用户token

pom.xml

@@ -73,6 +73,11 @@
 			<artifactId>mysql-connector-java</artifactId>
 			<scope>runtime</scope>
 		</dependency>
+		<!-- redis -->
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-data-redis</artifactId>
+		</dependency>
 		<!-- lombok -->
 		<dependency>
 			<groupId>org.projectlombok</groupId>
@@ -94,6 +99,11 @@
 		<!-- commons -->
 		<dependency>
 			<groupId>org.apache.commons</groupId>
+			<artifactId>commons-io</artifactId>
+			<version>1.3.2</version>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.commons</groupId>
 			<artifactId>commons-lang3</artifactId>
 			<version>3.4</version>
 		</dependency>
@@ -109,7 +119,12 @@
 			<groupId>org.apache.httpcomponents</groupId>
 			<artifactId>httpmime</artifactId>
 		</dependency>
-
+		<!-- json -->
+		<dependency>
+			<groupId>com.alibaba</groupId>
+			<artifactId>fastjson</artifactId>
+			<version>1.2.45</version>
+		</dependency>
 	</dependencies>
 
 	<build>

src/main/java/com/yingying/tourist/business/BusinessConstant.java

@@ -5,6 +5,8 @@ import java.util.Map;
 
 public class BusinessConstant {
 
+    public static final String COOKIEDOMAIN = "tourist.jituan.com";
+
     public enum Identity{
         A("A","自然的崇拜者"), B("B","洒脱的冒险家"), C("C","文化的朝圣者"),D("D","心灵的按摩师");
 
@@ -26,7 +28,7 @@ public class BusinessConstant {
         }
     }
 
-    public static Map<Integer, String> describeMap = new HashMap<>(16);
+    public static Map<Integer, String> describeMap = new HashMap<>(16,1);
     static {
         describeMap.put(1,"在山西挖煤挖到300000斤");
         describeMap.put(2,"做环卫工打扫400个公厕坑位");

src/main/java/com/yingying/tourist/common/UrlUtils.java

@@ -0,0 +1,117 @@
+package com.yingying.tourist.common;
+
+import org.apache.http.NameValuePair;
+import org.apache.http.client.entity.UrlEncodedFormEntity;
+import org.apache.http.message.BasicNameValuePair;
+import org.apache.http.util.EntityUtils;
+
+import javax.servlet.http.HttpServletRequest;
+import java.io.BufferedReader;
+import java.io.IOException;
+import java.util.ArrayList;
+import java.util.Enumeration;
+import java.util.List;
+import java.util.Map;
+import java.util.Map.Entry;
+
+
+public class UrlUtils {
+
+	public static String buildUrlNormal(String url,Map<String,String> params) throws Exception{
+		try {
+			StringBuilder sb = new StringBuilder();
+			sb.append(url);
+			if (params != null && !params.isEmpty()) {
+				sb.append("?");
+				for (Entry<String, String> entry : params.entrySet()) {
+					String key = entry.getKey();
+					String value = entry.getValue();
+					sb.append(key);
+					sb.append("=");
+					sb.append(value);
+					sb.append("&");
+				}
+			}
+			return sb.toString();
+		}catch (Exception e) {
+			e.printStackTrace();
+			throw e;
+		}
+	}
+	
+	public static String buildUrl(String url,Map<String,String> params) throws Exception{
+		try {
+			StringBuilder sb = new StringBuilder();
+			sb.append(url);
+			if (params != null && !params.isEmpty()) {
+				sb.append("?");
+				List<NameValuePair> nameValuePairs = new ArrayList<NameValuePair>();
+				for (Entry<String, String> entry : params.entrySet()) {
+					String key = entry.getKey();
+					String value = entry.getValue();
+					nameValuePairs.add(new BasicNameValuePair(key, value));
+				}
+				sb.append(EntityUtils.toString(new UrlEncodedFormEntity(
+						nameValuePairs)));
+			}
+			return sb.toString();
+		}catch (Exception e) {
+			e.printStackTrace();
+			throw e;
+		}
+	}
+	
+	public static String buildParams(Map<String,String> params) throws Exception{
+		try {
+			if (params != null && !params.isEmpty()) {
+				List<NameValuePair> nameValuePairs = new ArrayList<NameValuePair>();
+				for (Entry<String, String> entry : params.entrySet()) {
+					String key = entry.getKey();
+					String value = entry.getValue();
+					nameValuePairs.add(new BasicNameValuePair(key, value));
+				}
+				return EntityUtils.toString(new UrlEncodedFormEntity(
+						nameValuePairs));
+			}
+			return "";
+		}catch (Exception e) {
+			e.printStackTrace();
+			throw e;
+		}
+	}
+	
+	public static String getRequestPayload(HttpServletRequest req) {
+		StringBuilder sb = new StringBuilder();
+		if (req.getContentType() != null && req.getContentType().contains("application/json")) {
+			try {
+				BufferedReader reader = req.getReader();
+				char[] buff = new char[1024];
+				int len;
+				while ((len = reader.read(buff)) != -1) {
+					sb.append(buff, 0, len);
+				}
+			} catch (IOException e) {
+				e.printStackTrace();
+			}
+		}
+		return sb.toString();
+	}
+	
+	@SuppressWarnings("rawtypes")
+	public static String getRequestParams(HttpServletRequest req) {
+		StringBuilder sb = new StringBuilder();
+		Enumeration parameterNames = req.getParameterNames();
+		while (parameterNames.hasMoreElements()) {
+			String name = (String) parameterNames.nextElement();
+			String[] values = req.getParameterValues(name);
+			sb.append(name).append("=");
+			if (values != null) {
+				for (String v : values) {
+					sb.append(v).append("&");
+				}
+			}
+		}
+		return sb.toString();
+	}
+	
+}

