spring security5.7 整合微信登录

已于 2023-02-24 14:45:08 修改
阅读量2.7k 收藏 22
点赞数 4
文章标签: spring 微信 java
于 2023-02-24 14:39:43 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_46287227/article/details/129200412
版权

spring security5.7 整合微信登录

一、前置工作

能正常根据SQL查询到用户即可

二、配置工作

  1. 配置Jackson序列化,用于自定义登录返回状态

@Configuration
public class JsonConfig {
    @Bean
    public ObjectMapper objectMapper() {
        return new ObjectMapper();
    }
}
  1. 配置RestTemplate远程调用,用于调用微信接口

@Configuration
public class RestTemplateConfig {
    @Bean
    public RestTemplate restTemplate() {
        return new RestTemplate();
    }
}
  1. 配置微信相关属性
wechat:
  appid: xxx  #前往微信公众平台查看自己的微信小程序appid
  secret: xxx #前往微信公众平台查看自己的微信小程序secret
  login-url: https://api.weixin.qq.com/sns/jscode2session?appid={appid}&secret={secret}&js_code={js_code}&grant_type={grant_type}

/**
 * 微信配置实体类
 */
@Configuration
@ConfigurationProperties(prefix = "wechat")
@Data
public class WechatConfig {
    private String appid;
    private String secret;
    private String loginUrl;
}

/**
 * 微信请求响应类
 */
@Data
public class WechatLoginInfo {
    private String session_key;
    private String openid;
    private String errcode;
    private String errmsg;
    private String rid;
}
  1. 自定义响应体

@Getter
public class Result<T> {

    private final Integer code;

    private final String message;

    private final T data;

    private Result(HttpStatus httpStatus, T data) {
        this.code = httpStatus.value();
        this.message = httpStatus.getReasonPhrase();
        this.data = data;
    }

    private Result(Integer code, String message, T data) {
        this.code = code;
        this.message = message;
        this.data = data;
    }

    public static <T> Result<T> of(Integer code, String message, T data) {
        return new Result<>(code, message, data);
    }

    /**
     * 成功
     */
    public static <T> Result<T> success(T data) {
        return new Result<>(HttpStatus.OK, data);
    }

    /**
     * 成功
     */
    public static <T> Result<T> success() {
        return new Result<>(HttpStatus.OK, null);
    }


    /**
     * 失败
     */
    public static Result<String> error() {
        return new Result<>(HttpStatus.INTERNAL_SERVER_ERROR, null);
    }

    /**
     * 失败
     */
    public static Result<String> error(Throwable throwable) {
        return new Result<>(HttpStatus.INTERNAL_SERVER_ERROR, throwable.getMessage());
    }


    /**
     * 未登录
     */
    public static Result<String> unauthorized() {
        return new Result<>(HttpStatus.UNAUTHORIZED, null);
    }

    /**
     * 未登录
     */
    public static Result<String> forbidden() {
        return new Result<>(HttpStatus.FORBIDDEN, null);
    }
}

三、自定义登录响应

/**
 * 认证失败自定义响应
 */
@Slf4j
@Component
public class JsonAuthenticationEntryPoint implements AuthenticationEntryPoint {


    private final ObjectMapper objectMapper;

    public JsonAuthenticationEntryPoint(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    @Override
    public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
        log.error("认证失败", authException);
        System.out.println(request.getRequestURI());
        response.setContentType("application/json; charset=UTF-8");
        response.setStatus(HttpStatus.UNAUTHORIZED.value());
        response.getWriter().write(objectMapper.writeValueAsString(Result.unauthorized()));
    }
}

/**
 * 鉴权失败自定义响应
 */
@Component
@Slf4j
public class JsonAccessDeniedHandler implements AccessDeniedHandler {


    private final ObjectMapper objectMapper;

    public JsonAccessDeniedHandler(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    @Override
    public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) throws IOException, ServletException {
        log.error("权限不足", accessDeniedException);
        response.setContentType("application/json;charset=utf-8");
        response.setStatus(HttpStatus.FORBIDDEN.value());
        response.getWriter().write(objectMapper.writeValueAsString(Result.forbidden()));
    }
}

