yexuejc007/PlayEdu
1
0
Fork 0
mirror of https://github.com/PlayEdu/PlayEdu synced 2025-12-23 19:19:32 +08:00
Code Issues Packages Projects Releases Wiki Activity

jwt-token的发行

Browse Source
This commit is contained in:
none
2023-02-16 15:00:22 +08:00
parent 0e51cd7ceb
commit 53b3a8645f
11 changed files with 173 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
src/main/java/xyz/playedu/api/controller/admin/LoginController.java
View File

@@ -1,18 +1,26 @@
package xyz.playedu.api.controller.admin;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;
import xyz.playedu.api.constant.SystemConstant;
import xyz.playedu.api.domain.AdminUser;
import xyz.playedu.api.middleware.ImageCaptchaCheckMiddleware;
import xyz.playedu.api.request.LoginRequest;
import xyz.playedu.api.service.AdminUserService;
import xyz.playedu.api.service.JWTService;
import xyz.playedu.api.types.JsonResponse;
import xyz.playedu.api.types.JwtToken;
import xyz.playedu.api.util.MD5Util;
import xyz.playedu.api.util.RequestUtil;
import java.util.HashMap;
@Slf4j
@RestController
@RequestMapping("/admin/v1/auth")
public class LoginController {
@@ -20,6 +28,9 @@ public class LoginController {
@Autowired
private AdminUserService adminUserService;
@Autowired
private JWTService jwtService;
@PostMapping("/login")
@ImageCaptchaCheckMiddleware
public JsonResponse login(@RequestBody @Validated LoginRequest loginRequest) {
@@ -27,14 +38,22 @@ public class LoginController {
if (adminUser == null) {
return JsonResponse.error("邮箱不存在");
}
String password = MD5Util.md5(loginRequest.getPassword() + adminUser.getSalt());
if (password != adminUser.getPassword()) {
String password = MD5Util.md5(loginRequest.getPassword() + adminUser.getSalt()).toLowerCase();
if (!adminUser.getPassword().equals(password)) {
return JsonResponse.error("密码错误");
}
if (adminUser.getIsBanLogin() == 1) {
return JsonResponse.error("当前用户禁止登录");
}
return JsonResponse.success("success");
String url = RequestUtil.url();
JwtToken token = jwtService.generate(adminUser.getId(), url, SystemConstant.JWT_PRV_ADMIN_USER);
HashMap<String, Object> data = new HashMap<>();
data.put("token", token.getToken());
data.put("expire", token.getExpire());
return JsonResponse.data(data);
}
@PostMapping("/logout")