gitee
/
roses
mirror of https://gitee.com/stylefeng/roses
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

【8.3.0】升级mybatis-plus版本,移除失效的组件

master
stylefeng 2024-08-03 18:37:56 +08:00
parent 5e16bc28b9
commit 3b30a64b81
16 changed files with 10 additions and 494 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
kernel-d-db/db-api/pom.xml
View File

@ -29,7 +29,7 @@
<!-- 基础实体分页参数和结果的创建需要用到mp的注解和类 --> <!-- 基础实体分页参数和结果的创建需要用到mp的注解和类 -->
<dependency> <dependency>
<groupId>com.baomidou</groupId> <groupId>com.baomidou</groupId>
<artifactId>mybatis-plus-boot-starter</artifactId> <artifactId>mybatis-plus-spring-boot3-starter</artifactId>
</dependency> </dependency>
<!-- servlet库 --> <!-- servlet库 -->

12
kernel-d-db/db-sdk-mp/src/main/java/cn/stylefeng/roses/kernel/db/mp/datascope/ProjectDataScopeHandler.java
View File

@ -16,9 +16,9 @@ import net.sf.jsqlparser.expression.operators.relational.InExpression;
import net.sf.jsqlparser.expression.operators.relational.LikeExpression; import net.sf.jsqlparser.expression.operators.relational.LikeExpression;
import net.sf.jsqlparser.schema.Column; import net.sf.jsqlparser.schema.Column;
import net.sf.jsqlparser.schema.Table; import net.sf.jsqlparser.schema.Table;
import net.sf.jsqlparser.statement.select.LateralSubSelect;
import net.sf.jsqlparser.statement.select.PlainSelect; import net.sf.jsqlparser.statement.select.PlainSelect;
import net.sf.jsqlparser.statement.select.SelectExpressionItem; import net.sf.jsqlparser.statement.select.SelectItem;
import net.sf.jsqlparser.statement.select.SubSelect;
import java.util.stream.Collectors; import java.util.stream.Collectors;
@ -202,7 +202,7 @@ public class ProjectDataScopeHandler implements MultiDataPermissionHandler {
// 创建 IN 表达式 // 创建 IN 表达式
InExpression inExpression = new InExpression(); InExpression inExpression = new InExpression();
inExpression.setLeftExpression(orgIdColumn); inExpression.setLeftExpression(orgIdColumn);
inExpression.setRightItemsList(expressionList); inExpression.setRightExpression(expressionList);
return inExpression; return inExpression;
} }
@ -220,9 +220,9 @@ public class ProjectDataScopeHandler implements MultiDataPermissionHandler {
Column orgIdColumn = new Column(dataScopeConfig.getOrgIdFieldName()); Column orgIdColumn = new Column(dataScopeConfig.getOrgIdFieldName());
// 创建子查询 select 部分 // 创建子查询 select 部分
SubSelect subSelect = new SubSelect(); LateralSubSelect subSelect = new LateralSubSelect();
PlainSelect selectBody = new PlainSelect(); PlainSelect selectBody = new PlainSelect();
selectBody.setSelectItems(ListUtil.of(new SelectExpressionItem(orgIdColumn))); selectBody.setSelectItems(ListUtil.of(new SelectItem<>(orgIdColumn)));
selectBody.setFromItem(new Table("sys_hr_organization")); selectBody.setFromItem(new Table("sys_hr_organization"));
// 创建 LIKE 表达式 // 创建 LIKE 表达式
@ -240,7 +240,7 @@ public class ProjectDataScopeHandler implements MultiDataPermissionHandler {
// 设置子查询的 WHERE 条件 // 设置子查询的 WHERE 条件
selectBody.setWhere(orExpression); selectBody.setWhere(orExpression);
subSelect.setSelectBody(selectBody); subSelect.setSelect(selectBody);
// 创建 IN 表达式 // 创建 IN 表达式
return new InExpression(orgIdColumn, subSelect); return new InExpression(orgIdColumn, subSelect);

