短信登录

airport-admin/src/main/java/com/sundot/airport/web/controller/system/SmsController.java

@@ -0,0 +1,54 @@
+package com.sundot.airport.web.controller.system;
+
+import com.sundot.airport.common.core.domain.AjaxResult;
+import com.sundot.airport.common.service.SmsService;
+import com.sundot.airport.common.utils.StringUtils;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiOperation;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;
+
+/**
+ * 短信验证码控制器
+ *
+ * @author wangxx
+ */
+@Slf4j
+@RestController
+@RequestMapping("/sms")
+@Api(tags = "短信验证码管理")
+public class SmsController {
+
+    @Autowired
+    private SmsService smsService;
+
+    /**
+     * 发送短信验证码
+     *
+     * @param phoneNumber 手机号码
+     * @return 结果
+     */
+    @PostMapping("/code")
+    @ApiOperation("发送短信验证码")
+    public AjaxResult sendSmsCode(@RequestParam String phoneNumber) {
+        if (StringUtils.isEmpty(phoneNumber)) {
+            return AjaxResult.error("手机号码不能为空");
+        }
+
+        try {
+            boolean result = smsService.sendSmsCode(phoneNumber);
+            if (result) {
+                return AjaxResult.success("验证码发送成功，请注意查收短信");
+            } else {
+                return AjaxResult.error("验证码发送失败");
+            }
+        } catch (Exception e) {
+            log.error("发送短信验证码异常：{}", e.getMessage(), e);
+            return AjaxResult.error(e.getMessage());
+        }
+    }
+}

airport-admin/src/main/java/com/sundot/airport/web/controller/system/SysLoginController.java

@@ -61,9 +61,16 @@ public class SysLoginController {
     @PostMapping("/login")
     public AjaxResult login(@RequestBody LoginBody loginBody) {
         AjaxResult ajax = AjaxResult.success();
-        // 生成令牌
-        String token = loginService.login(loginBody.getUsername(), loginBody.getPassword(), loginBody.getCode(),
-                loginBody.getUuid());
+        String token;
+        // 判断登录类型
+        if ("sms".equals(loginBody.getLoginType())) {
+            // 短信验证码登录
+            token = loginService.smsLogin(loginBody);
+        } else {
+            // 密码登录（默认）
+            token = loginService.login(loginBody.getUsername(), loginBody.getPassword(), loginBody.getCode(),
+                    loginBody.getUuid());
+        }
         ajax.put(Constants.TOKEN, token);
         return ajax;
     }

airport-admin/src/main/resources/application.yml

@@ -148,3 +148,17 @@ xss:
   excludes: /system/notice
   # 匹配链接
   urlPatterns: /system/*,/monitor/*,/tool/*
+
+# 阿里云短信配置
+aliyun:
+  sms:
+    # AccessKey ID
+    accessKeyId: LTAI5t8wXQNPkEQxEk1vvUay
+    # AccessKey Secret
+    accessKeySecret: RIRVNNt5IjJ0VJqSszHk3RYZG9xAdA
+    # 短信签名名称
+    signName: 北京阳光汇点数码科技
+    # 短信模板 CODE
+    templateCode: SMS_503630027
+    # 是否启用短信登录
+    enabled: true

airport-common/pom.xml

@@ -148,6 +148,13 @@
             <artifactId>easyexcel</artifactId>
         </dependency>
 
+        <!-- 阿里云短信 SDK -->
+        <dependency>
+            <groupId>com.aliyun</groupId>
+            <artifactId>dysmsapi20170525</artifactId>
+            <version>4.5.0</version>
+        </dependency>
+
     </dependencies>
 
 </project>

airport-common/src/main/java/com/sundot/airport/common/config/AliyunSmsConfig.java

