Home Explore Help
Sign In
stars-jump
/
renren_fast
4
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 79c08d7c53
Branches Tags
renren_fast
/
src
/
main
/
java
/
io
/
renren
/
modules
/
sys
/
oauth2
/
OAuth2Realm.java

OAuth2Realm.java 2.4 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. package io.renren.modules.sys.oauth2;
    2. 

  2. 

  3. import io.renren.modules.sys.entity.SysUserEntity;
    4. 

  4. import io.renren.modules.sys.entity.SysUserTokenEntity;
    5. 

  5. import io.renren.modules.sys.service.ShiroService;
    6. 

  6. import org.apache.shiro.authc.*;
    7. 

  7. import org.apache.shiro.authz.AuthorizationInfo;
    8. 

  8. import org.apache.shiro.authz.SimpleAuthorizationInfo;
    9. 

  9. import org.apache.shiro.realm.AuthorizingRealm;
    10. 

  10. import org.apache.shiro.subject.PrincipalCollection;
    11. 

  11. import org.springframework.beans.factory.annotation.Autowired;
    12. 

  12. import org.springframework.stereotype.Component;
    13. 

  13. 

  14. import java.util.Set;
    15. 

  15. 

  16. /**
    17. 

  17.  * 认证
    18. 

  18.  *
    19. 

  19.  * @author chenshun
    20. 

  20.  * @email sunlightcs@gmail.com
    21. 

  21.  * @date 2017-05-20 14:00
    22. 

  22.  */
    23. 

  23. @Component
    24. 

  24. public class OAuth2Realm extends AuthorizingRealm {
    25. 

  25.     @Autowired
    26. 

  26.     private ShiroService shiroService;
    27. 

  27. 

  28.     @Override
    29. 

  29.     public boolean supports(AuthenticationToken token) {
    30. 

  30.         return token instanceof OAuth2Token;
    31. 

  31.     }
    32. 

  32. 

  33.     /**
    34. 

  34.      * 授权(验证权限时调用)
    35. 

  35.      */
    36. 

  36.     @Override
    37. 

  37.     protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
    38. 

  38.         SysUserEntity user = (SysUserEntity)principals.getPrimaryPrincipal();
    39. 

  39.         Long userId = user.getUserId();
    40. 

  40. 

  41.         //用户权限列表
    42. 

  42.         Set<String> permsSet = shiroService.getUserPermissions(userId);
    43. 

  43. 

  44.         SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
    45. 

  45.         info.setStringPermissions(permsSet);
    46. 

  46.         return info;
    47. 

  47.     }
    48. 

  48. 

  49.     /**
    50. 

  50.      * 认证(登录时调用)
    51. 

  51.      */
    52. 

  52.     @Override
    53. 

  53.     protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
    54. 

  54.         String accessToken = (String) token.getPrincipal();
    55. 

  55. 

  56.         //根据accessToken,查询用户信息
    57. 

  57.         SysUserTokenEntity tokenEntity = shiroService.queryByToken(accessToken);
    58. 

  58.         //token失效
    59. 

  59.         if(tokenEntity == null || tokenEntity.getExpireTime().getTime() < System.currentTimeMillis()){
    60. 

  60.             throw new IncorrectCredentialsException("token失效,请重新登录");
    61. 

  61.         }
    62. 

  62. 

  63.         //查询用户信息
    64. 

  64.         SysUserEntity user = shiroService.queryUser(tokenEntity.getUserId());
    65. 

  65.         //账号锁定
    66. 

  66.         if(user.getStatus() == 0){
    67. 

  67.             throw new LockedAccountException("账号已被锁定,请联系管理员");
    68. 

  68.         }
    69. 

  69. 

  70.         SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(user, accessToken, getName());
    71. 

  71.         return info;
    72. 

  72.     }
    73. 

  73. }
    74.