se-cloud.git - Gitblit

13693261870

2024-08-30 3692386628cfdcbf497a5d8bbbc087a3ff75176a

重置密码

已修改6个文件

	se-auth/se-auth.iml	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	se-auth/src/main/java/com/se/auth/controller/TokenController.java	22 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	se-common/se-common-core/src/main/java/com/se/common/core/utils/AesUtils.java	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	se-modules/se-system/src/main/java/com/se/system/controller/SysProfileController.java	64 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	se-modules/se-system/src/main/java/com/se/system/controller/SysUserController.java	129 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	se-modules/se-system/src/main/resources/bootstrap.yml	1 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 se-auth/se-auth.iml

@@ -163,7 +163,7 @@
    <orderEntry type="library" name="Maven: io.lettuce:lettuce-core:6.1.10.RELEASE" level="project" />
    <orderEntry type="library" name="Maven: io.projectreactor:reactor-core:3.4.34" level="project" />
    <orderEntry type="library" name="Maven: org.reactivestreams:reactive-streams:1.0.4" level="project" />
    <orderEntry type="library" name="Maven: org.projectlombok:lombok:1.18.30" level="project" />
    <orderEntry type="library" name="Maven: org.projectlombok:lombok:1.18.22" level="project" />
    <orderEntry type="library" name="Maven: org.springframework.cloud:spring-cloud-starter-bootstrap:3.1.7" level="project" />
    <orderEntry type="library" name="Maven: org.springframework.cloud:spring-cloud-starter:3.1.7" level="project" />
    <orderEntry type="library" name="Maven: org.springframework.security:spring-security-rsa:1.0.11.RELEASE" level="project" />

 se-auth/src/main/java/com/se/auth/controller/TokenController.java

@@ -21,8 +21,7 @@
 * @author admin
 */
@RestController
public class TokenController
{
public class TokenController {
    @Autowired
    private TokenService tokenService;

@@ -30,8 +29,7 @@
    private SysLoginService sysLoginService;

    @PostMapping("login")
    public R<?> login(@RequestBody LoginBody form)
    {
    public R<?> login(@RequestBody LoginBody form) {
        // 用户登录
        LoginUser userInfo = sysLoginService.login(form.getUsername(), form.getPassword());
        // 获取登录token
@@ -56,11 +54,9 @@
    }

    @DeleteMapping("logout")
    public R<?> logout(HttpServletRequest request)
    {
    public R<?> logout(HttpServletRequest request) {
        String token = SecurityUtils.getToken(request);
        if (StringUtils.isNotEmpty(token))
        {
        if (StringUtils.isNotEmpty(token)) {
            String username = JwtUtils.getUserName(token);
            // 删除用户缓存记录
            AuthUtil.logoutByToken(token);
@@ -71,11 +67,9 @@
    }

    @PostMapping("refresh")
    public R<?> refresh(HttpServletRequest request)
    {
    public R<?> refresh(HttpServletRequest request) {
        LoginUser loginUser = tokenService.getLoginUser(request);
        if (StringUtils.isNotNull(loginUser))
        {
        if (StringUtils.isNotNull(loginUser)) {
            // 刷新令牌有效期
            tokenService.refreshToken(loginUser);
            return R.ok();
@@ -83,11 +77,11 @@
        return R.ok();
    }

    @PostMapping("register")
    /*@PostMapping("register")
    public R<?> register(@RequestBody RegisterBody registerBody)
    {
        // 用户注册
        sysLoginService.register(registerBody.getUsername(), registerBody.getPassword());
        return R.ok();
    }
    }*/
}

 se-common/se-common-core/src/main/java/com/se/common/core/utils/AesUtils.java

@@ -15,7 +15,7 @@
    /**
     * 密钥长度必须是16
     */
    private static final String DEFAULT_KEY = "A#s_zZ_sErve_k.y";
    private static final String DEFAULT_KEY = "A#s_zZ3seRve_k.y";

    private static final String KEY_ALGORITHM = "AES";


 se-modules/se-system/src/main/java/com/se/system/controller/SysProfileController.java

@@ -1,7 +1,10 @@
package com.se.system.controller;

import java.util.Arrays;

import com.se.common.core.utils.AesUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.PutMapping;
@@ -33,25 +36,30 @@
 */
@RestController
@RequestMapping("/user/profile")
public class SysProfileController extends BaseController
{
public class SysProfileController extends BaseController {
    @Autowired
    private ISysUserService userService;
    

    @Autowired
    private TokenService tokenService;
    

    @Autowired
    private RemoteFileService remoteFileService;

    @Value("${enableEncrypt}")
    boolean enableEncrypt;

