java source code of AjaxAuthenticationProvider

fw-cloud-framework-master
- fw-cloud-system
  - fw-cloud-system-auth
    - src
      - main
        resources
        logback.xml
        templates
        ftl
        login.ftl
        bootstrap.yml
        org
        springframework
        security
        messages_zh_CN.properties
        banner.txt
        static
        login.css
        images
        java
        com
        github
        liuweijw
        system
        FwAuthApplication.java
        auth
        config
        FwAuthorizationConfiguration.java
        FwRedisTokenStore.java
        AuthServerConfiguration.java
        FwJwtAccessTokenConverter.java
        FwResourceServerConfiguration.java
        service
        UserDetailsImpl.java
        UserDetailServiceImpl.java
        component
        ajax
        AjaxSecurityConfigurer.java
        AjaxAuthenticationFilter.java
        AjaxLoginSuccessHandler.java
        AjaxAuthenticationToken.java
        AjaxAuthenticationProvider.java
        controller
        UserController.java
        AuthController.java
    - pom.xml
    - .gitignore
  - fw-cloud-system-eureka
    - src
      - main
        resources
        application.yml
        readme.txt
        banner.txt
        java
        com
        github
        liuweijw
        system
        eureka
        FwEurekaApplication.java
    - pom.xml
    - .gitignore
  - pom.xml
  - fw-cloud-system-config
    - src
      - main
        resources
        bootstrap.yml
        shared
        monitor-monitor-server-dev.yml
        business-sso-server-dev.yml
        application-dev.yml
        business-admin-server-dev.yml
        business-pay-server-dev.yml
        monitor-zipkindb-server-dev.yml
        business-wechat-server-dev.yml
        system-auth-server-dev.yml
        system-gateway-server-dev.yml
        banner.txt
        java
        com
        github
        liuweijw
        system
        config
        FwConfigApplication.java
    - pom.xml
    - .gitignore
  - fw-cloud-system-gateway
    - src
      - main
        resources
        logback.xml
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        system
        gateway
        fallback
        AdminFallbackProvider.java
        AuthFallbackProvider.java
        config
        ResourceServerConfiguration.java
        FwSwaggerResourcesProvider.java
        service
        LogServiceImpl.java
        PermissionServiceImpl.java
        LogService.java
        PermissionService.java
        handler
        ZuulRateLimiterErrorHandler.java
        AccessDeniedHandler.java
        filter
        LoggerFilter.java
        AccessFilter.java
        ErrorHandlerFilter.java
        ValidateCodeFilter.java
        FwGatewayApplication.java
      - test
        java
        com
        github
        liuweijw
        system
        gateway
        FwGatewayApplicationTest.java
    - pom.xml
    - .gitignore
- pom.xml
- fw-cloud-monitor
  - pom.xml
  - fw-cloud-monitor-monitor
    - src
      - main
        resources
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        monitor
        config
        FwNotifierConfiguration.java
        FwMonitorApplication.java
        filter
        StatusChangeNotifier.java
    - pom.xml
    - .gitignore
  - fw-cloud-monitor-zipkin-db
    - src
      - main
        resources
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        monitor
        zipkindb
        FwMonitorZipkenDbApplication.java
    - pom.xml
    - .gitignore
- LICENSE
- fw-cloud-api
  - pom.xml
  - fw-cloud-system-api
    - src
      - main
        java
        com
        github
        liuweijw
        system
        api
        hystrix
        PermissionFeignApiHystrix.java
        UserFeignApiHystrix.java
        UserFeignApi.java
        model
        AuthPermission.java
        AuthUser.java
        AuthRole.java
        PermissionFeignApi.java
    - pom.xml
    - .gitignore
- README.md
- fw-cloud-core
  - fw-cloud-core-exception
    - src
      - main
        java
        com
        github
        liuweijw
        exception
        CheckedException.java
        ValidateCodeException.java
        DeniedException.java
    - pom.xml
    - .gitignore
  - pom.xml
  - fw-cloud-core-commons
    - src
      - main
        java
        com
        github
        liuweijw
        core
        commons
        https
        HttpsClientRequestFactory.java
        HttpUtil.java
        jwt
        JwtUtil.java
        constants
        ServiceIdConstant.java
        SecurityConstant.java
        CommonConstant.java
        MessageConstant.java
        MqQueueConstant.java
    - pom.xml
    - .gitignore
  - fw-cloud-core-beans
    - src
      - main
        java
        com
        github
        liuweijw
        core
        beans
        system
        AuthLog.java
        Log.java
        AuthMenu.java
    - pom.xml
    - .gitignore
  - fw-cloud-core-utils
    - pom.xml
    - .gitignore
  - fw-cloud-core-configuration
    - src
      - main
        java
        com
        github
        liuweijw
        core
        configuration
        JwtConfiguration.java
        SwaggerConfiguration.java
        FwUrlsConfiguration.java
        RedisCacheConfiguration.java
        ApiTag.java
    - pom.xml
    - .gitignore
- fw-cloud-business
  - pom.xml
  - fw-cloud-business-admin
    - src
      - main
        resources
        logback.xml
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        business
        admin
        beans
        MenuTreeBean.java
        UserBean.java
        UserForm.java
        RoleDeptBean.java
        web
        rpc
        PermissionFeignApiClient.java
        UserFeignApiClient.java
        controller
        DictController.java
        UserController.java
        ApiController.java
        MenuController.java
        RoleController.java
        LogController.java
        DeptController.java
        CodeController.java
        config
        WebMvcConfiguration.java
        KaptchaConfig.java
        RabbitConfiguration.java
        service
        impl
        DeptServiceImpl.java
        RoleServiceImpl.java
        DeptRelationServiceImpl.java
        ModuleServiceImpl.java
        MenuServiceImpl.java
