Web前后端笔记-vue封装http请求添加signature及后端(Java)解析并验证
生活随笔
收集整理的這篇文章主要介紹了
Web前后端笔记-vue封装http请求添加signature及后端(Java)解析并验证
小編覺得挺不錯(cuò)的,現(xiàn)在分享給大家,幫大家做個(gè)參考.
?
首先帖下運(yùn)行截圖:
簽名過期情況:
簽名錯(cuò)誤情況:
這里npm要導(dǎo)入js-md5,并且在main.js中添加
首先來看下前端代碼:
import axios from 'axios'axios.defaults.timeout = 35 * 1000;/*** Get方法* @param {*} url * @param {*} params */ export function fetch(url, params = {}){return new Promise((resolve, reject) => {params['timestamp'] = new Date().getTime();let oriInfo = "";for(let key in params){oriInfo += params[key] + "$";}let paraString = oriInfo.substr(0, oriInfo.length - 1);params['signature'] = this.$md5(paraString);axios.get(url, {params : params}).then(response => {resolve(response);}).catch(err => {reject(err)})}) }export function post(url, data = {}){return new Promise((resolve, reject) => {axios.post(url, data).then(response => {resolve(response);},err => {reject(err);})}) }這里采用的是vue?cli,axios要先npm?install下。這里目前只對(duì)GET方法進(jìn)行了處理。
?
在main.js中設(shè)置下全局的
import {fetch, post} from './xxx/xxx/http' Vue.prototype.$httpGet = fetch; Vue.prototype.$httpPost = post;調(diào)用的時(shí)候使用這種方式就可以了
this.$httpGet('/xxx/xxx/xxx, {'tableName' : 'xxxxx'}).then((res)=> {//console.log(res);});這里調(diào)用httpGet后會(huì)將頭的數(shù)據(jù)生成xxx$xxx$xxx生成對(duì)應(yīng)的dm5。
?
這里后端創(chuàng)建一個(gè)配置類,extends?WebMvcConfigurerAdapter。
這里我用的是1.5.21,2.xx.xx版本用其他類
@Configuration public class MyMvcConfig extends WebMvcConfigurerAdapter {@Beanpublic WebMvcConfigurerAdapter webMvcConfigurerAdapter(){WebMvcConfigurerAdapter adapter = new WebMvcConfigurerAdapter() {@Overridepublic void addInterceptors(InterceptorRegistry registry) {registry.addInterceptor(new XInterceptor()).addPathPatterns("/xxx/**");}};return adapter;} }對(duì)應(yīng)的XInterceptor如下:
public class XInterceptor implements HandlerInterceptor {@Overridepublic boolean preHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o) throws Exception {if(httpServletRequest.getMethod().equals("GET")){String url = httpServletRequest.getRequestURI();String contextPath = httpServletRequest.getServletPath();String para = httpServletRequest.getQueryString();Enumeration<String> parameterNames = httpServletRequest.getParameterNames();Map<String, String[]> parameterMap = httpServletRequest.getParameterMap();//參數(shù)是否正常if(!parameterMap.containsKey("timestamp") || !parameterMap.containsKey("signature")){httpServletResponse.sendError(503);return false;}//先檢測簽名是否過期 30s內(nèi)不會(huì)過期Long timestamp = Long.valueOf(parameterMap.get("timestamp")[0]);Long currentStamp = System.currentTimeMillis();if(timestamp < (currentStamp - 30 * 1000)){httpServletResponse.sendError(501);return false;}//檢查簽名是否合法String originStr = "";for(Enumeration key = parameterNames ; parameterNames.hasMoreElements();){String KeyPara = key.nextElement().toString();if(KeyPara.equals("signature"))continue;originStr += parameterMap.get(KeyPara)[0] + "$";}originStr = originStr.substring(0, originStr.length() - 1);String md5Str = MD5Utils.generateMD5(originStr);if(!md5Str.equals(parameterMap.get("signature")[0])){httpServletResponse.sendError(502);return false;}}else{}return true;}@Overridepublic void postHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, ModelAndView modelAndView) throws Exception {}@Overridepublic void afterCompletion(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, Exception e) throws Exception {} }這里每一個(gè)timestamp生存時(shí)間為30s。
?
這里調(diào)用httpServletResponse.sendError會(huì)被、
@RestController public class ErrorController implements org.springframework.boot.autoconfigure.web.ErrorController {@RequestMapping("/error")public Object handleError(HttpServletRequest request){.........} }會(huì)集中到error中處理
總結(jié)
以上是生活随笔為你收集整理的Web前后端笔记-vue封装http请求添加signature及后端(Java)解析并验证的全部內(nèi)容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: Python文档阅读笔记-PyAutoG
- 下一篇: TCP/IP笔记-Qt使用Win10pc