├── README.md
├── CodeVerify
    ├── LoginController.java
    ├── GetCodeController.java
    ├── CheckLoginController.java
    └── login.jsp
├── SlidingVerify
    ├── GeetestConfig.java
    ├── StartCaptchaServlet.java
    ├── VerifyLoginServlet.java
    ├── login2.jsp
    └── GeetestLib.java
└── web.xml


/README.md:
--------------------------------------------------------------------------------
1 | # Verify
2 | 利用java代码实现滑动验证和普通验证码验证
3 | 


--------------------------------------------------------------------------------
/CodeVerify/LoginController.java:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhangxy1035/Verify/HEAD/CodeVerify/LoginController.java


--------------------------------------------------------------------------------
/CodeVerify/GetCodeController.java:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhangxy1035/Verify/HEAD/CodeVerify/GetCodeController.java


--------------------------------------------------------------------------------
/CodeVerify/CheckLoginController.java:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhangxy1035/Verify/HEAD/CodeVerify/CheckLoginController.java


--------------------------------------------------------------------------------
/SlidingVerify/GeetestConfig.java:
--------------------------------------------------------------------------------
 1 | package com.ow.appmg.controller.login;
 2 | 
 3 | /**
 4 |  * GeetestWeb配置文件
 5 |  * 
 6 |  *
 7 |  */
 8 | public class GeetestConfig {
 9 | 
10 | 	// 填入自己的captcha_id和private_key
11 | 	private static final String geetest_id = "b46d1900d0a894591916ea94ea91bd2c";
12 | 	private static final String geetest_key = "36fc3fe98530eea08dfc6ce76e3d24c4";
13 | 
14 | 	public static final String getGeetest_id() {
15 | 		return geetest_id;
16 | 	}
17 | 
18 | 	public static final String getGeetest_key() {
19 | 		return geetest_key;
20 | 	}
21 | 
22 | }
23 | 


--------------------------------------------------------------------------------
/SlidingVerify/StartCaptchaServlet.java:
--------------------------------------------------------------------------------
 1 | package com.ow.appmg.controller.login;
 2 | 
 3 | import java.io.IOException;
 4 | import java.io.PrintWriter;
 5 | 
 6 | import javax.servlet.ServletException;
 7 | import javax.servlet.http.HttpServlet;
 8 | import javax.servlet.http.HttpServletRequest;
 9 | import javax.servlet.http.HttpServletResponse;
10 | 
11 | 
12 | 
13 | /**
14 |  * 使用Get的方式返回challenge和capthca_id,此方式以实现前后端完全分离的开发模式
15 |  *
16 |  */
17 | public class StartCaptchaServlet extends HttpServlet {
18 | 
19 | 	private static final long serialVersionUID = 1L;
20 | 
21 | 	protected void doGet(HttpServletRequest request,
22 | 			HttpServletResponse response) throws ServletException, IOException {
23 | 
24 | 		GeetestLib gtSdk = new GeetestLib(GeetestConfig.getGeetest_id(), GeetestConfig.getGeetest_key());
25 | 
26 | 		String resStr = "{}";
27 | 		
28 | 		//自定义userid
29 | 		String userid = "test";
30 | 
31 | 		//进行验证预处理
32 | 		int gtServerStatus = gtSdk.preProcess(userid);
33 | 		
34 | 		//将服务器状态设置到session中
35 | 		request.getSession().setAttribute(gtSdk.gtServerStatusSessionKey, gtServerStatus);
36 | 		//将userid设置到session中
37 | 		request.getSession().setAttribute("userid", userid);
38 | 		
39 | 		resStr = gtSdk.getResponseStr();
40 | 
41 | 		PrintWriter out = response.getWriter();
42 | 		out.println(resStr);
43 | 
44 | 	}
45 | }


--------------------------------------------------------------------------------
/web.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <web-app version="2.5" 
 3 | 	xmlns="http://java.sun.com/xml/ns/javaee" 
 4 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
 5 | 	xsi:schemaLocation="http://java.sun.com/xml/ns/javaee 
 6 | 	http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd">
 7 | <servlet>
 8 | 	<servlet-name>springmvc</servlet-name>
 9 | 	<servlet-class>
10 | org.springframework.web.servlet.DispatcherServlet
11 | 	</servlet-class>
12 | 	<init-param>
13 | 	<param-name>contextConfigLocation</param-name>
14 |     <param-value>classpath:com/ow/appmg/config/applicationContext.xml</param-value>
15 | 	</init-param>
16 | 	<load-on-startup>1</load-on-startup>
17 | </servlet>
18 | 	<servlet>
19 | 		<servlet-name>StartCaptchaServlet</servlet-name>
20 | 		<servlet-class>com.ow.appmg.controller.login.StartCaptchaServlet</servlet-class>
21 | 	</servlet>
22 | 
23 | 	<servlet-mapping>
24 | 		<servlet-name>StartCaptchaServlet</servlet-name>
25 | 		<url-pattern>/login/pc-geetest/register</url-pattern>
26 | 	</servlet-mapping>
27 | <servlet-mapping>
28 | 	<servlet-name>springmvc</servlet-name>
29 | 	<url-pattern>*.from</url-pattern>
30 | </servlet-mapping>
31 | 
32 | 
33 | <!-- 解决乱码问题 -->
34 | <filter>
35 | 	<filter-name>encodingfilter</filter-name>
36 | 	<filter-class>
