refactor(platform):重构平台模块包结构- 将 shared 包下的文件移动到 platform 包下

- 更新相关类的包引用路径 - 修改 application.yml 中的包扫描路径 -重命名 CaptchaInfo 类为 CaptchaVO 并调整包路径 - 移动 BusinessException 和相关安全类到 core 包- 更新 Codegen 相关类包路径 - 删除无用的条件判断代码块
2025-10-14 16:09:46 +08:00
parent f460d8a7c0
commit c43e6dfb54
122 changed files with 346 additions and 475 deletions
--- a/src/main/java/com/youlai/boot/security/handler/MyAccessDeniedHandler.java
+++ b/src/main/java/com/youlai/boot/security/handler/MyAccessDeniedHandler.java
@@ -0,0 +1,26 @@
+package com.youlai.boot.security.handler;
+
+import com.youlai.boot.core.web.ResultCode;
+import com.youlai.boot.core.web.WebResponseHelper;
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.security.web.access.AccessDeniedHandler;
+import org.springframework.stereotype.Component;
+
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+/**
+ * 无权限访问处理器
+ *
+ * @author Ray.Hao
+ * @since 2.0.0
+ */
+public class MyAccessDeniedHandler implements AccessDeniedHandler {
+
+    @Override
+    public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) {
+        WebResponseHelper.writeError(response, ResultCode.ACCESS_UNAUTHORIZED);
+    }
+
+}
--- a/src/main/java/com/youlai/boot/security/handler/MyAuthenticationEntryPoint.java
+++ b/src/main/java/com/youlai/boot/security/handler/MyAuthenticationEntryPoint.java
@@ -0,0 +1,48 @@
+package com.youlai.boot.security.handler;
+
+import com.youlai.boot.core.web.ResultCode;
+import com.youlai.boot.core.web.WebResponseHelper;
+import org.springframework.security.authentication.BadCredentialsException;
+import org.springframework.security.authentication.InsufficientAuthenticationException;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.AuthenticationEntryPoint;
+
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+
+import java.io.IOException;
+
+/**
+ * 统一处理 Spring Security 认证失败响应
+ *
+ * @author Ray.Hao
+ * @since 2.0.0
+ */
+public class MyAuthenticationEntryPoint implements AuthenticationEntryPoint {
+
+    /**
+     * 认证失败处理入口方法
+     *
+     * @param request 触发异常的请求对象（可用于获取请求头、参数等）
+     * @param response 响应对象（用于写入错误信息）
+     * @param authException 认证异常对象（包含具体失败原因）
+     */
+    @Override
+    public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
+        if (authException instanceof BadCredentialsException) {
+            // 用户名或密码错误
+            WebResponseHelper.writeError(response, ResultCode.USER_PASSWORD_ERROR);
+        } else if(authException instanceof InsufficientAuthenticationException){
+            // 请求头缺失Authorization、Token格式错误、Token过期、签名验证失败
+            WebResponseHelper.writeError(response, ResultCode.ACCESS_TOKEN_INVALID);
+        } else {
+            // 其他未明确处理的认证异常（如账户被锁定、账户禁用等）
+            WebResponseHelper.writeError(response, ResultCode.USER_LOGIN_EXCEPTION, authException.getMessage());
+        }
+    }
+}
+
+
+
+