Home Explore Help
Sign In
LINK
/
LINK-SERVER
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 524189f0ff
Branches Tags
LINK-SERVER
/
src
/
main
/
java
/
com
/
lqkj
/
link
/
config
/
auth
/
LoginAuthenticationProvider.java

LoginAuthenticationProvider.java 2.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 
  1. package com.lqkj.link.config.auth;
    2. 

  2. 

  3. import com.lqkj.link.module.authority.service.DatabaseUserDetailService;
    4. 

  4. import com.lqkj.link.util.RSAUtils;
    5. 

  5. import org.springframework.security.authentication.BadCredentialsException;
    6. 

  6. import org.springframework.security.authentication.LockedException;
    7. 

  7. import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
    8. 

  8. import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
    9. 

  9. import org.springframework.security.core.AuthenticationException;
    10. 

  10. import org.springframework.security.core.userdetails.UserDetails;
    11. 

  11. import org.springframework.security.crypto.password.PasswordEncoder;
    12. 

  12. 

  13. /**
    14. 

  14.  * oauth2验证
    15. 

  15.  */
    16. 

  16. public class LoginAuthenticationProvider extends DaoAuthenticationProvider {
    17. 

  17.     private final PasswordEncoder passwordEncoder;
    18. 

  18.     public LoginAuthenticationProvider(DatabaseUserDetailService userDetailsService, PasswordEncoder passwordEncoder) {
    19. 

  19.         setUserDetailsService(userDetailsService);
    20. 

  20.         this.passwordEncoder = passwordEncoder;
    21. 

  21.     }
    22. 

  22. 

  23.     protected void additionalAuthenticationChecks(UserDetails userDetails, UsernamePasswordAuthenticationToken authentication) throws AuthenticationException {
    24. 

  24.         //在接收到符合权限的帐号密码后进行再处理
    25. 

  25.         if (authentication.getCredentials() == null) {
    26. 

  26.             this.logger.debug("Authentication failed: no credentials provided");
    27. 

  27.             throw new BadCredentialsException(this.messages.getMessage("AbstractUserDetailsAuthenticationProvider.badCredentials", "Bad credentials"));
    28. 

  28.         } else {
    29. 

  29.             String pw;
    30. 

  30.             //如果位数为172则先解密
    31. 

  31.             if (authentication.getCredentials().toString().length() != 172) {
    32. 

  32.                 this.logger.debug("Authentication failed: password length error");
    33. 

  33.                 throw new BadCredentialsException(this.messages.getMessage("AbstractUserDetailsAuthenticationProvider.badCredentials", "Bad credentials"));
    34. 

  34.             }
    35. 

  35.             pw = RSAUtils.decryptBase64(authentication.getCredentials().toString());
    36. 

  36.             DatabaseUserDetailService userDetailsService = (DatabaseUserDetailService) getUserDetailsService();
    37. 

  37.             if (userDetailsService.isLocked(userDetails.getUsername())) {//账号是否被冻结
    38. 

  38.                 throw new LockedException("账号已被冻结,请稍后重试");
    39. 

  39.             }
    40. 

  40.             if (!passwordEncoder.matches(pw, userDetails.getPassword())) {
    41. 

  41.                 throw new LockedException(userDetailsService.lockedUser(userDetails.getUsername()));
    42. 

  42.             }else {
    43. 

  43.                 userDetailsService.unlockedUser(userDetails.getUsername());
    44. 

  44.             }
    45. 

  45.         }
    46. 

  46.     }
    47. 

  47. }
    48. 

  48.