后台表单

src/main/java/com/izouma/awesomeadmin/service/UserInfoService.java

@@ -1,9 +1,10 @@
 package com.izouma.awesomeadmin.service;
 
-import java.util.List;
-
 import com.izouma.awesomeadmin.dto.Page;
 import com.izouma.awesomeadmin.model.UserInfo;
+import com.izouma.awesomeadmin.service.impl.UserInfoServiceImpl;
+
+import java.util.List;
 
 /**
  * user_info service接口类
@@ -27,5 +28,6 @@ public interface UserInfoService {
 
     UserInfo login(String username, String password);
 
+    UserInfo loginSms(String phone, String code, String sessionId) throws UserInfoServiceImpl.LoginException;
 }
 

src/main/java/com/izouma/awesomeadmin/service/impl/UserInfoServiceImpl.java

@@ -1,20 +1,22 @@
 package com.izouma.awesomeadmin.service.impl;
 
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
 import com.izouma.awesomeadmin.constant.AppConstant;
+import com.izouma.awesomeadmin.dao.UserInfoMapper;
 import com.izouma.awesomeadmin.dto.Page;
+import com.izouma.awesomeadmin.model.UserInfo;
+import com.izouma.awesomeadmin.service.UserInfoService;
 import com.izouma.awesomeadmin.util.MD5Util;
+import com.izouma.awesomeadmin.util.PropertiesFileLoader;
+import io.rong.RongCloud;
+import io.rong.models.SMSVerifyCodeResult;
 import org.apache.commons.lang.StringUtils;
 import org.apache.log4j.Logger;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
 
-import com.izouma.awesomeadmin.dao.UserInfoMapper;
-import com.izouma.awesomeadmin.model.UserInfo;
-import com.izouma.awesomeadmin.service.UserInfoService;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
 
 /**
  * user_info service接口实现类
@@ -24,6 +26,8 @@ import com.izouma.awesomeadmin.service.UserInfoService;
 public class UserInfoServiceImpl implements UserInfoService {
 
     private static Logger logger = Logger.getLogger(UserInfoServiceImpl.class);
+    private RongCloud rongCloud = RongCloud.getInstance(PropertiesFileLoader.getProperties("rongyunappkey"), PropertiesFileLoader.getProperties("rongyunappsecret"));
+
 
     @Autowired
     private UserInfoMapper userInfoMapper;
@@ -159,5 +163,42 @@ public class UserInfoServiceImpl implements UserInfoService {
         return null;
     }
 
+    @Override
+    public UserInfo loginSms(String phone, String code, String sessionId) throws LoginException {
+        logger.info("loginSms");
+        SMSVerifyCodeResult sMSVerifyCodeResult;
+        try {
+            sMSVerifyCodeResult = rongCloud.sms.verifyCode(sessionId, code);
+        } catch (Exception e) {
+            e.printStackTrace();
+            throw new LoginException("验证码错误");
+        }
+        if (200 == sMSVerifyCodeResult.getCode()) {
+            Boolean success = sMSVerifyCodeResult.getSuccess();
+            if (success) {
+                UserInfo userInfo = new UserInfo();
+                userInfo.setPhone(phone);
+                userInfo = getUserInfo(userInfo);
+                if (userInfo == null) {
+                    userInfo = new UserInfo();
+                    userInfo.setPhone(phone);
+                    userInfo.setUsername(phone);
+                    userInfo.setNickname(phone);
+                    userInfo.setIcon("https://microball.oss-cn-hangzhou.aliyuncs.com/huanbaojia/icon_morentouxiang.png");
+                    if (!createUserInfo(userInfo)) {
+                        throw new LoginException("登录失败");
+                    }
+                }
+                return userInfo;
+            }
+        }
+        throw new LoginException("验证码错误");
+    }
+
+    public class LoginException extends Exception {
+        public LoginException(String message) {
+            super(message);
+        }
+    }
 }
 

