移動端獲取短信驗證碼java實現——阿裏雲短信服務
阿新 • • 發佈:2019-01-08
尋找 tor 傳輸 Nid query sage 低版本 ids rem
需求:移動端輸入手機號,獲取驗證碼。點擊登錄,驗證驗證碼是否輸入錯誤、是否超時等情況,一旦校驗通過,將用戶數據保存到數據中(業務邏輯)。
前提:註冊阿裏用戶,開通短信服務,申請key、秘鑰、簽名、短信模板。參考:https://help.aliyun.com/document_detail/55284.html?spm=a2c4g.11174283.3.2.8d482c42qxWRYA
第一部分:準備工作
1、pom.xml文件添加阿裏雲短信服務的依賴
<!--阿裏雲短信發送start-->
<dependency>
<groupId>com.aliyun</groupId>
<artifactId>aliyun-java-sdk-core</artifactId>
<version>4.0.6</version>
</dependency>
<dependency>
<groupId>com.aliyun</groupId>
<artifactId>aliyun-java-sdk-dysmsapi</artifactId>
<version>1.1.0</version>
</dependency>
<!--阿裏雲短信發送end-->此處可能會報錯,官網也說了,好像這個版本的不是很穩定吧。異常可能是:
Java.lang.NoClassDefFoundError:com/aliyuncs/exceptions/ClientException
解決:
(1)方法一:檢查lib文件下是否有aliyun-java-sdk-core包,沒有的話就手動先添加上吧。
(2)方法二:將版本號改為3.3.1,即低版本
<dependency>
<groupId>com.aliyun</groupId>
<artifactId>aliyun-java-sdk-core</artifactId>
<version>3.3.1</version>
</dependency>2、下載官方demo,這個是發送短信的工具。
package com.alicom.dysms.api;
import com.aliyuncs.DefaultAcsClient;
import com.aliyuncs.IAcsClient;
import com.aliyuncs.dysmsapi.model.v20170525.QuerySendDetailsRequest;
import com.aliyuncs.dysmsapi.model.v20170525.QuerySendDetailsResponse;
import com.aliyuncs.dysmsapi.model.v20170525.SendSmsRequest;
import com.aliyuncs.dysmsapi.model.v20170525.SendSmsResponse;
import com.aliyuncs.dysmsapi.transform.v20170525.SendSmsResponseUnmarshaller;
import com.aliyuncs.exceptions.ClientException;
import com.aliyuncs.http.FormatType;
import com.aliyuncs.http.HttpResponse;
import com.aliyuncs.profile.DefaultProfile;
import com.aliyuncs.profile.IClientProfile;
import java.nio.charset.Charset;
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.UUID;
/**
* Created on 17/6/7.
* 短信API產品的DEMO程序,工程中包含了一個SmsDemo類,直接通過
* 執行main函數即可體驗短信產品API功能(只需要將AK替換成開通了雲通信-短信產品功能的AK即可)
* 工程依賴了2個jar包(存放在工程的libs目錄下)
* 1:aliyun-java-sdk-core.jar
* 2:aliyun-java-sdk-dysmsapi.jar
*
* 備註:Demo工程編碼采用UTF-8
* 國際短信發送請勿參照此DEMO
*/
public class SmsDemo {
//產品名稱:雲通信短信API產品,開發者無需替換
static final String product = "Dysmsapi";
//產品域名,開發者無需替換
static final String domain = "dysmsapi.aliyuncs.com";
// TODO 此處需要替換成開發者自己的AK(在阿裏雲訪問控制臺尋找)
static final String accessKeyId = "yourAccessKeyId";
static final String accessKeySecret = "yourAccessKeySecret";
public static SendSmsResponse sendSms() throws ClientException {
//可自助調整超時時間
System.setProperty("sun.net.client.defaultConnectTimeout", "10000");
System.setProperty("sun.net.client.defaultReadTimeout", "10000");
//初始化acsClient,暫不支持region化
IClientProfile profile = DefaultProfile.getProfile("cn-hangzhou", accessKeyId, accessKeySecret);
DefaultProfile.addEndpoint("cn-hangzhou", "cn-hangzhou", product, domain);
IAcsClient acsClient = new DefaultAcsClient(profile);
//組裝請求對象-具體描述見控制臺-文檔部分內容
SendSmsRequest request = new SendSmsRequest();
//必填:待發送手機號
request.setPhoneNumbers("15000000000");
//必填:短信簽名-可在短信控制臺中找到
request.setSignName("雲通信");
//必填:短信模板-可在短信控制臺中找到
request.setTemplateCode("SMS_1000000");
//可選:模板中的變量替換JSON串,如模板內容為"親愛的${name},您的驗證碼為${code}"時,此處的值為
request.setTemplateParam("{\"name\":\"Tom\", \"code\":\"123\"}");
//選填-上行短信擴展碼(無特殊需求用戶請忽略此字段)
//request.setSmsUpExtendCode("90997");
//可選:outId為提供給業務方擴展字段,最終在短信回執消息中將此值帶回給調用者
request.setOutId("yourOutId");
//hint 此處可能會拋出異常,註意catch
SendSmsResponse sendSmsResponse = acsClient.getAcsResponse(request);
return sendSmsResponse;
}
public static QuerySendDetailsResponse querySendDetails(String bizId) throws ClientException {
//可自助調整超時時間
System.setProperty("sun.net.client.defaultConnectTimeout", "10000");