37 | org.springframework.web.filter.CharacterEncodingFilter
38 | 	</filter-class>
39 | 	<init-param>
40 | 		<param-name>encoding</param-name>
41 | 		<param-value>UTF-8</param-value>
42 | 	</init-param>
43 | </filter>
44 | <filter-mapping>
45 | 	<filter-name>encodingfilter</filter-name>
46 | 	<url-pattern>/*</url-pattern>
47 | </filter-mapping>
48 | 
49 |   <welcome-file-list>
50 |     <welcome-file>index.jsp</welcome-file>
51 |   </welcome-file-list>
52 | </web-app>


--------------------------------------------------------------------------------
/SlidingVerify/VerifyLoginServlet.java:
--------------------------------------------------------------------------------
 1 | package  com.ow.appmg.controller.login;
 2 | 
 3 | import java.io.IOException;
 4 | import java.io.PrintWriter;
 5 | import javax.servlet.ServletException;
 6 | import javax.servlet.http.HttpServlet;
 7 | import javax.servlet.http.HttpServletRequest;
 8 | import javax.servlet.http.HttpServletResponse;
 9 | 
10 | 
11 | import org.json.JSONException;
12 | import org.json.JSONObject;
13 | 
14 | 
15 | /**
16 |  * 使用post方式，返回验证结果, request表单中必须包含challenge, validate, seccode
17 |  */
18 | public class VerifyLoginServlet extends HttpServlet {
19 | 
20 | 	private static final long serialVersionUID = 244554953219893949L;
21 | 
22 | 	protected void doPost(HttpServletRequest request,
23 | 			HttpServletResponse response) throws ServletException, IOException {
24 | 
25 | 		GeetestLib gtSdk = new GeetestLib(GeetestConfig.getGeetest_id(), GeetestConfig.getGeetest_key());
26 | 			
27 | 		String challenge = request.getParameter(GeetestLib.fn_geetest_challenge);
28 | 		String validate = request.getParameter(GeetestLib.fn_geetest_validate);
29 | 		String seccode = request.getParameter(GeetestLib.fn_geetest_seccode);
30 | 		
31 | 		//从session中获取gt-server状态
32 | 		int gt_server_status_code = (Integer) request.getSession().getAttribute(gtSdk.gtServerStatusSessionKey);
33 | 		
34 | 		//从session中获取userid
35 | 		String userid = (String)request.getSession().getAttribute("userid");
36 | 		
37 | 		int gtResult = 0;
38 | 
39 | 		if (gt_server_status_code == 1) {
40 | 			//gt-server正常，向gt-server进行二次验证
41 | 				
42 | 			gtResult = gtSdk.enhencedValidateRequest(challenge, validate, seccode, userid);
43 | 			System.out.println(gtResult);
44 | 		} else {
45 | 			// gt-server非正常情况下，进行failback模式验证
46 | 				
47 | 			System.out.println("failback:use your own server captcha validate");
48 | 			gtResult = gtSdk.failbackValidateRequest(challenge, validate, seccode);
49 | 			System.out.println(gtResult);
50 | 		}
51 | 
52 | 
53 | 		if (gtResult == 1) {
54 | 			// 验证成功
55 | 			PrintWriter out = response.getWriter();
56 | 			JSONObject data = new JSONObject();
57 | 			try {
58 | 				data.put("status", "success");
59 | 				data.put("version", gtSdk.getVersionInfo());
60 | 			} catch (JSONException e) {
61 | 				e.printStackTrace();
62 | 			}
63 | 			out.println(data.toString());
64 | 		}
65 | 		else {
66 | 			// 验证失败
67 | 			JSONObject data = new JSONObject();
68 | 			try {
69 | 				data.put("status", "fail");
70 | 				data.put("version", gtSdk.getVersionInfo());
71 | 			} catch (JSONException e) {
72 | 				e.printStackTrace();
73 | 			}
74 | 			PrintWriter out = response.getWriter();
75 | 			out.println(data.toString());
76 | 		}
77 | 
78 | 	}
79 | }
80 | 


--------------------------------------------------------------------------------
/CodeVerify/login.jsp:
--------------------------------------------------------------------------------
 1 | <%@ page language="java" pageEncoding="UTF-8"%>
 2 | <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 3 | <html xmlns="http://www.w3.org/1999/xhtml">
 4 | 
 5 | 
 6 | <head>
 7 |     <meta http-equiv="X-UA-Compatible" content="IE=edge">
 8 |     <!--Mobile first-->
 9 |     <title>APP管理平台</title>
10 |     
11 |     <meta name="description" content="Free Admin Template Based On Twitter Bootstrap 3.x">
12 |     <meta name="author" content="">
13 |     
14 |     <meta name="msapplication-TileColor" content="#5bc0de" />
15 |     
16 |     <!-- Bootstrap -->
17 |     <link rel="stylesheet" href="../lib/css/bootstrap.css">
18 |     
19 | 
20 |     <!-- Metis core stylesheet -->
21 |     <link rel="stylesheet" href="../lib/css/main.css">
22 | 
23 | 
24 | 
25 |     <!-- HTML5 shim and Respond.js for IE8 support of HTML5 elements and media queries -->
26 |     <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
27 |     <!--[if lt IE 9]>
28 |         <script src="https://oss.maxcdn.com/html5shiv/3.7.3/html5shiv.min.js"></script>
29 |         <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
30 |     <![endif]-->
31 | 
32 | </head>
33 | 
34 | <body class="login">
35 | 
36 |       <div class="form-signin">
37 |     <div class="text-center">
38 |         <img src="../images/logo.png" alt="Metis Logo">
39 |     </div>
40 |     <hr>
41 |     <div class="tab-content">
42 |         <div id="login" class="tab-pane active">
43 |             <form id="loginForm" action="login.from" method="post">
44 |                 <p class="text-muted text-center">
45 |                     输入用户名和密码
46 |                 </p>
47 |                 <input type="text" name="username" placeholder="用户名" class="form-control top">
48 |                 <input type="password" name="password" placeholder="密码" class="form-control top">
49 |                 <input name="code" type="text" placeholder="验证码" class="form-control bottom">
50 |                 <img src="getCode.from" alt="验证码" id="img" onclick="change()" />
51 |                 <div class="checkbox">
52 | 		  <label>
53 | 		    <input type="checkbox"> 记住用户名和密码
54 | 		  </label>
55 | 		</div>
56 |                 <button class="btn btn-lg btn-primary btn-block" onclick="doSubmit();">登陆</button>
57 |             </form>
58 |         </div>
59 |     </div>
60 |     <hr>
61 |   </div>
62 | 
63 | 
64 |     <!--jQuery -->
65 |     <script  src="../lib/js/jquery.js"></script>
66 | 
67 |     <!--Bootstrap -->
68 |     <script src="../lib/js/bootstrap.js"></script>
69 | 
70 | 
71 |     <script type="text/javascript">
72 | 
73 |         function doSubmit(){
74 |             //表单数据js检查
75 |             //提交表单
76 |             document.getElementById("loginForm").submit();
77 |         }
78 |         function change(){
79 |             document.getElementById("img").src='getCode.from?'+new Date().getTime();
80 |         };
81 | 
82 |     </script>
83 | </body>
84 | </html>
85 | 


--------------------------------------------------------------------------------
/SlidingVerify/login2.jsp:
--------------------------------------------------------------------------------
  1 | <%@ page language="java" import="java.util.*" pageEncoding="utf-8"%>
  2 | <%
  3 | 	String path = request.getContextPath();
  4 | 	String basePath = request.getScheme() + "://"
  5 | 			+ request.getServerName() + ":" + request.getServerPort()
  6 | 			+ path + "/";
  7 | %>
  8 | <head>
  9 |     <meta http-equiv="X-UA-Compatible" content="IE=edge">
 10 |     <!--Mobile first-->
 11 |     <title>APP管理平台</title>
 12 |     
 13 |     <meta name="description" content="Free Admin Template Based On Twitter Bootstrap 3.x">
 14 |     <meta name="author" content="">
 15 |     
 16 |     <meta name="msapplication-TileColor" content="#5bc0de" />
 17 |     
 18 |     <!-- Bootstrap -->
 19 |     <link rel="stylesheet" href="../lib/css/bootstrap.css">
 20 |     
 21 | 
 22 |     <!-- Metis core stylesheet -->
 23 |     <link rel="stylesheet" href="../lib/css/main.css">
 24 |     
 25 |     <!-- 为使用方便，直接使用jquery.js库，如您代码中不需要，可以去掉 -->
 26 | <script src="http://code.jquery.com/jquery-1.12.3.min.js"></script>
 27 | <!-- 引入封装了failback的接口--initGeetest -->
 28 | <script src="http://static.geetest.com/static/tools/gt.js"></script>
 29 | 
 30 | 
 31 | 
 32 |     <!-- HTML5 shim and Respond.js for IE8 support of HTML5 elements and media queries -->
 33 |     <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
 34 |     <!--[if lt IE 9]>
 35 |         <script src="https://oss.maxcdn.com/html5shiv/3.7.3/html5shiv.min.js"></script>
 36 |         <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
 37 |     <![endif]-->
 38 |     <style>
 39 |         body {
 40 |             margin: 50px 0;
 41 |             text-align: center;
 42 |         }
 43 |         .inp {
 44 |             border: 1px solid gray;
 45 |             padding: 0 10px;
 46 |             width: 200px;
 47 |             height: 30px;
 48 |             font-size: 18px;
 49 |         }
 50 |         .btn {
 51 |             border: 1px solid gray;
 52 |             width: 100px;
 53 |             height: 30px;
 54 |             font-size: 18px;
 55 |             cursor: pointer;
 56 |         }
 57 |         #embed-captcha {
 58 |             width: 300px;
 59 |             margin: 0 auto;
 60 |         }
 61 |         .show {
 62 |             display: block;
 63 |         }
 64 |         .hide {
 65 |             display: none;
 66 |         }
 67 |         #notice {
 68 |             color: red;
 69 |         }
 70 |         /* 以下遮罩层为demo.用户可自行设计实现 */
 71 |         #mask {
 72 |             display: none;
 73 |             position: fixed;
 74 |             text-align: center;
 75 |             left: 0;
 76 |             top: 0;
 77 |             width: 100%;
 78 |             height: 100%;
 79 |             background-color: rgba(0, 0, 0, 0.5);
 80 |             overflow: auto;
 81 |         }
 82 |         /* 可自行设计实现captcha的位置大小 */
 83 |         .popup-mobile {
 84 |             position: relative;
 85 |         }
 86 |         #popup-captcha-mobile {
 87 |             position: fixed;
 88 |             display: none;
 89 |             left: 50%;
 90 |             top: 50%;
 91 |             transform: translate(-50%, -50%);
 92 |             -webkit-transform: translate(-50%, -50%);
 93 |             z-index: 9999;
 94 |         }
 95 |     </style>
 96 | 
 97 | </head>
 98 | 
 99 | <body class="login">
100 | 
101 |       <div class="form-signin">
102 |     <div class="text-center">
103 |         <img src="../images/logo.png" alt="Metis Logo">
104 |     </div>
105 |     <hr>
106 |     <div class="tab-content">
107 |         <div id="login" class="tab-pane active">
108 |         <form id="loginForm" action="login.from" method="post">
109 |     <p>
110 |       <input type="text" id="username2" name="username" placeholder="用户名" class="form-control top">
111 |       <input type="password" id="password2" name="password" placeholder="密码" class="form-control top">
112 | 
113 |     <div id="embed-captcha"></div>
114 |     <p id="wait" class="show">正在加载验证码......</p>
115 |     <p id="notice" class="hide">请先拖动验证码到相应位置</p>
116 | 
117 |     <input class="btn" id="embed-submit" type="submit" value="提交">
118 | </form>
119 | 
120 | <script>
121 |     var handlerEmbed = function (captchaObj) {
122 |         $("#embed-submit").click(function (e) {
123 |             var validate = captchaObj.getValidate();
124 |             if (!validate) {
125 |                 $("#notice")[0].className = "show";
126 |                 setTimeout(function () {
127 |                     $("#notice")[0].className = "hide";
128 |                 }, 2000);
129 |                 e.preventDefault();
130 |             }
131 |         });
132 |         // 将验证码加到id为captcha的元素里，同时会有三个input的值：geetest_challenge, geetest_validate, geetest_seccode
133 |         captchaObj.appendTo("#embed-captcha");
134 |         captchaObj.onReady(function () {
135 |             $("#wait")[0].className = "hide";
136 |         });
137 |         // 更多接口参考：http://www.geetest.com/install/sections/idx-client-sdk.html
138 |     };
139 |     $.ajax({
140 |         // 获取id，challenge，success（是否启用failback）
141 |         url: "pc-geetest/register?t=" + (new Date()).getTime(), // 加随机数防止缓存
142 |         type: "get",
143 |         dataType: "json",
144 |         success: function (data) {
145 |             // 使用initGeetest接口
146 |             // 参数1：配置参数
147 |             // 参数2：回调，回调的第一个参数验证码对象，之后可以使用它做appendTo之类的事件
148 |             initGeetest({
149 |                 gt: data.gt,
150 |                 challenge: data.challenge,
151 |                 product: "embed", // 产品形式，包括：float，embed，popup。注意只对PC版验证码有效
152 |                 offline: !data.success // 表示用户后台检测极验服务器是否宕机，一般不需要关注
153 |                 // 更多配置参数请参见：http://www.geetest.com/install/sections/idx-client-sdk.html#config
154 |             }, handlerEmbed);
155 |         }
156 |     });
157 | </script>
158 |         
159 |         </div>
160 |     </div>
161 |     <hr>
162 |   </div>
163 | 
164 | 
165 |     <!--jQuery -->
166 |     <script  src="../lib/js/jquery.js"></script>
167 | 
168 |     <!--Bootstrap -->
169 |     <script src="../lib/js/bootstrap.js"></script>
170 | 
171 | 
172 |     <script type="text/javascript">
173 | 
174 |         function doSubmit(){
175 |             //表单数据js检查
176 |             //提交表单
177 |             document.getElementById("loginForm").submit();
178 |         }
179 |         function change(){
180 |             document.getElementById("img").src='getCode.from?'+new Date().getTime();
181 |         };
182 | 
183 |     </script>
184 | </body>
185 | </html>
186 | 


--------------------------------------------------------------------------------
/SlidingVerify/GeetestLib.java:
--------------------------------------------------------------------------------
  1 | package com.ow.appmg.controller.login;
  2 | 
  3 | import java.awt.print.Printable;
  4 | import java.io.BufferedReader;
  5 | import java.io.BufferedWriter;
  6 | import java.io.IOException;
  7 | import java.io.InputStream;
  8 | import java.io.InputStreamReader;
  9 | import java.io.OutputStreamWriter;
 10 | import java.net.HttpURLConnection;
 11 | import java.net.InetAddress;
 12 | import java.net.Socket;
 13 | import java.net.URL;
 14 | import java.security.MessageDigest;
 15 | import java.security.NoSuchAlgorithmException;
 16 | import java.text.SimpleDateFormat;
 17 | import java.util.ArrayList;
 18 | import java.util.HashMap;
 19 | import java.util.logging.Logger;
 20 | 
 21 | import javax.print.DocFlavor.STRING;
 22 | import javax.servlet.http.HttpServletRequest;
 23 | 
 24 | /**
 25 |  * Java SDK
 26 |  * 
 27 |  */
 28 | public class GeetestLib {
 29 | 
 30 | 	protected final String verName = "3.3.0";// SDK版本编号
 31 | 	protected final String sdkLang = "java";// SD的语�?���?
