日志
1、定义日志接口
import java.lang.annotation.*;@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@Documented
public @interface LogAnnotation {String type() default "";String module() default "";String content() default "";
}
2、定义日志切面类
@Aspect
@Component
public class LogAspect {@Autowiredprivate LogService logService;@Pointcut("@annotation(com.nudt.annotation.LogAnnotation)")public void logPointCut() {}@Around("logPointCut()")public Object around(ProceedingJoinPoint point) throws Throwable {long beginTime = System.currentTimeMillis();//执行方法Object result = point.proceed();//执行时长(毫秒)long time = System.currentTimeMillis() - beginTime;//保存日志saveLog(point, (int) time);return result;}private void saveLog(ProceedingJoinPoint joinPoint, int time) {MethodSignature signature = (MethodSignature) joinPoint.getSignature();Method method = signature.getMethod();Log log = new Log();LogAnnotation logAnnotation = method.getAnnotation(LogAnnotation.class);if (logAnnotation != null) {//注解上的描述log.setOperation(logAnnotation.content());}//请求的方法名String className = joinPoint.getTarget().getClass().getName();String methodName = signature.getName();log.setMethod(className + "." + methodName + "()");//请求的参数Object[] args = joinPoint.getArgs();try {String params = new Gson().toJson(args[0]);log.setParams(params);} catch (Exception e) {}HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getRequest();HttpSession session = request.getSession();//获取登录名String loginName = (String) session.getAttribute("loginName");//获取客户端ipString clientIp = IPUtil.getClientIp();//获取服务端ipString serverIp = IPUtil.getServerIp();}}
3、使用
@GetMapping@LogAnnotation(module="登录",content="用户登录",type="1")public String login(){}
验证
1、定义验证接口
@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@Documented
public @interface Validate {String value() default "";
}
2、定义验证切面类
@Aspect
@Component
public class ValidateAspect {@Pointcut("@annotation(com.nudt.annotation.Validate)")public void validatePointCut() {}@Before("validatePointCut()")public void before(JoinPoint joinPoint) throws Exception{int status = IPUtil.getStatus();if(status==0){throw new ValidationException("未登录");}if(status==1){throw new ValidationException("无权限");}}
}
3、使用
@GetMapping@Validatepublic String del(){}
工具类:获取服务器和客户端ip,以及在session中获取信息
public class IPUtil {private static final Logger log = LoggerFactory.getLogger(IPUtil.class);//获取服务器ippublic static String getServerIp() {try{InetAddress localhost = InetAddress.getLocalHost();return localhost.getHostAddress();}catch(UnknownHostException e){throw new RuntimeException(e);}}//获取客户端ippublic static String getClientIp() {HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getRequest();String ip = request.getHeader("x-forwarded-for");log.info("x-forwarded-for ip:{}",ip);if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) {ip = request.getHeader("Proxy-Client-IP");log.info("Proxy-Client-IP ip:{}",ip);}if (StringUtils.isBlank(ip) || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {ip = request.getHeader("WL-Proxy-Client-IP");log.info("WL-Proxy-Client-IP ip:{}",ip);}if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) {ip = request.getHeader("HTTP_CLIENT_IP");log.info("HTTP_CLIENT_IP ip:{}",ip);}if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) {ip = request.getHeader("HTTP_X_FORWARDED_FOR");log.info("HTTP_X_FORWARDED_FOR ip:{}",ip);}if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) {ip = request.getRemoteAddr();log.info("remote ip:{}",ip);}if(StringUtils.isBlank(ip) && !"unknown".equalsIgnoreCase(ip) && StringUtils.contains(ip,",")){//多次反向代理后会有多个ip值,第一个为真实ipip = StringUtils.substringBefore(ip,",");}String tempIp = null;if(StringUtils.isNotBlank(ip) && !"unknown".equalsIgnoreCase(ip) && StringUtils.contains(ip,",")){String[] ips = StringUtils.split(ip, ",");for(String ip1:ips){if(!isInnerIp(ip1.trim())){tempIp = ip1.trim();break;}//如果多ip都是内网ip,则取第一个ipif(null == tempIp){tempIp = ips[0].trim();}ip = tempIp;}}if(ip !