System.setProperty("sun.net.client.defaultReadTimeout", "10000");
//初始化acsClient,暫不支持region化
IClientProfile profile = DefaultProfile.getProfile("cn-hangzhou", accessKeyId, accessKeySecret);
DefaultProfile.addEndpoint("cn-hangzhou", "cn-hangzhou", product, domain);
IAcsClient acsClient = new DefaultAcsClient(profile);
//組裝請求對象
QuerySendDetailsRequest request = new QuerySendDetailsRequest();
//必填-號碼
request.setPhoneNumber("15000000000");
//可選-流水號
request.setBizId(bizId);
//必填-發送日期 支持30天內記錄查詢,格式yyyyMMdd
SimpleDateFormat ft = new SimpleDateFormat("yyyyMMdd");
request.setSendDate(ft.format(new Date()));
//必填-頁大小
request.setPageSize(10L);
//必填-當前頁碼從1開始計數
request.setCurrentPage(1L);
//hint 此處可能會拋出異常,註意catch
QuerySendDetailsResponse querySendDetailsResponse = acsClient.getAcsResponse(request);
return querySendDetailsResponse;
}
public static void main(String[] args) throws ClientException, InterruptedException {
//發短信
SendSmsResponse response = sendSms();
System.out.println("短信接口返回的數據----------------");
System.out.println("Code=" + response.getCode());
System.out.println("Message=" + response.getMessage());
System.out.println("RequestId=" + response.getRequestId());
System.out.println("BizId=" + response.getBizId());
Thread.sleep(3000L);
//查明細
if(response.getCode() != null && response.getCode().equals("OK")) {
QuerySendDetailsResponse querySendDetailsResponse = querySendDetails(response.getBizId());
System.out.println("短信明細查詢接口返回數據----------------");
System.out.println("Code=" + querySendDetailsResponse.getCode());
System.out.println("Message=" + querySendDetailsResponse.getMessage());
int i = 0;
for(QuerySendDetailsResponse.SmsSendDetailDTO smsSendDetailDTO : querySendDetailsResponse.getSmsSendDetailDTOs())
{
System.out.println("SmsSendDetailDTO["+i+"]:");
System.out.println("Content=" + smsSendDetailDTO.getContent());
System.out.println("ErrCode=" + smsSendDetailDTO.getErrCode());
System.out.println("OutId=" + smsSendDetailDTO.getOutId());
System.out.println("PhoneNum=" + smsSendDetailDTO.getPhoneNum());
System.out.println("ReceiveDate=" + smsSendDetailDTO.getReceiveDate());
System.out.println("SendDate=" + smsSendDetailDTO.getSendDate());
System.out.println("SendStatus=" + smsSendDetailDTO.getSendStatus());
System.out.println("Template=" + smsSendDetailDTO.getTemplateCode());
}
System.out.println("TotalCount=" + querySendDetailsResponse.getTotalCount());
System.out.println("RequestId=" + querySendDetailsResponse.getRequestId());
}
}
}
第二部分:創建自己的MySessionContext
註意:由於移動端沒有sessionId,我們需要自己傳輸sessionId獲取session值。但出於安全性考慮,jdk現在去掉了通過sessionId獲取session的方法。
解決:自建工具類,通過sessionId獲取session。
1、創建一個MySessionContext.java類
public class MySessionContext { private static MySessionContext instance; private HashMap<String,HttpSession> sessionMap; private MySessionContext() { sessionMap = new HashMap<String,HttpSession>(); } public static MySessionContext getInstance() { if (instance == null) { instance = new MySessionContext(); } return instance; } public synchronized void addSession(HttpSession session) { if (session != null) { sessionMap.put(session.getId(), session); } } public synchronized void delSession(HttpSession session) { if (session != null) { sessionMap.remove(session.getId()); } } public synchronized HttpSession getSession(String sessionID) { if (sessionID == null) { return null; } return sessionMap.get(sessionID); } }
2、然後建立session監聽,要實現HttpSessionListener接口