@@ -0,0 +1,41 @@
+package com.sundot.airport.common.config;
+
+import lombok.Data;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.stereotype.Component;
+
+/**
+ * 阿里云短信配置
+ *
+ * @author wangxx
+ */
+@Data
+@Component
+@ConfigurationProperties(prefix = "aliyun.sms")
+public class AliyunSmsConfig {
+
+    /**
+     * 访问凭证 AccessKey ID
+     */
+    private String accessKeyId;
+
+    /**
+     * 访问凭证 AccessKey Secret
+     */
+    private String accessKeySecret;
+
+    /**
+     * 短信签名名称
+     */
+    private String signName;
+
+    /**
+     * 短信模板 CODE
+     */
+    private String templateCode;
+
+    /**
+     * 是否启用短信登录（默认关闭）
+     */
+    private Boolean enabled;
+}

airport-common/src/main/java/com/sundot/airport/common/constant/CacheConstants.java

@@ -50,4 +50,14 @@ public class CacheConstants {
      * 用户巡检合格率全量数据缓存
      */
     public static final String USER_CHECK_PASS_RATE_KEY = "user_check_pass_rate:";
+
+    /**
+     * 短信验证码 redis key
+     */
+    public static final String SMS_CODE_KEY = "sms_codes:";
+
+    /**
+     * 短信发送间隔 redis key
+     */
+    public static final String SMS_SEND_INTERVAL_KEY = "sms_send_interval:";
 }

airport-common/src/main/java/com/sundot/airport/common/core/domain/model/LoginBody.java

@@ -17,15 +17,25 @@ public class LoginBody {
     private String password;
 
     /**
-     * 验证码
+     * 验证码（图形验证码或短信验证码）
      */
     private String code;
 
     /**
-     * 唯一标识
+     * 唯一标识（用于图形验证码）
      */
     private String uuid;
 
+    /**
+     * 手机号码（用于短信登录）
+     */
+    private String phoneNumber;
+
+    /**
+     * 登录类型：password-密码登录，sms-短信登录
+     */
+    private String loginType = "password";
+
     public String getUsername() {
         return username;
     }
@@ -57,4 +67,20 @@ public class LoginBody {
     public void setUuid(String uuid) {
         this.uuid = uuid;
     }
+
+    public String getPhoneNumber() {
+        return phoneNumber;
+    }
+
+    public void setPhoneNumber(String phoneNumber) {
+        this.phoneNumber = phoneNumber;
+    }
+
+    public String getLoginType() {
+        return loginType;
+    }
+
+    public void setLoginType(String loginType) {
+        this.loginType = loginType;
+    }
 }

airport-common/src/main/java/com/sundot/airport/common/service/SmsService.java

@@ -0,0 +1,35 @@
+package com.sundot.airport.common.service;
+
+/**
+ * 短信服务接口
+ *
+ * @author wangxx
+ */
+public interface SmsService {
+
+    /**
+     * 发送短信验证码
+     *
+     * @param phoneNumber 手机号码
+     * @return 发送结果，true-成功，false-失败
+     */
+    boolean sendSmsCode(String phoneNumber);
+
+    /**
+     * 校验短信验证码
+     *
+     * @param phoneNumber 手机号码
+     * @param code        验证码
+     * @return 校验结果，true-成功，false-失败
+     */
+    boolean verifySmsCode(String phoneNumber, String code);
+
+    /**
+     * 发送自定义短信内容（用于扩展）
+     *
+     * @param phoneNumber   手机号码
+     * @param templateParam 模板参数（JSON 格式）
+     * @return 发送结果，true-成功，false-失败
+     */
+    boolean sendSms(String phoneNumber, String templateParam);
+}

airport-common/src/main/java/com/sundot/airport/common/service/impl/AliyunSmsServiceImpl.java

