版权声明:本文为博主原创文章,未经博主允许不得转载。 https://blog.csdn.net/caoshiminYQS/article/details/86552297
@Service
public class LoginServiceImpl implements LoginService {
@Autowired
private TbUserMapper userMapper;
@Autowired
private JedisClient jedisClient;
@Value("${REDIS_SESSION_KEY}")
private String REDIS_SESSION_KEY;
@Value("${REDIS_SESSION_EXPIRE}")
private Integer REDIS_SESSION_EXPIRE;
private static String TT_TOKEN="TT_TOKEN";
@Override
public TaotaoResult login(String username, String password, HttpServletRequest request, HttpServletResponse response) {
//有效性验证
if (StringUtils.isBlank(username) || StringUtils.isBlank(password)) {
return TaotaoResult.build(400, "有户名和密码不能为空");
}
TbUserExample example = new TbUserExample();
Criteria criteria = example.createCriteria();
criteria.andUsernameEqualTo(username);
List<TbUser> list = userMapper.selectByExample(example);
if (list == null || list.isEmpty()) {
return TaotaoResult.build(400, "用户名或密码错误");
}
//判断密码是否正确
TbUser user = list.get(0);
if (!DigestUtils.md5DigestAsHex(password.getBytes()).equals(user.getPassword())) {
return TaotaoResult.build(400, "用户名或密码错误");
}
//生成token
UUID uuid = UUID.randomUUID();
String token = uuid.toString();
//把用户信息写入redis
//把用户的密码清空,为了安全。
user.setPassword(null);
jedisClient.set(REDIS_SESSION_KEY + ":" + token, JsonUtils.objectToJson(user));
jedisClient.expire(REDIS_SESSION_KEY + ":" + token, REDIS_SESSION_EXPIRE);
//把token写入cookie
CookieUtils.setCookie(request, response, TT_TOKEN, token);
//返回token
return TaotaoResult.ok(token);
}
}