From 45da81e1167fecb16cfae5c74e1eca8115bbbcdd Mon Sep 17 00:00:00 2001
From: wuxw <928255095@qq.com>
Date: 星期三, 17 七月 2019 17:57:18 +0800
Subject: [PATCH] Merge branch 'master' of https://github.com/java110/MicroCommunity
---
java110-service/src/main/java/com/java110/service/filter/JwtFilter.java | 91 ++++++++++++++++++++++++++++++---------------
1 files changed, 60 insertions(+), 31 deletions(-)
diff --git a/java110-service/src/main/java/com/java110/service/filter/JwtFilter.java b/java110-service/src/main/java/com/java110/service/filter/JwtFilter.java
index 7c7cdb0..9fec269 100644
--- a/java110-service/src/main/java/com/java110/service/filter/JwtFilter.java
+++ b/java110-service/src/main/java/com/java110/service/filter/JwtFilter.java
@@ -1,19 +1,17 @@
package com.java110.service.filter;
-import com.auth0.jwt.JWT;
-import com.auth0.jwt.JWTVerifier;
-import com.auth0.jwt.algorithms.Algorithm;
-import com.auth0.jwt.exceptions.JWTVerificationException;
-import com.auth0.jwt.interfaces.Claim;
-import com.auth0.jwt.interfaces.DecodedJWT;
import com.java110.common.constant.CommonConstant;
import com.java110.common.constant.ResponseConstant;
import com.java110.common.exception.FilterException;
-import com.java110.common.factory.DataTransactionFactory;
import com.java110.common.util.StringUtil;
-import org.springframework.web.filter.GenericFilterBean;
+import com.java110.core.factory.AuthenticationFactory;
+import com.java110.core.factory.DataTransactionFactory;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import javax.servlet.Filter;
import javax.servlet.FilterChain;
+import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
@@ -22,61 +20,78 @@
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.PrintWriter;
-import java.io.UnsupportedEncodingException;
+import java.util.Date;
import java.util.Map;
/**
* Created by wuxw on 2018/5/2.
*/
-public class JwtFilter extends GenericFilterBean {
+public class JwtFilter implements Filter {
+
+ private static Logger logger = LoggerFactory.getLogger(JwtFilter.class);
+
+ private String[] excludedUris;
+
+ @Override
+ public void destroy() {
+ // TODO Auto-generated method stub
+ }
+
+
+ @Override
+ public void init(FilterConfig filterConfig) throws ServletException {
+ excludedUris = filterConfig.getInitParameter("excludedUri").split(",");
+ }
public void doFilter(final ServletRequest req, final ServletResponse res, final FilterChain chain)
throws IOException, ServletException {
final HttpServletRequest request = (HttpServletRequest) req;
final HttpServletResponse response = (HttpServletResponse) res;
+ String uri = request.getServletPath();
+ //濡傛灉鏄� 涓嶈兘杩囨护鐨勫湴鍧�閫夋嫨璺宠繃
+ if (isExcludedUri(uri)) {
+ chain.doFilter(request, response);
+ return;
+ }
String token = "";
try {
//鑾峰彇token
token = this.getToken(request);
try {
- Algorithm algorithm = Algorithm.HMAC256("secret");
- JWTVerifier verifier = JWT.require(algorithm).withIssuer("auth0").build();
- DecodedJWT jwt = verifier.verify(token);
-
- Map<String, Claim> claims = jwt.getClaims();
- // Add the claim to request header
+ long tokenStartTime = new Date().getTime();
+ Map<String, String> claims = AuthenticationFactory.verifyToken(token);
+ logger.debug("鏍¢獙token 鑰楁椂锛歿}", new Date().getTime() - tokenStartTime);
request.setAttribute("claims", claims);
- } catch (UnsupportedEncodingException e) {
- logger.error("瑙f瀽token 澶辫触 锛�", e);
- throw new FilterException(ResponseConstant.RESULT_CODE_NO_AUTHORITY_ERROR, "鎮ㄨ繕娌℃湁鐧诲綍锛岃鍏堢櫥褰�");
- } catch (JWTVerificationException e) {
+
+ } catch (Exception e) {
//Invalid signature/claims
logger.error("瑙f瀽token 澶辫触 锛�", e);
throw new FilterException(ResponseConstant.RESULT_CODE_NO_AUTHORITY_ERROR, "鎮ㄨ繕娌℃湁鐧诲綍锛岃鍏堢櫥褰�");
}
chain.doFilter(req, res);
- }catch (FilterException e){
- if("POST".equals(request.getMethod())){
+ } catch (FilterException e) {
+ if ("POST".equals(request.getMethod())) {
writeJson(response,
- DataTransactionFactory.pageResponseJson(ResponseConstant.RESULT_CODE_NO_AUTHORITY_ERROR,e.getMessage(),null),
+ DataTransactionFactory.pageResponseJson(ResponseConstant.RESULT_CODE_NO_AUTHORITY_ERROR, e.getMessage(), null),
"UTF-8");
- }else{
- response.sendRedirect("/error?code="+e.getResult().getCode()+"&msg="+e.getResult().getMsg());
+ } else {
+ response.sendRedirect("/flow/login");
}
- }catch (Exception e){
- response.sendRedirect("/error?code="+ResponseConstant.RESULT_CODE_INNER_ERROR+"&msg=閴存潈澶辫触");
+ } catch (Exception e) {
+ response.sendRedirect("/flow/login");
}
}
/**
* 鑾峰彇TOKEN
+ *
* @param request
* @return
*/
- private String getToken(HttpServletRequest request) throws FilterException{
+ private String getToken(HttpServletRequest request) throws FilterException {
String token = "";
for (Cookie cookie : request.getCookies()) {
if (CommonConstant.COOKIE_AUTH_TOKEN.equals(cookie.getName())) {
@@ -90,19 +105,33 @@
return token;
}
- private void writeJson(HttpServletResponse response, String data, String encoding){
+ private void writeJson(HttpServletResponse response, String data, String encoding) {
//璁剧疆缂栫爜鏍煎紡
response.setContentType("text/plain;charset=" + encoding);
response.setCharacterEncoding(encoding);
PrintWriter out = null;
- try{
+ try {
out = response.getWriter();
out.write(data);
out.flush();
- }catch(IOException e){
+ } catch (IOException e) {
e.printStackTrace();
}
}
+ private boolean isExcludedUri(String uri) {
+ if (excludedUris == null || excludedUris.length <= 0) {
+ return false;
+ }
+ for (String ex : excludedUris) {
+ uri = uri.trim();
+ ex = ex.trim();
+ if (uri.toLowerCase().matches(ex.toLowerCase().replace("*", ".*")))
+ return true;
+ }
+ return false;
+ }
+
+
}
--
Gitblit v1.8.0