@@ -0,0 +1,190 @@
+package com.sundot.airport.common.service.impl;
+
+import cn.hutool.core.util.RandomUtil;
+import cn.hutool.json.JSONUtil;
+import com.aliyun.dysmsapi20170525.Client;
+import com.aliyun.dysmsapi20170525.models.SendSmsRequest;
+import com.aliyun.dysmsapi20170525.models.SendSmsResponse;
+import com.aliyun.teaopenapi.models.Config;
+import com.sundot.airport.common.config.AliyunSmsConfig;
+import com.sundot.airport.common.constant.CacheConstants;
+import com.sundot.airport.common.core.redis.RedisCache;
+import com.sundot.airport.common.exception.ServiceException;
+import com.sundot.airport.common.service.SmsService;
+import com.sundot.airport.common.utils.StringUtils;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Service;
+
+import javax.annotation.PostConstruct;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.concurrent.TimeUnit;
+
+/**
+ * 短信服务实现类
+ *
+ * @author wangxx
+ */
+@Slf4j
+@Service
+public class AliyunSmsServiceImpl implements SmsService {
+
+    @Autowired
+    private AliyunSmsConfig smsConfig;
+
+    @Autowired
+    private RedisCache redisCache;
+
+    private Client client;
+
+    /**
+     * 短信验证码有效期（秒）
+     */
+    private static final int CODE_EXPIRE_TIME = 300;
+
+    /**
+     * 短信发送间隔（秒）
+     */
+    private static final int SEND_INTERVAL = 60;
+
+    @PostConstruct
+    public void init() {
+        if (smsConfig.getEnabled()) {
+            try {
+                Config config = new Config()
+                        .setAccessKeyId(smsConfig.getAccessKeyId())
+                        .setAccessKeySecret(smsConfig.getAccessKeySecret());
+                // 设置 endpoint，不同地域可能不同，请根据实际情况修改
+                config.endpoint = "dysmsapi.aliyuncs.com";
+                client = new Client(config);
+                log.info("短信客户端初始化成功");
+            } catch (Exception e) {
+                log.error("短信客户端初始化失败：{}", e.getMessage(), e);
+            }
+        } else {
+            log.warn("短信登录功能未开启，跳过短信客户端初始化");
+        }
+    }
+
+    @Override
+    public boolean sendSmsCode(String phoneNumber) {
+        if (!smsConfig.getEnabled()) {
+            throw new ServiceException("短信登录功能暂未开启");
+        }
+
+        if (StringUtils.isEmpty(phoneNumber)) {
+            throw new ServiceException("手机号码不能为空");
+        }
+
+        // 校验手机号格式
+        if (!isValidPhone(phoneNumber)) {
+            throw new ServiceException("手机号码格式不正确");
+        }
+
+        // 检查是否发送频繁
+        String sendKey = CacheConstants.SMS_SEND_INTERVAL_KEY + phoneNumber;
+        if (redisCache.hasKey(sendKey)) {
+            throw new ServiceException("短信发送太过频繁，请" + getExpireTime(sendKey) + "秒后再试");
+        }
+
+        // 生成 6 位数字验证码
+        String code = RandomUtil.randomNumbers(6);
+
+        // 构建模板参数
+        Map<String, String> templateParam = new HashMap<>();
+        templateParam.put("code", code);
+
+        // 发送到阿里云短信
+        boolean result = sendSms(phoneNumber, JSONUtil.toJsonStr(templateParam));
+
+        if (result) {
+            // 存储验证码到 Redis，用于后续验证
