java/DolphinEnglish.git

			@@ -1,14 +1,5 @@
			package com.ruoyi.gateway.filter;

			import org.slf4j.Logger;
			import org.slf4j.LoggerFactory;
			import org.springframework.beans.factory.annotation.Autowired;
			import org.springframework.cloud.gateway.filter.GatewayFilterChain;
			import org.springframework.cloud.gateway.filter.GlobalFilter;
			import org.springframework.core.Ordered;
			import org.springframework.http.server.reactive.ServerHttpRequest;
			import org.springframework.stereotype.Component;
			import org.springframework.web.server.ServerWebExchange;
			import com.ruoyi.common.core.constant.CacheConstants;
			import com.ruoyi.common.core.constant.HttpStatus;
			import com.ruoyi.common.core.constant.SecurityConstants;
			@@ -19,16 +10,24 @@
			import com.ruoyi.common.redis.service.RedisService;
			import com.ruoyi.gateway.config.properties.IgnoreWhiteProperties;
			import io.jsonwebtoken.Claims;
			import org.slf4j.Logger;
			import org.slf4j.LoggerFactory;
			import org.springframework.beans.factory.annotation.Autowired;
			import org.springframework.cloud.gateway.filter.GatewayFilterChain;
			import org.springframework.cloud.gateway.filter.GlobalFilter;
			import org.springframework.core.Ordered;
			import org.springframework.http.server.reactive.ServerHttpRequest;
			import org.springframework.stereotype.Component;
			import org.springframework.web.server.ServerWebExchange;
			import reactor.core.publisher.Mono;

			/**
			* 网关鉴权
			*
			*
			* @author ruoyi
			*/
			@Component
			public class AuthFilter implements GlobalFilter, Ordered
			{
			public class AuthFilter implements GlobalFilter, Ordered {
			private static final Logger log = LoggerFactory.getLogger(AuthFilter.class);

			// 排除过滤的 uri 地址，nacos自行添加
			@@ -40,42 +39,49 @@


			@Override
			public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain)
			{
			public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain) {
			ServerHttpRequest request = exchange.getRequest();
			ServerHttpRequest.Builder mutate = request.mutate();

			String url = request.getURI().getPath();
			String trim = url.trim();
			// 跳过不需要验证的路径
			if (StringUtils.matches(url, ignoreWhite.getWhites()))
			{
			if (StringUtils.matches(trim, ignoreWhite.getWhites())) {
			return chain.filter(exchange);
			}
			String token = getToken(request);
			if (StringUtils.isEmpty(token))
			{
			if (StringUtils.isEmpty(token)) {
			return unauthorizedResponse(exchange, "令牌不能为空");
			}
			Claims claims = JwtUtils.parseToken(token);
			if (claims == null)
			{
			if (claims == null) {
			return unauthorizedResponse(exchange, "令牌已过期或验证不正确！");
			}
			String userkey = JwtUtils.getUserKey(claims);
			String userkey1 = JwtUtils.getUserKey1(claims);
			String userkey2 = JwtUtils.getUserKey2(claims);
			boolean islogin = redisService.hasKey(getTokenKey(userkey));
			if (!islogin)
			{
			boolean islogin1 = redisService.hasKey(getTokenKey(userkey1));
			boolean islogin2 = redisService.hasKey(getTokenKeyStudy(userkey2));
			if (!islogin && !islogin1 && !islogin2) {
			return unauthorizedResponse(exchange, "登录状态已过期");
			}
			String userid = JwtUtils.getUserId(claims);
			String username = JwtUtils.getUserName(claims);
			if (StringUtils.isEmpty(userid) \|\| StringUtils.isEmpty(username))
			{
			if (StringUtils.isEmpty(userid) \|\| StringUtils.isEmpty(username)) {
			return unauthorizedResponse(exchange, "令牌验证失败");
			}

			if (org.springframework.util.StringUtils.hasLength(userkey)) {
			addHeader(mutate, SecurityConstants.USER_KEY, userkey);
			}
			if (org.springframework.util.StringUtils.hasLength(userkey1)) {
			addHeader(mutate, SecurityConstants.USER_PARENT_KEY, userkey1);
			}
			if (org.springframework.util.StringUtils.hasLength(userkey2)) {
			addHeader(mutate, SecurityConstants.USER_STUDY_KEY, userkey2);
			}
			// 设置用户信息到请求
			addHeader(mutate, SecurityConstants.USER_KEY, userkey);
			addHeader(mutate, SecurityConstants.DETAILS_USER_ID, userid);
			addHeader(mutate, SecurityConstants.DETAILS_USERNAME, username);
			// 内部请求来源参数清除
			@@ -83,10 +89,8 @@
			return chain.filter(exchange.mutate().request(mutate.build()).build());
			}

			private void addHeader(ServerHttpRequest.Builder mutate, String name, Object value)
			{
			if (value == null)
			{
			private void addHeader(ServerHttpRequest.Builder mutate, String name, Object value) {
			if (value == null) {
			return;
			}
			String valueStr = value.toString();
			@@ -94,13 +98,11 @@
			mutate.header(name, valueEncode);
			}

			private void removeHeader(ServerHttpRequest.Builder mutate, String name)
			{
			private void removeHeader(ServerHttpRequest.Builder mutate, String name) {
			mutate.headers(httpHeaders -> httpHeaders.remove(name)).build();
			}

			private Mono<Void> unauthorizedResponse(ServerWebExchange exchange, String msg)
			{
			private Mono<Void> unauthorizedResponse(ServerWebExchange exchange, String msg) {
			log.error("[鉴权异常处理]请求路径:{}", exchange.getRequest().getPath());
			return ServletUtils.webFluxResponseWriter(exchange.getResponse(), msg, HttpStatus.UNAUTHORIZED);
			}
			@@ -108,28 +110,31 @@
			/**
			* 获取缓存key
			*/
			private String getTokenKey(String token)
			{
			private String getTokenKey(String token) {
			return CacheConstants.LOGIN_TOKEN_KEY + token;
			}

			/**
			* 获取学习端缓存key
			*/
			private String getTokenKeyStudy(String token) {
			return CacheConstants.LOGIN_TOKEN_KEY_STUDY + token;
			}

			/**
			* 获取请求token
			*/
			private String getToken(ServerHttpRequest request)
			{
			private String getToken(ServerHttpRequest request) {
			String token = request.getHeaders().getFirst(TokenConstants.AUTHENTICATION);
			// 如果前端设置了令牌前缀，则裁剪掉前缀
			if (StringUtils.isNotEmpty(token) && token.startsWith(TokenConstants.PREFIX))
			{
			if (StringUtils.isNotEmpty(token) && token.startsWith(TokenConstants.PREFIX)) {
			token = token.replaceFirst(TokenConstants.PREFIX, StringUtils.EMPTY);
			}
			return token;
			}

			@Override
			public int getOrder()
			{
			public int getOrder() {
			return -200;
			}
			}