验证登录取消
This commit is contained in:
parent
e29d8a7e81
commit
e1b42a874c
|
|
@ -56,13 +56,13 @@ public class LoginController {
|
||||||
@Autowired
|
@Autowired
|
||||||
private ISysLogService logService;
|
private ISysLogService logService;
|
||||||
@Autowired
|
@Autowired
|
||||||
private RedisUtil redisUtil;
|
private RedisUtil redisUtil;
|
||||||
@Autowired
|
@Autowired
|
||||||
private ISysDepartService sysDepartService;
|
private ISysDepartService sysDepartService;
|
||||||
@Autowired
|
@Autowired
|
||||||
private ISysTenantService sysTenantService;
|
private ISysTenantService sysTenantService;
|
||||||
@Autowired
|
@Autowired
|
||||||
private ISysDictService sysDictService;
|
private ISysDictService sysDictService;
|
||||||
@Resource
|
@Resource
|
||||||
private BaseCommonService baseCommonService;
|
private BaseCommonService baseCommonService;
|
||||||
|
|
||||||
|
|
@ -88,26 +88,26 @@ public class LoginController {
|
||||||
//update-begin--Author:scott Date:20190805 for:暂时注释掉密码加密逻辑,有点问题
|
//update-begin--Author:scott Date:20190805 for:暂时注释掉密码加密逻辑,有点问题
|
||||||
|
|
||||||
//update-begin-author:taoyan date:20190828 for:校验验证码
|
//update-begin-author:taoyan date:20190828 for:校验验证码
|
||||||
String captcha = sysLoginModel.getCaptcha();
|
// String captcha = sysLoginModel.getCaptcha();
|
||||||
if(captcha==null){
|
// if(captcha==null){
|
||||||
result.error500("验证码无效");
|
// result.error500("验证码无效");
|
||||||
return result;
|
// return result;
|
||||||
}
|
// }
|
||||||
String lowerCaseCaptcha = captcha.toLowerCase();
|
// String lowerCaseCaptcha = captcha.toLowerCase();
|
||||||
//update-begin-author:taoyan date:2022-9-13 for: VUEN-2245 【漏洞】发现新漏洞待处理20220906
|
// //update-begin-author:taoyan date:2022-9-13 for: VUEN-2245 【漏洞】发现新漏洞待处理20220906
|
||||||
// 加入密钥作为混淆,避免简单的拼接,被外部利用,用户自定义该密钥即可
|
// // 加入密钥作为混淆,避免简单的拼接,被外部利用,用户自定义该密钥即可
|
||||||
String origin = lowerCaseCaptcha+sysLoginModel.getCheckKey()+jeecgBaseConfig.getSignatureSecret();
|
// String origin = lowerCaseCaptcha+sysLoginModel.getCheckKey()+jeecgBaseConfig.getSignatureSecret();
|
||||||
String realKey = Md5Util.md5Encode(origin, "utf-8");
|
// String realKey = Md5Util.md5Encode(origin, "utf-8");
|
||||||
//update-end-author:taoyan date:2022-9-13 for: VUEN-2245 【漏洞】发现新漏洞待处理20220906
|
// //update-end-author:taoyan date:2022-9-13 for: VUEN-2245 【漏洞】发现新漏洞待处理20220906
|
||||||
Object checkCode = redisUtil.get(realKey);
|
// Object checkCode = redisUtil.get(realKey);
|
||||||
//当进入登录页时,有一定几率出现验证码错误 #1714
|
// //当进入登录页时,有一定几率出现验证码错误 #1714
|
||||||
if(checkCode==null || !checkCode.toString().equals(lowerCaseCaptcha)) {
|
// if(checkCode==null || !checkCode.toString().equals(lowerCaseCaptcha)) {
|
||||||
log.warn("验证码错误,key= {} , Ui checkCode= {}, Redis checkCode = {}", sysLoginModel.getCheckKey(), lowerCaseCaptcha, checkCode);
|
// log.warn("验证码错误,key= {} , Ui checkCode= {}, Redis checkCode = {}", sysLoginModel.getCheckKey(), lowerCaseCaptcha, checkCode);
|
||||||
result.error500("验证码错误");
|
// result.error500("验证码错误");
|
