一、依赖
<dependency>
<groupId>com.auth0</groupId>
<artifactId>java-jwt</artifactId>
<version>3.14.0</version>
</dependency>
二、测试类
import com.auth0.jwt.JWT;
import com.auth0.jwt.JWTVerifier;
import com.auth0.jwt.algorithms.Algorithm;
import com.auth0.jwt.interfaces.DecodedJWT;
import java.util.Calendar;
import java.util.HashMap;
//- SignatureVerificationException 签名不一致异常
//- TokenExpiredException 令牌过期异常
//- AlgorirhmMismatchExceotion 算法不匹配异常
//- InvalidClaimException 失效的payload异常
public class CreateJWT {
public static void main(String[] args) {
jwtCreate();
jwtVerifier();
}
public static void jwtCreate() {
HashMap<String, Object> map = new HashMap<>();
Calendar instance = Calendar.getInstance();
// 20秒后令牌token失效
instance.add(Calendar.SECOND, 200);
String token = JWT.create()
.withHeader(map) // header可以不写,因为默认值就是它
.withClaim("userId", 21) //payload
.withClaim("username", "xiaoxiao")
.withExpiresAt(instance.getTime()) // 指定令牌的过期时间
.sign(Algorithm.HMAC256("XIAOXIAO"));//签名
System.out.println(token);
}
public static void jwtVerifier() {
// 通过签名生成验证对象
JWTVerifier jwtVerifier = JWT.require(Algorithm.HMAC256("XIAOXIAO")).build();
// 验证token
DecodedJWT verify = jwtVerifier.verify("eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJleHAiOjE3NDk2NDUzMzIsInVzZXJJZCI6MjEsInVzZXJuYW1lIjoieGlhb3hpYW8ifQ.u4k0RWsbqOyuGE-1rQFjih4QXNeGUpGyoHzrPq9km4g");
System.out.println(verify.getClaim("userId"));
System.out.println(verify.getClaim("username"));
// 验证token是否过期
System.out.println("令牌过期时间:" + verify.getExpiresAt());
}
}
三、集成Springboot
1、引入依赖
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>com.xx</groupId>
<artifactId>jwt</artifactId>
<version>0.0.1-SNAPSHOT</version>
<name>jwt</name>
<description>jwt</description>
<url/>
<licenses>
<license/>
</licenses>
<developers>
<developer/>
</developers>
<scm>
<connection/>
<developerConnection/>
<tag/>
<url/>
</scm>
<properties>
<java.version>8</java.version>
</properties>
<parent>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-parent</artifactId>
<version>2.3.3.RELEASE</version>
</parent>
<dependencies>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>com.auth0</groupId>
<artifactId>java-jwt</artifactId>
<version>3.14.0</version>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.mybatis.spring.boot</groupId>
<artifactId>mybatis-spring-boot-starter</artifactId>
<version>2.0.1</version>
</dependency>
<dependency>
<groupId>mysql</groupId>
<artifactId>mysql-connector-java</artifactId>
<scope>runtime</scope>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
<scope>test</scope>
</dependency>
</dependencies>
<build>
<plugins>
<plugin>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-maven-plugin</artifactId>
</plugin>
</plugins>
</build>
</project>
2、项目结构
image.png
3、配置文件application.yml
server:
port: 8081
servlet:
context-path: /jwt
logging:
level:
org.springframework: debug
com.xx.jwt.mapper: debug
spring:
datasource:
driver-class-name: com.mysql.cj.jdbc.Driver
url: jdbc:mysql://localhost:3306/jwt?characterEncoding=utf-8&serverTimezone=UTC
username: root
password: root
mybatis:
mapper-locations: classpath:mapper/*.xml
type-aliases-package: com.xx.jwt.entity
4、封装JWT工具类
import com.auth0.jwt.JWT;
import com.auth0.jwt.JWTCreator;
import com.auth0.jwt.algorithms.Algorithm;
import com.auth0.jwt.interfaces.DecodedJWT;
import java.util.Calendar;
import java.util.Map;
public class JWTUtils {
/**
* 生成token header.payload.singature
*/
private static final String SING = "XIAOSHUANG";
public static String getToken(Map<String, String> map) {
Calendar instance = Calendar.getInstance();
// 默认7天过期
instance.add(Calendar.DATE, 7);
//创建jwt builder
JWTCreator.Builder builder = JWT.create();
// payload
map.forEach((k, v) -> {
builder.withClaim(k, v);