    /**
     * 个人信息
     */
    @GetMapping
    public AjaxResult profile()
    {
    public AjaxResult profile() {
        String username = SecurityUtils.getUsername();
        SysUser user = userService.selectUserByUserName(username);
        if (null != user) {
            // 设置密码为空
            user.setPassword(null);
        }
        AjaxResult ajax = AjaxResult.success(user);
        ajax.put("roleGroup", userService.selectUserRoleGroup(username));
        ajax.put("postGroup", userService.selectUserPostGroup(username));
@@ -63,24 +71,20 @@
     */
    @Log(title = "个人信息", businessType = BusinessType.UPDATE)
    @PutMapping
    public AjaxResult updateProfile(@RequestBody SysUser user)
    {
    public AjaxResult updateProfile(@RequestBody SysUser user) {
        LoginUser loginUser = SecurityUtils.getLoginUser();
        SysUser currentUser = loginUser.getSysUser();
        currentUser.setNickName(user.getNickName());
        currentUser.setEmail(user.getEmail());
        currentUser.setPhonenumber(user.getPhonenumber());
        currentUser.setSex(user.getSex());
        if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(currentUser))
        {
        if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(currentUser)) {
            return error("修改用户'" + loginUser.getUsername() + "'失败，手机号码已存在");
        }
        if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(currentUser))
        {
        if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(currentUser)) {
            return error("修改用户'" + loginUser.getUsername() + "'失败，邮箱账号已存在");
        }
        if (userService.updateUserProfile(currentUser))
        {
        if (userService.updateUserProfile(currentUser)) {
            // 更新缓存用户信息
            tokenService.setLoginUser(loginUser);
            return success();
@@ -93,22 +97,21 @@
     */
    @Log(title = "个人信息", businessType = BusinessType.UPDATE)
    @PutMapping("/updatePwd")
    public AjaxResult updatePwd(String oldPassword, String newPassword)
    {
    public AjaxResult updatePwd(String oldPassword, String newPassword) throws Exception {
        String username = SecurityUtils.getUsername();
        SysUser user = userService.selectUserByUserName(username);
        if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
            user.setPassword(AesUtils.decrypt(user.getPassword()));
        }
        String password = user.getPassword();
        if (!SecurityUtils.matchesPassword(oldPassword, password))
        {
        if (!SecurityUtils.matchesPassword(oldPassword, password)) {
            return error("修改密码失败，旧密码错误");
        }
        if (SecurityUtils.matchesPassword(newPassword, password))
        {
        if (SecurityUtils.matchesPassword(newPassword, password)) {
            return error("新密码不能与旧密码相同");
        }
        newPassword = SecurityUtils.encryptPassword(newPassword);
        if (userService.resetUserPwd(username, newPassword) > 0)
        {
        if (userService.resetUserPwd(username, newPassword) > 0) {
            // 更新缓存用户密码
            LoginUser loginUser = SecurityUtils.getLoginUser();
            loginUser.getSysUser().setPassword(newPassword);
@@ -117,30 +120,25 @@
        }
        return error("修改密码异常，请联系管理员");
    }
    

    /**
     * 头像上传
     */
    @Log(title = "用户头像", businessType = BusinessType.UPDATE)
    @PostMapping("/avatar")
    public AjaxResult avatar(@RequestParam("avatarfile") MultipartFile file)
    {
        if (!file.isEmpty())
        {
    public AjaxResult avatar(@RequestParam("avatarfile") MultipartFile file) {
        if (!file.isEmpty()) {
            LoginUser loginUser = SecurityUtils.getLoginUser();
            String extension = FileTypeUtils.getExtension(file);
            if (!StringUtils.equalsAnyIgnoreCase(extension, MimeTypeUtils.IMAGE_EXTENSION))
            {
            if (!StringUtils.equalsAnyIgnoreCase(extension, MimeTypeUtils.IMAGE_EXTENSION)) {
                return error("文件格式不正确，请上传" + Arrays.toString(MimeTypeUtils.IMAGE_EXTENSION) + "格式");
            }
            R<SysFile> fileResult = remoteFileService.upload(file);
            if (StringUtils.isNull(fileResult) || StringUtils.isNull(fileResult.getData()))
            {
            if (StringUtils.isNull(fileResult) || StringUtils.isNull(fileResult.getData())) {
                return error("文件服务异常，请联系管理员");
            }
            String url = fileResult.getData().getUrl();
            if (userService.updateUserAvatar(loginUser.getUsername(), url))
            {
            if (userService.updateUserAvatar(loginUser.getUsername(), url)) {
                AjaxResult ajax = AjaxResult.success();
                ajax.put("imgUrl", url);
                // 更新缓存用户头像

 se-modules/se-system/src/main/java/com/se/system/controller/SysUserController.java

@@ -5,8 +5,12 @@
import java.util.Set;
import java.util.stream.Collectors;
import javax.servlet.http.HttpServletResponse;

import com.se.common.core.utils.AesUtils;
import org.apache.commons.lang3.ArrayUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.util.CollectionUtils;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.DeleteMapping;
import org.springframework.web.bind.annotation.GetMapping;
@@ -46,8 +50,7 @@
 */
@RestController
@RequestMapping("/user")
public class SysUserController extends BaseController
{
public class SysUserController extends BaseController {
    @Autowired
    private ISysUserService userService;

@@ -66,24 +69,37 @@
    @Autowired
    private ISysConfigService configService;

