南昌空管后台
blame | 历史 | 原始文档
xiangpei
2024-03-28 0f431b52e0936456bd165d9553761bfd8a5a0517 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

package com.mindskip.xzs.configuration.spring.security;


 


 


import com.mindskip.xzs.domain.enums.RoleEnum;


import com.mindskip.xzs.domain.enums.UserStatusEnum;


import com.mindskip.xzs.service.AuthenticationService;


import com.mindskip.xzs.service.UserService;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.security.authentication.AuthenticationProvider;


import org.springframework.security.authentication.BadCredentialsException;


import org.springframework.security.authentication.LockedException;


import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;


import org.springframework.security.core.Authentication;


import org.springframework.security.core.AuthenticationException;


import org.springframework.security.core.GrantedAuthority;


import org.springframework.security.core.authority.SimpleGrantedAuthority;


import org.springframework.security.core.userdetails.User;


import org.springframework.security.core.userdetails.UsernameNotFoundException;


import org.springframework.stereotype.Component;


 


import java.util.ArrayList;


 


/**


 * @version 2.2.0


 * @description: 登录用户名密码验证


 * Copyright (C), 2020-2021, 武汉思维跳跃科技有限公司


 * @date 2021 /9/7 9:45


 */


@Component


public class RestAuthenticationProvider implements AuthenticationProvider {


 


    private final AuthenticationService authenticationService;


    private final UserService userService;


 


    @Autowired


    public RestAuthenticationProvider(AuthenticationService authenticationService, UserService userService) {


        this.authenticationService = authenticationService;


        this.userService = userService;


    }


 


    @Override


    public Authentication authenticate(Authentication authentication) throws AuthenticationException {


        String username = authentication.getName();


        String password = (String) authentication.getCredentials();


 


        com.mindskip.xzs.domain.User user = userService.getUserByUserName(username);


        if (user == null) {


            throw new UsernameNotFoundException("用户名或密码错误");


        }


 


        boolean result = authenticationService.authUser(user, username, password);


        if (!result) {


            throw new BadCredentialsException("用户名或密码错误");


        }


 


        UserStatusEnum userStatusEnum = UserStatusEnum.fromCode(user.getStatus());


        if (UserStatusEnum.Disable == userStatusEnum) {


            throw new LockedException("用户被禁用");


        }


 


        ArrayList<GrantedAuthority> grantedAuthorities = new ArrayList<>();


        grantedAuthorities.add(new SimpleGrantedAuthority(RoleEnum.fromCode(user.getRole()).getRoleName()));


 


        User authUser = new User(user.getUserName(), user.getPassword(), grantedAuthorities);


        return new UsernamePasswordAuthenticationToken(authUser, authUser.getPassword(), authUser.getAuthorities());


    }


 


    @Override


    public boolean supports(Class<?> aClass) {


        return true;


    }


}