Merge remote-tracking branch 'origin/main' into multi-tenant

2024-08-17 18:25:43 +08:00
parent 7f705fbf00 d0752d264c
commit 5ca1b9881e
69 changed files with 3295 additions and 4634 deletions
--- a/src/modules/network_element/ne_config_test.go
+++ b/src/modules/network_element/ne_config_test.go
@@ -29,7 +29,7 @@ const (
 	// 配置文件路径
 	configParamDir = "../../../config/param"
 	// configParamFile = "*" // 目录下全部更新
-	configParamFile = "upf_param_config.yaml" // 单文件更新
+	configParamFile = "ims_param_config.yaml" // 单文件更新
 )

 func TestEncrypt(t *testing.T) {
@@ -217,7 +217,7 @@ func parseParamConfig(data map[string]any) ([]map[string]string, error) {
 					itemMap["paramSort"] = fmt.Sprint(iiv)
 				case "perms", "method":
 					itemMap["paramPerms"] = iiv.(string)
-				case "data", "list", "array":
+				case "list", "array": // 参数类型为数组
 					itemMap["paramType"] = iik
 					strByte, _ := json.Marshal(iiv)
 					itemMap["paramJson"] = string(strByte)
--- a/src/modules/network_element/network_element.go
+++ b/src/modules/network_element/network_element.go
@@ -80,15 +80,18 @@ func Setup(router *gin.Engine) {
 			controller.NewNeInfo.List,
 		)
 		neInfoGroup.GET("/:infoId",
+			middleware.CryptoApi(false, true),
 			middleware.PreAuthorize(nil),
 			controller.NewNeInfo.Info,
 		)
 		neInfoGroup.POST("",
+			middleware.CryptoApi(true, true),
 			middleware.PreAuthorize(nil),
 			collectlogs.OperateLog(collectlogs.OptionNew("log.operate.title.neInfo", collectlogs.BUSINESS_TYPE_INSERT)),
 			controller.NewNeInfo.Add,
 		)
 		neInfoGroup.PUT("",
+			middleware.CryptoApi(true, true),
 			middleware.PreAuthorize(nil),
 			collectlogs.OperateLog(collectlogs.OptionNew("log.operate.title.neInfo", collectlogs.BUSINESS_TYPE_UPDATE)),
 			controller.NewNeInfo.Edit,
@@ -108,6 +111,7 @@ func Setup(router *gin.Engine) {
 			controller.NewNeHost.List,
 		)
 		neHostGroup.GET("/:hostId",
+			middleware.CryptoApi(false, true),
 			middleware.PreAuthorize(nil),
 			controller.NewNeHost.Info,
 		)
--- a/src/modules/network_element/repository/ne_host.impl.go
+++ b/src/modules/network_element/repository/ne_host.impl.go
@@ -7,7 +7,6 @@ import (

 	"be.ems/src/framework/datasource"
 	"be.ems/src/framework/logger"
-	"be.ems/src/framework/utils/crypto"
 	"be.ems/src/framework/utils/parse"
 	"be.ems/src/framework/utils/repo"
 	"be.ems/src/modules/network_element/model"
@@ -170,32 +169,7 @@ func (r *NeHostImpl) SelectByIds(hostIds []string) []model.NeHost {
 		return []model.NeHost{}
 	}
 	// 转换实体
-	rows := r.convertResultRows(results)
-	arr := &rows
-	for i := range *arr {
-		passwordDe, err := crypto.StringDecryptByAES((*arr)[i].Password)
-		if err != nil {
-			logger.Errorf("selectById %s decrypt: %v", (*arr)[i].HostID, err.Error())
-			(*arr)[i].Password = ""
-		} else {
-			(*arr)[i].Password = passwordDe
-		}
-		privateKeyDe, err := crypto.StringDecryptByAES((*arr)[i].PrivateKey)
-		if err != nil {
-			logger.Errorf("selectById %s decrypt: %v", (*arr)[i].HostID, err.Error())
-			(*arr)[i].PrivateKey = ""
-		} else {
-			(*arr)[i].PrivateKey = privateKeyDe
-		}
-		passPhraseDe, err := crypto.StringDecryptByAES((*arr)[i].PassPhrase)
-		if err != nil {
-			logger.Errorf("selectById %s decrypt: %v", (*arr)[i].HostID, err.Error())
-			(*arr)[i].PassPhrase = ""
-		} else {
-			(*arr)[i].PassPhrase = passPhraseDe
-		}
-	}
-	return rows
+	return r.convertResultRows(results)
 }