 32 | 	protected final String apiUrl = "http://api.geetest.com"; //极验验证API URL
 33 | 	protected final String baseUrl = "api.geetest.com";
 34 | 	
 35 | 	protected final String registerUrl = "/register.php"; //register url
 36 | 	protected final String validateUrl = "/validate.php"; //validate url
 37 | 
 38 | 	/**
 39 | 	 * 极验验证二次验证表单数据 chllenge
 40 | 	 */
 41 | 	public static final String fn_geetest_challenge = "geetest_challenge";
 42 | 	
 43 | 	/**
 44 | 	 * 极验验证二次验证表单数据 validate
 45 | 	 */
 46 | 	public static final String fn_geetest_validate = "geetest_validate";
 47 | 	
 48 | 	/**
 49 | 	 * 极验验证二次验证表单数据 seccode
 50 | 	 */
 51 | 	public static final String fn_geetest_seccode = "geetest_seccode";
 52 | 
 53 | 	/**
 54 | 	 * 公钥
 55 | 	 */
 56 | 	private String captchaId = "";
 57 | 
 58 | 	/**
 59 | 	 * 私钥
 60 | 	 */
 61 | 	
 62 | 	private String privateKey = "";
 63 | 	
 64 | 	private String userId = "";
 65 | 
 66 | 	private String responseStr = "";
 67 | 	
 68 | 	/**
 69 | 	 * 调试�?��，是否输出调试日�?	 */
 70 | 	public boolean debugCode = true;
 71 | 	
 72 | 	/**
 73 | 	 * 极验验证API服务状�?Session Key
 74 | 	 */
 75 | 	public String gtServerStatusSessionKey = "gt_server_status";
 76 | 	
 77 | 	/**
 78 | 	 * 带参数构造函�?	 * 
 79 | 	 * @param captchaId
 80 | 	 * @param privateKey
 81 | 	 */
 82 | 	public GeetestLib(String captchaId, String privateKey) {
 83 | 		this.captchaId = captchaId;
 84 | 		this.privateKey = privateKey;
 85 | 	}
 86 | 	
 87 | 	/**
 88 | 	 * 获取本次验证初始化返回字符串
 89 | 	 * 
 90 | 	 * @return 初始化结�?	 */
 91 | 	public String getResponseStr() {
 92 | 		return responseStr;
 93 | 	}
 94 | 	
 95 | 	public String getVersionInfo() {
 96 | 		return verName;
 97 | 	}
 98 | 
 99 | 	/**
100 | 	 * 预处理失败后的返回格式串
101 | 	 * 
102 | 	 * @return
103 | 	 */
104 | 	private String getFailPreProcessRes() {
105 | 
106 | 		Long rnd1 = Math.round(Math.random() * 100);
107 | 		Long rnd2 = Math.round(Math.random() * 100);
108 | 		String md5Str1 = md5Encode(rnd1 + "");
109 | 		String md5Str2 = md5Encode(rnd2 + "");
110 | 		String challenge = md5Str1 + md5Str2.substring(0, 2);
111 | 
112 | 		return String.format(
113 | 				"{\"success\":%s,\"gt\":\"%s\",\"challenge\":\"%s\"}", 0,
114 | 				this.captchaId, challenge);
115 | 	}
116 | 
117 | 	/**
118 | 	 * 预处理成功后的标准串
119 | 	 * 
120 | 	 */
121 | 	private String getSuccessPreProcessRes(String challenge) {
122 | 		
123 | 		gtlog("challenge:" + challenge);
124 | 		return String.format(
125 | 				"{\"success\":%s,\"gt\":\"%s\",\"challenge\":\"%s\"}", 1,
126 | 				this.captchaId, challenge);
127 | 	}
128 | 
129 | 	/**
130 | 	 * 验证初始化预处理
131 | 	 *
132 | 	 * @return 1表示初始化成功，0表示初始化失�?	 */
133 | 	public int preProcess() {
134 | 
135 | 		if (registerChallenge() != 1) {
136 | 			
137 | 			this.responseStr = this.getFailPreProcessRes();
138 | 			return 0;
139 | 		}
140 | 		
141 | 		return 1;
142 | 
143 | 	}
144 | 	
145 | 	/**
146 | 	 * 验证初始化预处理
147 | 	 *
148 | 	 * @param userid
149 | 	 * @return 1表示初始化成功，0表示初始化失�?	 */
150 | 	public int preProcess(String userid){
151 | 		
152 | 		this.userId = userid;
153 | 		return this.preProcess();
154 | 	}
155 | 	
156 | 	
157 | 
158 | 	/**
159 | 	 * 用captchaID进行注册，更新challenge
160 | 	 * 
161 | 	 * @return 1表示注册成功�?表示注册失败
162 | 	 */
163 | 	private int registerChallenge() {
164 | 		try {
165 | 			String GET_URL = apiUrl + registerUrl+"?gt=" + this.captchaId;
166 | 			if (this.userId != ""){
167 | 				GET_URL = GET_URL + "&user_id=" + this.userId;
168 | 				this.userId = "";
169 | 			}
170 | 			gtlog("GET_URL:" + GET_URL);
171 | 			String result_str = readContentFromGet(GET_URL);
172 | 			gtlog("register_result:" + result_str);
173 | 			if (32 == result_str.length()) {
174 | 
