lbqms.git - Gitblit

Merge branch 'master' of https://gitee.com/y_project/RuoYi-Vue into dev

疯狂的狮子li

2021-12-15 b3c3afc2b4af331bbd6ac60f16be9fd6563f7ca0

Merge branch 'master' of https://gitee.com/y_project/RuoYi-Vue into dev

 Conflicts:
	pom.xml
	ruoyi-common/src/main/java/com/ruoyi/common/core/domain/entity/SysUser.java
	ruoyi-system/src/main/java/com/ruoyi/system/domain/SysNotice.java
	ruoyi-system/src/main/java/com/ruoyi/system/service/impl/SysUserServiceImpl.java

已修改2个文件

已添加3个文件

	ruoyi-common/src/main/java/com/ruoyi/common/core/domain/entity/SysUser.java	9 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	ruoyi-common/src/main/java/com/ruoyi/common/utils/bean/BeanValidators.java	24 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	ruoyi-common/src/main/java/com/ruoyi/common/xss/Xss.java	27 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	ruoyi-common/src/main/java/com/ruoyi/common/xss/XssValidator.java	29 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	ruoyi-system/src/main/java/com/ruoyi/system/domain/SysNotice.java	3 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 ruoyi-common/src/main/java/com/ruoyi/common/core/domain/entity/SysUser.java

@@ -4,6 +4,7 @@
import com.fasterxml.jackson.annotation.JsonIgnore;
import com.fasterxml.jackson.annotation.JsonProperty;
import com.ruoyi.common.core.domain.BaseEntity;
import com.ruoyi.common.xss.Xss;
import io.swagger.annotations.ApiModel;
import io.swagger.annotations.ApiModelProperty;
import lombok.Data;
@@ -48,15 +49,17 @@
     * ç¨æ·è´¦å·
     */
    @ApiModelProperty(value = "ç¨æ·è´¦å·")
    @NotBlank(message = "ç¨æ·è´¦å·ä¸è½ä¸ºç©º")
    @Xss(message = "ç¨æ·è´¦å·ä¸è½åå«èæ¬åç¬¦")
    @NotBlank(message = "ç¨æ·è´¦å·ä¸è½ä¸ºç©º")
    @Size(min = 0, max = 30, message = "ç¨æ·è´¦å·é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
    private String userName;

    /**
     * ç¨æ·æµç§°
     */
    @ApiModelProperty(value = "ç¨æ·æµç§°")
    @Size(min = 0, max = 30, message = "ç¨æ·æµç§°é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
    @ApiModelProperty(value = "ç¨æ·æµç§°")
    @Xss(message = "ç¨æ·æµç§°ä¸è½åå«èæ¬åç¬¦")
    @Size(min = 0, max = 30, message = "ç¨æ·æµç§°é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
    private String nickName;

    /**

 ruoyi-common/src/main/java/com/ruoyi/common/utils/bean/BeanValidators.java

¶Ô±ÈÐÂÎÄ¼þ
@@ -0,0 +1,24 @@
package com.ruoyi.common.utils.bean;



import java.util.Set;

import javax.validation.ConstraintViolation;

import javax.validation.ConstraintViolationException;

import javax.validation.Validator;



/**

 * beanå¯¹è±¡å±æ§éªè¯

 * 
 * @author ruoyi

 */

public class BeanValidators

{

    public static void validateWithException(Validator validator, Object object, Class<?>... groups)

            throws ConstraintViolationException

    {

        Set<ConstraintViolation<Object>> constraintViolations = validator.validate(object, groups);

        if (!constraintViolations.isEmpty())

        {

            throw new ConstraintViolationException(constraintViolations);

        }

    }

}


 ruoyi-common/src/main/java/com/ruoyi/common/xss/Xss.java

¶Ô±ÈÐÂÎÄ¼þ
@@ -0,0 +1,27 @@
package com.ruoyi.common.xss;



import javax.validation.Constraint;

import javax.validation.Payload;

import java.lang.annotation.ElementType;

import java.lang.annotation.Retention;

import java.lang.annotation.RetentionPolicy;

import java.lang.annotation.Target;



