open-JSD-9162/src/main/java/com/fr/plugin/MSAuthCallbackApi.java

package com.fr.plugin;

import com.fanruan.api.net.http.HttpKit;
import com.fr.decision.authority.data.User;
import com.fr.decision.fun.impl.BaseHttpHandler;
import com.fr.decision.webservice.v10.login.LoginService;
import com.fr.decision.webservice.v10.user.UserService;
import com.fr.json.JSONObject;
import com.fr.log.FineLoggerFactory;
import com.fr.plugin.context.PluginContexts;
import com.fr.third.org.apache.commons.lang3.StringUtils;
import com.fr.third.springframework.web.bind.annotation.RequestMethod;
import com.fr.web.utils.WebUtils;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.HashMap;
import java.util.Map;

public class MSAuthCallbackApi extends BaseHttpHandler {
    @Override
    public RequestMethod getMethod() {
        return null;
    }

    @Override
    public String getPath() {
        return "/authCallBack";
    }

    @Override
    public boolean isPublic() {
        return true;
    }

    @Override
    public void handle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse) throws Exception {
        String code = WebUtils.getHTTPRequestParameter(httpServletRequest, "code");
        if (StringUtils.isBlank(code)) {
            WebUtils.printAsString(httpServletResponse, "授权码不存在");
            return;
        }
        //第一步获取token
        MSConfig config = MSConfig.getInstance();
        String valAddr = config.getValAddr();
        String tokenUrl = String.format("%s/oauth/token?grant_type=authorization_code&code=%s&client_id=%s&client_secret=%s&redirect_uri=%s",
                valAddr,
                code,
                config.getAppId(),
                config.getClientSecret(),
                config.getFrUrl()+"/url/ms/authCallBack"
         );
        if (!PluginContexts.currentContext().isAvailable()) {
            WebUtils.printAsString(httpServletResponse, "单点插件授权过期请联系帆软");
            return;
        }
        String json = HttpKit.post(tokenUrl,new HashMap<>());
        if (StringUtils.isBlank(json)) {
            WebUtils.printAsString(httpServletResponse, "访问授权服务器失败请检查服务器网络配置");
            return;
        }
        FineLoggerFactory.getLogger().info("请求token返回:{}", json);
        JSONObject jsonObject = new JSONObject(json);
        if (jsonObject.has("access_token")) {
            String access_token = jsonObject.getString("access_token");
            String uid = getUserInfo(access_token);
            User user = UserService.getInstance().getUserByUserName(uid);
            if (user == null) {
                WebUtils.printAsString(httpServletResponse, "登录失败:" + uid + " 在帆软用户体系不存在,请联系管理员添加");
                return;
            }
            login(httpServletRequest, httpServletResponse, uid);
            Object callback = httpServletRequest.getSession().getAttribute("callback");
            if (callback != null) {
                sendRedirect(httpServletResponse, callback.toString());
                return;
            }
            sendRedirect(httpServletResponse, HttpUtils.getDefaultUrl(httpServletRequest));
            return;
        }
        WebUtils.printAsString(httpServletResponse, "登录失败:" + jsonObject.getString("message"));
    }

    public String getUserInfo(String access_token) {
        Map<String, String> params = new HashMap<>();
        MSConfig oauth2Config = MSConfig.getInstance();
        String valAddr = oauth2Config.getValAddr();
        String url = String.format("%s/api/bff/v1.2/oauth2/userinfo?access_token=%s", valAddr, access_token);
        try {
            FineLoggerFactory.getLogger().info("进入token获取用户名=========参数 {} url:{}", params, url);
            String post = HttpKit.get(url);
            FineLoggerFactory.getLogger().info("进入token获取用户名=========参数 {} url:{} 响应:{}", params, url, post);
            JSONObject entries = new JSONObject(post);
            boolean success = entries.getBoolean("success");
            if (success) {
                return entries.getJSONObject("data").getString("username");
            }
        } catch (IOException e) {
            e.printStackTrace();
        }
        return "";
    }

    private String login(HttpServletRequest req, HttpServletResponse res, String username) throws Exception {
        String token = LoginService.getInstance().login(req, res, username);
        req.setAttribute("fine_auth_token", token);
        FineLoggerFactory.getLogger().info("fr FrFilter is over with username is ###" + username);
        return token;
    }

    private void sendRedirect(HttpServletResponse res, String url) throws IOException {
        Map<String, String> params = new HashMap<>();
        params.put("callBack", url);
        WebUtils.writeOutTemplate("com/fr/plugin/redirect.html", res, params);
    }

}
提交开源任务材料 3 years ago			`package com.fr.plugin;`

			`import com.fanruan.api.net.http.HttpKit;`
			`import com.fr.decision.authority.data.User;`
			`import com.fr.decision.fun.impl.BaseHttpHandler;`
			`import com.fr.decision.webservice.v10.login.LoginService;`
			`import com.fr.decision.webservice.v10.user.UserService;`
			`import com.fr.json.JSONObject;`
			`import com.fr.log.FineLoggerFactory;`
			`import com.fr.plugin.context.PluginContexts;`
			`import com.fr.third.org.apache.commons.lang3.StringUtils;`
			`import com.fr.third.springframework.web.bind.annotation.RequestMethod;`
			`import com.fr.web.utils.WebUtils;`

			`import javax.servlet.http.HttpServletRequest;`
			`import javax.servlet.http.HttpServletResponse;`
			`import java.io.IOException;`
			`import java.util.HashMap;`
			`import java.util.Map;`

			`public class MSAuthCallbackApi extends BaseHttpHandler {`
			`@Override`
			`public RequestMethod getMethod() {`
			`return null;`
			`}`

			`@Override`
			`public String getPath() {`
			`return "/authCallBack";`
			`}`

			`@Override`
			`public boolean isPublic() {`
			`return true;`
			`}`

			`@Override`
			`public void handle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse) throws Exception {`
			`String code = WebUtils.getHTTPRequestParameter(httpServletRequest, "code");`
			`if (StringUtils.isBlank(code)) {`
			`WebUtils.printAsString(httpServletResponse, "授权码不存在");`
			`return;`
			`}`
			`//第一步获取token`
			`MSConfig config = MSConfig.getInstance();`
			`String valAddr = config.getValAddr();`
			`String tokenUrl = String.format("%s/oauth/token?grant_type=authorization_code&code=%s&client_id=%s&client_secret=%s&redirect_uri=%s",`
			`valAddr,`
			`code,`
			`config.getAppId(),`
			`config.getClientSecret(),`
			`config.getFrUrl()+"/url/ms/authCallBack"`
			`);`
			`if (!PluginContexts.currentContext().isAvailable()) {`
			`WebUtils.printAsString(httpServletResponse, "单点插件授权过期请联系帆软");`
			`return;`
			`}`
			`String json = HttpKit.post(tokenUrl,new HashMap<>());`
			`if (StringUtils.isBlank(json)) {`
			`WebUtils.printAsString(httpServletResponse, "访问授权服务器失败请检查服务器网络配置");`
			`return;`
			`}`
			`FineLoggerFactory.getLogger().info("请求token返回:{}", json);`
			`JSONObject jsonObject = new JSONObject(json);`
			`if (jsonObject.has("access_token")) {`
			`String access_token = jsonObject.getString("access_token");`
			`String uid = getUserInfo(access_token);`
			`User user = UserService.getInstance().getUserByUserName(uid);`
			`if (user == null) {`
			`WebUtils.printAsString(httpServletResponse, "登录失败:" + uid + " 在帆软用户体系不存在,请联系管理员添加");`
			`return;`
			`}`
			`login(httpServletRequest, httpServletResponse, uid);`
			`Object callback = httpServletRequest.getSession().getAttribute("callback");`
			`if (callback != null) {`
			`sendRedirect(httpServletResponse, callback.toString());`
			`return;`
			`}`
			`sendRedirect(httpServletResponse, HttpUtils.getDefaultUrl(httpServletRequest));`
			`return;`
			`}`
			`WebUtils.printAsString(httpServletResponse, "登录失败:" + jsonObject.getString("message"));`
			`}`

			`public String getUserInfo(String access_token) {`
			`Map<String, String> params = new HashMap<>();`
			`MSConfig oauth2Config = MSConfig.getInstance();`
			`String valAddr = oauth2Config.getValAddr();`
			`String url = String.format("%s/api/bff/v1.2/oauth2/userinfo?access_token=%s", valAddr, access_token);`
			`try {`
			`FineLoggerFactory.getLogger().info("进入token获取用户名=========参数 {} url:{}", params, url);`
			`String post = HttpKit.get(url);`
			`FineLoggerFactory.getLogger().info("进入token获取用户名=========参数 {} url:{} 响应:{}", params, url, post);`
			`JSONObject entries = new JSONObject(post);`
			`boolean success = entries.getBoolean("success");`
			`if (success) {`
			`return entries.getJSONObject("data").getString("username");`
			`}`
			`} catch (IOException e) {`
			`e.printStackTrace();`
			`}`
			`return "";`
			`}`

			`private String login(HttpServletRequest req, HttpServletResponse res, String username) throws Exception {`
			`String token = LoginService.getInstance().login(req, res, username);`
			`req.setAttribute("fine_auth_token", token);`
			`FineLoggerFactory.getLogger().info("fr FrFilter is over with username is ###" + username);`
			`return token;`
			`}`

			`private void sendRedirect(HttpServletResponse res, String url) throws IOException {`
			`Map<String, String> params = new HashMap<>();`
			`params.put("callBack", url);`
			`WebUtils.writeOutTemplate("com/fr/plugin/redirect.html", res, params);`
			`}`

			`}`