src/main/java/com/izouma/awesomeadmin/shiro/BaseRealm.java

@@ -0,0 +1,40 @@
+package com.izouma.awesomeadmin.shiro;
+
+import com.izouma.awesomeadmin.model.SysRole;
+import com.izouma.awesomeadmin.model.UserInfo;
+import com.izouma.awesomeadmin.service.SysRoleService;
+import com.izouma.awesomeadmin.service.UserInfoService;
+import org.apache.log4j.Logger;
+import org.apache.shiro.authz.AuthorizationInfo;
+import org.apache.shiro.authz.SimpleAuthorizationInfo;
+import org.apache.shiro.realm.AuthorizingRealm;
+import org.apache.shiro.subject.PrincipalCollection;
+import org.springframework.beans.factory.annotation.Autowired;
+
+public abstract class BaseRealm extends AuthorizingRealm {
+    protected static Logger logger = Logger.getLogger(PhoneCodeRealm.class);
+
+    @Autowired
+    protected UserInfoService userInfoService;
+
+    @Autowired
+    protected SysRoleService sysRoleService;
+
+    //授权
+    @Override
+    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
+        SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
+        try {
+            UserInfo userInfo = (UserInfo) principalCollection.getPrimaryPrincipal();
+            //获取角色数据权限授权
+            SysRole sysRole = sysRoleService.getSysRoleById(userInfo.getRoleId());
+            String[] permission = sysRole.getPermission().split(",");
+            for (String perm : permission) {
+                info.addStringPermission(perm);
+            }
+        } catch (Exception e) {
+            logger.error("doGetAuthorizationInfo", e);
+        }
+        return info;
+    }
+}

src/main/java/com/izouma/awesomeadmin/shiro/MyModularRealmAuthenticator.java

@@ -0,0 +1,41 @@
+package com.izouma.awesomeadmin.shiro;
+
+import org.apache.log4j.Logger;
+import org.apache.shiro.authc.AuthenticationInfo;
+import org.apache.shiro.authc.AuthenticationToken;
+import org.apache.shiro.authc.pam.AuthenticationStrategy;
+import org.apache.shiro.authc.pam.ModularRealmAuthenticator;
+import org.apache.shiro.realm.Realm;
+
+import java.util.Collection;
+import java.util.Iterator;
+
+public class MyModularRealmAuthenticator extends ModularRealmAuthenticator {
+    protected static Logger logger = Logger.getLogger(MyModularRealmAuthenticator.class);
+
+    protected AuthenticationInfo doMultiRealmAuthentication(Collection<Realm> realms, AuthenticationToken token) {
+        AuthenticationStrategy strategy = this.getAuthenticationStrategy();
+        AuthenticationInfo aggregate = strategy.beforeAllAttempts(realms, token);
+
+        Iterator var5 = realms.iterator();
+
+        while (var5.hasNext()) {
+            Realm realm = (Realm) var5.next();
+            aggregate = strategy.beforeAttempt(realm, token, aggregate);
+            if (realm.supports(token)) {
+                logger.trace("Attempting to authenticate token [{}] using realm [{}]");
+                AuthenticationInfo info = null;
+                Throwable t = null;
+
+                info = realm.getAuthenticationInfo(token);
+
+                aggregate = strategy.afterAttempt(realm, token, info, aggregate, t);
+            } else {
+                logger.debug("Realm [{}] does not support token {}.  Skipping realm.");
+            }
+        }
+
+        aggregate = strategy.afterAllAttempts(token, aggregate);
+        return aggregate;
+    }
+}

