基于uniapp原生组件uni-ui 做一个登录注册与个人中心(后端篇)
基于uniapp原生组件uni-ui 做一个登录注册与个人中心(后端篇)
简介
本文使用springboot+mybatis-plus实现用户表的后端代码,包含加密功能。
数据库
CREATE TABLE `user` (`id` int NOT NULL AUTO_INCREMENT,`username` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,`avatar` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,`password_hash` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,`salt` varchar(100) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,`grade` int NOT NULL,`role` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,PRIMARY KEY (`id`) USING BTREE) ENGINE = InnoDB CHARACTER SET = utf8mb4 COLLATE = utf8mb4_bin ROW_FORMAT = DYNAMIC;
项目编写
- 创建项目
pom.xml
<?xml version=”1.0” encoding=”UTF-8”?>
<project xmlns=”http://maven.apache.org/POM/4.0.0“ xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance“xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd"><modelVersion>4.0.0</modelVersion><parent><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-parent</artifactId><version>2.7.11</version><relativePath/> <!-- lookup parent from repository --></parent><groupId>com.example</groupId><artifactId>UserDemo</artifactId><version>0.0.1-SNAPSHOT</version><name>UserDemo</name><description>UserDemo</description><properties><java.version>17</java.version></properties><dependencies><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-web</artifactId><version>2.7.6</version></dependency><dependency><groupId>org.springframework.data</groupId><artifactId>spring-data-jpa</artifactId><version>2.5.6</version></dependency><dependency><groupId>org.hibernate</groupId><artifactId>hibernate-core</artifactId><version>5.6.3.Final</version></dependency>
<dependency><groupId>javax.persistence</groupId><artifactId>javax.persistence-api</artifactId><version>2.2</version></dependency><dependency><groupId>org.mybatis.spring.boot</groupId><artifactId>mybatis-spring-boot-starter</artifactId><version>2.3.0</version></dependency><dependency><groupId>org.mybatis.spring.boot</groupId><artifactId>mybatis-spring-boot-starter</artifactId><version>2.3.0</version></dependency><dependency><groupId>com.mysql</groupId><artifactId>mysql-connector-j</artifactId><scope>runtime</scope></dependency><dependency><groupId>org.projectlombok</groupId><artifactId>lombok</artifactId><optional>true</optional></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-test</artifactId><scope>test</scope></dependency><dependency><groupId>com.baomidou</groupId><artifactId>mybatis-plus-boot-starter</artifactId><version>3.4.2</version></dependency><dependency><groupId>io.jsonwebtoken</groupId><artifactId>jjwt-api</artifactId><version>0.11.2</version></dependency><!-- 如果要使用 jjwt 的实现,还需要添加以下依赖 --><dependency><groupId>io.jsonwebtoken</groupId><artifactId>jjwt-impl</artifactId><version>0.11.2</version><scope>runtime</scope></dependency><dependency><groupId>io.jsonwebtoken</groupId><artifactId>jjwt-jackson</artifactId><version>0.11.2</version><scope>runtime</scope></dependency><!-- Hibernate Validator --><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-validation</artifactId></dependency><dependency><groupId>org.apache.shiro</groupId><artifactId>shiro-core</artifactId><version>1.8.0</version></dependency><dependency><groupId>org.apache.commons</groupId><artifactId>commons-lang3</artifactId><version>3.12.0</version></dependency></dependencies><build><plugins><plugin><groupId>org.springframework.boot</groupId><artifactId>spring-boot-maven-plugin</artifactId><configuration><excludes><exclude><groupId>org.projectlombok</groupId><artifactId>lombok</artifactId></exclude></excludes></configuration></plugin></plugins></build></project>
application.properties
?????
spring.datasource.url=jdbc
//localhost:3306/exam4?characterEncoding=utf8&useSSL=false&serverTimezone=Asia/Shanghai
spring.datasource.username=root
spring.datasource.password=123456
spring.datasource.driver-class-name=com.mysql.cj.jdbc.Driver???????
