package com.kidgrow.zuul.filter;
|
|
import cn.hutool.core.collection.CollectionUtil;
|
import com.kidgrow.common.constant.CommonConstant;
|
import com.kidgrow.common.constant.SecurityConstants;
|
import com.kidgrow.common.model.ResultBody;
|
import com.kidgrow.common.model.SysOrganization;
|
import com.kidgrow.common.model.SysUser;
|
import com.kidgrow.common.utils.AddrUtil;
|
import com.netflix.zuul.ZuulFilter;
|
import com.netflix.zuul.context.RequestContext;
|
import eu.bitwalker.useragentutils.UserAgent;
|
import lombok.SneakyThrows;
|
import lombok.extern.slf4j.Slf4j;
|
import org.springframework.cloud.netflix.zuul.filters.support.FilterConstants;
|
import org.springframework.security.authentication.AnonymousAuthenticationToken;
|
import org.springframework.security.core.Authentication;
|
import org.springframework.security.core.context.SecurityContextHolder;
|
import org.springframework.security.oauth2.provider.OAuth2Authentication;
|
import org.springframework.stereotype.Component;
|
|
import javax.servlet.http.HttpServletRequest;
|
import java.net.URLEncoder;
|
import java.util.List;
|
|
import static org.springframework.cloud.netflix.zuul.filters.support.FilterConstants.FORM_BODY_WRAPPER_FILTER_ORDER;
|
|
/**
|
* 石家庄喜高科技有限责任公司 版权所有 © Copyright 2020<br>
|
*
|
* @Description: 将认证用户的相关信息放入header中, 后端服务可以直接读取使用<br>
|
* @Project: <br>
|
* @CreateDate: Created in 2020/2/21 10:12 <br>
|
* @Author: <a href="4345453@kidgrow.com">liuke</a>
|
*/
|
@Slf4j
|
@Component
|
public class UserInfoHeaderFilter extends ZuulFilter {
|
@Override
|
public String filterType() {
|
return FilterConstants.PRE_TYPE;
|
}
|
|
@Override
|
public int filterOrder() {
|
return FORM_BODY_WRAPPER_FILTER_ORDER - 1;
|
}
|
|
@Override
|
public boolean shouldFilter() {
|
return true;
|
}
|
|
@SneakyThrows
|
@Override
|
public Object run() {
|
Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
|
if (authentication != null && !(authentication instanceof AnonymousAuthenticationToken)) {
|
Object principal = authentication.getPrincipal();
|
RequestContext ctx = RequestContext.getCurrentContext();
|
HttpServletRequest req = ctx.getRequest();
|
UserAgent userAgent = UserAgent.parseUserAgentString(req.getHeader("User-Agent"));
|
String tenantId="";
|
//客户端模式只返回一个clientId
|
if (principal instanceof SysUser) {
|
SysUser user = (SysUser)authentication.getPrincipal();
|
ctx.addZuulRequestHeader(SecurityConstants.USER_ID_HEADER, String.valueOf(user.getId()));
|
ctx.addZuulRequestHeader(SecurityConstants.USER_HEADER, user.getUsername());
|
ctx.addZuulRequestHeader(SecurityConstants.USER_REAL_NAME, "");//待完善
|
List<SysOrganization> organizations = (List<SysOrganization>)user.getOrganizations();
|
//如果有组织架构
|
if(organizations!=null && organizations.size()==2){
|
if(organizations.get(0)!=null){
|
ctx.addZuulRequestHeader(SecurityConstants.USER_ORG_ID_HEADER,String.valueOf(organizations.get(0).getId()));
|
ctx.addZuulRequestHeader(SecurityConstants.USER_ORG_NAME_HEADER, URLEncoder.encode(organizations.get(0).getOrgName(),"UTF-8"));
|
tenantId=String.valueOf(organizations.get(0).getId());
|
}else{
|
return ResultBody.failed("您的组织,已经被禁用,请联系管理员");
|
}
|
if(organizations.get(1)!=null){
|
ctx.addZuulRequestHeader(SecurityConstants.USER_DEP_ID_HEADER,String.valueOf(organizations.get(1).getId()));
|
ctx.addZuulRequestHeader(SecurityConstants.USER_DEP_NAME_HEADER,URLEncoder.encode(organizations.get(1).getOrgName(),"UTF-8"));
|
}else {
|
return ResultBody.failed("您组织部门或者科室,已经被禁用,请联系管理员");
|
}
|
}
|
// log.error("用户ID写入Header成功,用户ID为:"+String.valueOf(user.getId()));
|
}
|
|
|
OAuth2Authentication oauth2Authentication = (OAuth2Authentication)authentication;
|
String clientId = oauth2Authentication.getOAuth2Request().getClientId();
|
|
//保存租户id,租户id根据业务尽进行替换
|
switch (clientId){
|
case "hospital":
|
tenantId=tenantId;
|
break;
|
case "webApp":
|
tenantId="webApp";
|
break;
|
default:
|
tenantId=clientId;
|
break;
|
}
|
ctx.addZuulRequestHeader(CommonConstant.USER_AGENT_BROWSER, userAgent.getBrowser().toString());
|
ctx.addZuulRequestHeader(CommonConstant.USER_AGENT_SYSTEM, userAgent.getOperatingSystem().toString());
|
ctx.addZuulRequestHeader(CommonConstant.USER_AGENT_IP, AddrUtil.getRemoteAddr(req));
|
|
// UserAgentContextHolder.setUserAgent(AddrUtil.getRemoteAddr(req)+"kidgrow"+userAgent.getBrowser().toString()+"kidgrow"+userAgent.getOperatingSystem().toString());
|
|
ctx.addZuulRequestHeader(SecurityConstants.TENANT_HEADER, tenantId);
|
ctx.addZuulRequestHeader(SecurityConstants.CLIENT_HEADER, clientId);
|
ctx.addZuulRequestHeader(SecurityConstants.ROLE_HEADER, CollectionUtil.join(authentication.getAuthorities(), ","));
|
}
|
return null;
|
}
|
}
|