+            String verifyKey = CacheConstants.SMS_CODE_KEY + phoneNumber;
+            redisCache.setCacheObject(verifyKey, code, CODE_EXPIRE_TIME, TimeUnit.SECONDS);
+
+            // 设置发送间隔锁
+            redisCache.setCacheObject(sendKey, "1", SEND_INTERVAL, TimeUnit.SECONDS);
+
+            log.info("短信验证码发送成功 - 手机号：{}, 验证码：{}", phoneNumber, code);
+        } else {
+            log.error("短信验证码发送失败 - 手机号：{}", phoneNumber);
+        }
+
+        return result;
+    }
+
+    @Override
+    public boolean verifySmsCode(String phoneNumber, String code) {
+        if (!smsConfig.getEnabled()) {
+            throw new ServiceException("短信登录功能暂未开启");
+        }
+
+        if (StringUtils.isEmpty(phoneNumber) || StringUtils.isEmpty(code)) {
+            throw new ServiceException("手机号或验证码不能为空");
+        }
+
+        String verifyKey = CacheConstants.SMS_CODE_KEY + phoneNumber;
+        String storedCode = redisCache.getCacheObject(verifyKey);
+
+        if (storedCode == null) {
+            throw new ServiceException("验证码已过期，请重新获取");
+        }
+
+        if (!code.equals(storedCode)) {
+            throw new ServiceException("验证码错误");
+        }
+
+        // 验证成功后删除验证码，防止重复使用
+        redisCache.deleteObject(verifyKey);
+        return true;
+    }
+
+    @Override
+    public boolean sendSms(String phoneNumber, String templateParam) {
+        if (!smsConfig.getEnabled()) {
+            throw new ServiceException("短信登录功能暂未开启");
+        }
+
+        try {
+            SendSmsRequest request = new SendSmsRequest()
+                    .setPhoneNumbers(phoneNumber)
+                    .setSignName(smsConfig.getSignName())
+                    .setTemplateCode(smsConfig.getTemplateCode())
+                    .setTemplateParam(templateParam);
+
+            SendSmsResponse response = client.sendSms(request);
+
+            // 判断发送结果
+            if ("OK".equals(response.getBody().getCode())) {
+                log.info("短信发送成功 - 手机号：{}, 请求 ID: {}", phoneNumber, response.getBody().getRequestId());
+                return true;
+            } else {
+                log.error("短信发送失败 - 手机号：{}, 错误码：{}, 错误信息：{}",
+                        phoneNumber, response.getBody().getCode(), response.getBody().getMessage());
+                throw new ServiceException("短信发送失败：" + response.getBody().getMessage());
+            }
+        } catch (Exception e) {
+            log.error("发送短信异常 - 手机号：{}, 错误：{}", phoneNumber, e.getMessage(), e);
+            throw new ServiceException("短信发送异常：" + e.getMessage());
+        }
+    }
+
+    /**
+     * 验证手机号格式
+     */
+    private boolean isValidPhone(String phoneNumber) {
+        if (phoneNumber == null || phoneNumber.length() != 11) {
+            return false;
+        }
+        String regex = "^1(3[0-9]|4[5-9]|5[0-35-9]|6[2567]|7[0-8]|8[0-9]|9[0-35-9])\\d{8}$";
+        return phoneNumber.matches(regex);
+    }
+
+    /**
+     * 获取 Redis key 的剩余过期时间
+     */
+    private Long getExpireTime(String key) {
+        return redisCache.getExpire(key);
+    }
+}

