热门标签
热门文章
- 1SpringBoot 打包分离依赖jar包 减少上传时间 提高部署效率_spring-boot-maven-plugin fork includesystemscope
- 2JTA transaction unexpectedly rolled back (maybe due to a timeout); 解决方法
- 3C语言:自定义函数实现对字符串的复制_编写一个函数来复制字符串scope(str1,str2)。使用main函数来实现它。
- 4c语言贪吃蛇源代码
- 5华为ensp中vrrp虚拟路由器冗余协议 原理及配置命令_ensp冗余设计是什么意思
- 6【idea】--idea的类存在,却找不到_相同的代码有的idea可以跑,有的找不到类
- 7Docker 打包Python项目详细教程(Windows)_python项目怎么打包成docker压缩包
- 8如何在本地使用Ollama运行开源LLMs
- 9PDF之itextsharp的使用开发历程2_itextsharp api文档
- 10深入Web安全(攻击篇)_web攻击研判
当前位置: article > 正文
SpringBoot 整合 JWT 实现 Token 验证_springboot jwt refreshtoken
作者:我家自动化 | 2024-04-05 21:44:43
赞
踩
springboot jwt refreshtoken
前言
在Spring Security整合oauth2实现认证token也不满足实际生产需求的时候,可以整合Jwt实现token认证,完全手写获取token,认证token的方法。
Maven依赖包
- <dependency>
- <groupId>com.auth0</groupId>
- <artifactId>java-jwt</artifactId>
- <version>3.11.0</version>
- </dependency>
业务实现
1、创建Jwt生成验证token工具类
- import com.auth0.jwt.JWT;
- import com.auth0.jwt.JWTVerifier;
- import com.auth0.jwt.algorithms.Algorithm;
- import com.auth0.jwt.exceptions.JWTVerificationException;
- import com.auth0.jwt.interfaces.DecodedJWT;
- import com.bw.dsm.entity.base.TokenEntity;
- import org.slf4j.Logger;
- import org.slf4j.LoggerFactory;
-
- import java.util.*;
-
- public class AppJwtUtil {
-
- private static final Logger LOGGER = LoggerFactory.getLogger(AppJwtUtil.class);
-
- public static final String secretKey = "asdfghjklsed";
-
- public static final long tokenExpireTime = 7200000;//#token过期时间:单位毫秒 2个小时
-
- public static final long refreshTokenExpireTime = 72000000000L;//refreshToken过期时间:单位毫秒
-
- public static final String jwtRefreshTokenKeyFormat = "jwt_refresh_token:";//refreshToken 存储key
-
- public static final String jwtBlacklistKeyFormat = "jwt_black_key:";//#token黑名单 存储key
-
- /**
- * 生成jwt
- *
- * @param platformID
- * @return
- */
- public static String buildJWT(String platformID,String platformSecret) {
-
- Date now = new Date();
- Algorithm algo = Algorithm.HMAC256(secretKey);
- String token = JWT.create()
- .withIssuer("MING")
- .withIssuedAt(now)
- .withExpiresAt(new Date(now.getTime() + tokenExpireTime))
- .withClaim("platformID", platformID)// 保存身份标识
- .withClaim("platformSecret",platformSecret)
- .sign(algo);
- return token;
- }
-
- /**
- * JWT验证
- *
- * @param token
- * @return userName
- */
- public static TokenEntity verifyJWT(String token) {
- TokenEntity tokenEntity = new TokenEntity();
- try {
- Algorithm algorithm = Algorithm.HMAC256(secretKey);
- JWTVerifier verifier = JWT.require(algorithm)
- .withIssuer("MING")
- .build();
- DecodedJWT jwt = verifier.verify(token);
- tokenEntity.setPlatformID(jwt.getClaim("platformID").asString());
- tokenEntity.setPlatformSecret(jwt.getClaim("platformSecret").asString());
- return tokenEntity;
- } catch (JWTVerificationException e) {
- LOGGER.error(e.getMessage(), e);
- return tokenEntity;
- }
- }
-
- }
2、创建/oauth/token接口获取token
- @RestController
- @RequestMapping("/interaction/v1")
- public class IndexController {
-
- @Value("${base.param.platformID}")
- private String platformID;
-
- @Value("${base.param.platformSecret}")
- private String platformSecret;
-
- @RequestMapping(value = "/oauth/token",method = RequestMethod.POST)
- public String getToken(@RequestBody String getParamInfo){