src/main/java/com/izouma/awesomeadmin/shiro/PhoneCodeRealm.java

@@ -0,0 +1,23 @@
+package com.izouma.awesomeadmin.shiro;
+
+import com.izouma.awesomeadmin.model.UserInfo;
+import com.izouma.awesomeadmin.service.impl.UserInfoServiceImpl;
+import org.apache.shiro.authc.AuthenticationException;
+import org.apache.shiro.authc.AuthenticationInfo;
+import org.apache.shiro.authc.AuthenticationToken;
+import org.apache.shiro.authc.SimpleAuthenticationInfo;
+
+public class PhoneCodeRealm extends BaseRealm {
+
+    @Override
+    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
+        UserInfo userInfo = null;
+        PhoneCodeToken phoneCodeToken = (PhoneCodeToken) token;
+        try {
+            userInfo = userInfoService.loginSms(phoneCodeToken.getPhone(), phoneCodeToken.getCode(), phoneCodeToken.getSessionId());
+            return new SimpleAuthenticationInfo(userInfo, token.getCredentials(), this.getName());
+        } catch (UserInfoServiceImpl.LoginException e) {
+            throw new AuthenticationException(e.getMessage());
+        }
+    }
+}

src/main/java/com/izouma/awesomeadmin/shiro/PhoneCodeToken.java

@@ -0,0 +1,71 @@
+package com.izouma.awesomeadmin.shiro;
+
+import org.apache.shiro.authc.HostAuthenticationToken;
+import org.apache.shiro.authc.RememberMeAuthenticationToken;
+
+public class PhoneCodeToken implements HostAuthenticationToken, RememberMeAuthenticationToken {
+
+    private boolean rememberMe;
+    private String host;
+    private String phone;
+    private String code;
+    private String sessionId;
+
+    public PhoneCodeToken(String phone, String code, String sessionId) {
+        this.phone = phone;
+        this.code = code;
+        this.sessionId = sessionId;
+    }
+
+    public void setRememberMe(boolean rememberMe) {
+        this.rememberMe = rememberMe;
+    }
+
+    public void setHost(String host) {
+        this.host = host;
+    }
+
+    public String getPhone() {
+        return phone;
+    }
+
+    public void setPhone(String phone) {
+        this.phone = phone;
+    }
+
+    public String getCode() {
+        return code;
+    }
+
+    public void setCode(String code) {
+        this.code = code;
+    }
+
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(String sessionId) {
+        this.sessionId = sessionId;
+    }
+
+    @Override
+    public String getHost() {
+        return host;
+    }
+
+    @Override
+    public boolean isRememberMe() {
+        return rememberMe;
+    }
+
+    @Override
+    public Object getPrincipal() {
+        return phone;
+    }
+
+    @Override
+    public Object getCredentials() {
+        return code;
+    }
+}

src/main/java/com/izouma/awesomeadmin/shiro/UserPasswordRealm.java

@@ -0,0 +1,18 @@
+package com.izouma.awesomeadmin.shiro;
+
+import com.izouma.awesomeadmin.model.UserInfo;
+import org.apache.shiro.authc.*;
+
+public class UserPasswordRealm extends BaseRealm {
+
+    @Override
+    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
+        UserInfo userInfo = null;
+        UsernamePasswordToken userToken = (UsernamePasswordToken) token;
+        userInfo = userInfoService.login(userToken.getUsername(), new String(userToken.getPassword()));
+        if (userInfo == null) {
+            throw new AuthenticationException("用户名或密码错误");
+        }
+        return new SimpleAuthenticationInfo(userInfo, token.getCredentials(), this.getName());
+    }
+}

