Home Explore Help
Sign In
demo
/
spring-security-oauth2
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 56bdcddd6c
Branches Tags
spring-secur...
/
security-auth
/
src
/
main
/
java
/
timing
/
ukulele
/
auth
/
security
/
handler
/
LoginSuccessHandler.java

LoginSuccessHandler.java 2.5 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. package timing.ukulele.auth.security.handler;
    2. 

  2. 

  3. import jakarta.servlet.http.HttpServletRequest;
    4. 

  4. import jakarta.servlet.http.HttpServletResponse;
    5. 

  5. import lombok.extern.slf4j.Slf4j;
    6. 

  6. import org.springframework.http.MediaType;
    7. 

  7. import org.springframework.security.core.Authentication;
    8. 

  8. import org.springframework.security.core.GrantedAuthority;
    9. 

  9. import org.springframework.security.oauth2.jwt.*;
    10. 

  10. import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
    11. 

  11. import timing.ukulele.auth.config.property.TimingSecurityProperties;
    12. 

  12. import timing.ukulele.auth.model.Result;
    13. 

  13. import timing.ukulele.auth.util.JsonUtils;
    14. 

  14. 

  15. import java.io.IOException;
    16. 

  16. import java.nio.charset.StandardCharsets;
    17. 

  17. import java.time.Instant;
    18. 

  18. import java.util.List;
    19. 

  19. import java.util.stream.Collectors;
    20. 

  20. 

  21. /**
    22. 

  22.  * 登录成功处理类
    23. 

  23.  */
    24. 

  24. @Slf4j
    25. 

  25. public class LoginSuccessHandler implements AuthenticationSuccessHandler {
    26. 

  26.     private final JwtEncoder encoder;
    27. 

  27.     private final TimingSecurityProperties securityProperties;
    28. 

  28. 

  29.     public LoginSuccessHandler(JwtEncoder encoder, TimingSecurityProperties securityProperties) {
    30. 

  30.         this.encoder = encoder;
    31. 

  31.         this.securityProperties = securityProperties;
    32. 

  32.     }
    33. 

  33. 

  34.     @Override
    35. 

  35.     public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IOException {
    36. 

  36.         log.debug("登录成功.");
    37. 

  37.         Result<String> success = Result.success();
    38. 

  38.         Instant now = Instant.now();
    39. 

  39.         long expiry = 36000L;
    40. 

  40.         // @formatter:off
    41. 

  41.         List<String> scopes = authentication.getAuthorities().stream()
    42. 

  42.                 .map(GrantedAuthority::getAuthority)
    43. 

  43.                 .collect(Collectors.toList());
    44. 

  44.         JwtClaimsSet claims = JwtClaimsSet.builder()
    45. 

  45.                 .issuer(securityProperties.getIssuerUrl())
    46. 

  46.                 .issuedAt(now)
    47. 

  47.                 .expiresAt(now.plusSeconds(expiry))
    48. 

  48.                 .subject(authentication.getName())
    49. 

  49.                 .claim("scope", scopes)
    50. 

  50.                 .claim("userInfo", authentication.getPrincipal())
    51. 

  51.                 .claim("authorities", authentication.getAuthorities())
    52. 

  52.                 .build();
    53. 

  53.         String tokenValue = encoder.encode(JwtEncoderParameters.from(claims)).getTokenValue();
    54. 

  54.         success.setData(tokenValue);
    55. 

  55.         response.setCharacterEncoding(StandardCharsets.UTF_8.name());
    56. 

  56.         response.setContentType(MediaType.APPLICATION_JSON_VALUE);
    57. 

  57.         response.getWriter().write(JsonUtils.objectCovertToJson(success));
    58. 

  58.         response.getWriter().flush();
    59. 

  59.     }
    60. 

  60. 

  61. }
    62.