feat:添加网关鉴权、消息推送功能

Author: EPQSky

world-gateway/pom.xml

@@ -16,6 +16,11 @@
     <description>epq-world 网关</description>
 
     <dependencies>
+        <dependency>
+            <groupId>com.auth0</groupId>
+            <artifactId>java-jwt</artifactId>
+            <version>3.16.0</version>
+        </dependency>
         <dependency>
             <groupId>io.springfox</groupId>
             <artifactId>springfox-boot-starter</artifactId>

world-gateway/src/main/java/icu/epq/gateway/GatewayApplication.java

@@ -3,6 +3,7 @@
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
+import springfox.documentation.swagger2.annotations.EnableSwagger2;
 
 /**
  * gateway 启动器

world-gateway/src/main/java/icu/epq/gateway/filter/AuthFilter.java

@@ -0,0 +1,71 @@
+package icu.epq.gateway.filter;
+
+import com.auth0.jwt.interfaces.DecodedJWT;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import icu.epq.gateway.provider.ResponseProvider;
+import icu.epq.gateway.util.JwtUtil;
+import lombok.AllArgsConstructor;
+import org.springframework.cloud.gateway.filter.GatewayFilterChain;
+import org.springframework.cloud.gateway.filter.GlobalFilter;
+import org.springframework.core.Ordered;
+import org.springframework.core.io.buffer.DataBuffer;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.server.reactive.ServerHttpResponse;
+import org.springframework.stereotype.Component;
+import org.springframework.web.server.ServerWebExchange;
+import reactor.core.publisher.Flux;
+import reactor.core.publisher.Mono;
+
+import java.nio.charset.StandardCharsets;
+import java.util.Date;
+
+/**
+ * token认证过滤器
+ *
+ * @author epqsky
+ */
+@Component
+@AllArgsConstructor
+public class AuthFilter implements GlobalFilter, Ordered {
+
+    private final ObjectMapper objectMapper;
+
+    @Override
+    public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain) {
+        String path = exchange.getRequest().getURI().getPath();
+        if (path.startsWith("/world-auth")) {
+            return chain.filter(exchange);
+        }
+
+        ServerHttpResponse response = exchange.getResponse();
+        String authorization = exchange.getRequest().getHeaders().getFirst("Authorization");
+        DecodedJWT jwt = JwtUtil.parseJwtToken(authorization);
+        if (jwt == null) {
+            return unAuth(response, "token异常");
+        }
+        if (jwt.getExpiresAt().compareTo(new Date()) < 0) {
+            return unAuth(response, "token过期");
+        }
+
+        return chain.filter(exchange);
+    }
+
+    @Override
+    public int getOrder() {
+        return -100;
+    }
+
+    private Mono<Void> unAuth(ServerHttpResponse resp, String msg) {
+        resp.setStatusCode(HttpStatus.UNAUTHORIZED);
+        resp.getHeaders().add("Content-Type", "application/json;charset=UTF-8");
+        String result = "";
+        try {
+            result = objectMapper.writeValueAsString(ResponseProvider.unAuth(msg));
+        } catch (JsonProcessingException e) {
+            System.out.println(e.getMessage());
+        }
+        DataBuffer buffer = resp.bufferFactory().wrap(result.getBytes(StandardCharsets.UTF_8));
+        return resp.writeWith(Flux.just(buffer));
+    }
+}

