package com.ycl.jxkg.config.spring.security;
|
|
|
import com.ycl.jxkg.constants.CaffeineConstant;
|
import com.ycl.jxkg.context.WebContext;
|
import com.ycl.jxkg.enums.RoleEnum;
|
import com.ycl.jxkg.enums.UserStatusEnum;
|
import com.ycl.jxkg.service.AuthenticationService;
|
import com.ycl.jxkg.service.UserService;
|
import com.ycl.jxkg.utils.CaffeineUtil;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.security.authentication.AuthenticationProvider;
|
import org.springframework.security.authentication.BadCredentialsException;
|
import org.springframework.security.authentication.LockedException;
|
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
|
import org.springframework.security.core.Authentication;
|
import org.springframework.security.core.AuthenticationException;
|
import org.springframework.security.core.GrantedAuthority;
|
import org.springframework.security.core.authority.SimpleGrantedAuthority;
|
import org.springframework.security.core.userdetails.User;
|
import org.springframework.security.core.userdetails.UsernameNotFoundException;
|
import org.springframework.stereotype.Component;
|
|
import java.util.ArrayList;
|
|
|
/**
|
* @version 3.5.0
|
* @description: 登录用户名密码验证
|
* Copyright (C), 2020-2024, 武汉思维跳跃科技有限公司
|
* @date 2021/12/25 9:45
|
*/
|
@Component
|
public class RestAuthenticationProvider implements AuthenticationProvider {
|
|
private final AuthenticationService authenticationService;
|
private final UserService userService;
|
private final WebContext webContext;
|
private final CaffeineUtil caffeineUtil;
|
|
/**
|
* Instantiates a new Rest authentication provider.
|
*
|
* @param authenticationService the authentication service
|
* @param userService the user service
|
* @param webContext the web context
|
*/
|
@Autowired
|
public RestAuthenticationProvider(AuthenticationService authenticationService, UserService userService, WebContext webContext, CaffeineUtil caffeineUtil) {
|
this.authenticationService = authenticationService;
|
this.userService = userService;
|
this.webContext = webContext;
|
this.caffeineUtil = caffeineUtil;
|
}
|
|
@Override
|
public Authentication authenticate(Authentication authentication) throws AuthenticationException {
|
String username = authentication.getName();
|
String password = (String) authentication.getCredentials();
|
|
com.ycl.jxkg.domain.entity.User user = userService.getUserByUserName(username);
|
if (user == null) {
|
throw new UsernameNotFoundException("用户名或密码错误");
|
}
|
|
boolean result = authenticationService.authUser(user, username, password);
|
if (!result) {
|
throw new BadCredentialsException("用户名或密码错误");
|
}
|
|
UserStatusEnum userStatusEnum = UserStatusEnum.fromCode(user.getStatus());
|
if (UserStatusEnum.Disable == userStatusEnum) {
|
throw new LockedException("用户被禁用");
|
}
|
|
ArrayList<GrantedAuthority> grantedAuthorities = new ArrayList<>();
|
grantedAuthorities.add(new SimpleGrantedAuthority(RoleEnum.fromCode(user.getRole()).getRoleName()));
|
|
User authUser = new User(user.getUserName(), user.getPassword(), grantedAuthorities);
|
|
// 登录之后保存到内存中
|
caffeineUtil.put(CaffeineConstant.AUTH, authUser.getUsername(), authUser);
|
return new UsernamePasswordAuthenticationToken(authUser, authUser.getPassword(), authUser.getAuthorities());
|
}
|
|
@Override
|
public boolean supports(Class<?> aClass) {
|
return true;
|
}
|
}
|
