wip: 临时提交
This commit is contained in:
Ray.Hao
@@ -1,7 +1,7 @@
|
|||||||
package com.youlai.boot.common.constant;
|
package com.youlai.boot.common.constant;
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Redis Key常量
|
* Redis 常量
|
||||||
*
|
*
|
||||||
* @author Theo
|
* @author Theo
|
||||||
* @since 2024-7-29 11:46:08
|
* @since 2024-7-29 11:46:08
|
||||||
@@ -9,32 +9,41 @@ package com.youlai.boot.common.constant;
|
|||||||
public interface RedisConstants {
|
public interface RedisConstants {
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* 系统配置 Redis 键
|
* 限流相关键
|
||||||
*/
|
*/
|
||||||
String SYSTEM_CONFIG_KEY = "system:config";
|
interface RateLimiter {
|
||||||
|
String IP = "rate_limiter:ip:{}"; // IP限流(示例:rate_limiter:ip:192.168.1.1)
|
||||||
/**
|
}
|
||||||
* IP 限流 Redis 键
|
/**
|
||||||
*/
|
* 分布式锁相关键
|
||||||
String IP_RATE_LIMITER_KEY = "rate:limiter:ip:";
|
*/
|
||||||
|
interface Lock {
|
||||||
/**
|
String RESUBMIT = "lock:resubmit:{}:{}"; // 防重复提交(示例:lock:resubmit:methodName:md5Hash)
|
||||||
* 防重复提交 Redis 键前缀
|
}
|
||||||
*/
|
/**
|
||||||
String RESUBMIT_LOCK_PREFIX = "lock:resubmit:";
|
* 认证模块
|
||||||
|
*/
|
||||||
/**
|
interface Auth {
|
||||||
* 登录手机验证码 Redis 键前缀
|
String BLACKLIST_TOKEN = "auth:token:blacklist:{}"; // 黑名单Token
|
||||||
*/
|
}
|
||||||
String SMS_LOGIN_CODE_PREFIX= "code:sms:login:";
|
|
||||||
|
/**
|
||||||
/**
|
* 验证码模块
|
||||||
* 绑定或更换手机号验证码 Redis 键前缀
|
*/
|
||||||
*/
|
interface Captcha {
|
||||||
String SMS_CHANGE_CODE_PREFIX = "code:sms:change:";
|
String IMAGE_CODE = "captcha:image:{}"; // 图形验证码
|
||||||
|
String SMS_LOGIN_CODE = "captcha:sms_login:{}"; // 登录短信验证码
|
||||||
/**
|
String SMS_REGISTER_CODE = "captcha:sms_register:{}";// 注册短信验证码
|
||||||
* 绑定或更换邮箱验证码 Redis 键前缀
|
String MOBILE_CODE = "captcha:mobile:{}"; // 绑定、更换手机验证码
|
||||||
*/
|
String EMAIL_CODE = "captcha:email:{}"; // 邮箱验证码
|
||||||
String EMAIL_CHANGE_CODE_PREFIX = "code:email:change:";
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* 系统模块
|
||||||
|
*/
|
||||||
|
interface System {
|
||||||
|
String CONFIG = "system:config"; // 系统配置
|
||||||
|
String ROLE_PERMS = "system:role:perms"; // 系统角色和权限映射
|
||||||
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -8,21 +8,6 @@ package com.youlai.boot.common.constant;
|
|||||||
*/
|
*/
|
||||||
public interface SecurityConstants {
|
public interface SecurityConstants {
|
||||||
|
|
||||||
/**
|
|
||||||
* 验证码缓存前缀
|
|
||||||
*/
|
|
||||||
String CAPTCHA_CODE_PREFIX = "captcha_code:";
|
|
||||||
|
|
||||||
/**
|
|
||||||
* 角色和权限缓存前缀
|
|
||||||
*/
|
|
||||||
String ROLE_PERMS_PREFIX = "role_perms:";
|
|
||||||
|
|
||||||
/**
|
|
||||||
* 黑名单Token缓存前缀
|
|
||||||
*/
|
|
||||||
String BLACKLIST_TOKEN_PREFIX = "token:blacklist:";
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* 登录路径
|
* 登录路径
|
||||||
*/
|
*/
|
||||||
@@ -31,7 +16,7 @@ public interface SecurityConstants {
|
|||||||
/**
|
/**
|
||||||
* JWT Token 前缀
|
* JWT Token 前缀
|
||||||
*/
|
*/
|
||||||
String JWT_TOKEN_PREFIX = "Bearer ";
|
String BEARER_TOKEN_PREFIX = "Bearer ";
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* 角色前缀,用于区分 authorities 角色和权限, ROLE_* 角色 、没有前缀的是权限
|
* 角色前缀,用于区分 authorities 角色和权限, ROLE_* 角色 、没有前缀的是权限
|
||||||
|
|||||||
@@ -85,7 +85,7 @@ public class WebSocketConfig implements WebSocketMessageBrokerConfigurer {
