ubcs.git - Gitblit

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,113 @@
			/*
			* Copyright (c) 2018-2028, Chill Zhuang All rights reserved.
			*
			* Redistribution and use in source and binary forms, with or without
			* modification, are permitted provided that the following conditions are met:
			*
			* Redistributions of source code must retain the above copyright notice,
			* this list of conditions and the following disclaimer.
			* Redistributions in binary form must reproduce the above copyright
			* notice, this list of conditions and the following disclaimer in the
			* documentation and/or other materials provided with the distribution.
			* Neither the name of the dreamlu.net developer nor the names of its
			* contributors may be used to endorse or promote products derived from
			* this software without specific prior written permission.
			* Author: Chill åºéª (smallchill@163.com)
			*/
			package org.springblade.core.secure.interceptor;

			import lombok.AllArgsConstructor;
			import lombok.extern.slf4j.Slf4j;
			import org.springblade.core.secure.props.BasicSecure;
			import org.springblade.core.secure.provider.HttpMethod;
			import org.springblade.core.secure.provider.ResponseProvider;
			import org.springblade.core.secure.utils.SecureUtil;
			import org.springblade.core.tool.jackson.JsonUtil;
			import org.springblade.core.tool.utils.WebUtil;
			import org.springframework.lang.NonNull;
			import org.springframework.util.AntPathMatcher;
			import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;

			import javax.servlet.http.HttpServletRequest;
			import javax.servlet.http.HttpServletResponse;
			import java.util.List;

			import static org.springblade.core.secure.constant.SecureConstant.BASIC_REALM_HEADER_KEY;
			import static org.springblade.core.secure.constant.SecureConstant.BASIC_REALM_HEADER_VALUE;

			/**
			* åºç¡è®¤è¯æ¦æªå¨æ ¡éª
			*
			* @author Chill
			*/
			@Slf4j
			@AllArgsConstructor
			public class BasicInterceptor extends HandlerInterceptorAdapter {

			/**
			* è¡¨è¾¾å¼å¹é
			*/
			private static final AntPathMatcher ANT_PATH_MATCHER = new AntPathMatcher();

			/**
			* ææéå
			*/
			private final List<BasicSecure> basicSecures;

			@Override
			public boolean preHandle(@NonNull HttpServletRequest request, @NonNull HttpServletResponse response, @NonNull Object handler) {
			boolean check = basicSecures.stream().filter(basicSecure -> checkAuth(request, basicSecure)).findFirst().map(
			authSecure -> checkBasic(authSecure.getUsername(), authSecure.getPassword())
			).orElse(Boolean.TRUE);
			if (!check) {
			log.warn("ææè®¤è¯å¤±è´¥ï¼è¯·æ±æ¥å£ï¼{}ï¼è¯·æ±IPï¼{}ï¼è¯·æ±åæ°ï¼{}", request.getRequestURI(), WebUtil.getIP(request), JsonUtil.toJson(request.getParameterMap()));
			response.setHeader(BASIC_REALM_HEADER_KEY, BASIC_REALM_HEADER_VALUE);
			ResponseProvider.write(response);
			return false;
			}
			return true;
			}

			/**
			* æ£æµææ
			*/
			private boolean checkAuth(HttpServletRequest request, BasicSecure basicSecure) {
			return checkMethod(request, basicSecure.getMethod()) && checkPath(request, basicSecure.getPattern());
			}

			/**
			* æ£æµè¯·æ±æ¹æ³
			*/
			private boolean checkMethod(HttpServletRequest request, HttpMethod method) {
			return method == HttpMethod.ALL \|\| (
			method != null && method == HttpMethod.of(request.getMethod())
			);
			}

			/**
			* æ£æµè·¯å¾å¹é
			*/
			private boolean checkPath(HttpServletRequest request, String pattern) {
			String servletPath = request.getServletPath();
			String pathInfo = request.getPathInfo();
			if (pathInfo != null && pathInfo.length() > 0) {
			servletPath = servletPath + pathInfo;
			}
			return ANT_PATH_MATCHER.match(pattern, servletPath);
			}

			/**
			* æ£æµè¡¨è¾¾å¼
			*/
			private boolean checkBasic(String username, String password) {
			try {
			String[] tokens = SecureUtil.extractAndDecodeHeader();
			return username.equals(tokens[0]) && password.equals(tokens[1]);
			} catch (Exception e) {
			log.warn("ææè®¤è¯å¤±è´¥ï¼éè¯¯ä¿¡æ¯ï¼{}", e.getMessage());
			return false;
			}
			}


			}