WFC/be.wfc
2
0
Fork 0
Code Activity

feat: 用户所属平台标识,限制用户平台只能访问指定前缀的模块地址

Browse Source
This commit is contained in:
TsMask
2024-11-27 16:44:49 +08:00
parent 724e9e4775
commit dd62a85f51
7 changed files with 54 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
wfc-common/wfc-common-core/src/main/java/org/wfc/common/core/constant/SecurityConstants.java
View File

@@ -17,6 +17,11 @@ public class SecurityConstants
*/
public static final String DETAILS_USERNAME = "username";
/**
* 平台字段
*/
public static final String DETAILS_PLATFORM = "platform";
/**
* 授权信息字段
*/

10
wfc-common/wfc-common-core/src/main/java/org/wfc/common/core/context/SecurityContextHolder.java
View File

@@ -81,6 +81,16 @@ public class SecurityContextHolder
set(SecurityConstants.USER_KEY, userKey);
}
public static String getPlatform()
{
return get(SecurityConstants.DETAILS_PLATFORM);
}
public static void setPlatform(String platform)
{
set(SecurityConstants.DETAILS_PLATFORM, platform);
}
public static String getPermission()
{
return get(SecurityConstants.ROLE_PERMISSION);

23
wfc-common/wfc-common-core/src/main/java/org/wfc/common/core/utils/JwtUtils.java
View File

@@ -109,6 +109,29 @@ public class JwtUtils
return getValue(claims, SecurityConstants.DETAILS_USERNAME);
}
/**
* 根据令牌获取用户所属平台
*
* @param token 令牌
* @return 所属平台
*/
public static String getUserPlatform(String token)
{
Claims claims = parseToken(token);
return getValue(claims, SecurityConstants.DETAILS_PLATFORM);
}
/**
* 根据身份信息获取用户所属平台
*
* @param claims 身份信息
* @return 所属平台
*/
public static String getUserPlatform(Claims claims)
{
return getValue(claims, SecurityConstants.DETAILS_PLATFORM);
}
/**
* 根据身份信息获取键值
*

4
wfc-common/wfc-common-security/src/main/java/org/wfc/common/security/feign/FeignRequestInterceptor.java
View File

@@ -46,6 +46,10 @@ public class FeignRequestInterceptor implements RequestInterceptor
{
requestTemplate.header(SecurityConstants.AUTHORIZATION_HEADER, authentication);
}
String platform = headers.get(SecurityConstants.DETAILS_PLATFORM);
if (StringUtils.isNotEmpty(platform)) {
requestTemplate.header(SecurityConstants.DETAILS_PLATFORM, platform);
}
// 配置客户端IP
requestTemplate.header("X-Forwarded-For", IpUtils.getIpAddr());

1
wfc-common/wfc-common-security/src/main/java/org/wfc/common/security/interceptor/HeaderInterceptor.java
View File

@@ -28,6 +28,7 @@ public class HeaderInterceptor implements AsyncHandlerInterceptor
return true;
}
SecurityContextHolder.setPlatform(ServletUtils.getHeader(request, SecurityConstants.DETAILS_PLATFORM));
SecurityContextHolder.setUserId(ServletUtils.getHeader(request, SecurityConstants.DETAILS_USER_ID));
SecurityContextHolder.setUserName(ServletUtils.getHeader(request, SecurityConstants.DETAILS_USERNAME));
SecurityContextHolder.setUserKey(ServletUtils.getHeader(request, SecurityConstants.USER_KEY));

6
wfc-common/wfc-common-security/src/main/java/org/wfc/common/security/service/TokenService.java
View File

@@ -52,15 +52,18 @@ public class TokenService
String token = IdUtils.fastUUID();
Long userId = 0L;
String userName = "";
String platform = "";
T user = loginUser.getUser();
if (user instanceof SysUser) {
SysUser sysUser = (SysUser) user;
userId = sysUser.getUserId();
userName = sysUser.getUserName();
userName = sysUser.getUserName();
platform = "system";
}else if (user instanceof UUser) {
UUser uUser = (UUser) user;
userId = uUser.getUserId();
userName = uUser.getUserName();
platform = "user";
}
loginUser.setToken(token);
loginUser.setUserid(userId);
@@ -73,6 +76,7 @@ public class TokenService
claimsMap.put(SecurityConstants.USER_KEY, token);
claimsMap.put(SecurityConstants.DETAILS_USER_ID, userId);
claimsMap.put(SecurityConstants.DETAILS_USERNAME, userName);
claimsMap.put(SecurityConstants.DETAILS_PLATFORM, platform);
// 接口返回信息
Map<String, Object> rspMap = new HashMap<String, Object>();