/**
 * 登录成功自定义处理(过滤器级别)
 */
@Slf4j
@Component
public class JsonAuthenticationSuccessHandler implements AuthenticationSuccessHandler {


    private final ObjectMapper objectMapper;

    public JsonAuthenticationSuccessHandler(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    @Override
    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IOException {
        response.setContentType("application/json;charset=utf-8");
        response.setStatus(HttpStatus.OK.value());
        response.getWriter().write(objectMapper.writeValueAsString(Result.success()));
    }
}

/**
 * 登录失败自定义处理(过滤器级别)
 */
@Component
@Slf4j
public class JsonAuthenticationFailureHandler implements AuthenticationFailureHandler {

    private final ObjectMapper objectMapper;


    public JsonAuthenticationFailureHandler(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    @Override
    public void onAuthenticationFailure(HttpServletRequest request, HttpServletResponse response, AuthenticationException exception) throws IOException, ServletException {
        response.setContentType("application/json;charset=utf-8");
        response.setStatus(HttpStatus.UNAUTHORIZED.value());
        response.getWriter().write(objectMapper.writeValueAsString(Result.unauthorized()));
    }
}

四、创建UserService 查询

public interface UserService extends UserDetailsService {

    Optional<User> findByOpenId(String openId);

    User register(String openId);
}

@Service
public class UserServiceImpl implements UserService {

    @Autowired
    private UserRepository userRepository;


    @Override
    public Optional<User> findByOpenId(String openId) {
        return userRepository.findByOpenId(openId);
    }

    @Override
    public User register(String openId) {
        User user = User.registerByWechat(openId);
        return userRepository.saveAndFlush(user);
    }

    @Override
    public User loadUserByUsername(String username) throws UsernameNotFoundException {
        Optional<User> user = userRepository.findByUsername(username);
        return user.orElse(new User());
    }
}

五、创建微信登录过滤器

不要使用@component,在security config中初始化,否则会导致循环依赖


@Slf4j
public class WeChatAuthenticationFilter extends AbstractAuthenticationProcessingFilter {

    private static final HashMap<String, Object> uriVariables = new HashMap<>();

    private static final String CODE_PARAMETER = "code";

    private static final AntPathRequestMatcher DEFAULT_ANT_PATH_REQUEST_MATCHER = new AntPathRequestMatcher("/wechat/login", "GET");

    private RestTemplate restTemplate;

    private ObjectMapper objectMapper;

    private WechatConfig wechatConfig;


    public WeChatAuthenticationFilter() {
        super(DEFAULT_ANT_PATH_REQUEST_MATCHER);
    }


    public void setRestTemplate(RestTemplate restTemplate) {
        this.restTemplate = restTemplate;
    }

    public void setObjectMapper(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    public void setWechatConfig(WechatConfig wechatConfig) {
        this.wechatConfig = wechatConfig;
    }

    @Override
    public Authentication attemptAuthentication(HttpServletRequest request, HttpServletResponse response) throws AuthenticationException {
        if (!request.getMethod().equals("GET")) {
            throw new AuthenticationServiceException("Authentication method not supported: " + request.getMethod());
        } else {
            //校验code
            String code = this.obtainCode(request);
            //发送登录请求
            WechatLoginInfo wechatLoginInfo = wechatLogin(code);
            //创建未认证token
            WechatAuthenticationToken authRequest = WechatAuthenticationToken.unauthenticated(wechatLoginInfo.getOpenid());
            //验证token
            setDetails(request, authRequest);
            return this.getAuthenticationManager().authenticate(authRequest);
        }
    }

    /**
     * 微信登录返回用户openid
     */
    @SneakyThrows
    private WechatLoginInfo wechatLogin(String code) {
        this.fillVariables(code);
        String response = restTemplate.getForObject(wechatConfig.getLoginUrl(), String.class, uriVariables);
        log.info("response = {}", response);
        WechatLoginInfo wechatLoginInfo = objectMapper.readValue(response, WechatLoginInfo.class);
        return Optional.of(wechatLoginInfo).filter(obj -> obj.getErrcode() == null).orElseThrow(() -> new AuthenticationServiceException("微信登录异常"));
    }

