blame | history | raw
1
zj
2024-07-29 f6f3df18ea57ea4128fcccf3282e1520e867c631 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89

package org.example.controller;


 


import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;


import org.example.common.ServerResponse;


import org.example.dao.LogMapper;


import org.example.pojo.Log;


import org.example.pojo.User;


import org.example.server.UserService;


import org.example.server.impl.UserServiceImpl;


import org.example.util.IpAddressUtil;


import org.example.util.MD5Util;


import org.example.util.RedisUtil;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.web.bind.annotation.PostMapping;


import org.springframework.web.bind.annotation.RequestMapping;


import org.springframework.web.bind.annotation.RequestParam;


import org.springframework.web.bind.annotation.RestController;


 


import javax.servlet.http.HttpServletRequest;


import java.security.SecureRandom;


import java.util.Base64;


import java.util.Date;


 


/**


 * @program: demo


 * @description:


 * @create: 2024-07-29 11:17


 **/


@RestController


@RequestMapping("/login")


public class Login {


 


    @Autowired


    private UserServiceImpl userService;


 


    @Autowired


    private LogMapper logMapper;


 


    @PostMapping("/login")


    public ServerResponse saveUser(@RequestParam("account") String account


            , @RequestParam("password") String password, HttpServletRequest request) {


 


        User user = userService.getOne(new LambdaQueryWrapper<User>().eq(User::getAccount, account));


        if(null == user){


            return ServerResponse.createBySuccessMsg("用户不存在");


        }


 


        if (!MD5Util.verify(password, user.getPassword())) {


            return ServerResponse.createBySuccessMsg("密码错误");


        }


 


        //判断是否锁定


        if(user.getIsLock() == 1){


            return ServerResponse.createBySuccessMsg("账号已被锁定");


        }


 


        //判断是否到期


        if(new Date().after(user.getEndTime())){


            return ServerResponse.createBySuccessMsg("账号已到期");


        }


 


 


        String token = generateToken();


        RedisUtil.set(user.getAccount(),token);


 


        String ip = IpAddressUtil.getIpAddress(request);


        String address = null;


        address = IpAddressUtil.getIpPossessionByFile(ip);


        if(null == address){


            address = IpAddressUtil.getIpAddressByOnline(ip);


        }


        Log log = new Log();


        log.setIp(ip);


        log.setAccount(account);


        log.setLoginTime(new Date());


        log.setAddress(address);


        logMapper.insert(log);


 


        return ServerResponse.createBySuccess(token);


    }


 


    // 生成指定长度的随机 token


    public static String generateToken() {


        SecureRandom secureRandom = new SecureRandom();


        byte[] token = new byte[16];


        secureRandom.nextBytes(token);


        return Base64.getUrlEncoder().withoutPadding().encodeToString(token);


    }


}