增加登录验证接口

2024-08-01 14:01:17 +08:00 · 2024-08-01 14:01:17 +08:00 · 162633f003
commit 162633f003
parent 5df5346176
1 changed files with 22 additions and 4 deletions
--- a/src/main/java/dev/surl/surl/controller/UserController.kt
+++ b/src/main/java/dev/surl/surl/controller/UserController.kt
@ -1,14 +1,17 @@
 package dev.surl.surl.controller

+import dev.surl.surl.cfg.BaseConfig
 import dev.surl.surl.common.Msg
 import dev.surl.surl.common.enums.RedisStorage
-import dev.surl.surl.common.exception.UnauthorizedExcecption
+import dev.surl.surl.common.exception.UnauthorizedException
 import dev.surl.surl.dto.UserDto
 import dev.surl.surl.service.UserService
 import dev.surl.surl.util.JwtTokenUtil
 import dev.surl.surl.util.redis.RedisUtil
 import jakarta.validation.Valid
+import org.springframework.http.HttpHeaders
 import org.springframework.web.bind.annotation.RequestBody
+import org.springframework.web.bind.annotation.RequestHeader
 import org.springframework.web.bind.annotation.RequestMapping
 import org.springframework.web.bind.annotation.RequestMethod
 import org.springframework.web.bind.annotation.RestController
@ -18,7 +21,10 @@ import org.springframework.web.bind.annotation.RestController
 */
@RestController
 class UserController(
-    private val jwtTokenUtil: JwtTokenUtil, private val redisUtil: RedisUtil, private val userService: UserService
+    private val jwtTokenUtil: JwtTokenUtil,
+    private val redisUtil: RedisUtil,
+    private val userService: UserService,
+    private val cfg: BaseConfig
 ) {
    /**
     * 用户注册
@ -33,12 +39,24 @@ class UserController(
     */
    @RequestMapping(method = [RequestMethod.POST], path = ["/login"])
    fun login(@Valid @RequestBody(required = true) user: UserDto): Msg<Map<String, Any>> {
-        if(!userService.authUser(user)) {
-            throw UnauthorizedExcecption("invalid username or password")
+        if (!userService.authUser(user)) {
+            throw UnauthorizedException("invalid username or password")
        }
        val username = user.username!!
        val (expireAt, token) = jwtTokenUtil.getToken(username, emptyList())
        redisUtil.setString(username, token, RedisStorage.TOKEN)
        return Msg(code = 0, value = mapOf("expireAt" to expireAt, "token" to token))
    }
+
+    @RequestMapping(method = [RequestMethod.GET], path = ["/loginCheck"])
+    fun loginCheck(@RequestHeader header: HttpHeaders): Msg<Nothing> {
+        val token = header.getFirst("Authorization")?.substring(cfg.tokenHead.length)
+            ?: throw UnauthorizedException("token is empty")
+        val username = jwtTokenUtil.getUsernameFromToken(token)
+        val tokenInRedis = redisUtil.getString(username, RedisStorage.TOKEN)
+        if (tokenInRedis != token) {
+            throw UnauthorizedException("token is invalid")
+        }
+        return Msg()
+    }
 }