- MsgResult msg = new MsgResult();
- TokenData tokenData = new TokenData();
- getParamInfo = getParamInfo.replace("[+]","+");
- try {
- // 校验生成服务消息主题
- String data = Common.validMessage( getParamInfo );
- TokenEntity tokenEntity = Common.makeEntity(data,TokenEntity.class);
- if (!platformID.equals(tokenEntity.getPlatformID())){
- tokenData.setFailReason(1);
- throw new BusinessException("4004","平台标识错误");
- }
- if (!platformSecret.equals(tokenEntity.getPlatformSecret())){
- tokenData.setFailReason(2);
- throw new BusinessException("4004","平台秘钥错误");
- }
- String token = AppJwtUtil.buildJWT(
- tokenEntity.getPlatformID(),tokenEntity.getPlatformSecret());
- tokenData.setSuccstat(0);
- tokenData.setFailReason(0);
- tokenData.setAccessToken( token );
- tokenData.setExpiresIn(7200000);
- msg.setCode("0");
- msg.setMesg("请求成功");
- } catch (BusinessException b){
- msg.setCode(b.getCode());
- msg.setMesg(b.getMessage());
- tokenData.setSuccstat(1);
- } catch (Exception e){
- msg.setCode("500");
- msg.setMesg(e.getMessage());
- tokenData.setSuccstat(1);
- tokenData.setFailReason(3);
- }
- msg.setData(Common.AESJaiMi(Common.makeJson(tokenData)));
- return Common.msgResult(msg);
- }
- }
这里是我的生产环境上的获取token接口,主要功能就是根据传递过来的参数使用Jwt工具类创建token,再组合成规定的返回格式返回给对方。
3、创建接口拦截验证token类
- @Component
- public class JwtInterceptors implements HandlerInterceptor {
-
- @Value("${base.param.platformID}")
- private String platformID;
-
- @Value("${base.param.platformSecret}")
- private String platformSecret;
-
- @Override
- public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
- MsgResult msg = new MsgResult();
- //获取请求头部令牌
- String auth = request.getHeader("Authorization");
- try {
- if (StringUtils.isNotBlank(auth) && auth.indexOf("Bearer") >= 0) {
- auth = auth.substring("Bearer ".length() - 1, auth.length()).trim();
- } else {
- throw new BusinessException("4002","Token错误");
- }
- TokenEntity tokenEntity = AppJwtUtil.verifyJWT(auth);
- if (!platformID.equals(tokenEntity.getPlatformID())){
- throw new BusinessException("4002","Token错误");
- }
- if (!platformSecret.equals(tokenEntity.getPlatformSecret())){
- throw new BusinessException("4002","Token错误");
- }
- // //验证令牌
- // DecodedJWT decodedJWT = JwtUtils.verify(token);
- return true;
- } catch (BusinessException b){
- msg.setCode(b.getCode());
- msg.setMesg(b.getMessage());
- msg.setData(Common.AESJaiMi(auth));
- } catch (Exception e){
- msg.setCode("500");
- msg.setMesg(e.getMessage());
- msg.setData(Common.AESJaiMi(auth));
- }
- // 转json
- String json = Common.msgResult(msg);
- response.setContentType("application/json;charset=utf-8");
- response.getWriter().println(json);
- return false;
- }
- }
基于HandlerInterceptor的实现类,对接口进行拦截,然后获取接口传递过来的token,用Jwt工具类进行解密,如果token验证通过则返回true并放行接口,验证不通过则返回错误信息。
4、创建拦截路径类
- @Configuration
- public class WebConfigurer implements WebMvcConfigurer {
-
- @Autowired
- private JwtInterceptors jwtInterceptors;
-
- @Override
- public void addInterceptors(InterceptorRegistry registry) {
- registry.addInterceptor(jwtInterceptors)
- // 放行接口
- .excludePathPatterns("/interaction/v1/oauth/token")
- .addPathPatterns("/**");
- }
- }
5、测试获取token接口
至此功能实现。
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/我家自动化/article/detail/368079?site
推荐阅读
- 项目结构pom包
[详细] -->赞
踩
相关标签