 // CheckUniqueNeHost 校验主机是否唯一
@@ -263,28 +237,13 @@ func (r *NeHostImpl) Insert(neHost model.NeHost) string {
 		params["auth_mode"] = neHost.AuthMode
 	}
 	if neHost.Password != "" {
-		passwordEn, err := crypto.StringEncryptByAES(neHost.Password)
-		if err != nil {
-			logger.Errorf("insert encrypt: %v", err.Error())
-			return ""
-		}
-		params["password"] = passwordEn
+		params["password"] = neHost.Password
 	}
 	if neHost.PrivateKey != "" {
-		privateKeyEn, err := crypto.StringEncryptByAES(neHost.PrivateKey)
-		if err != nil {
-			logger.Errorf("insert encrypt: %v", err.Error())
-			return ""
-		}
-		params["private_key"] = privateKeyEn
+		params["private_key"] = neHost.PrivateKey
 	}
 	if neHost.PassPhrase != "" {
-		passPhraseEn, err := crypto.StringEncryptByAES(neHost.PassPhrase)
-		if err != nil {
-			logger.Errorf("insert encrypt: %v", err.Error())
-			return ""
-		}
-		params["pass_phrase"] = passPhraseEn
+		params["pass_phrase"] = neHost.PassPhrase
 	}
 	if neHost.Remark != "" {
 		params["remark"] = neHost.Remark
@@ -361,28 +320,13 @@ func (r *NeHostImpl) Update(neHost model.NeHost) int64 {
 		params["auth_mode"] = neHost.AuthMode
 	}
 	if neHost.Password != "" {
-		passwordEn, err := crypto.StringEncryptByAES(neHost.Password)
-		if err != nil {
-			logger.Errorf("update encrypt: %v", err.Error())
-			return 0
-		}
-		params["password"] = passwordEn
+		params["password"] = neHost.Password
 	}
 	if neHost.PrivateKey != "" {
-		privateKeyEn, err := crypto.StringEncryptByAES(neHost.PrivateKey)
-		if err != nil {
-			logger.Errorf("update encrypt: %v", err.Error())
-			return 0
-		}
-		params["private_key"] = privateKeyEn
+		params["private_key"] = neHost.PrivateKey
 	}
 	if neHost.PassPhrase != "" {
-		passPhraseEn, err := crypto.StringEncryptByAES(neHost.PassPhrase)
-		if err != nil {
-			logger.Errorf("update encrypt: %v", err.Error())
-			return 0
-		}
-		params["pass_phrase"] = passPhraseEn
+		params["pass_phrase"] = neHost.PassPhrase
 	}
 	params["remark"] = neHost.Remark
 	if neHost.UpdateBy != "" {
--- a/src/modules/network_element/service/ne_host.impl.go
+++ b/src/modules/network_element/service/ne_host.impl.go
@@ -3,6 +3,9 @@ package service
 import (
 	"fmt"

+	"be.ems/src/framework/config"
+	"be.ems/src/framework/logger"
+	"be.ems/src/framework/utils/crypto"
 	"be.ems/src/modules/network_element/model"
 	"be.ems/src/modules/network_element/repository"
 )
@@ -30,12 +33,39 @@ func (r *NeHostImpl) SelectList(neHost model.NeHost) []model.NeHost {