    @Value("${enableEncrypt}")
    boolean enableEncrypt;

    /**
     * 获取用户列表
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/list")
    public TableDataInfo list(SysUser user)
    {
    public TableDataInfo list(SysUser user) {
        startPage();
        List<SysUser> list = userService.selectUserList(user);
        if (!CollectionUtils.isEmpty(list)) {
            for (SysUser sysUser : list) {
                // 设置密码为空
                sysUser.setPassword(null);
            }
        }
        return getDataTable(list);
    }

    @Log(title = "用户管理", businessType = BusinessType.EXPORT)
    @RequiresPermissions("system:user:export")
    @PostMapping("/export")
    public void export(HttpServletResponse response, SysUser user)
    {
    public void export(HttpServletResponse response, SysUser user) {
        List<SysUser> list = userService.selectUserList(user);
        if (!CollectionUtils.isEmpty(list)) {
            for (SysUser sysUser : list) {
                // 设置密码为空
                sysUser.setPassword(null);
            }
        }
        ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
        util.exportExcel(response, list, "用户数据");
    }
@@ -91,8 +107,7 @@
    @Log(title = "用户管理", businessType = BusinessType.IMPORT)
    @RequiresPermissions("system:user:import")
    @PostMapping("/importData")
    public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception
    {
    public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception {
        ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
        List<SysUser> userList = util.importExcel(file.getInputStream());
        String operName = SecurityUtils.getUsername();
@@ -101,8 +116,7 @@
    }

    @PostMapping("/importTemplate")
    public void importTemplate(HttpServletResponse response) throws IOException
    {
    public void importTemplate(HttpServletResponse response) throws IOException {
        ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
        util.importTemplateExcel(response, "用户数据");
    }
@@ -112,13 +126,13 @@
     */
    @InnerAuth
    @GetMapping("/info/{username}")
    public R<LoginUser> info(@PathVariable("username") String username)
    {
    public R<LoginUser> info(@PathVariable("username") String username) {
        SysUser sysUser = userService.selectUserByUserName(username);
        if (StringUtils.isNull(sysUser))
        {
        if (StringUtils.isNull(sysUser)) {
            return R.fail("用户名或密码错误");
        }
        // 设置密码为空
        sysUser.setPassword(null);
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(sysUser);
        // 权限集合
@@ -135,38 +149,38 @@
     */
    @InnerAuth
    @PostMapping("/register")
    public R<Boolean> register(@RequestBody SysUser sysUser)
    {
    public R<Boolean> register(@RequestBody SysUser sysUser) {
        String username = sysUser.getUserName();
        if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser"))))
        {
        if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser")))) {
            return R.fail("当前系统没有开启注册功能！");
        }
        if (!userService.checkUserNameUnique(sysUser))
        {
        if (!userService.checkUserNameUnique(sysUser)) {
            return R.fail("保存用户'" + username + "'失败，注册账号已存在");
        }
        return R.ok(userService.registerUser(sysUser));
    }

    /**
     *记录用户登录IP地址和登录时间
     * 记录用户登录IP地址和登录时间
     */
    @InnerAuth
    @PutMapping("/recordlogin")
    public R<Boolean> recordlogin(@RequestBody SysUser sysUser)
    {
    public R<Boolean> recordlogin(@RequestBody SysUser sysUser) {
        return R.ok(userService.updateUserProfile(sysUser));
    }