src/main/java/com/yingying/tourist/request/HttpServletRequestReplacedFilter.java

@@ -0,0 +1,97 @@
+package com.yingying.tourist.request;
+
+import org.apache.commons.io.IOUtils;
+import org.springframework.core.annotation.Order;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.*;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletRequestWrapper;
+import java.io.BufferedReader;
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.InputStreamReader;
+
+
+/**
+ * request.getInputStream()/getReader 只能获取一次的问题
+ * 
+ * @author sks
+ *
+ */
+@Component
+@Order(1)
+@WebFilter(filterName = "HttpServletRequestReplacedFilter", urlPatterns = "/*")
+public class HttpServletRequestReplacedFilter implements Filter {
+
+	@Override
+	public void destroy() {
+		// TODO Auto-generated method stub
+
+	}
+
+	@Override
+	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+		ServletRequest requestWrapper = null;
+		if (request instanceof HttpServletRequest) {
+			String contentType = request.getContentType();
+			if (contentType != null && contentType.contains("application/json")) {
+				requestWrapper = new BodyReaderHttpServletRequestWrapper((HttpServletRequest) request);
+			}
+		}
+		if (null == requestWrapper) {
+			chain.doFilter(request, response);
+		} else {
+			chain.doFilter(requestWrapper, response);
+		}
+	}
+
+	@Override
+	public void init(FilterConfig arg0) throws ServletException {
+		// TODO Auto-generated method stub
+
+	}
+
+	private class BodyReaderHttpServletRequestWrapper extends HttpServletRequestWrapper {
+		private final byte[] rawData;
+
+		public BodyReaderHttpServletRequestWrapper(HttpServletRequest request) throws IOException {
+			super(request);
+			rawData = IOUtils.toByteArray(request.getReader());
+		}
+
+		@Override
+		public BufferedReader getReader() throws IOException {
+			return new BufferedReader(new InputStreamReader(getInputStream()));
+		}
+
+		@Override
+		public ServletInputStream getInputStream() throws IOException {
+			final ByteArrayInputStream bais = new ByteArrayInputStream(rawData);
+			return new ServletInputStream() {
+
+				@Override
+				public int read() throws IOException {
+					return bais.read();
+				}
+
+				@Override
+				public boolean isFinished() {
+					return bais.available() == 0;
+				}
+
+				@Override
+				public boolean isReady() {
+					return true;
+				}
+
+				@Override
+				public void setReadListener(ReadListener arg0) {
+					throw new RuntimeException("Not implemented");
+				}
+			};
+		}
+	}
+
+}

src/main/java/com/yingying/tourist/request/RequestSessionKey.java

@@ -0,0 +1,18 @@
+package com.yingying.tourist.request;
+
+public class RequestSessionKey {
+	private static ThreadLocal<String> sessionKeyHolder = new ThreadLocal<>();
+	
+	public static void putSessionKey(String sessionKey) {
+		sessionKeyHolder.set(sessionKey);
+	}
+	
+	public static String getSessionKey() {
+		return sessionKeyHolder.get();
+	}
+	
+	public static void removeKey() {
+		sessionKeyHolder.remove();
+	}
+	
+}

src/main/java/com/yingying/tourist/request/SessionAuthorization.java

@@ -0,0 +1,43 @@
+package com.yingying.tourist.request;
+
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.data.redis.core.RedisTemplate;
+import org.springframework.data.redis.core.ValueOperations;
+import org.springframework.stereotype.Component;
+
+import java.util.concurrent.TimeUnit;
+
+@Component
+public class SessionAuthorization implements InitializingBean {
+	public static final String SESSION_KEY_COOKIE_NAME = "jituan";
+	public static final int DEFAULT_SESSION_COOKIE_EXPIRE = 604800; // 604800 604800
+	public static final String SESSION_KEY_PREFIX = "WeChatToken";
+	
+	@Autowired
+	private RedisTemplate<Object, Object> redisTemplate;
+	
+	private static RedisTemplate<Object, Object> baseRedisTemplate;
+	
+	public static void setSession(String token) {
+		ValueOperations<Object, Object> ops = baseRedisTemplate.opsForValue();
+		ops.set(SESSION_KEY_PREFIX + ":" + RequestSessionKey.getSessionKey(), token, DEFAULT_SESSION_COOKIE_EXPIRE, TimeUnit.SECONDS);
+	}
+	
+	public static Integer getSession() {
+		ValueOperations<Object, Object> ops = baseRedisTemplate.opsForValue();
+		Integer sessionValue = (Integer) ops.get(SESSION_KEY_PREFIX + ":" + RequestSessionKey.getSessionKey());
+		
+		return sessionValue;
+	}
+	
+	public static void removeSession() {
+		baseRedisTemplate.delete(SESSION_KEY_PREFIX + ":" + RequestSessionKey.getSessionKey());
+	}
+	
+	@Override
+	public void afterPropertiesSet() throws Exception {
+		baseRedisTemplate = this.redisTemplate;
+	}
+	
+}

src/main/java/com/yingying/tourist/request/SessionFilter.java

@@ -0,0 +1,76 @@
+package com.yingying.tourist.request;
+
+import com.alibaba.fastjson.JSONObject;
+import com.yingying.tourist.business.BusinessConstant;
+import com.yingying.tourist.common.UrlUtils;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.core.annotation.Order;
+import org.springframework.stereotype.Component;
+import org.springframework.web.util.WebUtils;
+
+import javax.servlet.*;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.Cookie;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.util.UUID;
+
+@Component
+@Order(2)
+@WebFilter(filterName = "SessionFilter", urlPatterns = "/*")
+@Slf4j
+public class SessionFilter implements Filter {
+	
+	
+	@Override
+	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+		// 检查sessionId的cookie是否存在,不存在即为新连接，需要初始化sessionId到cookie中
+		checkRemoteSession((HttpServletRequest) request, (HttpServletResponse) response);
+		chain.doFilter(request, response);
+	}
+
+	@Override
+	public void destroy() {
+	}
+
+	@Override
+	public void init(FilterConfig filterConfig) throws ServletException {
+		
+	}
+
+	private void checkRemoteSession(HttpServletRequest request, HttpServletResponse response) {
+		String sessionKey = null;
+		String token = request.getParameter("token");
+		log.info("token------>>>first:[{}]",token);
+        if (StringUtils.isEmpty(token)) {
+            String payload = UrlUtils.getRequestPayload(request);
+            if (!StringUtils.isEmpty(payload)) {
+                JSONObject jsonObject = JSONObject.parseObject(payload);
+                token = jsonObject.getString("token");
+            }
+        }
+		
+		if (StringUtils.isNotEmpty(token)) {
+			sessionKey = token;
+			log.info("sessionKey------>>>second:[{}]",sessionKey);
+		} else {
+			Cookie sessionKeyCookie = WebUtils.getCookie(request, SessionAuthorization.SESSION_KEY_COOKIE_NAME);
+			if (sessionKeyCookie == null) {
+				sessionKey = UUID.randomUUID().toString();
+				sessionKeyCookie = new Cookie(SessionAuthorization.SESSION_KEY_COOKIE_NAME, sessionKey);
+			} else {
+				sessionKey = sessionKeyCookie.getValue();
+			}
+			log.info("sessionKey------>>>third:[{}]",sessionKey);
+			sessionKeyCookie.setPath("/");
+			sessionKeyCookie.setDomain(BusinessConstant.COOKIEDOMAIN);
+			sessionKeyCookie.setMaxAge(SessionAuthorization.DEFAULT_SESSION_COOKIE_EXPIRE);
+			sessionKeyCookie.setHttpOnly(true);
+			response.addCookie(sessionKeyCookie);
+		}
+		RequestSessionKey.putSessionKey(sessionKey);
+	}
+	
+}