JWTUtils

Marlowe
自定义工具类

发布于:Mar 2, 2021
次浏览

388 words

2 min

Jwt 学习

  1. 引入jwt依赖
    1
    2
    3
    4
    5
    <dependency>
        <groupId>com.auth0</groupId>
        <artifactId>java-jwt</artifactId>
        <version>3.4.0</version>
    </dependency>
  2. 编写JWTUtils工具类
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31
    32
    33
    34
    35
    36
    37
    38
    39
    40
    41
    42
    43
    44
    45
    46
    47
    48
    49
    50
    51
    public class JWTUtils {

        private static final String SIGN = "!QDJHFKSHFK:";

        /**
         * 生成token header.payload.sign
         *
         * @param map
         * @return
         */
        public static String getToken(Map<String, String> map) {
            Calendar instance = Calendar.getInstance();
            // 默认7天过期
            instance.add(Calendar.DATE, 7);

            // 创建jwt builder
            JWTCreator.Builder builder = JWT.create();

            // payload
            map.forEach((k, v) -> {
                builder.withClaim(k, v);
            });
            // 指定令牌过期时间和签名
            String token = builder.withExpiresAt(instance.getTime())
                    .sign(Algorithm.HMAC256(SIGN));
            return token;
        }


        /**
         * 验证token 合法性
         *
         * @param token
         */
        public static void verify(String token) {
            JWT.require(Algorithm.HMAC256(SIGN)).build().verify(token);
        }


        /**
         * 获取token信息
         *
         * @param token
         * @return
         */
        public static DecodedJWT getTokenInfo(String token) {
            DecodedJWT verify = JWT.require(Algorithm.HMAC256(SIGN)).build().verify(token);
            return verify;
        }

    }
  3. 编写JWTinterceptor类
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31
    public class JWTInterceptor implements HandlerInterceptor {
        @Override
        public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
            Map<Object, Object> map = new HashMap<>();
            // 获取请求头令牌
            String token = request.getHeader("token");
            try {
                // 验证令牌
                JWTUtils.verify(token);
                // 放行请求
                return true;
            } catch (SignatureVerificationException e) {
                e.printStackTrace();
                map.put("msg", "无效签名");
            } catch (TokenExpiredException e) {
                e.printStackTrace();
                map.put("msg", "token过期");
            } catch (AlgorithmMismatchException e) {
                e.printStackTrace();
                map.put("msg", "token算法不一致");
            } catch (Exception e) {
                e.printStackTrace();
                map.put("msg", "token 无效");
            }
            map.put("state", false);
            String json = new ObjectMapper().writeValueAsString(map);
            response.setContentType("application/json;charset=UTF-8");
            response.getWriter().println(json);
            return false;
        }
    }
  4. 编写拦截器配置类
    1
    2
    3
    4
    5
    6
    7
    8
    9
    @Configuration
    public class InterceptorConfig implements WebMvcConfigurer{
        @Override
        public vpid addInterceptors(InterceptorRegistry registry){
            registry.addInterceptor(new JWTInterceptor())
            .addPathPatterns("/xxx")
            .excludePathPatterns("/xxx");
        }
    }

博客内容遵循 署名-非商业性使用-相同方式共享 4.0 国际 (CC BY-NC-SA 4.0) 协议

本文永久链接是:https://xmmarlowe.github.io/2021/03/02/%E8%87%AA%E5%AE%9A%E4%B9%89%E5%B7%A5%E5%85%B7%E7%B1%BB/JWTUtils/

Marlowe

更新于:Mar 2, 2021

评论