一添加配置
1 # 微信开放平台 appid2 wx.open.app_id=wxed9954c01bb89b473 # 微信开放平台 appsecret4 wx.open.app_secret=a7482517235173ddb4083788de60b90e5 # 微信开放平台 重定向url6 wx.open.redirect_url=http://guli.shop/api/ucenter/wx/callback
二创建util包,创建ConstantPropertiesUtil.java常量类,读取配置信息
1 package com.atguigu.eduservice.uitls; 2 3 import org.springframework.beans.factory.InitializingBean; 4 import org.springframework.beans.factory.annotation.Value; 5 import org.springframework.stereotype.Component; 6 7 /** 8 * Author: noob 9 * DATE: 2020/7/16 001610 * PROJECT: guli_parent11 * DESCRIPTION: 读取配置文件的值12 **/13 @Component14 public class ConstanWxUtils implements InitializingBean{15 @Value("${wx.open.app_id}")16 private String appId;17 @Value("${wx.open.app_secret}")18 private String appSecret;19 @Value("${wx.open.redirect_url}")20 21 22 private String redirectUrl;23 public static String WX_OPEN_APP_ID;24 public static String WX_OPEN_APP_SECRET;25 public static String WX_OPEN_REDIRECT_URL;26 @Override27 public void afterPropertiesSet() throws Exception {28 WX_OPEN_APP_ID = appId;29 WX_OPEN_APP_SECRET = appSecret;30 WX_OPEN_REDIRECT_URL = redirectUrl;31 32 }33 }
三生成二维码图片,当我们扫描后会获得一个code
1 @GetMapping("login") 2 public String getWxCode() { 3 //固定地址,后面拼接参数 4 // String url = "https://open.weixin.qq.com/" + 5 // "connect/qrconnect?appid="+ ConstantWxUtils.WX_OPEN_APP_ID+"&response_type=code"; 6 7 // 微信开放平台授权baseUrl %s相当于?代表占位符 8 String baseUrl = "https://open.weixin.qq.com/connect/qrconnect" + 9 "?appid=%s" +10 "&redirect_uri=%s" +11 "&response_type=code" +12 "&scope=snsapi_login" +13 "&state=%s" +14 "#wechat_redirect";15 16 //对redirect_url进行URLEncoder编码17 String redirectUrl = ConstanWxUtils.WX_OPEN_REDIRECT_URL;18 try {19 redirectUrl = URLEncoder.encode(redirectUrl, "utf-8");20 }catch(Exception e) {21 }22 23 //设置%s里面值24 String url = String.format(25 baseUrl,26 ConstanWxUtils.WX_OPEN_APP_ID,27 redirectUrl,28 "atguigu"29 );30 31 //重定向到请求微信地址里面32 return "redirect:"+url;33 }
四当登录成功,会获得code和state,回调到http://8150/api/ucenter/wx/callback?code=xx&state=xx
五导入HttpClientUtils这个工具类
1 package com.atguigu.eduservice.uitls; 2 3 import org.apache.commons.io.IOUtils; 4 import org.apache.commons.lang.StringUtils; 5 import org.apache.http.Consts; 6 import org.apache.http.HttpEntity; 7 import org.apache.http.HttpResponse; 8 import org.apache.http.NameValuePair; 9 import org.apache.http.client.HttpClient; 10 import org.apache.http.client.config.RequestConfig; 11 import org.apache.http.client.config.RequestConfig.Builder; 12 import org.apache.http.client.entity.UrlEncodedFormEntity; 13 import org.apache.http.client.methods.HttpGet; 14 import org.apache.http.client.methods.HttpPost; 15 import org.apache.http.conn.ConnectTimeoutException; 16 import org.apache.http.conn.ssl.SSLConnectionSocketFactory; 17 import org.apache.http.conn.ssl.SSLContextBuilder; 18 import org.apache.http.conn.ssl.TrustStrategy; 19 import org.apache.http.conn.ssl.X509HostnameVerifier; 20 import org.apache.http.entity.ContentType; 21 import org.apache.http.entity.StringEntity; 22 import org.apache.http.impl.client.CloseableHttpClient; 23 import org.apache.http.impl.client.HttpClients; 24 import org.apache.http.impl.conn.PoolingHttpClientConnectionManager; 25 import org.apache.http.message.BasicNameValuePair; 26 27 import javax.net.ssl.SSLContext; 28 import javax.net.ssl.SSLException; 29 import javax.net.ssl.SSLSession; 30 import javax.net.ssl.SSLSocket; 31 import java.io.IOException; 32 import java.net.SocketTimeoutException; 33 import java.security.GeneralSecurityException; 34 import java.security.cert.CertificateException; 35 import java.security.cert.X509Certificate; 36 import java.util.ArrayList; 37 import java.util.List; 38 import java.util.Map; 39 import java.util.Map.Entry; 40 import java.util.Set; 41 42 /** 43 * 