mirror of
https://gitee.com/log4j/pig.git
synced 2024-12-22 12:48:58 +08:00
✨ Introducing new features. 令牌管理支持根据用户名检索 closed #I1PYDZ
This commit is contained in:
parent
e67285b64c
commit
f98008cce0
@ -20,6 +20,7 @@ package com.pig4cloud.pig.auth.config;
|
||||
|
||||
import com.pig4cloud.pig.common.core.constant.CacheConstants;
|
||||
import com.pig4cloud.pig.common.core.constant.SecurityConstants;
|
||||
import com.pig4cloud.pig.common.security.component.PigRedisTokenStore;
|
||||
import com.pig4cloud.pig.common.security.component.PigWebResponseExceptionTranslator;
|
||||
import com.pig4cloud.pig.common.security.service.PigClientDetailsService;
|
||||
import com.pig4cloud.pig.common.security.service.PigUser;
|
||||
@ -39,7 +40,6 @@ import org.springframework.security.oauth2.config.annotation.web.configurers.Aut
|
||||
import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerSecurityConfigurer;
|
||||
import org.springframework.security.oauth2.provider.token.TokenEnhancer;
|
||||
import org.springframework.security.oauth2.provider.token.TokenStore;
|
||||
import org.springframework.security.oauth2.provider.token.store.redis.RedisTokenStore;
|
||||
|
||||
import javax.sql.DataSource;
|
||||
import java.util.HashMap;
|
||||
@ -87,7 +87,7 @@ public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdap
|
||||
|
||||
@Bean
|
||||
public TokenStore tokenStore() {
|
||||
RedisTokenStore tokenStore = new RedisTokenStore(redisConnectionFactory);
|
||||
PigRedisTokenStore tokenStore = new PigRedisTokenStore(redisConnectionFactory);
|
||||
tokenStore.setPrefix(CacheConstants.PROJECT_OAUTH_ACCESS);
|
||||
return tokenStore;
|
||||
}
|
||||
|
@ -31,6 +31,11 @@ public interface CacheConstants {
|
||||
*/
|
||||
String PROJECT_OAUTH_ACCESS = "pig_oauth:access:";
|
||||
|
||||
/**
|
||||
* oauth 缓存令牌前缀
|
||||
*/
|
||||
String PROJECT_OAUTH_TOKEN = "pig_oauth:token:";
|
||||
|
||||
/**
|
||||
* 验证码前缀
|
||||
*/
|
||||
|
@ -0,0 +1,64 @@
|
||||
package com.pig4cloud.pig.common.security.component;
|
||||
|
||||
import cn.hutool.core.util.StrUtil;
|
||||
import com.pig4cloud.pig.common.core.constant.CacheConstants;
|
||||
import org.springframework.data.redis.connection.RedisConnection;
|
||||
import org.springframework.data.redis.connection.RedisConnectionFactory;
|
||||
import org.springframework.data.redis.connection.RedisStringCommands;
|
||||
import org.springframework.data.redis.core.types.Expiration;
|
||||
import org.springframework.security.oauth2.common.OAuth2AccessToken;
|
||||
import org.springframework.security.oauth2.provider.OAuth2Authentication;
|
||||
import org.springframework.security.oauth2.provider.token.store.redis.RedisTokenStore;
|
||||
|
||||
/**
|
||||
* @author lengleng
|
||||
* @date 2020/8/3
|
||||
* <p>
|
||||
* 重写默认tokenStore 保存 username and token 关系
|
||||
*/
|
||||
public class PigRedisTokenStore extends RedisTokenStore {
|
||||
|
||||
private RedisConnectionFactory connectionFactory;
|
||||
|
||||
public PigRedisTokenStore(RedisConnectionFactory connectionFactory) {
|
||||
super(connectionFactory);
|
||||
this.connectionFactory = connectionFactory;
|
||||
}
|
||||
|
||||
/**
|
||||
* 序列化保存认证信息
|
||||
* @param token token 详细信息
|
||||
* @param authentication 认证相关信息
|
||||
*/
|
||||
@Override
|
||||
public void storeAccessToken(OAuth2AccessToken token, OAuth2Authentication authentication) {
|
||||
super.storeAccessToken(token, authentication);
|
||||
// KEY
|
||||
byte[] key = StrUtil.bytes(CacheConstants.PROJECT_OAUTH_TOKEN + authentication.getName());
|
||||
// value
|
||||
byte[] tokenVal = StrUtil.bytes(token.getValue());
|
||||
// 获取redis连接
|
||||
RedisConnection connection = connectionFactory.getConnection();
|
||||
RedisStringCommands stringCommand = connection.stringCommands();
|
||||
stringCommand.set(key, tokenVal, Expiration.seconds(token.getExpiresIn()),
|
||||
RedisStringCommands.SetOption.SET_IF_ABSENT);
|
||||
connection.close();
|
||||
}
|
||||
|
||||
/**
|
||||
* 删除token
|
||||
* @param accessToken token
|
||||
*/
|
||||
@Override
|
||||
public void removeAccessToken(OAuth2AccessToken accessToken) {
|
||||
super.removeAccessToken(accessToken);
|
||||
// KEY
|
||||
OAuth2Authentication authentication = readAuthentication(accessToken);
|
||||
byte[] key = StrUtil.bytes(CacheConstants.PROJECT_OAUTH_TOKEN + authentication.getName());
|
||||
// 获取redis连接
|
||||
RedisConnection connection = connectionFactory.getConnection();
|
||||
connection.del(key);
|
||||
connection.close();
|
||||
}
|
||||
|
||||
}
|
Loading…
Reference in New Issue
Block a user