• Home
• club.zhcs
• tiny
• 2.6.5
• source code
• JwtUtil.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

club.zhcs.auth.JwtUtil Maven / Gradle / Ivy

package club.zhcs.auth;

import java.util.Date;

import org.nutz.lang.Lang;
import org.nutz.lang.Times;

import com.auth0.jwt.JWT;
import com.auth0.jwt.JWTVerifier;
import com.auth0.jwt.algorithms.Algorithm;
import com.auth0.jwt.exceptions.JWTDecodeException;
import com.auth0.jwt.exceptions.JWTVerificationException;
import com.auth0.jwt.interfaces.DecodedJWT;

/**
 * @author Kerbores ([email protected])
 */
public class JwtUtil {

    private JwtUtil() {}

    /**
     * -一小时的会话
     */
    private static final long EXPIRE_TIME = 60L * 60L * 1000L;
    /**
     * -一年的会话
     */
    private static final long REMEMBER_EXPIRE_TIME = 60L * 60L * 1000L * 24L * 365L;

    /**
     * 校验token是否正确
     * 
     * @param token
     *            密钥
     * @param username
     *            用户名
     * @param secret
     *            密钥
     * @return 是否正确
     */
    public static boolean verify(String token, String username, String secret) {
        try {
            // 根据密码生成JWT效验器
            Algorithm algorithm = Algorithm.HMAC256(secret);
            JWTVerifier verifier = JWT.require(algorithm).withSubject(username).build();
            // 效验TOKEN
            verifier.verify(token);
            return true;
        }
        catch (JWTVerificationException exception) {
            throw Lang.wrapThrow(exception);
        }
    }

    /**
     * /** -获得token中的信息无需secret解密也能获得
     * 
     * @param token
     *            jwtToken
     * @return token中包含的用户名
     */
    public static String getUsername(String token) {
        try {
            DecodedJWT jwt = JWT.decode(token);
            if (jwt.getExpiresAt().before(Times.now())) {
                throw Lang.makeThrow("%s 已经在 %s 过期", token, Times.format("yyyy-MM-dd HH:mm:ss SSS", jwt.getExpiresAt()));
            }
            return jwt.getSubject();
        }
        catch (JWTDecodeException e) {
            return null;
        }
    }

    /**
     * @param username
     *            用户名
     * @param secret
     *            用户的密码
     * @return 加密的token
     */
    public static String sign(String username, String secret) {
        return sign(username, secret, EXPIRE_TIME);

    }

    /**
     * @param username
     *            用户名
     * @param secret
     *            密码
     * @param rememberMe
     *            记住我
     * @return jwt token
     */
    public static String sign(String username, String secret, boolean rememberMe) {
        return sign(username, secret, rememberMe ? REMEMBER_EXPIRE_TIME : EXPIRE_TIME);

    }

    /**
     * 生成 token 签名
     * 
     * @param username
     *            用户名
     * @param secret
     *            密码
     * @param expire
     *            过期时间
     * @return 加密的 token
     */
    public static String sign(String username, String secret, long expire) {
        Date date = new Date(System.currentTimeMillis() + expire);
        Algorithm algorithm = Algorithm.HMAC256(secret);
        // 附带username信息
        return JWT.create()
                  .withSubject(username)
                  .withExpiresAt(date)
                  .withIssuedAt(Times.now())
                  .withIssuer("kerbores")
                  .sign(algorithm);

    }
}