listRoleWithResourceByRoleId(Long roleId) {
30 | return this.permissionMapper.listRoleWithResourceByRoleId(roleId);
31 | }
32 | }
33 |
--------------------------------------------------------------------------------
/admin/src/utils/validate.js:
--------------------------------------------------------------------------------
1 | /**
2 | * url地址
3 | * @param url
4 | * @returns {boolean}
5 | */
6 | export function isValidateURL(url) {
7 | const reg = /^(https?|ftp):\/\/([a-zA-Z0-9.-]+(:[a-zA-Z0-9.&%$-]+)*@)*((25[0-5]|2[0-4][0-9]|1[0-9]{2}|[1-9][0-9]?)(\.(25[0-5]|2[0-4][0-9]|1[0-9]{2}|[1-9]?[0-9])){3}|([a-zA-Z0-9-]+\.)*[a-zA-Z0-9-]+\.(com|edu|gov|int|mil|net|org|biz|arpa|info|name|pro|aero|coop|museum|[a-zA-Z]{2}))(:[0-9]+)*(\/($|[a-zA-Z0-9.,?'\\+&%$#=~_-]+))*$/
8 | return reg.test(url)
9 | }
10 |
11 | /**
12 | * 小写字母
13 | * @param str
14 | * @returns {boolean}
15 | */
16 | export function isValidateLowerCase(str) {
17 | const reg = /^[a-z]+$/
18 | return reg.test(str)
19 | }
20 |
21 | /**
22 | * 大写字母
23 | * @param str
24 | * @returns {boolean}
25 | */
26 | export function isValidateUpperCase(str) {
27 | const reg = /^[A-Z]+$/
28 | return reg.test(str)
29 | }
30 |
31 | /**
32 | * 邮箱
33 | * @param email
34 | * @returns {boolean}
35 | */
36 | export function isValidateEmail(email) {
37 | const reg = /^(([^<>()\[\]\\.,;:\s@"]+(\.[^<>()\[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/
38 | return reg.test(email)
39 | }
40 |
41 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/core/response/ResultCode.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.core.response;
2 |
3 | /**
4 | * 响应状态码枚举类
5 | *
6 | * 自定义业务异常 2*** 开始
7 | *
8 | *
原有类异常 4*** 开始
9 | *
10 | * @author Zoctan
11 | * @date 2018/07/14
12 | */
13 | public enum ResultCode {
14 | SUCCEED_REQUEST_FAILED_RESULT(1000, "成功请求,但结果不是期望的成功结果"),
15 |
16 | FIND_FAILED(2000, "查询失败"),
17 |
18 | SAVE_FAILED(2001, "保存失败"),
19 |
20 | UPDATE_FAILED(2002, "更新失败"),
21 |
22 | DELETE_FAILED(2003, "删除失败"),
23 |
24 | DUPLICATE_NAME(2004, "账户名重复"),
25 |
26 | DATABASE_EXCEPTION(4001, "数据库异常"),
27 |
28 | UNAUTHORIZED_EXCEPTION(4002, "认证异常"),
29 |
30 | VIOLATION_EXCEPTION(4003, "验证异常");
31 |
32 | private final int value;
33 |
34 | private final String reason;
35 |
36 | ResultCode(final int value, final String reason) {
37 | this.value = value;
38 | this.reason = reason;
39 | }
40 |
41 | public int getValue() {
42 | return this.value;
43 | }
44 |
45 | public String getReason() {
46 | return this.reason;
47 | }
48 |
49 | public String format(final Object... objects) {
50 | return objects.length > 0 ? String.format(this.getReason(), objects) : this.getReason();
51 | }
52 | }
53 |
--------------------------------------------------------------------------------
/admin/src/icons/svg/log.svg:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/admin/src/icons/svg/password.svg:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/admin/test/e2e/nightwatch.conf.js:
--------------------------------------------------------------------------------
1 | require('babel-register')
2 | var config = require('../../config')
3 |
4 | // http://nightwatchjs.org/gettingstarted#settings-file
5 | module.exports = {
6 | src_folders: ['test/e2e/specs'],
7 | output_folder: 'test/e2e/reports',
8 | custom_assertions_path: ['test/e2e/custom-assertions'],
9 |
10 | selenium: {
11 | start_process: true,
12 | server_path: require('selenium-server').path,
13 | host: '127.0.0.1',
14 | port: 4444,
15 | cli_args: {
16 | 'webdriver.chrome.driver': require('chromedriver').path
17 | }
18 | },
19 |
20 | test_settings: {
21 | default: {
22 | selenium_port: 4444,
23 | selenium_host: 'localhost',
24 | silent: true,
25 | globals: {
26 | devServerURL: 'http://localhost:' + (process.env.PORT || config.dev.port)
27 | }
28 | },
29 |
30 | chrome: {
31 | desiredCapabilities: {
32 | browserName: 'chrome',
33 | javascriptEnabled: true,
34 | acceptSslCerts: true
35 | }
36 | },
37 |
38 | firefox: {
39 | desiredCapabilities: {
40 | browserName: 'firefox',
41 | javascriptEnabled: true,
42 | acceptSslCerts: true
43 | }
44 | }
45 | }
46 | }
