpl
3、编写Utils JwtUtils
package com.wen.utils;
import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jws;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import org.springframework.http.server.reactive.ServerHttpRequest;
import org.springframework.util.StringUtils;
import javax.servlet.http.HttpServletRequest;
import java.util.Date;
public class JwtUtils {
public static final long EXPIRE = 1000 * 60 * 60 * 24;
public static final String APP_SECRET = "ukc8BDbRigUDaY6pZFfWus2jZWLPHO";
public static String getJwtToken(String id, String nickname){
String JwtToken = Jwts.builder()
.setHeaderParam("typ", "JWT")
.setHeaderParam("alg", "HS256")
.setSubject("guli-user")
.setIssuedAt(new Date())
.setExpiration(new Date(System.currentTimeMillis() + EXPIRE))
.claim("id", id)
.claim("nickname", nickname)
.signWith(SignatureAlgorithm.HS256, APP_SECRET)
.compact();
return JwtToken;
}
public static boolean checkToken(String jwtToken) {
if(StringUtils.isEmpty(jwtToken)) return false;
try {
Jwts.parser().setSigningKey(APP_SECRET).parseClaimsJws(jwtToken);
} catch (Exception e) {
e.printStackTrace();
return false;
}
return true;
}
public static boolean checkToken(HttpServletRequest request) {
try {
String jwtToken = request.getHeader("token");
if(StringUtils.isEmpty(jwtToken)) return false;
Jwts.parser().setSigningKey(APP_SECRET).parseClaimsJws(jwtToken);
} catch (Exception e) {
e.printStackTrace();
return false;
}
return true;
}
public static String getMemberIdByJwtToken(HttpServletRequest request) {
String jwtToken = request.getHeader("token");
if(StringUtils.isEmpty(jwtToken)) return "";
Jws<Claims> claimsJws = Jwts.parser().setSigningKey(APP_SECRET).parseClaimsJws(jwtToken);
Claims claims = claimsJws.getBody();
return (String)claims.get("id");
}
}
4、编写controller
package com.wen.ucenter.controller;
import com.wen.ucenter.pojo.UcenterMember;
import com.wen.ucenter.service.UcenterMemberService;
import com.wen.utils.R;
import io.swagger.annotations.ApiOperation;
import org.springframework.web.bind.annotation.*;
import javax.annotation.Resource;
@CrossOrigin
@RestController
@RequestMapping("/ucent/ucenter-member")
@SuppressWarnings({"all"})
public class UcenterMemberController {
@Resource
UcenterMemberService memberService;
@ApiOperation(value = "会员注册")
@PostMapping("register")
public R register(@RequestBody UcenterMember member) {
return R.ok();
}
@ApiOperation(value = "会员登录")
@PostMapping("login")
public R login(@RequestBody UcenterMember member) {
String token = memberService.login(member);
return R.ok().data("token",token);
}
}
5、编写service
package com.wen.ucenter.service.impl;
import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.wen.ucenter.pojo.UcenterMember;
import com.wen.ucenter.mapper.UcenterMemberMapper;
import com.wen.ucenter.service.UcenterMemberService;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import com.wen.utils.JwtUtils;
import com.wen.utils.exceptionhandler.GuliException;
import com.wen.utils.exceptionhandler.MD5;
import org.springframework.stereotype.Service;
import org.springframework.util.StringUtils;
@Service
public class UcenterMemberServiceImpl extends ServiceImpl<UcenterMemberMapper, UcenterMember>
implements UcenterMemberService {
@Override
public String login(UcenterMember member) {
String mobile = member.getMobile();
String password = member.getPassword();
if(StringUtils.isEmpty(mobile) || StringUtils.isEmpty(password)) {
throw new GuliException(20001,"用户名或密码不能为空");
}
QueryWrapper<UcenterMember> qw = new QueryWrapper<>();
qw.lambda().eq(UcenterMember::getMobile,mobile);
UcenterMember one = baseMapper.selectOne(qw);
if(one == null) {
throw new GuliException(20001,"用户名不存在");
}
if(!MD5.encrypt(password).equals(one.getPassword())) {
throw new GuliException(20001,"登录失败");
}
if(one.getIsDisabled()) {
throw new GuliException(20001,"登录失败");
}
String jwtToken = JwtUtils.getJwtToken(one.getId(), one.getNickname());
return jwtToken;
}
}
6.根据token获取用户信息
@GetMapping("getMemberInfo")
public R getMemberInfo(HttpServletRequest request) {
String memberId = JwtUtils.getMemberIdByJwtToken(request);
UcenterMember member = memberService.getById(memberId);
if(member == null) {
throw new GuliException(20001,"用户不存在");
}
return R.ok().data("userInfo",member);
}