Skip to content

C
cc-service
Commit 1346c2f3 authored by huangcb's avatar huangcb
Browse files
Options

RestLogFilter/接口鉴权日志输出级别调整为debug

parent 3ca37f01
Hide whitespace changes
Inline Side-by-side
Showing with 60 additions and 26 deletions
src/main/java/com/esv/datacenter/cc/common/filter/RestLogFilter.java
View file @ 1346c2f3
...@@ -37,16 +37,20 @@ public class RestLogFilter implements Filter { ...@@ -37,16 +37,20 @@ public class RestLogFilter implements Filter {
RestRequestWrapper requestWrapper = new RestRequestWrapper((HttpServletRequest)servletRequest); RestRequestWrapper requestWrapper = new RestRequestWrapper((HttpServletRequest)servletRequest);
RestResponseWrapper responseWrapper = new RestResponseWrapper((HttpServletResponse) servletResponse); RestResponseWrapper responseWrapper = new RestResponseWrapper((HttpServletResponse) servletResponse);
// 日志输出请求体 if (log.isDebugEnabled()) {
this.logReq(requestWrapper); // 日志输出请求体
this.logReq(requestWrapper);
// 日志输出请求头 // 日志输出请求头
this.logReqHeader(requestWrapper); this.logReqHeader(requestWrapper);
}
filterChain.doFilter(requestWrapper, responseWrapper); filterChain.doFilter(requestWrapper, responseWrapper);
// 日志输出返回体 if (log.isDebugEnabled()) {
this.logRes(responseWrapper); // 日志输出返回体
this.logRes(responseWrapper);
}
} }
/** /**
...@@ -76,7 +80,7 @@ public class RestLogFilter implements Filter { ...@@ -76,7 +80,7 @@ public class RestLogFilter implements Filter {
} }
// 日志输出请求体 // 日志输出请求体
log.info("[IP={}]收到{}请求,url:{},body:{}", ReqUtils.getHttpClientIp(requestWrapper), method, url, reqBody); log.debug("[IP={}]收到{}请求,url:{},body:{}", ReqUtils.getHttpClientIp(requestWrapper), method, url, reqBody);
} }
/** /**
...@@ -89,7 +93,7 @@ public class RestLogFilter implements Filter { ...@@ -89,7 +93,7 @@ public class RestLogFilter implements Filter {
String key = (String) headerNames.nextElement(); String key = (String) headerNames.nextElement();
headerJson.put(key, request.getHeader(key)); headerJson.put(key, request.getHeader(key));
} }
log.info("请求头:{}", headerJson.toJSONString()); log.debug("请求头:{}", headerJson.toJSONString());
} }
/** /**
...@@ -103,7 +107,7 @@ public class RestLogFilter implements Filter { ...@@ -103,7 +107,7 @@ public class RestLogFilter implements Filter {
} catch (UnsupportedEncodingException e) { } catch (UnsupportedEncodingException e) {
log.error(e.getMessage(), e); log.error(e.getMessage(), e);
} }
log.info("请求响应:{}", resBody); log.debug("请求响应:{}", resBody);
} }
} }
src/main/java/com/esv/datacenter/cc/module/authentication/feign/AuthFeignClientImpl.java
View file @ 1346c2f3
package com.esv.datacenter.cc.module.authentication.feign; package com.esv.datacenter.cc.module.authentication.feign;
import com.esv.common.response.ECode;
import com.esv.common.response.EResponse;
import com.esv.datacenter.cc.common.component.JwtAuthComponent; import com.esv.datacenter.cc.common.component.JwtAuthComponent;
import com.esv.datacenter.cc.common.constants.ApiResponseCode; import com.esv.datacenter.cc.common.constants.ApiResponseCode;
import com.esv.datacenter.cc.module.account.bo.TokenBO; import com.esv.datacenter.cc.module.account.bo.TokenBO;
import com.esv.datacenter.cc.module.apiauth.service.ApiAuthorityService; import com.esv.datacenter.cc.module.apiauth.service.ApiAuthorityService;
import com.esv.datacenter.cc.module.authentication.service.AuthenticationService; import com.esv.datacenter.cc.module.authentication.service.AuthenticationService;
import com.esv.datacenter.cc.util.RequestUriUtils; import com.esv.datacenter.cc.util.RequestUriUtils;
import com.esv.common.response.ECode;
import com.esv.common.response.EResponse;
import com.esv.feign.cc.client.AuthFeignClient; import com.esv.feign.cc.client.AuthFeignClient;
import com.esv.feign.cc.req.WebReqAuthReq; import com.esv.feign.cc.req.WebReqAuthReq;
import com.esv.feign.cc.res.WebReqAuthRes; import com.esv.feign.cc.res.WebReqAuthRes;
...@@ -63,7 +63,9 @@ public class AuthFeignClientImpl implements AuthFeignClient { ...@@ -63,7 +63,9 @@ public class AuthFeignClientImpl implements AuthFeignClient {