47 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/core/response/Result.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.core.response;
2 |
3 | import com.alibaba.fastjson.JSON;
4 | import io.swagger.annotations.ApiModel;
5 | import io.swagger.annotations.ApiModelProperty;
6 |
7 | /**
8 | * @author Zoctan
9 | * @date 2018/07/15
10 | */
11 | @ApiModel(value = "响应结果")
12 | public class Result {
13 | @ApiModelProperty(value = "状态码")
14 | private Integer code;
15 |
16 | @ApiModelProperty(value = "消息")
17 | private String message;
18 |
19 | @ApiModelProperty(value = "数据")
20 | private T data;
21 |
22 | @Override
23 | public String toString() {
24 | return JSON.toJSONString(this);
25 | }
26 |
27 | public Integer getCode() {
28 | return this.code;
29 | }
30 |
31 | public Result setCode(final Integer code) {
32 | this.code = code;
33 | return this;
34 | }
35 |
36 | public String getMessage() {
37 | return this.message;
38 | }
39 |
40 | public Result setMessage(final String message) {
41 | this.message = message;
42 | return this;
43 | }
44 |
45 | public T getData() {
46 | return this.data;
47 | }
48 |
49 | public Result setData(final T data) {
50 | this.data = data;
51 | return this;
52 | }
53 | }
54 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/mapper/AccountMapper.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.mapper;
2 |
3 | import com.zoctan.api.core.mapper.MyMapper;
4 | import com.zoctan.api.dto.AccountWithRole;
5 | import com.zoctan.api.dto.AccountWithRolePermission;
6 | import com.zoctan.api.entity.Account;
7 | import org.apache.ibatis.annotations.Param;
8 |
9 | import java.util.List;
10 | import java.util.Map;
11 |
12 | /**
13 | * @author Zoctan
14 | * @date 2018/06/09
15 | */
16 | public interface AccountMapper extends MyMapper {
17 | /**
18 | * 获取所有用户以及对应角色
19 | *
20 | * @return 用户列表
21 | */
22 | List listAllWithRole();
23 |
24 | /**
25 | * 按微信小程序Id获取用户
26 | *
27 | * @return 用户
28 | */
29 | Account findByWechatOpenId(@Param("openId") String openId);
30 |
31 | /**
32 | * 按条件获取用户
33 | *
34 | * @param params 参数
35 | * @return 用户列表
36 | */
37 | List findWithRoleBy(final Map params);
38 |
39 | /**
40 | * 按条件查询用户信息
41 | *
42 | * @param params 参数
43 | * @return 用户
44 | */
45 | AccountWithRolePermission findDetailBy(Map params);
46 |
47 | /**
48 | * 按用户名更新最后登陆时间
49 | *
50 | * @param name 用户名
51 | */
52 | void updateLoginTimeByName(@Param("name") String name);
53 | }
54 |
--------------------------------------------------------------------------------
/admin/src/styles/index.scss:
--------------------------------------------------------------------------------
1 | @import './mixin.scss';
2 |
3 | body {
4 | -moz-osx-font-smoothing: grayscale;
5 | -webkit-font-smoothing: antialiased;
6 | text-rendering: optimizeLegibility;
7 | font-family: Helvetica Neue, Helvetica, PingFang SC, Hiragino Sans GB, Microsoft YaHei, Arial, sans-serif;
8 | }
9 |
10 | html {
11 | box-sizing: border-box;
12 | }
13 |
14 | *,
15 | *:before,
16 | *:after {
17 | box-sizing: inherit;
18 | }
19 |
20 | a:focus,
21 | a:active {
22 | outline: none;
23 | }
24 |
25 | a,
26 | a:focus,
27 | a:hover {
28 | cursor: pointer;
29 | color: inherit;
30 | text-decoration: none;
31 | }
32 |
33 | .clearFix {
34 | &:after {
35 | visibility: hidden;
36 | display: block;
37 | font-size: 0;
38 | content: " ";
39 | clear: both;
40 | height: 0;
41 | }
42 | }
43 |
44 | //web router transition css
45 | .fade-enter-active,
46 | .fade-leave-active {
47 | transition: all .2s ease
48 | }
49 |
50 | .fade-enter,
51 | .fade-leave-active {
52 | opacity: 0;
53 | }
54 |
55 | //main-container全局样式
56 | .app-main {
57 | min-height: 100%
58 | }
59 |
60 | .app-container {
61 | padding: 20px;
62 | }
63 |
64 | .svg-icon {
65 | width: 1em;
66 | height: 1em;
67 | vertical-align: -0.15em;
68 | fill: currentColor;
69 | overflow: hidden;
70 | }
71 |
72 |
--------------------------------------------------------------------------------
/admin/src/permission.js:
--------------------------------------------------------------------------------
1 | import router from './router'
2 | import store from './store'
3 | import NProgress from 'nprogress' // Progress 进度条
4 | import 'nprogress/nprogress.css'// Progress 进度条样式