|
|||||||
if (StompCommand.CONNECT.equals(accessor.getCommand())) {
|
if (StompCommand.CONNECT.equals(accessor.getCommand())) {
|
||||||
String bearerToken = accessor.getFirstNativeHeader(HttpHeaders.AUTHORIZATION);
|
String bearerToken = accessor.getFirstNativeHeader(HttpHeaders.AUTHORIZATION);
|
||||||
if (StrUtil.isNotBlank(bearerToken) && bearerToken.startsWith("Bearer ")) {
|
if (StrUtil.isNotBlank(bearerToken) && bearerToken.startsWith("Bearer ")) {
|
||||||
bearerToken = bearerToken.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
bearerToken = bearerToken.substring(SecurityConstants.BEARER_TOKEN_PREFIX .length());
|
||||||
String username = JWTUtil.parseToken(bearerToken).getPayloads().getStr(JWTPayload.SUBJECT);
|
String username = JWTUtil.parseToken(bearerToken).getPayloads().getStr(JWTPayload.SUBJECT);
|
||||||
if (StrUtil.isNotBlank(username)) {
|
if (StrUtil.isNotBlank(username)) {
|
||||||
accessor.setUser(() -> username);
|
accessor.setUser(() -> username);
|
||||||
|
|||||||
@@ -1,6 +1,7 @@
|
|||||||
package com.youlai.boot.core.aspect;
|
package com.youlai.boot.core.aspect;
|
||||||
|
|
||||||
import cn.hutool.core.util.StrUtil;
|
import cn.hutool.core.util.StrUtil;
|
||||||
|
import cn.hutool.crypto.digest.DigestUtil;
|
||||||
import cn.hutool.jwt.JWTUtil;
|
import cn.hutool.jwt.JWTUtil;
|
||||||
import cn.hutool.jwt.RegisteredPayload;
|
import cn.hutool.jwt.RegisteredPayload;
|
||||||
import com.youlai.boot.common.constant.RedisConstants;
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
@@ -74,31 +75,23 @@ public class RepeatSubmitAspect {
|
|||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
/**
|
|
||||||
* 生成防重复提交锁的 key
|
|
||||||
*
|
|
||||||
* @return 锁的 key,如果无法生成则返回 null
|
|
||||||
*/
|
|
||||||
private String buildLockKey() {
|
private String buildLockKey() {
|
||||||
HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getRequest();
|
HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getRequest();
|
||||||
String token = request.getHeader(HttpHeaders.AUTHORIZATION);
|
String tokenHeader = request.getHeader(HttpHeaders.AUTHORIZATION);
|
||||||
|
|
||||||
if (StrUtil.isBlank(token) || !token.startsWith(SecurityConstants.JWT_TOKEN_PREFIX)) {
|
// 统一校验 Token 格式
|
||||||
log.warn("请求头中未找到有效的 JWT Token");
|
if (StrUtil.isBlank(tokenHeader) || !tokenHeader.startsWith(SecurityConstants.BEARER_TOKEN_PREFIX )) {
|
||||||
|
log.warn("请求头中未找到有效的 Token");
|
||||||
return null;
|
return null;
|
||||||
}
|
}
|
||||||
|
|
||||||
token = token.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
String rawToken = tokenHeader.substring(SecurityConstants.BEARER_TOKEN_PREFIX .length());
|
||||||
// 如果会话方式是jwt,解析 JWT Token 获取 jti
|
|
||||||
if (securityProperties.getSession().getType().equals("jwt")) {
|
String tokenHash = DigestUtil.sha256Hex(rawToken); // 建议替换为 SHA256 更安全
|
||||||
String jti = (String) JWTUtil.parseToken(token).getPayload(RegisteredPayload.JWT_ID);
|
|
||||||
if (StrUtil.isBlank(jti)) {
|
return RedisConstants.RESUBMIT_LOCK_PREFIX
|
||||||
log.warn("JWT Token 中未找到 jti");
|
+ tokenHash + ":"
|
||||||
return null;
|
+ request.getMethod() + "-"
|
||||||
}
|
+ request.getRequestURI();
|
||||||
}
|
|
||||||
// 否则会话方式为redis-token,直接使用token
|
|
||||||
