forked from kidgrow-microservices-platform
blame | history | raw
zhaoxiaohao
2021-03-18 deb1110ca94cb0ac7bcdc51b4e8dd00407792a94 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91

package com.kidgrow.zuul.filter;


 


import cn.hutool.core.collection.ConcurrentHashSet;


import com.kidgrow.common.exception.OpenSignatureException;


import com.kidgrow.common.utils.SignatureUtils;


import com.kidgrow.common.utils.WebUtils;


import com.kidgrow.zuul.config.ApiProperties;


import com.kidgrow.zuul.exception.JsonSignatureDeniedHandler;


import com.kidgrow.zuul.service.feign.BaseAppServiceClient;


import lombok.extern.slf4j.Slf4j;


import org.springframework.util.AntPathMatcher;


import org.springframework.web.filter.OncePerRequestFilter;


 


import javax.servlet.FilterChain;


import javax.servlet.ServletException;


import javax.servlet.http.HttpServletRequest;


import javax.servlet.http.HttpServletResponse;


import java.io.IOException;


import java.util.Map;


import java.util.Set;


 


/**


 * 石家庄喜高科技有限责任公司 版权所有 © Copyright 2020<br>


 *


 * @Description: 数字验签前置过滤器<br>


 * @Project: <br>


 * @CreateDate: Created in 2020/2/4 14:49 <br>


 * @Author: <a href="4345453@kidgrow.com">liuke</a>


 */


@Slf4j


public class PreSignatureFilter  extends OncePerRequestFilter {


    private JsonSignatureDeniedHandler signatureDeniedHandler;


    private BaseAppServiceClient baseAppServiceClient;


    private ApiProperties apiProperties;


    private static final AntPathMatcher pathMatch = new AntPathMatcher();


    private Set<String> signIgnores = new ConcurrentHashSet<>();


 


//    public PreSignatureFilter(BaseAppServiceClient baseAppServiceClient, ApiProperties apiProperties, JsonSignatureDeniedHandler jsonSignatureDeniedHandler) {


//        this.baseAppServiceClient = baseAppServiceClient;


//        this.apiProperties = apiProperties;


//        this.signatureDeniedHandler =  jsonSignatureDeniedHandler;


//        // 默认忽略签名


//        signIgnores.add("/");


//        signIgnores.add("/error");


//        signIgnores.add("/favicon.ico");


//        if (apiProperties != null) {


//            if (apiProperties.getSignIgnores() != null) {


//                signIgnores.addAll(apiProperties.getSignIgnores());


//            }


//            if (apiProperties.getApiDebug()) {


//                signIgnores.add("/**/v2/api-docs/**");


//                signIgnores.add("/**/swagger-resources/**");


//                signIgnores.add("/webjars/**");


//                signIgnores.add("/doc.html");


//                signIgnores.add("/swagger-ui.html");


//            }


//        }


//    }


 


    @Override


    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {


        String requestPath = request.getRequestURI();


        System.out.println(request.getHeaderNames());


        //if (apiProperties.getCheckSign() && !notSign(requestPath)) {


 


            Map params = WebUtils.getParameterMap(request);


            String appid="";


            //params.get("app_id").toString();


 


 


            if (!SignatureUtils.validateSign(params,appid)) {


                    throw new OpenSignatureException("签名验证失败!");


            }


 


 


        //}


        filterChain.doFilter(request, response);


    }


 


    protected boolean notSign(String requestPath) {


        if(apiProperties.getSignIgnores()==null){


            return false;


        }


        for (String path : signIgnores) {


            if (pathMatch.match(path, requestPath)) {


                return true;


            }


        }


        return false;


    }


}