    /**
     * 获取用户信息
     * 
     *
     * @return 用户信息
     */
    @GetMapping("getInfo")
    public AjaxResult getInfo() {
        SysUser user = userService.selectUserById(SecurityUtils.getUserId());
        if (null != user) {
            // 设置密码为空
            user.setPassword(null);
        }
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(user);
        // 权限集合
@@ -185,17 +199,19 @@
     * 根据用户编号获取详细信息
     */
    @RequiresPermissions("system:user:query")
    @GetMapping(value = { "/", "/{userId}" })
    public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId)
    {
    @GetMapping(value = {"/", "/{userId}"})
    public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId) {
        userService.checkUserDataScope(userId);
        AjaxResult ajax = AjaxResult.success();
        List<SysRole> roles = roleService.selectRoleAll();
        ajax.put("roles", SysUser.isAdmin(userId) ? roles : roles.stream().filter(r -> !r.isAdmin()).collect(Collectors.toList()));
        ajax.put("posts", postService.selectPostAll());
        if (StringUtils.isNotNull(userId))
        {
        if (StringUtils.isNotNull(userId)) {
            SysUser sysUser = userService.selectUserById(userId);
            if (null != sysUser) {
                // 设置密码为空
                sysUser.setPassword(null);
            }
            ajax.put(AjaxResult.DATA_TAG, sysUser);
            ajax.put("postIds", postService.selectPostListByUserId(userId));
            ajax.put("roleIds", sysUser.getRoles().stream().map(SysRole::getRoleId).collect(Collectors.toList()));
@@ -209,21 +225,18 @@
    @RequiresPermissions("system:user:add")
    @Log(title = "用户管理", businessType = BusinessType.INSERT)
    @PostMapping
    public AjaxResult add(@Validated @RequestBody SysUser user)
    {
    public AjaxResult add(@Validated @RequestBody SysUser user) throws Exception {
        deptService.checkDeptDataScope(user.getDeptId());
        roleService.checkRoleDataScope(user.getRoleIds());
        if (!userService.checkUserNameUnique(user))
        {
        if (!userService.checkUserNameUnique(user)) {
            return error("新增用户'" + user.getUserName() + "'失败，登录账号已存在");
        }
        else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user))
        {
        } else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user)) {
            return error("新增用户'" + user.getUserName() + "'失败，手机号码已存在");
        }
        else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
        {
        } else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user)) {
            return error("新增用户'" + user.getUserName() + "'失败，邮箱账号已存在");
        }
        if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
            user.setPassword(AesUtils.decrypt(user.getPassword()));
        }
        user.setCreateBy(SecurityUtils.getUsername());
        user.setPassword(SecurityUtils.encryptPassword(user.getPassword()));
@@ -236,22 +249,16 @@
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping
    public AjaxResult edit(@Validated @RequestBody SysUser user)
    {
    public AjaxResult edit(@Validated @RequestBody SysUser user) {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
        deptService.checkDeptDataScope(user.getDeptId());
        roleService.checkRoleDataScope(user.getRoleIds());
        if (!userService.checkUserNameUnique(user))
        {
        if (!userService.checkUserNameUnique(user)) {
            return error("修改用户'" + user.getUserName() + "'失败，登录账号已存在");
        }
        else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user))
        {
        } else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user)) {
            return error("修改用户'" + user.getUserName() + "'失败，手机号码已存在");
        }
        else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
        {
        } else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user)) {
            return error("修改用户'" + user.getUserName() + "'失败，邮箱账号已存在");
        }
        user.setUpdateBy(SecurityUtils.getUsername());
@@ -264,10 +271,8 @@
    @RequiresPermissions("system:user:remove")
    @Log(title = "用户管理", businessType = BusinessType.DELETE)
    @DeleteMapping("/{userIds}")
    public AjaxResult remove(@PathVariable Long[] userIds)
    {
        if (ArrayUtils.contains(userIds, SecurityUtils.getUserId()))
        {
    public AjaxResult remove(@PathVariable Long[] userIds) {
        if (ArrayUtils.contains(userIds, SecurityUtils.getUserId())) {
            return error("当前用户不能删除");
        }
        return toAjax(userService.deleteUserByIds(userIds));
@@ -279,10 +284,12 @@
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping("/resetPwd")
    public AjaxResult resetPwd(@RequestBody SysUser user)
    {
    public AjaxResult resetPwd(@RequestBody SysUser user) throws Exception {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
        if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
            user.setPassword(AesUtils.decrypt(user.getPassword()));
        }
        user.setPassword(SecurityUtils.encryptPassword(user.getPassword()));
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.resetPwd(user));
@@ -294,8 +301,7 @@
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping("/changeStatus")
    public AjaxResult changeStatus(@RequestBody SysUser user)
    {
    public AjaxResult changeStatus(@RequestBody SysUser user) {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
        user.setUpdateBy(SecurityUtils.getUsername());
@@ -307,8 +313,7 @@
     */
    @RequiresPermissions("system:user:query")
    @GetMapping("/authRole/{userId}")
    public AjaxResult authRole(@PathVariable("userId") Long userId)
    {
    public AjaxResult authRole(@PathVariable("userId") Long userId) {
        AjaxResult ajax = AjaxResult.success();
        SysUser user = userService.selectUserById(userId);
        List<SysRole> roles = roleService.selectRolesByUserId(userId);
@@ -323,8 +328,7 @@
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.GRANT)
    @PutMapping("/authRole")
    public AjaxResult insertAuthRole(Long userId, Long[] roleIds)
    {
    public AjaxResult insertAuthRole(Long userId, Long[] roleIds) {
        userService.checkUserDataScope(userId);
        roleService.checkRoleDataScope(roleIds);
        userService.insertUserAuth(userId, roleIds);
@@ -336,8 +340,7 @@
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/deptTree")
    public AjaxResult deptTree(SysDept dept)
    {
    public AjaxResult deptTree(SysDept dept) {
        return success(deptService.selectDeptTreeList(dept));
    }
}

 se-modules/se-system/src/main/resources/bootstrap.yml

@@ -25,3 +25,4 @@
        # 共享配置
        shared-configs:
          - application-${spring.profiles.active}.${spring.cloud.nacos.config.file-extension}
enableEncrypt: true

