兰宝车间质量管理系统
blame | 历史 | 补丁 | 提交 | 提交对比 | 忽略空白
baoshiwei
2025-03-12 f1208474f771a1c233d7425c8ed13fbaa0d521ac 
 ruoyi-common/ruoyi-common-encrypt/src/main/java/org/dromara/common/encrypt/filter/CryptoFilter.java


@@ -11,14 +11,12 @@


import org.dromara.common.encrypt.annotation.ApiEncrypt;


import org.dromara.common.encrypt.properties.ApiDecryptProperties;


import org.springframework.http.HttpMethod;


import org.springframework.http.MediaType;


import org.springframework.web.method.HandlerMethod;


import org.springframework.web.servlet.HandlerExceptionResolver;


import org.springframework.web.servlet.HandlerExecutionChain;


import org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerMapping;




import java.io.IOException;


import java.io.PrintWriter;






/**


@@ -37,40 +35,36 @@


    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {


        HttpServletRequest servletRequest = (HttpServletRequest) request;


        HttpServletResponse servletResponse = (HttpServletResponse) response;




        boolean responseFlag = false;


        // 获取加密注解


        ApiEncrypt apiEncrypt = this.getApiEncryptAnnotation(servletRequest);


        boolean responseFlag = apiEncrypt != null && apiEncrypt.response();


        ServletRequest requestWrapper = null;


        ServletResponse responseWrapper = null;


        EncryptResponseBodyWrapper responseBodyWrapper = null;




        // 是否为 json 请求


        if (StringUtils.startsWithIgnoreCase(request.getContentType(), MediaType.APPLICATION_JSON_VALUE)) {


            // 是否为 put 或者 post 请求


            if (HttpMethod.PUT.matches(servletRequest.getMethod()) || HttpMethod.POST.matches(servletRequest.getMethod())) {


                // 是否存在加密标头


                String headerValue = servletRequest.getHeader(properties.getHeaderFlag());


                // 获取加密注解


                ApiEncrypt apiEncrypt = this.getApiEncryptAnnotation(servletRequest);


                responseFlag = apiEncrypt != null && apiEncrypt.response();


                if (StringUtils.isNotBlank(headerValue)) {


                    // 请求解密


                    requestWrapper = new DecryptRequestBodyWrapper(servletRequest, properties.getPrivateKey(), properties.getHeaderFlag());


                } else {


                    // 是否有注解,有就报错,没有放行


                    if (ObjectUtil.isNotNull(apiEncrypt)) {


                        HandlerExceptionResolver exceptionResolver = SpringUtils.getBean("handlerExceptionResolver", HandlerExceptionResolver.class);


                        exceptionResolver.resolveException(


                            servletRequest, servletResponse, null,


                            new ServiceException("没有访问权限,请联系管理员授权", HttpStatus.FORBIDDEN));


                        return;


                    }


                }


                // 判断是否响应加密


                if (responseFlag) {


                    responseBodyWrapper = new EncryptResponseBodyWrapper(servletResponse);


                    responseWrapper = responseBodyWrapper;


        // 是否为 put 或者 post 请求


        if (HttpMethod.PUT.matches(servletRequest.getMethod()) || HttpMethod.POST.matches(servletRequest.getMethod())) {


            // 是否存在加密标头


            String headerValue = servletRequest.getHeader(properties.getHeaderFlag());


            if (StringUtils.isNotBlank(headerValue)) {


                // 请求解密


                requestWrapper = new DecryptRequestBodyWrapper(servletRequest, properties.getPrivateKey(), properties.getHeaderFlag());


            } else {


                // 是否有注解,有就报错,没有放行


                if (ObjectUtil.isNotNull(apiEncrypt)) {


                    HandlerExceptionResolver exceptionResolver = SpringUtils.getBean("handlerExceptionResolver", HandlerExceptionResolver.class);


                    exceptionResolver.resolveException(


                        servletRequest, servletResponse, null,


                        new ServiceException("没有访问权限,请联系管理员授权", HttpStatus.FORBIDDEN));


                    return;


                }


            }


        }




        // 判断是否响应加密


        if (responseFlag) {


            responseBodyWrapper = new EncryptResponseBodyWrapper(servletResponse);


            responseWrapper = responseBodyWrapper;


        }




        chain.doFilter(


@@ -105,7 +99,7 @@


                }


            }


        } catch (Exception e) {


            throw new RuntimeException(e);


            return null;


        }


        return null;


    }