src/main/java/com/izouma/awesomeadmin/web/RongCloudController.java

@@ -0,0 +1,90 @@
+package com.izouma.awesomeadmin.web;
+
+import com.izouma.awesomeadmin.constant.RongConstant;
+import com.izouma.awesomeadmin.dto.Result;
+import com.izouma.awesomeadmin.service.RongYunTokenService;
+import com.izouma.awesomeadmin.util.PropertiesFileLoader;
+import io.rong.RongCloud;
+import io.rong.models.SMSSendCodeResult;
+import io.rong.models.SMSVerifyCodeResult;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+import javax.servlet.http.HttpServletRequest;
+
+
+@Controller
+@RequestMapping("/rong")
+public class RongCloudController extends BaseController {
+
+    @Autowired
+    private RongYunTokenService rongYunTokenService;
+
+
+    private RongCloud rongCloud = RongCloud.getInstance(PropertiesFileLoader.getProperties("rongyunappkey"), PropertiesFileLoader.getProperties("rongyunappsecret"));
+
+    @RequestMapping(value = "/sendCode", method = RequestMethod.GET)
+    @ResponseBody
+    public Result sendCode(@RequestParam("phone") String mobile, HttpServletRequest request) {
+        try {
+            SMSSendCodeResult smsSendCodeResult = rongCloud.sms.sendCode(mobile, RongConstant.VERIFY_TEMPLATEID, "86", null, null);
+
+            if (200 == smsSendCodeResult.getCode()) {
+
+                String sessionId = smsSendCodeResult.getSessionId();
+
+                return new Result(true, new StringBuilder(sessionId));
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+
+        return new Result(false, "发送失败，请稍后重试");
+    }
+
+
+    @RequestMapping(value = "/verifyCode", method = RequestMethod.GET)
+    @ResponseBody
+    public Result verifyCode(@RequestParam("sessionId") String sessionId,
+                             @RequestParam("code") String code) {
+        try {
+            SMSVerifyCodeResult sMSVerifyCodeResult = rongCloud.sms.verifyCode(sessionId, code);
+            if (200 == sMSVerifyCodeResult.getCode()) {
+
+                Boolean success = sMSVerifyCodeResult.getSuccess();
+                if (success) {
+
+                    return new Result(true, null);
+                }
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+
+        return new Result(false, "验证失败");
+    }
+
+
+    @RequestMapping(value = "/sendNotify", method = RequestMethod.GET)
+    @ResponseBody
+    public Result sendNotify(@RequestParam(required = true, value = "mobile") String mobile) {
+
+        String result;
+        try {
+            SMSSendCodeResult smsSendCodeResult = rongCloud.sms.sendNotify(mobile, RongConstant.NOTIFY_TEMPLATEID, "86", null, null, null);
+            if (200 == smsSendCodeResult.getCode()) {
+
+                String sessionId = smsSendCodeResult.getSessionId();
+                return new Result(true, sessionId);
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+
+        return new Result(false, "发送失败，请稍后重试");
+    }
+}

src/main/java/com/izouma/awesomeadmin/web/UserInfoController.java

@@ -1,22 +1,22 @@
 package com.izouma.awesomeadmin.web;
 
-import java.util.ArrayList;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
 import com.izouma.awesomeadmin.constant.AppConstant;
 import com.izouma.awesomeadmin.dto.Page;
 import com.izouma.awesomeadmin.dto.Result;
 import com.izouma.awesomeadmin.dto.TreeNode;
 import com.izouma.awesomeadmin.model.DepartInfo;
+import com.izouma.awesomeadmin.model.UserInfo;
 import com.izouma.awesomeadmin.service.DepartInfoService;
 import com.izouma.awesomeadmin.service.PowerInfoService;
 import com.izouma.awesomeadmin.service.SysMenuService;
+import com.izouma.awesomeadmin.service.UserInfoService;
+import com.izouma.awesomeadmin.shiro.PhoneCodeToken;
 import com.izouma.awesomeadmin.util.CookieUtil;
 import com.izouma.awesomeadmin.util.ExportExcelUtil;
+import org.activiti.engine.IdentityService;
 import org.apache.commons.lang.StringUtils;
 import org.apache.shiro.SecurityUtils;
+import org.apache.shiro.authc.AuthenticationException;
 import org.apache.shiro.authc.UsernamePasswordToken;
 import org.apache.shiro.authz.annotation.RequiresAuthentication;
 import org.apache.shiro.subject.Subject;
@@ -27,12 +27,13 @@ import org.springframework.web.bind.annotation.RequestMethod;
 import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.ResponseBody;
 
-import com.izouma.awesomeadmin.model.UserInfo;
-import com.izouma.awesomeadmin.service.UserInfoService;
-
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.servlet.http.HttpSession;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
 
 /**
  * user_info controller类
@@ -48,9 +49,10 @@ public class UserInfoController extends BaseController {
     private PowerInfoService powerInfoService;
     @Autowired
     private SysMenuService sysMenuService;
-
     @Autowired
     private DepartInfoService departInfoService;
+    @Autowired
+    private IdentityService identityService;
 
