|
|
@@ -0,0 +1,96 @@
|
|
|
+package org.dromara.maxkey.authn.provider.impl;
|
|
|
+
|
|
|
+import org.dromara.maxkey.authn.LoginCredential;
|
|
|
+import org.dromara.maxkey.authn.provider.AbstractAuthenticationProvider;
|
|
|
+import org.dromara.maxkey.authn.realm.AbstractAuthenticationRealm;
|
|
|
+import org.dromara.maxkey.authn.session.SessionManager;
|
|
|
+import org.dromara.maxkey.constants.ConstsLoginType;
|
|
|
+import org.dromara.maxkey.entity.idm.UserInfo;
|
|
|
+import org.dromara.maxkey.web.WebConstants;
|
|
|
+import org.dromara.maxkey.web.WebContext;
|
|
|
+import org.slf4j.Logger;
|
|
|
+import org.slf4j.LoggerFactory;
|
|
|
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
|
|
|
+import org.springframework.security.core.Authentication;
|
|
|
+import org.springframework.security.core.AuthenticationException;
|
|
|
+
|
|
|
+/**
|
|
|
+ * @description:
|
|
|
+ * @author: orangeBabu
|
|
|
+ * @time: 19/8/2024 PM3:41
|
|
|
+ */
|
|
|
+public class AppAuthenticationProvider extends AbstractAuthenticationProvider {
|
|
|
+ private static final Logger _logger = LoggerFactory.getLogger(AppAuthenticationProvider.class);
|
|
|
+
|
|
|
+ public AppAuthenticationProvider() {
|
|
|
+ super();
|
|
|
+ }
|
|
|
+
|
|
|
+ public AppAuthenticationProvider(
|
|
|
+ AbstractAuthenticationRealm authenticationRealm,
|
|
|
+ SessionManager sessionManager) {
|
|
|
+ this.authenticationRealm = authenticationRealm;
|
|
|
+ this.sessionManager = sessionManager;
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+ @Override
|
|
|
+ public String getProviderName() {
|
|
|
+ return "app" + PROVIDER_SUFFIX;
|
|
|
+ }
|
|
|
+
|
|
|
+ @Override
|
|
|
+ public Authentication doAuthenticate(LoginCredential loginCredential) {
|
|
|
+ UsernamePasswordAuthenticationToken authenticationToken = null;
|
|
|
+ _logger.debug("Trying to authenticate user '{}' via {}",
|
|
|
+ loginCredential.getPrincipal(), getProviderName());
|
|
|
+ try {
|
|
|
+
|
|
|
+ _logger.debug("authentication {}", loginCredential);
|
|
|
+
|
|
|
+
|
|
|
+ emptyPasswordValid(loginCredential.getPassword());
|
|
|
+
|
|
|
+ emptyUsernameValid(loginCredential.getUsername());
|
|
|
+
|
|
|
+ //查询用户
|
|
|
+ UserInfo userInfo = loadUserInfo(loginCredential.getUsername(), loginCredential.getPassword());
|
|
|
+
|
|
|
+ //Validate PasswordPolicy
|
|
|
+ authenticationRealm.getPasswordPolicyValidator().passwordPolicyValid(userInfo);
|
|
|
+
|
|
|
+ statusValid(loginCredential, userInfo);
|
|
|
+
|
|
|
+ //Match password
|
|
|
+ authenticationRealm.passwordMatches(userInfo, loginCredential.getPassword());
|
|
|
+
|
|
|
+ //apply PasswordSetType and resetBadPasswordCount
|
|
|
+ authenticationRealm.getPasswordPolicyValidator().applyPasswordPolicy(userInfo);
|
|
|
+
|
|
|
+ authenticationToken = createOnlineTicket(loginCredential, userInfo);
|
|
|
+ // user authenticated
|
|
|
+ _logger.debug("'{}' authenticated successfully by {}.",
|
|
|
+ loginCredential.getPrincipal(), getProviderName());
|
|
|
+
|
|
|
+ authenticationRealm.insertLoginHistory(userInfo,
|
|
|
+ ConstsLoginType.LOCAL,
|
|
|
+ "",
|
|
|
+ "xe00000004",
|
|
|
+ WebConstants.LOGIN_RESULT.SUCCESS);
|
|
|
+
|
|
|
+ } catch (
|
|
|
+ AuthenticationException e) {
|
|
|
+ _logger.error("Failed to authenticate user {} via {}: {}",
|
|
|
+ loginCredential.getPrincipal(),
|
|
|
+ getProviderName(),
|
|
|
+ e.getMessage());
|
|
|
+ WebContext.setAttribute(
|
|
|
+ WebConstants.LOGIN_ERROR_SESSION_MESSAGE, e.getMessage());
|
|
|
+ } catch (Exception e) {
|
|
|
+ _logger.error("Login error Unexpected exception in {} authentication:\n{}",
|
|
|
+ getProviderName(), e.getMessage());
|
|
|
+ }
|
|
|
+
|
|
|
+ return authenticationToken;
|
|
|
+ }
|
|
|
+}
|
orangebabu