登录Token失效时间支持分环境配置，dev,test环境有效期1年，prod环境12小时

Signed-off-by: TanYibin <5491541@qq.com>

登录Token失效时间支持分环境配置，dev,test环境有效期1年，prod环境12小时
Signed-off-by: TanYibin <5491541@qq.com>
谭毅彬
1 parent 0d6f8627
Showing 11 changed files with 98 additions and 41 deletions
ant-design-vue-jeecg/src/components/layouts/UserLayout.vue
ant-design-vue-jeecg/src/components/page/GlobalLayout.vue
ant-design-vue-jeecg/src/components/tools/Logo.vue
ant-design-vue-jeecg/src/components/tools/UserMenu.vue
huaheng-wms-core/src/main/java/org/jeecg/modules/cas/controller/CasClientController.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/controller/LoginController.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/controller/ThirdLoginController.java
huaheng-wms-core/src/main/java/org/jeecg/utils/HuahengJwtUtil.java
huaheng-wms-core/src/main/resources/application-dev.yml
huaheng-wms-core/src/main/resources/application-prod.yml
huaheng-wms-core/src/main/resources/application-test.yml
@@ -74,7 +74,7 @@ export default {
       .header {
         height: 59px;
         line-height: 59px;
-        background-color: #111;
+        background-color: #b71b2b;
  
         .badge {
           position: absolute;
@@ -354,10 +354,10 @@ body {
         }
  
         .avatar {
-          margin: 20px 10px 20px 0;
+          margin: 18px 0px 17px 0px;
           color: #1890ff;
           background: hsla(0, 0%, 100%, .85);
-          vertical-align: middle;
+          vertical-align: top;
         }
  
         .icon {
@@ -645,7 +645,7 @@ body {
   padding: 4px 0;
  
   .ant-dropdown-menu-item {
-    width: 126px;
+    width: auto;
   }
  
   .ant-dropdown-menu-item > .anticon:first-child,
@@ -60,7 +60,7 @@ export default {
   }
  
   &.light .logo {
-    background-color: #111;
+    background-color: #b71b2b;
   }
 }
 </style>
 \ No newline at end of file
@@ -36,8 +36,8 @@
     <header-notice class="action"/>
     <a-dropdown>
       <span class="action action-full ant-dropdown-link user-dropdown-menu">
-        <!-- <a-avatar class="avatar" size="small" :src="getAvatar()"/> -->
-        <span v-if="isDesktop()">欢迎您，{{ nickname() }}</span>
+        <a-avatar class="avatar" size="small" :src="getAvatar()"/>
+        <span v-if="isDesktop()" style="padding: 0px 0px 0px 10px;">欢迎您，{{ nickname() }}</span>
       </span>
       <a-menu slot="overlay" class="user-dropdown-menu-wrapper">
         <!-- <a-menu-item key="0">
@@ -5,15 +5,9 @@ import java.util.List;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
  
-import cn.hutool.crypto.SecureUtil;
-import cn.monitor4all.logRecord.annotation.OperationLog;
-
 import org.apache.commons.lang.StringUtils;
 import org.jeecg.common.api.vo.Result;
-import org.jeecg.common.constant.CacheConstant;
 import org.jeecg.common.constant.CommonConstant;
-import org.jeecg.utils.HuahengJwtUtil;
-import org.jeecg.common.system.vo.LoginUser;
 import org.jeecg.common.util.RedisUtil;
 import org.jeecg.modules.cas.util.CASServiceUtil;
 import org.jeecg.modules.cas.util.XmlUtils;
@@ -21,7 +15,7 @@ import org.jeecg.modules.system.entity.SysDepart;
 import org.jeecg.modules.system.entity.SysUser;
 import org.jeecg.modules.system.service.ISysDepartService;
 import org.jeecg.modules.system.service.ISysUserService;
-import org.springframework.beans.BeanUtils;
+import org.jeecg.utils.HuahengJwtUtil;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.http.HttpEntity;
@@ -45,11 +39,21 @@ import lombok.extern.slf4j.Slf4j;
 @RestController
 @RequestMapping("/sys/cas/client")
 public class CasClientController {
+    
+    /** Token失效时间 */
+    private Long TOKEN_EXPIRE_TIME;
+
+    @Value("${system.token.expireTime}")
+    public void setExpireTime(String expireTime) {
+        TOKEN_EXPIRE_TIME = Long.parseLong(expireTime);
+    }
  
     @Autowired
     private ISysUserService sysUserService;
+
     @Autowired
     private ISysDepartService sysDepartService;
+
     @Autowired
     private RedisUtil redisUtil;
  
