package com.example.springboot.controller;
|
|
import com.baomidou.mybatisplus.core.toolkit.StringUtils;
|
import com.example.springboot.security.util.JwtUtil;
|
import com.example.springboot.security.util.SecurityUtil;
|
import com.example.springboot.entity.User;
|
import com.example.springboot.entity.vo.Result;
|
import com.example.springboot.entity.vo.UserVo;
|
import com.example.springboot.security.constant.SystemConstant;
|
import com.example.springboot.service.UserService;
|
import com.example.springboot.util.ValidatorUtil;
|
import io.swagger.annotations.Api;
|
import io.swagger.annotations.ApiOperation;
|
import lombok.extern.slf4j.Slf4j;
|
import org.apache.shiro.SecurityUtils;
|
import org.apache.shiro.authc.DisabledAccountException;
|
import org.apache.shiro.authc.ExcessiveAttemptsException;
|
import org.apache.shiro.authc.ExpiredCredentialsException;
|
import org.apache.shiro.authc.IncorrectCredentialsException;
|
import org.apache.shiro.authc.LockedAccountException;
|
import org.apache.shiro.authc.UnknownAccountException;
|
import org.apache.shiro.authc.UsernamePasswordToken;
|
import org.apache.shiro.authz.UnauthorizedException;
|
import org.apache.shiro.crypto.hash.SimpleHash;
|
import org.apache.shiro.util.ByteSource;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.web.bind.annotation.*;
|
|
import java.util.HashMap;
|
|
@RestController
|
|
@Slf4j
|
@Api(tags = "登录和注册")
|
public class DefaultController {
|
@Autowired
|
private UserService userService;
|
|
@ApiOperation(value = "注册用户")
|
@PostMapping("/register")
|
public Result register(@RequestBody User user) {
|
// 校验参数
|
if (StringUtils.isNotEmpty(user.getEmail())) {
|
ValidatorUtil.validateEntity(user);
|
}
|
|
Integer integer = userService.countByUsername(user.getUsername());
|
if (integer > 0) return Result.fail("用户名已经存在");
|
// 通过shiro默认的加密工具类为注册用户的密码进行加密
|
Object salt = ByteSource.Util.bytes(SystemConstant.JWT_SECRET_KEY);
|
String md5 = new SimpleHash("MD5", user.getPassword(), salt, 1024).toHex();
|
user.setPassword(md5);
|
userService.saveOrUpdate(user);
|
return Result.success();
|
}
|
|
@ApiOperation(value = "登录")
|
|
@PostMapping("/login")
|
public Result login(@RequestBody UserVo userVO) {
|
ValidatorUtil.validateEntity(userVO);
|
if (!SecurityUtils.getSubject().isAuthenticated()) {
|
UsernamePasswordToken usernamePasswordToken = new UsernamePasswordToken(userVO.getUsername(), userVO.getPassword(), true);
|
try {
|
// shiro验证用户名密码
|
SecurityUtils.getSubject().login(usernamePasswordToken);
|
// 生成token
|
String token = JwtUtil.createToken(userVO.getUsername(), false);
|
// 将用户户名和token返回
|
HashMap<String, String> map = new HashMap<>();
|
map.put("username", userVO.getUsername());
|
map.put("Authorization", token);
|
map.put("role_id", SecurityUtil.getCurrentUser().getRoleId().toString());
|
return Result.success(map);
|
} catch (IncorrectCredentialsException e) {
|
return Result.fail("登录密码错误");
|
} catch (ExcessiveAttemptsException e) {
|
return Result.fail("登录失败次数过多");
|
} catch (LockedAccountException e) {
|
return Result.fail("帐号已被锁定");
|
} catch (DisabledAccountException e) {
|
return Result.fail("帐号已被禁用");
|
} catch (ExpiredCredentialsException e) {
|
return Result.fail("请重新登录");
|
|
} catch (UnknownAccountException e) {
|
return Result.fail("帐号不存在");
|
} catch (UnauthorizedException e) {
|
return Result.fail("您没有得到相应的授权");
|
} catch (Exception e) {
|
e.printStackTrace();
|
return Result.fail("登录失败!!!");
|
}
|
}
|
return Result.fail("你已经登录了");
|
}
|
|
@ApiOperation(value = "注册时校验用户名是否存在")
|
@GetMapping("/countUsername")
|
public Result countUsername(String username) {
|
return Result.success(userService.countByUsername(username));
|
}
|
}
|
