企业微信扫码登录案例-springboot版
思路:创建应用,拿到copid、agenid、密钥、再企业微信授权登录配置回调地址即可;(扫码后将结果回调你本地)
![]()
![]()
效果如下:
一、maven坐标
<dependency> <groupId>org.springframework.boot</groupId> <artifactId>spring-boot-starter-thymeleaf</artifactId> </dependency> <dependency> <groupId>com.alibaba.fastjson2</groupId> <artifactId>fastjson2</artifactId> <version>2.0.40</version> </dependency> <dependency> <groupId>cn.hutool</groupId> <artifactId>hutool-all</artifactId> <version>5.8.21</version> </dependency> <dependency> <groupId>org.projectlombok</groupId> <artifactId>lombok</artifactId> <optional>true</optional> </dependency>二、config、controller
yml配置:
server: port: 8080 wecom: corp-id: xxxxx agent-id: xxxx secret: xxxx-AOfBJ66c # 必须与你在企微后台配置的可信域名一致,且要在该域名下 redirect-uri: http://xxx.cn:28088/api/wecom/callbackimport com.alibaba.fastjson2.JSONObject; import cn.hutool.http.HttpUtil; import org.springframework.beans.factory.annotation.Value; import org.springframework.stereotype.Controller; import org.springframework.ui.Model; import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.RequestParam; import org.springframework.web.bind.annotation.ResponseBody; import java.io.UnsupportedEncodingException; import java.net.URLEncoder; import java.nio.charset.StandardCharsets; @Controller public class WeComLoginController { @Value("${wecom.corp-id}") private String corpId; @Value("${wecom.agent-id}") private String agentId; @Value("${wecom.secret}") private String secret; @Value("${wecom.redirect-uri}") private String redirectUri; /** * 1. 访问登录页 * URL: http://yaoqinqin.cn:28088/login */ @GetMapping("/login") public String loginPage(Model model) throws UnsupportedEncodingException { // 将配置传给前端,生成二维码使用 model.addAttribute("corpId", corpId); model.addAttribute("agentId", agentId); // 回调地址必须 URL Encode model.addAttribute("redirectUri", URLEncoder.encode(redirectUri, "UTF-8")); return "login.html"; // 对应 resources/templates/login.html } /** * 2. 扫码后的回调接口 * URL: http://yaoqinqin.cn:28088/api/wecom/callback */ @GetMapping("/api/wecom/callback") @ResponseBody public String callback(@RequestParam("code") String code) { // 第一步:获取 AccessToken // 注意:生产环境 AccessToken 必须缓存(有效期2小时),不能每次请求都去获取,会触发频率限制 String tokenUrl = String.format("https://qyapi.weixin.qq.com/cgi-bin/gettoken?corpid=%s&corpsecret=%s", corpId, secret); String tokenResp = HttpUtil.get(tokenUrl); JSONObject tokenJson = JSONObject.parseObject(tokenResp); if (tokenJson.getIntValue("errcode") != 0) { return "获取 Token 失败: " + tokenResp; } String accessToken = tokenJson.getString("access_token"); // 第二步:获取访问用户身份 (UserId) String userInfoUrl = String.format("https://qyapi.weixin.qq.com/cgi-bin/user/getuserinfo?access_token=%s&code=%s", accessToken, code); String userInfoResp = HttpUtil.get(userInfoUrl); JSONObject userInfoJson = JSONObject.parseObject(userInfoResp); if (userInfoJson.getIntValue("errcode") != 0) { return "获取用户信息失败: " + userInfoResp; } String userId = userInfoJson.getString("UserId"); return "<h1>登录成功!</h1> <p>企业微信 UserId: " + userId + "</p>"; } }三、thmeleaf页面
<!DOCTYPE html> <html xmlns:th="http://www.thymeleaf.org"> <head> <meta charset="UTF-8"> <title>企业微信扫码登录</title> <script src="https://rescdn.qqmail.com/node/ww/wwopenmng/js/sso/wwLogin-1.0.0.js"></script> <style> body { text-align: center; padding-top: 50px; } #wx_reg { margin: 0 auto; } </style> </head> <body> <h2>欢迎使用扫码登录</h2> <div id="wx_reg"></div> <script th:inline="javascript"> window.onload = function() { // 获取后端传来的参数 var corpId = [[${corpId}]]; var agentId = [[${agentId}]]; var redirectUri = [[${redirectUri}]]; // 已经是 encode 过的 // 实例化二维码 window.WwLogin({ "id": "wx_reg", "appid": corpId, "agentid": agentId, "redirect_uri": decodeURIComponent(redirectUri), // JS SDK内部可能也会处理,通常传入原样字符串或decode一下保险 "state": "STATE_LOGIN", "href": "", }); }; </script> </body> </html>
)