token = token.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
|
||||||
return RedisConstants.RESUBMIT_LOCK_PREFIX + token + ":" + request.getMethod() + "-" + request.getRequestURI();
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -1,6 +1,7 @@
|
|||||||
package com.youlai.boot.core.filter;
|
package com.youlai.boot.core.filter;
|
||||||
|
|
||||||
import cn.hutool.core.convert.Convert;
|
import cn.hutool.core.convert.Convert;
|
||||||
|
import cn.hutool.core.util.StrUtil;
|
||||||
import com.youlai.boot.common.constant.RedisConstants;
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
import com.youlai.boot.common.constant.SystemConstants;
|
import com.youlai.boot.common.constant.SystemConstants;
|
||||||
import com.youlai.boot.common.result.ResultCode;
|
import com.youlai.boot.common.result.ResultCode;
|
||||||
@@ -48,7 +49,7 @@ public class RateLimiterFilter extends OncePerRequestFilter {
|
|||||||
*/
|
*/
|
||||||
public boolean rateLimit(String ip) {
|
public boolean rateLimit(String ip) {
|
||||||
// 限流 Redis 键
|
// 限流 Redis 键
|
||||||
String key = RedisConstants.IP_RATE_LIMITER_KEY + ip;
|
String key = StrUtil.format(RedisConstants.RateLimiter.IP, ip);
|
||||||
|
|
||||||
// 自增请求计数
|
// 自增请求计数
|
||||||
Long count = redisTemplate.opsForValue().increment(key);
|
Long count = redisTemplate.opsForValue().increment(key);
|
||||||
|
|||||||
@@ -61,13 +61,13 @@ public class SmsAuthenticationProvider implements AuthenticationProvider {
|
|||||||
}
|
}
|
||||||
|
|
||||||
// 校验发送短信验证码的手机号是否与当前登录用户一致
|
// 校验发送短信验证码的手机号是否与当前登录用户一致
|
||||||
String cachedVerifyCode = (String) redisTemplate.opsForValue().get(RedisConstants.SMS_LOGIN_CODE_PREFIX + mobile);
|
String cachedVerifyCode = (String) redisTemplate.opsForValue().get(RedisConstants.Captcha.SMS_LOGIN_CODE + mobile);
|
||||||
|
|
||||||
if (!StrUtil.equals(inputVerifyCode, cachedVerifyCode)) {
|
if (!StrUtil.equals(inputVerifyCode, cachedVerifyCode)) {
|
||||||
throw new CaptchaValidationException("验证码错误");
|
throw new CaptchaValidationException("验证码错误");
|
||||||
} else {
|
} else {
|
||||||
// 验证成功后删除验证码
|
// 验证成功后删除验证码
|
||||||
redisTemplate.delete(RedisConstants.SMS_LOGIN_CODE_PREFIX + mobile);
|
redisTemplate.delete(RedisConstants.Captcha.SMS_LOGIN_CODE + mobile);
|
||||||
}
|
}
|
||||||
|
|
||||||
// 构建认证后的用户详情信息
|
// 构建认证后的用户详情信息
|
||||||
|
|||||||
@@ -2,6 +2,7 @@ package com.youlai.boot.core.security.filter;
|
|||||||
|
|
||||||
import cn.hutool.captcha.generator.CodeGenerator;
|
import cn.hutool.captcha.generator.CodeGenerator;
|
||||||
import cn.hutool.core.util.StrUtil;
|
import cn.hutool.core.util.StrUtil;
|
||||||
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
import com.youlai.boot.common.constant.SecurityConstants;
|
import com.youlai.boot.common.constant.SecurityConstants;
|
||||||
import com.youlai.boot.common.result.ResultCode;
|
import com.youlai.boot.common.result.ResultCode;
|
||||||
import com.youlai.boot.common.util.ResponseUtils;
|
import com.youlai.boot.common.util.ResponseUtils;
|
||||||
@@ -53,7 +54,9 @@ public class CaptchaValidationFilter extends OncePerRequestFilter {
|
|||||||
}
|
}
|
||||||
// 缓存中的验证码
|
// 缓存中的验证码
|
||||||
String verifyCodeKey = request.getParameter(CAPTCHA_KEY_PARAM_NAME);
|
String verifyCodeKey = request.getParameter(CAPTCHA_KEY_PARAM_NAME);
