Skip to content
项目
群组
代码片段
帮助
正在加载...
帮助
提交反馈
为 GitLab 提交贡献
登录
切换导航
I
ibzuaa
项目
项目
详情
动态
版本
周期分析
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
统计图
议题
0
议题
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
CI / CD
CI / CD
流水线
作业
计划
统计图
Wiki
Wiki
代码片段
代码片段
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
统计图
创建新议题
作业
提交
议题看板
打开侧边栏
ibiz4jteam
ibzuaa
提交
7fd0a01e
提交
7fd0a01e
编写于
6月 15, 2020
作者:
laizhilong
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
qq授权登录暂时不支持
上级
c2d4d4f2
变更
6
显示空白字符变更
内嵌
并排
正在显示
6 个修改的文件
包含
67 行增加
和
64 行删除
+67
-64
login.vue
app_web/src/components/login/login.vue
+13
-18
qqLoginRedirect.vue
app_web/src/components/login/qqLoginRedirect.vue
+3
-2
template.html
app_web/src/template.html
+1
-3
DevBootSecurityConfig.java
...rc/main/java/cn/ibizlab/config/DevBootSecurityConfig.java
+1
-0
UserRegisterService.java
...zlab/core/uaa/extensions/service/UserRegisterService.java
+0
-26
UserRegisterResource.java
.../cn/ibizlab/api/rest/extensions/UserRegisterResource.java
+49
-15
未找到文件。
app_web/src/components/login/login.vue
浏览文件 @
7fd0a01e
...
@@ -232,30 +232,25 @@
...
@@ -232,30 +232,25 @@
* @param thirdpart
* @param thirdpart
*/
*/
public
tencentHandleClick
(
thirdpart
:
any
)
{
public
tencentHandleClick
(
thirdpart
:
any
)
{
// window.QC.Login.showPopup({
this
.
$Message
.
warning
(
"QQ授权登录暂未支持"
);
// appId:"101884990",
// var _this = this;
// redirectURI:"http%3a%2f%2f127.0.0.1%3a8080%2f%23%2flogin" //登录成功后会自动跳往该地址
// const client_id = '101885024';// 网站应用appid
// });
// const redirect_uri = 'http%3A%2F%2Fh6s33i.natappfree.cc%2F%23%2FqqLoginRedirect';// 回调地址,即授权登录成功后跳转的地址,需要UrlEncode转码
var
_this
=
this
;
// const state = Math.random().toString(36).substr(2);// 随机生成一段字符串,防止CSRF攻击的
// // 网站应用appid
// const url = 'https://graph.qq.com/oauth2.0/authorize?response_type=code&client_id=' + client_id + '&redirect_uri=' + redirect_uri + "&scope=get_user_info" + "&state=" + state;// qq授权登录地址
const
client_id
=
'101885024'
;
// this.openWindow(url, thirdpart, 540, 540);
// 回调地址,即授权登录成功后跳转的地址(需要UrlEncode转码)
const
redirect_uri
=
'http%3a%2f%2f127.0.0.1%3a8080%2f%23%2flogin'
;
// 随机生成一段字符串,防止CSRF攻击的
const
state
=
Math
.
random
().
toString
(
36
).
substr
(
2
);
// this.$store.dispatch(state);
// // qq授权登录地址
const
url
=
'https://graph.qq.com/oauth2.0/authorize?response_type=code&client_id='
+
client_id
+
'&redirect_uri='
+
redirect_uri
+
"&scope=get_user_info"
+
"&state="
+
state
;
// // 打开qq授权登录窗口,授权登录成功后会重定向到回调地址
this
.
openWindow
(
url
,
thirdpart
,
540
,
540
);
}
}
/**
/**
* 微信授权登录
* 微信授权登录
* @param third
d
part
* @param thirdpart
*/
*/
public
wechatHandleClick
(
third
d
part
:
any
)
{
public
wechatHandleClick
(
thirdpart
:
any
)
{
this
.
$Message
.
warning
(
"微信授权登录暂未支持"
);
this
.
$Message
.
warning
(
"微信授权登录暂未支持"
);
// let appId = 'wxcfe83301b6e6615f'; //微信开放平台提供的appId
// let redirectURI = 'http%3A%2F%2Fh6s33i.natappfree.cc%2F%23%2FweixinLoginRedirect'; //微信扫码后回调地址,需要UrlEncode转码
// let url = 'https://open.weixin.qq.com/connect/qrconnect?appid=' + appId + '&redirect_uri=' + redirectURI + '&response_type=code&scope=snsapi_login&state=STATE#wechat_redirect';//微信扫码url
// this.openWindow(url, thirdpart, 540, 540);
}
}
/**
/**
...