@@ -83,7 +87,7 @@ public class CasClientController {
             String token = HuahengJwtUtil.sign(sysUser.getUsername(), sysUser.getPassword());
             // 设置超时时间
             redisUtil.set(CommonConstant.PREFIX_USER_TOKEN + token, token);
-            redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, HuahengJwtUtil.EXPIRE_TIME / 1000);
+            redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, TOKEN_EXPIRE_TIME / 1000);
  
             // 获取用户部门信息
             JSONObject obj = new JSONObject();
@@ -50,6 +50,7 @@ import org.jeecg.utils.config.ApplicationConfig;
 import org.jeecg.utils.support.SystemRSA256Key;
 import org.springframework.beans.BeanUtils;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Bean;
 import org.springframework.core.io.DefaultResourceLoader;
 import org.springframework.core.io.ResourceLoader;
@@ -89,6 +90,15 @@ import lombok.extern.slf4j.Slf4j;
 @Api(tags = "用户登录")
 @Slf4j
 public class LoginController {
+
+    /** Token失效时间 */
+    private Long TOKEN_EXPIRE_TIME;
+
+    @Value("${system.token.expireTime}")
+    public void setExpireTime(String expireTime) {
+        TOKEN_EXPIRE_TIME = Long.parseLong(expireTime);
+    }
+
     @Autowired
     private ISysUserService sysUserService;
  
@@ -115,7 +125,7 @@ public class LoginController {
  
     @Autowired
     private HuahengRedisUtil huahengRedisUtil;
-    
+
     @Autowired
     private ApplicationConfig applicationConfig;
  
@@ -226,7 +236,7 @@ public class LoginController {
     private Result<JSONObject> checkSystemActivationCode() throws IOException {
         Result<JSONObject> result = new Result<JSONObject>();
         // 是否需要校验激活码
-        if(applicationConfig.getCheckSystemActivationCode() != null && !applicationConfig.getCheckSystemActivationCode()) {
+        if (applicationConfig.getCheckSystemActivationCode() != null && !applicationConfig.getCheckSystemActivationCode()) {
             return result;
         }
         FileInputStream inputStream = null;
@@ -312,7 +322,7 @@ public class LoginController {
         }
         return result;
     }
-    
+
     /**
      * 退出登录
      * @param  request
@@ -615,7 +625,7 @@ public class LoginController {
         String token = HuahengJwtUtil.sign(username, syspassword, warehouseCode, roles);
         // 设置token缓存有效时间
         redisUtil.set(CommonConstant.PREFIX_USER_TOKEN + token, token);
-        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, HuahengJwtUtil.EXPIRE_TIME / 1000);
+        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, TOKEN_EXPIRE_TIME / 1000);
         obj.put("token", token);
         obj.put("userInfo", sysUser);
         obj.put("sysAllDictItems", sysDictService.queryAllDictItems());
@@ -721,7 +731,7 @@ public class LoginController {
         String token = JwtUtil.sign(username, syspassword);
         // 设置超时时间
         redisUtil.set(CommonConstant.PREFIX_USER_TOKEN + token, token);
-        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, HuahengJwtUtil.EXPIRE_TIME / 1000);
+        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, TOKEN_EXPIRE_TIME / 1000);
  
         // token 信息
         obj.put("token", token);
 package org.jeecg.modules.system.controller;
  
-import com.alibaba.fastjson.JSONObject;
-import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
-import com.xkcoding.justauth.AuthRequestFactory;
-import io.swagger.annotations.ApiOperation;
-import lombok.extern.slf4j.Slf4j;
-import me.zhyd.oauth.model.AuthCallback;
-import me.zhyd.oauth.model.AuthResponse;
-import me.zhyd.oauth.request.AuthRequest;
-import me.zhyd.oauth.utils.AuthStateUtils;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.List;
+
+import javax.servlet.http.HttpServletResponse;
+
 import org.jeecg.common.api.vo.Result;
 import org.jeecg.common.constant.CommonConstant;
-import org.jeecg.utils.HuahengJwtUtil;
 import org.jeecg.common.util.PasswordUtil;
 import org.jeecg.common.util.RedisUtil;
 import org.jeecg.common.util.RestUtil;
@@ -26,16 +23,30 @@ import org.jeecg.modules.system.service.ISysThirdAccountService;
 import org.jeecg.modules.system.service.ISysUserService;
 import org.jeecg.modules.system.service.impl.ThirdAppDingtalkServiceImpl;
 import org.jeecg.modules.system.service.impl.ThirdAppWechatEnterpriseServiceImpl;
+import org.jeecg.utils.HuahengJwtUtil;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.ModelMap;
-import org.springframework.web.bind.annotation.*;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.ResponseBody;
  