 // SelectByIds 通过ID查询
 func (r *NeHostImpl) SelectById(hostId string) model.NeHost {
+	neHost := model.NeHost{}
 	if hostId == "" {
-		return model.NeHost{}
+		return neHost
 	}
 	neHosts := r.neHostRepository.SelectByIds([]string{hostId})
 	if len(neHosts) > 0 {
-		return neHosts[0]
+		neHost := neHosts[0]
+		hostKey := config.Get("aes.hostKey").(string)
+		if neHost.Password != "" {
+			passwordDe, err := crypto.AESDecryptBase64(neHost.Password, hostKey)
+			if err != nil {
+				logger.Errorf("select encrypt: %v", err.Error())
+				return neHost
+			}
+			neHost.Password = passwordDe
+		}
+		if neHost.PrivateKey != "" {
+			privateKeyDe, err := crypto.AESDecryptBase64(neHost.PrivateKey, hostKey)
+			if err != nil {
+				logger.Errorf("select encrypt: %v", err.Error())
+				return neHost
+			}
+			neHost.PrivateKey = privateKeyDe
+		}
+		if neHost.PassPhrase != "" {
+			passPhraseDe, err := crypto.AESDecryptBase64(neHost.PassPhrase, hostKey)
+			if err != nil {
+				logger.Errorf("select encrypt: %v", err.Error())
+				return neHost
+			}
+			neHost.PassPhrase = passPhraseDe
+		}
+		return neHost
 	}
 	return model.NeHost{}
 }
@@ -54,11 +84,61 @@ func (r *NeHostImpl) Inserts(neHosts []model.NeHost) int64 {

 // Insert 新增信息
 func (r *NeHostImpl) Insert(neHost model.NeHost) string {
+	hostKey := config.Get("aes.hostKey").(string)
+	if neHost.Password != "" {
+		passwordEn, err := crypto.AESEncryptBase64(neHost.Password, hostKey)
+		if err != nil {
+			logger.Errorf("insert encrypt: %v", err.Error())
+			return ""
+		}
+		neHost.Password = passwordEn
+	}
+	if neHost.PrivateKey != "" {
+		privateKeyEn, err := crypto.AESEncryptBase64(neHost.PrivateKey, hostKey)
+		if err != nil {
+			logger.Errorf("insert encrypt: %v", err.Error())
+			return ""
+		}
+		neHost.PrivateKey = privateKeyEn
+	}
+	if neHost.PassPhrase != "" {
+		passPhraseEn, err := crypto.AESEncryptBase64(neHost.PassPhrase, hostKey)
+		if err != nil {
+			logger.Errorf("insert encrypt: %v", err.Error())
+			return ""
+		}
+		neHost.PassPhrase = passPhraseEn
+	}
 	return r.neHostRepository.Insert(neHost)
 }

 // Update 修改信息
 func (r *NeHostImpl) Update(neHost model.NeHost) int64 {
+	hostKey := config.Get("aes.hostKey").(string)
+	if neHost.Password != "" {
+		passwordEn, err := crypto.AESEncryptBase64(neHost.Password, hostKey)
+		if err != nil {
+			logger.Errorf("update password encrypt: %v", err.Error())
+			return 0
+		}
+		neHost.Password = passwordEn
+	}
+	if neHost.PrivateKey != "" {
+		privateKeyEn, err := crypto.AESEncryptBase64(neHost.PrivateKey, hostKey)
+		if err != nil {
+			logger.Errorf("update private key encrypt: %v", err.Error())
+			return 0
+		}
+		neHost.PrivateKey = privateKeyEn
+	}
+	if neHost.PassPhrase != "" {
+		passPhraseEn, err := crypto.AESEncryptBase64(neHost.PassPhrase, hostKey)
+		if err != nil {
+			logger.Errorf("update pass phrase encrypt: %v", err.Error())
+			return 0
+		}
+		neHost.PassPhrase = passPhraseEn
+	}
 	return r.neHostRepository.Update(neHost)
 }