=null && ip.contains("unknown")){ip = ip.replaceAll("unknown","");ip = ip.trim();}//处理localhostif(StringUtils.isBlank(ip) || !"unknown".equalsIgnoreCase(ip) || StringUtils.split(ip,",").length!=4){try{InetAddress inetAddress = InetAddress.getLocalHost();ip = inetAddress.getHostAddress();log.info("getHostAddress ip:{}",ip);}catch(UnknownHostException e){throw new RuntimeException(e);}}return ip;}private static boolean isInnerIp(String ipAddress) {boolean isInnerIp;long ipNum = getIpNum(ipAddress);
// 私有ip:A类 10.0.0.0~10.255.255.255
// B类 172.16.0.0~172.31.255.255
// C类 192.168.0.0~192.168.255.255long aBegin = getIpNum("10.0.0.0");long aEnd = getIpNum("10.255.255.255");long bBegin = getIpNum("172.16.0.0");long bEnd = getIpNum("172.31.255.255");long cBegin = getIpNum("192.168.0.0");long cEnd = getIpNum("192.168.255.255");isInnerIp = isInner(ipNum,aBegin,aEnd) || isInner(ipNum,bBegin,bEnd) || isInner(ipNum,cBegin,cEnd);return isInnerIp;}private static boolean isInner(long ipNum, long begin, long end){return (ipNum >= begin) && (ipNum <= end);}private static long getIpNum(String ipAddress) {String[] ips = StringUtils.split(ipAddress,",");long a = Integer.parseInt(ips[0]);long b = Integer.parseInt(ips[1]);long c = Integer.parseInt(ips[2]);long d = Integer.parseInt(ips[3]);return a*256*256*256 + b*256*256 + c*256 + d;}public static int getStatus() {HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.getRequestAttributes()).getRequest();HttpSession session = request.getSession();//获取登录名String token = (String) session.getAttribute("token");Map<String, String> map = JwtUtil.parseJWT(token);String status = map.get("type");if(status.equals("0")){return 0;}if(status.equals("1")){return 1;}return 2;}
}
工具类:jwt相关
public class JwtUtil {//设置过期时间private static final long EXPIRE_TIME = 240 * 60 * 1000;//token秘钥private static final String TOKEN_SECRET = "f26e587c28064d0e855e72c0a6a0e618";public static String sign(String username, String type) {String token = "";try {//过期时间Date date = new Date(System.currentTimeMillis() + EXPIRE_TIME);//秘钥及加密算法Algorithm algorithm = Algorithm.HMAC256(TOKEN_SECRET);//设置头部信息Map<String, Object> header = new HashMap<>(2);header.put("typ", "JWT");header.put("alg", "HS256");//携带username,password信息,生成签名return JWT.create().withHeader(header).withClaim("loginName", username).withClaim("type", type).withExpiresAt(date).sign(algorithm);} catch (Exception e) {e.printStackTrace();return null;}}public static boolean verify(String token){/*** @desc 验证token,通过返回true* @params [token]需要校验的串**/try {Algorithm algorithm = Algorithm.HMAC256(TOKEN_SECRET);JWTVerifier verifier = JWT.require(algorithm).build();DecodedJWT jwt = verifier.verify(token);return true;}catch (Exception e){e.printStackTrace();return false;}}public static Map<String, String> parseJWT(String token){/*** @desc 解密token,返回一个map* @params [token]需要校验的串**/DecodedJWT decodeToken = JWT.decode(token);Map<String, String> map = new HashMap<>();map.put("loginName",decodeToken.getClaim("loginName").asString());map.put("type",decodeToken.getClaim("type").asString());return map;}public static boolean isJwtExpired(String token){/*** @desc 判断token是否过期* @author lj*/try {DecodedJWT decodeToken = JWT.decode(token);return decodeToken.getExpiresAt().before(new Date());} catch(Exception e){return true;}}public static void main(String[] args) {String username ="zhangsan";String password = "123";String token = sign(username,password);System.out.println(token);boolean b = verify(token);System.out.println(b);}
引入依赖
<dependency><groupId>com.auth0</groupId><artifactId>java-jwt</artifactId><version>3.8.3</version></dependency><dependency><groupId>io.jsonwebtoken</groupId><artifactId>jjwt</artifactId><version>0.9.1</version></dependency>
