java source code of TokenProvider

eladmin-master
- sql
  - mnt_ 相关表字段调整.sql
  - eladmin.sql
  - 相关数据更新.sql
  - 索引相关.sql
  - 删除所有外键.sql
  - sys_ 相关表字段调整.sql
  - 用户岗位改动.sql
  - 脚本如何选择.md
  - 表名修改.sql
  - code_ 相关表字段调整.sql
  - 删除无用表.sql
  - tool_ 相关表字段调整.sql
- .github
  - FUNDING.yml
- eladmin-tools
  - src
    - main
      - java
        me
        zhengjie
        utils
        AlipayUtils.java
        QiNiuUtil.java
        AliPayStatusEnum.java
        config
        MultipartConfig.java
        service
        impl
        PictureServiceImpl.java
        EmailServiceImpl.java
        AliPayServiceImpl.java
        QiNiuServiceImpl.java
        LocalStorageServiceImpl.java
        AliPayService.java
        dto
        QiniuQueryCriteria.java
        LocalStorageDto.java
        PictureQueryCriteria.java
        LocalStorageQueryCriteria.java
        mapstruct
        LocalStorageMapper.java
        EmailService.java
        PictureService.java
        LocalStorageService.java
        QiNiuService.java
        domain
        vo
        TradeVo.java
        EmailVo.java
        EmailConfig.java
        QiniuConfig.java
        LocalStorage.java
        QiniuContent.java
        AlipayConfig.java
        Picture.java
        repository
        AliPayRepository.java
        EmailRepository.java
        PictureRepository.java
        LocalStorageRepository.java
        QiNiuConfigRepository.java
        QiniuContentRepository.java
        rest
        PictureController.java
        LocalStorageController.java
        QiniuController.java
        EmailController.java
        AliPayController.java
  - pom.xml
- pom.xml
- LICENSE
- eladmin-logging
  - src
    - main
      - java
        me
        zhengjie
        service
        impl
        LogServiceImpl.java
        dto
        LogQueryCriteria.java
        LogErrorDTO.java
        LogSmallDTO.java
        mapstruct
        LogSmallMapper.java
        LogErrorMapper.java
        LogService.java
        annotation
        Log.java
        type
        LogActionType.java
        aspect
        LogAspect.java
        domain
        Log.java
        repository
        LogRepository.java
        rest
        LogController.java
  - pom.xml
- README.md
- eladmin-generator
  - src
    - main
      - java
        me
        zhengjie
        utils
        GenUtil.java
        ColUtil.java
        service
        impl
        GenConfigServiceImpl.java
        GeneratorServiceImpl.java
        GenConfigService.java
        GeneratorService.java
        domain
        vo
        TableInfo.java
        GenConfig.java
        ColumnInfo.java
        repository
        ColumnInfoRepository.java
        GenConfigRepository.java
        rest
        GeneratorController.java
        GenConfigController.java
  - pom.xml
- eladmin-common
  - src
    - main
      - java
        me
        zhengjie
        utils
        SpringContextHolder.java
        enums
        RequestMethodEnum.java
        SecurityUtils.java
        RequestHolder.java
        ElAdminConstant.java
        CacheKey.java
        FileUtil.java
        ThrowableUtil.java
        CallBack.java
        EncryptUtils.java
        DateUtil.java
        QueryHelp.java
        PageUtil.java
        RedisUtils.java
        ValidationUtil.java
        StringUtils.java
        RsaUtils.java
        TranslatorUtil.java
        base
        BaseMapper.java
        BaseDTO.java
        BaseEntity.java
        config
        AuditorConfig.java
        RsaProperties.java
        SwaggerConfig.java
        RedisConfig.java
        ElPermissionConfig.java
        FileProperties.java
        exception
        EntityExistException.java
        BadConfigurationException.java
        BadRequestException.java
        handler
        ApiError.java
        GlobalExceptionHandler.java
        EntityNotFoundException.java
        annotation
        Limit.java
        DataPermission.java
        Query.java
        AnonymousAccess.java
        rest
        AnonymousGetMapping.java
        AnonymousPutMapping.java
        AnonymousDeleteMapping.java
        AnonymousPatchMapping.java
        AnonymousPostMapping.java
        aspect
        LimitType.java
        LimitAspect.java
    - test
      - java
        me
        zhengjie
        utils
        FileUtilTest.java
        StringUtilsTest.java
        EncryptUtilsTest.java
        DateUtilsTest.java
  - pom.xml
- eladmin-system
  - src
    - main
      - resources
        logback.xml
        ip2region
        generator.properties
        config
        application.yml
        application-dev.yml
        application-prod.yml
        template
        email
        email.ftl
        taskAlarm.ftl
        generator
        front
        index.ftl
        api.ftl
        admin
        Dto.ftl
        QueryCriteria.ftl
        ServiceImpl.ftl
        Service.ftl
        Mapper.ftl
        Controller.ftl
        Repository.ftl
        Entity.ftl
        banner.txt
        log4jdbc.log4j2.properties
      - java
        me
        zhengjie
        utils
        enums
        CodeEnum.java
        DataScopeEnum.java
        CodeBiEnum.java
        config
        thread
        AsyncTaskProperties.java
        AsyncTaskExecutePool.java
