bap.pp.main.login.service

Class LoginExtenderService

java.lang.Object

bap.core.service.BaseService

bap.pp.main.login.service.LoginExtenderService

public class LoginExtenderService
extends bap.core.service.BaseService

Constructor Summary

Constructors

Constructor and Description
LoginExtenderService()

Method Summary

Modifier and Type	Method and Description
boolean	checkTempSign(javax.servlet.http.HttpServletRequest request, org.springframework.security.core.Authentication authentication, java.lang.String token, java.lang.String privateKey, java.lang.String tempSign) 检查临时票据是否正确
Staff	customerClientStaffValid(java.lang.String loginName, java.lang.String password, javax.servlet.http.HttpServletRequest request) 自定义oauth2密码授权模式下，登录用户的用户名密码解析，返回null原样校验
ClientDetail	customerClientValid(java.lang.String name, java.lang.String secret, javax.servlet.http.HttpServletRequest request) 自定义解析客户端名称和秘钥
Staff	customerStaffValid(javax.servlet.http.HttpServletRequest request, java.lang.String username, java.lang.String password) 自定义用户名，密码解析
java.lang.String	decryptionSign(javax.servlet.http.HttpServletRequest request, org.springframework.security.core.Authentication authentication, java.lang.String token, java.lang.String privateKey, java.lang.String signature) 自定义解密签名
java.lang.String	getValidCode(javax.servlet.http.HttpSession session) 自定义登录验证码生成策略【复杂模式，非短信登录模式】
boolean	ifPasswordValid(Staff staff) 判断某用户是否进行定期强制修改密码判断
java.lang.String	validationFail(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.springframework.security.core.AuthenticationException exception, Staff staff) 用户登录认证失败执行的回调,实现此方法，用户需自行记录登录异常日志
java.lang.String	validationSuccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, Staff staff) 用户验证完全通过后执行回调

Methods inherited from class bap.core.service.BaseService

getBaseDao, setBaseDao

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

LoginExtenderService

public LoginExtenderService()

Method Detail

getValidCode

public java.lang.String getValidCode(javax.servlet.http.HttpSession session)

自定义登录验证码生成策略【复杂模式，非短信登录模式】

Parameters:

session - 当前会话

Returns:

验证码 return null表示按照系统默认的生成策略生成

customerStaffValid

public Staff customerStaffValid(javax.servlet.http.HttpServletRequest request,
                                java.lang.String username,
                                java.lang.String password)

自定义用户名，密码解析

Parameters:

request - 请求

username - 用户名

password - 密码

Returns:

validationSuccess

public java.lang.String validationSuccess(javax.servlet.http.HttpServletRequest request,
                                          javax.servlet.http.HttpServletResponse response,
                                          Staff staff)

用户验证完全通过后执行回调

Parameters:

request - 请求

reponse - 响应

staff - 用户对象

Returns:

返回null表示按照系统默认进入主页面，返回其他路径表示登录成功后重定向到其他路径

validationFail

public java.lang.String validationFail(javax.servlet.http.HttpServletRequest request,
                                       javax.servlet.http.HttpServletResponse response,
                                       org.springframework.security.core.AuthenticationException exception,
                                       Staff staff)

用户登录认证失败执行的回调,实现此方法，用户需自行记录登录异常日志

Parameters:

request -

response -

exception - 用户认证失败产生的异常

staff - 前端传入的用户对象

Returns:

如果需要变更登录失败后跳转的路径，可返回新的路径参数，注意，必须是全路径如： /system/login

customerClientValid

public ClientDetail customerClientValid(java.lang.String name,
                                        java.lang.String secret,
                                        javax.servlet.http.HttpServletRequest request)

自定义解析客户端名称和秘钥

Parameters:

name - 客户端名

secret - 客户端秘钥

request -

Returns:

customerClientStaffValid

public Staff customerClientStaffValid(java.lang.String loginName,
                                      java.lang.String password,
                                      javax.servlet.http.HttpServletRequest request)

自定义oauth2密码授权模式下，登录用户的用户名密码解析，返回null原样校验

Parameters:

loginName - 登录名

password - 密码

request -

Returns:

checkTempSign

public boolean checkTempSign(javax.servlet.http.HttpServletRequest request,
                             org.springframework.security.core.Authentication authentication,
                             java.lang.String token,
                             java.lang.String privateKey,
                             java.lang.String tempSign)

检查临时票据是否正确

Parameters:

request - 当前请求

authentication - 认证对象

token - 当次请求的token值

privateKey - 当次请求的token对应的秘钥

tempSign - 客户端传回的临时签名

Returns:

decryptionSign

public java.lang.String decryptionSign(javax.servlet.http.HttpServletRequest request,
                                       org.springframework.security.core.Authentication authentication,
                                       java.lang.String token,
                                       java.lang.String privateKey,
                                       java.lang.String signature)

自定义解密签名

Parameters:

request - 当前请求

authentication - 认证对象

token - 当次请求的token值

privateKey - 当次请求的token对应的秘钥

signature - 客户端传来的签名值

Returns:

ifPasswordValid

public boolean ifPasswordValid(Staff staff)

判断某用户是否进行定期强制修改密码判断

Parameters:

staff - 用户

Returns:

如果需要参与定期修改密码，返回ture,如果不需要，则返回false