为获取单次令牌接口添加开放权限

072528aa · 技术部-任文超 · 05da424e · 072528aa · 072528aa · 072528aa
Commit 072528aa authored Nov 03, 2017 by 技术部-任文超
5 changed files
--- a/src/main/java/cn/quantgroup/xyqb/aspect/token/TokenOnceValidateAdvisor.java
+++ b/src/main/java/cn/quantgroup/xyqb/aspect/token/TokenOnceValidateAdvisor.java
@@ -44,12 +44,6 @@ public class TokenOnceValidateAdvisor {
    @Qualifier("stringRedisTemplate")
    private RedisTemplate<String, String> redisTemplate;
-    /**
-     * 自动化测试忽略单次令牌校验
-     */
-    @Value("${xyqb.auth.tokenonce.autotest.enable:true}")
-    private boolean autoTestTokenOnceEnabled;
    /**
     * 单次令牌校验切面
     */
@@ -64,9 +58,6 @@ public class TokenOnceValidateAdvisor {
     */
    @Around("needTokenOnceValidate()")
    private Object doTokenOnceValidate(ProceedingJoinPoint pjp) throws Throwable {
-        if (autoTestTokenOnceEnabled) {
-            return pjp.proceed();
-        }
        boolean checkTokenForPhone = checkTokenForPhone();
        if (!checkTokenForPhone) {
            return JsonResult.buildSuccessResult("Token过期，请重新请求", "", 2L);
@@ -95,10 +86,7 @@ public class TokenOnceValidateAdvisor {
        String tokenOnce = redisTemplate.opsForValue().get(key);
        // TokenOnce不应为空值（空白、空格、null）
        if (StringUtils.isBlank(tokenOnce)) {
-            // 修正规则
-            if(redisTemplate.hasKey(key)){
            redisTemplate.delete(key);
-            }
            return false;
        }
        boolean valid = Objects.equals(tokenOnce, requestToken);

--- a/src/main/java/cn/quantgroup/xyqb/controller/internal/token/TokenOnceController.java
+++ b/src/main/java/cn/quantgroup/xyqb/controller/internal/token/TokenOnceController.java
@@ -31,7 +31,7 @@ import java.util.concurrent.TimeUnit;
 public class TokenOnceController implements IBaseController {
  private static final Logger LOGGER = LoggerFactory.getLogger(TokenOnceController.class);
-  private static final Long ONE_HOUR = 1 * 60 * 60L;
+  private static final Long ONE_HOUR = 10 * 60L;
  @Autowired
  @Qualifier("stringRedisTemplate")

--- a/src/main/java/cn/quantgroup/xyqb/filter/RequestFilter.java
+++ b/src/main/java/cn/quantgroup/xyqb/filter/RequestFilter.java
@@ -26,8 +26,9 @@ import java.io.PrintWriter;
 public class RequestFilter implements Filter {
  private static final String[] ALLOWED_PATTERNS = {
-      "/user_detail/**","/hello/**","/innerapi/**", "/user/exist", "/motan/**", "/user/register", "/user/login", "/user/register/fast","/auth/info/login",
+      "/user_detail/**","/hello/**","/innerapi/**", "/user/exist", "/motan/**", "/user/register", "/user/login", "/user/register/fast",
-      "/user/login/fast","/user/reset_password", "/user/exist_check","/user/center/**",
+      "/token/once", "/user/loginForH5", "/user/register/fastForH5",
+      "/auth/info/login","/user/login/fast","/user/reset_password", "/user/exist_check","/user/center/**",
      "/jr58/**", "/app/login", "/app/login_super","/app/login2","/user/login2", "/wechat/**", "/config/**", "/api/**", "/user/exists_token","/query/**",
      "/platform/api/page/return_url", "/MP_" +
      "verify_AWiagUn4kZiwmTt0.txt"

--- a/src/main/java/cn/quantgroup/xyqb/service/sms/impl/SmsServiceImpl.java
+++ b/src/main/java/cn/quantgroup/xyqb/service/sms/impl/SmsServiceImpl.java
@@ -118,7 +118,7 @@ public class SmsServiceImpl implements ISmsService {
      //smsSender.confirmSmsResult("1", unqiueId);
      LOGGER.info("confirmMsg send success, uniqueId={}", unqiueId);
    } catch (Exception e) {
-      LOGGER.info("短信验证像短信中心确认失效");
+      LOGGER.info("短信验证向短信中心确认失效");
    }
    if (StringUtils.equals(code, smsVerificationCode)) {
      return true;

--- a/src/main/resources/config/dev/xyqb.properties
+++ b/src/main/resources/config/dev/xyqb.properties
@@ -57,8 +57,6 @@ jr58.notify.userinfo=http://xfd.test.58v5.cn/customer/quantgroup_user_info
 # 图形验证码
 # 是否启用超级验证码 "__SUPERQG__", 用于测试环境自动化测试, 线上环境可忽略此参数
 xyqb.auth.captcha.super.enable=1
-# 单次令牌验证, 用于测试环境自动化测试, 线上环境可忽略此参数
-xyqb.auth.tokenonce.autotest.enable=false
 #首参数校验
 xyqb.fplock.limit.byhour=3