175 | 				this.responseStr = this.getSuccessPreProcessRes(this.md5Encode(result_str + this.privateKey));
176 | 				
177 | 				return 1;
178 | 			} else {
179 | 				gtlog("gtServer register challenge failed");
180 | 				return 0;
181 | 			}
182 | 		} catch (Exception e) {
183 | 			gtlog("exception:register api");
184 | 		}
185 | 		return 0;
186 | 	}
187 | 
188 | 	/**
189 | 	 * 发�?请求，获取服务器返回结果
190 | 	 * 
191 | 	 * @param getURL
192 | 	 * @return 服务器返回结�?	 * @throws IOException
193 | 	 */
194 | 	private String readContentFromGet(String getURL) throws IOException {
195 | 
196 | 		URL getUrl = new URL(getURL);
197 | 		HttpURLConnection connection = (HttpURLConnection) getUrl
198 | 				.openConnection();
199 | 
200 | 		connection.setConnectTimeout(2000);// 设置连接主机超时（单位：毫秒�?		connection.setReadTimeout(2000);// 设置从主机读取数据超时（单位：毫秒）
201 | 
202 | 		// 建立与服务器的连接，并未发�?数据
203 | 		connection.connect();
204 | 		
205 | 		// 发�?数据到服务器并使用Reader读取返回的数�?		
206 | 		StringBuffer sBuffer = new StringBuffer();
207 | 
208 | 		InputStream inStream = null;
209 | 		byte[] buf = new byte[1024];
210 | 		inStream = connection.getInputStream();
211 | 		for (int n; (n = inStream.read(buf)) != -1;) {
212 | 			sBuffer.append(new String(buf, 0, n, "UTF-8"));
213 | 		}
214 | 		inStream.close();
215 | 		connection.disconnect();// 断开连接
216 | 
217 | 		return sBuffer.toString();
218 | 	}
219 | 	
220 | 	
221 | 	
222 | 	
223 | 	/**
224 | 	 * 判断�?��表单对象值是否为�?	 * 
225 | 	 * @param gtObj
226 | 	 * @return
227 | 	 */
228 | 	protected boolean objIsEmpty(Object gtObj) {
229 | 		if (gtObj == null) {
230 | 			return true;
231 | 		}
232 | 
233 | 		if (gtObj.toString().trim().length() == 0) {
234 | 			return true;
235 | 		}
236 | 
237 | 		return false;
238 | 	}
239 | 
240 | 	/**
241 | 	 * �?��客户端的请求是否合法,三个只要有一个为空，则判断不合法
242 | 	 * 
243 | 	 * @param request
244 | 	 * @return
245 | 	 */
246 | 	private boolean resquestIsLegal(String challenge, String validate, String seccode) {
247 | 
248 | 		if (objIsEmpty(challenge)) {
249 | 			return false;
250 | 		}
251 | 
252 | 		if (objIsEmpty(validate)) {
253 | 			return false;
254 | 		}
255 | 
256 | 		if (objIsEmpty(seccode)) {
257 | 			return false;
258 | 		}
259 | 
260 | 		return true;
261 | 	}
262 | 	
263 | 	
264 | 	/**
265 | 	 * 服务正常的情况下使用的验证方�?向gt-server进行二次验证,获取验证结果
266 | 	 * 
267 | 	 * @param challenge
268 | 	 * @param validate
269 | 	 * @param seccode
270 | 	 * @return 验证结果,1表示验证成功0表示验证失败
271 | 	 */
272 | 	public int enhencedValidateRequest(String challenge, String validate, String seccode) {	
273 | 		
274 | 		if (!resquestIsLegal(challenge, validate, seccode)) {
275 | 			return 0;
276 | 		}
277 | 		gtlog("request legitimate");
278 | 		
279 | 		String host = baseUrl;
280 | 		String path = validateUrl;
281 | 		int port = 80;
282 | 		String query = String.format("seccode=%s&sdk=%s", seccode,
283 | 				(this.sdkLang + "_" + this.verName));
284 | 		String response = "";
285 | 		
286 | 		if (this.userId != ""){
287 | 			query = query + "&user_id=" + this.userId;
288 | 			this.userId = "";
289 | 		}
290 | 		gtlog(query);
291 | 		try {
292 | 			if (validate.length() <= 0) {
293 | 				return 0;
294 | 			}
295 | 
296 | 			if (!checkResultByPrivate(challenge, validate)) {
297 | 				return 0;
298 | 			}
299 | 			gtlog("checkResultByPrivate");
300 | 			response = postValidate(host, path, query, port);
301 | 
302 | 			gtlog("response: " + response);
303 | 		} catch (Exception e) {
304 | 			e.printStackTrace();
305 | 		}
306 | 
307 | 		gtlog("md5: " + md5Encode(seccode));
308 | 
309 | 		if (response.equals(md5Encode(seccode))) {
310 | 			return 1;
311 | 		} else {
312 | 			return 0;
313 | 		}
314 | 	}
315 | 	
316 | 	/**
317 | 	 * 服务正常的情况下使用的验证方�?向gt-server进行二次验证,获取验证结果
