保誠-保戶業務員媒合平台
究查 | 歷程 | 原始
Jack
2021-11-26 6282fdfadbc9f22e3874f206cdd5e67014583991 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66

package com.pollex.pam.security.provider;


 


import org.slf4j.Logger;


import org.slf4j.LoggerFactory;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.security.authentication.AuthenticationCredentialsNotFoundException;


import org.springframework.security.core.Authentication;


import org.springframework.security.core.AuthenticationException;


import org.springframework.stereotype.Component;


 


import com.pollex.pam.domain.Customer;


import com.pollex.pam.domain.OtpTmp;


import com.pollex.pam.enums.OtpTmpStatusEnum;


import com.pollex.pam.repository.CustomerRepository;


import com.pollex.pam.security.token.OtpAuthenticationToken;


import com.pollex.pam.service.CustomerAuthService;


import com.pollex.pam.service.OtpTmpService;


import com.pollex.pam.service.OtpUtilService;


import com.pollex.pam.web.rest.vm.OtpAccount;


 


@Component


public class OtpAuthenticationProvider {


 


    private static final Logger log = LoggerFactory.getLogger(OtpAuthenticationProvider.class);


 


    @Autowired


    CustomerAuthService customerAuthService;


    


    @Autowired


    CustomerRepository customerRepository;


    


    @Autowired


    OtpTmpService otpTmpService;


    


    @Autowired


    OtpUtilService otpUtilService;


 


    public Authentication authenticate(OtpAuthenticationToken otpAuthenticationToken) throws AuthenticationException {


        OtpAccount otpAccount = otpAuthenticationToken.getPrincipal();


        String account = otpAccount.getAccount();


        String indexKey = otpAccount.getIndexKey();


        String otpCode = otpAuthenticationToken.getCredentials();


 


        otpUtilService.verifyOtp(indexKey, otpCode);


        


        setVerrifiedOtpTmp(account, indexKey);


        


        Customer customer = customerRepository.findOneByEmailEqualsOrPhoneEquals(account)


                            .orElse(null);


        


        if (customer == null) {


            throw new AuthenticationCredentialsNotFoundException("");


        }


        


        return customerAuthService.buildCustomerAuthToken(customer, otpCode, indexKey);


 


    }


 


    private void setVerrifiedOtpTmp(String account, String indexKey) {


        OtpTmp otpTmp = otpTmpService.findByAccountAndIndexKey(account, indexKey);


        otpTmp.setStatus(OtpTmpStatusEnum.VERRIFIED);


        otpTmpService.save(otpTmp);


    }


 


        


}