			@@ -163,7 +163,7 @@
			<orderEntry type="library" name="Maven: io.lettuce:lettuce-core:6.1.10.RELEASE" level="project" />
			<orderEntry type="library" name="Maven: io.projectreactor:reactor-core:3.4.34" level="project" />
			<orderEntry type="library" name="Maven: org.reactivestreams:reactive-streams:1.0.4" level="project" />
			<orderEntry type="library" name="Maven: org.projectlombok:lombok:1.18.30" level="project" />
			<orderEntry type="library" name="Maven: org.projectlombok:lombok:1.18.22" level="project" />
			<orderEntry type="library" name="Maven: org.springframework.cloud:spring-cloud-starter-bootstrap:3.1.7" level="project" />
			<orderEntry type="library" name="Maven: org.springframework.cloud:spring-cloud-starter:3.1.7" level="project" />
			<orderEntry type="library" name="Maven: org.springframework.security:spring-security-rsa:1.0.11.RELEASE" level="project" />

			@@ -21,8 +21,7 @@
			* @author admin
			*/
			@RestController
			public class TokenController
			{
			public class TokenController {
			@Autowired
			private TokenService tokenService;

			@@ -30,8 +29,7 @@
			private SysLoginService sysLoginService;

			@PostMapping("login")
			public R<?> login(@RequestBody LoginBody form)
			{
			public R<?> login(@RequestBody LoginBody form) {
			// 用户登录
			LoginUser userInfo = sysLoginService.login(form.getUsername(), form.getPassword());
			// 获取登录token
			@@ -56,11 +54,9 @@
			}

			@DeleteMapping("logout")
			public R<?> logout(HttpServletRequest request)
			{
			public R<?> logout(HttpServletRequest request) {
			String token = SecurityUtils.getToken(request);
			if (StringUtils.isNotEmpty(token))
			{
			if (StringUtils.isNotEmpty(token)) {
			String username = JwtUtils.getUserName(token);
			// 删除用户缓存记录
			AuthUtil.logoutByToken(token);
			@@ -71,11 +67,9 @@
			}

			@PostMapping("refresh")
			public R<?> refresh(HttpServletRequest request)
			{
			public R<?> refresh(HttpServletRequest request) {
			LoginUser loginUser = tokenService.getLoginUser(request);
			if (StringUtils.isNotNull(loginUser))
			{
			if (StringUtils.isNotNull(loginUser)) {
			// 刷新令牌有效期
			tokenService.refreshToken(loginUser);
			return R.ok();
			@@ -83,11 +77,11 @@
			return R.ok();
			}

			@PostMapping("register")
			/*@PostMapping("register")
			public R<?> register(@RequestBody RegisterBody registerBody)
			{
			// 用户注册
			sysLoginService.register(registerBody.getUsername(), registerBody.getPassword());
			return R.ok();
			}
			}*/
			}

			@@ -15,7 +15,7 @@
			/**
			* 密钥长度必须是16
			*/
			private static final String DEFAULT_KEY = "A#s_zZ_sErve_k.y";
			private static final String DEFAULT_KEY = "A#s_zZ3seRve_k.y";

			private static final String KEY_ALGORITHM = "AES";

			@@ -1,7 +1,10 @@
			package com.se.system.controller;

			import java.util.Arrays;

			import com.se.common.core.utils.AesUtils;
			import org.springframework.beans.factory.annotation.Autowired;
			import org.springframework.beans.factory.annotation.Value;
			import org.springframework.web.bind.annotation.GetMapping;
			import org.springframework.web.bind.annotation.PostMapping;
			import org.springframework.web.bind.annotation.PutMapping;
			@@ -33,25 +36,30 @@
			*/
			@RestController
			@RequestMapping("/user/profile")
			public class SysProfileController extends BaseController
			{
			public class SysProfileController extends BaseController {
			@Autowired
			private ISysUserService userService;


			@Autowired
			private TokenService tokenService;


			@Autowired
			private RemoteFileService remoteFileService;

			@Value("${enableEncrypt}")
			boolean enableEncrypt;

