Strona główna Odkrywaj Pomoc
Zaloguj się
lql
/
Bjjs-Cloud
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 179062e6e5
Gałęzie Tagi
Bjjs-Cloud
/
ruoyi-auth
/
src
/
main
/
java
/
com
/
ruoyi
/
auth
/
controller
/
TokenController.java

TokenController.java 2.3 KB
Historia Czysty

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. package com.ruoyi.auth.controller;
    2. 

  2. 

  3. import java.util.Map;
    4. 

  4. import org.springframework.beans.factory.annotation.Autowired;
    5. 

  5. import org.springframework.http.HttpHeaders;
    6. 

  6. import org.springframework.security.oauth2.common.OAuth2AccessToken;
    7. 

  7. import org.springframework.security.oauth2.common.OAuth2RefreshToken;
    8. 

  8. import org.springframework.security.oauth2.provider.token.TokenStore;
    9. 

  9. import org.springframework.web.bind.annotation.DeleteMapping;
    10. 

  10. import org.springframework.web.bind.annotation.RequestHeader;
    11. 

  11. import org.springframework.web.bind.annotation.RequestMapping;
    12. 

  12. import org.springframework.web.bind.annotation.RestController;
    13. 

  13. import com.ruoyi.common.core.constant.Constants;
    14. 

  14. import com.ruoyi.common.core.constant.SecurityConstants;
    15. 

  15. import com.ruoyi.common.core.domain.R;
    16. 

  16. import com.ruoyi.common.core.utils.StringUtils;
    17. 

  17. import com.ruoyi.system.api.RemoteLogService;
    18. 

  18. 

  19. /**
    20. 

  20.  * token 控制
    21. 

  21.  * 
    22. 

  22.  * @author ruoyi
    23. 

  23.  */
    24. 

  24. @RestController
    25. 

  25. @RequestMapping("/token")
    26. 

  26. public class TokenController
    27. 

  27. {
    28. 

  28.     @Autowired
    29. 

  29.     private TokenStore tokenStore;
    30. 

  30. 

  31.     @Autowired
    32. 

  32.     private RemoteLogService remoteLogService;
    33. 

  33. 

  34.     @DeleteMapping("/logout")
    35. 

  35.     public R<?> logout(@RequestHeader(value = HttpHeaders.AUTHORIZATION, required = false) String authHeader)
    36. 

  36.     {
    37. 

  37.         if (StringUtils.isEmpty(authHeader))
    38. 

  38.         {
    39. 

  39.             return R.ok();
    40. 

  40.         }
    41. 

  41. 

  42.         String tokenValue = authHeader.replace(OAuth2AccessToken.BEARER_TYPE, StringUtils.EMPTY).trim();
    43. 

  43.         OAuth2AccessToken accessToken = tokenStore.readAccessToken(tokenValue);
    44. 

  44.         if (accessToken == null || StringUtils.isEmpty(accessToken.getValue()))
    45. 

  45.         {
    46. 

  46.             return R.ok();
    47. 

  47.         }
    48. 

  48. 

  49.         // 清空 access token
    50. 

  50.         tokenStore.removeAccessToken(accessToken);
    51. 

  51. 

  52.         // 清空 refresh token
    53. 

  53.         OAuth2RefreshToken refreshToken = accessToken.getRefreshToken();
    54. 

  54.         tokenStore.removeRefreshToken(refreshToken);
    55. 

  55.         Map<String, ?> map = accessToken.getAdditionalInformation();
    56. 

  56.         if (map.containsKey(SecurityConstants.DETAILS_USERNAME))
    57. 

  57.         {
    58. 

  58.             String username = (String) map.get(SecurityConstants.DETAILS_USERNAME);
    59. 

  59.             // 记录用户退出日志
    60. 

  60.             remoteLogService.saveLogininfor(username, Constants.LOGOUT, "退出成功");
    61. 

  61.         }
    62. 

  62.         return R.ok();
    63. 

  63.     }
    64. 

  64. }
    65.