完成 yudao-sso-demo-by-code 刷新访问令牌
parent
ea71002ed6
commit
ff54f16907
|
@ -68,6 +68,12 @@ public class OAuth2Client {
|
||||||
return exchange.getBody();
|
return exchange.getBody();
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* 校验访问令牌,并返回它的基本信息
|
||||||
|
*
|
||||||
|
* @param token 访问令牌
|
||||||
|
* @return 访问令牌的基本信息
|
||||||
|
*/
|
||||||
public CommonResult<OAuth2CheckTokenRespDTO> checkToken(String token) {
|
public CommonResult<OAuth2CheckTokenRespDTO> checkToken(String token) {
|
||||||
// 1.1 构建请求头
|
// 1.1 构建请求头
|
||||||
HttpHeaders headers = new HttpHeaders();
|
HttpHeaders headers = new HttpHeaders();
|
||||||
|
@ -88,6 +94,33 @@ public class OAuth2Client {
|
||||||
return exchange.getBody();
|
return exchange.getBody();
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* 使用刷新令牌,获得(刷新)访问令牌
|
||||||
|
*
|
||||||
|
* @param refreshToken 刷新令牌
|
||||||
|
* @return 访问令牌
|
||||||
|
*/
|
||||||
|
public CommonResult<OAuth2AccessTokenRespDTO> refreshToken(String refreshToken) {
|
||||||
|
// 1.1 构建请求头
|
||||||
|
HttpHeaders headers = new HttpHeaders();
|
||||||
|
headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
|
||||||
|
headers.set("tenant-id", TENANT_ID.toString());
|
||||||
|
addClientHeader(headers);
|
||||||
|
// 1.2 构建请求参数
|
||||||
|
MultiValueMap<String, Object> body = new LinkedMultiValueMap<>();
|
||||||
|
body.add("grant_type", "refresh_token");
|
||||||
|
body.add("refresh_token", refreshToken);
|
||||||
|
|
||||||
|
// 2. 执行请求
|
||||||
|
ResponseEntity<CommonResult<OAuth2AccessTokenRespDTO>> exchange = restTemplate.exchange(
|
||||||
|
BASE_URL + "/token",
|
||||||
|
HttpMethod.POST,
|
||||||
|
new HttpEntity<>(body, headers),
|
||||||
|
new ParameterizedTypeReference<CommonResult<OAuth2AccessTokenRespDTO>>() {}); // 解决 CommonResult 的泛型丢失
|
||||||
|
Assert.isTrue(exchange.getStatusCode().is2xxSuccessful(), "响应必须是 200 成功");
|
||||||
|
return exchange.getBody();
|
||||||
|
}
|
||||||
|
|
||||||
private static void addClientHeader(HttpHeaders headers) {
|
private static void addClientHeader(HttpHeaders headers) {
|
||||||
// client 拼接,需要 BASE64 编码
|
// client 拼接,需要 BASE64 编码
|
||||||
String client = CLIENT_ID + ":" + CLIENT_SECRET;
|
String client = CLIENT_ID + ":" + CLIENT_SECRET;
|
||||||
|
|
|
@ -30,4 +30,15 @@ public class AuthController {
|
||||||
return oauth2Client.postAccessToken(code, redirectUri);
|
return oauth2Client.postAccessToken(code, redirectUri);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* 使用刷新令牌,获得(刷新)访问令牌
|
||||||
|
*
|
||||||
|
* @param refreshToken 刷新令牌
|
||||||
|
* @return 访问令牌;注意,实际项目中,最好创建对应的 ResponseVO 类,只返回必要的字段
|
||||||
|
*/
|
||||||
|
@PostMapping("/refresh-token")
|
||||||
|
public CommonResult<OAuth2AccessTokenRespDTO> refreshToken(@RequestParam("refreshToken") String refreshToken) {
|
||||||
|
return oauth2Client.refreshToken(refreshToken);
|
||||||
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
|
@ -47,6 +47,33 @@
|
||||||
});
|
});
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* 刷新令牌
|
||||||
|
*/
|
||||||
|
function refreshToken() {
|
||||||
|
const refreshToken = localStorage.getItem('REFRESH-TOKEN');
|
||||||
|
if (!refreshToken) {
|
||||||
|
alert("获取不到刷新令牌");
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