     /**
      * <p>获取全部记录。</p>
@@ -200,25 +202,45 @@ public class UserInfoController extends BaseController {
             //这里会加载自定义的realm
             subject.login(token);//把令牌放到login里面进行查询,如果查询账号和密码时候匹配,如果匹配就把user对象获取出来,失败就抛异常
             UserInfo user = (UserInfo) subject.getPrincipal();//获取登录成功的用户对象(以前是直接去service里面查)
-
+            identityService.setAuthenticatedUserId(user.getId().toString());
             request.getSession(true).setAttribute("superUserId", String.valueOf(user.getId()));
             if (remember) {
                 HttpSession session = request.getSession();
                 CookieUtil.addCookie(response, "JSESSIONID", session.getId(), 3 * 24 * 60 * 60);
             }
             return new Result(true, "登录成功");
-        } catch (Exception e) {
-            //认证登录失败抛出异常
+        } catch (AuthenticationException e) {
+            e.printStackTrace();
             return new Result(false, "登录失败");
         }
     }
 
+    @RequestMapping(value = "/loginSms", method = RequestMethod.POST)
+    @ResponseBody
+    public Result loginBySms(@RequestParam("phone") String phone, @RequestParam("code") String code, @RequestParam("sessionId") String sessionId, HttpServletRequest request, HttpServletResponse response) {
+        Subject subject = SecurityUtils.getSubject();
+        PhoneCodeToken phoneCodeToken = new PhoneCodeToken(phone, code, sessionId);
+        try {
+            subject.login(phoneCodeToken);
+        } catch (AuthenticationException e) {
+            e.printStackTrace();
+            return new Result(false, e.getMessage());
+        }
+        UserInfo user = (UserInfo) subject.getPrincipal();
+        identityService.setAuthenticatedUserId(user.getId().toString());
+        HttpSession session = request.getSession();
+        CookieUtil.addCookie(response, "JSESSIONID", session.getId(), 3 * 24 * 60 * 60);
+        return new Result(true, user);
+    }
+
     @RequiresAuthentication
     @RequestMapping(value = "/logout", method = RequestMethod.POST)
     @ResponseBody
     public Result logout() {
+
         Subject subject = SecurityUtils.getSubject();
         subject.logout();
+        identityService.setAuthenticatedUserId(null);
         return new Result(true, "已退出登录");
     }
 

src/main/resources/spring/applicationContext.xml

@@ -40,10 +40,29 @@
     <!-- 注册安全管理器 -->
     <bean id="securityManager" class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
         <!-- 注入realm到安全管理器进行密码匹配 -->
-        <property name="realm" ref="BosRealm"/>
+        <property name="authenticator" ref="modularRealmAuthenticator"/>
     </bean>
+
+    <bean id="modularRealmAuthenticator" class="com.izouma.awesomeadmin.shiro.MyModularRealmAuthenticator">
+        <property name="authenticationStrategy">
+            <!-- 认证策略 -->
+            <bean class="org.apache.shiro.authc.pam.FirstSuccessfulStrategy"/>
+        </property>
+        <property name="realms">
+            <list>
+                <ref bean="phoneCodeRealm"/>
+                <ref bean="userPasswordRealm"/>
+            </list>
+        </property>
+    </bean>
+
     <!-- 自定义的realm -->
-    <bean id="BosRealm" class="com.izouma.awesomeadmin.shiro.Bos_realm"/>
+    <bean id="phoneCodeRealm" class="com.izouma.awesomeadmin.shiro.PhoneCodeRealm">
+        <property name="authenticationTokenClass" value="com.izouma.awesomeadmin.shiro.PhoneCodeToken"/>
+    </bean>
+    <bean id="userPasswordRealm" class="com.izouma.awesomeadmin.shiro.UserPasswordRealm">
+        <property name="authenticationTokenClass" value="org.apache.shiro.authc.UsernamePasswordToken"/>
+    </bean>
 
 
     <context:component-scan