package org.dromara.common.encrypt.config; import cn.hutool.core.collection.CollectionUtil; import com.baomidou.mybatisplus.autoconfigure.MybatisPlusAutoConfiguration; import com.baomidou.mybatisplus.autoconfigure.MybatisPlusProperties; import lombok.extern.slf4j.Slf4j; import org.apache.ibatis.io.Resources; import org.dromara.common.encrypt.annotation.EncryptField; import org.dromara.common.encrypt.core.EncryptorManager; import org.dromara.common.encrypt.interceptor.MybatisDecryptInterceptor; import org.dromara.common.encrypt.interceptor.MybatisEncryptInterceptor; import org.dromara.common.encrypt.properties.EncryptorProperties; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.boot.autoconfigure.AutoConfiguration; import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty; import org.springframework.boot.context.properties.EnableConfigurationProperties; import org.springframework.context.ConfigurableApplicationContext; import org.springframework.context.annotation.Bean; import org.springframework.core.io.Resource; import org.springframework.core.io.support.PathMatchingResourcePatternResolver; import org.springframework.core.io.support.ResourcePatternResolver; import org.springframework.core.type.ClassMetadata; import org.springframework.core.type.classreading.CachingMetadataReaderFactory; import org.springframework.util.ClassUtils; import java.lang.reflect.Field; import java.util.*; import java.util.stream.Collectors; import static org.springframework.util.StringUtils.tokenizeToStringArray; /** * 加解密配置 * * @author 老马 * @version 4.6.0 */ @AutoConfiguration(after = MybatisPlusAutoConfiguration.class) @EnableConfigurationProperties(EncryptorProperties.class) @ConditionalOnProperty(value = "mybatis-encryptor.enable", havingValue = "true") @Slf4j public class EncryptorAutoConfiguration { @Autowired private EncryptorProperties properties; @Autowired private MybatisPlusProperties mybatisPlusProperties; @Bean public EncryptorManager encryptorManager() { Map, Set> fieldCache = scanEncryptClasses(mybatisPlusProperties.getTypeAliasesPackage()); return new EncryptorManager(fieldCache); } // 通过typeAliasesPackage设置的扫描包,来确定哪些实体类进行缓存 private Map, Set> scanEncryptClasses(String typeAliasesPackage) { Map, Set> fieldCache = new HashMap<>(); try { String[] packagePatternArray = tokenizeToStringArray(typeAliasesPackage, ConfigurableApplicationContext.CONFIG_LOCATION_DELIMITERS); for (String packagePattern : packagePatternArray) { Resource[] resources = new PathMatchingResourcePatternResolver().getResources(ResourcePatternResolver.CLASSPATH_ALL_URL_PREFIX + ClassUtils.convertClassNameToResourcePath(packagePattern) + "/**/*.class"); for (Resource resource : resources) { ClassMetadata classMetadata = new CachingMetadataReaderFactory().getMetadataReader(resource).getClassMetadata(); Class clazz = Resources.classForName(classMetadata.getClassName()); Set encryptFieldSet = getEncryptFieldSetFromClazz(clazz); if(CollectionUtil.isNotEmpty(encryptFieldSet)) { fieldCache.put(clazz, encryptFieldSet); } } } }catch (Exception e) { log.error("初始化数据安全缓存时出错:{}", e.getMessage()); } return fieldCache; } // 获得一个类的加密字段集合 private Set getEncryptFieldSetFromClazz(Class clazz) { Set fieldSet = new HashSet<>(); // 判断clazz如果是接口,内部类,匿名类就直接返回 if (clazz.isInterface() || clazz.isMemberClass() || clazz.isAnonymousClass()) { return fieldSet; } while (clazz != null) { Field[] fields = clazz.getDeclaredFields(); fieldSet.addAll(Arrays.asList(fields)); clazz = clazz.getSuperclass(); } fieldSet = fieldSet.stream().filter(field -> field.isAnnotationPresent(EncryptField.class) && field.getType() == String.class) .collect(Collectors.toSet()); for (Field field : fieldSet) { field.setAccessible(true); } return fieldSet; } @Bean public MybatisEncryptInterceptor mybatisEncryptInterceptor(EncryptorManager encryptorManager) { return new MybatisEncryptInterceptor(encryptorManager, properties); } @Bean public MybatisDecryptInterceptor mybatisDecryptInterceptor(EncryptorManager encryptorManager) { return new MybatisDecryptInterceptor(encryptorManager, properties); } }