    /**
     * 封装请求参数
     */
    private void fillVariables(String code) {
        uriVariables.put("appid", wechatConfig.getAppid());
        uriVariables.put("secret", wechatConfig.getSecret());
        uriVariables.put("grant_type", "authorization_code");
        uriVariables.put("js_code", code);
    }

    /**
     * 校验授权码code
     */
    private String obtainCode(HttpServletRequest request) {
        String code = request.getParameter(CODE_PARAMETER);
        return Optional.of(code).orElseThrow(() -> new AuthenticationServiceException("code is empty"));
    }


    @Autowired
    @Override
    public void setAuthenticationManager(AuthenticationManager authenticationManager) {
        super.setAuthenticationManager(authenticationManager);
    }

    protected void setDetails(HttpServletRequest request, WechatAuthenticationToken authRequest) {
        authRequest.setDetails(this.authenticationDetailsSource.buildDetails(request));
    }

}

六、配置微信登录的Provider


@Slf4j
@Component
public class WechatAuthenticationProvider implements AuthenticationProvider {

    private final UserService userService;

    @Autowired
    public WechatAuthenticationProvider(UserService userService) {
        this.userService = userService;
    }

    @Override
    public Authentication authenticate(Authentication authentication) throws AuthenticationException {
        //获取openId
        String openId = authentication.getName();
        //根据openId查询用户
        Optional<User> userOptional = userService.findByOpenId(openId);
        //用户存在则获取,不存在则注册
        User user = userOptional.orElseGet(() -> userService.register(openId));
        return WechatAuthenticationToken.authenticated(openId, user.getAuthorities());
    }

    @Override
    public boolean supports(Class<?> authentication) {
        return WechatAuthenticationToken.class.isAssignableFrom(authentication);
    }
}

七、配置微信Token

public class WechatAuthenticationToken extends AbstractAuthenticationToken {

    private final String openId;

    private static final long serialVersionUID = SpringSecurityCoreVersion.SERIAL_VERSION_UID;


    public WechatAuthenticationToken(String openId) {
        super(null);
        this.openId = openId;
        setAuthenticated(false);
    }


    public WechatAuthenticationToken(String openId, Collection<? extends GrantedAuthority> authorities) {
        super(authorities);
        this.openId = openId;
        setAuthenticated(true);
    }


    public static WechatAuthenticationToken unauthenticated(String openId) {
        return new WechatAuthenticationToken(openId);
    }

    public static WechatAuthenticationToken authenticated(String openId, Collection<? extends GrantedAuthority> authorities) {
        return new WechatAuthenticationToken(openId, authorities);
    }

    @Override
    public Object getCredentials() {
        return null;
    }

    @Override
    public Object getPrincipal() {
        return openId;
    }

}

八、配置security config


@EnableWebSecurity(debug = true)
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SecurityConfiguration {


    private final UserService userService;


    private final RestTemplate restTemplate;


    private final ObjectMapper objectMapper;


    private final WechatConfig wechatConfig;

    private final JsonAuthenticationEntryPoint jsonAuthenticationEntryPoint;

    private final JsonAccessDeniedHandler jsonAccessDeniedHandler;

    private final JsonAuthenticationSuccessHandler jsonAuthenticationSuccessHandler;

    private final JsonAuthenticationFailureHandler jsonAuthenticationFailureHandler;

    private final WechatAuthenticationProvider wechatAuthenticationProvider;

    private final BCryptPasswordEncoder bCryptPasswordEncoder;