			/**
			* 个人信息
			*/
			@GetMapping
			public AjaxResult profile()
			{
			public AjaxResult profile() {
			String username = SecurityUtils.getUsername();
			SysUser user = userService.selectUserByUserName(username);
			if (null != user) {
			// 设置密码为空
			user.setPassword(null);
			}
			AjaxResult ajax = AjaxResult.success(user);
			ajax.put("roleGroup", userService.selectUserRoleGroup(username));
			ajax.put("postGroup", userService.selectUserPostGroup(username));
			@@ -63,24 +71,20 @@
			*/
			@Log(title = "个人信息", businessType = BusinessType.UPDATE)
			@PutMapping
			public AjaxResult updateProfile(@RequestBody SysUser user)
			{
			public AjaxResult updateProfile(@RequestBody SysUser user) {
			LoginUser loginUser = SecurityUtils.getLoginUser();
			SysUser currentUser = loginUser.getSysUser();
			currentUser.setNickName(user.getNickName());
			currentUser.setEmail(user.getEmail());
			currentUser.setPhonenumber(user.getPhonenumber());
			currentUser.setSex(user.getSex());
			if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(currentUser))
			{
			if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(currentUser)) {
			return error("修改用户'" + loginUser.getUsername() + "'失败，手机号码已存在");
			}
			if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(currentUser))
			{
			if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(currentUser)) {
			return error("修改用户'" + loginUser.getUsername() + "'失败，邮箱账号已存在");
			}
			if (userService.updateUserProfile(currentUser))
			{
			if (userService.updateUserProfile(currentUser)) {
			// 更新缓存用户信息
			tokenService.setLoginUser(loginUser);
			return success();
			@@ -93,22 +97,21 @@
			*/
			@Log(title = "个人信息", businessType = BusinessType.UPDATE)
			@PutMapping("/updatePwd")
			public AjaxResult updatePwd(String oldPassword, String newPassword)
			{
			public AjaxResult updatePwd(String oldPassword, String newPassword) throws Exception {
			String username = SecurityUtils.getUsername();
			SysUser user = userService.selectUserByUserName(username);
			if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
			user.setPassword(AesUtils.decrypt(user.getPassword()));
			}
			String password = user.getPassword();
			if (!SecurityUtils.matchesPassword(oldPassword, password))
			{
			if (!SecurityUtils.matchesPassword(oldPassword, password)) {
			return error("修改密码失败，旧密码错误");
			}
			if (SecurityUtils.matchesPassword(newPassword, password))
			{
			if (SecurityUtils.matchesPassword(newPassword, password)) {
			return error("新密码不能与旧密码相同");
			}
			newPassword = SecurityUtils.encryptPassword(newPassword);
			if (userService.resetUserPwd(username, newPassword) > 0)
			{
			if (userService.resetUserPwd(username, newPassword) > 0) {
			// 更新缓存用户密码
			LoginUser loginUser = SecurityUtils.getLoginUser();
			loginUser.getSysUser().setPassword(newPassword);
			@@ -117,30 +120,25 @@
			}
			return error("修改密码异常，请联系管理员");
			}


			/**
			* 头像上传
			*/
			@Log(title = "用户头像", businessType = BusinessType.UPDATE)
			@PostMapping("/avatar")
			public AjaxResult avatar(@RequestParam("avatarfile") MultipartFile file)
			{
			if (!file.isEmpty())
			{
			public AjaxResult avatar(@RequestParam("avatarfile") MultipartFile file) {
			if (!file.isEmpty()) {
			LoginUser loginUser = SecurityUtils.getLoginUser();
			String extension = FileTypeUtils.getExtension(file);
			if (!StringUtils.equalsAnyIgnoreCase(extension, MimeTypeUtils.IMAGE_EXTENSION))
			{
			if (!StringUtils.equalsAnyIgnoreCase(extension, MimeTypeUtils.IMAGE_EXTENSION)) {
			return error("文件格式不正确，请上传" + Arrays.toString(MimeTypeUtils.IMAGE_EXTENSION) + "格式");
			}
			R<SysFile> fileResult = remoteFileService.upload(file);
			if (StringUtils.isNull(fileResult) \|\| StringUtils.isNull(fileResult.getData()))
			{
			if (StringUtils.isNull(fileResult) \|\| StringUtils.isNull(fileResult.getData())) {
			return error("文件服务异常，请联系管理员");
			}
			String url = fileResult.getData().getUrl();
			if (userService.updateUserAvatar(loginUser.getUsername(), url))
			{
			if (userService.updateUserAvatar(loginUser.getUsername(), url)) {
			AjaxResult ajax = AjaxResult.success();
			ajax.put("imgUrl", url);
			// 更新缓存用户头像

			@@ -5,8 +5,12 @@
			import java.util.Set;
			import java.util.stream.Collectors;
			import javax.servlet.http.HttpServletResponse;

			import com.se.common.core.utils.AesUtils;
			import org.apache.commons.lang3.ArrayUtils;
			import org.springframework.beans.factory.annotation.Autowired;
			import org.springframework.beans.factory.annotation.Value;
			import org.springframework.util.CollectionUtils;
			import org.springframework.validation.annotation.Validated;
			import org.springframework.web.bind.annotation.DeleteMapping;
			import org.springframework.web.bind.annotation.GetMapping;
			@@ -46,8 +50,7 @@
			*/
			@RestController
			@RequestMapping("/user")
			public class SysUserController extends BaseController
			{
			public class SysUserController extends BaseController {
			@Autowired
			private ISysUserService userService;

			@@ -66,24 +69,37 @@
			@Autowired
			private ISysConfigService configService;

			@Value("${enableEncrypt}")
			boolean enableEncrypt;

			/**
			* 获取用户列表
			*/
			@RequiresPermissions("system:user:list")
			@GetMapping("/list")
			public TableDataInfo list(SysUser user)
			{
			public TableDataInfo list(SysUser user) {
			startPage();
			List<SysUser> list = userService.selectUserList(user);
			if (!CollectionUtils.isEmpty(list)) {
			for (SysUser sysUser : list) {
			// 设置密码为空
			sysUser.setPassword(null);
			}
			}
			return getDataTable(list);
			}

