org.frameworkset.web.token.TokenService Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of bboss-ticket Show documentation
support session share between application cluster nodes and cross domain application nodes.support good application session monitor and session data statitic module.demo site http://session.bbossgroups.com/
There is a newer version: 6.2.9
Show newest version
/*
 *  Copyright 2008 bbossgroups
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License.
 */
package org.frameworkset.web.token;

import java.lang.reflect.InvocationTargetException;
import java.lang.reflect.Method;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.UUID;

import javax.servlet.ServletRequest;
import javax.servlet.http.HttpServletRequest;

import org.frameworkset.security.KeyCacheUtil;
import org.frameworkset.security.ecc.ECCCoderInf;
import org.frameworkset.security.ecc.ECCHelper;
import org.frameworkset.security.ecc.SimpleKeyPair;
import org.frameworkset.util.encoder.Base64Commons;
import org.frameworkset.web.auth.AuthenticatePlugin;
import org.frameworkset.web.auth.AuthorHelper;
import org.frameworkset.web.auth.WrapperAuthenticatePlugin;
import org.frameworkset.web.token.ws.v2.AuthorService;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import com.caucho.hessian.client.HessianProxyFactory;
import com.frameworkset.util.FileUtil;
import com.frameworkset.util.SimpleStringUtil;

/**
 * Title: TokenService.java 
 * Description: 
 * bboss workgroup
 * Copyright (c) 2008
 * @Date 2014年4月18日
 * @author biaoping.yin
 * @version 3.8.0
 */
public class TokenService implements TokenServiceInf {
	private static Logger log = LoggerFactory.getLogger(TokenService.class);
	private TokenStore tokenStore;
	private boolean enableToken = false;
	private long ticketdualtime = 172800000;
	private long temptokenlivetime = 3600000;		
	private long dualtokenlivetime = 2592000000L;
	private Object tokenstore ="mem";
	private String ecctype;
	private boolean inited;
	private boolean client;
	private String appid;
	private String secret;
	private String tokenServerAppName = "tokenserver";
	private String tokenServercertAlgorithm = "RSA";
	/**
	 * 客户端模式，必须指定令牌服务器地址
	 */
	private String tokenserver;
	
	
	
	private String tokenServerPublicKey ;
	/**
	 * 客户端证书路径，如果作为认证服务器，客户端必须指定证书
	 */
	private String certificate;
	/**
	 * 是否启用token有效期检测机制
	 * 只有在token服务器端才能开启token Life scan monitor，
	 * 默认不开启
	 */
	private boolean tokenLifescan = false;
	
	/**
	
	
	*/
	
	private String ALGORITHM ="RSA";
	private ValidateApplication validateApplication = new NullValidateApplication();
	private static Method getApplication = null;
	static{
		try {
			getApplication = ValidateApplication.class.getDeclaredMethod("getApplication", String.class);
		} catch (NoSuchMethodException e) {
//			// TODO Auto-generated catch block
//			e.printStackTrace();
		} catch (SecurityException e) {
//			// TODO Auto-generated catch block
//			e.printStackTrace();
		}
	}
	
	private AuthenticatePlugin authenticatePlugin;
	private AuthorHelper authorHelper;
	private AuthorService authorService;
	public void destroy()
	{
//		temptokens.clear();
//		temptokens = null;
		if(!this.isClient())
		{
			if(tokenStore != null)
				this.tokenStore.destory();
			if(this.tokenMonitor != null)
			{
				this.tokenMonitor.killdown();
			}
		}
	}
	

	
	
	public TokenService()
	{
		
	}
	
	private TokenMonitor tokenMonitor;
	
	
	