    @Autowired
    public SecurityConfiguration(UserService userService,
                                 RestTemplate restTemplate,
                                 ObjectMapper objectMapper,
                                 WechatConfig wechatConfig,
                                 JsonAuthenticationEntryPoint jsonAuthenticationEntryPoint,
                                 JsonAccessDeniedHandler jsonAccessDeniedHandler,
                                 JsonAuthenticationSuccessHandler jsonAuthenticationSuccessHandler,
                                 JsonAuthenticationFailureHandler jsonAuthenticationFailureHandler,
                                 WechatAuthenticationProvider wechatAuthenticationProvider,
                                 BCryptPasswordEncoder bCryptPasswordEncoder) {
        this.userService = userService;
        this.restTemplate = restTemplate;
        this.objectMapper = objectMapper;
        this.wechatConfig = wechatConfig;
        this.jsonAuthenticationEntryPoint = jsonAuthenticationEntryPoint;
        this.jsonAccessDeniedHandler = jsonAccessDeniedHandler;
        this.jsonAuthenticationSuccessHandler = jsonAuthenticationSuccessHandler;
        this.jsonAuthenticationFailureHandler = jsonAuthenticationFailureHandler;
        this.wechatAuthenticationProvider = wechatAuthenticationProvider;
        this.bCryptPasswordEncoder = bCryptPasswordEncoder;
    }

    @Bean
    public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
        http.csrf().disable()
                .formLogin(form -> form
                        .successHandler(jsonAuthenticationSuccessHandler)
                        .failureHandler(jsonAuthenticationFailureHandler)
                )
                .authorizeHttpRequests(request -> request.anyRequest().authenticated())
                .authenticationManager(authenticationManager())
                .exceptionHandling(exception -> exception
                        .authenticationEntryPoint(jsonAuthenticationEntryPoint)
                        .accessDeniedHandler(jsonAccessDeniedHandler)
                )
                .addFilterBefore(weChatAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);
        return http.build();
    }

    @Bean
    public AuthenticationManager authenticationManager() {
        return new ProviderManager(wechatAuthenticationProvider, daoAuthenticationProvider());

    }

    @Bean
    public DaoAuthenticationProvider daoAuthenticationProvider() {
        DaoAuthenticationProvider daoAuthenticationProvider = new DaoAuthenticationProvider();
        daoAuthenticationProvider.setUserDetailsService(userService);
        daoAuthenticationProvider.setPasswordEncoder(bCryptPasswordEncoder);
        return daoAuthenticationProvider;
    }

    @Bean
    public WeChatAuthenticationFilter weChatAuthenticationFilter() {
        WeChatAuthenticationFilter weChatAuthenticationFilter = new WeChatAuthenticationFilter();
        weChatAuthenticationFilter.setObjectMapper(objectMapper);
        weChatAuthenticationFilter.setRestTemplate(restTemplate);
        weChatAuthenticationFilter.setWechatConfig(wechatConfig);
        weChatAuthenticationFilter.setAuthenticationSuccessHandler(jsonAuthenticationSuccessHandler);
        weChatAuthenticationFilter.setAuthenticationFailureHandler(jsonAuthenticationFailureHandler);
        return weChatAuthenticationFilter;
    }
}

附:实体类参考

@Getter
@Setter
@Entity
public class User implements Serializable, UserDetails {

    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long id;

    @Column(unique = true)
    private String openId;

    private String username;

    private String password;

    private String name;

    private Integer gender;

    @JsonFormat(pattern = "yyyy-MM-dd")
    private Date birthday;

    private Boolean enable;


    @ManyToOne(cascade={CascadeType.REMOVE,CascadeType.REFRESH})
    @JoinColumn(name = "tenant_id")
    @JsonBackReference
    private Tenant tenant;

    @ManyToMany(fetch = FetchType.EAGER)
    @JoinTable(name = "user_role",joinColumns =@JoinColumn(name = "user_id"),inverseJoinColumns = @JoinColumn(name = "role_id"))
    @JsonBackReference
    private List<Role> roleList;


    private static final long serialVersionUID = 1L;

    @Override
    public Collection<? extends GrantedAuthority> getAuthorities() {
        return roleList;
    }