5 | import { getToken } from '@/utils/token'
6 |
7 | const whiteList = ['/login'] // 白名单,不需要登录的路由
8 |
9 | router.beforeEach((to, from, next) => {
10 | NProgress.start() // 开始Progress
11 | // 尝试获取cookie中的token
12 | if (getToken()) {
13 | // 有token
14 | if (to.path === '/login') {
15 | // 但下一跳是登陆页
16 | // 转到首页
17 | next({ path: '/' })
18 | } else {
19 | // 下一跳不是登陆页
20 | // VUEX被清除,没有角色名
21 | if (store.getters.roleName === null) {
22 | // 重新获取用户信息
23 | store.dispatch('Detail').then(response => {
24 | // 生成路由
25 | store.dispatch('GenerateRoutes', response.data).then(() => {
26 | router.addRoutes(store.getters.addRouters)
27 | next({ ...to })
28 | })
29 | })
30 | } else {
31 | next()
32 | }
33 | }
34 | } else {
35 | // 如果前往的路径是白名单内的,就可以直接前往
36 | if (whiteList.indexOf(to.path) !== -1) {
37 | next()
38 | } else {
39 | // 如果路径不是白名单内的,而且又没有登录,就转到登录页
40 | next('/login')
41 | NProgress.done() // 结束Progress
42 | }
43 | }
44 | })
45 |
46 | router.afterEach(() => {
47 | NProgress.done() // 结束Progress
48 | })
49 |
--------------------------------------------------------------------------------
/admin/build/build.js:
--------------------------------------------------------------------------------
1 | 'use strict'
2 | require('./check-versions')()
3 |
4 | process.env.NODE_ENV = 'production'
5 |
6 | const ora = require('ora')
7 | const rm = require('rimraf')
8 | const path = require('path')
9 | const chalk = require('chalk')
10 | const webpack = require('webpack')
11 | const config = require('../config')
12 | const webpackConfig = require('./webpack.prod.conf')
13 |
14 | const spinner = ora('building for production...')
15 | spinner.start()
16 |
17 | rm(path.join(config.build.assetsRoot, config.build.assetsSubDirectory), err => {
18 | if (err) throw err
19 | webpack(webpackConfig, (err, stats) => {
20 | spinner.stop()
21 | if (err) throw err
22 | process.stdout.write(stats.toString({
23 | colors: true,
24 | modules: false,
25 | children: false, // If you are using ts-loader, setting this to true will make TypeScript errors show up during build.
26 | chunks: false,
27 | chunkModules: false
28 | }) + '\n\n')
29 |
30 | if (stats.hasErrors()) {
31 | console.log(chalk.red(' Build failed with errors.\n'))
32 | process.exit(1)
33 | }
34 |
35 | console.log(chalk.cyan(' Build complete.\n'))
36 | console.log(chalk.yellow(
37 | ' Tip: built files are meant to be served over an HTTP server.\n' +
38 | ' Opening index.html over file:// won\'t work.\n'
39 | ))
40 | })
41 | })
42 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/controller/AccountRoleController.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.controller;
2 |
3 | import com.zoctan.api.core.response.Result;
4 | import com.zoctan.api.core.response.ResultGenerator;
5 | import com.zoctan.api.entity.AccountRole;
6 | import com.zoctan.api.service.AccountRoleService;
7 | import org.springframework.security.access.prepost.PreAuthorize;
8 | import org.springframework.web.bind.annotation.PutMapping;
9 | import org.springframework.web.bind.annotation.RequestBody;
10 | import org.springframework.web.bind.annotation.RequestMapping;
11 | import org.springframework.web.bind.annotation.RestController;
12 |
13 | import javax.annotation.Resource;
14 | import java.security.Principal;
15 |
16 | /**
17 | * @author Zoctan
18 | * @date 2018/06/09
19 | */
20 | @RestController
21 | @RequestMapping("/account/role")
22 | public class AccountRoleController {
23 | @Resource private AccountRoleService accountRoleService;
24 |
25 | @PreAuthorize("hasAuthority('role:update')")
26 | @PutMapping
27 | public Result updateAccountRole(
28 | @RequestBody final AccountRole accountRole, final Principal principal) {
29 | final AccountRole dbAccountRole =
30 | this.accountRoleService.getBy("accountId", accountRole.getAccountId());
31 | this.accountRoleService.updateRoleIdByAccountId(accountRole);
32 | return ResultGenerator.genOkResult();
33 | }
34 | }
35 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/core/constant/ProjectConstant.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.core.constant;
2 |
3 | /**
4 | * 项目常量
5 | *
6 | * @author Zoctan
7 | * @date 2018/05/27
8 | */
