src/main/java/me/zhyd/oauth/request/AuthBaiduRequest.java

package me.zhyd.oauth.request;

import cn.hutool.http.HttpRequest;
import cn.hutool.http.HttpResponse;
import com.alibaba.fastjson.JSONObject;
import me.zhyd.oauth.cache.AuthStateCache;
import me.zhyd.oauth.config.AuthConfig;
import me.zhyd.oauth.config.AuthSource;
import me.zhyd.oauth.enums.AuthResponseStatus;
import me.zhyd.oauth.enums.AuthUserGender;
import me.zhyd.oauth.exception.AuthException;
import me.zhyd.oauth.model.AuthCallback;
import me.zhyd.oauth.model.AuthResponse;
import me.zhyd.oauth.model.AuthToken;
import me.zhyd.oauth.model.AuthUser;
import me.zhyd.oauth.utils.StringUtils;
import me.zhyd.oauth.utils.UrlBuilder;

/**
 * 百度账号登录
 *
 * @author yadong.zhang (yadong.zhang0415(a)gmail.com)
 * @since 1.0.0
 */
public class AuthBaiduRequest extends AuthDefaultRequest {

    public AuthBaiduRequest(AuthConfig config) {
        super(config, AuthSource.BAIDU);
    }

    public AuthBaiduRequest(AuthConfig config, AuthStateCache authStateCache) {
        super(config, AuthSource.BAIDU, authStateCache);
    }

    @Override
    protected AuthToken getAccessToken(AuthCallback authCallback) {
        HttpResponse response = doPostAuthorizationCode(authCallback.getCode());
        return getAuthToken(response);
    }

    @Override
    protected AuthUser getUserInfo(AuthToken authToken) {
        HttpResponse response = doGetUserInfo(authToken);
        String userInfo = response.body();
        JSONObject object = JSONObject.parseObject(userInfo);
        this.checkResponse(object);
        return AuthUser.builder()
            .uuid(object.getString("userid"))
            .username(object.getString("username"))
            .nickname(object.getString("username"))
            .avatar(getAvatar(object))
            .remark(object.getString("userdetail"))
            .gender(AuthUserGender.getRealGender(object.getString("sex")))
            .token(authToken)
            .source(source)
            .build();
    }

    private String getAvatar(JSONObject object) {
        String protrait = object.getString("portrait");
        return StringUtils.isEmpty(protrait) ? null : String.format("http://himg.bdimg.com/sys/portrait/item/%s.jpg", protrait);
    }

    @Override
    public AuthResponse revoke(AuthToken authToken) {
        HttpResponse response = doGetRevoke(authToken);
        JSONObject object = JSONObject.parseObject(response.body());
        this.checkResponse(object);
        // 返回1表示取消授权成功，否则失败
        AuthResponseStatus status = object.getIntValue("result") == 1 ? AuthResponseStatus.SUCCESS : AuthResponseStatus.FAILURE;
        return AuthResponse.builder().code(status.getCode()).msg(status.getMsg()).build();
    }

    @Override
    public AuthResponse refresh(AuthToken authToken) {
        String refreshUrl = UrlBuilder.fromBaseUrl(this.source.refresh())
            .queryParam("grant_type", "refresh_token")
            .queryParam("refresh_token", authToken.getRefreshToken())
            .queryParam("client_id", this.config.getClientId())
            .queryParam("client_secret", this.config.getClientSecret())
            .build();
        HttpResponse response = HttpRequest.get(refreshUrl).execute();
        return AuthResponse.builder()
            .code(AuthResponseStatus.SUCCESS.getCode())
            .data(this.getAuthToken(response))
            .build();
    }

    /**
     * 返回带{@code state}参数的授权url，授权回调时会带上这个{@code state}
     *
     * @param state state 验证授权流程的参数，可以防止csrf
     * @return 返回授权地址
     * @since 1.9.3
     */
    @Override
    public String authorize(String state) {
        return UrlBuilder.fromBaseUrl(source.authorize())
            .queryParam("response_type", "code")
            .queryParam("client_id", config.getClientId())
            .queryParam("redirect_uri", config.getRedirectUri())
            .queryParam("display", "popup")
            .queryParam("state", getRealState(state))
            .build();
    }