/**

 * èªå®ä¹xssæ ¡éªæ³¨è§£

 * 
 * @author ruoyi

 */

@Retention(RetentionPolicy.RUNTIME)

@Target(value = { ElementType.METHOD, ElementType.FIELD, ElementType.CONSTRUCTOR, ElementType.PARAMETER })

@Constraint(validatedBy = { XssValidator.class })

public @interface Xss

{

    String message()



    default "ä¸åè®¸ä»»ä½èæ¬è¿è¡";



    Class<?>[] groups() default {};



    Class<? extends Payload>[] payload() default {};

}


 ruoyi-common/src/main/java/com/ruoyi/common/xss/XssValidator.java

¶Ô±ÈÐÂÎÄ¼þ
@@ -0,0 +1,29 @@
package com.ruoyi.common.xss;



import javax.validation.ConstraintValidator;

import javax.validation.ConstraintValidatorContext;

import java.util.regex.Matcher;

import java.util.regex.Pattern;



/**

 * èªå®ä¹xssæ ¡éªæ³¨è§£å®ç°

 * 
 * @author ruoyi

 */

public class XssValidator implements ConstraintValidator<Xss, String>

{

    private final String HTML_PATTERN = "<(\\S*?)[^>]*>.*?|<.*? />";



    @Override

    public boolean isValid(String value, ConstraintValidatorContext constraintValidatorContext)

    {

        return !containsHtml(value);

    }



    public boolean containsHtml(String value)

    {

        Pattern pattern = Pattern.compile(HTML_PATTERN);

        Matcher matcher = pattern.matcher(value);

        return matcher.matches();

    }

}

 ruoyi-system/src/main/java/com/ruoyi/system/domain/SysNotice.java

@@ -3,6 +3,7 @@
import com.baomidou.mybatisplus.annotation.TableId;
import com.baomidou.mybatisplus.annotation.TableName;
import com.ruoyi.common.core.domain.BaseEntity;
import com.ruoyi.common.xss.Xss;
import io.swagger.annotations.ApiModelProperty;
import lombok.Data;
import lombok.EqualsAndHashCode;
@@ -10,6 +11,7 @@

import javax.validation.constraints.NotBlank;
import javax.validation.constraints.Size;


/**
 * éç¥å¬åè¡¨ sys_notice
@@ -32,6 +34,7 @@
    /**
     * å¬åæ é¢
     */
    @Xss(message = "å¬åæ é¢ä¸è½åå«èæ¬åç¬¦")
    @ApiModelProperty(value = "å¬åæ é¢")
    @NotBlank(message = "å¬åæ é¢ä¸è½ä¸ºç©º")
    @Size(min = 0, max = 50, message = "å¬åæ é¢ä¸è½è¶è¿50ä¸ªåç¬¦")

			@@ -4,6 +4,7 @@
			import com.fasterxml.jackson.annotation.JsonIgnore;
			import com.fasterxml.jackson.annotation.JsonProperty;
			import com.ruoyi.common.core.domain.BaseEntity;
			import com.ruoyi.common.xss.Xss;
			import io.swagger.annotations.ApiModel;
			import io.swagger.annotations.ApiModelProperty;
			import lombok.Data;
			@@ -48,15 +49,17 @@
			* ç¨æ·è´¦å·
			*/
			@ApiModelProperty(value = "ç¨æ·è´¦å·")
			@NotBlank(message = "ç¨æ·è´¦å·ä¸è½ä¸ºç©º")
			@Xss(message = "ç¨æ·è´¦å·ä¸è½åå«èæ¬åç¬¦")
			@NotBlank(message = "ç¨æ·è´¦å·ä¸è½ä¸ºç©º")
			@Size(min = 0, max = 30, message = "ç¨æ·è´¦å·é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
			private String userName;