|
||||||
String cacheVerifyCode = (String) redisTemplate.opsForValue().get(SecurityConstants.CAPTCHA_CODE_PREFIX + verifyCodeKey);
|
String cacheVerifyCode = (String) redisTemplate.opsForValue().get(
|
||||||
|
StrUtil.format(RedisConstants.Captcha.IMAGE_CODE, verifyCodeKey)
|
||||||
|
);
|
||||||
if (cacheVerifyCode == null) {
|
if (cacheVerifyCode == null) {
|
||||||
ResponseUtils.writeErrMsg(response, ResultCode.USER_VERIFICATION_CODE_EXPIRED);
|
ResponseUtils.writeErrMsg(response, ResultCode.USER_VERIFICATION_CODE_EXPIRED);
|
||||||
} else {
|
} else {
|
||||||
|
|||||||
@@ -32,9 +32,9 @@ public class TokenFilter extends OncePerRequestFilter {
|
|||||||
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
|
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
|
||||||
String token = request.getHeader(HttpHeaders.AUTHORIZATION);
|
String token = request.getHeader(HttpHeaders.AUTHORIZATION);
|
||||||
try {
|
try {
|
||||||
if (StrUtil.isNotBlank(token) && token.startsWith(SecurityConstants.JWT_TOKEN_PREFIX)) {
|
if (StrUtil.isNotBlank(token) && token.startsWith(SecurityConstants.BEARER_TOKEN_PREFIX )) {
|
||||||
// 去除 Bearer 前缀
|
// 去除 Bearer 前缀
|
||||||
token = token.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
token = token.substring(SecurityConstants.BEARER_TOKEN_PREFIX .length());
|
||||||
// 校验 JWT Token ,包括验签和是否过期
|
// 校验 JWT Token ,包括验签和是否过期
|
||||||
boolean isValidate = tokenManager.validateToken(token);
|
boolean isValidate = tokenManager.validateToken(token);
|
||||||
if (!isValidate) {
|
if (!isValidate) {
|
||||||
|
|||||||
@@ -8,6 +8,7 @@ import cn.hutool.jwt.JWT;
|
|||||||
import cn.hutool.jwt.JWTPayload;
|
import cn.hutool.jwt.JWTPayload;
|
||||||
import cn.hutool.jwt.JWTUtil;
|
import cn.hutool.jwt.JWTUtil;
|
||||||
import com.youlai.boot.common.constant.JwtClaimConstants;
|
import com.youlai.boot.common.constant.JwtClaimConstants;
|
||||||
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
import com.youlai.boot.common.constant.SecurityConstants;
|
import com.youlai.boot.common.constant.SecurityConstants;
|
||||||
import com.youlai.boot.common.exception.BusinessException;
|
import com.youlai.boot.common.exception.BusinessException;
|
||||||
import com.youlai.boot.common.result.ResultCode;
|
import com.youlai.boot.common.result.ResultCode;
|
||||||
@@ -116,7 +117,7 @@ public class JwtTokenManager implements TokenManager {
|
|||||||
String jti = payloads.getStr(JWTPayload.JWT_ID);
|
String jti = payloads.getStr(JWTPayload.JWT_ID);
|
||||||
|
|
||||||
// 判断是否在黑名单中,如果在,则返回false 标识Token无效
|
// 判断是否在黑名单中,如果在,则返回false 标识Token无效
|
||||||
if (Boolean.TRUE.equals(redisTemplate.hasKey(SecurityConstants.BLACKLIST_TOKEN_PREFIX + jti))) {
|
if (Boolean.TRUE.equals(redisTemplate.hasKey(RedisConstants.Auth.BLACKLIST_TOKEN + jti))) {
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -130,8 +131,8 @@ public class JwtTokenManager implements TokenManager {
|
|||||||
*/
|
*/
|
||||||
@Override
|
@Override
|
||||||
public void blacklistToken(String token) {
|
public void blacklistToken(String token) {
|
||||||
if (token.startsWith(SecurityConstants.JWT_TOKEN_PREFIX)) {
|
if (token.startsWith(SecurityConstants.BEARER_TOKEN_PREFIX )) {
|
||||||
token = token.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