    /**
     * 检查响应内容是否正确
     *
     * @param object 请求响应内容
     */
    private void checkResponse(JSONObject object) {
        if (object.containsKey("error") || object.containsKey("error_code")) {
            String msg = object.containsKey("error_description") ? object.getString("error_description") : object.getString("error_msg");
            throw new AuthException(msg);
        }
    }

    private AuthToken getAuthToken(HttpResponse response) {
        JSONObject accessTokenObject = JSONObject.parseObject(response.body());
        this.checkResponse(accessTokenObject);
        return AuthToken.builder()
            .accessToken(accessTokenObject.getString("access_token"))
            .refreshToken(accessTokenObject.getString("refresh_token"))
            .scope(accessTokenObject.getString("scope"))
            .expireIn(accessTokenObject.getIntValue("expires_in"))
            .build();
    }
}
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`package me.zhyd.oauth.request;`

			`import cn.hutool.http.HttpRequest;`
			`import cn.hutool.http.HttpResponse;`
			`import com.alibaba.fastjson.JSONObject;`
♻️ 添加 Request 的 AuthStateCache 构造器 2019-08-02 14:57:13 +08:00			`import me.zhyd.oauth.cache.AuthStateCache;`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`import me.zhyd.oauth.config.AuthConfig;`
🏗️ 架构调整，简化代码 2019-06-19 18:16:13 +08:00			`import me.zhyd.oauth.config.AuthSource;`
🍻 升级hutool，alipay-sdk改为provided，添加注释，state校验 2019-07-30 21:10:00 +08:00			`import me.zhyd.oauth.enums.AuthResponseStatus;`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`import me.zhyd.oauth.enums.AuthUserGender;`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`import me.zhyd.oauth.exception.AuthException;`
♻️ 添加 Request 的 AuthStateCache 构造器 2019-08-02 14:57:13 +08:00			`import me.zhyd.oauth.model.AuthCallback;`
			`import me.zhyd.oauth.model.AuthResponse;`
			`import me.zhyd.oauth.model.AuthToken;`
			`import me.zhyd.oauth.model.AuthUser;`
⚡ 优化代码、修复google获取用户信息失败的问题 2019-07-19 22:00:07 +08:00			`import me.zhyd.oauth.utils.StringUtils;`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`import me.zhyd.oauth.utils.UrlBuilder;`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00
			`/**`
💡 修改注释，增加QQ登录支持 2019-05-17 10:19:52 +08:00			`* 百度账号登录`
			`*`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`* @author yadong.zhang (yadong.zhang0415(a)gmail.com)`
💡 规范注释 2019-07-27 07:55:52 +08:00			`* @since 1.0.0`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`*/`
♻️ rename 2019-07-16 17:59:36 +08:00			`public class AuthBaiduRequest extends AuthDefaultRequest {`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00
			`public AuthBaiduRequest(AuthConfig config) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`super(config, AuthSource.BAIDU);`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`}`

♻️ 添加 Request 的 AuthStateCache 构造器 2019-08-02 14:57:13 +08:00			`public AuthBaiduRequest(AuthConfig config, AuthStateCache authStateCache) {`
			`super(config, AuthSource.BAIDU, authStateCache);`
			`}`

👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`@Override`
👽 修改login方法的参数为AuthCallback，封装回调返回的参数、支持state参数、增加code和state参数校验 2019-06-27 19:39:21 +08:00			`protected AuthToken getAccessToken(AuthCallback authCallback) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`HttpResponse response = doPostAuthorizationCode(authCallback.getCode());`
⚡ 优化代码 2019-07-19 18:05:24 +08:00			`return getAuthToken(response);`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`}`

			`@Override`
👌 修改获取accessToken时的返回值为实体类，方便扩展 2019-05-17 18:37:57 +08:00			`protected AuthUser getUserInfo(AuthToken authToken) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`HttpResponse response = doGetUserInfo(authToken);`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`String userInfo = response.body();`
			`JSONObject object = JSONObject.parseObject(userInfo);`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`this.checkResponse(object);`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`return AuthUser.builder()`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.uuid(object.getString("userid"))`
			`.username(object.getString("username"))`
			`.nickname(object.getString("username"))`
⚡ 优化代码、修复google获取用户信息失败的问题 2019-07-19 22:00:07 +08:00			`.avatar(getAvatar(object))`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`.remark(object.getString("userdetail"))`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.gender(AuthUserGender.getRealGender(object.getString("sex")))`
			`.token(authToken)`
⚡ 优化代码、修复google获取用户信息失败的问题 2019-07-19 22:00:07 +08:00			`.source(source)`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.build();`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`}`