||||||
// 改成特殊的code 便于前端判断
|
// // 改成特殊的code 便于前端判断
|
||||||
result.setCode(HttpStatus.PRECONDITION_FAILED.value());
|
// result.setCode(HttpStatus.PRECONDITION_FAILED.value());
|
||||||
return result;
|
// return result;
|
||||||
}
|
// }
|
||||||
//update-end-author:taoyan date:20190828 for:校验验证码
|
//update-end-author:taoyan date:20190828 for:校验验证码
|
||||||
|
|
||||||
//1. 校验用户是否有效
|
//1. 校验用户是否有效
|
||||||
|
|
@ -135,13 +135,13 @@ public class LoginController {
|
||||||
//用户登录信息
|
//用户登录信息
|
||||||
userInfo(sysUser, result);
|
userInfo(sysUser, result);
|
||||||
//update-begin--Author:liusq Date:20210126 for:登录成功,删除redis中的验证码
|
//update-begin--Author:liusq Date:20210126 for:登录成功,删除redis中的验证码
|
||||||
redisUtil.del(realKey);
|
// redisUtil.del(realKey);
|
||||||
//update-begin--Author:liusq Date:20210126 for:登录成功,删除redis中的验证码
|
//update-begin--Author:liusq Date:20210126 for:登录成功,删除redis中的验证码
|
||||||
redisUtil.del(CommonConstant.LOGIN_FAIL + username);
|
redisUtil.del(CommonConstant.LOGIN_FAIL + username);
|
||||||
LoginUser loginUser = new LoginUser();
|
LoginUser loginUser = new LoginUser();
|
||||||
BeanUtils.copyProperties(sysUser, loginUser);
|
BeanUtils.copyProperties(sysUser, loginUser);
|
||||||
baseCommonService.addLog("用户名: " + username + ",登录成功!", CommonConstant.LOG_TYPE_1, null,loginUser);
|
baseCommonService.addLog("用户名: " + username + ",登录成功!", CommonConstant.LOG_TYPE_1, null,loginUser);
|
||||||
//update-end--Author:wangshuai Date:20200714 for:登录日志没有记录人员
|
//update-end--Author:wangshuai Date:20200714 for:登录日志没有记录人员
|
||||||
return result;
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -190,29 +190,29 @@ public class LoginController {
|
||||||
@RequestMapping(value = "/logout")
|
@RequestMapping(value = "/logout")
|
||||||
public Result<Object> logout(HttpServletRequest request,HttpServletResponse response) {
|
public Result<Object> logout(HttpServletRequest request,HttpServletResponse response) {
|
||||||
//用户退出逻辑
|
//用户退出逻辑
|
||||||
String token = request.getHeader(CommonConstant.X_ACCESS_TOKEN);
|
String token = request.getHeader(CommonConstant.X_ACCESS_TOKEN);
|
||||||
if(oConvertUtils.isEmpty(token)) {
|
if(oConvertUtils.isEmpty(token)) {
|
||||||
return Result.error("退出登录失败!");
|
return Result.error("退出登录失败!");
|
||||||
}
|
}
|
||||||
String username = JwtUtil.getUsername(token);
|
String username = JwtUtil.getUsername(token);
|
||||||
LoginUser sysUser = sysBaseApi.getUserByName(username);
|
LoginUser sysUser = sysBaseApi.getUserByName(username);
|
||||||
if(sysUser!=null) {
|
if(sysUser!=null) {
|
||||||
//update-begin--Author:wangshuai Date:20200714 for:登出日志没有记录人员
|
//update-begin--Author:wangshuai Date:20200714 for:登出日志没有记录人员
|
||||||
baseCommonService.addLog("用户名: "+sysUser.getRealname()+",退出成功!", CommonConstant.LOG_TYPE_1, null,sysUser);
|
baseCommonService.addLog("用户名: "+sysUser.getRealname()+",退出成功!", CommonConstant.LOG_TYPE_1, null,sysUser);
|
||||||
//update-end--Author:wangshuai Date:20200714 for:登出日志没有记录人员
|