token = token.substring(SecurityConstants.BEARER_TOKEN_PREFIX .length());
|
||||||
}
|
}
|
||||||
JWT jwt = JWTUtil.parseToken(token);
|
JWT jwt = JWTUtil.parseToken(token);
|
||||||
JSONObject payloads = jwt.getPayloads();
|
JSONObject payloads = jwt.getPayloads();
|
||||||
@@ -146,10 +147,10 @@ public class JwtTokenManager implements TokenManager {
|
|||||||
}
|
}
|
||||||
// 计算Token剩余时间,将其加入黑名单
|
// 计算Token剩余时间,将其加入黑名单
|
||||||
int expirationIn = expirationAt - currentTimeSeconds;
|
int expirationIn = expirationAt - currentTimeSeconds;
|
||||||
redisTemplate.opsForValue().set(SecurityConstants.BLACKLIST_TOKEN_PREFIX + jti, null, expirationIn, TimeUnit.SECONDS);
|
redisTemplate.opsForValue().set(RedisConstants.Auth.BLACKLIST_TOKEN + jti, null, expirationIn, TimeUnit.SECONDS);
|
||||||
} else {
|
} else {
|
||||||
// 永不过期的Token永久加入黑名单
|
// 永不过期的Token永久加入黑名单
|
||||||
redisTemplate.opsForValue().set(SecurityConstants.BLACKLIST_TOKEN_PREFIX + jti, null);
|
redisTemplate.opsForValue().set(RedisConstants.Auth.BLACKLIST_TOKEN + jti, null);
|
||||||
}
|
}
|
||||||
;
|
;
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -2,7 +2,7 @@ package com.youlai.boot.core.security.service;
|
|||||||
|
|
||||||
import cn.hutool.core.collection.CollectionUtil;
|
import cn.hutool.core.collection.CollectionUtil;
|
||||||
import cn.hutool.core.util.StrUtil;
|
import cn.hutool.core.util.StrUtil;
|
||||||
import com.youlai.boot.common.constant.SecurityConstants;
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
import com.youlai.boot.core.security.util.SecurityUtils;
|
import com.youlai.boot.core.security.util.SecurityUtils;
|
||||||
import lombok.RequiredArgsConstructor;
|
import lombok.RequiredArgsConstructor;
|
||||||
import lombok.extern.slf4j.Slf4j;
|
import lombok.extern.slf4j.Slf4j;
|
||||||
@@ -81,7 +81,7 @@ public class PermissionService {
|
|||||||
Set<String> perms = new HashSet<>();
|
Set<String> perms = new HashSet<>();
|
||||||
// 从缓存中一次性获取所有角色的权限
|
// 从缓存中一次性获取所有角色的权限
|
||||||
Collection<Object> roleCodesAsObjects = new ArrayList<>(roleCodes);
|
Collection<Object> roleCodesAsObjects = new ArrayList<>(roleCodes);
|
||||||
List<Object> rolePermsList = redisTemplate.opsForHash().multiGet(SecurityConstants.ROLE_PERMS_PREFIX, roleCodesAsObjects);
|
List<Object> rolePermsList = redisTemplate.opsForHash().multiGet(RedisConstants.System.ROLE_PERMS, roleCodesAsObjects);
|
||||||
|
|
||||||
for (Object rolePermsObj : rolePermsList) {
|
for (Object rolePermsObj : rolePermsList) {
|
||||||
if (rolePermsObj instanceof Set) {
|
if (rolePermsObj instanceof Set) {
|
||||||
|
|||||||
@@ -121,7 +121,7 @@ public class AuthServiceImpl implements AuthService {
|
|||||||
log.error("发送短信验证码失败", e);
|
log.error("发送短信验证码失败", e);
|
||||||
}
|
}
|
||||||
// 缓存验证码至Redis,用于登录校验
|
// 缓存验证码至Redis,用于登录校验
|
||||||
redisTemplate.opsForValue().set(RedisConstants.SMS_LOGIN_CODE_PREFIX + mobile, code, 5, TimeUnit.MINUTES);
|
redisTemplate.opsForValue().set(StrUtil.format(RedisConstants.Captcha.SMS_LOGIN_CODE, mobile), code, 5, TimeUnit.MINUTES);
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@@ -152,8 +152,8 @@ public class AuthServiceImpl implements AuthService {
|
|||||||
@Override
|
@Override
|
||||||
public void logout() {
|
public void logout() {
|
||||||
