jwt编码后校验

spring5-admin/src/main/resources/application.yml

@@ -20,5 +20,10 @@ spring:
     password: huojutech!23
   
 password:
-  salt: k12829WhsvnEV$#03b2n          
+  salt: k12829WhsvnEV$#03b2n     
+
+auth:
+  client:
+    secret: jVCIWXeV7BXuxe59
+       
   

spring5-auth/spring5-auth-client/src/main/java/com/yaozhitech/spring5/intercept/OkHttpTokenInterceptor.java

@@ -3,6 +3,8 @@ package com.yaozhitech.spring5.intercept;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Configuration;
 
+import com.yaozhitech.spring5.utils.JwtUtils;
+
 import feign.RequestInterceptor;
 import feign.RequestTemplate;
 
@@ -11,10 +13,13 @@ public class OkHttpTokenInterceptor implements RequestInterceptor{
 
 	@Value("${spring.application.name}")
     private String applicationName;
+	
+	@Value("${auth.client.secret}")
+    private String clientSecret;
 
 	@Override
 	public void apply(RequestTemplate template) {
-		template.header("x-auth-client", applicationName);
+		template.header("x-auth-client", JwtUtils.sign(applicationName + "." + clientSecret, JwtUtils.generateSalt(), 3600));
 	}
 
 }

spring5-auth/spring5-auth-client/src/main/java/com/yaozhitech/spring5/intercept/ServiceAuthRestInterceptor.java

@@ -15,12 +15,16 @@ import com.alibaba.nacos.client.utils.IPUtil;
 import com.yaozhitech.spring5.common.exception.auth.ClientForbiddenException;
 import com.yaozhitech.spring5.common.util.ClientUtil;
 import com.yaozhitech.spring5.config.ServiceAuthConfig;
+import com.yaozhitech.spring5.utils.JwtUtils;
+
+import lombok.extern.slf4j.Slf4j;
 
 /**
  * 微服务之间的认证
  * @author EDZ
  *
  */
+@Slf4j
 public class ServiceAuthRestInterceptor extends HandlerInterceptorAdapter {
     private Logger logger = LoggerFactory.getLogger(ServiceAuthRestInterceptor.class);
 
@@ -49,16 +53,25 @@ public class ServiceAuthRestInterceptor extends HandlerInterceptorAdapter {
 //          return super.preHandle(request, response, handler);
 //      }
 
-      String token = request.getHeader("x-auth-client");
-      logger.info(token);
+		String token = request.getHeader("x-auth-client");
+		logger.info(token);
+		
+		if (token.equals("gateway")) {
+			return super.preHandle(request, response, handler);
+		}
+
+		try {
+			String uniqueName = JwtUtils.getUsername(token);
+			for (String client : allowedClient) {
+				if (client.equals(uniqueName.split("\\.")[0])) {
+					return super.preHandle(request, response, handler);
+				}
+			}
+		} catch (Exception e) {
+			log.error(e.getMessage(), e);
+			throw new ClientForbiddenException("Client verfy error");
+		}
       
-//      IJWTInfo infoFromToken = serviceAuthUtil.getInfoFromToken(token);
-      String uniqueName = token;
-      for(String client:allowedClient){
-          if(client.equals(uniqueName)){
-              return super.preHandle(request, response, handler);
-          }
-      }
       throw new ClientForbiddenException("Client is Forbidden!");
   }
 }

spring5-order/src/main/resources/application.yml

@@ -16,4 +16,7 @@ spring:
   
 password:
   salt: k12829WhsvnEV$#03b2n          
-  
+  
+auth:
+  client:
+    secret: qx4MXVR9SJm31q2C