	/**
	 * tokenstore
	 * 指定令牌存储机制，目前提供两种机制：
	 * mem：将令牌直接存储在内存空间中
	 * session：将令牌存储在session中
	 * 默认存储在session中
	 */
//	protected String tokenstore = "session";
//	protected int tokenstore_i = tokenstore_in_session;
	/**
	 * 令牌持续时间,默认为1个小时
	 */
//	private long tokendualtime = 3600000;
	/**
	 * 令牌超时检测时间间隔，默认为-1，不检测
	 * 如果需要检测，那么只要令牌持续时间超过tokendualtime
	 * 对应的时间将会被清除
	 */
	private long tokenscaninterval = 1800000;
	private String tokenfailpath;
	public TokenService(TokenStore tokenStore,boolean enableToken,String tokenfailpath)
	{
		this.tokenStore = tokenStore;
		this.enableToken = enableToken;
		this.tokenfailpath = tokenfailpath;
		inited = true;
	}
	public TokenService(long ticketdualtime,long temptokenlivetime,long dualtokenlivetime,long tokenscaninterval,Object tokenstore,boolean enableToken,String tokenfailpath)
	{
		this(ticketdualtime,temptokenlivetime,dualtokenlivetime,tokenscaninterval,tokenstore,enableToken,ECCHelper.RSA, tokenfailpath);
	}
	public TokenService(long ticketdualtime,long temptokenlivetime,long dualtokenlivetime,long tokenscaninterval,Object tokenstore,boolean enableToken,String ecctype,String tokenfailpath)
	{
		this(ticketdualtime,temptokenlivetime,dualtokenlivetime,tokenscaninterval,tokenstore,enableToken,ecctype,new NullValidateApplication(), tokenfailpath);
	}
	public TokenService(long ticketdualtime,
			long temptokenlivetime,
			long dualtokenlivetime,long tokenscaninterval,
			Object tokenstore,boolean enableToken,String ecctype,
			ValidateApplication validateApplication,String tokenfailpath)
	{
		inited = true;

		
		
		this.ticketdualtime = ticketdualtime;
		this.temptokenlivetime = temptokenlivetime;
		this.dualtokenlivetime = dualtokenlivetime;this. tokenscaninterval = tokenscaninterval;
		this. tokenstore = tokenstore;this. enableToken = enableToken;this. ecctype = ecctype;
		this. validateApplication = validateApplication;this. tokenfailpath = tokenfailpath;
		init();
	}
	private void initAuth()
	{
		if(this.isClient())
		{
			if(certificate == null || certificate.equals(""))
			{
				log.warn("没有指定certificate证书地址，如需指定，请在tokenconf.xml文件配置");
			}
			else
			{
	
		    	
		    	try
		    	{
		    		String content = FileUtil.getContent(certificate, "UTF-8");
		    		String temp = new String(Base64Commons.decodeBase64(content.getBytes()));
		    		String[] cainfo = temp.split("\r\n");
//		    		if(cainfo[0].equals("[certAlgorithm]"))
//		    		{
//		    			String certAlgorithm = cainfo[1];
//			    		String publicKey = cainfo[3];
//			    		log.debug("加载认证证书["+certificate+"]完毕.");
//			    		this.authorHelper = new AuthorHelper();
//			    		authorHelper.setAppid(appid);
//			    		authorHelper.setSecret(secret);
//			    		authorHelper.setCertAlgorithm(certAlgorithm);
//			    		authorHelper.setPublicKey(publicKey);
//		    		}
//		    		else
//		    		{
		    			this.authorHelper = new AuthorHelper();
		    			String privateKey = cainfo[1];
			    		String publicKey = cainfo[3];
			    		if(cainfo.length > 4)
			    		{
			    			String privateCertAlgorithm = cainfo[5];
			    			String publicCertAlgorithm = cainfo[7];
			    			authorHelper.setPrivateCertAlgorithm(privateCertAlgorithm);
			    			authorHelper.setPublicCertAlgorithm(publicCertAlgorithm);
			    		}
			    		else
			    		{
			    			authorHelper.setPrivateCertAlgorithm(KeyCacheUtil.ALGORITHM_RSA);
			    			authorHelper.setPublicCertAlgorithm(KeyCacheUtil.ALGORITHM_RSA);
			    		}
			    		
			    		
			    		authorHelper.setAppid(appid);
			    		authorHelper.setSecret(secret);
			    		authorHelper.setPrivateKey(privateKey);
			    		authorHelper.setPublicKey(publicKey);
			    		log.debug("加载认证证书["+certificate+"]完毕.");
//		    		}
		    		
					
		    	}
		    	catch(Exception e)
		    	{
		    		log.error("加载认证证书"+certificate+"失败：",e);
		    	}
			}
			AuthorService _authorService = null;
			String authurl = SimpleStringUtil.getNormalPath(tokenserver,  "/hessian/v2authorService");
	    	
	    	
	    	 HessianProxyFactory factory = new HessianProxyFactory();

	         //String url = "http://localhost:8080/context/hessian?service=tokenService";

	       
	    	 try {
				_authorService = (AuthorService) factory.create(AuthorService.class, authurl);
				this.authorService = _authorService;
			} catch (Exception e) {
				log.error("初始化认证服务异常",e);
			}
		}
		
		
		
		
	}
	 
	private void initRemoteTokenStore()
	{
		HessianProxyFactory clientFactory =  new HessianProxyFactory();
		try {
			if(this.tokenserver == null || this.tokenserver.equals(""))
				log.warn("没有指定tokenserver地址，如需指定，请在tokenconf.xml文件配置");
			else
				tokenStore = (TokenStore) clientFactory.create(TokenStore.class,SimpleStringUtil.getRealPath(this.tokenserver, "hessian?service=tokenStoreService&container=tokenconf.xml"));
		} catch (Exception e) {
			log.error("初始化令牌服务组件失败:"+SimpleStringUtil.getNormalPath(this.tokenserver, "hessian?service=tokenStoreService&container=tokenconf.xml"),e);
		}
	}
	private void initTokeServer()
	{
		if(!this.isClient())
		{
			this.tokenStore.setTempTokendualtime(temptokenlivetime);
			this.tokenStore.setTicketdualtime(ticketdualtime);
			tokenStore.setDualtokenlivetime(dualtokenlivetime);
	//		if(tokenstore.equals("mem"))
	//			tokenstore_i = tokenstore_in_mem;
	//		else
	//			tokenstore_i = tokenstore_in_session;
			
			if(this.tokenLifescan )
			{
				 log.debug("Token/Ticket life scan monitor start.");
				tokenMonitor = new TokenMonitor();
				tokenMonitor.start();
				
			}
			if(this.authenticatePlugin != null){
				if(this.tokenServerAppName != null)
				{
					authenticatePlugin = new WrapperAuthenticatePlugin(authenticatePlugin,this.getServerSimpleKey(tokenServerAppName,this.tokenServercertAlgorithm).getPubKey());
				}
				else if(tokenServerPublicKey != null)
				{
					authenticatePlugin = new WrapperAuthenticatePlugin(authenticatePlugin,KeyCacheUtil.getPublicKey(tokenServerPublicKey));
				}
				
			}
					
		}
	}
	private void initTokenStore()
	{
		if(this.isClient())
		{
			initRemoteTokenStore();
			
			 
			
		}
		else if(tokenstore instanceof String)
		{
			this.tokenStore = TokenStoreFactory.getTokenStore((String)tokenstore);
			if(!this.isClient())
			{
				ECCCoderInf ECCCoder= ECCHelper.getECCCoder(ecctype);
				tokenStore.setECCCoder(ECCCoder);
				tokenStore.setValidateApplication(validateApplication);
				if(validateApplication != null && getApplication != null){
					try {
						Application app = (Application) getApplication.invoke(validateApplication,this.getTokenServerAppName());
						if(app != null)
							this.tokenServercertAlgorithm = app.getCertAlgorithm();
					} catch (IllegalAccessException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					} catch (IllegalArgumentException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					} catch (InvocationTargetException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					}
				}
			}
		}
		else
		{
			this.tokenStore = (TokenStore)tokenstore;
			if(!this.isClient())
			{
				if(this.tokenStore.getECCCoder() == null)
				{
					ECCCoderInf ECCCoder= ECCHelper.getECCCoder(ecctype);
					tokenStore.setECCCoder(ECCCoder);
				}
				if(tokenStore.getValidateApplication() == null)
				{
					tokenStore.setValidateApplication(validateApplication);
				}
				else
				{
					validateApplication = tokenStore.getValidateApplication();
				}
				if(validateApplication != null && getApplication != null){
					try {
						Application app = (Application) getApplication.invoke(validateApplication,this.getTokenServerAppName());
						if(app != null)
							this.tokenServercertAlgorithm = app.getCertAlgorithm();
					} catch (IllegalAccessException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					} catch (IllegalArgumentException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					} catch (InvocationTargetException e) {
						// TODO Auto-generated catch block
						e.printStackTrace();
					}
				}
				
			}
		}
		
	}
	private void init()
	{
		
		initTokenStore();	
		initAuth();
		initTokeServer();
		
	}
//	public SimpleKeyPair getServerSimpleKeyPair()
//	{
//		return this.getSimpleKeyPair(this.tokenServerAppName);
//	}
	public SimpleKeyPair getServerSimpleKey(String certAlgorithm){
		return getServerSimpleKey(tokenServerAppName, certAlgorithm);
	}
	public SimpleKeyPair getServerSimpleKey(String appid,String certAlgorithm)
	{
		return this.getSimpleKey(appid,  certAlgorithm);
	}
	
//	public Integer sessionmemhash(String token,HttpSession session)
//	{
////		String sessionid = session.getId();
////		String token = request.getParameter(temptoken_param_name);
//		if(token == null)
//			return MemTokenManager.temptoken_request_validateresult_nodtoken;
//		
////		String hash = String.valueOf(HashUtil.mixHash(new StringBuilder().append(sessionid).append("_").append(token).toString()));
////		if(session.getAttribute(hash) != null)
////		{
////			session.removeAttribute(hash);
////			return true;
////		}
////		else
////			return false;
//		if(this.tokenstore_i == tokenstore_in_session)
//		{
//			
//			if(session.getAttribute(token) != null)
//			{
//				session.removeAttribute(token);
//				return MemTokenManager.temptoken_request_validateresult_ok;
//			}
//			else
//				return MemTokenManager.temptoken_request_validateresult_fail;
//		}
//		else//in memory
//		{
//			String sessionid = session.getId();
//			token = token + "_" + sessionid;
//			return _mem(token);
//		}
//		
//		
//	}
	
	/**
	 * 如果动态令牌校验成功或者令牌没有设置返回true
	 * @param result
	 * @return
	 */
	public static boolean assertDToken(Integer result)
	{
		if(result == null)
			return false;
		return result.intValue() == TokenStore.token_request_validateresult_ok.intValue() || result.intValue() == TokenStore.token_request_validateresult_nodtoken.intValue() || result.intValue() == TokenStore.token_request_validateresult_notenabletoken.intValue();
	}
	
	
	/**
	 * 为url追加动态令牌参数
	 * @param url
	 * @return
	 * @throws TokenException 
	 */
	public String appendDTokenToURL(HttpServletRequest request,String url) throws TokenException
	{
		if(url == null)
			return url;
		if(url.indexOf(TokenStore.temptoken_param_name_word) > 0)
			return url;
		StringBuilder ret = new StringBuilder();
		String token = this.buildDToken(request);
		int idx = url.indexOf("?");
		if(idx > 0)
		{
			ret.append(url).append("&").append(TokenStore.temptoken_param_name).append("=").append(token);
		}
		else
		{
			ret.append(url).append("?").append(TokenStore.temptoken_param_name).append("=").append(token);
		}
		return ret.toString();
			
		
	}
	
	/**
	 * 判断令牌是否设置并且校验成功
	 * @param result
	 * @return
	 */
	public static boolean assertDTokenSetted(Integer result)
	{
		if(result == null)
			return false;
//		return !(result == MemTokenManager.temptoken_request_validateresult_nodtoken 
//				|| result == MemTokenManager.temptoken_request_validateresult_fail);		
		return result.intValue() == TokenStore.token_request_validateresult_ok.intValue() || result.intValue() == TokenStore.token_request_validateresult_notenabletoken.intValue();
	}
	
	/**
	 * 判断令牌是否设置并且校验成功
	 * @param result
	 * @return
	 */
	public static boolean assertDTokenSetted(ServletRequest request)
	{
		
		Integer result = (Integer)request.getAttribute(TokenStore.temptoken_request_validateresult_key);
		return assertDTokenSetted(result);
		
	}
	

	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genToken(javax.servlet.ServletRequest, java.lang.String, boolean)
	 */
	@Override
	public String genToken(ServletRequest request,String fid,boolean cache) throws TokenException
	{
		String tmp = null;
		String k = null;
		if(fid != null)
		{
			k = TokenStore.temptoken_request_attribute+ "_" + fid;
			tmp = (String)request.getAttribute(k);
			if(tmp != null)//如果已经生产token，则直接返回生产的toke，无需重复生产token
				return tmp;
		}
		
		
		{
			tmp = genMemToken( cache);
		}
		if(fid != null)
		{
			request.setAttribute(k, tmp);//将产生的token存入request，避免一个窗口生成两个不同的token
		}
		return tmp;
	}
	
	
	private String genMemToken(boolean cache) throws TokenException
	{
		
		
		
			
			
		if(cache)
		{

			return this.tokenStore.genTempToken( ).getToken();
		}
		else
		{
			String token = UUID.randomUUID().toString();
			return token;
		}
		
		
	}
	
	class TokenMonitor extends Thread
	{
		public TokenMonitor()
		{
			super("DTokens Scan Thread.");
		}
		private boolean killdown = false;
		public void start()
		{
			super.start();
		}
		public void killdown() {
			killdown = true;
			synchronized(this)
			{
				this.notifyAll();
			}
			
		}
		
		public void run() {
			while(!killdown)
			{
				
//				check();
				log.debug("过期令牌清理开始....");
				try {
					tokenStore.livecheck();
				} catch (Exception e1) {
					log.debug("过期令牌扫描异常：",e1);
				}
				log.debug("过期令牌清理结束.");
				synchronized(this)
				{
					try {
						
						this.wait(tokenscaninterval);
					} catch (InterruptedException e) {
						break;
					}
				}
				if(killdown)
					break;
			}
		}
		public boolean isKilldown() {
			return killdown;
		}
		
	}
	

	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildDToken(java.lang.String, javax.servlet.http.HttpServletRequest)
	 */
	@Override
	public String buildDToken(String elementType,HttpServletRequest request) throws TokenException
	{
		return buildDToken(elementType,"'",request,null);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildDToken(java.lang.String, java.lang.String, javax.servlet.http.HttpServletRequest, java.lang.String)
	 */
	@Override
	public String buildDToken(String elementType,String jsonsplit,HttpServletRequest request,String fid) throws TokenException
	{
		return buildDToken(elementType,jsonsplit,request,fid,true);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildHiddenDToken(javax.servlet.http.HttpServletRequest)
	 */
	@Override
	public String buildHiddenDToken(HttpServletRequest request) throws TokenException
	{
		return buildDToken("input",null,request,null,true);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildJsonDToken(java.lang.String, javax.servlet.http.HttpServletRequest)
	 */
	@Override
	public String buildJsonDToken(String jsonsplit,HttpServletRequest request) throws TokenException
	{
		return buildDToken("json","'",request,null,true);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildParameterDToken(javax.servlet.http.HttpServletRequest)
	 */
	@Override
	public String buildParameterDToken(HttpServletRequest request) throws TokenException
	{
		return buildDToken("param",null,request,null,true);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildDToken(javax.servlet.http.HttpServletRequest)
	 */
	@Override
	public String buildDToken(HttpServletRequest request) throws TokenException
	{
		return buildDToken("token",null,request,null,true);
	}
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#buildDToken(java.lang.String, java.lang.String, javax.servlet.http.HttpServletRequest, java.lang.String, boolean)
	 */
	@Override
	public String buildDToken(String elementType,String jsonsplit,HttpServletRequest request,String fid,boolean cache) throws TokenException
	{
//		if(!this.enableTokStringBuilderturn "";
		StringBuilder buffer = new StringBuilder();
		if(SimpleStringUtil.isEmpty(elementType) || elementType.equals("input"))
		{
			buffer.append("");
		}
		else if(elementType.equals("json"))//json
		{
			buffer.append(TokenStore.temptoken_param_name).append(":").append(jsonsplit).append(this.genToken(request,fid,cache)).append(jsonsplit);
		}
		else if(elementType.equals("param"))//参数
		{
			buffer.append(TokenStore.temptoken_param_name).append("=").append(this.genToken(request,fid,cache));
		}
		else if(elementType.equals("token"))//只输出token
		{
			buffer.append(this.genToken(request,fid,cache));
		}
		else
		{
			buffer.append("");
		}
		return buffer.toString();
	}