1
kernel-d-security/pom.xml
View File

@ -22,7 +22,6 @@
<module>security-sdk-captcha</module> <module>security-sdk-captcha</module>
<module>security-sdk-clear-threadlocal</module> <module>security-sdk-clear-threadlocal</module>
<module>security-sdk-count</module> <module>security-sdk-count</module>
<module>security-sdk-database-field</module>
<module>security-sdk-guomi</module> <module>security-sdk-guomi</module>
<module>security-sdk-request-encrypt-and-decode</module> <module>security-sdk-request-encrypt-and-decode</module>
<module>security-sdk-xss</module> <module>security-sdk-xss</module>

23
kernel-d-security/security-sdk-database-field/README.md
View File

@ -1,23 +0,0 @@
数据库字段加解密工具
注意:
1.数据库加密字段的类型为String类型
2.如果开启功能时数据库对应字段已经有数据需要对旧数据进行处理可以通过EncryptAlgorithmApi对字段进行加密
说明:
1.通过mybatis的拦截器对传入参数和返回结果进行处理
2.可以满足对某个数据库字段在入库时加密,在查询时解密的需求
3.同时也满足对某个数据库字段在入库时加密,查询时依旧显示密文,只有在需要的时候解密的需求
使用方法:
1.给类添加ProtectedData注解以标识该类需要进行加解密处理
2.在需要加解密的字段上面添加ProtectedField注解即可实现在入库时加密查询时解密的功能
3.如果不想在查询时解密则在字段上添加EncryptField注解替换ProtectedField注解即可实现在入库时该字段加密查询时不解密的功能

49
kernel-d-security/security-sdk-database-field/pom.xml
View File

@ -1,49 +0,0 @@
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<parent>
<groupId>com.javaguns.roses</groupId>
<artifactId>kernel-d-security</artifactId>
<version>8.3.0</version>
<relativePath>../pom.xml</relativePath>
</parent>
<artifactId>security-sdk-database-field</artifactId>
<packaging>jar</packaging>
<dependencies>
<!--安全模块的api-->
<dependency>
<groupId>com.javaguns.roses</groupId>
<artifactId>security-api</artifactId>
<version>${roses.version}</version>
</dependency>
<!--scanner api-->
<dependency>
<groupId>com.javaguns.roses</groupId>
<artifactId>scanner-api</artifactId>
<version>${roses.version}</version>
</dependency>
<!--web模块-->
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<!--数据库的依赖,主要依赖mybatis-->
<dependency>
<groupId>com.javaguns.roses</groupId>
<artifactId>db-api</artifactId>
<version>${roses.version}</version>
</dependency>
</dependencies>
</project>

34
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/algorithm/EncryptAlgorithmApi.java
View File

@ -1,34 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.algorithm;
import cn.hutool.crypto.symmetric.SymmetricCrypto;
/**
*
* <p>
* AES
*
* @author majianguo
* @since 2021/7/3 11:02
*/
public interface EncryptAlgorithmApi {
/**
*
*
* @param encryptedData
* @return {@link java.lang.String}
* @author majianguo
* @since 2021/7/3 11:07
**/
String encrypt(String encryptedData);
/**
*
*
* @param cipher
* @return {@link java.lang.String}
* @author majianguo
* @since 2021/7/3 11:33
**/
String decrypt(String cipher);
}

29
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/algorithm/impl/AesEncryptAlgorithmApiImpl.java
View File

@ -1,29 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.algorithm.impl;
import cn.hutool.crypto.symmetric.SymmetricAlgorithm;
import cn.hutool.crypto.symmetric.SymmetricCrypto;
import cn.stylefeng.roses.kernel.security.api.expander.SecurityConfigExpander;
import cn.stylefeng.roses.kernel.security.database.algorithm.EncryptAlgorithmApi;
import java.nio.charset.StandardCharsets;
/**
* AES
*
* @author majianguo
* @since 2021/7/3 11:43
*/
public class AesEncryptAlgorithmApiImpl implements EncryptAlgorithmApi {
@Override
public String encrypt(String encryptedData) {
SymmetricCrypto symmetricCrypto = new SymmetricCrypto(SymmetricAlgorithm.AES, SecurityConfigExpander.getEncryptSecretKey().getBytes(StandardCharsets.UTF_8));
return symmetricCrypto.encryptHex(encryptedData);
}
@Override
public String decrypt(String cipher) {
SymmetricCrypto symmetricCrypto = new SymmetricCrypto(SymmetricAlgorithm.AES, SecurityConfigExpander.getEncryptSecretKey().getBytes(StandardCharsets.UTF_8));
return symmetricCrypto.decryptStr(cipher);
}
}