			@Log(title = "用户管理", businessType = BusinessType.EXPORT)
			@RequiresPermissions("system:user:export")
			@PostMapping("/export")
			public void export(HttpServletResponse response, SysUser user)
			{
			public void export(HttpServletResponse response, SysUser user) {
			List<SysUser> list = userService.selectUserList(user);
			if (!CollectionUtils.isEmpty(list)) {
			for (SysUser sysUser : list) {
			// 设置密码为空
			sysUser.setPassword(null);
			}
			}
			ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
			util.exportExcel(response, list, "用户数据");
			}
			@@ -91,8 +107,7 @@
			@Log(title = "用户管理", businessType = BusinessType.IMPORT)
			@RequiresPermissions("system:user:import")
			@PostMapping("/importData")
			public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception
			{
			public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception {
			ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
			List<SysUser> userList = util.importExcel(file.getInputStream());
			String operName = SecurityUtils.getUsername();
			@@ -101,8 +116,7 @@
			}

			@PostMapping("/importTemplate")
			public void importTemplate(HttpServletResponse response) throws IOException
			{
			public void importTemplate(HttpServletResponse response) throws IOException {
			ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
			util.importTemplateExcel(response, "用户数据");
			}
			@@ -112,13 +126,13 @@
			*/
			@InnerAuth
			@GetMapping("/info/{username}")
			public R<LoginUser> info(@PathVariable("username") String username)
			{
			public R<LoginUser> info(@PathVariable("username") String username) {
			SysUser sysUser = userService.selectUserByUserName(username);
			if (StringUtils.isNull(sysUser))
			{
			if (StringUtils.isNull(sysUser)) {
			return R.fail("用户名或密码错误");
			}
			// 设置密码为空
			sysUser.setPassword(null);
			// 角色集合
			Set<String> roles = permissionService.getRolePermission(sysUser);
			// 权限集合
			@@ -135,38 +149,38 @@
			*/
			@InnerAuth
			@PostMapping("/register")
			public R<Boolean> register(@RequestBody SysUser sysUser)
			{
			public R<Boolean> register(@RequestBody SysUser sysUser) {
			String username = sysUser.getUserName();
			if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser"))))
			{
			if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser")))) {
			return R.fail("当前系统没有开启注册功能！");
			}
			if (!userService.checkUserNameUnique(sysUser))
			{
			if (!userService.checkUserNameUnique(sysUser)) {
			return R.fail("保存用户'" + username + "'失败，注册账号已存在");
			}
			return R.ok(userService.registerUser(sysUser));
			}

			/**
			*记录用户登录IP地址和登录时间
			* 记录用户登录IP地址和登录时间
			*/
			@InnerAuth
			@PutMapping("/recordlogin")
			public R<Boolean> recordlogin(@RequestBody SysUser sysUser)
			{
			public R<Boolean> recordlogin(@RequestBody SysUser sysUser) {
			return R.ok(userService.updateUserProfile(sysUser));
			}