String token = SecurityUtils.getTokenFromRequest();
|
String token = SecurityUtils.getTokenFromRequest();
|
||||||
if (StrUtil.isNotBlank(token) && token.startsWith(SecurityConstants.JWT_TOKEN_PREFIX)) {
|
if (StrUtil.isNotBlank(token) && token.startsWith(SecurityConstants.BEARER_TOKEN_PREFIX )) {
|
||||||
token = token.substring(SecurityConstants.JWT_TOKEN_PREFIX.length());
|
token = token.substring(SecurityConstants.BEARER_TOKEN_PREFIX .length());
|
||||||
// 将JWT令牌加入黑名单
|
// 将JWT令牌加入黑名单
|
||||||
tokenManager.blacklistToken(token);
|
tokenManager.blacklistToken(token);
|
||||||
// 清除Security上下文
|
// 清除Security上下文
|
||||||
@@ -196,8 +196,12 @@ public class AuthServiceImpl implements AuthService {
|
|||||||
|
|
||||||
// 验证码文本缓存至Redis,用于登录校验
|
// 验证码文本缓存至Redis,用于登录校验
|
||||||
String captchaKey = IdUtil.fastSimpleUUID();
|
String captchaKey = IdUtil.fastSimpleUUID();
|
||||||
redisTemplate.opsForValue().set(SecurityConstants.CAPTCHA_CODE_PREFIX + captchaKey, captchaCode,
|
redisTemplate.opsForValue().set(
|
||||||
captchaProperties.getExpireSeconds(), TimeUnit.SECONDS);
|
StrUtil.format(RedisConstants.Captcha.IMAGE_CODE, captchaKey),
|
||||||
|
captchaCode,
|
||||||
|
captchaProperties.getExpireSeconds(),
|
||||||
|
TimeUnit.SECONDS
|
||||||
|
);
|
||||||
|
|
||||||
return CaptchaInfo.builder()
|
return CaptchaInfo.builder()
|
||||||
.captchaKey(captchaKey)
|
.captchaKey(captchaKey)
|
||||||
|
|||||||
@@ -140,11 +140,11 @@ public class ConfigServiceImpl extends ServiceImpl<ConfigMapper, Config> impleme
|
|||||||
*/
|
*/
|
||||||
@Override
|
@Override
|
||||||
public boolean refreshCache() {
|
public boolean refreshCache() {
|
||||||
redisTemplate.delete(RedisConstants.SYSTEM_CONFIG_KEY);
|
redisTemplate.delete(RedisConstants.System.CONFIG);
|
||||||
List<Config> list = this.list();
|
List<Config> list = this.list();
|
||||||
if (list != null) {
|
if (list != null) {
|
||||||
Map<String, String> map = list.stream().collect(Collectors.toMap(Config::getConfigKey, Config::getConfigValue));
|
Map<String, String> map = list.stream().collect(Collectors.toMap(Config::getConfigKey, Config::getConfigValue));
|
||||||
redisTemplate.opsForHash().putAll(RedisConstants.SYSTEM_CONFIG_KEY, map);
|
redisTemplate.opsForHash().putAll(RedisConstants.System.CONFIG, map);
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
return false;
|
return false;
|
||||||
@@ -159,7 +159,7 @@ public class ConfigServiceImpl extends ServiceImpl<ConfigMapper, Config> impleme
|
|||||||
@Override
|
@Override
|
||||||
public Object getSystemConfig(String key) {
|
public Object getSystemConfig(String key) {
|
||||||
if (StringUtils.isNotBlank(key)) {
|
if (StringUtils.isNotBlank(key)) {
|
||||||
return redisTemplate.opsForHash().get(RedisConstants.SYSTEM_CONFIG_KEY, key);
|
return redisTemplate.opsForHash().get(RedisConstants.System.CONFIG, key);
|
||||||
}
|
}
|
||||||
return null;
|
return null;
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -2,6 +2,7 @@ package com.youlai.boot.system.service.impl;
|
|||||||
|
|
||||||
import cn.hutool.core.collection.CollectionUtil;
|
import cn.hutool.core.collection.CollectionUtil;
|
||||||
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
|
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
|
||||||
|
import com.youlai.boot.common.constant.RedisConstants;
