From 9e9fdca16d236462e792feeff95a376ba74b4192 Mon Sep 17 00:00:00 2001
From: Helius <wangdoubleone@gmail.com>
Date: Wed, 20 May 2020 19:08:12 +0800
Subject: [PATCH] modify

---
 src/main/java/com/xcong/excoin/common/system/controller/LoginController.java |   64 +++++++++++++++++++++++++++-----
 1 files changed, 54 insertions(+), 10 deletions(-)

diff --git a/src/main/java/com/xcong/excoin/common/system/controller/LoginController.java b/src/main/java/com/xcong/excoin/common/system/controller/LoginController.java
index 28feccb..c90ce97 100644
--- a/src/main/java/com/xcong/excoin/common/system/controller/LoginController.java
+++ b/src/main/java/com/xcong/excoin/common/system/controller/LoginController.java
@@ -1,12 +1,23 @@
 package com.xcong.excoin.common.system.controller;
 
 import cn.hutool.core.util.IdUtil;
+import cn.hutool.crypto.SecureUtil;
+import cn.hutool.crypto.asymmetric.KeyType;
+import cn.hutool.crypto.asymmetric.RSA;
+import cn.hutool.crypto.asymmetric.Sign;
+import cn.hutool.crypto.asymmetric.SignAlgorithm;
 import com.alibaba.fastjson.JSONObject;
 import com.xcong.excoin.common.contants.AppContants;
 import com.xcong.excoin.common.response.Result;
 import com.xcong.excoin.common.system.bean.LoginUserBean;
 import com.xcong.excoin.common.system.dto.LoginDto;
+import com.xcong.excoin.common.system.dto.RegisterDto;
+import com.xcong.excoin.configurations.properties.ApplicationProperties;
+import com.xcong.excoin.configurations.properties.SecurityProperties;
+import com.xcong.excoin.modules.member.service.MemberService;
 import com.xcong.excoin.utils.RedisUtils;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiOperation;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
@@ -26,12 +37,19 @@
  * @Version V1.0
  **/
 @Slf4j
+@Api(value = "登陆注册类", tags = "登陆注册类")
 @RestController
 @RequestMapping(value = "/")
 public class LoginController {
 
-    @Value("${rsa.private_key}")
-    private String privateKey;
+    @Resource
+    private MemberService memberservice;
+
+    @Resource
+    private ApplicationProperties applicationProperties;
+
+    @Resource
+    private SecurityProperties securityProperties;
 
     @Resource
     private AuthenticationManagerBuilder authenticationManagerBuilder;
@@ -39,19 +57,45 @@
     @Resource
     private RedisUtils redisUtils;
 
+    @ApiOperation(value = "登陆接口", notes = "登陆接口")
     @PostMapping("/login")
     public Result login(@RequestBody @Validated LoginDto loginDto) {
+        // 使用md5加密前端传来的密码
+        Sign sign = SecureUtil.sign(SignAlgorithm.MD5withRSA);
+        byte[] pwdByte = sign.sign(loginDto.getPassword().getBytes());
+
+        // 将账号密码交给spring security验证，并调用userServiceDetails
         UsernamePasswordAuthenticationToken authToken = new UsernamePasswordAuthenticationToken(loginDto.getUsername(), loginDto.getPassword());
         Authentication authentication = authenticationManagerBuilder.getObject().authenticate(authToken);
-        String token = IdUtil.simpleUUID();
+
+        // 获取当前验证过后的用户
         LoginUserBean loginUserBean = (LoginUserBean) authentication.getPrincipal();
-        redisUtils.set(AppContants.APP_LOGIN_PREFIX + token, JSONObject.toJSONString(loginUserBean), 300000);
-        Map<String, Object> authInfo = new HashMap<String, Object>(2){
-            {
-                put("token", token);
-                put("user", loginUserBean);
-            }
-        };
+
+        // 生成UUID作为token
+        String token = IdUtil.simpleUUID();
+        redisUtils.set(AppContants.APP_LOGIN_PREFIX + token, JSONObject.toJSONString(loginUserBean), applicationProperties.getRedisExpire());
+        Map<String, Object> authInfo = new HashMap<>();
+        // 开启debug模式，则将加密后的token返回
+        if (applicationProperties.isDebug()) {
+            authInfo.put("token", token);
+            authInfo.put("rsaToken", generateAsaToken(token));
+            authInfo.put("user", loginUserBean);
+        } else {
+            authInfo.put("token", token);
+            authInfo.put("user", loginUserBean);
+        }
         return Result.ok("success", authInfo);
     }
+
+    public String generateAsaToken(String token) {
+        RSA rsa = new RSA(null, securityProperties.getPublicKey());
+        return rsa.encryptBase64(token + "_" +System.currentTimeMillis(), KeyType.PublicKey);
+    }
+
+    @ApiOperation(value = "app注册接口", notes = "app注册接口，验证码必须输入可默认为123456")
+    @PostMapping(value = "/register")
+    public Result register(@RequestBody @Validated RegisterDto registerDto) {
+        return memberservice.register(registerDto);
+    }
+
 }

--
Gitblit v1.9.1