} }
String token = webReqAuthReq.getToken(); String token = webReqAuthReq.getToken();
String menuCode = webReqAuthReq.getMenuCode(); String menuCode = webReqAuthReq.getMenuCode();
log.info("系统鉴权开始 -- menuCode:{}, reqUrl:{}, token:{}", menuCode, reqUrl, token); if (log.isDebugEnabled()) {
log.debug("系统鉴权开始 -- menuCode:{}, reqUrl:{}, token:{}", menuCode, reqUrl, token);
}
WebReqAuthRes webReqAuthRes = new WebReqAuthRes(); WebReqAuthRes webReqAuthRes = new WebReqAuthRes();
webReqAuthRes.setSystemCode(RequestUriUtils.getSystemCode(reqUrl)); webReqAuthRes.setSystemCode(RequestUriUtils.getSystemCode(reqUrl));
...@@ -71,25 +73,35 @@ public class AuthFeignClientImpl implements AuthFeignClient { ...@@ -71,25 +73,35 @@ public class AuthFeignClientImpl implements AuthFeignClient {
Map<String, Object> apiMap = apiAuthorityService.getAllApiMap(); Map<String, Object> apiMap = apiAuthorityService.getAllApiMap();
if (!apiMap.containsKey(reqUrl)) { if (!apiMap.containsKey(reqUrl)) {
// URL未注册 // URL未注册
log.info("URL未注册:{}", reqUrl); if (log.isDebugEnabled()) {
log.debug("URL未注册:{}", reqUrl);
}
return EResponse.error(ApiResponseCode.URL_REGISTERED); return EResponse.error(ApiResponseCode.URL_REGISTERED);
} }
// 鉴权类型 // 鉴权类型
int authType = (int) apiMap.get(reqUrl); int authType = (int) apiMap.get(reqUrl);
log.info("该接口鉴权类型authType:{}", authType); if (log.isDebugEnabled()) {
log.debug("该接口鉴权类型authType:{}", authType);
}
// 接口不需鉴权 // 接口不需鉴权
if (0 == authType) { if (0 == authType) {
log.info("该请求不需要鉴权"); if (log.isDebugEnabled()) {
log.debug("该请求不需要鉴权");
}
return EResponse.ok(webReqAuthRes).message("该请求不需要鉴权"); return EResponse.ok(webReqAuthRes).message("该请求不需要鉴权");
} }
// 判断token格式是否正确 // 判断token格式是否正确
if (StringUtils.isEmpty(token)) { if (StringUtils.isEmpty(token)) {
log.info("无效的Token"); if (log.isDebugEnabled()) {
log.debug("无效的Token");
}
return EResponse.error(ECode.TOKEN_INVALID); return EResponse.error(ECode.TOKEN_INVALID);
} else { } else {
if (!token.startsWith("Basic ")) { if (!token.startsWith("Basic ")) {
// token无效 // token无效
log.info("Token格式错误"); if (log.isDebugEnabled()) {
log.debug("Token格式错误");
}
return EResponse.error(ECode.TOKEN_INVALID); return EResponse.error(ECode.TOKEN_INVALID);
} }
token = StringUtils.trimToNull(token.replaceFirst("Basic ", "")); token = StringUtils.trimToNull(token.replaceFirst("Basic ", ""));
...@@ -97,11 +109,15 @@ public class AuthFeignClientImpl implements AuthFeignClient { ...@@ -97,11 +109,15 @@ public class AuthFeignClientImpl implements AuthFeignClient {
// 解析token // 解析token
TokenBO tokenBO = jwtAuthComponent.parseToken(token); TokenBO tokenBO = jwtAuthComponent.parseToken(token);
if (null == tokenBO) { if (null == tokenBO) {
log.info("无效的Token"); if (log.isDebugEnabled()) {
log.debug("无效的Token");
}
return EResponse.error(ECode.TOKEN_INVALID); return EResponse.error(ECode.TOKEN_INVALID);
} else if ((0L != tokenBO.getExpireTime()) } else if ((0L != tokenBO.getExpireTime())
&& (System.currentTimeMillis() > tokenBO.getExpireTime())) { && (System.currentTimeMillis() > tokenBO.getExpireTime())) {
log.info("Token已过期"); if (log.isDebugEnabled()) {
log.debug("Token已过期");
}
return EResponse.error(ECode.TOKEN_EXPIRED); return EResponse.error(ECode.TOKEN_EXPIRED);
} }
// 拼装返回信息 // 拼装返回信息
...@@ -111,7 +127,9 @@ public class AuthFeignClientImpl implements AuthFeignClient { ...@@ -111,7 +127,9 @@ public class AuthFeignClientImpl implements AuthFeignClient {
webReqAuthRes.setDepartmentId(tokenBO.getDepartmentId()); webReqAuthRes.setDepartmentId(tokenBO.getDepartmentId());
// 接口只需token, 不需要具体权限 // 接口只需token, 不需要具体权限
if (1 == authType) { if (1 == authType) {
log.info("鉴权通过"); if (log.isDebugEnabled()) {
log.debug("鉴权通过");
}
// 设置数据权限 // 设置数据权限
authenticationService.setTokenDataPerm(tokenBO, webReqAuthRes); authenticationService.setTokenDataPerm(tokenBO, webReqAuthRes);
return EResponse.ok(webReqAuthRes); return EResponse.ok(webReqAuthRes);
......
