P2022036_Service.git

13693261870

2023-03-02 4f7ffd1dee67a50149b604d33410e11611117cd8

已修改5个文件

	src/main/java/com/lf/server/controller/all/FloatServerController.java	21 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/java/com/lf/server/controller/show/ComprehensiveController.java	6 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/java/com/lf/server/helper/WebHelper.java	38 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/java/com/lf/server/interceptor/AuthInterceptor.java	14 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/java/com/lf/server/service/all/UploadAttachService.java	18 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 src/main/java/com/lf/server/controller/all/FloatServerController.java

@@ -19,6 +19,7 @@

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.util.Arrays;

/**
 * FloatServer
@@ -108,29 +109,23 @@
            String rs = helper.b(data);
            System.out.println("Lic: " + rs);
        } catch (Exception ex) {
            System.out.println(ex.getStackTrace());
            System.out.println(Arrays.toString(ex.getStackTrace()));
        }
    }

    @GetMapping({"/licenseEncryption/getLicenseSecret"})
    @PostMapping({"/licenseEncryption/getLicenseSecret"})
    public void getLicenseSecret(HttpServletResponse res) {
        try {
            String json = JSON.toJSONString(new SdkSecretEntity());
            WebHelper.write2Page(res, json);
        } catch (Exception ex) {
            // http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseSecret
        }
        // http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseSecret
        String json = JSON.toJSONString(new SdkSecretEntity());
        WebHelper.writeStr2Page(res, json);
    }

    @GetMapping({"/licenseEncryption/getLicenseDecrypt"})
    @PostMapping({"/licenseEncryption/getLicenseDecrypt"})
    public void getLicenseDecrypt(HttpServletResponse res) {
        try {
            String json = JSON.toJSONString(new SdkDecryptEntity());
            WebHelper.write2Page(res, json);
        } catch (Exception ex) {
            // http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseDecrypt
        }
        // http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseDecrypt
        String json = JSON.toJSONString(new SdkDecryptEntity());
        WebHelper.writeStr2Page(res, json);
    }
}

 src/main/java/com/lf/server/controller/show/ComprehensiveController.java

@@ -158,12 +158,12 @@
        try {
            UserEntity ue = tokenService.getCurrentUser(req);
            if (ue == null) {
                WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, "用户未登录"));
                WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, "用户未登录"));
            }

            DownloadEntity de = downloadService.selectByGuid(guid);
            if (de == null) {
                WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.NOT_FOUND, "文件不存在"));
                WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.NOT_FOUND, "文件不存在"));
            }

            downlogService.updateInfos(ue, de, req);
@@ -172,7 +172,7 @@
            WebHelper.download(filePath, de.getName(), res);
        } catch (Exception ex) {
            try {
                WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, ex.getMessage()));
                WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, ex.getMessage()));
            } catch (Exception e) {
                log.error(e.getMessage(), e);
            }

 src/main/java/com/lf/server/helper/WebHelper.java

@@ -254,21 +254,33 @@
    }

    /**
     * 输出json数据到前端
     * 输出str至前端
     */
    public static boolean write2Page(HttpServletResponse response, String jsonPack) throws IOException {
        response.setContentType("application/json;charset=UTF-8");
        response.setHeader("Cache-Control", "no-cache");
        response.setHeader("Pragma", "No-cache");
        response.setDateHeader("Expires", 0);
    public static boolean writeStr2Page(HttpServletResponse res, String str) {
        try {
            res.setContentType("application/json;charset=UTF-8");
            res.setHeader("Cache-Control", "no-cache");
            res.setHeader("Pragma", "No-cache");
            res.setDateHeader("Expires", 0);

        PrintWriter out = response.getWriter();
        out.print(jsonPack);
            PrintWriter out = res.getWriter();
            out.print(str);

        out.flush();
        out.close();
            out.flush();
            out.close();
        } catch (Exception ex) {
            log.error(ex.getMessage(), ex);
        }

        return false;
    }

    /**
     * 输出json至前端
     */
    public static void writeJson2Page(HttpServletResponse res, String str) {
        String json = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, str));
        writeStr2Page(res, json);
    }