9 | public final class ProjectConstant {
10 | /** 开发环境 */
11 | public static final String SPRING_PROFILE_DEVELOPMENT = "dev";
12 |
13 | /** 生产环境 */
14 | public static final String SPRING_PROFILE_PRODUCTION = "prod";
15 |
16 | /** 测试环境 */
17 | public static final String SPRING_PROFILE_TEST = "test";
18 |
19 | /** 项目基础包名称 */
20 | public static final String BASE_PACKAGE = "com.zoctan.api";
21 |
22 | /** Entity 所在包 */
23 | public static final String ENTITY_PACKAGE = BASE_PACKAGE + ".entity";
24 |
25 | /** Mapper 所在包 */
26 | public static final String MAPPER_PACKAGE = BASE_PACKAGE + ".mapper";
27 |
28 | /** Filter 所在包 */
29 | public static final String FILTER_PACKAGE = BASE_PACKAGE + ".filter";
30 |
31 | /** Service 所在包 */
32 | public static final String SERVICE_PACKAGE = BASE_PACKAGE + ".service";
33 |
34 | /** ServiceImpl 所在包 */
35 | public static final String SERVICE_IMPL_PACKAGE = SERVICE_PACKAGE + ".impl";
36 |
37 | /** Controller 所在包 */
38 | public static final String CONTROLLER_PACKAGE = BASE_PACKAGE + ".controller";
39 |
40 | /** Mapper 插件基础接口的完全限定名 */
41 | public static final String MAPPER_INTERFACE_REFERENCE = BASE_PACKAGE + ".core.mapper.MyMapper";
42 | }
43 |
--------------------------------------------------------------------------------
/api/src/test/java/com/tsbtv/report/WithCustomSecurityContextFactory.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api;
2 |
3 | import com.zoctan.api.service.impl.AccountDetailsServiceImpl;
4 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
5 | import org.springframework.security.core.Authentication;
6 | import org.springframework.security.core.context.SecurityContext;
7 | import org.springframework.security.core.context.SecurityContextHolder;
8 | import org.springframework.security.core.userdetails.UserDetails;
9 | import org.springframework.security.test.context.support.WithSecurityContextFactory;
10 |
11 | import javax.annotation.Resource;
12 |
13 | /**
14 | * 设置用户登陆时的 SecurityContext
15 | *
16 | * @author Zoctan
17 | * @date 2018/11/29
18 | */
19 | public class WithCustomSecurityContextFactory
20 | implements WithSecurityContextFactory {
21 | @Resource private AccountDetailsServiceImpl accountDetailsService;
22 |
23 | @Override
24 | public SecurityContext createSecurityContext(final WithCustomUser customUser) {
25 | final SecurityContext context = SecurityContextHolder.createEmptyContext();
26 | final UserDetails userDetails =
27 | this.accountDetailsService.loadUserByUsername(customUser.name());
28 | final Authentication auth =
29 | new UsernamePasswordAuthenticationToken(userDetails, null, userDetails.getAuthorities());
30 | context.setAuthentication(auth);
31 | return context;
32 | }
33 | }
34 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/util/JsonUtils.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.util;
2 |
3 | import com.alibaba.fastjson.JSON;
4 | import com.alibaba.fastjson.serializer.SimplePropertyPreFilter;
5 |
6 | import java.util.Arrays;
7 |
8 | /**
9 | * Json工具
10 | *
11 | * @author Zoctan
12 | * @date 2018/07/11
13 | */
14 | public class JsonUtils {
15 | private JsonUtils() {}
16 |
17 | /**
18 | * 保留某些字段
19 | *
20 | * @param target 目标对象
21 | * @param fields 字段
22 | * @return 保留字段后的对象
23 | */
24 | public static T keepFields(final Object target, final Class clz, final String... fields) {
25 | final SimplePropertyPreFilter filter = new SimplePropertyPreFilter();
26 | filter.getIncludes().addAll(Arrays.asList(fields));
27 | return done(target, clz, filter);
28 | }
29 |
30 | /**
31 | * 去除某些字段
32 | *
33 | * @param target 目标对象
34 | * @param fields 字段
35 | * @return 去除字段后的对象
36 | */
37 | public static T deleteFields(
38 | final Object target, final Class clz, final String... fields) {
39 | final SimplePropertyPreFilter filter = new SimplePropertyPreFilter();
40 | filter.getExcludes().addAll(Arrays.asList(fields));
41 | return done(target, clz, filter);
42 | }
43 |
44 | private static T done(
45 | final Object target, final Class clz, final SimplePropertyPreFilter filter) {
46 | final String jsonString = JSON.toJSONString(target, filter);
47 | return JSON.parseObject(jsonString, clz);
48 | }
49 | }
50 |