world-gateway/src/main/java/icu/epq/gateway/handler/ErrorExceptionHandler.java

@@ -0,0 +1,75 @@
+package icu.epq.gateway.handler;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import icu.epq.gateway.provider.ResponseProvider;
+import lombok.RequiredArgsConstructor;
+import org.springframework.boot.web.reactive.error.ErrorWebExceptionHandler;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.annotation.Order;
+import org.springframework.core.io.buffer.DataBufferFactory;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.MediaType;
+import org.springframework.http.server.reactive.ServerHttpRequest;
+import org.springframework.http.server.reactive.ServerHttpResponse;
+import org.springframework.lang.NonNull;
+import org.springframework.web.server.ResponseStatusException;
+import org.springframework.web.server.ServerWebExchange;
+import reactor.core.publisher.Mono;
+
+/**
+ * 异常处理
+ *
+ * @author epqsky
+ */
+@Order(-1)
+@Configuration
+@RequiredArgsConstructor
+public class ErrorExceptionHandler implements ErrorWebExceptionHandler {
+
+    private final ObjectMapper objectMapper;
+
+    @NonNull
+    @Override
+    public Mono<Void> handle(ServerWebExchange serverWebExchange, @NonNull Throwable throwable) {
+        ServerHttpRequest request = serverWebExchange.getRequest();
+        ServerHttpResponse response = serverWebExchange.getResponse();
+        if (response.isCommitted()) {
+            return Mono.error(throwable);
+        }
+        response.getHeaders().setContentType(MediaType.APPLICATION_JSON);
+        if (throwable instanceof ResponseStatusException) {
+            response.setStatusCode(((ResponseStatusException) throwable).getStatus());
+        }
+        return response.writeWith(Mono.fromSupplier(() -> {
+            DataBufferFactory bufferFactory = response.bufferFactory();
+            try {
+                HttpStatus status = HttpStatus.BAD_GATEWAY;
+                if (throwable instanceof ResponseStatusException) {
+                    status = ((ResponseStatusException) throwable).getStatus();
+                }
+                return bufferFactory.wrap(objectMapper.writeValueAsBytes(ResponseProvider.response(status.value(), buildMessage(request, throwable))));
+            } catch (JsonProcessingException e) {
+                e.printStackTrace();
+                return bufferFactory.wrap(new byte[0]);
+            }
+        }));
+    }
+
+    /**
+     * 构建异常信息
+     */
+    private String buildMessage(ServerHttpRequest request, Throwable throwable) {
+        StringBuilder message = new StringBuilder("Failed to handle request [");
+        message.append(request.getMethodValue());
+        message.append(" ");
+        message.append(request.getURI());
+        message.append("]");
+        if (throwable != null) {
+            message.append(": ");
+            message.append(throwable.getMessage());
+        }
+        return message.toString();
+    }
+
+}

world-gateway/src/main/java/icu/epq/gateway/provider/ResponseProvider.java

@@ -0,0 +1,83 @@
+/**
+ * Copyright (c) 2018-2028, Chill Zhuang 庄骞 (smallchill@163.com).
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package icu.epq.gateway.provider;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * 请求响应返回
+ *
+ * @author Chill
+ */
+public class ResponseProvider {
+
+    /**
+     * 成功
+     *
+     * @param message 信息
+     * @return
+     */
+    public static Map<String, Object> success(String message) {
+        return response(200, message);
+    }
+
+    /**
+     * 失败
+     *
+     * @param message 信息
+     * @return
+     */
+    public static Map<String, Object> fail(String message) {
+        return response(400, message);
+    }
+
+    /**
+     * 未授权
+     *
+     * @param message 信息
+     * @return
+     */
+    public static Map<String, Object> unAuth(String message) {
+        return response(401, message);
+    }
+
+    /**
+     * 服务器异常
+     *
+     * @param message 信息
+     * @return
+     */
+    public static Map<String, Object> error(String message) {
+        return response(500, message);
+    }
+
+    /**
+     * 构建返回的JSON数据格式
+     *
+     * @param status  状态码
+     * @param message 信息
+     * @return
+     */
+    public static Map<String, Object> response(int status, String message) {
+        Map<String, Object> map = new HashMap<>(16);
+        map.put("code", status);
+        map.put("msg", message);
+        map.put("data", null);
+        return map;
+    }
+
+}