$.ajax({
|
||||||
|
url: "http://127.0.0.1:18080/auth/refresh-token?refreshToken=" + refreshToken,
|
||||||
|
method: 'POST',
|
||||||
|
success: function (result) {
|
||||||
|
if (result.code !== 0) {
|
||||||
|
alert('刷新访问令牌失败,原因:' + result.msg)
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
alert('更新访问令牌成功!');
|
||||||
|
$('#accessTokenSpan').html(result.data.access_token);
|
||||||
|
|
||||||
|
// 设置到 localStorage 中
|
||||||
|
localStorage.setItem('ACCESS-TOKEN', result.data.access_token);
|
||||||
|
localStorage.setItem('REFRESH-TOKEN', result.data.refresh_token);
|
||||||
|
}
|
||||||
|
});
|
||||||
|
}
|
||||||
|
|
||||||
$(function () {
|
$(function () {
|
||||||
const accessToken = localStorage.getItem('ACCESS-TOKEN');
|
const accessToken = localStorage.getItem('ACCESS-TOKEN');
|
||||||
// 情况一:未登录
|
// 情况一:未登录
|
||||||
|
@ -86,7 +113,7 @@
|
||||||
<div id="yesLoginDiv" style="display: none">
|
<div id="yesLoginDiv" style="display: none">
|
||||||
您已登录!<button>退出登录</button> <br />
|
您已登录!<button>退出登录</button> <br />
|
||||||
昵称:<span id="nicknameSpan"> 加载中... </span> <button onclick="updateNickname()">修改昵称</button> <br />
|
昵称:<span id="nicknameSpan"> 加载中... </span> <button onclick="updateNickname()">修改昵称</button> <br />
|
||||||
访问令牌:<span id="accessTokenSpan"> 加载中... </span> <br />
|
访问令牌:<span id="accessTokenSpan"> 加载中... </span> <button onclick="refreshToken()">刷新令牌</button> <br />
|
||||||
</div>
|
</div>
|
||||||
</body>
|
</body>
|
||||||
<style>
|
<style>
|
||||||
|
|
|
@ -26,6 +26,7 @@ public class OAuth2OpenCheckTokenRespVO {
|
||||||
private Long tenantId;
|
private Long tenantId;
|
||||||
|
|
||||||
@ApiModelProperty(value = "客户端编号", required = true, example = "car")
|
@ApiModelProperty(value = "客户端编号", required = true, example = "car")
|
||||||
|
@JsonProperty("client_id")
|
||||||
private String clientId;
|
private String clientId;
|
||||||
@ApiModelProperty(value = "授权范围", required = true, example = "user_info")
|
@ApiModelProperty(value = "授权范围", required = true, example = "user_info")
|
||||||
private List<String> scopes;
|
private List<String> scopes;
|
||||||
|
|
|
@ -17,7 +17,7 @@ public class OAuth2UserInfoRespVO {
|
||||||
@ApiModelProperty(value = "用户编号", required = true, example = "1")
|
@ApiModelProperty(value = "用户编号", required = true, example = "1")
|
||||||
private Long id;
|
private Long id;
|
||||||
|
|
||||||
@ApiModelProperty(value = "用户昵称", required = true, example = "芋艿")
|
@ApiModelProperty(value = "用户账号", required = true, example = "芋艿")
|
||||||
private String username;
|
private String username;
|
||||||
|
|
||||||
@ApiModelProperty(value = "用户昵称", required = true, example = "芋道")
|
@ApiModelProperty(value = "用户昵称", required = true, example = "芋道")
|
||||||
|
|
|
@ -19,7 +19,7 @@
|
||||||
</el-tab-pane>
|
</el-tab-pane>
|
||||||
</el-tabs>
|
</el-tabs>
|
||||||
<div>
|
<div>
|
||||||
<el-form ref="loginForm" :model="loginForm" :rules="LoginRules" class="login-form">
|
<el-form ref="loginForm" :model="loginForm" class="login-form">
|
||||||
<!-- 授权范围的选择 -->
|
<!-- 授权范围的选择 -->
|
||||||
此第三方应用请求获得以下权限:
|
此第三方应用请求获得以下权限:
|
||||||
<el-form-item prop="scopes">
|
<el-form-item prop="scopes">
|
||||||
|
|
Loading…
Reference in New Issue