        PermissionServiceImpl.java
        LogInfoServiceImpl.java
        DictServiceImpl.java
        UserServiceImpl.java
        UserService.java
        ModuleService.java
        LogInfoService.java
        DictService.java
        DeptRelationService.java
        RoleService.java
        MenuService.java
        DeptService.java
        PermissionService.java
        aop
        AuthorizationInterceptor.java
        TokenArgumentResolver.java
        FwAdminApplication.java
        domain
        RoleMenu.java
        UserRole.java
        Module.java
        Dict.java
        LogInfo.java
        DeptRelation.java
        Menu.java
        Dept.java
        Role.java
        RoleMenuPermission.java
        RoleDept.java
        User.java
        cache
        AdminCacheKey.java
        repository
        DictRepository.java
        ModuleRepository.java
        RoleMenuRepository.java
        UserRoleRepository.java
        RoleRepository.java
        LogInfoRepository.java
        DeptRelationRepository.java
        DeptRepository.java
        RoleMenuPermissionRepository.java
        UserRepository.java
        RoleDeptRepository.java
        MenuRepository.java
        listener
        LogRabbitListener.java
    - pom.xml
    - .gitignore
  - fw-cloud-business-commons
    - src
      - main
        java
        com
        github
        liuweijw
        business
        commons
        utils
        RequestUtil.java
        AmountUtil.java
        SequenceUtils.java
        DateUtils.java
        RandomStrUtils.java
        PageUtils.java
        web
        BaseController.java
        config
        PermissionConfiguration.java
        aop
        GlobalExceptionAdvice.java
        PrePermissions.java
        jpa
        JPAFactoryImpl.java
        tree
        DeptTree.java
        MenuTree.java
        permission
        Module.java
        Functional.java
    - pom.xml
    - .gitignore
  - fw-cloud-business-pay
    - src
      - main
        resources
        logback.xml
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        business
        pay
        beans
        NotifyBean.java
        config
        alipay
        AlipayProperties.java
        AlipayConfig.java
        AlipayUtil.java
        wechat
        WxPayProperties.java
        WxPayUtil.java
        RabbitConfiguration.java
        service
        impl
        MchInfoServiceImpl.java
        WxUnifiedOrderServiceImpl.java
        WxSendRedpackServiceImpl.java
        PayChannelServiceImpl.java
        AliUnifiedOrderServiceImpl.java
        NotifyServiceImpl.java
        PayOrderServiceImpl.java
        NotifyService.java
        MchInfoService.java
        PayChannelService.java
        PayOrderService.java
        WxUnifiedOrderService.java
        AliUnifiedOrderService.java
        WxSendRedpackService.java
        FwPayApplication.java
        domain
        PayChannel.java
        PayOrder.java
        PayMchNotify.java
        RefundOrder.java
        PaySendRedpack.java
        PayMchInfo.java
        TransOrder.java
        IapReceipt.java
        repository
        MchNotifyRepository.java
        MchInfoRepository.java
        PaySendRedpackRepository.java
        RefundOrderRepository.java
        IapReceiptRepository.java
        TransOrderRepository.java
        PayChannelRepository.java
        PayOrderRepository.java
        listener
        NotifyRabbitListenter.java
        controller
        PayAliNotifyController.java
        PayOrderController.java
        PayNotifyController.java
        PaySendRedpackController.java
        PayMchInfoController.java
        PayChannelController.java
        webapp
        WEB-INF
        lib
    - pom.xml
    - .gitignore
  - fw-cloud-business-sso
    - src
      - main
        resources
        logback.xml
        bootstrap.yml
        banner.txt
        static
        index.html
        java
        com
        github
        liuweijw
        business
        sso
        FwSsoApplication.java
        config
        ResourceServerConfiguration.java
        controller
        SsoDemoController.java
    - pom.xml
    - .gitignore
  - fw-cloud-business-wechat
    - src
      - main
        resources
        logback.xml
        bootstrap.yml
        banner.txt
        java
        com
        github
        liuweijw
        business
        wechat
        utils
        JsonUtils.java
        EmojiUtils.java
        beans
        WechatNotifyBean.java
        UrlInfoBean.java
        task
        UrlScheduledTask.java
        builder
        ImageBuilder.java
        TextBuilder.java
        AbstractBuilder.java
        FwWechatApplication.java
        config
        WechatMpProperties.java
        WechatMpConfiguration.java
        RabbitConfiguration.java
        service
        AuthInfoServiceImpl.java
        WechatInfoService.java
        MessageServiceImpl.java
        UrlInfoServiceImpl.java
        AuthInfoService.java
        MessageService.java
        UrlInfoService.java
        WechatInfoServiceImpl.java
        domain
        UrlInfo.java
        AuthInfo.java
        WechatInfo.java
        repository
        AuthInfoRepository.java
        UrlInfoRepository.java
        WechatInfoRepository.java
        handler
        SubscribeHandler.java
        StoreCheckNotifyHandler.java
        KfSessionHandler.java
        UnsubscribeHandler.java
        MenuHandler.java
        NullHandler.java
        MsgHandler.java
        ScanHandler.java
        LogHandler.java
        AbstractHandler.java
        LocationHandler.java
        listener
        WechatRabbitListener.java
        controller
        WxJsdkController.java
        WxAuthorizeController.java
        WechatController.java
        WxMenuController.java
        WxMessageController.java
        WxInfoController.java
        WxErrorController.java
        WxMaterialController.java
    - pom.xml
    - .gitignore
- .gitignore
- doc
  - fw_cloud_pay_init.sql
  - fw-cloud-wechat.sql
  - fw_cloud_init.sql
  - pic
  - docker
    - Dockerfile-wechat
    - Dockerfile-pay
    - Dockerfile-config
    - Dockerfile-auth
    - Dockerfile-eureka
    - Dockerfile-gateway
    - Dockerfile-admin
    - docker-compose.yml