19
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/annotation/EncryptField.java
View File

@ -1,19 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.annotation;
import java.lang.annotation.*;
/**
*
* <p>
* ( {@link ProtectedData} )
*
* @author majianguo
* @since 2021/7/3 10:57
*/
@Documented
@Inherited
@Target({ElementType.FIELD})
@Retention(RetentionPolicy.RUNTIME)
public @interface EncryptField {
}

18
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/annotation/ProtectedData.java
View File

@ -1,18 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.annotation;
import java.lang.annotation.*;
/**
* (DTO)
* <p>
*
*
* @author majianguo
* @since 2021/7/3 10:54
*/
@Inherited
@Target({ElementType.TYPE})
@Retention(RetentionPolicy.RUNTIME)
public @interface ProtectedData {
}

19
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/annotation/ProtectedField.java
View File

@ -1,19 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.annotation;
import java.lang.annotation.*;
/**
*
* <p>
* ( {@link ProtectedData} )
*
* @author majianguo
* @since 2021/7/5 9:18
*/
@Documented
@Inherited
@Target({ElementType.FIELD})
@Retention(RetentionPolicy.RUNTIME)
public @interface ProtectedField {
}

90
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/interceptor/ParameterInterceptor.java
View File

@ -1,90 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.interceptor;
import cn.hutool.core.util.ObjectUtil;
import cn.stylefeng.roses.kernel.security.database.algorithm.EncryptAlgorithmApi;
import cn.stylefeng.roses.kernel.security.database.annotation.EncryptField;
import cn.stylefeng.roses.kernel.security.database.annotation.ProtectedData;
import cn.stylefeng.roses.kernel.security.database.annotation.ProtectedField;
import jakarta.annotation.Resource;
import lombok.extern.slf4j.Slf4j;
import org.apache.ibatis.executor.parameter.ParameterHandler;
import org.apache.ibatis.plugin.*;
import org.springframework.core.annotation.AnnotationUtils;
import org.springframework.stereotype.Component;
import java.lang.reflect.Field;
import java.sql.PreparedStatement;
import java.util.Properties;
/**
* Mybatis
*
* @author majianguo
* @since 2021/7/3 11:58
*/
@Slf4j
@Component
@Intercepts({@Signature(type = ParameterHandler.class, method = "setParameters", args = PreparedStatement.class),})
public class ParameterInterceptor implements Interceptor {
@Resource
private EncryptAlgorithmApi encryptAlgorithmApi;
@Override
public Object intercept(Invocation invocation) throws Throwable {
// 若指定ResultSetHandler 这里则能强转为ResultSetHandler
ParameterHandler parameterHandler = (ParameterHandler) invocation.getTarget();
// 获取参数对像,即 mapper 中 paramsType 的实例
Field parameterField = parameterHandler.getClass().getDeclaredField("parameterObject");
parameterField.setAccessible(true);
// 取出实例
Object parameterObject = parameterField.get(parameterHandler);
if (parameterObject != null) {
Class<?> parameterObjectClass = parameterObject.getClass();
// 校验该实例的类是否被@ProtectedData所注解
ProtectedData protectedData = AnnotationUtils.findAnnotation(parameterObjectClass, ProtectedData.class);
if (ObjectUtil.isNotNull(protectedData)) {
//取出当前当前类所有字段
Field[] declaredFields = parameterObjectClass.getDeclaredFields();
// 处理需要加密的字段
for (Field declaredField : declaredFields) {
// 包含其中任意一个即可
ProtectedField protectedField = declaredField.getAnnotation(ProtectedField.class);
EncryptField encryptField = declaredField.getAnnotation(EncryptField.class);
if (ObjectUtil.isNotNull(protectedField) || ObjectUtil.isNotNull(encryptField)) {
declaredField.setAccessible(true);
Object fieldData = declaredField.get(parameterObject);
// 如果是String就处理
if (fieldData instanceof String) {
String value = (String) fieldData;
try {
String encrypt = encryptAlgorithmApi.encrypt(value);
declaredField.set(parameterObject, encrypt);
} catch (Exception e) {
e.printStackTrace();
}
}
}
}
}
}
return invocation.proceed();
}
@Override
public Object plugin(Object target) {
return Plugin.wrap(target, this);
}
@Override
public void setProperties(Properties properties) {
}
}