			/**
			* 获取用户信息
			*
			*
			* @return 用户信息
			*/
			@GetMapping("getInfo")
			public AjaxResult getInfo() {
			SysUser user = userService.selectUserById(SecurityUtils.getUserId());
			if (null != user) {
			// 设置密码为空
			user.setPassword(null);
			}
			// 角色集合
			Set<String> roles = permissionService.getRolePermission(user);
			// 权限集合
			@@ -185,17 +199,19 @@
			* 根据用户编号获取详细信息
			*/
			@RequiresPermissions("system:user:query")
			@GetMapping(value = { "/", "/{userId}" })
			public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId)
			{
			@GetMapping(value = {"/", "/{userId}"})
			public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId) {
			userService.checkUserDataScope(userId);
			AjaxResult ajax = AjaxResult.success();
			List<SysRole> roles = roleService.selectRoleAll();
			ajax.put("roles", SysUser.isAdmin(userId) ? roles : roles.stream().filter(r -> !r.isAdmin()).collect(Collectors.toList()));
			ajax.put("posts", postService.selectPostAll());
			if (StringUtils.isNotNull(userId))
			{
			if (StringUtils.isNotNull(userId)) {
			SysUser sysUser = userService.selectUserById(userId);
			if (null != sysUser) {
			// 设置密码为空
			sysUser.setPassword(null);
			}
			ajax.put(AjaxResult.DATA_TAG, sysUser);
			ajax.put("postIds", postService.selectPostListByUserId(userId));
			ajax.put("roleIds", sysUser.getRoles().stream().map(SysRole::getRoleId).collect(Collectors.toList()));
			@@ -209,21 +225,18 @@
			@RequiresPermissions("system:user:add")
			@Log(title = "用户管理", businessType = BusinessType.INSERT)
			@PostMapping
			public AjaxResult add(@Validated @RequestBody SysUser user)
			{
			public AjaxResult add(@Validated @RequestBody SysUser user) throws Exception {
			deptService.checkDeptDataScope(user.getDeptId());
			roleService.checkRoleDataScope(user.getRoleIds());
			if (!userService.checkUserNameUnique(user))
			{
			if (!userService.checkUserNameUnique(user)) {
			return error("新增用户'" + user.getUserName() + "'失败，登录账号已存在");
			}
			else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user))
			{
			} else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user)) {
			return error("新增用户'" + user.getUserName() + "'失败，手机号码已存在");
			}
			else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
			{
			} else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user)) {
			return error("新增用户'" + user.getUserName() + "'失败，邮箱账号已存在");
			}
			if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
			user.setPassword(AesUtils.decrypt(user.getPassword()));
			}
			user.setCreateBy(SecurityUtils.getUsername());
			user.setPassword(SecurityUtils.encryptPassword(user.getPassword()));
			@@ -236,22 +249,16 @@
			@RequiresPermissions("system:user:edit")
			@Log(title = "用户管理", businessType = BusinessType.UPDATE)
			@PutMapping
			public AjaxResult edit(@Validated @RequestBody SysUser user)
			{
			public AjaxResult edit(@Validated @RequestBody SysUser user) {
			userService.checkUserAllowed(user);
			userService.checkUserDataScope(user.getUserId());
			deptService.checkDeptDataScope(user.getDeptId());
			roleService.checkRoleDataScope(user.getRoleIds());
			if (!userService.checkUserNameUnique(user))
			{
			if (!userService.checkUserNameUnique(user)) {
			return error("修改用户'" + user.getUserName() + "'失败，登录账号已存在");
			}
			else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user))
			{
			} else if (StringUtils.isNotEmpty(user.getPhonenumber()) && !userService.checkPhoneUnique(user)) {
			return error("修改用户'" + user.getUserName() + "'失败，手机号码已存在");
			}
			else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
			{
			} else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user)) {
			return error("修改用户'" + user.getUserName() + "'失败，邮箱账号已存在");
			}
			user.setUpdateBy(SecurityUtils.getUsername());
			@@ -264,10 +271,8 @@
			@RequiresPermissions("system:user:remove")
			@Log(title = "用户管理", businessType = BusinessType.DELETE)
			@DeleteMapping("/{userIds}")
			public AjaxResult remove(@PathVariable Long[] userIds)
			{
			if (ArrayUtils.contains(userIds, SecurityUtils.getUserId()))
			{
			public AjaxResult remove(@PathVariable Long[] userIds) {
			if (ArrayUtils.contains(userIds, SecurityUtils.getUserId())) {
			return error("当前用户不能删除");
			}
			return toAjax(userService.deleteUserByIds(userIds));
			@@ -279,10 +284,12 @@
			@RequiresPermissions("system:user:edit")
			@Log(title = "用户管理", businessType = BusinessType.UPDATE)
			@PutMapping("/resetPwd")
			public AjaxResult resetPwd(@RequestBody SysUser user)
			{
			public AjaxResult resetPwd(@RequestBody SysUser user) throws Exception {
			userService.checkUserAllowed(user);
			userService.checkUserDataScope(user.getUserId());
			if (enableEncrypt && !StringUtils.isEmpty(user.getPassword())) {
			user.setPassword(AesUtils.decrypt(user.getPassword()));
			}
			user.setPassword(SecurityUtils.encryptPassword(user.getPassword()));
			user.setUpdateBy(SecurityUtils.getUsername());
			return toAjax(userService.resetPwd(user));
			@@ -294,8 +301,7 @@
			@RequiresPermissions("system:user:edit")
			@Log(title = "用户管理", businessType = BusinessType.UPDATE)
			@PutMapping("/changeStatus")
			public AjaxResult changeStatus(@RequestBody SysUser user)
			{
			public AjaxResult changeStatus(@RequestBody SysUser user) {
			userService.checkUserAllowed(user);
			userService.checkUserDataScope(user.getUserId());
			user.setUpdateBy(SecurityUtils.getUsername());
			@@ -307,8 +313,7 @@
			*/
			@RequiresPermissions("system:user:query")
			@GetMapping("/authRole/{userId}")
			public AjaxResult authRole(@PathVariable("userId") Long userId)
			{
			public AjaxResult authRole(@PathVariable("userId") Long userId) {
			AjaxResult ajax = AjaxResult.success();
			SysUser user = userService.selectUserById(userId);
			List<SysRole> roles = roleService.selectRolesByUserId(userId);
			@@ -323,8 +328,7 @@
			@RequiresPermissions("system:user:edit")
			@Log(title = "用户管理", businessType = BusinessType.GRANT)
			@PutMapping("/authRole")
			public AjaxResult insertAuthRole(Long userId, Long[] roleIds)
			{
			public AjaxResult insertAuthRole(Long userId, Long[] roleIds) {
			userService.checkUserDataScope(userId);
			roleService.checkRoleDataScope(roleIds);
			userService.insertUserAuth(userId, roleIds);
			@@ -336,8 +340,7 @@
			*/
			@RequiresPermissions("system:user:list")
			@GetMapping("/deptTree")
			public AjaxResult deptTree(SysDept dept)
			{
			public AjaxResult deptTree(SysDept dept) {
			return success(deptService.selectDeptTreeList(dept));
			}
			}

			@@ -25,3 +25,4 @@
			# 共享配置
			shared-configs:
			- application-${spring.profiles.active}.${spring.cloud.nacos.config.file-extension}
			enableEncrypt: true