Gitiles
Code Review Sign In
gerrit.lilingkun.com / G8Backend / 7e8ebe46f9f24dc71678ff60880ba4bc2096e766 / . / src / main / java / com / example / g8backend / controller / AuthController.java
blob: 1fdf9066b8129bc75ede815b2f4932948adf5f1c [file] [log] [blame]
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]1package com.example.g8backend.controller;
2
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]3import com.example.g8backend.dto.ApiResponse;
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]4import com.example.g8backend.dto.UserRegisterDTO;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]5import com.example.g8backend.entity.User;
wuchimedes22ee83c2025-04-25 00:17:47 +0800[diff] [blame]6import com.example.g8backend.entity.UserStats;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]7import com.example.g8backend.service.IUserService;
wuchimedes22ee83c2025-04-25 00:17:47 +0800[diff] [blame]8import com.example.g8backend.service.IUserStatsService;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]9import com.example.g8backend.util.JwtUtil;
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]10import com.example.g8backend.util.mailUtil;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]11import org.springframework.beans.factory.annotation.Autowired;
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]12import org.springframework.data.redis.core.RedisTemplate;
223010713e8aabf2025-05-24 21:38:17 +0800[diff] [blame]13import org.springframework.security.core.context.SecurityContextHolder;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]14import org.springframework.security.crypto.password.PasswordEncoder;
15import org.springframework.web.bind.annotation.*;
223010713e8aabf2025-05-24 21:38:17 +0800[diff] [blame]16import jakarta.servlet.http.HttpServletRequest;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]17import java.util.HashMap;
18import java.util.Map;
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]19import java.util.UUID;
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]20
21@RestController
22@RequestMapping("/auth")
23public class AuthController {
24
25 @Autowired
26 private IUserService userService;
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]27
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]28 @Autowired
wuchimedes22ee83c2025-04-25 00:17:47 +0800[diff] [blame]29 private IUserStatsService userStatsService;
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]30
wuchimedes22ee83c2025-04-25 00:17:47 +0800[diff] [blame]31 @Autowired
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]32 private mailUtil mailUtil;
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]33
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]34 @Autowired
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]35 private PasswordEncoder passwordEncoder;
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]36
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]37 @Autowired
38 private JwtUtil jwtUtil;
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]39
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]40 @Autowired
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]41 private RedisTemplate<String, Object> redisTemplate;
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]42
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]43 // 发送验证码
44 @PostMapping("/send_verification_code")
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]45 public ApiResponse<String> sendVerificationCode(@RequestBody UserRegisterDTO registerDTO) {
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]46 if (userService.getUserByEmail(registerDTO.getEmail()) != null) {
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]47 return ApiResponse.error(400, "邮箱已存在");
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]48 }
49
50 String verificationCode = UUID.randomUUID().toString().substring(0, 6);
51 mailUtil.sendMail(registerDTO.getEmail(), "PT平台注册验证码", "您的验证码为:" + verificationCode + ",验证码十分钟内有效,请勿泄露。");
52
53 redisTemplate.opsForValue().set(registerDTO.getEmail(), verificationCode, 10 * 60, java.util.concurrent.TimeUnit.SECONDS);
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]54 return ApiResponse.success("验证码发送成功");
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]55 }
56
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]57 // 用户注册
58 @PostMapping("/register")
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]59 public ApiResponse<String> register(@RequestBody UserRegisterDTO registerDTO) {
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]60 if (userService.getUserByName(registerDTO.getUserName()) != null) {
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]61 return ApiResponse.error(400, "用户名已存在");
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]62 }
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]63
64 if (!redisTemplate.hasKey(registerDTO.getInvitationCode())) {
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]65 return ApiResponse.error(400, "邀请码错误");
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]66 }
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]67
68 Object cachedCode = redisTemplate.opsForValue().get(registerDTO.getEmail());
69 if (!registerDTO.getVerificationCode().equals(cachedCode)) {
70 return ApiResponse.error(400, "验证码错误");
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]71 }
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]72
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]73 redisTemplate.delete(registerDTO.getEmail());
74
75 User user = new User();
76 user.setUserName(registerDTO.getUserName());
77 user.setPassword(passwordEncoder.encode(registerDTO.getPassword()));
78 user.setEmail(registerDTO.getEmail());
wuchimedesa0649c62025-04-05 15:53:39 +0800[diff] [blame]79 user.setPasskey(UUID.randomUUID().toString().replace("-", ""));
wuchimedese5722e32025-04-13 17:38:50 +0800[diff] [blame]80 userService.save(user);
wuchimedes5280aa72025-04-03 20:49:34 +0800[diff] [blame]81
wuchimedes22ee83c2025-04-25 00:17:47 +0800[diff] [blame]82 UserStats userStats = new UserStats();
83 userStats.setUserId(user.getUserId());
84 userStats.setPasskey(user.getPasskey());
85 userStatsService.save(userStats);
86
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]87 return ApiResponse.message("注册成功");
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]88 }
89
90 // 用户登录
91 @PostMapping("/login")
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]92 public ApiResponse<Map<String, String>> login(@RequestBody User user) {
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]93 User existingUser = userService.getUserByEmail(user.getEmail());
94 if (existingUser == null || !passwordEncoder.matches(user.getPassword(), existingUser.getPassword())) {
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]95 return ApiResponse.error(400, "用户名或密码错误");
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]96 }
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]97
夜雨声烦7affa472025-05-20 19:27:16 +0800[diff] [blame]98 if (existingUser.getIsBanned()) {
99 return ApiResponse.error(403, "账号已被封禁,请联系管理员");
100 }
101
wuchimedes223bfab2025-04-04 17:16:05 +0800[diff] [blame]102 String token = jwtUtil.generateToken(existingUser.getUserId());
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]103 Map<String, String> response = new HashMap<>();
104 response.put("token", token);
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]105
106 return ApiResponse.success(response);
wuchimedes079c1632025-04-02 22:01:20 +0800[diff] [blame]107 }
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]108
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]109 // 测试 Redis
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]110 @GetMapping("/test_redis")
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]111 public ApiResponse<String> testRedis() {
112 Object value = redisTemplate.opsForValue().get("test");
113 return ApiResponse.success("test redis ok");
wuchimedes18addec2025-04-03 17:59:02 +0800[diff] [blame]114 }
223010713e8aabf2025-05-24 21:38:17 +0800[diff] [blame]115
116 //刷新token
117 @PostMapping("/refresh-token")
118 public ApiResponse<String> refreshToken(HttpServletRequest request) {
119 Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
120 if (!(principal instanceof Long userId)) {
121 return ApiResponse.error(401, "未认证,无法刷新token");
122 }
123 String oldToken = request.getHeader("Authorization");
124 if (oldToken != null && oldToken.startsWith("Bearer ")) {
125 oldToken = oldToken.substring(7);
126 }
127 String newToken = jwtUtil.generateToken(userId);
128 return ApiResponse.success("Token刷新成功", newToken);
129 }
夜雨声烦e73ff922025-05-13 18:49:03 +0800[diff] [blame]130}
22301071a1c48322025-05-24 22:00:28 +0800[diff] [blame]131