-import javax.servlet.http.HttpServletResponse;
-import java.io.IOException;
-import java.io.UnsupportedEncodingException;
-import java.net.URLEncoder;
-import java.util.List;
+import com.alibaba.fastjson.JSONObject;
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
+import com.xkcoding.justauth.AuthRequestFactory;
+
+import io.swagger.annotations.ApiOperation;
+import lombok.extern.slf4j.Slf4j;
+import me.zhyd.oauth.model.AuthCallback;
+import me.zhyd.oauth.model.AuthResponse;
+import me.zhyd.oauth.request.AuthRequest;
+import me.zhyd.oauth.utils.AuthStateUtils;
  
 /**
  * @Author scott
@@ -45,22 +56,36 @@ import java.util.List;
 @RequestMapping("/sys/thirdLogin")
 @Slf4j
 public class ThirdLoginController {
+
+    /** Token失效时间 */
+    private Long TOKEN_EXPIRE_TIME;
+
+    @Value("${system.token.expireTime}")
+    public void setExpireTime(String expireTime) {
+        TOKEN_EXPIRE_TIME = Long.parseLong(expireTime);
+    }
+
     @Autowired
     private ISysUserService sysUserService;
+
     @Autowired
     private ISysThirdAccountService sysThirdAccountService;
  
     @Autowired
     private BaseCommonService baseCommonService;
+
     @Autowired
     private RedisUtil redisUtil;
+
     @Autowired
     private AuthRequestFactory factory;
  
     @Autowired
     ThirdAppConfig thirdAppConfig;
+
     @Autowired
     private ThirdAppWechatEnterpriseServiceImpl thirdAppWechatEnterpriseService;
+
     @Autowired
     private ThirdAppDingtalkServiceImpl thirdAppDingtalkService;
  
@@ -198,7 +223,7 @@ public class ThirdLoginController {
         String token = HuahengJwtUtil.sign(user.getUsername(), user.getPassword());
         redisUtil.set(CommonConstant.PREFIX_USER_TOKEN + token, token);
         // 设置超时时间
-        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, HuahengJwtUtil.EXPIRE_TIME / 1000);
+        redisUtil.expire(CommonConstant.PREFIX_USER_TOKEN + token, TOKEN_EXPIRE_TIME / 1000);
         return token;
     }
  
@@ -17,6 +17,7 @@ import org.jeecg.utils.support.ApiAuthentication;
 import org.jeecg.utils.support.RSA256Key;
 import org.jeecg.utils.support.SystemAuthentication;
 import org.jeecg.utils.support.SystemRSA256Key;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Component;
 import org.springframework.util.CollectionUtils;
  
@@ -35,8 +36,13 @@ import cn.hutool.core.util.StrUtil;
 @Component
 public class HuahengJwtUtil {
  
-    /** token失效时间 1天 */
-    public static final long EXPIRE_TIME = 12 * 60 * 60 * 1000;
+    /** Token失效时间 */
+    private static Long TOKEN_EXPIRE_TIME;
+
+    @Value("${system.token.expireTime}")
+    public void setExpireTime(String expireTime) {
+        TOKEN_EXPIRE_TIME = Long.parseLong(expireTime);
+    }
  
     /** 仓库视察员角色 */
     public static final String USER_ROLE_INSPECTOR = "inspector";
@@ -164,7 +170,7 @@ public class HuahengJwtUtil {
      * @return          加密的token
      */
     public static String sign(String username, String secret) {
-        Date date = new Date(System.currentTimeMillis() + EXPIRE_TIME);
+        Date date = new Date(System.currentTimeMillis() + TOKEN_EXPIRE_TIME);
         Algorithm algorithm = Algorithm.HMAC256(secret);
         // 附带username信息
         return JWT.create().withClaim("username", username).withExpiresAt(date).sign(algorithm);
@@ -179,7 +185,7 @@ public class HuahengJwtUtil {
      * @return               加密的token
      */
     public static String sign(String username, String secret, String warehouseCode, List<String> roles) {
-        Date date = new Date(System.currentTimeMillis() + EXPIRE_TIME);
+        Date date = new Date(System.currentTimeMillis() + TOKEN_EXPIRE_TIME);
         Algorithm algorithm = Algorithm.HMAC256(secret);
         // 附带username信息
         return JWT.create().withClaim("username", username).withClaim("warehouseCode", warehouseCode).withClaim("roles", roles).withExpiresAt(date).sign(algorithm);
@@ -355,3 +355,7 @@ third-app:
       # appSecret
       client-secret: ??
       agent-id: ??
+system:
+  token:
+    # 登录TOKEN缓存1年
+    expireTime: 31536000000
@@ -355,3 +355,7 @@ third-app:
       # appSecret
       client-secret: ??
       agent-id: ??
+system:
+  token:
+    # 登录TOKEN缓存12小时
+    expireTime: 43200000
@@ -356,3 +356,7 @@ third-app:
       # appSecret
       client-secret: ??
       agent-id: ??
+system:
+  token:
+    # 登录TOKEN缓存1年
+    expireTime: 31536000000