package com.vincent.rsf.openApi.security.service;
|
|
import com.vincent.rsf.openApi.entity.app.App;
|
import com.vincent.rsf.openApi.service.AppService;
|
import lombok.extern.slf4j.Slf4j;
|
import org.springframework.security.crypto.password.PasswordEncoder;
|
import org.springframework.stereotype.Service;
|
|
import javax.annotation.Resource;
|
|
@Slf4j
|
@Service
|
public class AppAuthService {
|
|
@Resource
|
private AppService appService;
|
@Resource
|
private PasswordEncoder passwordEncoder;
|
|
public boolean validateApp(String appId, String appSecret) {
|
if (appId == null || appSecret == null) {
|
return false;
|
}
|
try {
|
App app = appService.getById(appId);
|
if (app == null) {
|
return false;
|
}
|
if (app.getEnable() != null && app.getEnable() != 1) {
|
return false;
|
}
|
String stored = app.getScrect();
|
if (stored == null) {
|
return false;
|
}
|
// 存的是 BCrypt 哈希则用 matches,否则兼容明文
|
if (stored.startsWith("$2")) {
|
return passwordEncoder.matches(appSecret, stored);
|
}
|
return appSecret.equals(stored);
|
} catch (Exception e) {
|
log.error("validateApp异常 appId={}", appId, e);
|
return false;
|
}
|
}
|
|
public App getAppInfo(String appId) {
|
if (appId == null) {
|
return null;
|
}
|
try {
|
return appService.getById(appId);
|
} catch (Exception e) {
|
log.error("getAppInfo失败 appId={}", appId, e);
|
return null;
|
}
|
}
|
}
|
