From e38a5f718bb40abcd07b1a02204c58aefd8a120c Mon Sep 17 00:00:00 2001
From: wayne <wayne8692wayne8692@gmail.com>
Date: 星期二, 08 三月 2022 14:46:54 +0800
Subject: [PATCH] [update] 將EService登入後的處理機制抽出來，只將EService的連線放到Business中

---
 pamapi/src/main/java/com/pollex/pam/security/provider/EServiceAuthenticationProvider.java |   85 ++++++++++++++++++++++++++++++++++++++++++
 1 files changed, 85 insertions(+), 0 deletions(-)

diff --git a/pamapi/src/main/java/com/pollex/pam/security/provider/EServiceAuthenticationProvider.java b/pamapi/src/main/java/com/pollex/pam/security/provider/EServiceAuthenticationProvider.java
new file mode 100644
index 0000000..f157b02
--- /dev/null
+++ b/pamapi/src/main/java/com/pollex/pam/security/provider/EServiceAuthenticationProvider.java
@@ -0,0 +1,85 @@
+package com.pollex.pam.security.provider;
+
+import com.pollex.pam.business.domain.Consultant;
+import com.pollex.pam.business.enums.ConsultantDetailEnum;
+import com.pollex.pam.business.repository.ConsultantRepository;
+import com.pollex.pam.business.service.EServiceConnectService;
+import com.pollex.pam.business.service.dto.EServiceResponse;
+import com.pollex.pam.business.web.errors.ConsultantDisableException;
+import com.pollex.pam.business.config.AppProperties;
+import com.pollex.pam.business.security.token.EServiceAuthenticationToken;
+import com.pollex.pam.business.web.errors.EServiceErrorException;
+import com.pollex.pam.config.ApplicationProperties;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.*;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Component;
+
+import java.security.GeneralSecurityException;
+import java.util.*;
+
+@Component
+public class EServiceAuthenticationProvider {
+
+    private static final String E_SERVICE_LOGIN_SUCCESS_CODE = "true";
+    private static final Logger log = LoggerFactory.getLogger(EServiceAuthenticationProvider.class);
+
+    @Autowired
+    ApplicationProperties applicationProperties;
+
+    @Autowired
+    ConsultantRepository consultantRepository;
+
+    @Autowired
+    EServiceConnectService eServiceConnectService;
+
+    public Authentication authenticate(EServiceAuthenticationToken authenticationToken) throws AuthenticationException {
+        String account = authenticationToken.getPrincipal();
+        String credentials = authenticationToken.getCredentials();
+
+        if(applicationProperties.isMockLogin()){
+            return getConsultantTokenAndRecordLoginTime(account, credentials);
+        }
+
+        try {
+            ResponseEntity<EServiceResponse> responseEntity = eServiceConnectService.loginByEService(account, credentials);
+            if(HttpStatus.OK.equals(responseEntity.getStatusCode())) {
+                EServiceResponse eServiceResponse = responseEntity.getBody();
+                log.debug("eService response = {}", eServiceResponse);
+
+                if(E_SERVICE_LOGIN_SUCCESS_CODE.equals(eServiceResponse.getIssuccess())){
+                    return getConsultantTokenAndRecordLoginTime(account, credentials);
+                }
+                else {
+                    throw new EServiceErrorException(eServiceResponse.getMsg());
+                }
+            }
+
+            throw new RuntimeException("eService http error!, response http status code = " + responseEntity.getStatusCode());
+        } catch (GeneralSecurityException e) {
+            throw new RuntimeException("General Security SSL error!");
+        }
+    }
+
+    private UsernamePasswordAuthenticationToken getConsultantTokenAndRecordLoginTime(String account, String credential) throws ConsultantDisableException {
+        Consultant consultant = consultantRepository.findOneByAgentNo(account).orElseThrow(() -> new UsernameNotFoundException("閰脤“����蒂銝��慦�像�蝟餌絞銝�"));
+
+        List<GrantedAuthority> grantedAuths = Arrays.asList(new SimpleGrantedAuthority("ROLE_USER"));
+        UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(account, credential, grantedAuths);
+
+        Map<String, String> details = new HashMap<>();
+        details.put(ConsultantDetailEnum.ID.getValue(), consultant.getId().toString());
+        details.put(ConsultantDetailEnum.NAME.getValue(), consultant.getName());
+        details.put(ConsultantDetailEnum.AGENT_NO.getValue(), account);
+        authenticationToken.setDetails(details);
+
+        return authenticationToken;
+    }
+}

--
Gitblit v1.8.0