140
kernel-d-security/security-sdk-database-field/src/main/java/cn/stylefeng/roses/kernel/security/database/interceptor/ResultInterceptor.java
View File

@ -1,140 +0,0 @@
package cn.stylefeng.roses.kernel.security.database.interceptor;
import cn.hutool.core.util.ObjectUtil;
import cn.stylefeng.roses.kernel.security.database.algorithm.EncryptAlgorithmApi;
import cn.stylefeng.roses.kernel.security.database.annotation.ProtectedData;
import cn.stylefeng.roses.kernel.security.database.annotation.ProtectedField;
import jakarta.annotation.Resource;
import lombok.extern.slf4j.Slf4j;
import org.apache.ibatis.executor.resultset.ResultSetHandler;
import org.apache.ibatis.plugin.*;
import org.springframework.core.annotation.AnnotationUtils;
import org.springframework.stereotype.Component;
import java.lang.reflect.Field;
import java.sql.Statement;
import java.util.List;
import java.util.Objects;
import java.util.Properties;
/**
* Mybatis
*
* @author majianguo
* @since 2021/7/3 11:58
*/
@Slf4j
@Component
@Intercepts({@Signature(type = ResultSetHandler.class, method = "handleResultSets", args = {Statement.class})})
public class ResultInterceptor implements Interceptor {
@Resource
private EncryptAlgorithmApi encryptAlgorithmApi;
@Override
public Object intercept(Invocation invocation) throws Throwable {
//取出查询的结果
Object resultObject = invocation.proceed();
if (Objects.isNull(resultObject)) {
return null;
}
// 判断结果是List还是对象
if (resultObject instanceof List) {
List resultList = (List) resultObject;
// 判断是否为空
if (ObjectUtil.isNotNull(resultList)) {
// 处理数据
for (Object result : resultList) {
// 对象处理
this.objectProcessing(result);
}
}
} else {
// 处理单个对象
this.objectProcessing(resultObject);
}
return resultObject;
}
/**
*
*
* @return
* @author majianguo
* @since 2021/7/5 9:52
**/
private void objectProcessing(Object result) throws IllegalAccessException {
if (result == null) {
return;
}
Class<?> resultClass = result.getClass();
// 是否加注解了
ProtectedData annotation = AnnotationUtils.findAnnotation(resultClass, ProtectedData.class);
// 加注解就去处理
if (ObjectUtil.isNotNull(annotation)) {
Field[] declaredFields = resultClass.getDeclaredFields();
for (Field field : declaredFields) {
// 处理字段
this.fieldProcessing(result, field);
}
}
}
/**
* @param result
* @param field
* @return
* @author majianguo
* @since 2021/7/5 9:52
**/
private void fieldProcessing(Object result, Field field) throws IllegalAccessException {
if (this.isTag(field)) {
field.setAccessible(true);
Object object = field.get(result);
//String的解密
if (object instanceof String) {
String value = (String) object;
//对注解的字段进行逐一解密
try {
String decrypt = encryptAlgorithmApi.decrypt(value);
field.set(result, decrypt);
} catch (Exception e) {
e.printStackTrace();
}
}
}
}
/**
*
*
* @param field
* @return {@link boolean}
* @author majianguo
* @since 2021/7/5 9:35
**/
private boolean isTag(Field field) {
// 包含其中任意一个即可
ProtectedField protectedField = field.getAnnotation(ProtectedField.class);
if (ObjectUtil.isNotNull(protectedField)) {
return true;
}
return false;
}
@Override
public Object plugin(Object target) {
return Plugin.wrap(target, this);
}
@Override
public void setProperties(Properties properties) {
}
}

