itbaima-study/itbaima-forum-jwt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

添加用户封禁处理逻辑

Browse Source
This commit is contained in:
柏码の讲师 2025-01-02 18:44:01 +08:00
parent 0375eaad2c
commit 14587dceaa
4 changed files with 38 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
my-project-backend/src/main/java/com/example/config/SecurityConfiguration.java
View File

@ -105,6 +105,10 @@ public class SecurityConfiguration {
} else if(exceptionOrAuthentication instanceof Authentication authentication){ } else if(exceptionOrAuthentication instanceof Authentication authentication){
User user = (User) authentication.getPrincipal(); User user = (User) authentication.getPrincipal();
Account account = service.findAccountByNameOrEmail(user.getUsername()); Account account = service.findAccountByNameOrEmail(user.getUsername());
if(account.isBanned()){
writer.write(RestBean.forbidden("登录失败,此账户已被封禁,请俩系管理员").asJsonString());
return;
}
String jwt = utils.createJwt(user, account.getUsername(), account.getId()); String jwt = utils.createJwt(user, account.getUsername(), account.getId());
if(jwt == null) { if(jwt == null) {
writer.write(RestBean.forbidden("登录验证频繁,请稍后再试").asJsonString()); writer.write(RestBean.forbidden("登录验证频繁,请稍后再试").asJsonString());

20
my-project-backend/src/main/java/com/example/controller/admin/AccountAdminController.java
View File

@ -10,11 +10,15 @@ import com.example.entity.vo.response.AccountVO;
import com.example.service.AccountDetailsService; import com.example.service.AccountDetailsService;
import com.example.service.AccountPrivacyService; import com.example.service.AccountPrivacyService;
import com.example.service.AccountService; import com.example.service.AccountService;
import com.example.utils.Const;
import jakarta.annotation.Resource; import jakarta.annotation.Resource;
import org.springframework.beans.BeanUtils; import org.springframework.beans.BeanUtils;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.data.redis.core.StringRedisTemplate;
import org.springframework.web.bind.annotation.*; import org.springframework.web.bind.annotation.*;
import java.util.List; import java.util.List;
import java.util.concurrent.TimeUnit;
@RestController @RestController
@RequestMapping("/api/admin/user") @RequestMapping("/api/admin/user")
@ -29,6 +33,12 @@ public class AccountAdminController {
@Resource @Resource
AccountPrivacyService privacyService; AccountPrivacyService privacyService;
@Resource
StringRedisTemplate template;
@Value("${spring.security.jwt.expire}")
private int expire;
@GetMapping("/list") @GetMapping("/list")
public RestBean<JSONObject> accountList(int page, int size) { public RestBean<JSONObject> accountList(int page, int size) {
JSONObject object = new JSONObject(); JSONObject object = new JSONObject();
@ -55,6 +65,7 @@ public class AccountAdminController {
int id = object.getInteger("id"); int id = object.getInteger("id");
Account account = service.findAccountById(id); Account account = service.findAccountById(id);
Account save = object.toJavaObject(Account.class); Account save = object.toJavaObject(Account.class);
handleBanned(account, save);
BeanUtils.copyProperties(save, account, "password", "registerTime"); BeanUtils.copyProperties(save, account, "password", "registerTime");
service.saveOrUpdate(account); service.saveOrUpdate(account);
AccountDetails details = detailsService.findAccountDetailsById(id); AccountDetails details = detailsService.findAccountDetailsById(id);
@ -66,4 +77,13 @@ public class AccountAdminController {
BeanUtils.copyProperties(savePrivacy, privacy); BeanUtils.copyProperties(savePrivacy, privacy);
return RestBean.success(); return RestBean.success();
} }
private void handleBanned(Account old, Account current) {
String key = Const.BANNED_BLOCK + old.getId();
if(old.isBanned() && !current.isBanned()) {
template.delete(key);
} else if(!old.isBanned() && current.isBanned()) {
template.opsForValue().set(key, "true", expire, TimeUnit.HOURS);
}
}
} }

8
my-project-backend/src/main/java/com/example/filter/JwtAuthenticationFilter.java
View File

@ -8,6 +8,7 @@ import jakarta.servlet.FilterChain;
import jakarta.servlet.ServletException; import jakarta.servlet.ServletException;
import jakarta.servlet.http.HttpServletRequest; import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse; import jakarta.servlet.http.HttpServletResponse;
import org.springframework.data.redis.core.StringRedisTemplate;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.context.SecurityContextHolder; import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.UserDetails; import org.springframework.security.core.userdetails.UserDetails;
@ -27,6 +28,9 @@ public class JwtAuthenticationFilter extends OncePerRequestFilter {
@Resource @Resource
JwtUtils utils; JwtUtils utils;
@Resource
private StringRedisTemplate template;
@Override @Override
protected void doFilterInternal(HttpServletRequest request, protected void doFilterInternal(HttpServletRequest request,
HttpServletResponse response, HttpServletResponse response,
@ -35,11 +39,15 @@ public class JwtAuthenticationFilter extends OncePerRequestFilter {
DecodedJWT jwt = utils.resolveJwt(authorization); DecodedJWT jwt = utils.resolveJwt(authorization);
if(jwt != null) { if(jwt != null) {
UserDetails user = utils.toUser(jwt); UserDetails user = utils.toUser(jwt);
if(!template.hasKey(Const.BANNED_BLOCK + utils.toId(jwt))) {
UsernamePasswordAuthenticationToken authentication = UsernamePasswordAuthenticationToken authentication =
new UsernamePasswordAuthenticationToken(user, null, user.getAuthorities()); new UsernamePasswordAuthenticationToken(user, null, user.getAuthorities());
authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request)); authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
SecurityContextHolder.getContext().setAuthentication(authentication); SecurityContextHolder.getContext().setAuthentication(authentication);
request.setAttribute(Const.ATTR_USER_ID, utils.toId(jwt)); request.setAttribute(Const.ATTR_USER_ID, utils.toId(jwt));
} else {
utils.invalidateJwt(authorization);
}
} }
filterChain.doFilter(request, response); filterChain.doFilter(request, response);
} }

1
my-project-backend/src/main/java/com/example/utils/Const.java
View File

@ -10,6 +10,7 @@ public final class Const {
//请求频率限制 //请求频率限制
public final static String FLOW_LIMIT_COUNTER = "flow:counter:"; public final static String FLOW_LIMIT_COUNTER = "flow:counter:";
public final static String FLOW_LIMIT_BLOCK = "flow:block:"; public final static String FLOW_LIMIT_BLOCK = "flow:block:";
public final static String BANNED_BLOCK = "banned:block:";
//邮件验证码 //邮件验证码
public final static String VERIFY_EMAIL_LIMIT = "verify:email:limit:"; public final static String VERIFY_EMAIL_LIMIT = "verify:email:limit:";
public final static String VERIFY_EMAIL_DATA = "verify:email:data:"; public final static String VERIFY_EMAIL_DATA = "verify:email:data:";