JwtUtil.java
3.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
package com.aigeo.util;
import com.aigeo.company.entity.User;
import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.io.Decoders;
import io.jsonwebtoken.security.Keys;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.stereotype.Component;
import javax.crypto.SecretKey;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;
import java.util.function.Function;
/**
* JWT工具类
*/
@Component
public class JwtUtil {
@Value("${jwt.secret:mySecretKeyForAigeoApplicationWhichIsLongEnough}")
private String secret;
@Value("${jwt.expiration:86400}")
private Long expiration;
/**
* 获取签名密钥
*/
private SecretKey getSigningKey() {
byte[] keyBytes = Decoders.BASE64.decode(secret);
return Keys.hmacShaKeyFor(keyBytes);
}
/**
* 从token中获取用户名
*/
public String getUsernameFromToken(String token) {
Claims claims = getClaimsFromToken(token);
return claims.getSubject();
}
/**
* 从token中提取用户名(别名方法)
*/
public String extractUsername(String token) {
return getUsernameFromToken(token);
}
/**
* 从token中获取Claims
*/
private Claims getClaimsFromToken(String token) {
return Jwts.parser()
.verifyWith(getSigningKey())
.build()
.parseSignedClaims(token)
.getPayload();
}
/**
* 检查token是否过期
*/
private boolean isTokenExpired(String token) {
Date expiredDate = getClaimsFromToken(token).getExpiration();
return expiredDate.before(new Date());
}
public Date extractExpiration(String token) {
return getClaimsFromToken(token).getExpiration();
}
public <T> T extractClaim(String token, Function<Claims, T> claimsResolver) {
final Claims claims = getClaimsFromToken(token);
return claimsResolver.apply(claims);
}
public String generateToken(User user) {
Map<String, Object> claims = new HashMap<>();
return createToken(claims, user.getUsername());
}
private String createToken(Map<String, Object> claims, String subject) {
return Jwts.builder()
.claims(claims)
.subject(subject)
.issuedAt(new Date(System.currentTimeMillis()))
.expiration(new Date(System.currentTimeMillis() + 1000 * 60 * 60 * 10))
.signWith(getSigningKey())
.compact();
}
public Boolean validateToken(String token, User user) {
if (user == null) {
return false;
}
final String username = getUsernameFromToken(token);
return (username.equals(user.getUsername()) && !isTokenExpired(token));
}
/**
* 获取过期时间(秒)
*/
public Long getExpirationTimeSeconds() {
return expiration;
}
/**
* 获取过期时间(毫秒)
*/
public Long getExpirationTime() {
return expiration * 1000;
}
}