src/main/java/com/esv/datacenter/cc/module/authentication/service/impl/AuthenticationServiceImpl.java
View file @ 1346c2f3
...@@ -55,9 +55,13 @@ public class AuthenticationServiceImpl implements AuthenticationService { ...@@ -55,9 +55,13 @@ public class AuthenticationServiceImpl implements AuthenticationService {
@Override @Override
public EResponse<WebReqAuthRes> access(WebReqAuthRes webReqAuthRes, String menuCode, String url) { public EResponse<WebReqAuthRes> access(WebReqAuthRes webReqAuthRes, String menuCode, String url) {
Long userId = webReqAuthRes.getUserId(); Long userId = webReqAuthRes.getUserId();
log.info("用户鉴权开始 -- UserId:{}, MenuCode:{}, Url:{}", userId, menuCode, url); if (log.isDebugEnabled()) {
log.debug("用户鉴权开始 -- UserId:{}, MenuCode:{}, Url:{}", userId, menuCode, url);
}
if (userRoleService.hasSuperAdminRole(userId)) { if (userRoleService.hasSuperAdminRole(userId)) {
log.info("用户拥有超级管理员角色, 数据权限类型:{}", webReqAuthRes.getDataPerm()); if (log.isDebugEnabled()) {
log.debug("用户拥有超级管理员角色, 数据权限类型:{}", webReqAuthRes.getDataPerm());
}
return EResponse.ok(webReqAuthRes); return EResponse.ok(webReqAuthRes);
} }
...@@ -72,7 +76,9 @@ public class AuthenticationServiceImpl implements AuthenticationService { ...@@ -72,7 +76,9 @@ public class AuthenticationServiceImpl implements AuthenticationService {
Set<String> userPermSet = menuService.userPermSet(null, userId, null); Set<String> userPermSet = menuService.userPermSet(null, userId, null);
String permStr = RequestUriUtils.getPermsUrl(url); String permStr = RequestUriUtils.getPermsUrl(url);
if (!userPermSet.contains(permStr)) { if (!userPermSet.contains(permStr)) {
log.info("鉴权失败, 用户没有该权限"); if (log.isDebugEnabled()) {
log.debug("鉴权失败, 用户没有该权限");
}
return EResponse.error(ApiResponseCode.NO_AUTHORITY); return EResponse.error(ApiResponseCode.NO_AUTHORITY);
} }
...@@ -94,7 +100,9 @@ public class AuthenticationServiceImpl implements AuthenticationService { ...@@ -94,7 +100,9 @@ public class AuthenticationServiceImpl implements AuthenticationService {
webReqAuthRes.setDepartmentChildren(departmentChildren); webReqAuthRes.setDepartmentChildren(departmentChildren);
} }
webReqAuthRes.setDataPerm(dataPerm); webReqAuthRes.setDataPerm(dataPerm);
log.info("鉴权成功, 数据权限类型:{}", dataPerm); if (log.isDebugEnabled()) {
log.debug("鉴权成功, 数据权限类型:{}", dataPerm);
}
return EResponse.ok(webReqAuthRes); return EResponse.ok(webReqAuthRes);
} }
...@@ -121,7 +129,9 @@ public class AuthenticationServiceImpl implements AuthenticationService { ...@@ -121,7 +129,9 @@ public class AuthenticationServiceImpl implements AuthenticationService {
@Override @Override
public boolean isAllowAccess(long userId, String url) { public boolean isAllowAccess(long userId, String url) {
log.info("鉴权开始 -- UserId:{}, Url:{}", userId, url); if (log.isDebugEnabled()) {
log.debug("鉴权开始 -- UserId:{}, Url:{}", userId, url);
}
Preconditions.checkArgument(StringUtils.isNotBlank(url)); Preconditions.checkArgument(StringUtils.isNotBlank(url));
if (userRoleService.hasSuperAdminRole(userId)) { if (userRoleService.hasSuperAdminRole(userId)) {
return true; return true;
...@@ -145,7 +155,9 @@ public class AuthenticationServiceImpl implements AuthenticationService { ...@@ -145,7 +155,9 @@ public class AuthenticationServiceImpl implements AuthenticationService {
Set<String> userPermSet = menuService.userPermSet(entity.getId(), userId, null); Set<String> userPermSet = menuService.userPermSet(entity.getId(), userId, null);
String permStr = RequestUriUtils.getPermsUrl(url); String permStr = RequestUriUtils.getPermsUrl(url);
boolean result = userPermSet.contains(permStr); boolean result = userPermSet.contains(permStr);
log.info("鉴权结果 -- {}", result); if (log.isDebugEnabled()) {
log.debug("鉴权结果 -- {}", result);
}
return result; return result;
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment