原生java代码实现码云第三方验证登录的示例代码

原生java代码实现码云第三方验证登录的示例代码

码云第三方验证登录

研究了QQ，码云，微信等第三方登录接口时，发现QQ以及微信第一步都需要验证授权管理，而且个人测试需要提供手持身份证一张，并且验证时间过长( 3天工作日左右吧 )，这样会非常浪费大家学习第三方接口登录的时间，终于， 在我的不屑努力下，找到了适合大家快速上手，测试第三方接口登录的平台-————码云（看网上帖子说某WX接入还要开发者认证，人民币300元）

码云链接地址

https://gitee.com/

一、在码云上创建应用

1、在码云上注册一个账号，点击右上角设置

2、创建应用

3、填写资料

很多同学不太了解什么是应用回调地址webhooks（第三方登录成功后，会返回到你指定的地址，并且携带验证是否成功的参数信息）

4、获取到clientId以及client Secret

clientId和client Sercret的主要作用是通过拼接得到请求地址，将地址重定向至授权登录页面

准备过程已完成

二、在项目中实现第三方登录

大概流程

1、导入依赖jar包

javax.servlet

javax.servlet-api

3.1.0

me.zhyd.oauth

JustAuth

1.3.2

org.apache.httpcomponents

httpclient

4.5.2

2、跳转授权页面

AuthRequest authRequest = new AuthGiteeRequest(AuthConfig.builder()

.clientId(CLIENT_ID) //Client ID

.clientSecret(CLIENT_SECRET) //Client Secret

.redirectUri(REDIRECTURI) //回调地址

.build());

String authorizeUrl = authRequest.authorize(AuthStateUtils.createState());

//跳转到授权页面

response.sendRedirect(authorizeUrl);

3、通过回调地址获取到code值

//http://localhost:8080/login?actionName=giteeCode&code=e063730161cd40cf&state=25c74eba2ac5f

String code = request.getParameter("code");

4、再将用户授权码发送码云服务器

补充一个小小的坑，码云第三方验证需要加上header信息，否则会报403错误

String url = "https://gitee.com/oauth/token?grant_type=authorization_code&code="+code+"&client_id="+CLIENT_ID+"&redirect_uri="+REDIRECTURI+"&client_secret="+CLIENT_SECRET;

Map map = new HashMap<>();

map.put("User-Agent","Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36)");

jsONObject s = HttpUtils.post(url,map);

授权登录失败会返回message错误信息，标识登录失败

成功:

{

"access_token":"e386e20327b7c4",

"refresh_token":"057c79c2d1f957a5cb4d",

"scope":"user_info",

"created_at":15488,

"token_type":"bearer",

"expires_in":86400

}

5、获取码云用户信息

通过授权码获取到的json数据，其中access_token参数，可以访问码云的用户数据

//https://gitee.com/api/v5/user?access_token=*******

String access_token = s.getString("access_token");

String url2 = "https://gitee.com/api/v5/user?access_token="+access_token;

JSONObject user = HttpUtils.get(url2,map);

//1、设置响应类型输出流

response.setContentType("application/json;charset=UTF-8");

//2、将json转为字符串

String str = JSON.toJSONString(user);

//3、得到字符输出流

response.getWriter().write(str);

源码：

在这要说一下回调地址操作1和回调地址操作2的区别

操作1：使用的是服务器的get,post发送请求，而跳转“授权页面”（giteeLogin 方法）使用的是插件，各位看主大大也可手动改为get请求，跳转第三方登录页面，具体get地址请参考

码云oauth文档

其中A和B步骤，修改后就可以不用插件代码跳转授权页面

操作2：完全使用的是JustAuth插件实现第三方登录

import com.alibaba.fastjson.JSON;

import com.alibaba.fastjson.JSONObject;

import com.shsxt.utils.HttpUtils;

import me.zhyd.oauth.config.AuthConfig;

import me.zhyd.oauth.model.AuthCallback;

import me.zhyd.oauth.model.AuthResponse;

import me.zhyd.oauth.request.AuthGiteeRequest;

import me.zhyd.oauth.request.AuthRequest;

import me.zhyd.oauth.utils.AuthStateUtils;

import org.apache.http.client.ClientProtocolException;

import org.apache.http.client.methods.HttpPost;

import org.apache.http.client.methods.HttpRequestBase;

import org.apache.http.impl.client.CloseableHttpClient;

import org.apache.http.impl.client.HttpClients;

import org.apache.http.util.EntityUtils;

import javax.servlet.ServletException;

import javax.servlet.annotation.WebServlet;

import javax.servlet.http.HttpServlet;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import java.io.IOException;

import java.io.UnsupportedEncodingException;

import java.util.HashMap;

import java.util.Map;

@WebServlet("/login")

public class LoginServlet extends HttpServlet {

private static final long serialVersionUID = 1L;

//ac85a173bb89ee

private final String CLIENT_ID = “Client ID”

private final String CLIENT_SECRET= “Client Secret”

private final String REDIRECTURI = “回调地址”

protected void service(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {

//获取用户行为

String actionName = request.getParameter("actionName");

//判断用户行为

if("giteeLogin".equals(actionName)) {

//如果发送码云授权验证

giteeLogin(request,response);

}else if("giteeCode".equals(actionName)) {

//giteeCode(request,response);

giteeCode2(request,response);

}

System.out.println("点击了");

}

/**

* 回调地址后的操作1

* @param request

* @param response

*/

private void giteeCode(HttpServletRequest request, HttpServletResponse response) throws IOException {

//获取code

String code = request.getParameter("code");

String url = "https://gitee.com/oauth/token?grant_type=authorization_code&code="+code+"&client_id="+CLIENT_ID+"&redirect_uri="+REDIRECTURI+"&client_secret="+CLIENT_SECRET;

Map map = new HashMap<>();

map.put("User-Agent","Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36)");

JSONObject s = HttpUtils.post(url,map);

System.out.println(s);

//https://gitee.com/api/v5/user?access_token=*******

String access_token = s.getString("access_token");

String url2 = "https://gitee.com/api/v5/user?access_token="+access_token;

JSONObject user = HttpUtils.get(url2,map);

//1、设置响应类型输出流

response.setContentType("application/json;charset=UTF-8");

//2、将json转为字符串

String str = JSON.toJSONString(user);

//3、得到字符输出流

response.getWriter().write(str);

}

/**

* 回调地址后的操作2

* @param request

* @param response

*/

private void giteeCode2(HttpServletRequest request, HttpServletResponse response) throws IOException {

String code = request.getParameter("code");

AuthRequest authRequest = new AuthGiteeRequest(AuthConfig.builder()

.clientId(CLIENT_ID) //Client ID

.clientSecret(CLIENT_SECRET) //Client Secret

.redirectUri(REDIRECTURI) //回调地址

.build());

AuthResponse json = authRequest.login(code);

System.out.println(json);

}

/**

* 跳转授权页面

* @param request

* @param response

*/

private void giteeLogin(HttpServletRequest request, HttpServletResponse response) throws IOException {

//跳转授权页面

AuthRequest authRequest = new AuthGiteeRequest(AuthConfig.builder()

.clientId(CLIENT_ID) //Client ID

.clientSecret(CLIENT_SECRET) //Client Secret

.redirectUri(REDIRECTURI) //回调地址

.build());

String authorizeUrl = authRequest.authorize();

//跳转到授权页面

response.sendRedirect(authorizeUrl);

}

}

服务器发送get/post请求工具类

package com.shsxt.utils;

import com.alibaba.fastjson.JSON;

import com.alibaba.fastjson.JSONObject;

import org.apache.http.client.ClientProtocolException;

import org.apache.http.client.methods.HttpGet;

import org.apache.http.client.methods.HttpPost;

import org.apache.http.client.methods.HttpRequestBase;

import org.apache.http.impl.client.CloseableHttpClient;

import org.apache.http.impl.client.HttpClients;

import org.apache.http.util.EntityUtils;

import java.io.IOException;

import java.io.UnsupportedEncodingException;

import java.util.Map;

import java.util.Set;

public class HttpUtils {

/*

*发送简单post请求

*/

public static JSONObject post(String url) {

HttpPost post = new HttpPost(url);

return getResult(post);

}

/*

*发送带Header的post请求

*/

public static JSONObject post(String url, Map map) {

HttpPost post = new HttpPost(url);

if (!map.isEmpty()) {

Set> entrys = map.entrySet();

for (Map.Entry entry : entrys) {

post.setHeader(entry.getKey(), entry.getValue());

}

}

return getResult(post);

}

/*

*发送带Header的get请求

*/

public static JSONObject get(String url, Map map) {

HttpGet get = new HttpGet(url);

if (!map.isEmpty()) {

Set> entrys = map.entrySet();

for (Map.Entry entry : entrys) {

get.setHeader(entry.getKey(), entry.getValue());

}

}

return getResult(get);

}

/*

*发送简单的get请求

*/

public static JSONObject get(String url) {

HttpGet get = new HttpGet(url);

return getResult(get);

}

/*

*发送请求方法，请求响应为JSONObject

*/

private static JSONObject getResult(HttpRequestBase requestBase) {

CloseableHttpClient httpClient = HttpClients.createDefault();

String result = null;

try {

result = EntityUtils.toString(httpClient.execute(requestBase).getEntity());

result = new String(result.getBytes("ISO-8859-1"),"utf-8");

httpClient.close();

} catch (UnsupportedEncodingException e1) {

e1.printStackTrace();

} catch (ClientProtocolException e1) {

e1.printStackTrace();

} catch (IOException e1) {

e1.printStackTrace();

} finally {

return new JSONObject(JSON.parseObject(result));

}

}

/*

*当请求响应为String时

*/

public static String getString(String url) {

CloseableHttpClient httpClient = HttpClients.createDefault();

HttpGet get = new HttpGet(url);

String result = null;

try {

result = EntityUtils.toString(httpClient.execute(get).getEntity());

httpClient.close();

} catch (UnsupportedEncodingException e1) {

e1.printStackTrace();

} catch (ClientProtocolException e1) {

e1.printStackTrace();

} catch (IOException e1) {

e1.printStackTrace();

} finally {

return result;

}

}

}

```*当请求响应为String时

*/

public static String getString(String url) {

CloseableHttpClient httpClient = HttpClients.createDefault();

HttpGet get = new HttpGet(url);

String result = null;

try {

result = EntityUtils.toString(httpClient.execute(get).getEntity());

httpClient.close();

} catch (UnsupportedEncodingException e1) {

e1.printStackTrace();

} catch (ClientProtocolException e1) {

e1.printStackTrace();

} catch (IOException e1) {

e1.printStackTrace();

} finally {

return result;

}

}

}

前端页面

总结

版权声明：本文内容由网络用户投稿，版权归原作者所有，本站不拥有其著作权，亦不承担相应法律责任。如果您发现本站中有涉嫌抄袭或描述失实的内容，请联系我们jiasou666@gmail.com 处理，核实后本网站将在24小时内删除侵权内容。