|
||||||
import com.youlai.boot.system.mapper.RoleMenuMapper;
|
import com.youlai.boot.system.mapper.RoleMenuMapper;
|
||||||
import com.youlai.boot.system.model.bo.RolePermsBO;
|
import com.youlai.boot.system.model.bo.RolePermsBO;
|
||||||
import com.youlai.boot.system.model.entity.RoleMenu;
|
import com.youlai.boot.system.model.entity.RoleMenu;
|
||||||
@@ -45,7 +46,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
@Override
|
@Override
|
||||||
public void refreshRolePermsCache() {
|
public void refreshRolePermsCache() {
|
||||||
// 清理权限缓存
|
// 清理权限缓存
|
||||||
redisTemplate.opsForHash().delete(SecurityConstants.ROLE_PERMS_PREFIX, "*");
|
redisTemplate.opsForHash().delete(RedisConstants.System.ROLE_PERMS, "*");
|
||||||
|
|
||||||
List<RolePermsBO> list = this.baseMapper.getRolePermsList(null);
|
List<RolePermsBO> list = this.baseMapper.getRolePermsList(null);
|
||||||
if (CollectionUtil.isNotEmpty(list)) {
|
if (CollectionUtil.isNotEmpty(list)) {
|
||||||
@@ -53,7 +54,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
String roleCode = item.getRoleCode();
|
String roleCode = item.getRoleCode();
|
||||||
Set<String> perms = item.getPerms();
|
Set<String> perms = item.getPerms();
|
||||||
if (CollectionUtil.isNotEmpty(perms)) {
|
if (CollectionUtil.isNotEmpty(perms)) {
|
||||||
redisTemplate.opsForHash().put(SecurityConstants.ROLE_PERMS_PREFIX, roleCode, perms);
|
redisTemplate.opsForHash().put(RedisConstants.System.ROLE_PERMS, roleCode, perms);
|
||||||
}
|
}
|
||||||
});
|
});
|
||||||
}
|
}
|
||||||
@@ -65,7 +66,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
@Override
|
@Override
|
||||||
public void refreshRolePermsCache(String roleCode) {
|
public void refreshRolePermsCache(String roleCode) {
|
||||||
// 清理权限缓存
|
// 清理权限缓存
|
||||||
redisTemplate.opsForHash().delete(SecurityConstants.ROLE_PERMS_PREFIX, roleCode);
|
redisTemplate.opsForHash().delete(RedisConstants.System.ROLE_PERMS, roleCode);
|
||||||
|
|
||||||
List<RolePermsBO> list = this.baseMapper.getRolePermsList(roleCode);
|
List<RolePermsBO> list = this.baseMapper.getRolePermsList(roleCode);
|
||||||
if (CollectionUtil.isNotEmpty(list)) {
|
if (CollectionUtil.isNotEmpty(list)) {
|
||||||
@@ -76,7 +77,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
|
|
||||||
Set<String> perms = rolePerms.getPerms();
|
Set<String> perms = rolePerms.getPerms();
|
||||||
if (CollectionUtil.isNotEmpty(perms)) {
|
if (CollectionUtil.isNotEmpty(perms)) {
|
||||||
redisTemplate.opsForHash().put(SecurityConstants.ROLE_PERMS_PREFIX, roleCode, perms);
|
redisTemplate.opsForHash().put(RedisConstants.System.ROLE_PERMS, roleCode, perms);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -87,7 +88,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
@Override
|
@Override
|
||||||
public void refreshRolePermsCache(String oldRoleCode, String newRoleCode) {
|
public void refreshRolePermsCache(String oldRoleCode, String newRoleCode) {
|
||||||
// 清理旧角色权限缓存
|
// 清理旧角色权限缓存
|
||||||
redisTemplate.opsForHash().delete(SecurityConstants.ROLE_PERMS_PREFIX, oldRoleCode);
|
redisTemplate.opsForHash().delete(RedisConstants.System.ROLE_PERMS, oldRoleCode);
|
||||||
|
|
||||||
// 添加新角色权限缓存
|
// 添加新角色权限缓存
|
||||||
List<RolePermsBO> list = this.baseMapper.getRolePermsList(newRoleCode);