        TheadFactoryName.java
        ThreadPoolExecutorUtil.java
        WebSocketConfig.java
        ConfigurerAdapter.java
        AppRun.java
        modules
        security
        security
        JwtAuthenticationEntryPoint.java
        JwtAccessDeniedHandler.java
        TokenConfigurer.java
        TokenFilter.java
        TokenProvider.java
        config
        ConfigBeanConfiguration.java
        SecurityConfig.java
        bean
        LoginCodeEnum.java
        LoginCode.java
        LoginProperties.java
        SecurityProperties.java
        service
        dto
        OnlineUserDto.java
        JwtUserDto.java
        AuthUserDto.java
        OnlineUserService.java
        UserDetailsServiceImpl.java
        UserCacheClean.java
        rest
        OnlineController.java
        AuthorizationController.java
        mnt
        websocket
        WebSocketServer.java
        SocketMsg.java
        MsgType.java
        util
        ExecuteShellUtil.java
        SqlUtils.java
        DataTypeEnum.java
        ZipUtils.java
        ScpClientUtil.java
        service
        impl
        DeployServiceImpl.java
        ServerDeployServiceImpl.java
        DatabaseServiceImpl.java
        AppServiceImpl.java
        DeployHistoryServiceImpl.java
        DeployService.java
        dto
        AppDto.java
        DatabaseQueryCriteria.java
        AppQueryCriteria.java
        ServerDeployDto.java
        DeployHistoryDto.java
        DatabaseDto.java
        ServerDeployQueryCriteria.java
        DeployDto.java
        DeployQueryCriteria.java
        DeployHistoryQueryCriteria.java
        mapstruct
        AppMapper.java
        DeployHistoryMapper.java
        DeployMapper.java
        DatabaseMapper.java
        ServerDeployMapper.java
        DeployHistoryService.java
        DatabaseService.java
        AppService.java
        ServerDeployService.java
        domain
        Deploy.java
        DeployHistory.java
        ServerDeploy.java
        App.java
        Database.java
        repository
        ServerDeployRepository.java
        DeployHistoryRepository.java
        DatabaseRepository.java
        AppRepository.java
        DeployRepository.java
        rest
        DatabaseController.java
        ServerDeployController.java
        DeployHistoryController.java
        DeployController.java
        AppController.java
        quartz
        utils
        QuartzManage.java
        QuartzRunnable.java
        ExecutionJob.java
        task
        TestTask.java
        config
        QuartzConfig.java
        JobRunner.java
        service
        impl
        QuartzJobServiceImpl.java
        dto
        JobQueryCriteria.java
        QuartzJobService.java
        domain
        QuartzJob.java
        QuartzLog.java
        repository
        QuartzJobRepository.java
        QuartzLogRepository.java
        rest
        QuartzJobController.java
        system
        service
        impl
        DeptServiceImpl.java
        MonitorServiceImpl.java
        JobServiceImpl.java
        DataServiceImpl.java
        RoleServiceImpl.java
        VerifyServiceImpl.java
        MenuServiceImpl.java
        DictServiceImpl.java
        UserServiceImpl.java
        DictDetailServiceImpl.java
        UserService.java
        dto
        RoleQueryCriteria.java
        UserDto.java
        MenuQueryCriteria.java
        JobSmallDto.java
        DeptSmallDto.java
        JobQueryCriteria.java
        RoleSmallDto.java
        DictDetailQueryCriteria.java
        DictSmallDto.java
        DictDto.java
        DictDetailDto.java
        JobDto.java
        DeptQueryCriteria.java
        DeptDto.java
        MenuDto.java
        RoleDto.java
        UserQueryCriteria.java
        DictQueryCriteria.java
        MonitorService.java
        DictDetailService.java
        DataService.java
        mapstruct
        DeptMapper.java
        RoleMapper.java
        MenuMapper.java
        UserMapper.java
        DeptSmallMapper.java
        DictMapper.java
        RoleSmallMapper.java
        DictSmallMapper.java
        JobSmallMapper.java
        JobMapper.java
        DictDetailMapper.java
        DictService.java
        RoleService.java
        JobService.java
        MenuService.java
        DeptService.java
        VerifyService.java
        domain
        vo
        MenuVo.java
        UserPassVo.java
        MenuMetaVo.java
        Dict.java
        Menu.java
        Dept.java
        Role.java
        User.java
        DictDetail.java
        Job.java
        repository
        DictRepository.java
        RoleRepository.java
        DeptRepository.java
        DictDetailRepository.java
        UserRepository.java
        JobRepository.java
        MenuRepository.java
        rest
        DictController.java
        UserController.java
        LimitController.java
        DictDetailController.java
        MonitorController.java
        VerifyController.java
        MenuController.java
        JobController.java
        RoleController.java
        DeptController.java
    - test
      - java
        me
        zhengjie
        EladminSystemApplicationTests.java
        LoginCacheTest.java
  - pom.xml
- .gitignore