    /**
@@ -282,11 +294,7 @@
     * 写响应信息
     */
    public static void writeInfo(HttpStatus status, String info, HttpServletResponse res) {
        try {
            WebHelper.write2Page(res, WebHelper.getErrJson(status, info));
        } catch (Exception e) {
            //
        }
        WebHelper.writeStr2Page(res, WebHelper.getErrJson(status, info));
    }

    /**

 src/main/java/com/lf/server/interceptor/AuthInterceptor.java

@@ -60,24 +60,24 @@
            // 2.获取令牌
            String token = WebHelper.getToken(request);
            if (StringHelper.isNull(token)) {
                return WebHelper.write2Page(response, NO_TOKEN);
                return WebHelper.writeStr2Page(response, NO_TOKEN);
            }

            // 3.获取用户令牌
            UserEntity ue = sysService.tokenService.getCurrentUser(request);
            if (ue == null) {
                return WebHelper.write2Page(response, NO_LOGIN);
                return WebHelper.writeStr2Page(response, NO_LOGIN);
            }

            // 4.获取IP
            String ip = WebHelper.getIpAddress(request);
            if (StringHelper.isEmpty(ip)) {
                return WebHelper.write2Page(response, IP_NULL);
                return WebHelper.writeStr2Page(response, IP_NULL);
            }

            // 5.检查黑名单
            if (!checkBlackList(ip, request)) {
                return WebHelper.write2Page(response, BLACK_LIST);
                return WebHelper.writeStr2Page(response, BLACK_LIST);
            }

            // 6.admin跳过权限检测
@@ -89,19 +89,19 @@
            if (!checkWhiteList(ip, request)) {
                // 检查IP一致性
                if (!checkIpSource(ip, token)) {
                    return WebHelper.write2Page(response, ILLEGAL_TOKEN);
                    return WebHelper.writeStr2Page(response, ILLEGAL_TOKEN);
                }
            }

            // 8.检查用户ID是否禁用
            if (sysService.tokenService.isUidDisable(ue)) {
                return WebHelper.write2Page(response, USER_LOCK);
                return WebHelper.writeStr2Page(response, USER_LOCK);
            }

            // 9.权限校验
            if (!checkPerms(ue, request)) {
                System.out.println("无权限访问：" + request.getRequestURI().toLowerCase());
                return WebHelper.write2Page(response, NO_AUTH);
                return WebHelper.writeStr2Page(response, NO_AUTH);
            }

            return true;

 src/main/java/com/lf/server/service/all/UploadAttachService.java

@@ -148,22 +148,28 @@
    public void download(String guid, boolean inline, HttpServletResponse res) {
        try {
            if (StringHelper.isEmpty(guid)) {
                WebHelper.write2Page(res, NO_FILE);
                WebHelper.writeStr2Page(res, NO_FILE);
                return;
            }

            AttachEntity entity = attachService.selectByGuid(guid);
            if (entity == null) {
                WebHelper.write2Page(res, NO_FILE);
                WebHelper.writeStr2Page(res, NO_FILE);
                return;
            }

            String file = pathHelper.getConfig().getUploadPath() + File.separator + entity.getPath();
            WebHelper.download(file, entity.getName(), inline, res);
            String filePath = pathHelper.getConfig().getUploadPath() + File.separator + entity.getPath();
            File file = new File(filePath);
            if (!file.exists() || file.isDirectory()) {
                String msg = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, "文件不存在"));
                WebHelper.writeStr2Page(res, msg);
            }

            WebHelper.download(filePath, entity.getName(), inline, res);
        } catch (Exception ex) {
            try {
                String msg = JSON.toJSONString(new ResponseMsg<String>(HttpStatus.ERROR, "文件下载出错"));
                WebHelper.write2Page(res, msg);
                String msg = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, "文件下载出错"));
                WebHelper.writeStr2Page(res, msg);
            } catch (Exception e) {
                log.error(e.getMessage(), e);
            }