    @Override
    public String getPassword() {
        return password;
    }

    @Override
    public String getUsername() {
        return username;
    }

    @Override
    public boolean isAccountNonExpired() {
        return true;
    }

    @Override
    public boolean isAccountNonLocked() {
        return true;
    }

    @Override
    public boolean isCredentialsNonExpired() {
        return true;
    }

    @Override
    public boolean isEnabled() {
        return enable;
    }

    public static User registerByWechat(String openId){
        User user = new User();
        user.setOpenId(openId);
        user.setName("游客");
        user.setEnable(true);
        user.setBirthday(new Date());
        return user;
    }

}

@Entity
@Getter
@Setter
public class Role implements Serializable, GrantedAuthority {
    @Id
    private Long id;

    private String name;

    @ManyToMany(mappedBy = "roleList")
    @JsonBackReference
    private List<User> userList;

    private static final long serialVersionUID = 1L;

    @Override
    public String getAuthority() {
        return name;
    }
}

如有问题请评论

穿不起AJ的阿鉴
关注
  • 4
    点赞
  • 22
    收藏
    觉得还不错? 一键收藏
  • 5
    评论
微信扫一扫登录、微信支付、springsecurity&oauth2
09-26
项目中使用到的技术包含SpringBoot、SpringSecurity&oauth2(安全资源和授权中心模式、包括登录接口自定义返回字段、自定义手机号+密码登录、自定义免密登录)、Queue队列、线程池、xss攻击配置、SpringCache、Mybatis-Plus、Validation、各种自定义aop、发送邮件、Redis、Lombok、flywaydb(自动生成数据库表和初始化数据)、生成二维码、execl、跨域、全局异常处理、i18n国际化、图片滑块验证码、数据库敏感数据加密、字段脱敏、微信支付、微信扫一扫登录
SpringBoot+SpringSecurity+jwt+uniapp实现微信小程序登录
qq_61273171的博客
03-30 1104
2)后端接收code并向微信登录凭证校验接口发起请求,携带相应参数。进入微信小程序后,点击登录,后台签发Access Token,之后每次请求都携带这个token,并且进行权限认证。· 在业务逻辑代码中发送POST请求获取微信登录凭证信息获取openId、sessionKey等信息。后端在拿到openid和sessionid之后,将其与小程序前端传递过来的用户数据一起保存到数据库。在小程序前端,调用wx.login()方法获取用户登录凭证code,并将其发送到后台服务器。1)调用登录API获取code。
SpringBoot + Spring Security多种登录方式:账号+微信网页授权登录
Java知音
04-02 5234
一、概述实现账号用户名+微信网页授权登录集成在Spring Security的思路,最重要的一点是要实现微信登录通过Spring Security安全框架时,不需要验证账号、密码。二、准备工作要实现该功能,首先需要掌握Spring Security框架和微信扫码登录接口相关技术,如果对这两块还不太熟悉,可以参考:1、Springboot + Spring Security实现前后端分离登录认证及权...
Spring Security系列】权限之旅:SpringSecurity小程序登录深度探索
最新发布
c18213590220的博客
05-25 888
欢迎来到【Spring Security系列】!本文将带领您深入探索如何使用 Spring Security 来保护小程序的登录认证,旨在为您提供全方位的学习体验和实践指导。
Springboot + Spring Security多种登录方式:账号用户名登录+微信网页授权登录
xue317378914的专栏
03-31 1万+
概述 实现账号用户名+微信网页授权登录集成在Spring Security的思路 实现前后端分离登录认证及权限控制 实现微信登录 实现账号用户名+微信网页授权登录集成在Spring Security
spring security 实现微信登录
一个正在崛起的小码农
01-04 1万+