world-gateway/src/main/java/icu/epq/gateway/util/CryptUtil.java

@@ -0,0 +1,72 @@
+package icu.epq.gateway.util;
+
+import javax.crypto.BadPaddingException;
+import javax.crypto.Cipher;
+import javax.crypto.IllegalBlockSizeException;
+import javax.crypto.NoSuchPaddingException;
+import javax.crypto.spec.GCMParameterSpec;
+import javax.crypto.spec.SecretKeySpec;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.util.Base64;
+
+/**
+ * 加密、解密工具
+ *
+ * @author epqsky
+ */
+public class CryptUtil {
+
+    /**
+     * 密钥
+     */
+    private static final byte[] DEFAULT_SECRET_KEY = Base64.getEncoder().encode("8NJpH36GGK9a3IkyFd3l6Kb8CJkid9QJ".getBytes());
+
+    /**
+     * 初始向量 VI
+     */
+    private static final byte[] KEY_VI = Base64.getEncoder().encode("cs4GXOnrqLKK".getBytes());
+
+    /**
+     * 字符串信息加密
+     *
+     * @param info
+     * @return
+     * @throws NoSuchPaddingException
+     * @throws NoSuchAlgorithmException
+     * @throws InvalidAlgorithmParameterException
+     * @throws InvalidKeyException
+     * @throws BadPaddingException
+     * @throws IllegalBlockSizeException
+     */
+    public static String setAes256String(String info) throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException {
+        SecretKeySpec keySpec = new SecretKeySpec(Base64.getDecoder().decode(DEFAULT_SECRET_KEY), "AES");
+        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+        GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(96, Base64.getDecoder().decode(KEY_VI));
+        cipher.init(Cipher.ENCRYPT_MODE, keySpec, gcmParameterSpec);
+
+        return Base64.getEncoder().encodeToString(cipher.doFinal(info.getBytes()));
+    }
+
+    /**
+     * 字符串信息解密
+     *
+     * @param info
+     * @return
+     * @throws NoSuchPaddingException
+     * @throws NoSuchAlgorithmException
+     * @throws InvalidAlgorithmParameterException
+     * @throws InvalidKeyException
+     * @throws BadPaddingException
+     * @throws IllegalBlockSizeException
+     */
+    public static String getAes256String(String info) throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException {
+        SecretKeySpec keySpec = new SecretKeySpec(Base64.getDecoder().decode(DEFAULT_SECRET_KEY), "AES");
+        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+        GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(96, Base64.getDecoder().decode(KEY_VI));
+        cipher.init(Cipher.DECRYPT_MODE, keySpec, gcmParameterSpec);
+        return new String(cipher.doFinal(Base64.getDecoder().decode(info)));
+    }
+
+}

world-gateway/src/main/java/icu/epq/gateway/util/JwtUtil.java

@@ -0,0 +1,42 @@
+package icu.epq.gateway.util;
+
+import com.auth0.jwt.JWT;
+import com.auth0.jwt.algorithms.Algorithm;
+import com.auth0.jwt.interfaces.DecodedJWT;
+import com.auth0.jwt.interfaces.Verification;
+
+import javax.crypto.BadPaddingException;
+import javax.crypto.IllegalBlockSizeException;
+import javax.crypto.NoSuchPaddingException;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.util.Base64;
+
+/**
+ * jwt 工具
+ *
+ * @author epqsky
+ */
+public class JwtUtil {
+
+    /**
+     * JWT密钥
+     */
+    private static final byte[] JWT_SECRET_KEY = Base64.getEncoder().encode("QO7uI4E6yeg9rkn95Xsahl0p9HINUJN2".getBytes());
+
+    public static DecodedJWT parseJwtToken(String token) {
+
+        String accessToken;
+        try {
+            accessToken = CryptUtil.getAes256String(token);
+        } catch (NoSuchPaddingException | NoSuchAlgorithmException | InvalidAlgorithmParameterException | InvalidKeyException | BadPaddingException | IllegalBlockSizeException e) {
+            return null;
+        }
+
+        Verification verify = JWT.require(Algorithm.HMAC256(Base64.getDecoder().decode(JWT_SECRET_KEY)));
+
+        return verify.build().verify(accessToken);
+    }
+
+}

