工具类：JWT加密生成和校验

最新推荐文章于 2024-10-02 20:54:14 发布

程序员无羡

最新推荐文章于 2024-10-02 20:54:14 发布

阅读量556

点赞数

文章标签： java servlet html jwt 工具类

本文链接：https://blog.csdn.net/weixin_45427648/article/details/130418813

版权

 <dependency>
     <groupId>io.jsonwebtoken</groupId>
     <artifactId>jjwt</artifactId>
     <version>0.9.0</version>
 </dependency>
 <dependency>
    <groupId>com.alibaba</groupId>
    <artifactId>fastjson</artifactId>
    <version>1.2.62</version>
</dependency>

import com.alibaba.fastjson.JSON;
import io.jsonwebtoken.*;
import org.apache.commons.codec.binary.Base64;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
import java.io.IOException;
import java.time.LocalDateTime;
import java.time.ZoneId;
import java.time.ZonedDateTime;


public class JWTUtil{
    /**
     * 签发JWT
     * @param tokenMap
     * @param secret
     * @return
     * @throws IOException
     */
    public static String createJWTByObj(Map<String, Object> tokenMap, String secret) throws IOException {
        SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.HS256;

        SecretKey secretKey = generalKey(secret);

        ZoneId zoneId = ZoneId.systemDefault();
        ZonedDateTime zdt = LocalDateTime.now().plusDays(3).atZone(zoneId);

        //添加构成JWT的参数
        JwtBuilder builder = Jwts.builder().setHeaderParam("typ", "JWT")
                .setId("myApp") //签发应用Id
                .setIssuedAt(Date.from(zdt.toInstant())) //签发时间
                .setHeaderParam("alg", "HS256")  //加密算法
                .addClaims(tokenMap)
                .setExpiration(Date.from(zdt.toInstant()))  //设置过期时间
                .signWith(signatureAlgorithm, secretKey);  //用密钥签名


        //生成JWT
        return builder.compact();
    }

    /**
     * 验证jwt
     */
    public static VerifyResult verifyJwt(String token, String secret) {
        //签名秘钥，和生成的签名的秘钥一模一样
        SecretKey key = generalKey(secret);
        try {

            ZoneId zoneId = ZoneId.systemDefault();
            ZonedDateTime zdt = LocalDateTime.now().atZone(zoneId);
            Jwt jwt = Jwts.parser()
                    .setSigningKey(key)
                    .parse(token);


            Date date = ((Claims) jwt.getBody()).getExpiration();
            if (date == null) {
                return new VerifyResult(false, 5002);
            }
            LocalDateTime expires = LocalDateTime.ofInstant(date.toInstant(), ZoneId.systemDefault());
            if (expires.isBefore(LocalDateTime.now())) {
                return new VerifyResult(false, 5001);
            }

            return new VerifyResult(true, 200);
        } catch (Exception e) {
            e.printStackTrace();

            return new VerifyResult(false, 5002);
        }//设置需要解析的jwt
    }

    public static Map<String,Object> decode(String token) throws IOException {
        
        String bodyData = token.split("\\.")[1];

        String bodyStr = new String(Base64.decodeBase64(bodyData),"UTF-8");
        return JSON.parseObject(bodyStr,Map.class);
    }

    /**
     * 生成key
     *
     * @param jwtSecret
     * @return
     */
    private static SecretKey generalKey(String jwtSecret) {
        
        String stringKey = jwtSecret;
        byte[] encodedKey = Base64.decodeBase64(stringKey);
        SecretKey key = new SecretKeySpec(encodedKey, 0, encodedKey.length, "AES");

        return key;
    }

    @Data
    public static class VerifyResult{
        
        private boolean isValidate;
        /**
         * 5001:token过期;5002:无效token;5003:token校验异常
         */
        private int code;

        private Map<String,Object> tokenMap;

        public VerifyResult(boolean isValidate, int code) {
            this.isValidate = isValidate;
            this.code = code;
            System.out.println("1111");
        }
    }
}