⚡ 优化代码、修复google获取用户信息失败的问题 2019-07-19 22:00:07 +08:00			`private String getAvatar(JSONObject object) {`
			`String protrait = object.getString("portrait");`
			`return StringUtils.isEmpty(protrait) ? null : String.format("http://himg.bdimg.com/sys/portrait/item/%s.jpg", protrait);`
			`}`

👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`@Override`
👌 修改获取accessToken时的返回值为实体类，方便扩展 2019-05-17 18:37:57 +08:00			`public AuthResponse revoke(AuthToken authToken) {`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`HttpResponse response = doGetRevoke(authToken);`
			`JSONObject object = JSONObject.parseObject(response.body());`
⚡ 优化代码 2019-07-19 18:05:24 +08:00			`this.checkResponse(object);`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`// 返回1表示取消授权成功，否则失败`
♻️ rename 2019-07-16 17:59:36 +08:00			`AuthResponseStatus status = object.getIntValue("result") == 1 ? AuthResponseStatus.SUCCESS : AuthResponseStatus.FAILURE;`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`return AuthResponse.builder().code(status.getCode()).msg(status.getMsg()).build();`
			`}`

🍻 优化代码 2019-07-19 14:26:42 +08:00			`@Override`
			`public AuthResponse refresh(AuthToken authToken) {`
			`String refreshUrl = UrlBuilder.fromBaseUrl(this.source.refresh())`
			`.queryParam("grant_type", "refresh_token")`
			`.queryParam("refresh_token", authToken.getRefreshToken())`
			`.queryParam("client_id", this.config.getClientId())`
			`.queryParam("client_secret", this.config.getClientSecret())`
			`.build();`
			`HttpResponse response = HttpRequest.get(refreshUrl).execute();`
			`return AuthResponse.builder()`
			`.code(AuthResponseStatus.SUCCESS.getCode())`
⚡ 优化代码 2019-07-19 18:05:24 +08:00			`.data(this.getAuthToken(response))`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`.build();`
			`}`

♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`/**`
🔖 v1.9.3,详细更新内容参考update.md 2019-07-30 09:12:28 +08:00			`* 返回带{@code state}参数的授权url，授权回调时会带上这个{@code state}`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`*`
State优化第一步：去掉AuthState工具类 2019-07-25 22:32:55 +08:00			`* @param state state 验证授权流程的参数，可以防止csrf`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`* @return 返回授权地址`
💡 优化注释 2019-07-27 07:34:01 +08:00			`* @since 1.9.3`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`*/`
			`@Override`
State优化第一步：去掉AuthState工具类 2019-07-25 22:32:55 +08:00			`public String authorize(String state) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`return UrlBuilder.fromBaseUrl(source.authorize())`
			`.queryParam("response_type", "code")`
			`.queryParam("client_id", config.getClientId())`
			`.queryParam("redirect_uri", config.getRedirectUri())`
			`.queryParam("display", "popup")`
State优化第一步：去掉AuthState工具类 2019-07-25 22:32:55 +08:00			`.queryParam("state", getRealState(state))`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.build();`
			`}`
🍻 优化代码 2019-07-19 14:26:42 +08:00
⚡ 优化代码 2019-07-19 18:05:24 +08:00			`/**`
			`* 检查响应内容是否正确`
			`*`
			`* @param object 请求响应内容`
			`*/`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`private void checkResponse(JSONObject object) {`
⚡ 优化代码 2019-07-19 18:05:24 +08:00			`if (object.containsKey("error") \|\| object.containsKey("error_code")) {`
			`String msg = object.containsKey("error_description") ? object.getString("error_description") : object.getString("error_msg");`
			`throw new AuthException(msg);`
🍻 优化代码 2019-07-19 14:26:42 +08:00			`}`
			`}`
⚡ 优化代码 2019-07-19 18:05:24 +08:00
			`private AuthToken getAuthToken(HttpResponse response) {`
			`JSONObject accessTokenObject = JSONObject.parseObject(response.body());`
			`this.checkResponse(accessTokenObject);`
			`return AuthToken.builder()`
			`.accessToken(accessTokenObject.getString("access_token"))`
			`.refreshToken(accessTokenObject.getString("refresh_token"))`
			`.scope(accessTokenObject.getString("scope"))`
			`.expireIn(accessTokenObject.getIntValue("expires_in"))`
			`.build();`
			`}`
👽 重构AuthRequest的实现方式、加入百度授权登录 2019-02-20 13:14:14 +08:00			`}`