package com.moon.server.interceptor; import com.moon.server.entity.all.StaticData; import com.moon.server.entity.sys.TokenEntity; import com.moon.server.entity.sys.UserEntity; import com.moon.server.helper.StringHelper; import com.moon.server.helper.WebHelper; import com.moon.server.service.all.SysService; import javax.annotation.Resource; import javax.servlet.*; import javax.servlet.annotation.WebFilter; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.util.List; /** * 代理过滤器 * @author WWW * @date 2023-07-04 */ @WebFilter(urlPatterns = {"/proxy/*"}) public class ProxyFilter implements Filter { @Resource private SysService sysService; @Override public void init(FilterConfig filterConfig) { } @Override public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) { HttpServletRequest req = (HttpServletRequest) request; HttpServletResponse res = (HttpServletResponse) response; if (!check(req, res)) { return; } int i = 0; } @Override public void destroy() { } private boolean check(HttpServletRequest req, HttpServletResponse res) { // 2.获取令牌 String token = WebHelper.getToken(req); if (StringHelper.isNull(token)) { return WebHelper.writeStr2Page(res, AuthInterceptor.NO_TOKEN); } // 3.获取用户 UserEntity ue = sysService.tokenService.getCurrentUser(req); if (ue == null) { return WebHelper.writeStr2Page(res, AuthInterceptor.NO_LOGIN); } // 4.获取IP String ip = WebHelper.getIpAddress(req); if (StringHelper.isEmpty(ip)) { return WebHelper.writeStr2Page(res, AuthInterceptor.IP_NULL); } // 5.检查黑名单 if (!checkBlackList(ip, req)) { return WebHelper.writeStr2Page(res, AuthInterceptor.BLACK_LIST); } // 6.admin跳过权限检测 if (StaticData.ADMIN.equals(ue.getUid())) { return true; } // 7.检查白名单 if (!checkWhiteList(ip, req)) { // 检查IP一致性 if (!checkIpSource(ip, token)) { return WebHelper.writeStr2Page(res, AuthInterceptor.ILLEGAL_TOKEN); } } // 8.检查用户ID是否禁用 if (sysService.tokenService.isUidDisable(ue)) { return WebHelper.writeStr2Page(res, AuthInterceptor.USER_LOCK); } return true; } /** * 检查黑名单 */ private boolean checkBlackList(String ip, HttpServletRequest request) { List blackList = sysService.blacklistService.selectIpList(1); if (blackList == null || blackList.isEmpty()) { return true; } if (blackList.contains(ip)) { return false; } return true; } /** * 检查白名单 */ private boolean checkWhiteList(String ip, HttpServletRequest request) { List whiteList = sysService.blacklistService.selectIpList(2); if (whiteList == null || whiteList.isEmpty()) { return false; } return whiteList.contains(ip); } /** * 检查IP一致性 */ private boolean checkIpSource(String ip, String token) { TokenEntity te = sysService.tokenService.getEntityByToken(token); return te.getIp().equals(ip); } }