world-pay/pom.xml

@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>epq-world</artifactId>
+        <groupId>icu.epq.epq-world</groupId>
+        <version>0.0.1</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>world-pay</artifactId>
+
+
+</project>

world-pay/src/main/java/icu/epq/pay/PayApplication.java

@@ -0,0 +1,4 @@
+package icu.epq.pay;
+
+public class PayApplication {
+}

world-pay/src/main/java/icu/epq/pay/config/AlipayConfig.java

@@ -0,0 +1,4 @@
+package icu.epq.pay.config;
+
+public class AliPayConfig {
+}

world-pay/src/main/java/icu/epq/pay/config/AlipayProperties.java

@@ -0,0 +1,4 @@
+package icu.epq.pay.config;
+
+public class AliPayProperties {
+}

world-pay/src/main/java/icu/epq/pay/controller/PayController.java

@@ -0,0 +1,4 @@
+package icu.epq.pay.controller;
+
+public class PayController {
+}

world-pay/src/main/java/icu/epq/pay/paycenter/AlipayCenter.java

@@ -0,0 +1,4 @@
+package icu.epq.pay.paycenter;
+
+public class AliPay {
+}

world-pay/src/main/resources/bootstrap.yaml

@@ -0,0 +1,14 @@
+server:
+  port: 8082
+spring:
+  application:
+    name: world-auth
+  cloud:
+    nacos:
+      discovery:
+        server-addr: 127.0.0.1:8848
+      config:
+        server-addr: 127.0.0.1:8848
+        file-extension: yaml
+  profiles:
+    active: dev

world-paypal/pom.xml

@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>epq-world</artifactId>
+        <groupId>icu.epq.epq-world</groupId>
+        <version>0.0.1</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>world-paypal</artifactId>
+
+
+</project>

world-paypal/src/main/java/icu/epq/paypal/PaypalApplication.java

@@ -0,0 +1,11 @@
+package icu.epq.paypal;
+
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
+import org.springframework.scheduling.annotation.EnableAsync;
+
+@SpringBootApplication(scanBasePackages = {"icu.epq.common.exception", "icu.epq.paypal"})
+@EnableDiscoveryClient
+@EnableAsync
+public class PaypalApplication {
+}

world-paypal/src/main/resources/bootstrap.yaml

@@ -0,0 +1,14 @@
+server:
+  port: 8082
+spring:
+  application:
+    name: world-auth
+  cloud:
+    nacos:
+      discovery:
+        server-addr: 127.0.0.1:8848
+      config:
+        server-addr: 127.0.0.1:8848
+        file-extension: yaml
+  profiles:
+    active: dev

world-push/pom.xml

@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>epq-world</artifactId>
+        <groupId>icu.epq.epq-world</groupId>
+        <version>0.0.1</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>world-push</artifactId>
+
+
+</project>

world-push/src/main/java/icu/epq/push/PushApplication.java

@@ -0,0 +1,4 @@
+package icu.epq.push;
+
+public class PushApplication {
+}

world-push/src/main/java/icu/epq/push/config/WebSocketConfig.java

@@ -0,0 +1,4 @@
+package icu.epq.push.config;
+
+public class WebSocketConfig {
+}

world-push/src/main/java/icu/epq/push/controller/WebSocketController.java

@@ -0,0 +1,4 @@
+package icu.epq.push.controller;
+
+public class WebSocketController {
+}

world-push/src/main/resources/bootstrap.yaml

@@ -0,0 +1,14 @@
+server:
+  port: 8082
+spring:
+  application:
+    name: world-auth
+  cloud:
+    nacos:
+      discovery:
+        server-addr: 127.0.0.1:8848
+      config:
+        server-addr: 127.0.0.1:8848
+        file-extension: yaml
+  profiles:
+    active: dev