java source code of AjaxAuthenticationFilter

java-platform-master
- pom.xml
- plugin
  - plugin-oauth
    - src
      - main
        resources
        META-INF
        app
        store
        OauthPlugins.js
        view
        plugin
        WeiboOauthForm.js
        OauthPluginModel.js
        OauthPluginList.js
        QQOauthForm.js
        OauthPluginController.js
        GithubOauthForm.js
        java
        com
        whenling
        plugin
        oauth
        security
        OauthUserRealm.java
        OauthUserToken.java
        OauthPluginExtension.java
        web
        WeiboOauthController.java
        GithubOauthController.java
        QQOauthController.java
        OauthPluginController.java
        OauthController.java
        service
        OauthService.java
        OauthUserService.java
        template
        OauthFunctionPackage.java
        model
        OauthUser.java
        GithubOauthPlugin.java
        QQOauthPlugin.java
        OauthPlugin.java
        WeiboOauthPlugin.java
        repo
        OauthUserRepository.java
    - pom.xml
    - .gitignore
  - pom.xml
  - plugin-base
    - src
      - main
        resources
        META-INF
        app
        model
        Plugin.js
        PluginConfig.js
        java
        com
        whenling
        plugin
        web
        PluginController.java
        service
        PluginConfigService.java
        PluginInitializer.java
        model
        Plugin.java
        PluginConfig.java
        PluginModel.java
        repo
        PluginConfigRepository.java
    - pom.xml
    - .gitignore
  - plugin-payment
    - src
      - main
        resources
        views
        payment
        notify.html
        submit.html
        META-INF
        app
        store
        PaymentPlugins.js
        view
        plugin
        PaymentPluginController.js
        PaymentPluginModel.js
        AlipayDirectForm.js
        PaymentPluginList.js
        java
        com
        whenling
        plugin
        payment
        web
        PaymentController.java
        AlipayDirectController.java
        PaymentPluginController.java
        service
        PaymentEvent.java
        PaymentService.java
        PaymentPluginExtension.java
        model
        PaymentPluginSetting.java
        AlipayDirectPlugin.java
        PaymentPlugin.java
        PaymentPluginModel.java
        Payment.java
        repo
        PaymentRepository.java
    - pom.xml
    - .gitignore
  - .gitignore
- application
  - src
    - main
      - resources
        views
        admin
        index.html
        application_zh_CN.properties
        META-INF
        app
        resources
        images
        editor
        image_resize.gif
        constrain.gif
        trash.gif
        editor_background.gif
        image_crop.gif
        delete.gif
        notice.txt
        ux.css
        Application.js
        store
        TreeStore.js
        Roles.js
        Menus.js
        Modules.js
        PageStore.js
        Users.js
        view
        main
        MainModel.js
        Header.js
        Footer.js
        Main.js
        HomePage.js
        Login.js
        WestNav.js
        Center.js
        CenterController.js
        MainController.js
        user
        UserController.js
        PasswordForm.js
        UserForm.js
        UserModel.js
        UserList.js
        setting
        SettingForm.js
        menu
        MenuModel.js
        MenuTree.js
        MenuList.js
        MenuForm.js
        MenuController.js
        module
        ModuleModel.js
        ModuleList.js
        role
        UserSelectDialog.js
        AuthForm.js
        RoleList.js
        RoleModel.js
        RoleForm.js
        UserList.js
        RoleController.js
        ux
        window
        Notification.js
        form
        ImageCropDialog.js
        htmleditor
        Image.js
        Table.js
        ImageDialog.js
        Image.js
        grid
        SearchPanel.js
        model
        Menu.js
        TreeEntity.js
        Role.js
        User.js
        Module.js
        Entity.js
        assets
