package security.internal;
|
|
import java.io.Serializable;
|
import java.util.Date;
|
import java.util.List;
|
import java.util.Set;
|
import java.util.stream.Collectors;
|
|
import org.apache.commons.lang3.ObjectUtils;
|
import org.springframework.jdbc.core.JdbcTemplate;
|
|
import kernel.exception.BusinessException;
|
import kernel.web.ApplicationUtil;
|
import project.Constants;
|
import project.log.Log;
|
import project.log.LogService;
|
import security.Resource;
|
import security.Role;
|
import security.RoleService;
|
|
public class RoleServiceImpl implements RoleService {
|
|
private LogService logService;
|
|
private SecurityAuthoritiesHolder securityAuthoritiesHolder;
|
|
public Role findRoleByName(String roleName) {
|
List<Role> list=ApplicationUtil.executeSelect(Role.class,"WHERE ROLE_NAME=?",new Object[] {roleName});
|
|
if(null==list || list.isEmpty()) return null;
|
if(list.size()>1) throw new RuntimeException("Found Duplicate Name In Role Table!");
|
|
return bindResource(list.get(0));
|
}
|
|
@Override
|
public List<Role> getAll() {
|
List<Role> roleList=ApplicationUtil.executeSelect(Role.class);
|
if(null!=roleList) for(int i=0;i<roleList.size();bindResource(roleList.get(i++)));
|
return roleList;
|
}
|
|
@Override
|
public Role get(String id) {
|
return bindResource(ApplicationUtil.executeGet(id,Role.class));
|
}
|
|
public void addRole(Role role,String operaterUsername,String ip) {
|
Role roleDB = this.findRoleByName(role.getRoleName());
|
if (null != roleDB) throw new BusinessException("存在重复的角色名称");
|
|
ApplicationUtil.executeInsert(role);
|
cascadeResource(role);
|
|
securityAuthoritiesHolder.clean();
|
|
saveLog(role,operaterUsername,"ip:"+ip+"管理员添加角色:"+role.getRoleName());
|
}
|
|
public void setSecurityAuthoritiesHolder(SecurityAuthoritiesHolder securityAuthoritiesHolder) {
|
this.securityAuthoritiesHolder = securityAuthoritiesHolder;
|
}
|
|
public void update(Role role,String operaterUsername,String beforeResourceName,String afterResourceName,String code,String ip) {
|
List<Integer> roleNameNums=ApplicationUtil.executeDQL("SELECT COUNT(UUID) FROM SCT_ROLE WHERE ROLE_NAME=?",new Object[]{role.getRoleName()},Integer.class);
|
if(null!=roleNameNums && !roleNameNums.isEmpty() && roleNameNums.get(0)>1) throw new BusinessException("存在重复的角色名称");
|
|
ApplicationUtil.executeSaveOrUpdate(role);
|
cascadeResource(role);
|
|
securityAuthoritiesHolder.clean();
|
|
saveLog(role,operaterUsername,"ip:"+ip+"管理员修改角色名及角色权限,角色名:["+role.getRoleName()+"],原有权限:["+beforeResourceName+"],修改后权限:["+afterResourceName+"],验证码:["+code+"]");
|
}
|
|
@Override
|
public void removeById(String id,String operaterUsername,String ip) {
|
List<Integer> userNums=ApplicationUtil.executeDQL("SELECT COUNT(USER_UUID) FROM SCT_USER_ROLE WHERE ROLE_UUID=?",new Object[]{id},Integer.class);
|
if(null!=userNums && !userNums.isEmpty() && userNums.get(0)>1) throw new BusinessException("角色被用户关联,不可删除");
|
|
Role role=ApplicationUtil.executeGet(id, Role.class);
|
if(null!=role) {
|
ApplicationUtil.executeDel(id, Role.class);
|
ApplicationUtil.executeDML("DELETE FROM SCT_ROLE_RESOURCE WHERE ROLE_UUID=?",id);
|
}
|
|
securityAuthoritiesHolder.clean();
|
saveLog(role,operaterUsername,"ip:"+ip+"管理员删除角色"+role.getRoleName());
|
}
|
|
public void saveLog(Role role, String operator,String context) {
|
Log log = new Log();
|
log.setCategory(Constants.LOG_CATEGORY_OPERATION);
|
log.setUsername(operator);
|
log.setOperator(operator);
|
log.setLog(context);
|
log.setCreateTime(new Date());
|
logService.saveSync(log);
|
}
|
|
public void setLogService(LogService logService) {
|
this.logService = logService;
|
}
|
|
/**
|
* 级联角色资源
|
* @param secuser 用户对象
|
*/
|
private static final void cascadeResource(Role role) {
|
if(null==role) return;
|
|
JdbcTemplate jdbcTemplate=ApplicationUtil.getBean(JdbcTemplate.class);
|
Set<Resource> resources=role.getResources();
|
Serializable roleId=role.getId();
|
|
jdbcTemplate.update("DELETE FROM SCT_ROLE_RESOURCE WHERE ROLE_UUID=?",roleId);
|
if(ObjectUtils.isEmpty(resources)) return;
|
|
List<Object[]> paramsList=resources.stream().map(res->new Object[] {res.getId(),roleId}).collect(Collectors.toList());
|
jdbcTemplate.batchUpdate("INSERT INTO SCT_ROLE_RESOURCE(RESOURCE_UUID,ROLE_UUID) VALUES(?,?)",paramsList);
|
}
|
|
/**
|
* 绑定资源到角色
|
* @param role 角色对象
|
* @return 角色对象
|
*/
|
private static final Role bindResource(Role role) {
|
if(null==role) return null;
|
String whereSubStatement="WHERE UUID IN(SELECT RESOURCE_UUID FROM SCT_ROLE_RESOURCE WHERE ROLE_UUID=?)";
|
List<Resource> resourceList=ApplicationUtil.executeSelect(Resource.class,whereSubStatement,new Object[] {role.getId()});
|
if(null!=resourceList && !resourceList.isEmpty()) role.setResources(resourceList.stream().filter(res->null!=res).collect(Collectors.toSet()));
|
return role;
|
}
|
}
|
