请求方法:
@GetMapping(value = "/validateCodeLatest")
public void validateCodeLatest(HttpServletRequest request, HttpServletResponse response) throws ScriptException, IOException {
response.setHeader("Cache-Control", "no-cache");
//算术验证码
ArithmeticCaptcha arithmeticCaptcha = userService.checkResult();
String verifyCode = arithmeticCaptcha.getArithmeticString(); // 获取运算的公式:3+2*7=?
log.info("validateCode1:"+verifyCode);
verifyCode=verifyCode.replaceAll("x","*");
ScriptEngine jse = new ScriptEngineManager().getEngineByName("JavaScript");
Session session = SecurityUtils.getSubject().getSession();
session.removeAttribute("validateCode");
session.setAttribute("validateCode", jse.eval(verifyCode.substring(0, verifyCode.length() - 2)).toString());
response.setContentType("image/jpeg");
arithmeticCaptcha.out(response.getOutputStream());
}
验证方法:
public void isValidateCode(HttpServletRequest request, User user) {
Session session = SecurityUtils.getSubject().getSession();
String code = (String) session.getAttribute("validateCode");
String submitCode =user.getValidateCode();
log.info("用户输入的验证码:"+submitCode+" session中的验证码:"+code);
String sysValidateCode = sysSettingMapper.getSettingByName("sys_validate_code");
if(!StringUtils.equals(sysValidateCode, submitCode.toLowerCase())){
if (StringUtils.isEmpty(submitCode) || !StringUtils.equals(code, submitCode.toLowerCase())) {
return ResponseEntity.ok(new JsonResult(false, "验证码失效或者输入不正确,请重新输入验证码或者刷新验证码再输入!"));
}
}
}
版权声明:本文为weixin_42828203原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。