...
app_web/src/components/login/qqLoginRedirect.vue
浏览文件 @
7fd0a01e
...
@@ -232,7 +232,8 @@
...
@@ -232,7 +232,8 @@
param
.
registerType
=
"qq"
;
param
.
registerType
=
"qq"
;
param
.
openId
=
this
.
openId
;
param
.
openId
=
this
.
openId
;
param
.
accessToken
=
this
.
accessToken
;
param
.
accessToken
=
this
.
accessToken
;
}
else
{
}
else
{
this
.
$Message
.
error
({
this
.
$Message
.
error
({
content
:
"注册并绑定QQ失败"
,
content
:
"注册并绑定QQ失败"
,
duration
:
3
,
duration
:
3
,
...
@@ -262,7 +263,7 @@
...
@@ -262,7 +263,7 @@
}
}
}).
catch
((
e
:
any
)
=>
{
}).
catch
((
e
:
any
)
=>
{
const
data
=
e
.
data
;
const
data
=
e
.
data
;
if
(
data
&&
data
.
detail
)
{
if
(
data
&&
data
.
message
)
{
this
.
$Message
.
error
({
this
.
$Message
.
error
({
content
:
"注册失败,"
+
data
.
message
,
content
:
"注册失败,"
+
data
.
message
,
duration
:
3
,
duration
:
3
,
...
...
app_web/src/template.html
浏览文件 @
7fd0a01e
...
@@ -6,9 +6,7 @@
...
@@ -6,9 +6,7 @@
<meta
name=
"viewport"
content=
"width=device-width,initial-scale=1.0"
>
<meta
name=
"viewport"
content=
"width=device-width,initial-scale=1.0"
>
<link
rel=
"icon"
href=
"<%= BASE_URL %>favicon.ico"
>
<link
rel=
"icon"
href=
"<%= BASE_URL %>favicon.ico"
>
<title><
%=
htmlWebpackPlugin
.
options
.
title
%
></title>
<title><
%=
htmlWebpackPlugin
.
options
.
title
%
></title>
<script
type=
"text/javascript"
src=
"http://qzonestyle.gtimg.cn/qzone/openapi/qc_loader.js"
data-callback=
"true"
data-appid=
"101885024"
data-redirecturi=
"http%3a%2f%2f127.0.0.1%3a8080%2f%23%2flogin"
charset=
"utf-8"
>
</script>
</head>
</head>
<body>
<body>
...
...
ibzuaa-boot/src/main/java/cn/ibizlab/config/DevBootSecurityConfig.java
浏览文件 @
7fd0a01e
...
@@ -107,6 +107,7 @@ public class DevBootSecurityConfig extends WebSecurityConfigurerAdapter {
...
@@ -107,6 +107,7 @@ public class DevBootSecurityConfig extends WebSecurityConfigurerAdapter {
.
antMatchers
(
"/uaa/login"
).
permitAll
()
.
antMatchers
(
"/uaa/login"
).
permitAll
()
.
antMatchers
(
"/uaa/register"
).
permitAll
()
.
antMatchers
(
"/uaa/register"
).
permitAll
()
.
antMatchers
(
"/uaa/queryUserByOpenId"
).
permitAll
()
.
antMatchers
(
"/uaa/queryUserByOpenId"
).
permitAll
()
.
antMatchers
(
"/uaa/responseTokenToWeiXin"
).
permitAll
()
.
anyRequest
().
authenticated
()
.
anyRequest
().
authenticated
()
// 防止iframe 造成跨域
// 防止iframe 造成跨域
.
and
().
headers
().
frameOptions
().
disable
();
.
and
().
headers
().
frameOptions
().
disable
();
...
...
ibzuaa-core/src/main/java/cn/ibizlab/core/uaa/extensions/service/UserRegisterService.java
浏览文件 @
7fd0a01e
...
@@ -42,32 +42,6 @@ public class UserRegisterService{
...
