Example 1 with SavedRequest
use of org.apache.shiro.web.util.SavedRequest in project dubidubi by lzzzz4.
the class LoginController method doLogin.
/**
* @Description: 直接访问与cookie请求的url
* @param userLoginDTO
* @param model
* @param request
* @param response
* @return
* @throws IOException
* @throws ClassNotFoundException
*/
@RequestMapping("/doLogin")
public String doLogin(UserLoginDTO userLoginDTO, Model model, HttpServletRequest request, HttpServletResponse response) throws IOException, ClassNotFoundException, AuthorizationException {
boolean isSavedCookie = false;
if (userLoginDTO == null || StringUtils.isBlank(userLoginDTO.getAccount()) || StringUtils.isBlank(userLoginDTO.getPassword())) {
userLoginDTO = loginCookieService.getUserFromCookies(request.getCookies());
if (userLoginDTO == null) {
return defeatPath;
}
isSavedCookie = true;
}
Subject subject = SecurityUtils.getSubject();
UsernamePasswordToken token = new UsernamePasswordToken(userLoginDTO.getAccount(), userLoginDTO.getPassword());
try {
subject.login(token);
} catch (LockedAccountException e) {
e.printStackTrace();
model.addAttribute("locked", "Y");
return defeatPath;
} catch (AuthenticationException e) {
e.printStackTrace();
model.addAttribute("wrong", "Y");
return defeatPath;
}
UserDO userDO = (UserDO) subject.getPrincipal();
request.getSession().setAttribute("user", userDO);
// 将登录信息写入cookie
if (!isSavedCookie) {
loginCookieService.addLoginCookie(userLoginDTO, response);
}
SavedRequest savedRequest = WebUtils.getSavedRequest(request);
if (savedRequest == null) {
return defaultPath;
}
String URL = savedRequest.getRequestUrl();
if (URL != null) {
int URLStart = URL.indexOf("/", 1);
String realURL = URL.substring(URLStart, URL.length());
return "redirect:" + realURL;
} else {
return defaultPath;
}
}
Also used :
AuthenticationException(org.apache.shiro.authc.AuthenticationException)
UserDO(cn.dubidubi.model.base.UserDO)
Subject(org.apache.shiro.subject.Subject)
LockedAccountException(org.apache.shiro.authc.LockedAccountException)
UsernamePasswordToken(org.apache.shiro.authc.UsernamePasswordToken)
SavedRequest(org.apache.shiro.web.util.SavedRequest)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Example 2 with SavedRequest
use of org.apache.shiro.web.util.SavedRequest in project dubidubi by lzzzz4.
the class LoginController method ajaxLogin.
/**
* @Description: ajax方式访问url
* 404 认证错误
* 403 账户被锁定错误
* 500 无上传对象错误
* 200 成功
* @return ajax返回值对象
* @throws IOException
*/
@RequestMapping(value = "/doLogin", headers = "X-Requested-With=XMLHttpRequest")
@ResponseBody
public AjaxResultDTO ajaxLogin(UserLoginDTO userLoginDTO, HttpServletRequest request, HttpServletResponse response) throws AuthorizationException, IOException {
AjaxResultDTO ajaxResultDTO = new AjaxResultDTO();
Subject subject = SecurityUtils.getSubject();
if (StringUtils.isNotBlank(userLoginDTO.getAccount()) && StringUtils.isNotBlank(userLoginDTO.getPassword())) {
UsernamePasswordToken token = new UsernamePasswordToken(userLoginDTO.getAccount(), userLoginDTO.getPassword());
// 调取realm
try {
subject.login(token);
} catch (LockedAccountException e) {
// 账户被锁定
ajaxResultDTO.setCode(403);
e.printStackTrace();
return ajaxResultDTO;
} catch (AuthenticationException e) {
// 认证错误
ajaxResultDTO.setCode(404);
e.printStackTrace();
return ajaxResultDTO;
}
} else {
// 无上传数值错误
ajaxResultDTO.setCode(500);
}
// 往session中放入用户数据
UserDO userDO = (UserDO) subject.getPrincipal();
request.getSession().setAttribute("user", userDO);
// 设置状态为成功
ajaxResultDTO.setCode(200);
// 设置cookie
loginCookieService.addLoginCookie(userLoginDTO, response);
// 得到跳转前的url
SavedRequest savedRequest = WebUtils.getSavedRequest(request);
// 当savedrequest对象为空
if (savedRequest == null) {
ajaxResultDTO.setUrl(defaultPath);
}
String URL = savedRequest.getRequestUrl();
// 判断url是否为空
if (URL != null) {
int URLStart = URL.indexOf("/", 1);
String realURL = URL.substring(URLStart, URL.length());
ajaxResultDTO.setUrl(realURL);
} else {
ajaxResultDTO.setUrl(defaultPath);
}
return ajaxResultDTO;
}
Also used :
AuthenticationException(org.apache.shiro.authc.AuthenticationException)
UserDO(cn.dubidubi.model.base.UserDO)
AjaxResultDTO(cn.dubidubi.model.base.dto.AjaxResultDTO)
Subject(org.apache.shiro.subject.Subject)
LockedAccountException(org.apache.shiro.authc.LockedAccountException)
UsernamePasswordToken(org.apache.shiro.authc.UsernamePasswordToken)
SavedRequest(org.apache.shiro.web.util.SavedRequest)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
ResponseBody(org.springframework.web.bind.annotation.ResponseBody)
Aggregations
UserDO (cn.dubidubi.model.base.UserDO)2
AuthenticationException (org.apache.shiro.authc.AuthenticationException)2
LockedAccountException (org.apache.shiro.authc.LockedAccountException)2
UsernamePasswordToken (org.apache.shiro.authc.UsernamePasswordToken)2
Subject (org.apache.shiro.subject.Subject)2
SavedRequest (org.apache.shiro.web.util.SavedRequest)2
RequestMapping (org.springframework.web.bind.annotation.RequestMapping)2
AjaxResultDTO (cn.dubidubi.model.base.dto.AjaxResultDTO)1
ResponseBody (org.springframework.web.bind.annotation.ResponseBody)1