依赖的jar包有:commons-lang-2.6.jar、httpclient-4.3.2.jar、httpcore-4.3.1.jar、commons-io-2.4.jar 44 * @author zhaoyb 45 * 46 */ 47 public class HttpClientUtils { 48 49 public static final int connTimeout=10000; 50 public static final int readTimeout=10000; 51 public static final String charset="UTF-8"; 52 private static HttpClient client = null; 53 54 static { 55 PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager(); 56 cm.setMaxTotal(128); 57 cm.setDefaultMaxPerRoute(128); 58 client = HttpClients.custom().setConnectionManager(cm).build(); 59 } 60 61 public static String postParameters(String url, String parameterStr) throws ConnectTimeoutException, SocketTimeoutException, Exception{ 62 return post(url,parameterStr,"application/x-www-form-urlencoded",charset,connTimeout,readTimeout); 63 } 64 65 public static String postParameters(String url, String parameterStr,String charset, Integer connTimeout, Integer readTimeout) throws ConnectTimeoutException, SocketTimeoutException, Exception{ 66 return post(url,parameterStr,"application/x-www-form-urlencoded",charset,connTimeout,readTimeout); 67 } 68 69 public static String postParameters(String url, Map<String, String> params) throws ConnectTimeoutException, 70 SocketTimeoutException, Exception { 71 return postForm(url, params, null, connTimeout, readTimeout); 72 } 73 74 public static String postParameters(String url, Map<String, String> params, Integer connTimeout,Integer readTimeout) throws ConnectTimeoutException, 75 SocketTimeoutException, Exception { 76 return postForm(url, params, null, connTimeout, readTimeout); 77 } 78 79 public static String get(String url) throws Exception { 80 return get(url, charset, null, null); 81 } 82 83 public static String get(String url, String charset) throws Exception { 84 return get(url, charset, connTimeout, readTimeout); 85 } 86 87 /** 88 * 发送一个 Post 请求, 使用指定的字符集编码. 89 * 90 * @param url 91 * @param body RequestBody 92 * @param mimeType 例如 application/xml "application/x-www-form-urlencoded" a=1&b=2&c=3 93 * @param charset 编码 94 * @param connTimeout 建立链接超时时间,毫秒. 95 * @param readTimeout 响应超时时间,毫秒. 96 * @return ResponseBody, 使用指定的字符集编码. 97 * @throws ConnectTimeoutException 建立链接超时异常 98 * @throws SocketTimeoutException 响应超时 99 * @throws Exception100 */101 public static String post(String url, String body, String mimeType,String charset, Integer connTimeout, Integer readTimeout)102 throws ConnectTimeoutException, SocketTimeoutException, Exception {103 HttpClient client = null;104 HttpPost post = new HttpPost(url);105 String result = "";106 try {107 if (StringUtils.isNotBlank(body)) {108 HttpEntity entity = new StringEntity(body, ContentType.create(mimeType, charset));109 post.setEntity(entity);110 }111 // 设置参数112 Builder customReqConf = RequestConfig.custom();113 if (connTimeout != null) {114 customReqConf.setConnectTimeout(connTimeout);115 }116 if (readTimeout != null) {117 customReqConf.setSocketTimeout(readTimeout);118 }119 post.setConfig(customReqConf.build());120 121 HttpResponse res;122 if (url.startsWith("https")) {123 // 执行 Https 请求.124 client = createSSLInsecureClient();125 res = client.execute(post);126 } else {127 // 执行 Http 请求.128 client = HttpClientUtils.client;129 res = client.execute(post);130 }131 result = IOUtils.toString(res.getEntity().getContent(), charset);132 } finally {133 post.releaseConnection();134 if (url.startsWith("https") && client != null&& client instanceof CloseableHttpClient) {135 ((CloseableHttpClient) client).close();136 }137 }138 return result;139 }140 141 142 /**143 * 提交form表单144 *145 * @param url146 * @param params147 * @param connTimeout148 * @param readTimeout149 * @return150 * @throws ConnectTimeoutException151 * @throws SocketTimeoutException152 * @throws Exception153 */154 public static String postForm(String