1. 添加依赖

  1. <dependency>
  2.     <groupId>io.jsonwebtoken</groupId>
  3.     <artifactId>jjwt-api</artifactId>
  4.     <version>0.11.2</version>
  5. </dependency>
  7. <dependency>
  8.     <groupId>io.jsonwebtoken</groupId>
  9.     <artifactId>jjwt-impl</artifactId>
  10.     <version>0.11.2</version>
  11. </dependency>
  13. <dependency>
  14.     <groupId>io.jsonwebtoken</groupId>
  15.     <artifactId>jjwt-jackson</artifactId>
  16.     <version>0.11.2</version>
  17. </dependency>
  19. <dependency>
  20.     <groupId>com.fasterxml.jackson.core</groupId>
  21.     <artifactId>jackson-core</artifactId>
  22.     <version>2.7.3</version>
  23. </dependency>
  25. <dependency>
  26.     <groupId>com.fasterxml.jackson.core</groupId>
  27.     <artifactId>jackson-databind</artifactId>
  28.     <version>2.7.3</version>
  29. </dependency>
  31. <dependency>
  32.     <groupId>com.fasterxml.jackson.core</groupId>
  33.     <artifactId>jackson-annotations</artifactId>
  34.     <version>2.7.3</version>
  35. </dependency>

2. 工具类

  1. import io.jsonwebtoken.*;
  3. import javax.crypto.SecretKey;
  4. import javax.crypto.spec.SecretKeySpec;
  5. import java.util.Date;
  6. import java.util.HashMap;
  7. import java.util.Map;
  9. /**
  10.  * @author polaris <450733605@qq.com>
  11.  * Description 数据质量管理Token工具类
  12.  * Date 2020-12-28 13:16
  13.  * Version 1.0.0
  14.  */
  15. public class JwtUtil {
  17.     // 默认过期时间
  18.     private static final long EXPIRE_TIME = 1 * 60 * 1000;
  20.     // 密钥(服务重启后会随机生成,不推荐使用)
  21.     private static final SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.HS256;
  22.     //private static final Key key = Keys.secretKeyFor(signatureAlgorithm);
  24.     // token秘钥(长度需要达到加密算法要求,过短会抛异常)
  25.     // 以下错误是由于更改了${TOKEN_SECRET}
  26.     // JWT signature does not match locally computed signature. JWT validity cannot be asserted and should not be trusted.
  27.     private static final String TOKEN_SECRET = "1AsdadSAS123daXXsdafsadpolarisdf34234fdfsdfdsfdsafsd";
  29.     /**
  30.      * 生成token
  31.      *
  32.      * @param param 自定义参数或者覆盖jwt参数,默认有效期30分钟
  33.      * @return
  34.      */
  35.     public static String token(Map<String, Object> param) {
  36.         String token = Jwts.builder()
  37.                 .setClaims(param)
  38.                 .setExpiration(new Date(System.currentTimeMillis() + EXPIRE_TIME))
  39.                 .signWith(generalKey(), signatureAlgorithm)
  40.                 .compact();
  41.         return token;
  42.     }
  44.     /**
  45.      * 生成token(指定有效期)
  46.      *
  47.      * @param param
  48.      * @param expireTimeMillis 有效期(毫秒数)
  49.      * @return
  50.      */
  51.     public static String token(Map<String, Object> param, Long expireTimeMillis) {
  52.         SecretKey secretKey = generalKey();
  53.         long nowMillis = System.currentTimeMillis();
  54.         JwtBuilder builder = Jwts.builder()
  55.                 .setClaims(param)
  56.                 .signWith(secretKey, signatureAlgorithm);
  57.         if (expireTimeMillis >= 0) {
  58.             long expMillis = nowMillis + expireTimeMillis;
  59.             Date exp = new Date(expMillis);
  60.             builder.setExpiration(exp);
  61.         }
  62.         return builder.compact();
  63.     }
  65.     /**
  66.      * 解析Token
  67.      *
  68.      * @param token
  69.      * @return
  70.      */
  71.     public static Map<String, Object> parserToken(String token) {
  72.         Map<String, Object> map = new HashMap<>();
  73.         Jws<Claims> claimsJws;
  74.         try {
  75.             claimsJws = Jwts.parserBuilder().setSigningKey(generalKey()).build().parseClaimsJws(token);
  76.             claimsJws.getBody().forEach((k, v) -> map.put(k, v));
  77.         } catch (ExpiredJwtException ee) {
  78.             System.err.println(ee.getMessage());
  79.             return null;
  80.         } catch (Exception e) {
  81.             System.err.println(">>>>>>>>>>>>>>>>>" + e.getMessage());
  82.             return null;
  83.         }
  84.         return map;
  85.     }
  87.     /**
  88.      * 验证Token有效性
  89.      * @param token
  90.      * @return
  91.      */
  92.     public static boolean verify(String token) {
  93.         try {
  94.             Jwts.parserBuilder().setSigningKey(generalKey()).build().parseClaimsJws(token);
  95.             return true;
  96.         }catch (ExpiredJwtException ee){
  97.             System.err.println(ee.getMessage());
  98.             return false;
  99.         }catch (Exception e) {
  100.             e.printStackTrace();
  101.             return false;
  102.         }
  103.     }
  105.     /**
  106.      * 由字符串生成加密key
  107.      *
  108.      * @return
  109.      */
  110.     public static SecretKey generalKey() {
  111.         byte[] encodedKey = TOKEN_SECRET.getBytes();// Base64.decodeBase64(TOKEN_SECRET);
  112.         SecretKey key = new SecretKeySpec(encodedKey, 0, encodedKey.length, "HmacSHA256");
  113.         return key;
  114.     }
  116.     public static void main(String[] args) {
  117.         Map<String, Object> param = new HashMap<>();
  118.         param.put("username", "sha san");
  119.         param.put("password", "123");
  120.         String token = token(param);
  121.         System.out.println(String.format("token:{%s}",token));
  123.         System.out.println("-----------------------------------------------------");
  124.         token="eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwYXNzd29yZCI6IjEyMyIsImV4cCI6MTYwOTE1MjU2OCwidXNlcm5hbWUiOiJzaGEgc2FuIn0._eOF0ftDWuL0G2kBBXWn2sft5UwNhqxAaYHJmfvT0KA";
  126.         if(verify(token)){
  127.             System.out.println("验证成功!");
  128.         }else{
  129.             System.out.println("验证失败!");
  130.         }
  132.         Map<String, Object> resMap =parserToken(token);
  133.         System.out.println("=====================================================");
  134.         System.out.println(resMap);
  136.     }
  138. }