318 | 	 * 
319 | 	 * @param challenge
320 | 	 * @param validate
321 | 	 * @param seccode
322 | 	 * @param userid
323 | 	 * @return 验证结果,1表示验证成功0表示验证失败
324 | 	 */
325 | 	public int enhencedValidateRequest(String challenge, String validate, String seccode, String userid) {	
326 | 		
327 | 		this.userId = userid;
328 | 		return this.enhencedValidateRequest(challenge, validate, seccode);
329 | 	}
330 | 
331 | 	/**
332 | 	 * failback使用的验证方�?	 * 
333 | 	 * @param challenge
334 | 	 * @param validate
335 | 	 * @param seccode
336 | 	 * @return 验证结果,1表示验证成功0表示验证失败
337 | 	 */
338 | 	public int failbackValidateRequest(String challenge, String validate, String seccode) {
339 | 
340 | 		gtlog("in failback validate");
341 | 
342 | 		if (!resquestIsLegal(challenge, validate, seccode)) {
343 | 			return 0;
344 | 		}
345 | 		gtlog("request legitimate");
346 | 
347 | 		String[] validateStr = validate.split("_");
348 | 		String encodeAns = validateStr[0];
349 | 		String encodeFullBgImgIndex = validateStr[1];
350 | 		String encodeImgGrpIndex = validateStr[2];
351 | 
352 | 		gtlog(String.format(
353 | 				"encode----challenge:%s--ans:%s,bg_idx:%s,grp_idx:%s",
354 | 				challenge, encodeAns, encodeFullBgImgIndex, encodeImgGrpIndex));
355 | 			
356 | 		int decodeAns = decodeResponse(challenge, encodeAns);
357 | 		int decodeFullBgImgIndex = decodeResponse(challenge, encodeFullBgImgIndex);
358 | 		int decodeImgGrpIndex = decodeResponse(challenge, encodeImgGrpIndex);
359 | 
360 | 		gtlog(String.format("decode----ans:%s,bg_idx:%s,grp_idx:%s", decodeAns,
361 | 				decodeFullBgImgIndex, decodeImgGrpIndex));
362 | 
363 | 		int validateResult = validateFailImage(decodeAns,decodeFullBgImgIndex, decodeImgGrpIndex);
364 | 
365 | 		return validateResult;
366 | 	}
367 | 	
368 | 	
369 | 
370 | 	/**
371 | 	 *
372 | 	 * @param ans
373 | 	 * @param full_bg_index
374 | 	 * @param img_grp_index
375 | 	 * @return
376 | 	 */
377 | 	private int validateFailImage(int ans, int full_bg_index,
378 | 			int img_grp_index) {
379 | 		final int thread = 3;// 容差�?
380 | 		String full_bg_name = md5Encode(full_bg_index + "").substring(0, 9);
381 | 		String bg_name = md5Encode(img_grp_index + "").substring(10, 19);
382 | 
383 | 		String answer_decode = "";
384 | 
385 | 		// 通过两个字符串奇数和偶数位拼接产生答案位
386 | 		for (int i = 0; i < 9; i++) {
387 | 			if (i % 2 == 0) {
388 | 				answer_decode += full_bg_name.charAt(i);
389 | 			} else if (i % 2 == 1) {
390 | 				answer_decode += bg_name.charAt(i);
391 | 			} else {
392 | 				gtlog("exception");
393 | 			}
394 | 		}
395 | 
396 | 		String x_decode = answer_decode.substring(4, answer_decode.length());
397 | 
398 | 		int x_int = Integer.valueOf(x_decode, 16);// 16 to 10
399 | 
400 | 		int result = x_int % 200;
401 | 		if (result < 40) {
402 | 			result = 40;
403 | 		}
404 | 
405 | 		if (Math.abs(ans - result) <= thread) {
406 | 			return 1;
407 | 		} else {
408 | 			return 0;
409 | 		}
410 | 	}
411 | 	
412 | 	
413 | 	
414 | 	
415 | 	/**
416 | 	 * 解码随机参数
417 | 	 * 
418 | 	 * @param encodeStr
419 | 	 * @param challenge
420 | 	 * @return
421 | 	 */
422 | 	private int decodeResponse(String challenge, String string) {
423 | 		if (string.length() > 100) {
424 | 			return 0;
425 | 		}
426 | 
427 | 		int[] shuzi = new int[] { 1, 2, 5, 10, 50 };
428 | 		String chongfu = "";
429 | 		HashMap<String, Integer> key = new HashMap<String, Integer>();
430 | 		int count = 0;
431 | 
432 | 		for (int i = 0; i < challenge.length(); i++) {
433 | 			String item = challenge.charAt(i) + "";
434 | 
435 | 			if (chongfu.contains(item) == true) {
436 | 				continue;
437 | 			} else {
438 | 				int value = shuzi[count % 5];
439 | 				chongfu += item;
440 | 				count++;
