forked from kidgrow-microservices-platform
blame | history | raw
克 刘
2020-03-16 549148d90d41a3320bd36d469fd690354c78de58 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90

package com.kidgrow.authclient.util;


 


import com.alibaba.fastjson.JSONObject;


import com.kidgrow.common.constant.SecurityConstants;


import com.kidgrow.common.utils.RsaUtils;


import lombok.extern.slf4j.Slf4j;


import org.springframework.core.io.ClassPathResource;


import org.springframework.core.io.Resource;


import org.springframework.security.jwt.Jwt;


import org.springframework.security.jwt.JwtHelper;


import org.springframework.security.jwt.crypto.sign.RsaVerifier;


import org.springframework.security.jwt.crypto.sign.SignatureVerifier;


 


import java.io.BufferedReader;


import java.io.InputStreamReader;


import java.security.interfaces.RSAPublicKey;


import java.util.stream.Collectors;


 


/**


 * 石家庄喜高科技有限责任公司 版权所有 © Copyright 2020<br>


 *


 * @Description: Jwt 工具类<br>


 * @Project: <br>


 * @CreateDate: Created in 2020/2/13 11:43 <br>


 * @Author: <a href="4345453@kidgrow.com">liuke</a>


 */


@Slf4j


public class JwtUtils {


    private static final String PUBKEY_START = "-----BEGIN PUBLIC KEY-----";


    private static final String PUBKEY_END = "-----END PUBLIC KEY-----";


 


    /**


     * 通过classpath获取公钥值


     */


    public static RSAPublicKey getPubKeyObj() {


        Resource res = new ClassPathResource(SecurityConstants.RSA_PUBLIC_KEY);


        try (BufferedReader br = new BufferedReader(new InputStreamReader(res.getInputStream()))) {


            String pubKey = br.lines().collect(Collectors.joining("\n"));


            pubKey = pubKey.substring(PUBKEY_START.length(), pubKey.indexOf(PUBKEY_END));


            return RsaUtils.getPublicKey(pubKey);


        } catch (Exception ioe) {


            ioe.printStackTrace();


        }


        return null;


    }


 


    /**


     * {"exp":1563256084,"user_name":"admin","authorities":["ADMIN"],"jti":"4ce02f54-3d1c-4461-8af1-73f0841a35df","client_id":"webApp","scope":["app"]}


     * @param jwtToken token值


     * @param rsaPublicKey 公钥


     * @return


     */


    public static JSONObject decodeAndVerify(String jwtToken, RSAPublicKey rsaPublicKey) {


        SignatureVerifier rsaVerifier = new RsaVerifier(rsaPublicKey);


        Jwt jwt = JwtHelper.decodeAndVerify(jwtToken, rsaVerifier);


        return JSONObject.parseObject(jwt.getClaims());


    }


 


    /**


     * {"exp":1563256084,"user_name":"admin","authorities":["ADMIN"],"jti":"4ce02f54-3d1c-4461-8af1-73f0841a35df","client_id":"webApp","scope":["app"]}


     * @param jwtToken token值


     * @return


     */


    public static JSONObject decodeAndVerify(String jwtToken) {


        return decodeAndVerify(jwtToken, getPubKeyObj());


    }


 


    /**


     * 判断jwt是否过期


     * @param claims jwt内容


     * @param currTime 当前时间


     * @return 未过期:true,已过期:false


     */


    public static boolean checkExp(JSONObject claims, long currTime) {


        long exp = claims.getLong("exp");


        if (exp < currTime) {


            return false;


        }


        return true;


    }


 


    /**


     * 判断jwt是否过期


     * @param claims jwt内容


     * @return 未过期:true,已过期:false


     */


    public static boolean checkExp(JSONObject claims) {


        return checkExp(claims, System.currentTimeMillis());


    }


}