|
List<RolePermsBO> list = this.baseMapper.getRolePermsList(newRoleCode);
|
||||||
@@ -98,7 +99,7 @@ public class RoleMenuServiceImpl extends ServiceImpl<RoleMenuMapper, RoleMenu> i
|
|||||||
}
|
}
|
||||||
|
|
||||||
Set<String> perms = rolePerms.getPerms();
|
Set<String> perms = rolePerms.getPerms();
|
||||||
redisTemplate.opsForHash().put(SecurityConstants.ROLE_PERMS_PREFIX, newRoleCode, perms);
|
redisTemplate.opsForHash().put(RedisConstants.System.ROLE_PERMS, newRoleCode, perms);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@@ -422,7 +422,7 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
|
|||||||
boolean result = smsService.sendSms(mobile, SmsTypeEnum.CHANGE_MOBILE, templateParams);
|
boolean result = smsService.sendSms(mobile, SmsTypeEnum.CHANGE_MOBILE, templateParams);
|
||||||
if (result) {
|
if (result) {
|
||||||
// 缓存验证码,5分钟有效,用于更换手机号校验
|
// 缓存验证码,5分钟有效,用于更换手机号校验
|
||||||
String redisCacheKey = RedisConstants.SMS_CHANGE_CODE_PREFIX + mobile;
|
String redisCacheKey =StrUtil.format(RedisConstants.Captcha.MOBILE_CODE, mobile);
|
||||||
redisTemplate.opsForValue().set(redisCacheKey, code, 5, TimeUnit.MINUTES);
|
redisTemplate.opsForValue().set(redisCacheKey, code, 5, TimeUnit.MINUTES);
|
||||||
}
|
}
|
||||||
return result;
|
return result;
|
||||||
@@ -448,7 +448,7 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
|
|||||||
String inputVerifyCode = form.getCode();
|
String inputVerifyCode = form.getCode();
|
||||||
String mobile = form.getMobile();
|
String mobile = form.getMobile();
|
||||||
|
|
||||||
String redisCacheKey = RedisConstants.SMS_CHANGE_CODE_PREFIX + mobile;
|
String redisCacheKey = RedisConstants.Captcha.MOBILE_CODE + mobile;
|
||||||
String cachedVerifyCode = redisTemplate.opsForValue().get(redisCacheKey);
|
String cachedVerifyCode = redisTemplate.opsForValue().get(redisCacheKey);
|
||||||
|
|
||||||
if (StrUtil.isBlank(cachedVerifyCode)) {
|
if (StrUtil.isBlank(cachedVerifyCode)) {
|
||||||
@@ -482,7 +482,7 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
|
|||||||
|
|
||||||
mailService.sendMail(email, "邮箱验证码", "您的验证码为:" + code + ",请在5分钟内使用");
|
mailService.sendMail(email, "邮箱验证码", "您的验证码为:" + code + ",请在5分钟内使用");
|
||||||
// 缓存验证码,5分钟有效,用于更换邮箱校验
|
// 缓存验证码,5分钟有效,用于更换邮箱校验
|
||||||
String redisCacheKey = RedisConstants.EMAIL_CHANGE_CODE_PREFIX + email;
|
String redisCacheKey = StrUtil.format(RedisConstants.Captcha.EMAIL_CODE, email);
|
||||||
redisTemplate.opsForValue().set(redisCacheKey, code, 5, TimeUnit.MINUTES);
|
redisTemplate.opsForValue().set(redisCacheKey, code, 5, TimeUnit.MINUTES);
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -507,7 +507,7 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
|
|||||||
|
|
||||||
// 获取缓存的验证码
|
// 获取缓存的验证码
|
||||||
String email = form.getEmail();
|
String email = form.getEmail();
|
||||||
String redisCacheKey = RedisConstants.EMAIL_CHANGE_CODE_PREFIX + email;
|
String redisCacheKey = RedisConstants.Captcha.EMAIL_CODE + email;
|
||||||
String cachedVerifyCode = redisTemplate.opsForValue().get(redisCacheKey);
|
String cachedVerifyCode = redisTemplate.opsForValue().get(redisCacheKey);
|
||||||
|
|
||||||
if (StrUtil.isBlank(cachedVerifyCode)) {
|
if (StrUtil.isBlank(cachedVerifyCode)) {
|
||||||
|
|||||||
Reference in New Issue
Block a user