--- a/src/modules/network_element/service/ne_info.impl.go
+++ b/src/modules/network_element/service/ne_info.impl.go
@@ -208,7 +208,17 @@ func (r *NeInfoImpl) bandNeHosts(arr *[]model.NeInfo) {
 	for i := range *arr {
 		v := (*arr)[i]
 		if v.HostIDs != "" {
-			(*arr)[i].Hosts = NewNeHostImpl.neHostRepository.SelectByIds(strings.Split(v.HostIDs, ","))
+			hostIds := strings.Split(v.HostIDs, ",")
+			if len(hostIds) <= 1 {
+				continue
+			}
+			for _, hostId := range hostIds {
+				neHost := NewNeHostImpl.SelectById(hostId)
+				if neHost.HostID == "" || neHost.HostID != hostId {
+					continue
+				}
+				(*arr)[i].Hosts = append((*arr)[i].Hosts, neHost)
+			}
 		}
 	}
 }
@@ -222,12 +232,11 @@ func (r *NeInfoImpl) SelectById(infoId string, bandHost bool) model.NeInfo {
 	}
 	neInfos := r.neInfoRepository.SelectByIds([]string{infoId})
 	if len(neInfos) > 0 {
-		neInfo := neInfos[0]
 		// 带主机信息
-		if neInfo.HostIDs != "" && bandHost {
-			neInfo.Hosts = NewNeHostImpl.neHostRepository.SelectByIds(strings.Split(neInfo.HostIDs, ","))
+		if neInfos[0].HostIDs != "" && bandHost {
+			r.bandNeHosts(&neInfos)
 		}
-		return neInfo
+		return neInfos[0]
 	}
 	return model.NeInfo{}
 }
@@ -335,12 +344,17 @@ func (r *NeInfoImpl) NeRunSSHClient(neType, neId string) (*ssh.ConnSSH, error) {
 		logger.Errorf("NeRunSSHClient NeType:%s NeID:%s hostId not found", neType, neId)
 		return nil, fmt.Errorf("neinfo hostId not found")
 	}
-	neInfo.Hosts = NewNeHostImpl.neHostRepository.SelectByIds(strings.Split(neInfo.HostIDs, ","))
-	if len(neInfo.Hosts) <= 0 {
-		logger.Errorf("NeRunSSHClient Hosts %s not found", neInfo.HostIDs)
+	hostIds := strings.Split(neInfo.HostIDs, ",")
+	if len(hostIds) <= 1 {
+		logger.Errorf("NeRunTelnetClient hosts id %s not found", neInfo.HostIDs)
+		return nil, fmt.Errorf("neinfo host id not found")
+	}
+	hostId := hostIds[0] // 网元主机ssh 0：22
+	neHost := NewNeHostImpl.SelectById(hostId)
+	if neHost.HostID == "" || neHost.HostID != hostId {
+		logger.Errorf("NeRunTelnetClient Hosts %s not found", neInfo.HostIDs)
 		return nil, fmt.Errorf("neinfo host not found")
 	}
-	neHost := neInfo.Hosts[0] // 网元主机ssh 0：22
 	if neHost.HostType != "ssh" {
 		logger.Errorf("NeRunSSHClient Hosts first HostType %s not ssh", neHost.HostType)
 		return nil, fmt.Errorf("neinfo host type not ssh")
@@ -392,12 +406,17 @@ func (r *NeInfoImpl) NeRunTelnetClient(neType, neId string, num int) (*telnet.Co
 		logger.Errorf("NeRunTelnetClient NeType:%s NeID:%s hostId not found", neType, neId)
 		return nil, fmt.Errorf("neinfo hostId not found")
 	}
-	neInfo.Hosts = NewNeHostImpl.neHostRepository.SelectByIds(strings.Split(neInfo.HostIDs, ","))
-	if len(neInfo.Hosts) <= 0 {
+	hostIds := strings.Split(neInfo.HostIDs, ",")
+	if len(hostIds) <= 1 {
+		logger.Errorf("NeRunTelnetClient hosts id %s not found", neInfo.HostIDs)
+		return nil, fmt.Errorf("neinfo host id not found")
+	}
+	hostId := hostIds[num] // 网元主机telnet 1：4100 2：5200
+	neHost := NewNeHostImpl.SelectById(hostId)
+	if neHost.HostID == "" || neHost.HostID != hostId {
 		logger.Errorf("NeRunTelnetClient Hosts %s not found", neInfo.HostIDs)
 		return nil, fmt.Errorf("neinfo host not found")
 	}
-	neHost := neInfo.Hosts[num]

 	// 创建链接Telnet客户端
 	var connTelnet telnet.ConnTelnet