From e637af8970a0b28321440c53f8b6ed204e7e075d Mon Sep 17 00:00:00 2001 From: haozq <1611483981@qq.com> Date: Thu, 19 Dec 2024 13:35:20 +0800 Subject: [PATCH] =?UTF-8?q?=E5=9B=BE=E7=89=87=E6=8B=A6=E6=88=AA=E4=BF=AE?= =?UTF-8?q?=E6=94=B9?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../security/interceptor/ParamSecureHandler.java | 10 +++++++++- .../gateway/filter/ResponseEncryptFilter.java | 12 +++++++++++- .../proteam/config/ResourcesConfigAdapter.java | 2 +- .../dutyTask/controller/HistoryController.java | 3 +++ 4 files changed, 24 insertions(+), 3 deletions(-) diff --git a/securityControl-common/securityControl-common-security/src/main/java/com/securityControl/common/security/interceptor/ParamSecureHandler.java b/securityControl-common/securityControl-common-security/src/main/java/com/securityControl/common/security/interceptor/ParamSecureHandler.java index fe07c6b..8d1e636 100644 --- a/securityControl-common/securityControl-common-security/src/main/java/com/securityControl/common/security/interceptor/ParamSecureHandler.java +++ b/securityControl-common/securityControl-common-security/src/main/java/com/securityControl/common/security/interceptor/ParamSecureHandler.java @@ -65,7 +65,8 @@ public class ParamSecureHandler implements AsyncHandlerInterceptor { * 越权 放权的请求 指定的前缀 -公共的请求+数据接口 */ public static String[] WHITE_URL=new String[]{"/sys/selected/","/dataCenter/inter/","/back/verify/"}; - + //图片默认放权 + public final static String images="JPG,PNG,JPEG,"; /** * 越权白名单路径->指定的路径 */ @@ -144,6 +145,13 @@ public class ParamSecureHandler implements AsyncHandlerInterceptor { */ private boolean checkIsYq(HttpServletRequest request) throws Exception { String requestUri = request.getRequestURI(); + if(requestUri.contains(".")){ + String imageType=requestUri.substring(requestUri.lastIndexOf(".")+1).toUpperCase(); + if (images.contains(imageType)){ + return true; + } + } + if(Arrays.asList(WHITE_URLS).contains(requestUri)){ return true; } diff --git a/securityControl-gateway/src/main/java/com/securityControl/gateway/filter/ResponseEncryptFilter.java b/securityControl-gateway/src/main/java/com/securityControl/gateway/filter/ResponseEncryptFilter.java index f3c1475..6424b1d 100644 --- a/securityControl-gateway/src/main/java/com/securityControl/gateway/filter/ResponseEncryptFilter.java +++ b/securityControl-gateway/src/main/java/com/securityControl/gateway/filter/ResponseEncryptFilter.java @@ -49,6 +49,8 @@ public class ResponseEncryptFilter implements GlobalFilter, Ordered { */ public final static String KEY_HEAD="decrypt"; + public final static String images="JPG,PNG,JPEG,"; + /**忽略加密的参数的请求*/ public static List ignoreUrls = new ArrayList<>(); @@ -61,8 +63,16 @@ public class ResponseEncryptFilter implements GlobalFilter, Ordered { log.info("============================ResponseEncryptFilter start==================================="); ServerHttpRequest request = exchange.getRequest(); - URI uri = request.getURI(); + String reqPath = request.getURI().getPath(); + if(reqPath.contains(".")){ + String imageType=reqPath.substring(reqPath.lastIndexOf(".")+1).toUpperCase(); + if (images.contains(imageType)){ + return chain.filter(exchange); + } + } + + boolean sf = ignoreUrls.contains(reqPath); if(sf){ return chain.filter(exchange); diff --git a/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/config/ResourcesConfigAdapter.java b/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/config/ResourcesConfigAdapter.java index 4d77e3b..22aa507 100644 --- a/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/config/ResourcesConfigAdapter.java +++ b/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/config/ResourcesConfigAdapter.java @@ -11,7 +11,7 @@ public class ResourcesConfigAdapter extends WebMvcConfigurerAdapter { // registry.addResourceHandler("/files/**").addResourceLocations("file:/data/ahsbs/file/"); // super.addResourceHandlers(registry); - registry.addResourceHandler("/files/**").addResourceLocations("file:D:\\file\\"); + registry.addResourceHandler("/files/**").addResourceLocations("file:F:\\File\\"); super.addResourceHandlers(registry); } diff --git a/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/dutyTask/controller/HistoryController.java b/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/dutyTask/controller/HistoryController.java index 3ac918c..82113e2 100644 --- a/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/dutyTask/controller/HistoryController.java +++ b/securityControl-modules/securityControl-proteam/src/main/java/com/sercurityControl/proteam/dutyTask/controller/HistoryController.java @@ -1,6 +1,8 @@ package com.sercurityControl.proteam.dutyTask.controller; import com.securityControl.common.core.web.domain.AjaxResult; +import com.securityControl.common.log.annotation.SysLog; +import com.securityControl.common.log.enums.OperaType; import com.sercurityControl.proteam.dutyTask.domain.HistoryDto; import com.sercurityControl.proteam.dutyTask.service.HistoryService; import lombok.extern.slf4j.Slf4j; @@ -29,6 +31,7 @@ public class HistoryController { * @date 2024/1/25 15:28 */ @PostMapping("getHistoryByDateType") + @SysLog(title = "综合展示", model = "综合展示->综合展示", operaType = OperaType.EXPORT, details = "历史记录查询") public AjaxResult getHistoryByDateType(HistoryDto dto) { return service.getHistoryByDateType(dto); }