@@ -42,32 +42,6 @@ public class UserRegisterService{
return
ibzuser
;
return
ibzuser
;
}
}
/**
* qq授权注册并登录
* @param ibzuser 注册用户
* @param qqAuthorizationInfo qq授权信息
*/
public
IBZUSER
qqRegisterAndLogin
(
IBZUSER
ibzuser
,
JSONObject
qqAuthorizationInfo
)
{
// 1.根据qqAuthorizationInfo获取AccessToken
String
code
=
qqAuthorizationInfo
.
getString
(
"code"
);
String
state
=
qqAuthorizationInfo
.
getString
(
"state"
);
String
redirect_uri
=
""
;
String
appid
=
""
;
String
appkey
=
""
;
String
url
=
"https://graph.qq.com/oauth2.0/token?grant_type=authorization_code&client_id="
+
appid
+
"&client_secret="
+
appkey
+
"&code="
+
code
+
"&redirect_uri="
+
redirect_uri
;
// 2.根据AccessToken获取OpenID值
// 3.根据OpenID获取该QQ用户的相关信息
// 4.创建ibzuser,成功则登录
boolean
flag
=
ibzuserService
.
save
(
ibzuser
);
if
(!
flag
)
{
return
null
;
}
return
ibzuser
;
}
/**
/**
* qq授权注册
* qq授权注册
...
...
ibzuaa-provider/ibzuaa-provider-api/src/main/java/cn/ibizlab/api/rest/extensions/UserRegisterResource.java
浏览文件 @
7fd0a01e
...
@@ -9,14 +9,13 @@ import org.springframework.beans.factory.annotation.Autowired;
...
@@ -9,14 +9,13 @@ import org.springframework.beans.factory.annotation.Autowired;
import
org.springframework.beans.factory.annotation.Value
;
import
org.springframework.beans.factory.annotation.Value
;
import
org.springframework.http.ResponseEntity
;
import
org.springframework.http.ResponseEntity
;
import
org.springframework.util.StringUtils
;
import
org.springframework.util.StringUtils
;
import
org.springframework.web.bind.annotation.PostMapping
;
import
org.springframework.web.bind.annotation.*
;
import
org.springframework.web.bind.annotation.RequestBody
;
import
org.springframework.web.bind.annotation.RestController
;
import
java.util.HashMap
;
import
javax.servlet.http.HttpServletResponse
;
import
java.util.List
;
import
java.io.IOException
;
import
java.util.Map
;
import
java.security.MessageDigest
;
import
java.util.UUID
;
import
java.security.NoSuchAlgorithmException
;
import
java.util.*
;
@RestController
@RestController
...
@@ -27,7 +26,7 @@ public class UserRegisterResource {
...
@@ -27,7 +26,7 @@ public class UserRegisterResource {
@Autowired
@Autowired
private
ISysPSSystemService
iSysPSSystemService
;
private
ISysPSSystemService
iSysPSSystemService
;
@Value
(
"${ibiz.auth.qq.redirect_uri:}"
)
@Value
(
"${ibiz.auth.qq.redirect_uri:
http://127.0.0.1:8111/#/qqLoginRedirect
}"
)
private
String
redirect_URI
;
private
String
redirect_URI
;
@PostMapping
(
value
=
"/uaa/register"
)
@PostMapping
(
value
=
"/uaa/register"
)
...
@@ -40,7 +39,7 @@ public class UserRegisterResource {
...
@@ -40,7 +39,7 @@ public class UserRegisterResource {
String
registerType
=
param
.
getString
(
"registerType"
);
String
registerType
=
param
.
getString
(
"registerType"
);
if
(
StringUtils
.
isEmpty
(
loginname
))
if
(
StringUtils
.
isEmpty
(
loginname
))
throw
new
BadRequestAlertException
(
"用户名为空"
,
"register"
,
""
);
throw
new
BadRequestAlertException
(
"用户名为空"
,
"register"
,
""
);
if
(
StringUtils
.
isEmpty
(
personname
))
if
(
StringUtils
.
isEmpty
(
personname
)
&&
(!
"qq"
.
equals
(
registerType
)
&&
!
"weixin"
.
equals
(
registerType
))
)
throw
new
BadRequestAlertException
(
"用户姓名为空"
,
"register"
,
""
);
throw
new
BadRequestAlertException
(
"用户姓名为空"
,
"register"
,
""
);
if
(
StringUtils
.
isEmpty
(
password
))
if
(
StringUtils
.
isEmpty
(
password
))
throw
new
BadRequestAlertException
(
"密码为空"
,
"register"
,
""
);
throw
new
BadRequestAlertException
(
"密码为空"
,
"register"
,
""
);
...
