3.5MW项目
blame | 历史 | 原始文档
whycxzp
2021-04-25 8097b69572c02afbe0a210bf5b00988c76527721 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59

package com.whyc.service;


 


import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;


import com.baomidou.mybatisplus.core.toolkit.Wrappers;


import com.whyc.dto.Response;


import com.whyc.mapper.UserMapper;


import com.whyc.pojo.User;


import com.whyc.util.DigestsUtil;


import com.whyc.util.ShiroUtil;


import org.apache.shiro.SecurityUtils;


import org.apache.shiro.authc.IncorrectCredentialsException;


import org.apache.shiro.authc.UnknownAccountException;


import org.apache.shiro.authc.UsernamePasswordToken;


import org.apache.shiro.subject.Subject;


import org.springframework.stereotype.Service;


 


import javax.annotation.Resource;


import javax.servlet.http.HttpServletRequest;


import javax.servlet.http.HttpSession;


import java.util.Map;


 


@Service


public class LoginService {


    @Resource


    private UserMapper userMapper;


 


    public Response login(String userName, String password, HttpServletRequest request) {


        UsernamePasswordToken userToken = new UsernamePasswordToken(userName, password);


        Subject subject = SecurityUtils.getSubject();


        try {


            subject.login(userToken);


        }catch (UnknownAccountException e) {


            return new Response<>().set(0,false,"账号不存在");


        }catch (IncorrectCredentialsException e) {


            return new Response<>().set(0,false,"密码错误");


        }catch (Exception e){


            e.printStackTrace();


            return new Response<>().set(0,false,"其他异常");


        }


        if (subject.isAuthenticated()){


            //每个登录的用户都有一个全局变量,里面存着对应的SessionId;


            //同一个账号,后面登录的,会挤掉之前登录的SessionId


            System.out.println("全局存储中当前SessionId为:"+request.getSession().getId());


            request.getServletContext().setAttribute(userName,request.getSession().getId());


            //存储当前用户


            request.getSession().setAttribute("user",userName);


            QueryWrapper<User> queryWrapper = Wrappers.query();


            queryWrapper.eq("name",userName);


            User user = userMapper.selectOne(queryWrapper);


            return new Response<>().set(1,user);


        }


        return new Response<>().set(0,false);


    }


 


    public void logout() {


        Subject subject = SecurityUtils.getSubject();


        subject.logout();


    }


}