server.port=8081
MyBatis-Plus ??
mybatis-plus.mapper-locations=classpath:/mapper/*.xml
mybatis-plus.type-aliases-package=com.example.demo.entity
mybatis-plus.global-config.db-config.id-type=auto
mybatis-plus.configuration.map-underscore-to-camel-case=true
mybatis-plus.configuration.use-generated-keys=true
mybatis-plus.configuration.map-enum-as-ordinal=false
mybatis-plus.configuration.enum-handler=com.baomidou.mybatisplus.extension.handlers.MybatisEnumTypeHandler
代码编写
项目结构
Bean
User
import lombok.AllArgsConstructor;import lombok.Data;import com.baomidou.mybatisplus.annotation.*;import lombok.NoArgsConstructor;@Data@AllArgsConstructor@NoArgsConstructor@TableName("user")public class User {@TableId(type = IdType.AUTO)private Long id;private String username;private String avatar;private String passwordHash;private String salt;private int grade;private String role;}
Result
import lombok.Data;import org.springframework.lang.Nullable;@Datapublic class Result<T> {private int code;private String message;@Nullableprivate T data;public static <T> Result<T> success(T data) {return success(data, "操作成功");}public static <T> Result<T> success(T data, String message) {return new Result<>(200, message, data);}public static <T> Result<T> fail(String message) {return new Result<>(500, message, null);}public Result(int code, String message, @Nullable T data) {this.code = code;this.message = message;this.data = data;}}
Tool
import java.security.MessageDigest;import java.security.NoSuchAlgorithmException;/*** 安全相关工具类* 提供各种安全相关的操作方法*/public class SecurityTool {/*** 对字符串进行MD5加密* @param str 待加密的字符串* @return 加密结果*/public static String MD5Encode(String str) {try {MessageDigest md = MessageDigest.getInstance("MD5");md.update(str.getBytes()); //对字符串加密byte[] encodedBytes = md.digest();StringBuffer hexString = new StringBuffer();for (int i = 0; i < encodedBytes.length; i++) {String hex = Integer.toHexString(0xff & encodedBytes[i]);if (hex.length() == 1) {hexString.append('0');}hexString.append(hex);}return hexString.toString();} catch (NoSuchAlgorithmException e) {//省略异常处理}return null;}}
Config
CorsConfig
import org.springframework.context.annotation.Bean;import org.springframework.context.annotation.Configuration;import org.springframework.web.servlet.config.annotation.CorsRegistry;import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;@Configurationpublic class CorsConfig {@Beanpublic WebMvcConfigurer corsConfigurer() {return new WebMvcConfigurerAdapter() {@Overridepublic void addCorsMappings(CorsRegistry registry) {// 允许来自本地的8080端口发起的跨域请求registry.addMapping("/api/**").allowedOrigins("*").allowedMethods("GET", "POST", "PUT", "DELETE").allowCredentials(true).maxAge(3600);}};}}
Mapper
UserMapper
import com.baomidou.mybatisplus.core.mapper.BaseMapper;import com.example.userdemo.Bean.User;import org.apache.ibatis.annotations.Mapper;@Mapperpublic interface UserMapper extends BaseMapper<User> {}
Service
IUserService
import com.baomidou.mybatisplus.extension.service.IService;import com.example.userdemo.Bean.User;public interface IUserService extends IService<User> {/*** 用户注册* @param user 待注册用户信息* @return 注册成功返回true,失败返回false*/boolean register(User user);/*** 用户登录* @param username 用户名* @param password 密码* @return 登录成功返回对应用户的信息,失败返回null*/User login(String username, String password);/*** 根据用户名获取用户* @param username 用户名* @return 用户*/User getByUsername(String username);}