			@@ -19,6 +19,7 @@

			import javax.servlet.http.HttpServletRequest;
			import javax.servlet.http.HttpServletResponse;
			import java.util.Arrays;

			/**
			* FloatServer
			@@ -108,29 +109,23 @@
			String rs = helper.b(data);
			System.out.println("Lic: " + rs);
			} catch (Exception ex) {
			System.out.println(ex.getStackTrace());
			System.out.println(Arrays.toString(ex.getStackTrace()));
			}
			}

			@GetMapping({"/licenseEncryption/getLicenseSecret"})
			@PostMapping({"/licenseEncryption/getLicenseSecret"})
			public void getLicenseSecret(HttpServletResponse res) {
			try {
			String json = JSON.toJSONString(new SdkSecretEntity());
			WebHelper.write2Page(res, json);
			} catch (Exception ex) {
			// http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseSecret
			}
			// http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseSecret
			String json = JSON.toJSONString(new SdkSecretEntity());
			WebHelper.writeStr2Page(res, json);
			}

			@GetMapping({"/licenseEncryption/getLicenseDecrypt"})
			@PostMapping({"/licenseEncryption/getLicenseDecrypt"})
			public void getLicenseDecrypt(HttpServletResponse res) {
			try {
			String json = JSON.toJSONString(new SdkDecryptEntity());
			WebHelper.write2Page(res, json);
			} catch (Exception ex) {
			// http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseDecrypt
			}
			// http://127.0.0.1:12316/server/floatserver/licenseEncryption/getLicenseDecrypt
			String json = JSON.toJSONString(new SdkDecryptEntity());
			WebHelper.writeStr2Page(res, json);
			}
			}

			@@ -158,12 +158,12 @@
			try {
			UserEntity ue = tokenService.getCurrentUser(req);
			if (ue == null) {
			WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, "用户未登录"));
			WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, "用户未登录"));
			}

			DownloadEntity de = downloadService.selectByGuid(guid);
			if (de == null) {
			WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.NOT_FOUND, "文件不存在"));
			WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.NOT_FOUND, "文件不存在"));
			}

			downlogService.updateInfos(ue, de, req);
			@@ -172,7 +172,7 @@
			WebHelper.download(filePath, de.getName(), res);
			} catch (Exception ex) {
			try {
			WebHelper.write2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, ex.getMessage()));
			WebHelper.writeStr2Page(res, WebHelper.getErrJson(HttpStatus.UNAUTHORIZED, ex.getMessage()));
			} catch (Exception e) {
			log.error(e.getMessage(), e);
			}

			@@ -254,21 +254,33 @@
			}

			/**
			* 输出json数据到前端
			* 输出str至前端
			*/
			public static boolean write2Page(HttpServletResponse response, String jsonPack) throws IOException {
			response.setContentType("application/json;charset=UTF-8");
			response.setHeader("Cache-Control", "no-cache");
			response.setHeader("Pragma", "No-cache");
			response.setDateHeader("Expires", 0);
			public static boolean writeStr2Page(HttpServletResponse res, String str) {
			try {
			res.setContentType("application/json;charset=UTF-8");
			res.setHeader("Cache-Control", "no-cache");
			res.setHeader("Pragma", "No-cache");
			res.setDateHeader("Expires", 0);

			PrintWriter out = response.getWriter();
			out.print(jsonPack);
			PrintWriter out = res.getWriter();
			out.print(str);

			out.flush();
			out.close();
			out.flush();
			out.close();
			} catch (Exception ex) {
			log.error(ex.getMessage(), ex);
			}

			return false;
			}

			/**
			* 输出json至前端
			*/
			public static void writeJson2Page(HttpServletResponse res, String str) {
			String json = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, str));
			writeStr2Page(res, json);
			}

			/**
			@@ -282,11 +294,7 @@
			* 写响应信息
			*/
			public static void writeInfo(HttpStatus status, String info, HttpServletResponse res) {
			try {
			WebHelper.write2Page(res, WebHelper.getErrJson(status, info));
			} catch (Exception e) {
			//
			}
			WebHelper.writeStr2Page(res, WebHelper.getErrJson(status, info));
			}

			/**

			@@ -60,24 +60,24 @@
			// 2.获取令牌
			String token = WebHelper.getToken(request);
			if (StringHelper.isNull(token)) {
			return WebHelper.write2Page(response, NO_TOKEN);
			return WebHelper.writeStr2Page(response, NO_TOKEN);
			}

			// 3.获取用户令牌
			UserEntity ue = sysService.tokenService.getCurrentUser(request);
			if (ue == null) {
			return WebHelper.write2Page(response, NO_LOGIN);
			return WebHelper.writeStr2Page(response, NO_LOGIN);
			}

			// 4.获取IP
			String ip = WebHelper.getIpAddress(request);
			if (StringHelper.isEmpty(ip)) {
			return WebHelper.write2Page(response, IP_NULL);
			return WebHelper.writeStr2Page(response, IP_NULL);
			}

			// 5.检查黑名单
			if (!checkBlackList(ip, request)) {
			return WebHelper.write2Page(response, BLACK_LIST);
			return WebHelper.writeStr2Page(response, BLACK_LIST);
			}

			// 6.admin跳过权限检测
			@@ -89,19 +89,19 @@
			if (!checkWhiteList(ip, request)) {
			// 检查IP一致性
			if (!checkIpSource(ip, token)) {
			return WebHelper.write2Page(response, ILLEGAL_TOKEN);
			return WebHelper.writeStr2Page(response, ILLEGAL_TOKEN);
			}
			}

			// 8.检查用户ID是否禁用
			if (sysService.tokenService.isUidDisable(ue)) {
			return WebHelper.write2Page(response, USER_LOCK);
			return WebHelper.writeStr2Page(response, USER_LOCK);
			}

			// 9.权限校验
			if (!checkPerms(ue, request)) {
			System.out.println("无权限访问：" + request.getRequestURI().toLowerCase());
			return WebHelper.write2Page(response, NO_AUTH);
			return WebHelper.writeStr2Page(response, NO_AUTH);
			}

			return true;

			@@ -148,22 +148,28 @@
			public void download(String guid, boolean inline, HttpServletResponse res) {
			try {
			if (StringHelper.isEmpty(guid)) {
			WebHelper.write2Page(res, NO_FILE);
			WebHelper.writeStr2Page(res, NO_FILE);
			return;
			}

			AttachEntity entity = attachService.selectByGuid(guid);
			if (entity == null) {
			WebHelper.write2Page(res, NO_FILE);
			WebHelper.writeStr2Page(res, NO_FILE);
			return;
			}

			String file = pathHelper.getConfig().getUploadPath() + File.separator + entity.getPath();
			WebHelper.download(file, entity.getName(), inline, res);
			String filePath = pathHelper.getConfig().getUploadPath() + File.separator + entity.getPath();
			File file = new File(filePath);
			if (!file.exists() \|\| file.isDirectory()) {
			String msg = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, "文件不存在"));
			WebHelper.writeStr2Page(res, msg);
			}

			WebHelper.download(filePath, entity.getName(), inline, res);
			} catch (Exception ex) {
			try {
			String msg = JSON.toJSONString(new ResponseMsg<String>(HttpStatus.ERROR, "文件下载出错"));
			WebHelper.write2Page(res, msg);
			String msg = JSON.toJSONString(new ResponseMsg<>(HttpStatus.ERROR, "文件下载出错"));
			WebHelper.writeStr2Page(res, msg);
			} catch (Exception e) {
			log.error(e.getMessage(), e);
			}