        platform
        images
        login_header.jpg
        css
        common.css
        application_en_US.properties
      - java
        com
        whenling
        centralize
        web
        UserController.java
        SystemController.java
        MenuController.java
        RoleController.java
        SettingController.java
        ModuleController.java
        MainSetting.java
        support
        security
        ShiroAuditor.java
        DatabaseRealm.java
        ApplicationConfiguration.java
        web
        CurrentUser.java
        CurrentUserHandlerMethodArgumentResolver.java
        extjs
        template
        ThumbnailFunction.java
        image
        ImageInfoRepository.java
        ImageInfoService.java
        ImageInfo.java
        ImageController.java
        FileController.java
        ApplicationFunctionPackage.java
        util
        QrCodeHelper.java
        ImageHelper.java
        config
        ExtraConfigConfiguration.java
        ConfigModel.java
        DatabaseConfigEntity.java
        DefaultDatabaseConfiguration.java
        ConfigurationFunction.java
        SpringWebInitializer.java
        service
        UserService.java
        UserRoleService.java
        UserRankService.java
        ExtensionService.java
        RoleService.java
        MenuService.java
        FileService.java
        Extension.java
        template
        UserRankFunctionPackage.java
        model
        UserRole.java
        Menu.java
        Area.java
        Areable.java
        Role.java
        FileEntity.java
        User.java
        UserRank.java
        ExtensionEntity.java
        CentralizeInitializer.java
        repo
        UserRoleRepository.java
        UserRankRepository.java
        RoleRepository.java
        FileRepository.java
        ExtensionRepository.java
        UserRepository.java
        MenuRepository.java
        Application.java
  - pom.xml
  - .gitignore
- LICENSE
- module
  - module-netty
    - pom.xml
    - .gitignore
  - module-mongodb
    - pom.xml
    - .gitignore
  - module-security
    - src
      - main
        java
        com
        whenling
        module
        security
        captcha
        CaptchaController.java
        CaptchaRobotPrevention.java
        CaptchaFilter.java
        CaptchaConfiguration.java
        SecurityConfiguration.java
        RobotPrevention.java
        shiro
        RetryLimitMd5CredentialsMatcher.java
        Principal.java
        AjaxAuthenticationFilter.java
        cache
        infinispan
        ShiroCacheManager.java
        ShiroCache.java
        geetest
        GeetestConfig.java
        GeetestLib.java
        GeetestRobotPrevention.java
        GeetestController.java
    - pom.xml
    - .gitignore
  - module-cache
    - src
      - main
        java
        com
        whenling
        module
        cache
        infinispan
        AbstractEmbeddedCacheManagerFactory.java
        provider
        NullValue.java
        CacheDelegate.java
        SpringCache.java
        ContainerEmbeddedCacheManagerFactoryBean.java
        SpringEmbeddedCacheManager.java
        SpringEmbeddedCacheManagerFactoryBean.java
        support
        embedded
        InfinispanNamedEmbeddedCacheFactoryBean.java
        InfinispanEmbeddedCacheManagerFactoryBean.java
        infinispan.xml
        InfinispanDefaultCacheFactoryBean.java
        CacheConfiguration.java
    - pom.xml
    - .gitignore
  - pom.xml
  - module-web-easyui
    - pom.xml
    - .gitignore
  - module-redis
    - src
      - main
        java
        com
        whenling
        module
        redis
        RedisExample.java
        service
        SnServiceImpl.java
        SnService.java
        RedisConfiguration.java
    - pom.xml
    - .gitignore
  - module-web
    - src
      - main
        resources
        META-INF
        assets
        font-awesome-4.5.0
        HELP-US-OUT.txt
        fonts
        fontawesome-webfont.woff2
        fontawesome-webfont.woff
        fontawesome-webfont.eot
        FontAwesome.otf
        fontawesome-webfont.ttf
        less
        fixed-width.less
        stacked.less
        path.less
        core.less
        list.less
        larger.less
        rotated-flipped.less
        font-awesome.less
        icons.less
        animated.less
        bordered-pulled.less
        mixins.less
        variables.less
        scss
        _variables.scss
        _fixed-width.scss
        _rotated-flipped.scss
        _animated.scss
        _core.scss
        _path.scss
        _mixins.scss
        _list.scss
        font-awesome.scss
        _larger.scss
        _bordered-pulled.scss
        _icons.scss
        _stacked.scss
        css
        font-awesome.css
        font-awesome.min.css
        java
        com
        whenling
        module
        web
        i18n
        I18nFunction.java
        I18nConfiguration.java
        storage
        StorageService.java
        LocalStorageService.java
        FileInfo.java
        WebConfiguration.java
        ServletConfiguration.java
        util
        WebHelper.java
        ServletSupport.java
        FullBeanNameGenerator.java
        view
        beetl.properties
        DateTimeFormat.java
        BooleanFormat.java
        EntityFunctionPackage.java
        FunctionPackage.java
        ViewConfiguration.java
        TreeFunctionPackage.java
        converter
        FastjsonHttpMessageConverter.java
        RootConfiguration.java
        method
        EntityModelAttributeMethodProcessor.java
        DefaultPredicateArgumentResolver.java
        controller
        BaseController.java
        EntityController.java
        TreeController.java
    - pom.xml
    - .gitignore
  - module-web-extjs
    - src
      - main
        resources
        META-INF
        assets
        ext-6.0.1
        packages
        ux
        classic
        ux-debug.js
        ext
        icons
        readme.txt
        resources
        icon.css
        java
        com
        whenling
        module
        web
        extjs
        json
        serializer
        PageSerializer.java
        ResultSerializer.java
        NodeSerializer.java
        ExtjsConfiguration.java
    - pom.xml
    - .gitignore
  - module-base
    - src
      - main
        resources
        logback.xml
        java
        com
        whenling
        module
        base
        KeyValueDisplay.java
        util
        PropertyUtil.java
        ReflectHelper.java
        config
        StaticConfigurationSupplier.java
        ConfigurationPropertySourcesPlaceholderConfigurer.java
        ConfigConfiguration.java
        SpringContext.java
    - pom.xml
    - .gitignore
  - module-web-bootstrap
    - pom.xml
    - .gitignore
  - module-domain
    - src
      - main
        java
        com
        whenling
        module
        domain
        tx
        TransactionConfiguration.java
        service
        BaseService.java
        TreeService.java
        EntityService.java
        exception
        DeleteLockedEntityException.java
        event
        PostUpdateEvent.java
        PostInsertEvent.java
        PreInsertEvent.java
        PreUpdateEvent.java
        EntityEvent.java
        converter
        StringArrayConverter.java
        ArrayConverter.java
        json
        ExcludesPropertyPreFilter.java
        IncludesPropertyPreFilter.java
        EnhancedSerializeConfig.java
        JsonConfiguration.java
        serializer
        TreeSerializer.java
        JodaDateTimeSerializer.java
        model
        EntityVo.java
        SortNoComparator.java
        Resourceable.java
        Lockedable.java
        Sortable.java
        Node.java
        Tree.java
        Result.java
        SortEntity.java
        TreeEntity.java
        TreeImpl.java
        BizEntity.java
        Treeable.java
        BaseEntity.java
        TreeEntityListener.java
        repository
        TreeRepository.java
        SublevelSpecification.java
        BaseRepository.java
        RepositoryConfiguration.java
        BaseRepositoryImpl.java
        TreeRepositoryImpl.java
        CustomRepositoryFactoryBean.java
        ParentSpecification.java
    - pom.xml
    - .gitignore
- extension
