1.注册流程分析
客户端先发送一个手机号码到后端获取验证码,此时“获取验证码”按钮是激活状态,“下一步”按钮是禁用状态
点击“获取验证码”按钮,该按钮60秒倒计时变为禁用状态,等待用户接收验证码并输入
后端根据这个手机号先到数据库查询该手机号是否已被注册,如果已经被注册就返回“该手机号已被注册”,不继续后续步骤
如果没被注册,后端为该手机号生成一个随机6位验证码存在Redis中(指定时限),然后将该验证码通过阿里云的短信服务接口发送给客户端
客户端收到短信,输入验证码,点击下一步
后端收到客户端发送的验证码,就将其和Redis中暂存的验证码比对,如果一致就放行,否则提示“验证码错误”
验证码正确,进入填写密码的页面,填写完毕提交到后端,加密存入数据库,注册成功,让用户选择去登录,还是回到首页
2.Redis准备
解压后放入本地目录
运行运行redis-server
cdD:\tools\redisredis-server.exeredis.windows.conf
image.png
再开一个命令行窗口,进入redis目录,运行redis-cli.exe命令,进行一下基本操作
set是设置键值对,keys是列出所有键,get是获取指定键的值,del是删除指定的键值
image.png
3. 阿里云短信服务
demo程序,注意修改其中***的内容为自己的
package com.soft1721.jianyue.api.util;importcom.aliyuncs.CommonRequest;importcom.aliyuncs.CommonResponse;importcom.aliyuncs.DefaultAcsClient;importcom.aliyuncs.IAcsClient;importcom.aliyuncs.exceptions.ClientException;importcom.aliyuncs.exceptions.ServerException;importcom.aliyuncs.http.MethodType;importcom.aliyuncs.profile.DefaultProfile;/**
- 短消息测试程序
*/publicclassSMSTest{publicstaticvoidmain(String[] args){ DefaultProfile profile = DefaultProfile.getProfile("cn-hangzhou","*******","*****"); IAcsClient client =newDefaultAcsClient(profile); CommonRequest request =newCommonRequest(); request.setMethod(MethodType.POST); request.setDomain("dysmsapi.aliyuncs.com"); request.setVersion("2017-05-25"); request.setAction("SendSms"); request.putQueryParameter("RegionId","cn-hangzhou"); request.putQueryParameter("PhoneNumbers","****"); request.putQueryParameter("SignName","****"); request.putQueryParameter("TemplateCode","SMS_135805735"); request.putQueryParameter("TemplateParam","{"code":"888888"}");try{ CommonResponse response = client.getCommonResponse(request); System.out.println(response.getData()); }catch(ServerException e) { e.printStackTrace(); }catch(ClientException e) { e.printStackTrace(); } }}
image.png
4.后端
pom.xml,增加阿里云短信服务SDK依赖和SpringBoot集成redis依赖
com.aliyunaliyun-java-sdk-core4.0.3org.springframework.bootspring-boot-starter-data-redis
util包的StringUtil类增加一个方法,用来获取六位随机数验证码
publicstaticStringgetVerifyCode(){ Random random =newRandom(); StringBuilder stringBuilder =newStringBuilder();for(inti =0; i <6; i++) { stringBuilder.append(String.valueOf(random.nextInt(10))); }returnstringBuilder.toString();}
编写SMSUtil短信发送工具类,主要将手机号和短信字符串分离成变量,main方法测试通过后即可删除
importcom.aliyuncs.CommonRequest;importcom.aliyuncs.CommonResponse;importcom.aliyuncs.DefaultAcsClient;importcom.aliyuncs.IAcsClient;importcom.aliyuncs.exceptions.ClientException;importcom.aliyuncs.exceptions.ServerException;importcom.aliyuncs.http.MethodType;importcom.aliyuncs.profile.DefaultProfile;/**
- 短信发送工具类,返回生成的随机验证码
*/publicclassSMSUtil{publicstaticStringsend(String mobile){ DefaultProfile profile = DefaultProfile.getProfile("cn-hangzhou","*******","*******"); IAcsClient client =newDefaultAcsClient(profile); CommonRequest request =newCommonRequest(); request.setMethod(MethodType.POST); request.setDomain("dysmsapi.aliyuncs.com"); request.setVersion("2017-05-25"); request.setAction("SendSms"); request.putQueryParameter("RegionId","cn-hangzhou"); request.putQueryParameter("PhoneNumbers", mobile); request.putQueryParameter("SignName","*****"); request.putQueryParameter("TemplateCode","SMS_135805735"); String verifyCode = StringUtil.getVerifyCode(); request.putQueryParameter("TemplateParam","{"code":"+ verifyCode +"}");try{ CommonResponse response = client.getCommonResponse(request); System.out.println(response.getData()); }catch(ServerException e) { e.printStackTrace(); }catch(ClientException e) { e.printStackTrace(); }returnverifyCode; }publicstaticvoidmain(String[] args){ System.out.println(send("139****1489")); }}
mapper层增加insertUser方法,自行实现(id和token不用给值)
service接口增加注册方法
voidsignUp(UserDTO userDTO);
signUp方法实现代码
@OverridepublicvoidsignUp(UserDTO userDTO){ User user1 =newUser(); user1.setMobile(userDTO.getMobile()); user1.setPassword(StringUtil.getBase64Encoder(userDTO.getPassword())); user1.setNickname("新用户"); user1.setAvatar("http://ppeto2k90.bkt.clouddn.com/avatar/default.png"); user1.setRegtime(newDate()); user1.setStatus((short)1); userMapper.insert(user1);}
单元测试
@TestpublicvoidsignUp(){ UserDTO userDTO =newUserDTO(); userDTO.setMobile("139****1489"); userDTO.setPassword("111"); userService.signUp(userDTO); }
controller层编写前,先到StatusConst和MsgConst添加需要用到的常量
publicstaticfinalintMOBILE_EXIST =5;publicstaticfinalintVERIFYCODE_ERROR =6;
publicstaticfinalString MOBILE_EXIST ="手机号已被注册";publicstaticfinalString VERIFYCODE_ERROR ="验证码错误";
获取短信验证码接口
@PostMapping(value ="/verify")publicResponseResultgetVerifyCode(@RequestParam("mobile")String mobile){ User user = userService.getUserByMobile(mobile);//手机号已经被注册if(user !=null) {returnResponseResult.error(StatusConst.MOBILE_EXIST, MsgConst.MOBILE_EXIST); }else{//发送验证码String verifyCode = SMSUtil.send(mobile);// String verifyCode = StringUtil.getVerifyCode();System.out.println(verifyCode);//手机号和验证码作为键值对存入redis中redisService.set(mobile, verifyCode);returnResponseResult.success(); } }
验证短信码接口
@PostMapping(value ="/check")public ResponseResult checkVerifyCode(@RequestParam("mobile") String mobile, @RequestParam("verifyCode") String verifyCode) {//从Redis中取出这个手机号的验证码 String code = redisService.get(mobile).toString();//System.out.println(code +"---");//System.out.println(verifyCode);//和客户端传过来的验证码比对if(code.equals(verifyCode)) {returnResponseResult.success(); }else{returnResponseResult.error(StatusConst.VERIFYCODE_ERROR, MsgConst.VERIFYCODE_ERROR); }}
注册接口