url, Map<String, String> params, Map<String, String> headers, Integer connTimeout,Integer readTimeout) throws ConnectTimeoutException,155 SocketTimeoutException, Exception {156 157 HttpClient client = null;158 HttpPost post = new HttpPost(url);159 try {160 if (params != null && !params.isEmpty()) {161 List<NameValuePair> formParams = new ArrayList<NameValuePair>();162 Set<Entry<String, String>> entrySet = params.entrySet();163 for (Entry<String, String> entry : entrySet) {164 formParams.add(new BasicNameValuePair(entry.getKey(), entry.getValue()));165 }166 UrlEncodedFormEntity entity = new UrlEncodedFormEntity(formParams, Consts.UTF_8);167 post.setEntity(entity);168 }169 170 if (headers != null && !headers.isEmpty()) {171 for (Entry<String, String> entry : headers.entrySet()) {172 post.addHeader(entry.getKey(), entry.getValue());173 }174 }175 // 设置参数176 Builder customReqConf = RequestConfig.custom();177 if (connTimeout != null) {178 customReqConf.setConnectTimeout(connTimeout);179 }180 if (readTimeout != null) {181 customReqConf.setSocketTimeout(readTimeout);182 }183 post.setConfig(customReqConf.build());184 HttpResponse res = null;185 if (url.startsWith("https")) {186 // 执行 Https 请求.187 client = createSSLInsecureClient();188 res = client.execute(post);189 } else {190 // 执行 Http 请求.191 client = HttpClientUtils.client;192 res = client.execute(post);193 }194 return IOUtils.toString(res.getEntity().getContent(), "UTF-8");195 } finally {196 post.releaseConnection();197 if (url.startsWith("https") && client != null198 && client instanceof CloseableHttpClient) {199 ((CloseableHttpClient) client).close();200 }201 }202 }203 204 205 206 207 /**208 * 发送一个 GET 请求209 *210 * @param url211 * @param charset212 * @param connTimeout 建立链接超时时间,毫秒.213 * @param readTimeout 响应超时时间,毫秒.214 * @return215 * @throws ConnectTimeoutException 建立链接超时216 * @throws SocketTimeoutException 响应超时217 * @throws Exception218 */219 public static String get(String url, String charset, Integer connTimeout,Integer readTimeout)220 throws ConnectTimeoutException,SocketTimeoutException, Exception {221 222 HttpClient client = null;223 HttpGet get = new HttpGet(url);224 String result = "";225 try {226 // 设置参数227 Builder customReqConf = RequestConfig.custom();228 if (connTimeout != null) {229 customReqConf.setConnectTimeout(connTimeout);230 }231 if (readTimeout != null) {232 customReqConf.setSocketTimeout(readTimeout);233 }234 get.setConfig(customReqConf.build());235 236 HttpResponse res = null;237 238 if (url.startsWith("https")) {239 // 执行 Https 请求.240 client = createSSLInsecureClient();241 res = client.execute(get);242 } else {243 // 执行 Http 请求.244 client = HttpClientUtils.client;245 res = client.execute(get);246 }247 248 result = IOUtils.toString(res.getEntity().getContent(), charset);249 } finally {250 get.releaseConnection();251 if (url.startsWith("https") && client != null && client instanceof CloseableHttpClient) {252 ((CloseableHttpClient) client).close();253 }254 }255 return result;256 }257 258 259 /**260 * 从 response 里获取 charset261 *262 * @param ressponse263 * @return264 */265 @SuppressWarnings("unused")266 private static String getCharsetFromResponse(HttpResponse ressponse) {267 // Content-Type:text/html; charset=GBK268 if (ressponse.getEntity() != null && ressponse.getEntity().getContentType() != null && ressponse.getEntity().getContentType().getValue() != null) {269 String contentType = ressponse.getEntity().getContentType().getValue();270 if (contentType.contains("charset=")) {271 return contentType.substring(contentType.indexOf("charset=") + 8);272 }273 }274 return null;275 }276 277 278 279 /**280 * 创建 SSL连接281 * @return282 * @throws GeneralSecurityException283 */284 private static CloseableHttpClient createSSLInsecureClient() throws GeneralSecurityException {285 try {286 SSLContext sslContext = new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy() {287 public boolean isTrusted(X509Certificate[] chain,String authType) throws CertificateException {288 return true;289 }290 }).build();291 292 SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(sslContext, new X509HostnameVerifier() {293 294 @Override295 public boolean verify(String arg0, SSLSession arg1) {296 return true;297 }298 299 @Override300 public void verify(String host, SSLSocket ssl)301 throws IOException {302 }303 304 @Override305 public void verify(String host, X509Certificate cert)306 throws SSLException {307 }308 309 @Override310 public void verify(String host, String[] cns,311 String[] subjectAlts) throws SSLException {312 }313 314 });315 316 return HttpClients.custom().setSSLSocketFactory(sslsf).build();317 318 } catch (GeneralSecurityException e) {319 throw e;320 }321 }322 323 public static void main(String[] args) {324 try {325 String str= post("https://localhost:443/ssl/test.shtml","name=12&page=34","application/x-www-form-urlencoded", "UTF-8", 10000, 10000);326 //String str= get("https://localhost:443/ssl/test.shtml?name=12&page=34","GBK");327 /*Map<String,String> map = new HashMap<String,String>();328 map.put("name", "111");329 map.put("page", "222");330 String str= postForm("https://localhost:443/ssl/test.shtml",map,null, 10000, 10000);*/331 System.out.println(str);332 } catch (ConnectTimeoutException e) {333 // TODO Auto-generated catch block334 e.printStackTrace();335 } catch (SocketTimeoutException e) {336 // TODO Auto-generated catch block337 e.printStackTrace();338 } catch (Exception e) {339 // TODO Auto-generated catch block340 e.printStackTrace();341 }342 }343 344 }
六根据code调用微信特定方法获得access_token和openid
1 try { 2 //1 获取code值,临时票据,类似于验证码 3 //2 拿着code请求 微信固定的地址,得到两个值 accsess_token 和 openid 4 String baseAccessTokenUrl = "https://api.weixin.qq.com/sns/oauth2/access_token" + 5 "?appid=%s" + 6 "&secret=%s" + 7 "&code=%s" + 8 "&grant_type=authorization_code"; 9 //拼接三个参数 :id 秘钥 和 code值10 String accessTokenUrl = String.format(11 baseAccessTokenUrl,12 ConstanWxUtils.WX_OPEN_APP_ID,13 ConstanWxUtils.WX_OPEN_APP_SECRET,14 code15 );16 //请求这个拼接好的地址,得到返回两个值 accsess_token 和 openid17 //使用httpclient发送请求,得到返回结果18 String accessTokenInfo = HttpClientUtils.get(accessTokenUrl);19 20 //从accessTokenInfo字符串获取出来两个值 accsess_token 和 openid21 //把accessTokenInfo字符串转换map集合,根据map里面key获取对应值22 //使用json转换工具 Gson23 Gson gson = new Gson();24 HashMap mapAccessToken = gson.fromJson(accessTokenInfo, HashMap.class);25 String access_token = (String)mapAccessToken.get("access_token");26 String openid = (String)mapAccessToken.get("openid");
七根据access_token和openid访问微信特定函数,得到用户信息
1 /把扫描人信息添加数据库里面 2 //判断数据表里面是否存在相同微信信息,根据openid判断 3 UcenterMember member = memberService.getOpenIdMember(openid); 4 if(member == null) {//memeber是空,表没有相同微信数据,进行添加 5 6 //3 拿着得到accsess_token 和 openid,再去请求微信提供固定的地址,获取到扫描人信息 7 //访问微信的资源服务器,获取用户信息 8 String baseUserInfoUrl = "https://api.weixin.qq.com/sns/userinfo" + 9 "?access_token=%s" +10 "&openid=%s";11 //拼接两个参数12 String userInfoUrl = String.format(13 baseUserInfoUrl,14 access_token,15 openid16 );17 //发送请求18 String userInfo = HttpClientUtils.get(userInfoUrl);19 //获取返回userinfo字符串扫描人信息20 HashMap userInfoMap = gson.fromJson(userInfo, HashMap.class);21 String nickname = (String)userInfoMap.get("nickname");//昵称22 String headimgurl = (String)userInfoMap.get("headimgurl");//头像23 24 member = new UcenterMember();25 member.setOpenid(openid);26 member.setNickname(nickname);27 member.setAvatar(headimgurl);28 memberService.save(member);29 }30 31 //使用jwt根据member对象生成token字符串32 String jwtToken = JwtUtils.getJwtToken(member.getId(), member.getNickname());33 //最后:返回首页面,通过路径传递token字符串34 return "redirect:http://localhost:3000?token="+jwtToken;35 }catch(Exception e) {36 throw new GuliException(20001,"登录失败");37 }