Update TokenFilter.java

report-core/src/main/java/com/anjiplus/template/gaea/business/filter/TokenFilter.java

@@ -7,14 +7,18 @@ import com.anji.plus.gaea.cache.CacheHelper;
 import com.anji.plus.gaea.utils.JwtBean;
 import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.core.Ordered;
 import org.springframework.core.annotation.Order;
 import org.springframework.stereotype.Component;
 
+import javax.annotation.PostConstruct;
 import javax.servlet.*;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.io.IOException;
+import java.util.List;
+import java.util.regex.Pattern;
 
 /**
  * 简单的鉴权
@@ -28,11 +32,44 @@ public class TokenFilter implements Filter {
     @Autowired
     private JwtBean jwtBean;
 
+    /**跳过token验证和权限验证的url清单*/
+    @Value("#{'${customer.skip-authenticate-urls}'.split(',')}")
+    private List<String> skipAuthenticateUrls;
+    private Pattern SKIP_AUTHENTICATE_PATTERN;
+
     @Override
     public void init(FilterConfig filterConfig) throws ServletException {
         Filter.super.init(filterConfig);
     }
 
+    /** 根据名单，生成正则
+     * @param skipUrlList
+     * @return
+     */
+    private Pattern fitByList(List<String> skipUrlList){
+        if(skipUrlList == null || skipUrlList.size() == 0){
+            return Pattern.compile(".*().*");
+        }
+        StringBuffer patternString = new StringBuffer();
+        patternString.append(".*(");
+
+        skipUrlList.stream().forEach(url ->{
+            patternString.append(url.trim());
+            patternString.append("|");
+        });
+        if(skipUrlList.size()>0){
+            patternString.deleteCharAt(patternString.length()-1);
+        }
+        patternString.append(").*");
+
+        return Pattern.compile(patternString.toString());
+    }
+
+    @PostConstruct
+    private void postConstruct() {
+        SKIP_AUTHENTICATE_PATTERN = fitByList(skipAuthenticateUrls);
+    }
+
     @Override
     public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
         HttpServletRequest request = (HttpServletRequest) servletRequest;
@@ -43,47 +80,48 @@ public class TokenFilter implements Filter {
             response.sendRedirect("/index.html");
             return;
         }
-        if (!uri.startsWith("/login")
-                && !uri.startsWith("/static")
-                && !uri.startsWith("/file/download/")
-                && !uri.contains("index.html")) {
-
-            //获取token
-            String authorization = request.getHeader("Authorization");
-            if (StringUtils.isBlank(authorization)) {
-                error(response);
-                return;
-            }
 
-            String username = jwtBean.getUsername(authorization);
-//            String uuid = jwtBean.getUUID(authorization);
+        // 不需要token验证和权限验证的url，直接放行
+        boolean skipAuthenticate = SKIP_AUTHENTICATE_PATTERN.matcher(uri).matches();
+        if(skipAuthenticate){
+            filterChain.doFilter(request, response);
+            return;
+        }
 
-            if (!cacheHelper.exist(username)) {
-                error(response);
-                return;
-            }
+        //获取token
+        String authorization = request.getHeader("Authorization");
+        if (StringUtils.isBlank(authorization)) {
+            error(response);
+            return;
+        }
 
-            //延长有效期
-            cacheHelper.stringSetExpire(username, authorization, 3600);
+        String username = jwtBean.getUsername(authorization);
+//            String uuid = jwtBean.getUUID(authorization);
 
+        if (!cacheHelper.exist(username)) {
+            error(response);
+            return;
+        }
 
-            //在线体验版本
-            if (username.equals("guest")
-                    && !uri.endsWith("/dataSet/testTransform")
-                    && !uri.endsWith("/reportDashboard/getData")
-                    && !uri.startsWith("/dict")
-                    && !uri.startsWith("/dict")
+        //延长有效期
+        cacheHelper.stringSetExpire(username, authorization, 3600);
+
+        //在线体验版本
+        if (username.equals("guest")
+                && !uri.endsWith("/dataSet/testTransform")
+                && !uri.endsWith("/reportDashboard/getData")
+                && !uri.startsWith("/dict")
+                && !uri.startsWith("/dict")
+        ) {
+            //不允许删除
+            String method = request.getMethod();
+            if ("post".equalsIgnoreCase(method)
+                    || "put".equalsIgnoreCase(method)
+                    || "delete".equalsIgnoreCase(method)
             ) {
-                //不允许删除
-                String method = request.getMethod();
-                if ("post".equalsIgnoreCase(method)
-                        || "put".equalsIgnoreCase(method)
-                        || "delete".equalsIgnoreCase(method)
-                ) {
-                    ResponseBean responseBean = ResponseBean.builder().code("50001").message("在线体验版本，不允许此操作。请自行下载本地运行").build();
-                    response.getWriter().print(JSONObject.toJSONString(responseBean));
-                    return;
-                }
+                ResponseBean responseBean = ResponseBean.builder().code("50001").message("在线体验版本，不允许此操作。请自行下载本地运行").build();
+                response.getWriter().print(JSONObject.toJSONString(responseBean));
+                return;
             }
         }