--------------------------------------------------------------------------------
/admin/src/views/layout/components/Levelbar.vue:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | {{ item.name }}
9 | {{ item.name }}
10 |
11 |
12 |
13 |
14 |
42 |
43 |
55 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/filter/MyAuthenticationEntryPoint.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.filter;
2 |
3 | import com.zoctan.api.core.response.ResultCode;
4 | import com.zoctan.api.core.response.ResultGenerator;
5 | import org.springframework.http.MediaType;
6 | import org.springframework.security.core.AuthenticationException;
7 | import org.springframework.security.web.AuthenticationEntryPoint;
8 | import org.springframework.stereotype.Component;
9 |
10 | import javax.servlet.http.HttpServletRequest;
11 | import javax.servlet.http.HttpServletResponse;
12 | import java.io.IOException;
13 | import java.io.Serializable;
14 | import java.nio.charset.StandardCharsets;
15 |
16 | /**
17 | * 认证入口点 因为 RESTFul 没有登录界面所以只显示未登录提示
18 | *
19 | * @author Zoctan
20 | * @date 2018/05/27
21 | */
22 | @Component
23 | public class MyAuthenticationEntryPoint implements AuthenticationEntryPoint, Serializable {
24 | @Override
25 | public void commence(
26 | final HttpServletRequest request,
27 | final HttpServletResponse response,
28 | final AuthenticationException authException)
29 | throws IOException {
30 | response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
31 | response.setHeader("Content-type", MediaType.APPLICATION_JSON_UTF8_VALUE);
32 | response.setCharacterEncoding(StandardCharsets.UTF_8.displayName());
33 | response
34 | .getWriter()
35 | .println(ResultGenerator.genFailedResult(ResultCode.UNAUTHORIZED_EXCEPTION).toString());
36 | response.getWriter().close();
37 | }
38 | }
39 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/controller/PermissionController.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.controller;
2 |
3 | import com.github.pagehelper.PageHelper;
4 | import com.github.pagehelper.PageInfo;
5 | import org.springframework.security.access.prepost.PreAuthorize;
6 | import org.springframework.web.bind.annotation.GetMapping;
7 | import org.springframework.web.bind.annotation.RequestMapping;
8 | import org.springframework.web.bind.annotation.RequestParam;
9 | import org.springframework.web.bind.annotation.RestController;
10 | import com.zoctan.api.core.response.Result;
11 | import com.zoctan.api.core.response.ResultGenerator;
12 | import com.zoctan.api.service.PermissionService;
13 |
14 | import javax.annotation.Resource;
15 | import java.util.List;
16 |
17 | /**
18 | * @author Zoctan
19 | * @date 2018/06/09
20 | */
21 | @RestController
22 | @RequestMapping("/permission")
23 | public class PermissionController {
24 | @Resource private PermissionService permissionService;
25 |
26 | @PreAuthorize("hasAuthority('role:list')")
27 | @GetMapping
28 | public Result listResourcePermission(
29 | @RequestParam(defaultValue = "0") final Integer page,
30 | @RequestParam(defaultValue = "0") final Integer size) {
31 | PageHelper.startPage(page, size);
32 | final List list =
33 | this.permissionService.listResourceWithHandle();
34 | final PageInfo pageInfo = new PageInfo<>(list);
35 | return ResultGenerator.genOkResult(pageInfo);
36 | }
37 | }
38 |
--------------------------------------------------------------------------------
/admin/build/check-versions.js:
--------------------------------------------------------------------------------
1 | 'use strict'
2 | const chalk = require('chalk')
3 | const semver = require('semver')
4 | const packageConfig = require('../package.json')
5 | const shell = require('shelljs')
6 |
7 | function exec (cmd) {
8 | return require('child_process').execSync(cmd).toString().trim()
9 | }
10 |
11 | const versionRequirements = [
12 | {
13 | name: 'node',
14 | currentVersion: semver.clean(process.version),
15 | versionRequirement: packageConfig.engines.node
16 | }
17 | ]
18 |
19 | if (shell.which('npm')) {
20 | versionRequirements.push({
21 | name: 'npm',
22 | currentVersion: exec('npm --version'),
23 | versionRequirement: packageConfig.engines.npm
24 | })
25 | }
26 |
27 | module.exports = function () {
28 | const warnings = []
29 |
30 | for (let i = 0; i < versionRequirements.length; i++) {
31 | const mod = versionRequirements[i]
32 |
33 | if (!semver.satisfies(mod.currentVersion, mod.versionRequirement)) {
34 | warnings.push(mod.name + ': ' +
35 | chalk.red(mod.currentVersion) + ' should be ' +
36 | chalk.green(mod.versionRequirement)
37 | )
38 | }
39 | }
40 |
41 | if (warnings.length) {
42 | console.log('')
43 | console.log(chalk.yellow('To use this template, you must update following to modules:'))
44 | console.log()
45 |
46 | for (let i = 0; i < warnings.length; i++) {
47 | const warning = warnings[i]
48 | console.log(' ' + warning)
49 | }
50 |
51 | console.log()
52 | process.exit(1)
53 | }
54 | }
55 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/core/config/ValidatorConfig.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.core.config;
2 |
3 | import org.hibernate.validator.HibernateValidator;
4 | import org.springframework.context.annotation.Bean;
5 | import org.springframework.context.annotation.Configuration;
6 | import org.springframework.validation.beanvalidation.MethodValidationPostProcessor;
7 |
8 | import javax.validation.Validation;
9 | import javax.validation.Validator;
10 | import javax.validation.ValidatorFactory;
11 |
12 | /**
13 | * 参数校验
14 | * https://docs.jboss.org/hibernate/stable/validator/reference/en-US/html_single/#section-constraint-violation-methods
15 | *
16 | * @author Zoctan
17 | * @date 2018/05/27
18 | */
19 | @Configuration
20 | public class ValidatorConfig {
21 | @Bean
22 | public MethodValidationPostProcessor methodValidationPostProcessor() {
23 | final MethodValidationPostProcessor postProcessor = new MethodValidationPostProcessor();
24 | // 设置 validator 模式为快速失败返回
25 | postProcessor.setValidator(this.validatorFailFast());
26 | return postProcessor;
27 | // 默认是普通模式,会返回所有的验证不通过信息集合
28 | // return new MethodValidationPostProcessor();
29 | }
30 |
31 | @Bean
32 | public Validator validatorFailFast() {
33 | final ValidatorFactory validatorFactory =
34 | Validation.byProvider(HibernateValidator.class)
35 | .configure()
36 | .addProperty("hibernate.validator.fail_fast", "true")
37 | .buildValidatorFactory();
38 | return validatorFactory.getValidator();
39 | }
40 | }
41 |
--------------------------------------------------------------------------------
/api/src/main/resources/application-dev.yml:
--------------------------------------------------------------------------------
1 | server:
2 | port: 8080
3 |
4 | spring:
5 | devtools:
6 | restart:
7 | # 修改代码后自动重启
8 | enabled: true
9 | # 数据源(应该全部加密)
10 | datasource:
11 | # 连接,注意各个配置,尤其是要一次性执行多条 SQL 时,要 allowMultiQueries=true
12 | url: jdbc:mysql://localhost:3306/admin_dev?useUnicode=true&useSSL=false&allowMultiQueries=true&characterEncoding=utf-8&useLegacyDatetimeCode=false&serverTimezone=UTC
13 | # 用户名 root
14 | username: MyEnc({btTSNb3PH7saU2yQ7FeCsQ==})
15 | # 密码 root
16 | password: MyEnc({VuLn6kkmZXt1402C9w9xUA==})
17 | # 驱动类
18 | driver-class-name: com.mysql.cj.jdbc.Driver
19 | cache:
20 | # 缓存类型
21 | type: redis
22 | redis:
23 | # key 前缀
24 | key-prefix: admin_dev
25 | # 过期时间
26 | time-to-live: 60s
27 | redis:
28 | # 数据库索引(默认为0)
29 | database: 0
30 | # 服务器地址
31 | host: 127.0.0.1
32 | # 服务器连接端口
33 | port: 6379
34 | # 服务器连接密码 root
35 | # password: MyEnc({eCOS8Sk9b/kWt2FK0QFA9g==})
36 | jedis.pool:
37 | # 连接池最大连接数(使用负值表示没有限制)
38 | max-active: 8
39 | # 连接池最大阻塞等待时间(使用负值表示没有限制)
40 | max-wait: -1ms
41 | # 连接池中的最大空闲连接
42 | max-idle: 8
43 | # 连接池中的最小空闲连接
44 | min-idle: 0
45 |
46 | logging:
47 | # 日志级别
48 | level.com.zoctan.api: debug
49 |
50 | # Json web token
51 | jwt:
52 | # 管理后台过期时间
53 | admin-expire-time: 1d
54 | # 小程序前台过期时间
55 | wechat-expire-time: 30d
56 | # claim 权限 key
57 | claim-key-auth: auth
58 | # 请求头或请求参数的 key
59 | header: Authorization
60 | # token 类型
61 | token-type: Bearer
62 |
63 |
--------------------------------------------------------------------------------
/api/src/main/resources/mapper/RoleMapper.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
29 |
30 |
31 | UPDATE role
32 | SET update_time = NOW()
33 | WHERE id = #{id}
34 |
35 |
36 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/service/impl/AccountDetailsServiceImpl.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.service.impl;
2 |
3 | import com.zoctan.api.dto.AccountWithRolePermission;
4 | import com.zoctan.api.service.AccountService;
5 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
6 | import org.springframework.security.core.userdetails.UserDetails;
7 | import org.springframework.security.core.userdetails.UserDetailsService;
8 | import org.springframework.stereotype.Service;
9 | import org.springframework.transaction.annotation.Transactional;
10 |
11 | import javax.annotation.Resource;
12 | import java.util.List;
13 | import java.util.stream.Collectors;
14 |
15 | /**
16 | * @author Zoctan
17 | * @date 2018/06/09
18 | */
19 | @Service
20 | @Transactional(rollbackFor = Exception.class)
21 | public class AccountDetailsServiceImpl implements UserDetailsService {
22 | @Resource private AccountService accountService;
23 |
24 | @Override
25 | public UserDetails loadUserByUsername(final String name) {
26 | final AccountWithRolePermission accountWithRolePermission =
27 | this.accountService.findDetailByName(name);
28 | // 权限
29 | final List authorities =
30 | accountWithRolePermission.getPermissionCodeList().stream()
31 | .map(SimpleGrantedAuthority::new)
32 | .collect(Collectors.toList());
33 | // 角色
34 | authorities.add(new SimpleGrantedAuthority(accountWithRolePermission.getRoleName()));
35 | return new org.springframework.security.core.userdetails.User(
36 | accountWithRolePermission.getName(), "", authorities);
37 | }
38 | }
39 |
--------------------------------------------------------------------------------
/api/src/main/resources/mapper/PermissionMapper.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
25 |
26 |
34 |
--------------------------------------------------------------------------------
/admin/src/api/account.js:
--------------------------------------------------------------------------------
1 | import request from '@/utils/request'
2 |
3 | export function search(searchForm) {
4 | return request({
5 | url: '/account/search',
6 | method: 'post',
7 | data: searchForm
8 | })
9 | }
10 |
11 | export function list(params) {
12 | return request({
13 | url: '/account',
14 | method: 'get',
15 | params
16 | })
17 | }
18 |
19 | export function validatePassword(accountForm) {
20 | return request({
21 | url: '/account/password',
22 | method: 'post',
23 | data: accountForm
24 | })
25 | }
26 |
27 | export function update(accountForm) {
28 | return request({
29 | url: '/account/detail',
30 | method: 'put',
31 | data: accountForm
32 | })
33 | }
34 |
35 | export function updateAccount(accountForm) {
36 | return request({
37 | url: '/account/' + accountForm.Id,
38 | method: 'put',
39 | data: accountForm
40 | })
41 | }
42 |
43 | export function remove(accountId) {
44 | return request({
45 | url: '/account/' + accountId,
46 | method: 'delete'
47 | })
48 | }
49 |
50 | export function register(accountForm) {
51 | return request({
52 | url: '/account',
53 | method: 'post',
54 | data: accountForm
55 | })
56 | }
57 |
58 | export function login(accountForm) {
59 | return request({
60 | url: '/account/token',
61 | method: 'post',
62 | data: accountForm
63 | })
64 | }
65 |
66 | export function detail() {
67 | return request({
68 | url: '/account/detail',
69 | method: 'get'
70 | })
71 | }
72 |
73 | export function logout() {
74 | return request({
75 | url: '/account/token',
76 | method: 'delete'
77 | })
78 | }
79 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/Application.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api;
2 |
3 | import com.zoctan.api.core.constant.ProjectConstant;
4 | import com.ulisesbocchio.jasyptspringboot.annotation.EnableEncryptableProperties;
5 | import org.springframework.boot.SpringApplication;
6 | import org.springframework.boot.autoconfigure.SpringBootApplication;
7 | import org.springframework.boot.builder.SpringApplicationBuilder;
8 | import org.springframework.boot.web.servlet.ServletComponentScan;
9 | import org.springframework.boot.web.servlet.support.SpringBootServletInitializer;
10 | import org.springframework.cache.annotation.EnableCaching;
