|
|
|
@ -114,139 +114,137 @@ public class SsoLogin {
|
|
|
|
* 单点登录
|
|
|
|
* 单点登录
|
|
|
|
* author xuhx
|
|
|
|
* author xuhx
|
|
|
|
* */
|
|
|
|
* */
|
|
|
|
@RequestMapping(value = "login",method = RequestMethod.GET,produces = "text/html;charset=utf-8")
|
|
|
|
@RequestMapping(value = "login", method = RequestMethod.GET, produces = "text/html;charset=utf-8")
|
|
|
|
@ResponseBody
|
|
|
|
@ResponseBody
|
|
|
|
public String login(HttpServletRequest request,HttpServletResponse response,String code,String state) throws Exception {
|
|
|
|
public String login(HttpServletRequest request, HttpServletResponse response, String code, String state) throws Exception {
|
|
|
|
String result = "";
|
|
|
|
String result = "";
|
|
|
|
CloseableHttpResponse responseNew = null;
|
|
|
|
CloseableHttpResponse responseNew = null;
|
|
|
|
CloseableHttpClient httpClient = null;
|
|
|
|
CloseableHttpClient httpClient = null;
|
|
|
|
JSONObject jsonResultToken = null;
|
|
|
|
JSONObject jsonResultToken = null;
|
|
|
|
String url=oidcAddress+tokenEendpoint;
|
|
|
|
String url = oidcAddress + tokenEendpoint;
|
|
|
|
String StringUrl = URLEncoder.encode(urlAddress, "GBK");
|
|
|
|
String StringUrl = URLEncoder.encode(urlAddress, "GBK");
|
|
|
|
Map paramMap = new HashMap();
|
|
|
|
Map paramMap = new HashMap();
|
|
|
|
paramMap.put("client_id",clientId);
|
|
|
|
paramMap.put("client_id", clientId);
|
|
|
|
paramMap.put("client_secret",clientSecret);
|
|
|
|
paramMap.put("client_secret", clientSecret);
|
|
|
|
paramMap.put("code",code);
|
|
|
|
paramMap.put("code", code);
|
|
|
|
paramMap.put("grant_type","authorization_code");
|
|
|
|
paramMap.put("grant_type", "authorization_code");
|
|
|
|
paramMap.put("redirect_uri",urlAddress);
|
|
|
|
paramMap.put("redirect_uri", urlAddress);
|
|
|
|
String param="client_id="+clientId+"&client_secret="+clientSecret+"&code="+code+"&grant_type=authorization_code&redirect_uri="+StringUrl;
|
|
|
|
String param = "client_id=" + clientId + "&client_secret=" + clientSecret + "&code=" + code + "&grant_type=authorization_code&redirect_uri=" + StringUrl;
|
|
|
|
String returnObject =doPost(url,paramMap,null);
|
|
|
|
String returnObject = doPost(url, paramMap, null);
|
|
|
|
String userName="";
|
|
|
|
String userName = "";
|
|
|
|
if(returnObject!=null){
|
|
|
|
if (returnObject != null) {
|
|
|
|
// 把json字符串转换成json对象
|
|
|
|
// 把json字符串转换成json对象
|
|
|
|
jsonResultToken = JSONObject.parseObject(returnObject);
|
|
|
|
jsonResultToken = JSONObject.parseObject(returnObject);
|
|
|
|
String accessToken=jsonResultToken.getString("access_token");
|
|
|
|
String accessToken = jsonResultToken.getString("access_token");
|
|
|
|
// 通过址默认配置创建一个httpClient实例
|
|
|
|
// 通过址默认配置创建一个httpClient实例
|
|
|
|
httpClient = HttpClients.createDefault();
|
|
|
|
httpClient = HttpClients.createDefault();
|
|
|
|
// 创建httpGet远程连接实例
|
|
|
|
// 创建httpGet远程连接实例
|
|
|
|
String userUrl=oidcAddress+userinfoEndpoint;
|
|
|
|
String userUrl = oidcAddress + userinfoEndpoint;
|
|
|
|
HttpGet httpGet = new HttpGet(userUrl);
|
|
|
|
HttpGet httpGet = new HttpGet(userUrl);
|
|
|
|
// 设置请求头信息,鉴权
|
|
|
|
// 设置请求头信息,鉴权
|
|
|
|
httpGet.setHeader("Authorization", "Bearer "+accessToken);
|
|
|
|
httpGet.setHeader("Authorization", "Bearer " + accessToken);
|
|
|
|
httpGet.setConfig(requestConfig);
|
|
|
|
httpGet.setConfig(requestConfig);
|
|
|
|
// 执行get请求得到返回对象
|
|
|
|
// 执行get请求得到返回对象
|
|
|
|
responseNew = httpClient.execute(httpGet);
|
|
|
|
responseNew = httpClient.execute(httpGet);
|
|
|
|
// 通过返回对象获取返回数据
|
|
|
|
// 通过返回对象获取返回数据
|
|
|
|
HttpEntity entity = responseNew.getEntity();
|
|
|
|
HttpEntity entity = responseNew.getEntity();
|
|
|
|
// 通过EntityUtils中的toString方法将结果转换为字符串
|
|
|
|
// 通过EntityUtils中的toString方法将结果转换为字符串
|
|
|
|
String returnResult = EntityUtils.toString(entity);
|
|
|
|
String returnResult = EntityUtils.toString(entity);
|
|
|
|
// 把json字符串转换成json对象
|
|
|
|
// 把json字符串转换成json对象
|
|
|
|
JSONObject jsonResult = JSONObject.parseObject(returnResult);
|
|
|
|
JSONObject jsonResult = JSONObject.parseObject(returnResult);
|
|
|
|
if(jsonResult!=null){
|
|
|
|
if (jsonResult != null) {
|
|
|
|
/*if((jsonResult.getString("username"))!=null&&!"".equals(jsonResult.getString("username"))) {
|
|
|
|
if ((jsonResult.getString("name")) != null && !"".equals(jsonResult.getString("name"))) {
|
|
|
|
userName=jsonResult.getString("username");
|
|
|
|
//接口返回的登录名为4位,我们系统为6位,接口登录名前追加两个0变成我们的6位
|
|
|
|
}*/
|
|
|
|
userName = "00" + jsonResult.getString("name");
|
|
|
|
if((jsonResult.getString("name"))!=null&&!"".equals(jsonResult.getString("name"))) {
|
|
|
|
//根据登录名获取用户(需要确保用户登录名唯一)
|
|
|
|
//接口返回的登录名为4位,我们系统为6位,接口登录名前追加两个0变成我们的6位
|
|
|
|
Power_UserVo user = powerUserService.selectByUserName(userName);
|
|
|
|
userName="00"+jsonResult.getString("name");
|
|
|
|
if (user != null) {
|
|
|
|
//根据登录名获取用户(需要确保用户登录名唯一)
|
|
|
|
String password = MD5.JM(Base64.decode(user.getUserPwd()));
|
|
|
|
Power_UserVo user = powerUserService.selectByUserName(userName);
|
|
|
|
if (password != null && !"".equals(password)) {
|
|
|
|
if (user != null) {
|
|
|
|
//加密(此部分代码来自FontController的getToken方法,用来获取token及相关操作)
|
|
|
|
String password = MD5.JM(Base64.decode(user.getUserPwd()));
|
|
|
|
String token = UUID.randomUUID().toString();
|
|
|
|
if (password != null && !"".equals(password)) {
|
|
|
|
List<Power_Menu> list = null;
|
|
|
|
//加密(此部分代码来自FontController的getToken方法,用来获取token及相关操作)
|
|
|
|
List<User_Dept_Menu> menuList = new ArrayList<>();
|
|
|
|
String token = UUID.randomUUID().toString();
|
|
|
|
Set<String> menus = new TreeSet<>();
|
|
|
|
List<Power_Menu> list = null;
|
|
|
|
if (user.getRoleId().equals(0) || user.getRoleId().equals(-100)) {
|
|
|
|
List<User_Dept_Menu> menuList = new ArrayList<>();
|
|
|
|
list = powerMenuService.queryAllPowerMenu(null, user.getRoleId());
|
|
|
|
Set<String> menus = new TreeSet<>();
|
|
|
|
} else {
|
|
|
|
if (user.getRoleId().equals(0) || user.getRoleId().equals(-100)) {
|
|
|
|
list = powerMenuService.selectUserAndRoleMenuListPower(user.getUserId(), null);
|
|
|
|
list = powerMenuService.queryAllPowerMenu(null,user.getRoleId());
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if (null != list && !list.isEmpty()) {
|
|
|
|
list = powerMenuService.selectUserAndRoleMenuListPower(user.getUserId(),null);
|
|
|
|
for (Power_Menu power_menu : list) {
|
|
|
|
}
|
|
|
|
User_Dept_Menu deptMenu = new User_Dept_Menu();
|
|
|
|
if(null != list && !list.isEmpty()){
|
|
|
|
String menuUrl = power_menu.getMenuUrl();
|
|
|
|
for (Power_Menu power_menu : list) {
|
|
|
|
if (StringUtils.isNotBlank(menuUrl)) {
|
|
|
|
User_Dept_Menu deptMenu = new User_Dept_Menu();
|
|
|
|
BeanUtils.copyProperties(power_menu, deptMenu);
|
|
|
|
String menuUrl = power_menu.getMenuUrl();
|
|
|
|
deptMenu.setMethodParent(power_menu.getParentId());
|
|
|
|
if (StringUtils.isNotBlank(menuUrl)) {
|
|
|
|
menuList.add(deptMenu);
|
|
|
|
BeanUtils.copyProperties(power_menu, deptMenu);
|
|
|
|
|
|
|
|
deptMenu.setMethodParent(power_menu.getParentId());
|
|
|
|
|
|
|
|
menuList.add(deptMenu);
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
if (StringUtils.isNotBlank(power_menu.getMethod())) {
|
|
|
|
|
|
|
|
menus.add(power_menu.getMenuUrl());
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
user.setMenuList(menuList);
|
|
|
|
if (StringUtils.isNotBlank(power_menu.getMethod())) {
|
|
|
|
user.setMenus(menus);
|
|
|
|
menus.add(power_menu.getMenuUrl());
|
|
|
|
|
|
|
|
|
|
|
|
//设置科室
|
|
|
|
|
|
|
|
StringBuilder powerDepts = new StringBuilder();
|
|
|
|
|
|
|
|
List<Power_Dept> powerDeptsList = power_deptService.selectByPrimaryKeys(user.getDeptId());
|
|
|
|
|
|
|
|
for(int j=0;j<powerDeptsList.size();j++){
|
|
|
|
|
|
|
|
if(j<powerDeptsList.size()-1){
|
|
|
|
|
|
|
|
powerDepts.append(powerDeptsList.get(j).getDeptName()).append(",");
|
|
|
|
|
|
|
|
}else{
|
|
|
|
|
|
|
|
powerDepts.append(powerDeptsList.get(j).getDeptName());
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
user.setRemark(powerDepts.toString());
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
user.setMenuList(menuList);
|
|
|
|
|
|
|
|
user.setMenus(menus);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
//设置科室
|
|
|
|
|
|
|
|
StringBuilder powerDepts = new StringBuilder();
|
|
|
|
|
|
|
|
List<Power_Dept> powerDeptsList = power_deptService.selectByPrimaryKeys(user.getDeptId());
|
|
|
|
|
|
|
|
for (int j = 0; j < powerDeptsList.size(); j++) {
|
|
|
|
|
|
|
|
if (j < powerDeptsList.size() - 1) {
|
|
|
|
|
|
|
|
powerDepts.append(powerDeptsList.get(j).getDeptName()).append(",");
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
|
|
|
powerDepts.append(powerDeptsList.get(j).getDeptName());
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
user.setRemark(powerDepts.toString());
|
|
|
|
//移除缓存
|
|
|
|
//移除缓存
|
|
|
|
/*CacheManager.removeCacheByObject(user);
|
|
|
|
/*CacheManager.removeCacheByObject(user);
|
|
|
|
CacheManager.putCache(date,new Cache(date,user,TOKEN_EXPIRE_TIME));*/
|
|
|
|
CacheManager.putCache(date,new Cache(date,user,TOKEN_EXPIRE_TIME));*/
|
|
|
|
ActionScopeUtils.setSessionAttribute("token",token,Integer.valueOf(String.valueOf(TOKEN_EXPIRE_TIME)));
|
|
|
|
ActionScopeUtils.setSessionAttribute("token", token, Integer.valueOf(String.valueOf(TOKEN_EXPIRE_TIME)));
|
|
|
|
ActionScopeUtils.setSessionAttribute("CURRENT_USER",user,Integer.valueOf(String.valueOf(TOKEN_EXPIRE_TIME)));
|
|
|
|
ActionScopeUtils.setSessionAttribute("CURRENT_USER", user, Integer.valueOf(String.valueOf(TOKEN_EXPIRE_TIME)));
|
|
|
|
CacheManager.putCache(token,new Cache(user,System.currentTimeMillis(),TOKEN_EXPIRE_TIME*1000));
|
|
|
|
CacheManager.putCache(token, new Cache(user, System.currentTimeMillis(), TOKEN_EXPIRE_TIME * 1000));
|
|
|
|
|
|
|
|
|
|
|
|
if (!"".equals(token)&&token!=null) {
|
|
|
|
if (!"".equals(token) && token != null) {
|
|
|
|
//返回跳转url
|
|
|
|
//返回跳转url
|
|
|
|
result="http://"+ip+":"+port+"/emr_medical_record/login?token=" + token + "&userName="+userName;
|
|
|
|
result = "http://" + ip + ":" + port + "/emr_medical_record/login?token=" + token + "&userName=" + userName;
|
|
|
|
//request.getRequestDispatcher(result).forward(request, response);
|
|
|
|
//request.getRequestDispatcher(result).forward(request, response);
|
|
|
|
response.sendRedirect(result);
|
|
|
|
response.sendRedirect(result);
|
|
|
|
} else {
|
|
|
|
|
|
|
|
result = "获取登录token失败,请检查数据!!";
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
|
|
|
result = "无法获取用户密码!!";
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
} else {
|
|
|
|
result = "登录用户不存在!!";
|
|
|
|
result = "获取登录token失败,请检查数据!!";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
|
|
|
result = "无法获取用户密码!!";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}else{
|
|
|
|
} else {
|
|
|
|
result = "SSO平台未成功返回用户信息!!";
|
|
|
|
result = "登录用户不存在!!";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
|
|
|
result = "SSO平台未成功返回用户信息!!";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return result;
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
@RequestMapping(value = "into",method = RequestMethod.GET,produces = "text/html;charset=utf-8")
|
|
|
|
return result;
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@RequestMapping(value = "into", method = RequestMethod.GET, produces = "text/html;charset=utf-8")
|
|
|
|
@ResponseBody
|
|
|
|
@ResponseBody
|
|
|
|
public void in(HttpServletRequest request, HttpServletResponse response){
|
|
|
|
public void in(HttpServletRequest request, HttpServletResponse response) {
|
|
|
|
//本项目中接收返回数据的地址
|
|
|
|
//本项目中接收返回数据的地址
|
|
|
|
String StringUrl = null;
|
|
|
|
String StringUrl = null;
|
|
|
|
try {
|
|
|
|
try {
|
|
|
|
StringUrl = URLEncoder.encode(urlAddress, "GBK");
|
|
|
|
StringUrl = URLEncoder.encode(urlAddress, "GBK");
|
|
|
|
try {
|
|
|
|
try {
|
|
|
|
response.sendRedirect(oidcAddress+authorizationEndpoint+"?client_id="+clientId+"&redirect_uri="+StringUrl+"&response_type=code&state="+1+"&scope=openid%20profile");
|
|
|
|
response.sendRedirect(oidcAddress + authorizationEndpoint + "?client_id=" + clientId + "&redirect_uri=" + StringUrl + "&response_type=code&state=" + 1 + "&scope=openid%20profile");
|
|
|
|
} catch (IOException e) {
|
|
|
|
} catch (IOException e) {
|
|
|
|
e.printStackTrace();
|
|
|
|
e.printStackTrace();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} catch (UnsupportedEncodingException e) {
|
|
|
|
} catch (UnsupportedEncodingException e) {
|
|
|
|
e.printStackTrace();
|
|
|
|
e.printStackTrace();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public static String doPost(String url, Map<String, Object> paramMap, Map<String, String> headerMap) {
|
|
|
|
public static String doPost(String url, Map<String, Object> paramMap, Map<String, String> headerMap) {
|
|
|
|
|
|
|
|
|
|
|
|
@ -268,7 +266,7 @@ public class SsoLogin {
|
|
|
|
// 为httpPost实例设置配置
|
|
|
|
// 为httpPost实例设置配置
|
|
|
|
//httpPost.setConfig(requestConfig);
|
|
|
|
//httpPost.setConfig(requestConfig);
|
|
|
|
// 设置请求头
|
|
|
|
// 设置请求头
|
|
|
|
if (headerMap == null){
|
|
|
|
if (headerMap == null) {
|
|
|
|
httpPost.addHeader("Content-Type", "application/x-www-form-urlencoded");// "application/json"
|
|
|
|
httpPost.addHeader("Content-Type", "application/x-www-form-urlencoded");// "application/json"
|
|
|
|
} else {
|
|
|
|
} else {
|
|
|
|
for (String key : headerMap.keySet()) {
|
|
|
|
for (String key : headerMap.keySet()) {
|
|
|
|
@ -329,9 +327,9 @@ public class SsoLogin {
|
|
|
|
* @MethodName sendMessage
|
|
|
|
* @MethodName sendMessage
|
|
|
|
* @Description: 获取用户信息
|
|
|
|
* @Description: 获取用户信息
|
|
|
|
*/
|
|
|
|
*/
|
|
|
|
@RequestMapping(value ="getUser",method = RequestMethod.GET)
|
|
|
|
@RequestMapping(value = "getUser", method = RequestMethod.GET)
|
|
|
|
@ResponseBody
|
|
|
|
@ResponseBody
|
|
|
|
public Power_UserVo sendMessage(String userName) throws Exception{
|
|
|
|
public Power_UserVo sendMessage(String userName) throws Exception {
|
|
|
|
return powerUserService.selectByUserName(userName);
|
|
|
|
return powerUserService.selectByUserName(userName);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
linjj
1 year ago