介绍 上一章讲解了如何用QQ实现登录,这一回讲解的是用微信实现登录。 实现功能 实现微信登录。 开发步骤 引入jar包 jar包的引入和QQ引入的jar包一致。 微信实体信息 /** * @author lvhaibao * @description * @date 2019/1/4 0004 9:46 */ @Data public class WeixinUserInfo { ...
Spring Security 6.0 整合微信登录步骤
hjg719的博客
12-05 1707
文章目录登录总流程具体实现配置类创建Token创建过滤器创建登录验证器 登录总流程 官方文档 注册好小程序之后可以拿到该小程序的 appId和appSecret 这里我们需要做的是: 提供一个接口供前端调用,接口参数只有一个code;需要使用过滤器实现 过滤器拿到code之后向微信服务器(接口)发送:appId、appSecret、code,获取session_key,openId openId即为用户的唯一标识,如果未注册则直接注册,并直接登录。 本例中我们把常规用户和微信用户放在同一张表中,充分利用常
SpringSecurityOAuth2-微信授权登录
张氏小毛驴的博客
07-03 3354
这一篇主要是介绍了对于微信的第三方登录自定义,讲的可能比较乱,还是得结合源码理解理解,我只想把思路和为什么尽量都分享清楚,当然这只是测试,真正的支持微信第三方还得需要在微信登记公众号等操作,那些是需要认证啥的,我们当前学习的话目前的已经足够了。最后为把代码都上传到Github了,如果觉得有用,帮帮忙点个Start。我的Github。
基于Java Spring Security的关注微信公众号即登录的设计与实现源码.zip
12-15
基于Java Spring Security的关注微信公众号即登录的设计与实现源码.zip基于Java Spring Security的关注微信公众号即登录的设计与实现源码.zip基于Java Spring Security的关注微信公众号即登录的设计与实现源码.zip ...
spring boot 整合支付宝微信支付
08-19
本文将深入探讨如何使用Spring Boot来整合支付宝与微信支付,以实现一个完整的支付模块。 首先,我们需要了解Spring Boot的核心特性。Spring Boot简化了Spring应用程序的初始设置,通过自动配置和starter pom依赖...
Struts2+Hibernate+Spring4 整合微信登录demo
08-15
**Struts2+Hibernate+Spring4 整合微信登录demo** 该项目是一个综合示例,旨在帮助初学者了解如何将流行的Java开发框架Struts2、Hibernate和Spring4整合在一起,并实现微信登录功能。这三个框架在企业级Java应用...
Spring Security OAuth2集成短信验证码登录以及第三方登录
08-27
Spring Security OAuth2集成短信验证码登录以及第三方登录 Spring Security OAuth2是基于Spring Cloud/Spring Boot环境下使用OAuth2.0的解决方案,为开发者提供了全套的组件来支持OAuth2.0认证。然而,在开发过程中...
Spring Security oauth2.0微信小程序登录
Mylucy
02-01 8071
微信小程序前期开发准备,可以参考这篇文章微信小程序前期准备 1、学习过Spring Secrity oauth2.0的都知道,他有四种登录模式可以选择 authorization code(授权码模式) implicit(简化模式) resource owner password credentials(密码模式) client credentials(客户端模式) 前三种模式都需要用户的密码才能认证成功,客户端模式虽然不需要密码,但是也不会跟用户绑定。所以也是不符合的。我们去微信拿到用户的认证之后,需要自
使用Spring Boot Security 实现多认证 手机号登录 微信扫码登录 微信扫码注册
Likefr
03-09 2255
利用Spring Security 实现基于手机号密码的登录功能,并结合微信扫码实现用户注册的功能。通过我这种方案,用户可以选择使用手机号密码登录,或者通过微信扫码进行注册。我们将详细介绍了如何获取微信授权二维码、微信授权回调、注册接口以及自定义认证提供者等方面的实现细节。您将了解到如何使用Spring Security构建安全可靠的身份认证系统,并且为用户提供多样的登录与注册选择
SpringSecurity OAuth2 自定义授权 微信小程序登录
走在编程之路.....
06-18 8037
结合网络上的方法,主要有两种方式,一种是采用Filter,一种是采用自定义授权,目前我实现的方式是采用的是“自定义授权”的方式实现微信小程序登录验证。
spring-security-oauth2(十三 ) 微信登录
codeing-tiger
01-10 9795
微信登陆和QQ登陆大致流程一致,只是有些api不一样,主要是QQ的getUserInfo微信多了一个参数openId。这是因为微信互联文档中在OAuth2.0的认证流程示意图第五步时,微信的openid 同access_token一起返回。而Spring Social获取access_token的类AccessGrant.java中没有openid 微信暂时没有申请测试账户,先上代码后续网站备案...
SpringBoot的配置文件相关注解初步认识记录
qq_36203030的博客
04-27 294
如何读取配置文件,以下注解表示,对应配置文件里这一段wechat.cp @ConfigurationProperties(prefix = "wechat.cp") 通常定义一个实体对应该配置文件的属性,例如: @Getter @Setter @ConfigurationProperties(prefix = "wechat.cp") public class WxCpProperties { /** * 设置企业微信的corpId */ private S