@@ -67,12 +66,11 @@ public class UserRegisterResource {
...
@@ -67,12 +66,11 @@ public class UserRegisterResource {
userRegisterService
.
commomRegister
(
ibzuser
);
userRegisterService
.
commomRegister
(
ibzuser
);
break
;
break
;
case
"qq"
:
// qq授权注册
case
"qq"
:
// qq授权注册
ibzuser
.
setUserid
(
"qq-"
+
uuid
);
ibzuser
=
null
;
String
openId
=
param
.
getString
(
"openId"
);
// ibzuser.setUserid("qq-" + uuid);
String
accessToken
=
param
.
getString
(
"accessToken"
);
// String openId = param.getString("openId");
userRegisterService
.
qqRegister
(
ibzuser
,
openId
,
accessToken
);
// String accessToken = param.getString("accessToken");
// JSONObject qqAuthorizationInfo = (JSONObject) param.get("qqAuthorizationInfo");
// userRegisterService.qqRegister(ibzuser, openId, accessToken);
// userRegisterService.qqRegisterAndLogin(ibzuser, qqAuthorizationInfo);
break
;
break
;
default
:
default
:
ibzuser
.
setUserid
(
"commom-"
+
uuid
);
ibzuser
.
setUserid
(
"commom-"
+
uuid
);
...
@@ -86,6 +84,7 @@ public class UserRegisterResource {
...
@@ -86,6 +84,7 @@ public class UserRegisterResource {
/**
/**
* 根据openId查用户
* 根据openId查用户
*
* @param param
* @param param
* @return
* @return
*/
*/
...
@@ -111,5 +110,40 @@ public class UserRegisterResource {
...
@@ -111,5 +110,40 @@ public class UserRegisterResource {
return
ResponseEntity
.
ok
().
body
(
object
);
return
ResponseEntity
.
ok
().
body
(
object
);
}
}
//这里的token要和微信测试号网页填写的token一样
public
static
final
String
TOKEN
=
"weixin"
;
/**
* 响应微信发送的Token验证
*
* @param signature 微信加密签名,signature结合了开发者填写的token参数和请求中的timestamp参数、nonce参数
* @param timestamp 时间戳
* @param nonce 随机数
* @param echostr 随机字符串
* @param response 响应对象
* @throws IOException
* @throws NoSuchAlgorithmException
*/
@GetMapping
(
value
=
"/uaa/responseTokenToWeiXin"
)
public
void
responseTokenToWeiXin
(
String
signature
,
String
timestamp
,
String
nonce
,
String
echostr
,
HttpServletResponse
response
)
throws
IOException
,
NoSuchAlgorithmException
{
// 将token、timestamp、nonce三个参数进行字典序排序
System
.
out
.
println
(
"signature:"
+
signature
);
System
.
out
.
println
(
"timestamp:"
+
timestamp
);
System
.
out
.
println
(
"nonce:"
+
nonce
);
System
.
out
.
println
(
"echostr:"
+
echostr
);
System
.
out
.
println
(
"TOKEN:"
+
TOKEN
);
String
[]
params
=
new
String
[]{
TOKEN
,
timestamp
,
nonce
};
Arrays
.
sort
(
params
);
// 将三个参数字符串拼接成一个字符串进行sha1加密
String
clearText
=
params
[
0
]
+
params
[
1
]
+
params
[
2
];
String
algorithm
=
"SHA-1"
;
String
sign
=
new
String
(
org
.
apache
.
commons
.
codec
.
binary
.
Hex
.
encodeHex
(
MessageDigest
.
getInstance
(
algorithm
).
digest
((
clearText
).
getBytes
()),
true
));
// 开发者获得加密后的字符串可与signature对比,标识该请求来源于微信
if
(
signature
.
equals
(
sign
))
{
// 确认此次GET请求来自微信服务器,原样返回echostr参数内容,则接入生效,成为开发者成功
response
.
getWriter
().
print
(
echostr
);
}
}
}
}
编辑
预览
Markdown
格式
0%
请重试
or
添加新附件
添加附件
取消
您添加了
0
人
到此讨论。请谨慎行事。
先完成此消息的编辑!
取消
想要评论请
注册
或
登录