Skip to content
/ blade-lattice Public

🔐 lightweight authentication and authorization, born for Blade.

License

MIT license
9 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hellokaton/blade-lattice

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

lattice

解决 Blade 中认证授权问题的轻量级中间件,示例程序

核心组件

  • Lattice: 管理统一配置
  • Realm: 用户认证和授权

使用

添加依赖

<dependency>
    <groupId>com.hellokaton</groupId>
    <artifactId>blade-lattice</artifactId>
    <version>0.1.0</version>
</dependency>

启用 Lattice 中间件

Blade.create().use(new LatticeMiddleware());

配置 Lattice 并托管到 IOC

@Bean
public class Bootstrap implements BladeLoader {
    
    @Override
    public void preLoad(Blade blade) {
        Lattice lattice = new Lattice();
        lattice.loginUrl("/login").unauthorizedUrl("/unauthorized");

        lattice.realm(new JdbcRealm());

        blade.register(lattice);
    }

    @Override
    public void load(Blade blade) {

        blade.templateEngine(new JetbrickTemplateEngine());

        // JDBC
        DruidDataSource dataSource = new DruidDataSource();
        dataSource.setDriverClassName("com.mysql.jdbc.Driver");
        dataSource.setUrl(blade.environment().getOrNull("jdbc.url"));
        dataSource.setUsername(blade.environment().getOrNull("jdbc.username"));
        dataSource.setPassword(blade.environment().getOrNull("jdbc.password"));

        Anima.open(dataSource);
    }

}

JDBC Realm 实现

@Bean
public class JdbcRealm implements LatticeRealm<SysUser> {

    @Inject
    private UserService userService;

    @Override
    public AuthInfo<SysUser> doAuthenticate(LoginToken loginToken) {
        AuthInfo<SysUser> authInfo = new AuthInfo<>();

        SysUser sysUser = select().from(SysUser.class).where(SysUser::getUsername, loginToken.getUsername()).one();
        if (null == sysUser) {
            throw new UnknownAccountException();
        }
        String pwd = EncryptKit.md5(loginToken.getUsername() + loginToken.getPassword());
        if (!sysUser.getPassword().equals(pwd)) {
            throw new AuthenticationException();
        }
        if (UserStatus.DISABLE.getStatus().equals(sysUser.getStatus())) {
            throw new DisabledAccountException();
        }
        authInfo.setUser(sysUser);
        authInfo.setUsername(sysUser.getUsername());
        return authInfo;
    }

    @Override
    public void doAuthorize(AuthInfo<SysUser> authInfo) {
        Long userId = authInfo.getUser().getUserId();

        Set<String> roleSet = userService.findUserRoles(userId).stream()
                .map(SysRole::getRoleSign).collect(Collectors.toSet());
        authInfo.setRoles(roleSet);

        Set<String> permissions = userService.findUserPerms(userId);
        authInfo.setPermissions(permissions);
    }

}

Lattice 登录

@Inject
private Lattice lattice;

@PostRoute("login")
public RestResponse doLogin(LoginToken loginToken) {
    try {
        lattice.login(loginToken);
        return RestResponse.ok();
    } catch (UnknownAccountException e) {
        return RestResponse.fail("找不到该用户");
    } catch (AuthenticationException e) {
        return RestResponse.fail("用户名或密码错误");
    } catch (DisabledAccountException e) {
        return RestResponse.fail("该用户已经被禁用");
    } catch (Exception e) {
        log.error("登录出现异常", e);
        return RestResponse.fail("登录发生错误");
    }
}

License

MIT

About

🔐 lightweight authentication and authorization, born for Blade.

Topics

authorization blade-mvc

Resources

Readme

License

MIT license
Activity

Stars

9 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases 1

v0.1.0 Latest
May 4, 2022

Packages

No packages published

Languages