public class SessionListener implements HttpSessionListener { private MySessionContext myc = MySessionContext.getInstance(); public void sessionCreated(HttpSessionEvent httpSessionEvent) { HttpSession session = httpSessionEvent.getSession(); myc.addSession(session); } public void sessionDestroyed(HttpSessionEvent httpSessionEvent) { HttpSession session = httpSessionEvent.getSession(); myc.delSession(session); } }
3、接著,在web.xml中配置session監聽器
<listener>
<listener-class>com.chinapost.manager.utils.SessionListener</listener-class>
</listener>
參考地址:https://blog.csdn.net/sihai12345/article/details/81098765
第三部分:實現業務
1、controller層
/**
* app登錄,附加:驗證碼時效性
* @param conditionStr
* @return
*/
@RequestMapping(value = "/anLogin", method = RequestMethod.POST)
@ResponseBody
public ResponseModel anLogin(@RequestBody String conditionStr){
return androidLoginService.anLogin(conditionStr);
}
/**
* 點擊發送驗證碼
* @param conditionStr
* @return
*/
@RequestMapping(value = "/getVerificationCode", method = RequestMethod.POST)
@ResponseBody
public ResponseModel getVerificationCode(@RequestBody String conditionStr) {
return androidLoginService.getVerificationCode(conditionStr);
}
2、service實現層
package com.test.service.androidService.impl; import com.alibaba.fastjson.JSON; import com.aliyuncs.dysmsapi.model.v20170525.SendSmsResponse; import com.test.dao.CarDriverMapper; import com.test.entity.business.CarDriver; import com.test.entity.common. ResponseModel; import com.test.service.androidService.AndroidLoginService; import com.test.service.common.impl.BaseServiceImpl; import com.test.util.MySessionContext; import com.test.util.SessionUtil; import com.test.util.SmsCodeUtil; import com.test.util.SmsSendUtil; import org.apache.commons.lang3.StringUtils; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import org.springframework.stereotype.Service; import javax.annotation.Resource; import javax.servlet.http.HttpSession; import java.text.ParseException; import java.text.SimpleDateFormat; import java.util.Date; import java.util.HashMap; import java.util.Map; @Service public class AndroidLoginServiceImpl extends BaseServiceImpl implements AndroidLoginService { public static final Logger logger = LoggerFactory.getLogger(AndroidLoginServiceImpl.class); @Resource private CarDriverMapper carDriverMapper; @Override public ResponseModel anLogin(String conditionStr) { set ResponseModel(new ResponseModel()); setErrorMsg(""); setSuccess(false); Map<String,Object> resultMap = new HashMap<>(); try { CarDriver carDriver = JSON.parseObject(conditionStr, CarDriver.class); String tel_param = carDriver.getTel(); String verificationCode_param = carDriver.getVerificationCode(); String sessionId_param = carDriver.getSessionId(); //1-校驗手機號和驗證碼不能為空 if(StringUtils.isBlank(tel_param)){ setErrorMsg("手機號不能為空!"); return get ResponseModel(); } if(StringUtils.isBlank(verificationCode_param)){ setErrorMsg("驗證碼不能為空!"); return get ResponseModel(); } //2-校驗是否獲取驗證碼 MySessionContext myc= MySessionContext.getInstance(); HttpSession session = myc.getSession(sessionId_param); //獲取session中登錄手機號對應的驗證碼 Object verificationCode = session.getAttribute(tel_param+"driverAppLogin"); if(verificationCode==null){ setErrorMsg("請先獲取驗證碼!"); return get ResponseModel(); } //3-校驗驗證碼是否相等 if(verificationCode_param.equals(verificationCode)){ //4-校驗驗證碼是否過期(1*60s) Object firstTime = session.getAttribute(tel_param+"driverAppLoginTime"); SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); boolean bool = overtimeCode(firstTime.toString(),sdf.format(new Date()),1*60); //bool等於true,則超時 if(!bool){ //5-業務邏輯 //5-1 校驗手機號在數據庫中是否存在 Integer id = this.carDriverMapper.selectByTel(carDriver); if(id != null){ carDriver = this.carDriverMapper.selectByPrimaryKey(id); resultMap.put("name",carDriver.getName()); } else{ this.carDriverMapper.insertSelective(carDriver); if(carDriver.getId() == null){ setErrorMsg("新增駕駛員賬號失敗!"); throw new Exception(getErrorMsg()); } } resultMap.put("id",carDriver.getId()); resultMap.put("tel",carDriver.getTel()); resultMap.put("level",carDriver.getLevel()); setSuccess(true); }else{ setErrorMsg("驗證碼獲取超時,請重新獲取!"); return get ResponseModel(); } }else{ setErrorMsg("驗證碼輸入不正確!"); return get ResponseModel(); } }catch (Exception e){ e.printStackTrace(); logger.error(e.getMessage()); }finally { get ResponseModel().setData(resultMap); get ResponseModel().setSuccess(isSuccess()); get ResponseModel().setErrorMsg(getErrorMsg()); } return get ResponseModel(); } @Override public ResponseModel getVerificationCode(String conditionStr) { set ResponseModel(new ResponseModel()); setErrorMsg(""); setSuccess(false); CarDriver carDriver = null; try { carDriver = JSON.parseObject(conditionStr, CarDriver.class); //1-校驗手機號不能為空 String tel = carDriver.getTel(); if(StringUtils.isBlank(tel)){ setErrorMsg("手機號不能為空!"); return get ResponseModel(); } //2-發送短信驗證碼 //生成隨機碼 String code = SmsCodeUtil.getRandom()+""; //發送驗證碼 SendSmsResponse sendSmsResponse = SmsSendUtil.sendSms(carDriver.getTel(),"app",code); //如果發送成功則保存驗證碼和時間到session中 if(sendSmsResponse.getCode()!=null && sendSmsResponse.getCode().equals("OK")){ HttpSession session = SessionUtil.getSession(); session.setAttribute(tel+"driverAppLogin", code); SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); session.setAttribute(tel+"driverAppLoginTime", sdf.format(new Date())); //獲取sessionid String sessionId = session.getId(); carDriver.setSessionId(sessionId); //設置session最長存在時間60分鐘 //SessionUtil.getSession().setMaxInactiveInterval(60*60); setSuccess(true); } else{ setErrorMsg(sendSmsResponse.getMessage()); return get ResponseModel(); } } catch (Exception e) { e.printStackTrace(); logger.error(e.getMessage()); } finally { get ResponseModel().setData(carDriver); get ResponseModel().setSuccess(isSuccess()); get ResponseModel().setErrorMsg(getErrorMsg()); } return get ResponseModel(); } /** * 短信驗證碼有效期,如果true則過期了 * @param firstTime * @param lastTime * @param overtime * @return */ private static boolean overtimeCode(String firstTime,String lastTime,long overtime){ boolean flag=false; SimpleDateFormat df = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); Date one; Date two; try { one = df.parse(firstTime); two = df.parse(lastTime); long time1 = one.getTime(); long time2 = two.getTime(); long diff = time2 - time1; if(diff/1000>overtime){ flag=true; } } catch (ParseException e) { e.printStackTrace(); } return flag; } }
附加:獲取隨機碼工具類(我是投機取巧,拷貝騰訊雲短信服務的demo中的)
package com.test.util;
import java.lang.StringBuffer;
import java.util.Random;
import java.util.ArrayList;
import org.apache.commons.codec.digest.DigestUtils;
public class SmsCodeUtil {
public static boolean isNotEmpty(String s) {
if (s == null || s.isEmpty()){
return false;
}
return true;
}
public static long getCurrentTime() {
return System.currentTimeMillis() / 1000;
}
public static long getRandom() {
return (new Random(SmsCodeUtil.getCurrentTime())).nextInt(900000) + 100000;
}
public static String calculateSignature(String appkey, long random, long time,
String phoneNumber) {
StringBuffer buffer = new StringBuffer("appkey=")
.append(appkey)
.append("&random=")
.append(random)
.append("&time=")
.append(time)
.append("&mobile=")
.append(phoneNumber);
return sha256(buffer.toString());
}
