ApiBoot Security Oauth 多模式示例更新

Author: hengboy

api-boot-samples/api-boot-sample-security-oauth-jwt/pom.xml

@@ -36,6 +36,11 @@
             <groupId>org.minbox.framework</groupId>
             <artifactId>api-boot-starter-mybatis-enhance</artifactId>
         </dependency>
+
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-redis</artifactId>
+        </dependency>
     </dependencies>
     <!--ApiBoot版本依赖-->
     <dependencyManagement>

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/ApiBootSecurityOauthApplication.java

@@ -3,8 +3,11 @@
 import org.minbox.framework.api.boot.common.model.ApiBootResult;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.CommandLineRunner;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.data.redis.connection.RedisConnectionFactory;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RestController;

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/DisableDefaultUserDetails.java

@@ -0,0 +1,89 @@
+/*
+ * Copyright [2019] [恒宇少年 - 于起宇]
+ *
+ *      Licensed under the Apache License, Version 2.0 (the "License");
+ *      you may not use this file except in compliance with the License.
+ *      You may obtain a copy of the License at
+ *
+ *          http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *      Unless required by applicable law or agreed to in writing, software
+ *      distributed under the License is distributed on an "AS IS" BASIS,
+ *      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *      See the License for the specific language governing permissions and
+ *      limitations under the License.
+ *
+ */
+
+package org.minbox.framework.api.boot.sample;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
+
+import java.util.ArrayList;
+import java.util.Collection;
+
+/**
+ * @author：恒宇少年 - 于起宇
+ * <p>
+ * DateTime：2019-07-13 09:27
+ * Blog：http://blog.yuqiyu.com
+ * WebSite：http://www.jianshu.com/u/092df3f77bca
+ * Gitee：https://gitee.com/hengboy
+ * GitHub：https://github.com/hengboy
+ */
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+public class DisableDefaultUserDetails implements UserDetails {
+
+    private String username;
+    private String password;
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return new ArrayList() {
+            {
+                add((GrantedAuthority) () -> "ROLE_USER");
+            }
+        };
+    }
+
+    /**
+     * 示例密码使用123456
+     *
+     * @return
+     */
+    @Override
+    public String getPassword() {
+        return password;
+    }
+
+    @Override
+    public String getUsername() {
+        return username;
+    }
+
+    @Override
+    public boolean isAccountNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isAccountNonLocked() {
+        return true;
+    }
+
+    @Override
+    public boolean isCredentialsNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isEnabled() {
+        return true;
+    }
+}

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/DisableDefaultUserTableStoreDelegate.java

@@ -4,11 +4,13 @@
 import lombok.Data;
 import lombok.NoArgsConstructor;
 import org.minbox.framework.api.boot.plugin.security.delegate.ApiBootStoreDelegate;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.core.userdetails.UsernameNotFoundException;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.stereotype.Component;
+import org.springframework.util.ObjectUtils;
 
 import java.util.ArrayList;
 import java.util.Collection;
@@ -29,18 +31,8 @@
 @Component
 public class DisableDefaultUserTableStoreDelegate implements ApiBootStoreDelegate {
 
-    /**
-     * 用户列表示例
-     * 从该集合内读取用户信息
-     * 可以使用集合内的用户获取access_token
-     */
-    static List<String> users = new ArrayList() {
-        {
-            add("api-boot");
-            add("hengboy");
-            add("yuqiyu");
-        }
-    };
+    @Autowired
+    private SystemUserMapper systemUserMapper;
 
     /**
      * 根据用户名查询用户信息
@@ -51,60 +43,10 @@ public class DisableDefaultUserTableStoreDelegate implements ApiBootStoreDelegat
      */
     @Override
     public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
-        if (!users.contains(username)) {
+        SystemUser user = systemUserMapper.findByUserName(username);
+        if (ObjectUtils.isEmpty(user)) {
             throw new UsernameNotFoundException("用户：" + username + "不存在");
         }
-        return new DisableDefaultUserDetails(username);
-    }
-
-    @Data
-    @AllArgsConstructor
-    @NoArgsConstructor
-    class DisableDefaultUserDetails implements UserDetails {
-        private String username;
-
-        @Override
-        public Collection<? extends GrantedAuthority> getAuthorities() {
-            return new ArrayList() {
-                {
-                    add((GrantedAuthority) () -> "ROLE_USER");
-                }
-            };
-        }
-
-        /**
-         * 示例密码使用123456
-         *
-         * @return
-         */
-        @Override
-        public String getPassword() {
-            return new BCryptPasswordEncoder().encode("123456");
-        }
-
-        @Override
-        public String getUsername() {
-            return username;
-        }
-
-        @Override
-        public boolean isAccountNonExpired() {
-            return true;
-        }
-
-        @Override
-        public boolean isAccountNonLocked() {
-            return true;
-        }
-
-        @Override
-        public boolean isCredentialsNonExpired() {
-            return true;
-        }
-
-        @Override
-        public boolean isEnabled() {
-            return true;
-        }
+        return new DisableDefaultUserDetails(user.getUserName(), user.getPassword());
     }
 }

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/SystemUser.java

@@ -0,0 +1,74 @@
+/*
+ * Copyright [2019] [恒宇少年 - 于起宇]
+ *
+ *      Licensed under the Apache License, Version 2.0 (the "License");
+ *      you may not use this file except in compliance with the License.
+ *      You may obtain a copy of the License at
+ *
+ *          http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *      Unless required by applicable law or agreed to in writing, software
+ *      distributed under the License is distributed on an "AS IS" BASIS,
+ *      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *      See the License for the specific language governing permissions and
+ *      limitations under the License.
+ *
+ */
+
+package org.minbox.framework.api.boot.sample;
+
+import com.gitee.hengboy.mybatis.enhance.common.annotation.Column;
+import com.gitee.hengboy.mybatis.enhance.common.annotation.Id;
+import com.gitee.hengboy.mybatis.enhance.common.annotation.Table;
+import com.gitee.hengboy.mybatis.enhance.common.enums.KeyGeneratorTypeEnum;
+import lombok.Data;
+
+import java.io.Serializable;
+import java.sql.Timestamp;
+
+/**
+ * 系统用户信息表
+ * @author ApiBoot Mybatis Enhance Codegen
+ */
+@Data
+@Table(name = "iot_system_user")
+public class SystemUser implements Serializable {
+
+    /**
+     * 主键
+     */
+    @Id(generatorType = KeyGeneratorTypeEnum.UUID)
+    @Column(name = "SU_ID")
+    private String id;
+    /**
+     * 用户名
+     */
+    @Column(name = "SU_USER_NAME")
+    private String userName;
+    /**
+     * 用户昵称
+     */
+    @Column(name = "SU_NICK_NAME")
+    private String nickName;
+    /**
+     * 用户密码
+     */
+    @Column(name = "SU_PASSWORD")
+    private String password;
+    /**
+     * 用户状态，1：正常，0：冻结，-1：已删除
+     */
+    @Column(name = "SU_STATUS")
+    private Integer status = 1;
+    /**
+     * 创建时间
+     */
+    @Column(name = "SU_CREATE_TIME",insertable = false)
+    private Timestamp createTime;
+    /**
+     * 备注信息
+     */
+    @Column(name = "SU_MARK")
+    private String mark;
+}
+

api-boot-samples/api-boot-sample-mybatis-enhance/src/main/java/org/minbox/framework/api/boot/sample/mybatis/enhance/UserMapper.java renamed to api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/SystemUserMapper.java

@@ -15,18 +15,20 @@
  *
  */
 
-package org.minbox.framework.api.boot.sample.mybatis.enhance;
+package org.minbox.framework.api.boot.sample;
 
 import com.gitee.hengboy.mybatis.enhance.mapper.EnhanceMapper;
 
 /**
  * @author：恒宇少年 - 于起宇
  * <p>
- * DateTime：2019-04-26 16:16
+ * DateTime：2019-07-12 16:14
  * Blog：http://blog.yuqiyu.com
  * WebSite：http://www.jianshu.com/u/092df3f77bca
  * Gitee：https://gitee.com/hengboy
  * GitHub：https://github.com/hengboy
  */
-public interface UserMapper extends EnhanceMapper<UserEntity, String> {
+public interface SystemUserMapper extends EnhanceMapper<SystemUser, String> {
+
+    SystemUser findByUserName(String userName);
 }

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/java/org/minbox/framework/api/boot/sample/SystemUserService.java

@@ -0,0 +1,41 @@
+/*
+ * Copyright [2019] [恒宇少年 - 于起宇]
+ *
+ *      Licensed under the Apache License, Version 2.0 (the "License");
+ *      you may not use this file except in compliance with the License.
+ *      You may obtain a copy of the License at
+ *
+ *          http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *      Unless required by applicable law or agreed to in writing, software
+ *      distributed under the License is distributed on an "AS IS" BASIS,
+ *      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *      See the License for the specific language governing permissions and
+ *      limitations under the License.
+ *
+ */
+
+package org.minbox.framework.api.boot.sample;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Service;
+
+/**
+ * @author：恒宇少年 - 于起宇
+ * <p>
+ * DateTime：2019-07-13 09:16
+ * Blog：http://blog.yuqiyu.com
+ * WebSite：http://www.jianshu.com/u/092df3f77bca
+ * Gitee：https://gitee.com/hengboy
+ * GitHub：https://github.com/hengboy
+ */
+@Service
+public class SystemUserService {
+
+    @Autowired
+    private SystemUserMapper systemUserMapper;
+
+    public SystemUser findByUserName(String userName) {
+        return systemUserMapper.findByUserName(userName);
+    }
+}

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/resources/application-jdbc.yml

@@ -0,0 +1,9 @@
+api:
+  boot:
+    security:
+      away: jdbc
+      enable-default-store-delegate: false
+    oauth:
+      away: jdbc
+      jwt:
+        enable: true

api-boot-samples/api-boot-sample-security-oauth-jwt/src/main/resources/application-memory.yml

@@ -0,0 +1,19 @@
+api:
+  boot:
+    security:
+      away: memory
+      users:
+        - username: hengboy
+          password: 123456
+    oauth:
+      away: memory
+      jwt:
+        enable: true
+      # 配置多客户端
+      clients:
+        # 客户端test基本配置
+        - client-id: test
+          client-secret: 123456
+        # 客户端admin基本配置
+        - client-id: admin
+          client-secret: 123456