airport-framework/src/main/java/com/sundot/airport/framework/config/SecurityConfig.java

@@ -108,7 +108,7 @@ public class SecurityConfig {
                 .authorizeHttpRequests((requests) -> {
                     permitAllUrl.getUrls().forEach(url -> requests.antMatchers(url).permitAll());
                     // 对于登录login 注册register 验证码captchaImage 允许匿名访问
-                    requests.antMatchers("/login", "/register", "/captchaImage").permitAll()
+                    requests.antMatchers("/login", "/register", "/captchaImage", "/sms/code").permitAll()
                             // 静态资源，可匿名访问
                             .antMatchers(HttpMethod.GET, "/", "/*.html", "/**/*.html", "/**/*.css", "/**/*.js", "/profile/**").permitAll()
                             .antMatchers("/swagger-ui.html", "/swagger-resources/**", "/webjars/**", "/*/api-docs", "/druid/**").permitAll()

airport-framework/src/main/java/com/sundot/airport/framework/config/WebAdminInterceptorConfig.java

@@ -21,7 +21,7 @@ public class WebAdminInterceptorConfig implements WebMvcConfigurer {
     public void addInterceptors(InterceptorRegistry registry) {
         registry.addInterceptor(requestSourceInterceptor)
                 .addPathPatterns("/**")
-                .excludePathPatterns("/captchaImage", "/login", "/logout");
+                .excludePathPatterns("/captchaImage", "/login", "/logout", "/sms/code");
     }
 
 }

airport-framework/src/main/java/com/sundot/airport/framework/web/service/SysLoginService.java

@@ -2,6 +2,10 @@ package com.sundot.airport.framework.web.service;
 
 import javax.annotation.Resource;
 
+import com.sundot.airport.common.config.AliyunSmsConfig;
+import com.sundot.airport.common.core.domain.model.LoginBody;
+import com.sundot.airport.common.service.SmsService;
+import com.sundot.airport.common.utils.spring.SpringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.authentication.BadCredentialsException;
@@ -52,6 +56,12 @@ public class SysLoginService {
     @Autowired
     private ISysConfigService configService;
 
+    @Autowired
+    private SmsService smsService;
+
+    @Autowired
+    private AliyunSmsConfig smsConfig;
+
     /**
      * 登录验证
      *
@@ -62,6 +72,46 @@ public class SysLoginService {
      * @return 结果
      */
     public String login(String username, String password, String code, String uuid) {
+        // 默认使用密码登录
+        return loginByPassword(username, password, code, uuid);
+    }
+
+    /**
+     * 短信验证码登录
+     *
+     * @param loginBody 登录信息
+     * @return 令牌
+     */
+    public String smsLogin(LoginBody loginBody) {
+        String phoneNumber = loginBody.getPhoneNumber();
+        String smsCode = loginBody.getCode();
+
+        // 校验短信验证码
+        validateSmsCode(phoneNumber, smsCode);
+
+        // 根据手机号查询用户
+        SysUser user = userService.selectUserByPhonenumber(phoneNumber);
+        if (user == null) {
+            AsyncManager.me().execute(AsyncFactory.recordLogininfor(phoneNumber, Constants.LOGIN_FAIL, MessageUtils.message("user.not.exists")));
+            throw new UserNotExistsException();
+        }
+
+        // 检查用户状态
+        smsLoginPreCheck(user.getUserName());
+
+        // 创建登录用户信息
+        LoginUser loginUser = createLoginUserForSms(user);
+
+        AsyncManager.me().execute(AsyncFactory.recordLogininfor(user.getUserName(), Constants.LOGIN_SUCCESS, MessageUtils.message("user.login.success")));
+        recordLoginInfo(loginUser.getUserId());
+        // 生成 token
+        return tokenService.createToken(loginUser);
+    }
+
+    /**
+     * 密码登录
+     */
+    private String loginByPassword(String username, String password, String code, String uuid) {
         // 验证码校验
         validateCaptcha(username, code, uuid);
         // 登录前置校验
@@ -117,6 +167,22 @@ public class SysLoginService {
     }
 
     /**
+     * 校验短信验证码
+     *
+     * @param phoneNumber 手机号码
+     * @param code        短信验证码
+     */
+    private void validateSmsCode(String phoneNumber, String code) {
+        // 检查是否开启短信登录
+        if (!smsConfig.getEnabled()) {
+            throw new ServiceException("短信登录功能暂未开启");
+        }
+
+        // 校验短信验证码
+        smsService.verifySmsCode(phoneNumber, code);
+    }
+
+    /**
      * 登录前置校验
      *
      * @param username 用户名
@@ -149,6 +215,51 @@ public class SysLoginService {
     }
 