public static String calculateSignature(String appkey, long random, long time,
String[] phoneNumbers) {
StringBuffer buffer = new StringBuffer("appkey=")
.append(appkey)
.append("&random=")
.append(random)
.append("&time=")
.append(time)
.append("&mobile=");
if (phoneNumbers.length > 0) {
buffer.append(phoneNumbers[0]);
for (int i = 1; i < phoneNumbers.length; i++) {
buffer.append(",");
buffer.append(phoneNumbers[i]);
}
}
return sha256(buffer.toString());
}
public static String calculateSignature(String appkey, long random, long time,
ArrayList<String> phoneNumbers) {
return calculateSignature(appkey, random, time, phoneNumbers.toArray(new String[0]));
}
public static String calculateSignature(String appkey, long random, long time) {
StringBuffer buffer = new StringBuffer("appkey=")
.append(appkey)
.append("&random=")
.append(random)
.append("&time=")
.append(time);
return sha256(buffer.toString());
}
public static String calculateFStatusSignature(String appkey, long random,
long time, String fid) {
StringBuffer buffer = new StringBuffer("appkey=")
.append(appkey)
.append("&random=")
.append(random)
.append("&time=")
.append(time)
.append("&fid=")
.append(fid);
return sha256(buffer.toString());
}
public static String calculateAuth(String appkey, long random, long time, String fileSha1Sum) {
StringBuffer buffer = new StringBuffer("appkey=")
.append(appkey)
.append("&random=")
.append(random)
.append("&time=")
.append(time)
.append("&content-sha1=")
.append(fileSha1Sum);
return sha256(buffer.toString());
}
public static String sha1sum(String rawString) {
return DigestUtils.sha1Hex(rawString);
}
public static String sha1sum(byte[] bytes) {
return DigestUtils.sha1Hex(bytes);
}
public static String sha256(String rawString) {
return DigestUtils.sha256Hex(rawString);
}
}
SessionUtil.java
package com.test.util;
import com.test.enums.SysConstants;
import java.util.Enumeration;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import org.apache.commons.lang3.StringUtils;
import org.springframework.web.context.request.RequestContextHolder;
import org.springframework.web.context.request.ServletRequestAttributes;
/**
* Created by test on 2017/9/21.
*
*/
public class SessionUtil {
/**
* 清空session
*/
public static void cleanSession(){
Enumeration em = getSession().getAttributeNames();
while(em.hasMoreElements()){
getSession().removeAttribute(em.nextElement().toString());
}
}
/**
* 獲取上一個訪問連接
*/
public static String getBefUrl(){
Enumeration e = getRequest().getHeaders("Referer");
String befUrl;
if(e.hasMoreElements()){
befUrl = (String)e.nextElement();
}else{
befUrl = "";
}
return befUrl;
}
/**
* 獲取request
*/
@SuppressWarnings("UnnecessaryLocalVariable")
public static HttpServletRequest getRequest() {
ServletRequestAttributes requestAttributes = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
HttpServletRequest request = requestAttributes.getRequest();
return request;
}
/**
* 獲取response
*/
@SuppressWarnings("UnnecessaryLocalVariable")
public static HttpServletResponse getResponse() {
HttpServletResponse httpServletResponse = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getResponse();
return httpServletResponse;
}
/**
* 獲取session
*/
public static HttpSession getSession() {
return getRequest().getSession();
}
/**
* 驗證是否重復提交
*/
public static boolean checkSubmitRepeat(String jspToken) {
String sessionToken = (String) getSession().getAttribute(SysConstants.SUBMITTOKEN.getName());
return StringUtils.isBlank(jspToken) || StringUtils.isBlank(sessionToken)||!sessionToken.equals(jspToken);
}
}
完畢!
移動端獲取短信驗證碼java實現——阿裏雲短信服務