//update-end--Author:wangshuai Date:20200714 for:登出日志没有记录人员
|
||||||
log.info(" 用户名: "+sysUser.getRealname()+",退出成功! ");
|
log.info(" 用户名: "+sysUser.getRealname()+",退出成功! ");
|
||||||
//清空用户登录Token缓存
|
//清空用户登录Token缓存
|
||||||
redisUtil.del(CommonConstant.PREFIX_USER_TOKEN + token);
|
redisUtil.del(CommonConstant.PREFIX_USER_TOKEN + token);
|
||||||
//清空用户登录Shiro权限缓存
|
//清空用户登录Shiro权限缓存
|
||||||
redisUtil.del(CommonConstant.PREFIX_USER_SHIRO_CACHE + sysUser.getId());
|
redisUtil.del(CommonConstant.PREFIX_USER_SHIRO_CACHE + sysUser.getId());
|
||||||
//清空用户的缓存信息(包括部门信息),例如sys:cache:user::<username>
|
//清空用户的缓存信息(包括部门信息),例如sys:cache:user::<username>
|
||||||
redisUtil.del(String.format("%s::%s", CacheConstant.SYS_USERS_CACHE, sysUser.getUsername()));
|
redisUtil.del(String.format("%s::%s", CacheConstant.SYS_USERS_CACHE, sysUser.getUsername()));
|
||||||
//调用shiro的logout
|
//调用shiro的logout
|
||||||
SecurityUtils.getSubject().logout();
|
SecurityUtils.getSubject().logout();
|
||||||
return Result.ok("退出登录成功!");
|
return Result.ok("退出登录成功!");
|
||||||
}else {
|
}else {
|
||||||
return Result.error("Token无效!");
|
return Result.error("Token无效!");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
|
|
@ -255,14 +255,14 @@ public class LoginController {
|
||||||
Result<List<Map<String,Object>>> result = new Result<List<Map<String,Object>>>();
|
Result<List<Map<String,Object>>> result = new Result<List<Map<String,Object>>>();
|
||||||
Calendar calendar = new GregorianCalendar();
|
Calendar calendar = new GregorianCalendar();
|
||||||
calendar.set(Calendar.HOUR_OF_DAY,0);
|
calendar.set(Calendar.HOUR_OF_DAY,0);
|
||||||
calendar.set(Calendar.MINUTE,0);
|
calendar.set(Calendar.MINUTE,0);
|
||||||
calendar.set(Calendar.SECOND,0);
|
calendar.set(Calendar.SECOND,0);
|
||||||
calendar.set(Calendar.MILLISECOND,0);
|
calendar.set(Calendar.MILLISECOND,0);
|
||||||
calendar.add(Calendar.DAY_OF_MONTH, 1);
|
calendar.add(Calendar.DAY_OF_MONTH, 1);
|
||||||
Date dayEnd = calendar.getTime();
|
Date dayEnd = calendar.getTime();
|
||||||
calendar.add(Calendar.DAY_OF_MONTH, -7);
|
calendar.add(Calendar.DAY_OF_MONTH, -7);
|
||||||
Date dayStart = calendar.getTime();
|
Date dayStart = calendar.getTime();
|
||||||
List<Map<String,Object>> list = logService.findVisitCount(dayStart, dayEnd);
|
List<Map<String,Object>> list = logService.findVisitCount(dayStart, dayEnd);
|
||||||
result.setResult(oConvertUtils.toLowerCasePageList(list));
|
result.setResult(oConvertUtils.toLowerCasePageList(list));
|
||||||
return result;
|
return result;
|
||||||
}
|
}
|
||||||
|
|
@ -327,7 +327,7 @@ public class LoginController {
|
||||||
//随机数
|
//随机数
|
||||||
String captcha = RandomUtil.randomNumbers(6);
|
String captcha = RandomUtil.randomNumbers(6);
|
||||||
JSONObject obj = new JSONObject();
|
JSONObject obj = new JSONObject();
|
||||||
obj.put("code", captcha);
|
obj.put("code", captcha);
|
||||||
try {
|
try {
|
||||||
boolean b = false;
|
boolean b = false;
|
||||||
//注册模板
|
//注册模板
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue