Skip to content

李希虎 / ODM

Go to a project
Toggle navigation
Toggle navigation pinning
Switch branch/tag
c59e614d530fd55de0a850ec1e0af8f10b9bb99b.svn-base 5.09 KB
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 
/**
 * Copyright © 2015-2018 ODM All rights reserved.
 */
package com.thinkgem.jeesite.modules.sys.security;

import java.io.UnsupportedEncodingException;
import java.net.URLDecoder;

import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;

import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.IncorrectCredentialsException;
import org.apache.shiro.authc.UnknownAccountException;
import org.apache.shiro.web.util.WebUtils;
import org.springframework.stereotype.Service;

import com.thinkgem.jeesite.common.utils.StringUtils;
import com.thinkgem.jeesite.modules.sys.entity.User;
import com.thinkgem.jeesite.modules.sys.service.SystemService;

/**
 * 表单验证(包含验证码)过滤类
 * @author ThinkGem
 * @version 2014-5-19
 */
//@Service
public class FormAuthenticationFilter extends org.apache.shiro.web.filter.authc.FormAuthenticationFilter {

	public static final String DEFAULT_CAPTCHA_PARAM = "validateCode";
	public static final String DEFAULT_MOBILE_PARAM = "mobileLogin";
	public static final String DEFAULT_MESSAGE_PARAM = "message";

	private String captchaParam = DEFAULT_CAPTCHA_PARAM;
	private String mobileLoginParam = DEFAULT_MOBILE_PARAM;
	private String messageParam = DEFAULT_MESSAGE_PARAM;

//	private SystemService systemService = new SystemService();

	protected AuthenticationToken createToken(ServletRequest request, ServletResponse response) {
//		if (request.getParameter("GUID") != null && !"".equals(request.getParameter("GUID"))) {
//			String userId = request.getParameter("GUID");
//			String username = "";
//			try {
//				username = URLDecoder.decode(request.getParameter("NAME"), "UTF-8");
//			} catch (UnsupportedEncodingException e) {
//				e.printStackTrace();
//			}
//			//sysIndex?GUID=407450095cd34adf9fb67ab4906e7288&NAME=%25E7%25BD%2597%25E5%25A8%259C
//			System.out.println(username + "  "+ userId);
//			User user = systemService.getUser(userId);
//			boolean rememberMe = false;
//			String host = StringUtils.getRemoteAddr((HttpServletRequest)request);
//			boolean isGTY = true;
//			return new UsernamePasswordToken(username, "666".toCharArray(), host, rememberMe, isGTY);
//		} else {

			String username = getUsername(request);
			String password = getPassword(request);
			if (password==null){
				password = "";
			}
			boolean rememberMe = isRememberMe(request);
			String host = StringUtils.getRemoteAddr((HttpServletRequest)request);
			String captcha = getCaptcha(request);
			boolean mobile = isMobileLogin(request);
			return new UsernamePasswordToken(username, password.toCharArray(), rememberMe, host, captcha, mobile, "0");
//		}
	}
	
	public String getCaptchaParam() {
		return captchaParam;
	}

	protected String getCaptcha(ServletRequest request) {
		return WebUtils.getCleanParam(request, getCaptchaParam());
	}

	public String getMobileLoginParam() {
		return mobileLoginParam;
	}
	
	protected boolean isMobileLogin(ServletRequest request) {
        return WebUtils.isTrue(request, getMobileLoginParam());
    }
	
	public String getMessageParam() {
		return messageParam;
	}
	
//	protected boolean onAccessDenied(ServletRequest request, ServletResponse response) throws Exception {
//		if (isLoginRequest(request, response)) {
//            if (isLoginSubmission(request, response)) {
//                return executeLogin(request, response);
//            } else {
//                return true;
//            }
//        } else {
//            saveRequestAndRedirectToLogin(request, response);
//            return false;
//        }
//    }
//	
//	protected boolean isLoginSubmission(ServletRequest request, ServletResponse response) {
//        return (request instanceof HttpServletRequest);
//    }
	
	/**
	 * 登录成功之后跳转URL
	 */
	public String getSuccessUrl() {
		return super.getSuccessUrl();
	}
	
	@Override
	protected void issueSuccessRedirect(ServletRequest request,
			ServletResponse response) throws Exception {
//		Principal p = UserUtils.getPrincipal();
//		if (p != null && !p.isMobileLogin()){
			 WebUtils.issueRedirect(request, response, getSuccessUrl(), null, true);
			 System.out.println(getSuccessUrl());
//		}else{
//			super.issueSuccessRedirect(request, response);
//		}
	}

	/**
	 * 登录失败调用事件
	 */
	@Override
	protected boolean onLoginFailure(AuthenticationToken token,
			AuthenticationException e, ServletRequest request, ServletResponse response) {
		String className = e.getClass().getName(), message = "";
		if (IncorrectCredentialsException.class.getName().equals(className)
				|| UnknownAccountException.class.getName().equals(className)){
			message = "用户或密码错误, 请重试.";
		}
		else if (e.getMessage() != null && StringUtils.startsWith(e.getMessage(), "msg:")){
			message = StringUtils.replace(e.getMessage(), "msg:", "");
		}
		else{
			message = "系统出现点问题,请稍后再试!";
			e.printStackTrace(); // 输出到控制台
		}
        request.setAttribute(getFailureKeyAttribute(), className);
        request.setAttribute(getMessageParam(), message);
        return true;
	}
	
}