	
	
	public static void main(String[] args)
	{
		Map h = new HashMap();
		h.put("1", "1");
		h.put("2", "2");
		h.put("3", "3");
		Iterator it = h.keySet().iterator();
		List olds = new ArrayList();
		while(it.hasNext())
		{
			olds.add(it.next());			
		}
		
		for(int i = 0; i < olds.size(); i ++)
		{
			Object token = olds.get(i);
			h.remove(token);
		}
	}
	
	
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genTempToken()
	 */
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genTempToken()
	 */
	@Override
	public String genTempToken() throws Exception
	{
		return tokenStore.genTempToken(  ).getToken();
	}
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genDualToken(java.lang.String, java.lang.String, java.lang.String, long)
	 */
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genDualToken(java.lang.String, java.lang.String, java.lang.String, long)
	 */
//	@Override
//	public String genDualToken(String appid,String secret,String ticket,long dualtime) throws Exception
//	{
//		//long start = System.currentTimeMillis();
////		long dualtime = 30l*24l*60l*60l*1000l;
//		MemToken token = this.tokenStore.genDualToken(appid,ticket,secret,dualtime);
//		return token.getToken();
//	}
//
//	/* (non-Javadoc)
//	 * @see org.frameworkset.web.token.TokenServiceInf#genDualTokenWithDefaultLiveTime(java.lang.String, java.lang.String, java.lang.String)
//	 */
//	@Override
//	public String genDualTokenWithDefaultLiveTime(String appid,String secret,String ticket) throws Exception
//	{
//		//long start = System.currentTimeMillis();
////		long dualtime = 30l*24l*60l*60l*1000l;
//		MemToken token = this.tokenStore.genDualTokenWithDefaultLiveTime(appid,ticket,secret);
//		return token.getToken();
//	}
	
	
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genAuthTempToken(java.lang.String, java.lang.String, java.lang.String)
	 */
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genAuthTempToken(java.lang.String, java.lang.String, java.lang.String)
	 */
	@Override
	public String genAuthTempToken(String appid,String secret,String ticket) throws Exception
	{
		MemToken token = tokenStore.genAuthTempToken(appid,ticket,secret);
		return token.getToken();
//		Assert.assertTrue(TokenStore.temptoken_request_validateresult_ok == mongodbTokenStore.checkToken("sim","xxxxxxxxxxxxxxxxxxxxxx",token.getSigntoken()).getResult());
	}
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#getPublicKey(java.lang.String, java.lang.String)
	 */
	
	public String getPublicKey(String appid,String secret) throws Exception
	{
		SimpleKeyPair pairs = tokenStore.getKeyPair(appid,secret);
		return pairs.getPublicKey();
	}
	
	public String getPrivateKey(String appid,String secret) throws Exception
	{
		SimpleKeyPair pairs = tokenStore.getKeyPair(appid,secret);
		return pairs.getPrivateKey();
	}
	
