一.概述
gateway作为客户端访问微服务的统一入口,鉴权是一件绕不开的事情,在前后端完全分离的今天,通常都是采用jwt生成token,客户端每次请求的时候都会把token放在请求头,gateway做校验,token解密没有问题,gateway就会路由分发到对应的微服务.之前的两个章节已经完成了登录和注册,这个章节写
二.server-user服务中加入解密token的接口.
package com.ccm.server.user.controller;
import com.auth0.jwt.JWTVerifyException;
import com.ccm.common.exception.result.ResultSet;
import com.ccm.server.user.constants.ServerUserProperties;
import com.ccm.server.user.controller.req.UserLoginReq;
import com.ccm.server.user.controller.req.UserRegisterReq;
import com.ccm.server.user.service.UserService;
import com.ccm.server.user.util.JwtUtil;
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiOperation;
import io.swagger.annotations.ApiParam;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.*;
import javax.validation.Valid;
import java.io.IOException;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.SignatureException;
@Api(tags = "用户控制层")
@RestController
@RequestMapping(value = "user")
public class UserController {
@Autowired
private UserService userService;
@Autowired
private ServerUserProperties serverUserProperties;
@ApiOperation(value = "注册")
@PostMapping(value = "register")
public ResultSet register(@Valid @RequestBody UserRegisterReq userRegisterReq) {
userService.register(userRegisterReq.getUsername(),userRegisterReq.getPassword());
return ResultSet.success();
}
@ApiOperation(value = "登录")
@PostMapping(value = "login")
public ResultSet login(@Valid @RequestBody UserLoginReq userLoginReq) throws IOException {
String token = userService.login(userLoginReq.getUsername(),userLoginReq.getPassword());
return ResultSet.success(token);
}
@ApiOperation(value = "解析token")
@GetMapping(value = "analysisToken")
public ResultSet<Long> analysisToken(@ApiParam(required = true,value = "token") @RequestParam(name = "token") String token) throws SignatureException, NoSuchAlgorithmException, JWTVerifyException, InvalidKeyException, IOException {
Long userId = JwtUtil.unsign(token, Long.class, serverUserProperties.getJwtSecretKey());
return ResultSet.success(userId