Spring Security Oauth2 单点登录 第三方授权(QQ、微信登录
热门推荐
东风麦芽糖
10-01 1万+
SSO单点登录 第三方授权(QQ、微信登录) Oauth2认证流程 Oauth2认证解决方案 Oauth2授权模式 对称/非对称加密 公钥私钥 JWT令牌 OAuth对接微服务 SpringSecurity权限控制
Spring Security 实战干货:微信小程序登录与Spring Security结合的思路分享
码农小胖哥
03-04 3598
关注并星标,文末获取相关学习资料1. 前言原本打算把Spring Security中OAuth2.0的机制讲完后,用小程序登录来实战一下,发现小程序登录流程和Spring Security...
请问springsecurity怎么自定义微信登录
06-06
要自定义微信登录,首先需要配置微信开放平台的相关信息,包括app id、app secret、授权回调地址等。然后,可以使用Spring Security提供的OAuth2登录功能进行集成。 具体步骤如下: 1. 添加依赖 ```xml <dependency> <groupId>org.springframework.security.oauth.boot</groupId> <artifactId>spring-security-oauth2-autoconfigure</artifactId> <version>2.1.0.RELEASE</version> </dependency> ``` 2. 配置微信开放平台信息 ```yaml spring: security: oauth2: client: registration: weixin: client-id: <your-client-id> client-secret: <your-client-secret> scope: snsapi_login redirect-uri: <your-redirect-uri> client-name: weixin provider: weixin: authorization-uri: https://open.weixin.qq.com/connect/qrconnect token-uri: https://api.weixin.qq.com/sns/oauth2/access_token user-info-uri: https://api.weixin.qq.com/sns/userinfo user-name-attribute: openid ``` 3. 自定义微信登录处理器 ```java @Component public class WeixinOAuth2UserService extends OAuth2UserService<OAuth2UserRequest, OAuth2User> { @Override public OAuth2User loadUser(OAuth2UserRequest userRequest) throws OAuth2AuthenticationException { String openid = userRequest.getAdditionalParameters().get("openid").toString(); // 根据openid获取用户信息 // ... // 构造OAuth2User对象 return new DefaultOAuth2User(Collections.singleton(new SimpleGrantedAuthority("ROLE_USER")), user.getAttributes(), user.getNameAttributeKey()); } } ``` 4. 配置Spring Security ```java @Configuration @EnableWebSecurity public class SecurityConfig extends WebSecurityConfigurerAdapter { @Autowired private WeixinOAuth2UserService weixinOAuth2UserService; @Override protected void configure(HttpSecurity http) throws Exception { http .authorizeRequests() .antMatchers("/login/**").permitAll() .anyRequest().authenticated() .and() .formLogin() .loginPage("/login") .defaultSuccessUrl("/") .permitAll() .and() .oauth2Login() .loginPage("/login") .userInfoEndpoint() .userService(weixinOAuth2UserService) .and() .and() .logout() .logoutUrl("/logout") .permitAll(); } } ``` 以上就是使用Spring Security自定义微信登录的简单步骤,需要注意的是,微信开放平台提供的是OAuth2.0协议,所以需要使用Spring Security OAuth2集成。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 5
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值