优化登陆

cf027b5a · Quxl · 99e999b0 · cf027b5a · cf027b5a · cf027b5a
Commit cf027b5a authored Oct 29, 2018 by Quxl
11 changed files
--- a/src/main/java/com/egolm/film/api/TokenService.java
+++ b/src/main/java/com/egolm/film/api/TokenService.java
@@ -3,13 +3,16 @@ package com.egolm.film.api;
 import com.egolm.film.model.LoginToken;
 public interface TokenService {
+	final String JSESSIONID = "JSESSIONID";
 	LoginToken getToken();
 	LoginToken doLogin(String username, String password);
 	void doLogout();
 	boolean isLogin();
+	boolean isLoginByToken(String token);
 }
--- a/src/main/java/com/egolm/film/api/admin/service/impl/AdminTokenServiceImpl.java
+++ b/src/main/java/com/egolm/film/api/admin/service/impl/AdminTokenServiceImpl.java
@@ -3,6 +3,7 @@ package com.egolm.film.api.admin.service.impl;
 import java.util.List;
 import java.util.Map;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpSession;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -35,6 +36,11 @@ public class AdminTokenServiceImpl implements AdminTokenService {
 					Integer adminid = (Integer)map.get("adminid");
 					LoginToken token = new LoginToken(adminid);
 					session.setAttribute(TOKEN_NAME, token);
+					Cookie cookie = WebMvcConfig.getCookie(JSESSIONID);
+					if(cookie != null) {
+						String sql = "update fc_admin set token = ? where id = ?";
+						jdbcTemplate.executeUpdate(sql, cookie.getValue(), adminid);
+					}
 					return token;
 				} else if(state == 2) {
 					throw new XException("用户已禁用");
@@ -69,4 +75,18 @@ public class AdminTokenServiceImpl implements AdminTokenService {
 	public boolean isLogin() {
 		return this.getToken() != null;
 	}
+	@Override
+	public boolean isLoginByToken(String token_string) {
+		HttpSession session = WebMvcConfig.getSession();
+		try {
+			String sql = "select adminid from fc_admin where token = ?";
+			Integer adminid = jdbcTemplate.queryForInt(sql, token_string);
+			LoginToken token = new LoginToken(adminid);
+			session.setAttribute(TOKEN_NAME, token);
+			return true;
+		} catch (Exception e) {
+			return false;
+		}
+	}
 }
--- a/src/main/java/com/egolm/film/api/member/service/MemberService.java
+++ b/src/main/java/com/egolm/film/api/member/service/MemberService.java
@@ -125,4 +125,8 @@ public interface MemberService {
 	boolean changePasswordByMemberId(Integer member_id, String password, String newPassword);
+	Fc_member getMemberByToken(String token);
+	void updateToken(Integer member_id, String token_string);
 }
--- a/src/main/java/com/egolm/film/api/member/service/MemberTokenService.java
+++ b/src/main/java/com/egolm/film/api/member/service/MemberTokenService.java
@@ -5,5 +5,5 @@ import com.egolm.film.api.TokenService;
 public interface MemberTokenService extends TokenService {
 	final String TOKEN_NAME = "FILM_MEMBER_LOGIN_TOKEN_NAME";
 }
--- a/src/main/java/com/egolm/film/api/member/service/impl/MemberServiceImpl.java
+++ b/src/main/java/com/egolm/film/api/member/service/impl/MemberServiceImpl.java
@@ -466,4 +466,16 @@ public class MemberServiceImpl implements MemberService {
 		return false;
 	}
+	@Override
+	public Fc_member getMemberByToken(String token) {
+		String sql = "select * from fc_member where token = ?";
+		return jdbcTemplate.queryForBean(sql, Fc_member.class, token);
+	}
+	@Override
+	public void updateToken(Integer member_id, String token_string) {
+		String sql = "update fc_member set token = ? where id = ?";
+		jdbcTemplate.executeUpdate(sql, token_string, member_id);
+	}
 }
--- a/src/main/java/com/egolm/film/api/member/service/impl/MemberTokenServiceImpl.java
+++ b/src/main/java/com/egolm/film/api/member/service/impl/MemberTokenServiceImpl.java
 package com.egolm.film.api.member.service.impl;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpSession;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -41,6 +42,10 @@ public class MemberTokenServiceImpl implements MemberTokenService {
 				Integer id = member.getId();
 				LoginToken token = new LoginToken(id);
 				session.setAttribute(TOKEN_NAME, token);
+				Cookie cookie = WebMvcConfig.getCookie(JSESSIONID);
+				if(cookie != null) {
+					memberService.updateToken(id, cookie.getValue());
+				}
 				return token;
 			} else {
 				throw new XException(messages.get("err.user_pwd_err"));
@@ -51,7 +56,7 @@ public class MemberTokenServiceImpl implements MemberTokenService {
 			throw new XException(messages.get("err"));
 		}
 	}
 	@Override
 	public LoginToken getToken() {
 		HttpSession session = WebMvcConfig.getSession();
@@ -71,4 +76,23 @@ public class MemberTokenServiceImpl implements MemberTokenService {
 		return this.getToken() != null;
 	}
+	@Override
+	public boolean isLoginByToken(String token_string) {
+		HttpSession session = WebMvcConfig.getSession();
+		try {
+			Fc_member member = memberService.getMemberByToken(token_string);
+			Integer state = member.getState();
+			if(state == 1) {
+				Integer id = member.getId();
+				LoginToken token = new LoginToken(id);
+				session.setAttribute(TOKEN_NAME, token);
+				return true;
+			} else {
+				return false;
+			}
+		} catch (Exception e) {
+			return false;
+		}
+	}
 }
--- a/src/main/java/com/egolm/film/api/user/service/impl/UserTokenServiceImpl.java
+++ b/src/main/java/com/egolm/film/api/user/service/impl/UserTokenServiceImpl.java
@@ -3,6 +3,7 @@ package com.egolm.film.api.user.service.impl;
 import java.util.List;
 import java.util.Map;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpSession;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -35,6 +36,11 @@ public class UserTokenServiceImpl implements UserTokenService {
 					Integer uid = (Integer)map.get("uid");
 					LoginToken token = new LoginToken(uid);
 					session.setAttribute(TOKEN_NAME, token);
+					Cookie cookie = WebMvcConfig.getCookie(JSESSIONID);
+					if(cookie != null) {
+						String sql = "update fc_user set token = ? where id = ?";
+						jdbcTemplate.executeUpdate(sql, cookie.getValue(), uid);
+					}
 					return token;
 				} else if(state == 2) {
 					throw new XException("用户已禁用");
@@ -69,4 +75,18 @@ public class UserTokenServiceImpl implements UserTokenService {
 	public boolean isLogin() {
 		return this.getToken() != null;
 	}
+	@Override
+	public boolean isLoginByToken(String token_string) {
+		HttpSession session = WebMvcConfig.getSession();
+		try {
+			String sql = "select uid from fc_user where token = ?";
+			Long uid = jdbcTemplate.queryForLong(sql, token_string);
+			LoginToken token = new LoginToken(uid);
+			session.setAttribute(TOKEN_NAME, token);
+			return true;
+		} catch (Exception e) {
+			return false;
+		}
+	}
 }
--- a/src/main/java/com/egolm/film/config/WebMvcConfig.java
+++ b/src/main/java/com/egolm/film/config/WebMvcConfig.java
@@ -2,6 +2,7 @@ package com.egolm.film.config;
 import java.util.EventListener;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.servlet.http.HttpSession;
@@ -82,4 +83,16 @@ public class WebMvcConfig extends WebMvcConfigurerAdapter {
 		return null;
 	}
+	public static Cookie getCookie(String name) {
+		HttpServletRequest request = WebMvcConfig.getRequest();
+		if(request != null) {
+			Cookie[] cookies = request.getCookies();
+			for(Cookie cookie : cookies) {
+				if(cookie.getName().equals(name)) {
+					return cookie; 
+				}
+			}
+		}
+		return null;
+	}
 }
--- a/src/main/java/com/egolm/film/config/interceptor/AdminLoginInterceptor.java
+++ b/src/main/java/com/egolm/film/config/interceptor/AdminLoginInterceptor.java
 package com.egolm.film.config.interceptor;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
@@ -7,6 +8,7 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
+import com.egolm.film.api.TokenService;
 import com.egolm.film.api.admin.service.AdminTokenService;
 import com.egolm.film.config.XException;
@@ -21,6 +23,16 @@ public class AdminLoginInterceptor extends HandlerInterceptorAdapter {
 		if(tokenService.isLogin()) {
 			return super.preHandle(req, resp, handler);
 		} else {
+			String sessionid = null;
+			Cookie[] cookies = req.getCookies();
+			for(Cookie cookie : cookies) {
+				if(cookie.getName().equals(TokenService.JSESSIONID)) {
+					sessionid = cookie.getValue(); 
+				}
+			}
+			if(sessionid != null && tokenService.isLoginByToken(sessionid)) {
+				return super.preHandle(req, resp, handler);
+			}
 			throw new XException("用户未登陆", 300);
 		}
 	}