441 | 				key.put(item, value);
442 | 			}
443 | 		}
444 | 
445 | 		int res = 0;
446 | 
447 | 		for (int j = 0; j < string.length(); j++) {
448 | 			res += key.get(string.charAt(j) + "");
449 | 		}
450 | 
451 | 		res = res - decodeRandBase(challenge);
452 | 
453 | 		return res;
454 | 
455 | 	}
456 | 
457 | 	/**
458 | 	 * 输入的两位的随机数字,解码出偏移量
459 | 	 * 
460 | 	 * @param randStr
461 | 	 * @return
462 | 	 */
463 | 	private int decodeRandBase(String challenge) {
464 | 
465 | 		String base = challenge.substring(32, 34);
466 | 		ArrayList<Integer> tempArray = new ArrayList<Integer>();
467 | 
468 | 		for (int i = 0; i < base.length(); i++) {
469 | 			char tempChar = base.charAt(i);
470 | 			Integer tempAscii = (int) (tempChar);
471 | 
472 | 			Integer result = (tempAscii > 57) ? (tempAscii - 87)
473 | 					: (tempAscii - 48);
474 | 
475 | 			tempArray.add(result);
476 | 		}
477 | 
478 | 		int decodeRes = tempArray.get(0) * 36 + tempArray.get(1);
479 | 		return decodeRes;
480 | 
481 | 	}
482 | 	
483 | 	
484 | 
485 | 	/**
486 | 	 * 输出debug信息，需要开启debugCode
487 | 	 * 
488 | 	 * @param message
489 | 	 */
490 | 	public void gtlog(String message) {
491 | 		if (debugCode) {
492 | 			System.out.println("gtlog: " + message);
493 | 		}
494 | 	}
495 | 
496 | 	protected boolean checkResultByPrivate(String challenge, String validate) {
497 | 		String encodeStr = md5Encode(privateKey + "geetest" + challenge);
498 | 		return validate.equals(encodeStr);
499 | 	}
500 | 
501 | 	/**
502 | 	 * 貌似不是Post方式，后面重构时修改名字
503 | 	 * 
504 | 	 * @param host
505 | 	 * @param path
506 | 	 * @param data
507 | 	 * @param port
508 | 	 * @return
509 | 	 * @throws Exception
510 | 	 */
511 | 	protected String postValidate(String host, String path, String data,
512 | 			int port) throws Exception {
513 | 		String response = "error";
514 | 		
515 | 		InetAddress addr = InetAddress.getByName(host);
516 | 		Socket socket = new Socket(addr, port);
517 | 		BufferedWriter wr = new BufferedWriter(new OutputStreamWriter(
518 | 				socket.getOutputStream(), "UTF8"));
519 | 		wr.write("POST " + path + " HTTP/1.0\r\n");
520 | 		wr.write("Host: " + host + "\r\n");
521 | 		wr.write("Content-Type: application/x-www-form-urlencoded\r\n");
522 | 		wr.write("Content-Length: " + data.length() + "\r\n");
523 | 		wr.write("\r\n"); // 以空行作为分�?		
524 | 		// 发�?数据
525 | 		wr.write(data);
526 | 		wr.flush();
527 | 		
528 | 		// 读取返回信息
529 | 		BufferedReader rd = new BufferedReader(new InputStreamReader(
530 | 				socket.getInputStream(), "UTF-8"));
531 | 		String line;
532 | 		while ((line = rd.readLine()) != null) {
533 | 			response = line;
534 | 		}
535 | 		wr.close();
536 | 		rd.close();
537 | 		socket.close();
538 | 		return response;
539 | 	}
540 | 
541 | 
542 | 	/**
543 | 	 * md5 加密
544 | 	 * 
545 | 	 * @time 2014�?�?0�?下午3:30:01
546 | 	 * @param plainText
547 | 	 * @return
548 | 	 */
549 | 	private String md5Encode(String plainText) {
550 | 		String re_md5 = new String();
551 | 		try {
552 | 			MessageDigest md = MessageDigest.getInstance("MD5");
553 | 			md.update(plainText.getBytes());
554 | 			byte b[] = md.digest();
555 | 			int i;
556 | 			StringBuffer buf = new StringBuffer("");
557 | 			for (int offset = 0; offset < b.length; offset++) {
558 | 				i = b[offset];
559 | 				if (i < 0)
560 | 					i += 256;
561 | 				if (i < 16)
562 | 					buf.append("0");
563 | 				buf.append(Integer.toHexString(i));
564 | 			}
565 | 
566 | 			re_md5 = buf.toString();
567 | 
568 | 		} catch (NoSuchAlgorithmException e) {
569 | 			e.printStackTrace();
570 | 		}
571 | 		return re_md5;
572 | 	}
573 | 
574 | }
575 | 


--------------------------------------------------------------------------------