c83b5b39
 Liu Haoyu
项目创建, 集成spring-se...
|
1
2
|
package com.objecteye.config;
|
|
00762fb4
Liu Haoyu
代码重构;
|
3
|
import com.objecteye.pojo.AuthenticationToken;
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
import org.springframework.security.authentication.*;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.password.PasswordEncoder;
public class AuthenticationProviderConfig implements AuthenticationProvider {
private UserDetailsService userDetailsService;
private PasswordEncoder passwordEncoder;
public void setUserDetailsService(UserDetailsService userDetailsService) {
this.userDetailsService = userDetailsService;
}
public void setPasswordEncoder(PasswordEncoder passwordEncoder) {
this.passwordEncoder = passwordEncoder;
}
/**
* 用户默认检查,用户是否锁定过期等
*/
private void defaultCheck(UserDetails user) {
if (!user.isAccountNonLocked()) {
|
|
0f65af02
Liu Haoyu
返回内容优化;
|
30
|
throw new LockedException("用户已被锁定");
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
31
32
33
|
}
if (!user.isEnabled()) {
|
|
0f65af02
Liu Haoyu
返回内容优化;
|
34
|
throw new DisabledException("当前用户不可用");
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
35
36
37
|
}
if (!user.isAccountNonExpired()) {
|
|
0f65af02
Liu Haoyu
返回内容优化;
|
38
|
throw new AccountExpiredException("账号已被注销");
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
39
40
41
42
43
44
45
46
47
|
}
}
/**
* (附加检查项)检查密码是否正确
*/
private void additionalAuthenticationChecks(UserDetails userDetails,
AuthenticationToken authenticationToken) throws AuthenticationException {
if (authenticationToken.getCredentials() == null) {
|
|
0f65af02
Liu Haoyu
返回内容优化;
|
48
|
throw new BadCredentialsException("登录信息错误");
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
49
50
51
|
}
String presentedPassword = authenticationToken.getCredentials().toString();
if (!passwordEncoder.matches(presentedPassword, userDetails.getPassword())) {
|
|
0f65af02
Liu Haoyu
返回内容优化;
|
52
|
throw new BadCredentialsException("登录信息错误");
|
|
c83b5b39
Liu Haoyu
项目创建, 集成spring-se...
|
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
}
}
/**
* 创建一个认证成功的Authentication对象,传入的是一个还没有认证的Authentication对象
*
* @param authentication 未认证的
* @return
* @throws AuthenticationException
* @see AuthenticationToken#AuthenticationToken(Object, Object)
*/
@Override
public Authentication authenticate(Authentication authentication) throws AuthenticationException {
String userName = authentication.getName();
UserDetails userDetails = userDetailsService.loadUserByUsername(userName);
AuthenticationToken checkToken = (AuthenticationToken) authentication;
defaultCheck(userDetails);
additionalAuthenticationChecks(userDetails, checkToken);
AuthenticationToken authenticationToken = new AuthenticationToken(userDetails, checkToken.getCredentials(), userDetails.getAuthorities());
authenticationToken.setDetails(checkToken.getDetails());
return authenticationToken;
}
/**
* 判断token是否是该类型
*
* @param aClass
* @return
*/
@Override
public boolean supports(Class<?> aClass) {
return AuthenticationToken.class.isAssignableFrom(aClass);
}
}
|