     /**
+     * 短信登录前置校验
+     *
+     * @param username 用户名
+     */
+    public void smsLoginPreCheck(String username) {
+        // 用户名为空 错误
+        if (StringUtils.isEmpty(username)) {
+            AsyncManager.me().execute(AsyncFactory.recordLogininfor(username, Constants.LOGIN_FAIL, MessageUtils.message("not.null")));
+            throw new UserNotExistsException();
+        }
+        // 用户名不在指定范围内 错误
+        if (username.length() < UserConstants.USERNAME_MIN_LENGTH
+                || username.length() > UserConstants.USERNAME_MAX_LENGTH) {
+            AsyncManager.me().execute(AsyncFactory.recordLogininfor(username, Constants.LOGIN_FAIL, MessageUtils.message("user.password.not.match")));
+            throw new UserPasswordNotMatchException();
+        }
+        // IP 黑名单校验
+        String blackStr = configService.selectConfigByKey("sys.login.blackIPList");
+        if (IpUtils.isMatchedIp(blackStr, IpUtils.getIpAddr())) {
+            AsyncManager.me().execute(AsyncFactory.recordLogininfor(username, Constants.LOGIN_FAIL, MessageUtils.message("login.blocked")));
+            throw new BlackListException();
+        }
+    }
+
+    /**
+     * 短信登录创建登录用户
+     *
+     * @param user 系统用户
+     * @return 登录用户
+     */
+    private LoginUser createLoginUserForSms(SysUser user) {
+        // 创建登录用户信息
+        LoginUser loginUser = new LoginUser();
+        loginUser.setUserId(user.getUserId());
+        loginUser.setDeptId(user.getDeptId());
+        loginUser.setUser(user);
+
+        // 获取权限信息
+        SysPermissionService permissionService = SpringUtils.getBean(SysPermissionService.class);
+        loginUser.setPermissions(permissionService.getMenuPermission(user));
+
+        return loginUser;
+    }
+
+    /**
      * 记录登录信息
      *
      * @param userId 用户ID

airport-system/src/main/java/com/sundot/airport/system/mapper/SysUserMapper.java

@@ -45,6 +45,14 @@ public interface SysUserMapper {
     public SysUser selectUserByUserName(String userName);
 
     /**
+     * 通过手机号查询用户
+     *
+     * @param phonenumber 手机号
+     * @return 用户对象信息
+     */
+    public SysUser selectUserByPhonenumber(String phonenumber);
+
+    /**
      * 通过用户ID查询用户
      *
      * @param userId 用户ID

airport-system/src/main/java/com/sundot/airport/system/service/ISysUserService.java

@@ -50,6 +50,14 @@ public interface ISysUserService {
     public SysUser selectUserByUserName(String userName);
 
     /**
+     * 通过手机号查询用户
+     *
+     * @param phonenumber 手机号
+     * @return 用户对象信息
+     */
+    public SysUser selectUserByPhonenumber(String phonenumber);
+
+    /**
      * 通过用户ID查询用户
      *
      * @param userId 用户ID

airport-system/src/main/java/com/sundot/airport/system/service/impl/SysUserServiceImpl.java

@@ -144,6 +144,17 @@ public class SysUserServiceImpl implements ISysUserService {
     }
 
     /**
+     * 通过手机号查询用户
+     *
+     * @param phonenumber 手机号
+     * @return 用户对象信息
+     */
+    @Override
+    public SysUser selectUserByPhonenumber(String phonenumber) {
+        return userMapper.selectUserByPhonenumber(phonenumber);
+    }
+
+    /**
      * 通过用户ID查询用户
      *
      * @param userId 用户ID

airport-system/src/main/resources/mapper/system/SysUserMapper.xml

@@ -382,6 +382,11 @@
         where u.user_name = #{userName} and u.del_flag = '0'
     </select>
 
+    <select id="selectUserByPhonenumber" parameterType="String" resultMap="SysUserResult">
+        <include refid="selectUserVo"/>
+        where u.phonenumber = #{phonenumber} and u.del_flag = '0'
+    </select>
+
     <select id="selectUserById" parameterType="Long" resultMap="SysUserResult">
         <include refid="selectUserVo"/>
         where u.user_id = #{userId}