package com.github.liuweijw.system.auth.component.ajax;

import org.springframework.security.authentication.AuthenticationProvider;
import org.springframework.security.authentication.InternalAuthenticationServiceException;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.userdetails.UsernameNotFoundException;

import com.github.liuweijw.system.api.UserFeignApi;
import com.github.liuweijw.system.api.model.AuthUser;
import com.github.liuweijw.system.auth.service.UserDetailsImpl;

/**
 * 自定义参数验证 <br/>
 * 可以在自定义登录界面添加登录时需要的参数，如多个验证码等、可以修改默认登录名称和密码的参数名 整体流程：<br/>
 * 1.用户登录时，先经过自定义的passcard_filter过滤器，该过滤器继承了AbstractAuthenticationProcessingFilter，并且绑定了登录失败和成功时需要的处理器(跳转页面使用)<br/>
 * 2.执行attemptAuthentication方法，可以通过request获取登录页面传递的参数，实现自己的逻辑，并且把对应参数set到AbstractAuthenticationToken的实现类中<br/>
 * 3.验证逻辑走完后，调用 this.getAuthenticationManager().authenticate(token);方法，执行AuthenticationProvider的实现类的supports方法<br/>
 * 4.如果返回true则继续执行authenticate方法<br/>
 * 5.在authenticate方法中，首先可以根据用户名获取到用户信息，再者可以拿自定义参数和用户信息做逻辑验证，如密码的验证<br/>
 * 6.自定义验证通过以后，获取用户权限set到User中，用于springSecurity做权限验证<br/>
 * 7.this.getAuthenticationManager().authenticate(token)方法执行完后，会返回Authentication，如果不为空，则说明验证通过<br/>
 * 8.验证通过后，可实现自定义逻辑操作，如记录cookie信息<br/>
 * 9.attemptAuthentication方法执行完成后，由springSecuriy来进行对应权限验证，成功于否会跳转到相对应处理器设置的界面。<br/>
 * 
 * @author liuweijw
 */
public class AjaxAuthenticationProvider implements AuthenticationProvider {

	private UserFeignApi	userFeignApi;

	@Override
	public Authentication authenticate(Authentication authentication) throws AuthenticationException {
		AjaxAuthenticationToken ajaxAuthenticationToken = (AjaxAuthenticationToken) authentication;
		AuthUser user = userFeignApi.findUserByMobile((String) ajaxAuthenticationToken.getPrincipal());

		if (null == user)
			throw new UsernameNotFoundException("登录账户[" + ajaxAuthenticationToken.getPrincipal() + "]不存在");

		UserDetailsImpl userDetails = buildUserDeatils(user);

		if (null == userDetails)
			throw new InternalAuthenticationServiceException("登录用户[" + ajaxAuthenticationToken.getPrincipal() + "]不存在！");

		AjaxAuthenticationToken authenticationToken = new AjaxAuthenticationToken(userDetails, userDetails.getAuthorities());
		authenticationToken.setDetails(ajaxAuthenticationToken.getDetails());
		return authenticationToken;
	}

	private UserDetailsImpl buildUserDeatils(AuthUser authUser) {
		return new UserDetailsImpl(authUser);
	}

	@Override
	public boolean supports(Class<?> authentication) {
		return AjaxAuthenticationToken.class.isAssignableFrom(authentication);
	}

	public UserFeignApi getUserFeignApi() {
		return userFeignApi;
	}

	public void setUserFeignApi(UserFeignApi userFeignApi) {
		this.userFeignApi = userFeignApi;
	}

}