7
kernel-d-security/security-spring-boot-starter/pom.xml
View File

@ -45,13 +45,6 @@
<version>${roses.version}</version> <version>${roses.version}</version>
</dependency> </dependency>
<!--数据库加密解密模块-->
<dependency>
<groupId>com.javaguns.roses</groupId>
<artifactId>security-sdk-database-field</artifactId>
<version>${roses.version}</version>
</dependency>
<!--国密加解密支持以及请求加密解密--> <!--国密加解密支持以及请求加密解密-->
<dependency> <dependency>
<groupId>com.javaguns.roses</groupId> <groupId>com.javaguns.roses</groupId>

55
kernel-d-security/security-spring-boot-starter/src/main/java/cn/stylefeng/roses/kernel/security/starter/EncryptAlgorithmAutoConfiguration.java
View File

@ -1,55 +0,0 @@
/*
* Copyright [2020-2030] [https://www.stylefeng.cn]
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
* GunsAPACHE LICENSE 2.0使
*
* 1.LICENSE
* 2.Guns
* 3.
* 4. https://gitee.com/stylefeng/guns
* 5. https://gitee.com/stylefeng/guns
* 6.
*/
package cn.stylefeng.roses.kernel.security.starter;
import cn.stylefeng.roses.kernel.security.database.algorithm.EncryptAlgorithmApi;
import cn.stylefeng.roses.kernel.security.database.algorithm.impl.AesEncryptAlgorithmApiImpl;
import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
/**
*
*
* @author majianguo
* @since 2021/7/5 10:06
*/
@Configuration
public class EncryptAlgorithmAutoConfiguration {
/**
*
*
* @return {@link cn.stylefeng.roses.kernel.security.database.algorithm.EncryptAlgorithmApi}
* @author majianguo
* @since 2021/7/5 10:16
**/
@Bean
@ConditionalOnMissingBean(EncryptAlgorithmApi.class)
public EncryptAlgorithmApi encryptAlgorithmApi() {
return new AesEncryptAlgorithmApiImpl();
}
}

2
kernel-d-wrapper/wrapper-sdk/pom.xml
View File

@ -43,7 +43,7 @@
<!-- 包装分页的参数可能 --> <!-- 包装分页的参数可能 -->
<dependency> <dependency>
<groupId>com.baomidou</groupId> <groupId>com.baomidou</groupId>
<artifactId>mybatis-plus-boot-starter</artifactId> <artifactId>mybatis-plus-spring-boot3-starter</artifactId>
</dependency> </dependency>
</dependencies> </dependencies>

4
pom.xml
View File

@ -113,7 +113,7 @@
<hutool.version>5.8.29</hutool.version> <hutool.version>5.8.29</hutool.version>
<fastjson.version>2.0.52</fastjson.version> <fastjson.version>2.0.52</fastjson.version>
<lombok.versin>1.18.34</lombok.versin> <lombok.versin>1.18.34</lombok.versin>
<mp.version>3.5.3.1</mp.version> <mp.version>3.5.7</mp.version>
<mysql-connector-java.version>8.0.33</mysql-connector-java.version> <mysql-connector-java.version>8.0.33</mysql-connector-java.version>
<druid.version>1.2.22</druid.version> <druid.version>1.2.22</druid.version>
<jwt.version>0.9.1</jwt.version> <jwt.version>0.9.1</jwt.version>
@ -171,7 +171,7 @@
<!--mybatis-plus dao框架--> <!--mybatis-plus dao框架-->
<dependency> <dependency>
<groupId>com.baomidou</groupId> <groupId>com.baomidou</groupId>
<artifactId>mybatis-plus-boot-starter</artifactId> <artifactId>mybatis-plus-spring-boot3-starter</artifactId>
<version>${mp.version}</version> <version>${mp.version}</version>
</dependency> </dependency>