  - extension-mall
    - src
      - main
        resources
        META-INF
        app
        store
        ProductCategories.js
        Products.js
        view
        mall
        product
        ProductModel.js
        ProductCategoryModel.js
        ProductCategoryController.js
        ProductCategoryList.js
        ProductList.js
        ProductController.js
        ProductCategoryForm.js
        ProductForm.js
        model
        Product.js
        ProductCategory.js
        java
        com
        whenling
        extension
        mall
        MallSetting.java
        product
        web
        ProductController.java
        ProductCategoryController.java
        template
        ProductCategoryFunctionPackage.java
        ProductFunctionPackage.java
        service
        ProductCategoryService.java
        GoodsService.java
        ProductService.java
        model
        ParameterGroup.java
        Product.java
        ProductTag.java
        SpecificationValue.java
        Parameter.java
        Cart.java
        Specification.java
        Attribute.java
        GiftItem.java
        ProductCategory.java
        ProductNotify.java
        Goods.java
        CartItem.java
        Brand.java
        ProductImage.java
        repo
        ProductRepositoryCustom.java
        ProductRepositoryImpl.java
        ProductRepository.java
        GoodsRepository.java
        ProductCategoryRepository.java
        market
        Deposit.java
        CouponCode.java
        Rank.java
        Promotion.java
        Coupon.java
        Review.java
        Consultation.java
        MallConfiguration.java
        order
        model
        PaymentMethod.java
        ReturnsItem.java
        DeliveryCorp.java
        DeliveryCenter.java
        Returns.java
        Shipping.java
        ShippingItem.java
        OrderLog.java
        Order.java
        Refunds.java
        DeliveryTemplate.java
        OrderItem.java
        Payment.java
        ShippingMethod.java
        MallExtension.java
    - pom.xml
    - .gitignore
  - extension-jms
    - src
      - main
        java
        com
        whenling
        extension
        jms
        mobile
        MobileCaptchaService.java
        MobileCaptchaException.java
        ExceedMaxDailyTimesException.java
        MobileCaptchaController.java
        MessageSender.java
    - pom.xml
    - .gitignore
  - pom.xml
  - extension-wechat
    - src
      - main
        resources
        META-INF
        assets
        weui
        weui.min.css
        weui.css
        wechat
        swipeSlide.min.js
        zepto.min.js
        swipeSlide.css
        swipeSlide.js
    - pom.xml
    - .gitignore
  - extension-cms
    - src
      - main
        resources
        META-INF
        app
        store
        AdPositions.js
        Ads.js
        view
        cms
        TemplateModel.js
        AdPositionList.js
        AdModel.js
        AdController.js
        AdPositionModel.js
        AdList.js
        AdPositionController.js
        AdForm.js
        TemplateController.js
        TemplateList.js
        AdPositionForm.js
        model
        Ad.js
        AdPosition.js
        java
        com
        whenling
        extension
        cms
        CmsExtension.java
        web
        ArticleController.java
        TemplateController.java
        AdPositionController.java
        AdController.java
        template
        AdFunctionPackage.java
        AdPositionFunctionPackage.java
        support
        template
        TemplateService.java
        TemplateFile.java
        TemplateHttpRequestHandler.java
        service
        ArticleService.java
        AdService.java
        AdPositionService.java
        CmsInitializer.java
        cms.properties
        model
        ArticleCategory.java
        Navigation.java
        FriendLink.java
        ArticleTag.java
        AdPosition.java
        Article.java
        Ad.java
        repo
        ArticleRepository.java
        AdPositionRepository.java
        AdRepository.java
    - pom.xml
    - .gitignore
- README.md
- .gitignore
- docs
  - 概览图.vsdx