Impl
UserServiceImpl
import java.util.ArrayList;import java.util.Random;@Servicepublic class UserServiceImpl extends ServiceImpl<UserMapper, User> implements IUserService {/*** 用户注册实现* 先查用户名是否存在,不存在则加密密码进行保存* @param user 待注册用户信息* @return 注册成功返回true,失败返回false*/@Overridepublic boolean register(User user) {String username = user.getUsername();QueryWrapper<User> wrapper = new QueryWrapper<>();wrapper.eq("username", username); //查询用户名是否存在User hasUser = getOne(wrapper);if (hasUser != null) {//数据库中已经存在该用户名,注册失败return false;}// 随机生成一个头像ArrayList<String> arrayList = new ArrayList<>();arrayList.add("https://pic3.zhimg.com/v2-d6ddf0128212235dddf76df7f4383f53.jpg");arrayList.add("https://p0.ssl.img.360kuai.com/t01948ff2341a5d1ac3.jpg");arrayList.add("https://pic3.zhimg.com/v2-65020b1231ba55d55ee3d6a29ff3df26_r.jpg");arrayList.add("https://pic2.zhimg.com/v2-fc348d5e926116782149d2151dc09834.jpg");arrayList.add("https://pic4.zhimg.com/v2-797973e16edcd0ccaab44cfbfa08d2d3_r.jpg");Random random = new Random();user.setAvatar(arrayList.get(random.nextInt(arrayList.size())));String password = user.getPasswordHash();String salt = RandomStringUtils.randomAlphabetic(6); //生成盐String encryptedPwd = SecurityTool.MD5Encode(password + salt); //对密码+盐进行加密user.setPasswordHash(encryptedPwd);user.setSalt(salt);boolean successFlag = save(user);return successFlag;}@Overridepublic User getByUsername(String username) {QueryWrapper<User> queryWrapper = new QueryWrapper<>();queryWrapper.eq("username", username);return getOne(queryWrapper);}/*** 用户登录实现* 先使用用户名查询对应用户,然后进行密码比对* @param username 用户名* @param password 密码* @return 如果成功则返回对应用户信息(不包含密码和盐),失败返回null*/@Overridepublic User login(String username, String password) {QueryWrapper<User> wrapper = new QueryWrapper<>();wrapper.eq("username", username); //根据用户名找到对应的User对象User user = getOne(wrapper);if (user == null) {//未找到该用户return null;}String salt = user.getSalt();String encryptedPwd = SecurityTool.MD5Encode(password + salt); //对密码+盐进行加密if (!encryptedPwd.equals(user.getPasswordHash())) {//密码错误return null;}user.setPasswordHash(null); //不暴露密码hash与盐值Salt给前端user.setSalt(null);return user; //一切正常,返回相应用户信息}}
Controller
UserController
import com.baomidou.mybatisplus.core.toolkit.StringUtils;import com.example.userdemo.Bean.Result;import com.example.userdemo.Bean.User;import com.example.userdemo.Service.IUserService;import org.springframework.beans.factory.annotation.Autowired;import org.springframework.web.bind.annotation.*;import java.util.ArrayList;import java.util.List;import java.util.Random;@RestController@RequestMapping("/user")public class UserController {@Autowiredprivate IUserService userService;/*** 获取全部用户信息列表*/@GetMapping("/all")public Result<List<User>> listAllUsers() {List<User> userList = userService.list();return Result.success(userList);}/*** 根据用户ID获取用户信息*/@GetMapping("/{id}")public Result<User> getUserById(@PathVariable(value = "id") Long id) {User user = userService.getById(id);if (user == null) {return Result.fail("该用户不存在");}return Result.success(user);}/*** 