From 90df5aeb79c78b77cc5a7ce143116ad147103c57 Mon Sep 17 00:00:00 2001
From: houzhongjian <houzhongyi@126.com>
Date: 星期四, 10 四月 2025 14:15:57 +0800
Subject: [PATCH] 增加ServerInfoConfiguration配置
---
iailab-framework/iailab-common-security/src/main/java/com/iailab/framework/security/core/util/SecurityFrameworkUtils.java | 142 +++++++++++++++++++++++++++++++++++++++++++++++
1 files changed, 142 insertions(+), 0 deletions(-)
diff --git a/iailab-framework/iailab-common-security/src/main/java/com/iailab/framework/security/core/util/SecurityFrameworkUtils.java b/iailab-framework/iailab-common-security/src/main/java/com/iailab/framework/security/core/util/SecurityFrameworkUtils.java
new file mode 100644
index 0000000..c940895
--- /dev/null
+++ b/iailab-framework/iailab-common-security/src/main/java/com/iailab/framework/security/core/util/SecurityFrameworkUtils.java
@@ -0,0 +1,142 @@
+package com.iailab.framework.security.core.util;
+
+import cn.hutool.core.map.MapUtil;
+import cn.hutool.core.util.StrUtil;
+import com.iailab.framework.security.core.LoginUser;
+import com.iailab.framework.web.core.util.WebFrameworkUtils;
+import org.springframework.lang.Nullable;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContext;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
+import org.springframework.util.StringUtils;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.Collections;
+
+/**
+ * 安全服务工具类
+ *
+ * @author iailab
+ */
+public class SecurityFrameworkUtils {
+
+ /**
+ * HEADER 认证头 value 的前缀
+ */
+ public static final String AUTHORIZATION_BEARER = "Bearer";
+
+ public static final String LOGIN_USER_HEADER = "login-user";
+
+ private SecurityFrameworkUtils() {}
+
+ /**
+ * 从请求中,获得认证 Token
+ *
+ * @param request 请求
+ * @param headerName 认证 Token 对应的 Header 名字
+ * @param parameterName 认证 Token 对应的 Parameter 名字
+ * @return 认证 Token
+ */
+ public static String obtainAuthorization(HttpServletRequest request,
+ String headerName, String parameterName) {
+ // 1. 获得 Token。优先级:Header > Parameter
+ String token = request.getHeader(headerName);
+ if (StrUtil.isEmpty(token)) {
+ token = request.getParameter(parameterName);
+ }
+ if (!StringUtils.hasText(token)) {
+ return null;
+ }
+ // 2. 去除 Token 中带的 Bearer
+ int index = token.indexOf(AUTHORIZATION_BEARER + " ");
+ return index >= 0 ? token.substring(index + 7).trim() : token;
+ }
+
+ /**
+ * 获得当前认证信息
+ *
+ * @return 认证信息
+ */
+ public static Authentication getAuthentication() {
+ SecurityContext context = SecurityContextHolder.getContext();
+ if (context == null) {
+ return null;
+ }
+ return context.getAuthentication();
+ }
+
+ /**
+ * 获取当前用户
+ *
+ * @return 当前用户
+ */
+ @Nullable
+ public static LoginUser getLoginUser() {
+ Authentication authentication = getAuthentication();
+ if (authentication == null) {
+ return null;
+ }
+ return authentication.getPrincipal() instanceof LoginUser ? (LoginUser) authentication.getPrincipal() : null;
+ }
+
+ /**
+ * 获得当前用户的编号,从上下文中
+ *
+ * @return 用户编号
+ */
+ @Nullable
+ public static Long getLoginUserId() {
+ LoginUser loginUser = getLoginUser();
+ return loginUser != null ? loginUser.getId() : null;
+ }
+
+ /**
+ * 获得当前用户的昵称,从上下文中
+ *
+ * @return 昵称
+ */
+ @Nullable
+ public static String getLoginUserNickname() {
+ LoginUser loginUser = getLoginUser();
+ return loginUser != null ? MapUtil.getStr(loginUser.getInfo(), LoginUser.INFO_KEY_NICKNAME) : null;
+ }
+
+ /**
+ * 获得当前用户的部门编号,从上下文中
+ *
+ * @return 部门编号
+ */
+ @Nullable
+ public static Long getLoginUserDeptId() {
+ LoginUser loginUser = getLoginUser();
+ return loginUser != null ? MapUtil.getLong(loginUser.getInfo(), LoginUser.INFO_KEY_DEPT_ID) : null;
+ }
+
+ /**
+ * 设置当前用户
+ *
+ * @param loginUser 登录用户
+ * @param request 请求
+ */
+ public static void setLoginUser(LoginUser loginUser, HttpServletRequest request) {
+ // 创建 Authentication,并设置到上下文
+ Authentication authentication = buildAuthentication(loginUser, request);
+ SecurityContextHolder.getContext().setAuthentication(authentication);
+
+ // 额外设置到 request 中,用于 ApiAccessLogFilter 可以获取到用户编号;
+ // 原因是,Spring Security 的 Filter 在 ApiAccessLogFilter 后面,在它记录访问日志时,线上上下文已经没有用户编号等信息
+ WebFrameworkUtils.setLoginUserId(request, loginUser.getId());
+ WebFrameworkUtils.setLoginUserType(request, loginUser.getUserType());
+ }
+
+ private static Authentication buildAuthentication(LoginUser loginUser, HttpServletRequest request) {
+ // 创建 UsernamePasswordAuthenticationToken 对象
+ UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(
+ loginUser, null, Collections.emptyList());
+ authenticationToken.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
+ return authenticationToken;
+ }
+
+}
--
Gitblit v1.9.3