	public SimpleKeyPair getKeyPair(String appid,String secret) throws Exception
	{
		SimpleKeyPair pairs = tokenStore.getKeyPair(appid,secret);
		return pairs;
	}
	public TokenResult checkTicket(String appid,String secret,String ticket) throws TokenException
	{
		if(ticket == null)
		{
			TokenResult result = new TokenResult();
			result.setResult(TokenStore.token_request_validateresult_nodtoken);
			
			return result;
		}
		return this.tokenStore.checkTicket(appid, secret, ticket);
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#checkToken(java.lang.String, java.lang.String, java.lang.String)
	 */
	
	public TokenResult checkToken(String appid,String secret,String token) throws TokenException
	{
		if(token == null)
		{
			TokenResult result = new TokenResult();
			result.setResult(TokenStore.token_request_validateresult_nodtoken);
			
			return result;
		}
		return this.tokenStore.checkToken(appid, secret, token);
	}
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#checkTempToken(java.lang.String)
	 */
	
	public int checkTempToken(String token) throws TokenException
	{
		if(token == null)
		{
			
			return TokenStore.token_request_validateresult_nodtoken;
		}
		return this.tokenStore.checkToken(null,null,token).getResult();
	}
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genTicket(java.lang.String, java.lang.String, java.lang.String, java.lang.String)
	 */
	
	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#genTicket(java.lang.String, java.lang.String, java.lang.String, java.lang.String)
	 */
	@Override
	public Ticket genTicket(String account,String worknumber,String appid,String secret) throws TokenException
	{
		return this.tokenStore.genTicket( account, worknumber, appid, secret);
	}

	@Override
	public Ticket genTempTicket(String account,String worknumber,String appid,String secret) throws TokenException
	{
		return this.tokenStore.genTempTicket( account, worknumber, appid, secret);
	}

	/* (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#isEnableToken()
	 */
	@Override
	public boolean isEnableToken() {
		return enableToken;
	}
	public String getTokenfailpath() {
		return tokenfailpath;
	}




	public long getTicketdualtime() {
		return ticketdualtime;
	}




	public void setTicketdualtime(long ticketdualtime) {
		this.ticketdualtime = ticketdualtime;
	}




	public long getTemptokenlivetime() {
		return temptokenlivetime;
	}




	public void setTemptokenlivetime(long temptokenlivetime) {
		this.temptokenlivetime = temptokenlivetime;
	}




	public long getDualtokenlivetime() {
		return dualtokenlivetime;
	}




	public void setDualtokenlivetime(long dualtokenlivetime) {
		this.dualtokenlivetime = dualtokenlivetime;
	}




	public Object getTokenstore() {
		return tokenstore;
	}




	public void setTokenstore(Object tokenstore) {
		this.tokenstore = tokenstore;
	}




	public String getEcctype() {
		return ecctype;
	}




	public void setEcctype(String ecctype) {
		this.ecctype = ecctype;
	}




	public String getALGORITHM() {
		return ALGORITHM;
	}




	public void setALGORITHM(String aLGORITHM) {
		ALGORITHM = aLGORITHM;
	}




	public ValidateApplication getValidateApplication() {
		return validateApplication;
	}




	public void setValidateApplication(ValidateApplication validateApplication) {
		this.validateApplication = validateApplication;
	}




	public long getTokenscaninterval() {
		return tokenscaninterval;
	}




	public void setTokenscaninterval(long tokenscaninterval) {
		this.tokenscaninterval = tokenscaninterval;
	}




	public void setEnableToken(boolean enableToken) {
		this.enableToken = enableToken;
	}




	public void setTokenfailpath(String tokenfailpath) {
		this.tokenfailpath = tokenfailpath;
	}




	
	public void afterPropertiesSet() throws Exception {
		if(inited)
			return;
		inited = true;
		init();
		
