xymp
/
backend
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: 调整用户登入校验

Browse Source
dev
huangfeng 1 year ago
parent a36d83fa50
commit f07aa90885
10 changed files with 314 additions and 3 deletions
Show Stats Download Patch File Download Diff File

2
xymanager_common/src/main/java/com/shxy/xymanager_common/entity/SysUserSession.java
Unescape Escape View File

@ -12,6 +12,8 @@ public class SysUserSession implements Serializable {
private String sessionId;
private String token;
private String userName;
private Integer role;

35
xymanager_framework/src/main/java/com/shxy/xymanager_framework/filter/AbstractAuthorizationFilter.java
Unescape Escape View File

@ -0,0 +1,35 @@
package com.shxy.xymanager_framework.filter;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.shxy.xymanager_common.base.ResponseReult;
import com.shxy.xymanager_common.util.http.HttpStatus;
import org.springframework.web.filter.OncePerRequestFilter;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.PrintWriter;
public abstract class AbstractAuthorizationFilter extends OncePerRequestFilter {
protected void writeJsonResult(HttpServletRequest request, HttpServletResponse response,
ResponseReult result) throws IOException, ServletException {
ObjectMapper mapper = new ObjectMapper();
response.setContentType("application/json;charset=utf-8");
response.setStatus(HttpServletResponse.SC_OK);
PrintWriter out = response.getWriter();
out.write(mapper.writeValueAsString(result));
out.flush();
out.close();
}
protected void writeException(HttpServletRequest request, HttpServletResponse response,
Exception ex) throws IOException, ServletException {
ResponseReult result = ResponseReult.error(HttpStatus.HTTP_UNAUTHORIZED, ex.getMessage());
writeJsonResult(request, response, result);
}
}

69
xymanager_framework/src/main/java/com/shxy/xymanager_framework/filter/UrlAuthFilter.java
Unescape Escape View File

@ -0,0 +1,69 @@
package com.shxy.xymanager_framework.filter;
import com.shxy.xymanager_common.bean.SysUser;
import com.shxy.xymanager_service.config.SecurityConfig;
import com.shxy.xymanager_service.service.SysUserService;
import lombok.extern.slf4j.Slf4j;
import org.springframework.core.annotation.Order;
import org.springframework.stereotype.Component;
import org.springframework.util.AntPathMatcher;
import org.springframework.util.PathMatcher;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.Arrays;
@Order(2)
@Component
@Slf4j
public class UrlAuthFilter extends AbstractAuthorizationFilter {
SecurityConfig config;
SysUserService userService;
public UrlAuthFilter(SecurityConfig config, SysUserService userService) {
this.config = config;
this.userService = userService;
}
PathMatcher pathMatcher = new AntPathMatcher();
@Override
protected void doFilterInternal(
HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
throws ServletException, IOException {
if (!config.getUrlEnable()) {
filterChain.doFilter(request, response);
return;
}
String path = request.getRequestURI();
int suffixIdx = path.lastIndexOf(".");
if (suffixIdx > -1 && Arrays.stream(config.getResourceSuffix().toArray())
.anyMatch(a -> a.equals(path.substring(suffixIdx)))) {
filterChain.doFilter(request, response);
return;
}
for (String white : config.getUrlWhiteList()) {
if (pathMatcher.match(white, path)) {
filterChain.doFilter(request, response);
return;
}
}
SysUser user = UserContextHolder.currentUserInfo();
if (user == null) {
writeException(request, response, new Exception("用户未登录或用户登录已过期"));
} else {
filterChain.doFilter(request, response);
}
}
}

23
xymanager_framework/src/main/java/com/shxy/xymanager_framework/filter/UserContextHolder.java
Unescape Escape View File

@ -0,0 +1,23 @@
package com.shxy.xymanager_framework.filter;
import com.shxy.xymanager_common.bean.SysUser;
import org.springframework.core.NamedInheritableThreadLocal;
public class UserContextHolder {
private static final ThreadLocal<SysUser> inheritableRequestAttributesHolder = new NamedInheritableThreadLocal("userId context");
public UserContextHolder() {
}
public static void setCurrentUserInfo(SysUser userInfo) {
inheritableRequestAttributesHolder.set(userInfo);
}
public static SysUser currentUserInfo() {
return inheritableRequestAttributesHolder.get();
}
public static void reset() {
inheritableRequestAttributesHolder.remove();
}
}

79
xymanager_framework/src/main/java/com/shxy/xymanager_framework/filter/UserInfoFilter.java
Unescape Escape View File

@ -0,0 +1,79 @@
package com.shxy.xymanager_framework.filter;
import com.shxy.xymanager_common.bean.SysUser;
import com.shxy.xymanager_common.exception.CustomException;
import com.shxy.xymanager_service.config.SecurityConfig;
import com.shxy.xymanager_service.service.SysUserService;
import io.jsonwebtoken.Claims;
import io.jsonwebtoken.JwtException;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.security.Keys;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.lang3.StringUtils;
import org.springframework.core.annotation.Order;
import org.springframework.stereotype.Component;
import javax.crypto.SecretKey;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.nio.charset.StandardCharsets;
@Order(1)
@Slf4j
@Component
public class UserInfoFilter extends AbstractAuthorizationFilter {
SecurityConfig config;
SysUserService userService;
public UserInfoFilter(SecurityConfig config, SysUserService userService) {
this.config = config;
this.userService = userService;
}
@Override
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
boolean valid = false;
try {
valid = initContextHolders(request);
} catch (CustomException ex) {
log.error("用户登录信息出错!", ex);
writeException(request, response, ex);
}
if (valid) {
filterChain.doFilter(request, response);
}
UserContextHolder.reset();
}
private boolean initContextHolders(HttpServletRequest request) throws CustomException {
String token = request.getHeader(config.getJwtHeader());
if (!StringUtils.isBlank(token)) {
SecretKey key = Keys.hmacShaKeyFor(config.getJwtPwd().getBytes(StandardCharsets.UTF_8));
try {
token = token.replace(config.getJwtPrefix() + " ", "");
Claims claims = Jwts.parserBuilder()
.setSigningKey(key)
.build()
.parseClaimsJws(token)
.getBody();
String userId = claims.getSubject();
String jwtId = claims.getId();
if (!StringUtils.isBlank(userId)) {
SysUser user = userService.selectUserById(Integer.parseInt(userId));
UserContextHolder.setCurrentUserInfo(user);
}
} catch (JwtException ex) {
log.error(ex.getMessage(), ex);
throw new CustomException("用户未登录或用户登录已过期");
}
}
return true;
}
}

15
xymanager_service/pom.xml
Unescape Escape View File

@ -15,6 +15,21 @@
</properties>
<dependencies>
<dependency>
<groupId>io.jsonwebtoken</groupId>
<artifactId>jjwt-api</artifactId>
<version>0.11.5</version>
</dependency>
<dependency>
<groupId>io.jsonwebtoken</groupId>
<artifactId>jjwt-impl</artifactId>
<version>0.11.5</version>
</dependency>
<dependency>
<groupId>io.jsonwebtoken</groupId>
<artifactId>jjwt-jackson</artifactId> <!-- or jjwt-gson if Gson is preferred -->
<version>0.11.5</version>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-beans</artifactId>

66
xymanager_service/src/main/java/com/shxy/xymanager_service/config/SecurityConfig.java
Unescape Escape View File

