You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
143 lines
5.0 KiB
143 lines
5.0 KiB
package com.fr.plugin.oauth; |
|
|
|
import com.fr.data.NetworkHelper; |
|
import com.fr.decision.fun.impl.AbstractGlobalRequestFilterProvider; |
|
import com.fr.decision.mobile.terminal.TerminalHandler; |
|
import com.fr.decision.webservice.bean.authentication.LoginClientBean; |
|
import com.fr.decision.webservice.v10.login.LoginService; |
|
import com.fr.decision.webservice.v10.login.TokenResource; |
|
import com.fr.log.FineLoggerFactory; |
|
import com.fr.plugin.oauth.utils.HtmlUtils; |
|
import com.fr.plugin.oauth.utils.RedirectUtils; |
|
import com.fr.plugin.transform.ExecuteFunctionRecord; |
|
import com.fr.plugin.transform.FunctionRecorder; |
|
import com.fr.stable.StringUtils; |
|
|
|
import javax.servlet.FilterChain; |
|
import javax.servlet.FilterConfig; |
|
import javax.servlet.http.HttpServletRequest; |
|
import javax.servlet.http.HttpServletResponse; |
|
import java.io.UnsupportedEncodingException; |
|
import java.net.URLDecoder; |
|
import java.net.URLEncoder; |
|
|
|
@FunctionRecorder |
|
public class LoginFilter extends AbstractGlobalRequestFilterProvider { |
|
|
|
private static final String REDIRECT_URI = "/plugin/public/com.fr.plugin.JSD10117/authLogin"; |
|
|
|
@Override |
|
public void init(FilterConfig filterConfig) { |
|
W2Config.getInstance(); |
|
super.init(filterConfig); |
|
} |
|
|
|
@Override |
|
public String filterName() { |
|
return "loginFilter"; |
|
} |
|
|
|
@ExecuteFunctionRecord |
|
@Override |
|
public String[] urlPatterns() { |
|
return new String[]{ |
|
/*"/decision/login", |
|
"/login.html"*/ |
|
"/*" |
|
}; |
|
} |
|
|
|
|
|
@Override |
|
public void doFilter(HttpServletRequest req, HttpServletResponse res, FilterChain filterChain) { |
|
try { |
|
boolean isLoginReq = isLoginReqest(req); |
|
// 约定:放在iframe中的链接带参数iniframe=true |
|
boolean iniframe = Boolean.parseBoolean(req.getParameter("iniframe")); |
|
|
|
boolean sharetoken = Boolean.parseBoolean(req.getParameter("sharetoken")); |
|
|
|
if (isLoginReq || iniframe || sharetoken) { |
|
LoginClientBean bean = isLogined(req); |
|
if (bean == null) { |
|
boolean redirect = req.getMethod().equals("GET"); |
|
if (redirect) { |
|
gotoAuthorize(req, res, iniframe, sharetoken); |
|
return; |
|
} |
|
} else { |
|
// 登录成功,跳转至目标页面 |
|
RedirectUtils.redirect(bean.getUsername(), W2Config.getInstance(), bean.getToken(), res); |
|
return; |
|
} |
|
} |
|
filterChain.doFilter(req, res); |
|
|
|
} catch (Exception e) { |
|
FineLoggerFactory.getLogger().error(e.getMessage()); |
|
} |
|
} |
|
|
|
/** |
|
* 跳转到统一登录页面 |
|
*/ |
|
public static void gotoAuthorize(HttpServletRequest req, HttpServletResponse res, boolean inIframe, boolean sharetoken) throws UnsupportedEncodingException { |
|
W2Config w2Config = W2Config.getInstance(); |
|
String callBack = URLEncoder.encode(w2Config.getFrurl() + REDIRECT_URI, "UTF-8"); |
|
if (inIframe) { |
|
callBack = URLEncoder.encode(w2Config.getFrurl() + REDIRECT_URI + "?iframeurl=" + getUrl(req), "UTF-8"); |
|
} else if (sharetoken) { |
|
callBack = URLEncoder.encode(w2Config.getFrurl() + REDIRECT_URI + "?redirecturl=" + getUrl(req), "UTF-8"); |
|
} |
|
|
|
callBack = callBack.replace("sharetoken", "nosharetoken"); |
|
callBack = callBack.replace("iniframe", "noiniframe"); |
|
|
|
String url = ""; |
|
if (sharetoken) { |
|
url = callBack; |
|
} else { |
|
url = w2Config.getIdf() + callBack; |
|
} |
|
HtmlUtils.sendRedirect("", url, res); |
|
} |
|
|
|
private LoginClientBean isLogined(HttpServletRequest req) { |
|
LoginClientBean bean = null; |
|
try { |
|
String token = TokenResource.COOKIE.getToken(req); |
|
bean = LoginService.getInstance().loginStatusValid(token, TerminalHandler.getTerminal(req, NetworkHelper.getDevice(req))); |
|
} catch (Exception e) { |
|
bean = null; |
|
FineLoggerFactory.getLogger().error(e.getMessage()); |
|
} |
|
return bean; |
|
} |
|
|
|
private boolean isLoginReqest(HttpServletRequest req) { |
|
String url = req.getRequestURL().toString(); |
|
if (StringUtils.isNotBlank(url)) { |
|
if (url.endsWith("/decision/login") || url.endsWith("/login.html")) { |
|
return true; |
|
} |
|
} |
|
return false; |
|
} |
|
|
|
private static String getUrl(HttpServletRequest request) { |
|
String url = request.getRequestURL().toString(); |
|
String param = request.getQueryString(); |
|
if (StringUtils.isNotBlank(param)) { |
|
try { |
|
if (request.getCharacterEncoding() != null) { |
|
param = URLDecoder.decode(param, request.getCharacterEncoding()); |
|
} |
|
} catch (Exception e) { |
|
FineLoggerFactory.getLogger().error(e.getMessage()); |
|
} |
|
url = url + "?" + param; |
|
} |
|
return url; |
|
} |
|
|
|
}
|
|
|