	}




	




	public boolean isClient() {
		return client;
	}




	public void setClient(boolean client) {
		this.client = client;
	}




	public String getAppid() {
		return appid;
	}




	public void setAppid(String appid) {
		this.appid = appid;
	}




	public String getSecret() {
		return secret;
	}




	public void setSecret(String secret) {
		this.secret = secret;
	}
	/**
	 * 销毁令牌票据ticket
	 * @param token
	 * @param appid
	 * @param secret
	 */
	public boolean destroyTicket(String ticket,String appid,String secret) throws TokenException{
		return this.tokenStore.destroyTicket(ticket, appid, secret);
	}
	/**
	 * 刷新令牌票据ticket有效时间，如果ticket已经失效则抛出异常
	 * @param token
	 * @param appid
	 * @param secret
	 */
	public boolean refreshTicket(String ticket,String appid,String secret) throws TokenException{
		return this.tokenStore.refreshTicket(ticket, appid, secret);
				
	}




	public boolean isTokenLifescan() {
		return tokenLifescan;
	}




	public void setTokenLifescan(boolean tokenLifescan) {
		this.tokenLifescan = tokenLifescan;
	}




//	/* (non-Javadoc)
//	 * @see org.frameworkset.web.token.TokenServiceInf#getPublicKey(java.lang.String)
//	 */
//	@Override
//	public Key getPublicKey(String appid) {
//		// TODO Auto-generated method stub
//		return this.tokenStore.getKeyPair(appid, null,false).getPubKey();
//	}
//
//
//
//
//	/* (non-Javadoc)
//	 * @see org.frameworkset.web.token.TokenServiceInf#getPrivateKey(java.lang.String)
//	 */
//	@Override
//	public Key getPrivateKey(String appid) {
//		return this.tokenStore.getKeyPair(appid, null,false).getPriKey();
//	}
	
//	public SimpleKeyPair getSimpleKeyPair(String appid)
//	{
//		return this.tokenStore.getKeyPair(appid, null,false);
//	}
	
	
	public SimpleKeyPair getSimpleKey(String appid,String certAlgorithm){
		return this.tokenStore.getSimpleKey(appid, (String)null,false,certAlgorithm);
	}




	public String getTokenServerAppName() {
		return tokenServerAppName;
	}




	public void setTokenServerAppName(String tokenServerAppName) {
		this.tokenServerAppName = tokenServerAppName;
	}




	public AuthenticatePlugin getAuthenticatePlugin() {
		return authenticatePlugin;
	}




	public void setAuthenticatePlugin(AuthenticatePlugin authenticatePlugin) {
		this.authenticatePlugin = authenticatePlugin;
	}




	/** (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#assertApplication(java.lang.String, java.lang.String)
	 */
	@Override
	public Application assertApplication(String appid, String secret) throws TokenException {
		
		return this.tokenStore.assertApplication(appid, secret);
	}
	/** (non-Javadoc)
	 * @see org.frameworkset.web.token.TokenServiceInf#validateApplication(java.lang.String, java.lang.String)
	 */
	@Override
	public AppValidateResult validateApplication(String appid, String secret) throws TokenException {
		
		return this.tokenStore.validateApplication(appid, secret);
	}

	



	public String getTokenserver() {
		return tokenserver;
	}




	public void setTokenserver(String tokenserver) {
		this.tokenserver = tokenserver;
	}




	public String getCertificate() {
		return certificate;
	}




	public void setCertificate(String certificate) {
		this.certificate = certificate;
	}




	public AuthorHelper getAuthorHelper() {
		return authorHelper;
	}




	public AuthorService getAuthorService() {
		return authorService;
	}




	public String getTokenServercertAlgorithm() {
		return tokenServercertAlgorithm;
	}




	public void setTokenServercertAlgorithm(String tokenServercertAlgorithm) {
		this.tokenServercertAlgorithm = tokenServercertAlgorithm;
	}




	@Override
	public SimpleKeyPair getSimpleKeyPair(String appid) {
		// TODO Auto-generated method stub
		return getSimpleKey( appid,KeyCacheUtil.ALGORITHM_RSA);
	}


}