更新用户信息*/@PostMapping("/save")public Result<Boolean> UpdateUser(@RequestBody User user) {// 判断新的username是否合法if (StringUtils.isBlank(user.getUsername())) {return Result.fail("更新失败:用户名不能为空");}// 校验用户名是否重复,如果已经存在就返回错误信息User existingUser = userService.getByUsername(user.getUsername());if (existingUser != null && !existingUser.getId().equals(user.getId())) {return Result.fail("更新失败:该用户名已被占用");}// 获取旧用户并更新部分信息User oldUser = userService.getById(user.getId());if (oldUser == null) {return Result.fail("更新失败:该用户不存在");}oldUser.setUsername(user.getUsername());oldUser.setGrade(user.getGrade());oldUser.setPasswordHash(user.getPasswordHash());boolean flag = userService.save(oldUser);if (flag) {return Result.success(true, "保存成功");} else {return Result.fail("保存失败");}}/*** 根据用户ID删除用户信息*/@DeleteMapping("/delete/{id}")public Result<Boolean> deleteUserById(@PathVariable(value = "id") Long id) {boolean flag = userService.removeById(id);if (flag) {return Result.success(true, "删除成功");} else {return Result.fail("删除失败");}}/*** 用户注册*/@PostMapping("/register")public Result<Boolean> register(@RequestBody User user) {System.out.println(user);boolean flag = userService.register(user);if (flag) {return Result.success(true, "注册成功");} else {return Result.fail("注册失败,用户名已被占用");}}/*** 用户登录*/@PostMapping("/login")public Result<User> login(@RequestBody User user) {String username = user.getUsername();String password = user.getPasswordHash();User user2 = userService.login(username, password);if (user == null) {return Result.fail("用户名或密码错误,登录失败");} else {return Result.success(user2, "登录成功");}}}
Postman测试
好的,请按照以下步骤在 Postman 中测试接口:
以 POST 请求方式发送以下数据至
http://localhost:8081/user/register:{
"username": "test123","passwordHash": "test1234","grade": 1
}
若注册成功,会返回请求成功信息:
{"code": 200,"message": "注册成功","data": true}
若注册失败(用户名已存在),会返回出错信息:
{"code": 500,"message": "注册失败,用户名已被占用","data": null}
以 POST 请求方式发送以下数据至
http://localhost:8080/user/login:{
"username": "test123","password": "test1234"
}
若登录成功,会返回用户信息:
{"code": 200,"message": "登录成功","data": {"id": 用户ID,"username": "test123","avatar": null,"passwordHash": null,"salt": null,"grade": 1,"role": null}}
若登录失败(用户名或密码错误),会返回出错信息:
{"code": 500,"message": "用户名或密码错误,登录失败","data": null}
- 以 GET 请求方式发送以下数据至
http://localhost:8080/user/all:
若查询全部用户信息列表成功,会返回用户信息列表:
{"code": 200,"message": "操作成功","data": [{"id": 用户1ID,"username": "test123","avatar": null,"passwordHash": null,"salt": null,"grade": 0,"role": null},{"id": 用户2ID,"username": "user","avatar": null,"passwordHash": null,"salt": null,"grade": 1,"role": null}]}
- 以 GET 请求方式发送以下数据至
http://localhost:8080/user/1(用户ID为 1 的具体用户):
若根据 ID 获取用户信息成功,会返回对应的用户信息:
{"code": 200,"message": "操作成功","data": {"id": 用户1ID,"username": "test123","avatar": null,"passwordHash": null,"salt": null,"grade": 0,"role": null}}
若未找到该用户,会返回出错信息:
{"code": 500,"message": "该用户不存在","data": null}
以 POST 请求方式发送以下数据至
http://localhost:8080/user/save:{
"id": <当前用户ID>,"username": "test321","passwordHash": "test4321","grade": 2
}
若新增或更新成功,会返回请求成功信息:
{"code": 200,"message": "保存成功","data": true}
注意:若采用 POST 请求方式,请在请求头中添加 Content-Type 为 application/json。
希望这个例子可以帮助您更好地理解如何使用 Spring Boot 框架和 Postman 工具进行接口测试。
╰+哭是因爲堅強的太久メ
今天药忘吃喽~
£神魔★判官ぃ
以你之姓@
左手的ㄟ右手
还没有评论,来说两句吧...