			/**
			* ç¨æ·æµç§°
			*/
			@ApiModelProperty(value = "ç¨æ·æµç§°")
			@Size(min = 0, max = 30, message = "ç¨æ·æµç§°é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
			@ApiModelProperty(value = "ç¨æ·æµç§°")
			@Xss(message = "ç¨æ·æµç§°ä¸è½åå«èæ¬åç¬¦")
			@Size(min = 0, max = 30, message = "ç¨æ·æµç§°é¿åº¦ä¸è½è¶è¿30ä¸ªåç¬¦")
			private String nickName;

			/**

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,24 @@
			package com.ruoyi.common.utils.bean;

			import java.util.Set;
			import javax.validation.ConstraintViolation;
			import javax.validation.ConstraintViolationException;
			import javax.validation.Validator;

			/**
			* beanå¯¹è±¡å±æ§éªè¯
			*
			* @author ruoyi
			*/
			public class BeanValidators
			{
			public static void validateWithException(Validator validator, Object object, Class<?>... groups)
			throws ConstraintViolationException
			{
			Set<ConstraintViolation<Object>> constraintViolations = validator.validate(object, groups);
			if (!constraintViolations.isEmpty())
			{
			throw new ConstraintViolationException(constraintViolations);
			}
			}
			}

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,27 @@
			package com.ruoyi.common.xss;

			import javax.validation.Constraint;
			import javax.validation.Payload;
			import java.lang.annotation.ElementType;
			import java.lang.annotation.Retention;
			import java.lang.annotation.RetentionPolicy;
			import java.lang.annotation.Target;

			/**
			* èªå®ä¹xssæ ¡éªæ³¨è§£
			*
			* @author ruoyi
			*/
			@Retention(RetentionPolicy.RUNTIME)
			@Target(value = { ElementType.METHOD, ElementType.FIELD, ElementType.CONSTRUCTOR, ElementType.PARAMETER })
			@Constraint(validatedBy = { XssValidator.class })
			public @interface Xss
			{
			String message()

			default "ä¸åè®¸ä»»ä½èæ¬è¿è¡";

			Class<?>[] groups() default {};

			Class<? extends Payload>[] payload() default {};
			}

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,29 @@
			package com.ruoyi.common.xss;

			import javax.validation.ConstraintValidator;
			import javax.validation.ConstraintValidatorContext;
			import java.util.regex.Matcher;
			import java.util.regex.Pattern;

			/**
			* èªå®ä¹xssæ ¡éªæ³¨è§£å®ç°
			*
			* @author ruoyi
			*/
			public class XssValidator implements ConstraintValidator<Xss, String>
			{
			private final String HTML_PATTERN = "<(\\S?)[^>]>.?\|<.? />";

			@Override
			public boolean isValid(String value, ConstraintValidatorContext constraintValidatorContext)
			{
			return !containsHtml(value);
			}

			public boolean containsHtml(String value)
			{
			Pattern pattern = Pattern.compile(HTML_PATTERN);
			Matcher matcher = pattern.matcher(value);
			return matcher.matches();
			}
			}

			@@ -3,6 +3,7 @@
			import com.baomidou.mybatisplus.annotation.TableId;
			import com.baomidou.mybatisplus.annotation.TableName;
			import com.ruoyi.common.core.domain.BaseEntity;
			import com.ruoyi.common.xss.Xss;
			import io.swagger.annotations.ApiModelProperty;
			import lombok.Data;
			import lombok.EqualsAndHashCode;
			@@ -10,6 +11,7 @@

			import javax.validation.constraints.NotBlank;
			import javax.validation.constraints.Size;


			/**
			* éç¥å¬åè¡¨ sys_notice
			@@ -32,6 +34,7 @@
			/**
			* å¬åæ é¢
			*/
			@Xss(message = "å¬åæ é¢ä¸è½åå«èæ¬åç¬¦")
			@ApiModelProperty(value = "å¬åæ é¢")
			@NotBlank(message = "å¬åæ é¢ä¸è½ä¸ºç©º")
			@Size(min = 0, max = 50, message = "å¬åæ é¢ä¸è½è¶è¿50ä¸ªåç¬¦")