--- a/src/main/java/com/egolm/film/config/interceptor/MemberLoginInterceptor.java
+++ b/src/main/java/com/egolm/film/config/interceptor/MemberLoginInterceptor.java
 package com.egolm.film.config.interceptor;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
@@ -7,6 +8,7 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
+import com.egolm.film.api.TokenService;
 import com.egolm.film.api.member.service.MemberTokenService;
 import com.egolm.film.config.XException;
@@ -21,6 +23,16 @@ public class MemberLoginInterceptor extends HandlerInterceptorAdapter {
 		if(tokenService.isLogin()) {
 			return super.preHandle(req, resp, handler);
 		} else {
+			String sessionid = null;
+			Cookie[] cookies = req.getCookies();
+			for(Cookie cookie : cookies) {
+				if(cookie.getName().equals(TokenService.JSESSIONID)) {
+					sessionid = cookie.getValue(); 
+				}
+			}
+			if(sessionid != null && tokenService.isLoginByToken(sessionid)) {
+				return super.preHandle(req, resp, handler);
+			}
 			throw new XException("用户未登陆", 300);
 		}
 	}

--- a/src/main/java/com/egolm/film/config/interceptor/UserLoginInterceptor.java
+++ b/src/main/java/com/egolm/film/config/interceptor/UserLoginInterceptor.java
 package com.egolm.film.config.interceptor;
+import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
@@ -7,6 +8,7 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
+import com.egolm.film.api.TokenService;
 import com.egolm.film.api.user.service.UserTokenService;
 import com.egolm.film.config.XException;
@@ -21,6 +23,16 @@ public class UserLoginInterceptor extends HandlerInterceptorAdapter {
 		if(tokenService.isLogin()) {
 			return super.preHandle(req, resp, handler);
 		} else {
+			String sessionid = null;
+			Cookie[] cookies = req.getCookies();
+			for(Cookie cookie : cookies) {
+				if(cookie.getName().equals(TokenService.JSESSIONID)) {
+					sessionid = cookie.getValue(); 
+				}
+			}
+			if(sessionid != null && tokenService.isLoginByToken(sessionid)) {
+				return super.preHandle(req, resp, handler);
+			}
 			throw new XException("用户未登陆", 300);
 		}
 	}