});
String token = builder.withExpiresAt(instance.getTime()) //指定令牌过期时间
.sign(Algorithm.HMAC256(SING)); // sign
return token;
}
/**
* 验证token 合法性
*/
public static DecodedJWT verify(String token) {
return JWT.require(Algorithm.HMAC256(SING)).build().verify(token);
}
/**
* 获取token信息方法
*/
public static DecodedJWT getTokenInfo(String token) {
DecodedJWT verify = JWT.require(Algorithm.HMAC256(SING)).build().verify(token);
return verify;
}
}
5、controller
import com.auth0.jwt.exceptions.AlgorithmMismatchException;
import com.auth0.jwt.exceptions.SignatureVerificationException;
import com.auth0.jwt.exceptions.TokenExpiredException;
import com.auth0.jwt.interfaces.DecodedJWT;
import com.xx.jwt.entity.User;
import com.xx.jwt.service.UserService;
import com.xx.jwt.util.JWTUtils;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RestController;
import java.util.HashMap;
import java.util.Map;
@RestController
@Slf4j
public class UserContorller {
@Autowired
private UserService userService;
@GetMapping("/user/login")
public Map<String,Object> login( User user){
log.info("用户名:[{}]",user.getName());
log.info("密码:[{}]",user.getPassword());
Map<String,Object> map = new HashMap<>();
try {
User userDB = userService.login(user);
Map<String, String> payload = new HashMap<>();
payload.put("id",userDB.getId());
payload.put("name",userDB.getName());
// 生成jwt令牌
String token = JWTUtils.getToken(payload);
System.out.println("token:"+token);
map.put("state",true);
map.put("msg","认证成功!");
map.put("token",token); // 响应token
} catch (Exception e) {
map.put("state",false);
map.put("msg",e.getMessage());
}
System.out.println("map:"+map);
return map;
}
@PostMapping("/user/test")
public Map<String,Object> test(@RequestBody String token){
log.info("当前token为:[{}]",token);
Map<String,Object> map = new HashMap<>();
try {
// 验证令牌
DecodedJWT verify = JWTUtils.verify(token);
map.put("state",true);
map.put("msg","请求成功");
return map;
} catch (SignatureVerificationException e) {
e.printStackTrace();
map.put("msg","无效签名!");
}catch (TokenExpiredException e){
e.printStackTrace();
map.put("msg","token过期");
}catch (AlgorithmMismatchException e){
e.printStackTrace();
map.put("msg","算法不一致");
}catch (Exception e){
e.printStackTrace();
map.put("msg","token无效!");
}
map.put("state",false);
return map;
}
}
6、service
import com.xx.jwt.entity.User;
public interface UserService {
User login(User user);
}
7、serviceImpl
import com.xx.jwt.entity.User;
import com.xx.jwt.mapper.UserMapper;
import com.xx.jwt.service.UserService;
import org.springframework.stereotype.Service;
import javax.annotation.Resource;
@Service
public class UserServiceImpl implements UserService{
@Resource
private UserMapper userMapper;
@Override
public User login(User user) {
// 根据接收用户名密码查询数据库
User userDB = userMapper.login(user);
if (userDB!=null){
return userDB;
}
throw new RuntimeException("登录失败 -.-");
}
}
8、UserMapper
import com.xx.jwt.entity.User;
import org.apache.ibatis.annotations.Mapper;
@Mapper
public interface UserMapper {
User login(User user);
}
9、User
import lombok.AllArgsConstructor;
import lombok.Data;
import lombok.NoArgsConstructor;
import lombok.experimental.Accessors;
@Data
@AllArgsConstructor
@NoArgsConstructor
@Accessors(chain = true)
public class User {
private String id;
private String name;
private String password;
}
10、UserMapper.xml
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE mapper
PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
"http://mybatis.org/dtd/mybatis-3-mapper.dtd">
<!--namespace 绑定一个对应的DAO/Mapper接口-->
<mapper namespace="com.xx.jwt.mapper.UserMapper">
<select id="login" parameterType="User" resultType="User">
select * from jwt.user where name = #{name} and password = #{password}
</select>
</mapper>