@ -0,0 +1,66 @@
package com.shxy.xymanager_service.config;
import com.google.common.collect.Lists;
import com.google.common.collect.Sets;
import lombok.Data;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.lang3.StringUtils;
import org.springframework.context.annotation.Configuration;
import javax.annotation.PostConstruct;
import java.util.List;
import java.util.Set;
@Configuration
@Data
@Slf4j
public class SecurityConfig {
private String jwtPwd = "x11d11ddf@!dddd12efwefwefwd1111ff1111qefeffeefffdfdfdfa1d";
private String jwtHeader = "Authorization";
private String jwtPrefix = "Bearer";
// default 24 hours
private Integer jwtExpiration = 24 * 60 * 60;
private List<String> urlWhiteList = Lists.newArrayList();
/**
*
*/
private Boolean urlEnable = true;
/**
*
*/
private String defaultPwd = "Aa12345678";
/**
*
*/
private String staticResource = ".jpg,.jpeg,.js,.css,.png,.bmp,.gif,.ico,.mp3,.mp4,.svg";
private Set<String> resourceSuffix = Sets.newHashSet();
private List<String> swagger = Lists.newArrayList("/swagger**", "/webjars/**",
"/v2/api-docs/**", "/v3/api-docs/**", "/swagger-resources/**");
@PostConstruct
private void init() {
if (StringUtils.isNotBlank(staticResource)) {
this.resourceSuffix = Sets.newHashSet(staticResource.split(","));
}
urlWhiteList.addAll(swagger);
urlWhiteList.add("/api/login");
urlWhiteList.add("/login");
urlWhiteList.add("/doc.html");
urlWhiteList.add("/error");
urlWhiteList.add("/test/**");
urlWhiteList.add("/getPhotoListForOpen");
urlWhiteList.add("/ctrlCmaDeviceCapture");
urlWhiteList.add("/cmaDeviceStatus");
urlWhiteList.add("/cmaUserLogin");
}
}

22
xymanager_service/src/main/java/com/shxy/xymanager_service/impl/LoginServiceImpl.java
Unescape Escape View File

@ -13,14 +13,20 @@ import com.shxy.xymanager_common.util.MyDateUtils;
import com.shxy.xymanager_common.util.RsaUtils;
import com.shxy.xymanager_common.util.StringUtils;
import com.shxy.xymanager_dao.dao.SysUserMapperDao;
import com.shxy.xymanager_service.config.SecurityConfig;
import com.shxy.xymanager_service.service.LoginService;
import com.shxy.xymanager_service.service.SysUserService;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.security.Keys;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
import javax.crypto.SecretKey;
import java.math.BigInteger;
import java.nio.charset.StandardCharsets;
import java.util.Date;
import java.util.UUID;
/**
*
@ -29,6 +35,8 @@ import java.util.Date;
@Slf4j
public class LoginServiceImpl implements LoginService {
@Autowired
SecurityConfig config;
@Autowired
private SysUserService sysUserService;
@ -46,6 +54,8 @@ public class LoginServiceImpl implements LoginService {
try {
SysUserSession user = getLoginUser(sysUser);
user.setSessionId(sessionId);
String token = this.generate(user.getId());
user.setToken(token);
// sysUserMapperDao.insertUserSession(user);
Date date = new Date();
sysUserMapperDao.insertOrUpdate(user, date,date);
@ -58,6 +68,18 @@ public class LoginServiceImpl implements LoginService {
return Asserts.error("登录失败");
}
private String generate(Integer userId) {
SecretKey key = Keys.hmacShaKeyFor(config.getJwtPwd().getBytes(StandardCharsets.UTF_8));
String uuid = UuidUtils.getUUID();
String jws = Jwts.builder()
.setSubject(String.valueOf(userId))
.setExpiration(new Date(new Date().getTime() + config.getJwtExpiration() * 1000))
.signWith(key)
.setId(uuid)
.compact();
return jws;
}
/**
*
*

4
xymanager_service/src/main/java/com/shxy/xymanager_service/impl/SysUserServiceImpl.java
Unescape Escape View File

@ -78,8 +78,8 @@ public class SysUserServiceImpl implements SysUserService {
}
@Override
public SysUser selectUserById(Long userId) {
return sysUserMapperDao.selectUserById(userId);
public SysUser selectUserById(Integer userId) {
return sysUserMapperDao.selectByPrimaryKey(userId);
}
@Override

2
xymanager_service/src/main/java/com/shxy/xymanager_service/service/SysUserService.java
Unescape Escape View File

@ -33,7 +33,7 @@ public interface SysUserService {
* @param userId ID
* @return
*/
SysUser selectUserById(Long userId);
SysUser selectUserById(Integer userId);
ServiceBody<String> addUser(SysUserVo vo);

Write Preview
Loading…
Cancel
Save