package com.whenling.module.security.shiro;

import java.io.IOException;
import java.io.OutputStreamWriter;
import java.nio.charset.Charset;

import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.shiro.authc.AccountException;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.CredentialsException;
import org.apache.shiro.authc.DisabledAccountException;
import org.apache.shiro.authc.ExpiredCredentialsException;
import org.apache.shiro.authc.IncorrectCredentialsException;
import org.apache.shiro.authc.LockedAccountException;
import org.apache.shiro.authc.UnknownAccountException;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.filter.authc.FormAuthenticationFilter;
import org.springframework.http.HttpStatus;

import com.alibaba.fastjson.serializer.JSONSerializer;
import com.alibaba.fastjson.serializer.SerializeConfig;
import com.alibaba.fastjson.serializer.SerializeWriter;
import com.alibaba.fastjson.serializer.SerializerFeature;
import com.google.common.base.Strings;
import com.whenling.module.base.SpringContext;
import com.whenling.module.domain.model.Result;
import com.whenling.module.security.RobotPrevention;
import com.whenling.module.web.util.WebHelper;

/**
 * ajax认证过滤器
 * 
 * @作者 孔祥溪
 * @博客 http://ken.whenling.com
 * @创建时间 2016年3月1日 下午7:06:24
 */
public class AjaxAuthenticationFilter extends FormAuthenticationFilter {

	public static final Charset DEFAULT_CHARSET = Charset.forName("UTF-8");

	private RobotPrevention robotPrevention;

	public void setRobotPrevention(RobotPrevention robotPrevention) {
		this.robotPrevention = robotPrevention;
	}

	@Override
	protected boolean executeLogin(ServletRequest request, ServletResponse response) throws Exception {
		if (this.robotPrevention != null) {
			if (this.robotPrevention.validateRequest(request, response)) {
				return super.executeLogin(request, response);
			} else {
				throw new AuthenticationException();
			}
		}
		return super.executeLogin(request, response);
	}

	@Override
	protected void saveRequestAndRedirectToLogin(ServletRequest request, ServletResponse response) throws IOException {
		if (WebHelper.isAjax((HttpServletRequest) request)) {
			((HttpServletResponse) response).setStatus(HttpStatus.UNAUTHORIZED.value());
			writeObject(request, response, Result.notLogin());
		} else {
			super.saveRequestAndRedirectToLogin(request, response);
		}
	}

	@Override
	protected boolean onLoginSuccess(AuthenticationToken token, Subject subject, ServletRequest request, ServletResponse response) throws Exception {
		if (WebHelper.isAjax((HttpServletRequest) request)) {
			writeObject(request, response, Result.success());
			return false;
		}
		return super.onLoginSuccess(token, subject, request, response);
	}

	@Override
	protected boolean onLoginFailure(AuthenticationToken token, AuthenticationException e, ServletRequest request, ServletResponse response) {
		if (WebHelper.isAjax((HttpServletRequest) request)) {
			Result result = Result.failure();
			if (e instanceof IncorrectCredentialsException) {
				result.message("密码错误");
			} else if (e instanceof ExpiredCredentialsException) {
				result.message("密码已过期");
			} else if (e instanceof UnknownAccountException) {
				result.message("该账号不存在");
			} else if (e instanceof DisabledAccountException) {
				result.message("该账号已禁用");
			} else if (e instanceof LockedAccountException) {
				result.message("该账号已锁定");
			} else if (e instanceof AccountException) {
				result.message("账号错误");
			} else if (e instanceof CredentialsException) {
				result.message("密码错误");
			}
			try {
				writeObject(request, response, result);
			} catch (IOException ex) {
				throw new RuntimeException(ex);
			}
			return false;
		}
		return super.onLoginFailure(token, e, request, response);
	}

	protected void writeObject(ServletRequest request, ServletResponse response, Object result) throws IOException {
		String characterEncoding = ((HttpServletRequest) request).getCharacterEncoding();
		Charset charset = Strings.isNullOrEmpty(characterEncoding) ? DEFAULT_CHARSET : Charset.forName(characterEncoding);
		OutputStreamWriter out = new OutputStreamWriter(response.getOutputStream(), charset);
		SerializeWriter writer = new SerializeWriter(out);
		JSONSerializer serializer = new JSONSerializer(writer, SpringContext.getBean(SerializeConfig.class));
		serializer.config(SerializerFeature.DisableCircularReferenceDetect, true);
		serializer.write(result);
		writer.flush();
		out.close();
	}
}