/*
 *  Copyright 2019-2020 Zheng Jie
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *  http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License.
 */
package me.zhengjie.modules.security.security;

import cn.hutool.core.date.DateField;
import cn.hutool.core.date.DateUtil;
import cn.hutool.core.util.IdUtil;
import cn.hutool.core.util.ObjectUtil;
import io.jsonwebtoken.*;
import io.jsonwebtoken.io.Decoders;
import io.jsonwebtoken.security.Keys;
import lombok.extern.slf4j.Slf4j;
import me.zhengjie.modules.security.config.bean.SecurityProperties;
import me.zhengjie.utils.RedisUtils;
import org.springframework.beans.factory.InitializingBean;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.stereotype.Component;

import javax.servlet.http.HttpServletRequest;
import java.security.Key;
import java.util.Arrays;
import java.util.Collection;
import java.util.Collections;
import java.util.Date;
import java.util.concurrent.TimeUnit;
import java.util.stream.Collectors;

/**
 * @author /
 */
@Slf4j
@Component
public class TokenProvider implements InitializingBean {

    private final SecurityProperties properties;
    private final RedisUtils redisUtils;
    public static final String AUTHORITIES_KEY = "auth";
    private JwtParser jwtParser;
    private JwtBuilder jwtBuilder;

    public TokenProvider(SecurityProperties properties, RedisUtils redisUtils) {
        this.properties = properties;
        this.redisUtils = redisUtils;
    }

    @Override
    public void afterPropertiesSet() {
        byte[] keyBytes = Decoders.BASE64.decode(properties.getBase64Secret());
        Key key = Keys.hmacShaKeyFor(keyBytes);
        jwtParser = Jwts.parserBuilder()
                .setSigningKey(key)
                .build();
        jwtBuilder = Jwts.builder()
                .signWith(key, SignatureAlgorithm.HS512);
    }

    /**
     * 创建Token 设置永不过期，
     * Token 的时间有效性转到Redis 维护
     *
     * @param authentication /
     * @return /
     */
    public String createToken(Authentication authentication) {
        /*
         * 获取权限列表
         */
        String authorities = authentication.getAuthorities().stream()
                .map(GrantedAuthority::getAuthority)
                .collect(Collectors.joining(","));

        return jwtBuilder
                // 加入ID确保生成的 Token 都不一致
                .setId(IdUtil.simpleUUID())
                .claim(AUTHORITIES_KEY, authorities)
                .setSubject(authentication.getName())
                .compact();
    }

    /**
     * 依据Token 获取鉴权信息
     *
     * @param token /
     * @return /
     */
    Authentication getAuthentication(String token) {
        Claims claims = getClaims(token);

        // fix bug: 当前用户如果没有任何权限时，在输入用户名后，刷新验证码会抛IllegalArgumentException
        Object authoritiesStr = claims.get(AUTHORITIES_KEY);
        Collection<? extends GrantedAuthority> authorities =
                ObjectUtil.isNotEmpty(authoritiesStr) ?
                        Arrays.stream(authoritiesStr.toString().split(","))
                                .map(SimpleGrantedAuthority::new)
                                .collect(Collectors.toList()) : Collections.emptyList();
        User principal = new User(claims.getSubject(), "******", authorities);
        return new UsernamePasswordAuthenticationToken(principal, token, authorities);
    }

    public Claims getClaims(String token) {
        return jwtParser
                .parseClaimsJws(token)
                .getBody();
    }

    /**
     * @param token 需要检查的token
     */
    public void checkRenewal(String token) {
        // 判断是否续期token,计算token的过期时间
        long time = redisUtils.getExpire(properties.getOnlineKey() + token) * 1000;
        Date expireDate = DateUtil.offset(new Date(), DateField.MILLISECOND, (int) time);
        // 判断当前时间与过期时间的时间差
        long differ = expireDate.getTime() - System.currentTimeMillis();
        // 如果在续期检查的范围内，则续期
        if (differ <= properties.getDetect()) {
            long renew = time + properties.getRenew();
            redisUtils.expire(properties.getOnlineKey() + token, renew, TimeUnit.MILLISECONDS);
        }
    }

    public String getToken(HttpServletRequest request) {
        final String requestHeader = request.getHeader(properties.getHeader());
        if (requestHeader != null && requestHeader.startsWith(properties.getTokenStartWith())) {
            return requestHeader.substring(7);
        }
        return null;
    }
}