11 | import org.springframework.transaction.annotation.EnableTransactionManagement;
12 | import tk.mybatis.spring.annotation.MapperScan;
13 |
14 | import javax.annotation.PostConstruct;
15 | import java.util.TimeZone;
16 |
17 | /**
18 | * 主程序
19 | *
20 | * @author Zoctan
21 | * @date 2018/05/27
22 | */
23 | @EnableCaching
24 | @SpringBootApplication
25 | @EnableEncryptableProperties
26 | @EnableTransactionManagement
27 | @MapperScan(basePackages = ProjectConstant.MAPPER_PACKAGE)
28 | @ServletComponentScan(basePackages = ProjectConstant.FILTER_PACKAGE)
29 | public class Application extends SpringBootServletInitializer {
30 |
31 | @PostConstruct
32 | void started() {
33 | TimeZone.setDefault(TimeZone.getTimeZone("Asia/Shanghai"));
34 | }
35 |
36 | public static void main(final String[] args) {
37 | SpringApplication.run(Application.class, args);
38 | }
39 |
40 | /** 容器启动配置 */
41 | @Override
42 | protected SpringApplicationBuilder configure(final SpringApplicationBuilder builder) {
43 | return builder.sources(Application.class);
44 | }
45 | }
46 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/core/config/Swagger2Config.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.core.config;
2 |
3 | import org.springframework.context.annotation.Bean;
4 | import org.springframework.context.annotation.Configuration;
5 | import springfox.documentation.builders.ApiInfoBuilder;
6 | import springfox.documentation.builders.PathSelectors;
7 | import springfox.documentation.builders.RequestHandlerSelectors;
8 | import springfox.documentation.service.ApiInfo;
9 | import springfox.documentation.service.Contact;
10 | import springfox.documentation.spi.DocumentationType;
11 | import springfox.documentation.spring.web.plugins.Docket;
12 | import springfox.documentation.swagger2.annotations.EnableSwagger2;
13 |
14 | import static com.zoctan.api.core.constant.ProjectConstant.CONTROLLER_PACKAGE;
15 |
16 | /**
17 | * Swagger2 在线API文档 http://springfox.github.io/springfox/docs/current/#getting-started
18 | *
19 | * @author Zoctan
20 | * @date 2018/05/27
21 | */
22 | @Configuration
23 | @EnableSwagger2
24 | public class Swagger2Config {
25 |
26 | @Bean
27 | public Docket buildDocket() {
28 | return new Docket(DocumentationType.SWAGGER_2)
29 | .apiInfo(this.buildApiInfo())
30 | .select()
31 | // 扫描 controller 包
32 | .apis(RequestHandlerSelectors.basePackage(CONTROLLER_PACKAGE))
33 | .paths(PathSelectors.any())
34 | .build();
35 | }
36 |
37 | private ApiInfo buildApiInfo() {
38 | final Contact contact = new Contact("Zoctan", "https://github.com/Zoctan", "752481828@qq.com");
39 |
40 | return new ApiInfoBuilder()
41 | .title("APIs doc")
42 | .description("RESTFul APIs")
43 | .contact(contact)
44 | .version("1.0")
45 | .build();
46 | }
47 | }
48 |
--------------------------------------------------------------------------------
/admin/test/e2e/runner.js:
--------------------------------------------------------------------------------
1 | // 1. start the dev server using production config
2 | process.env.NODE_ENV = 'testing'
3 |
4 | const webpack = require('webpack')
5 | const DevServer = require('webpack-dev-server')
6 |
7 | const webpackConfig = require('../../build/webpack.prod.conf')
8 | const devConfigPromise = require('../../build/webpack.dev.conf')
9 |
10 | let server
11 |
12 | devConfigPromise.then(devConfig => {
13 | const devServerOptions = devConfig.devServer
14 | const compiler = webpack(webpackConfig)
15 | server = new DevServer(compiler, devServerOptions)
16 | const port = devServerOptions.port
17 | const host = devServerOptions.host
18 | return server.listen(port, host)
19 | })
20 | .then(() => {
21 | // 2. run the nightwatch test suite against it
22 | // to run in additional browsers:
23 | // 1. add an entry in test/e2e/nightwatch.conf.js under "test_settings"
24 | // 2. add it to the --env flag below
25 | // or override the environment flag, for example: `npm run e2e -- --env chrome,firefox`
26 | // For more information on Nightwatch's config file, see
27 | // http://nightwatchjs.org/guide#settings-file
28 | let opts = process.argv.slice(2)
29 | if (opts.indexOf('--config') === -1) {
30 | opts = opts.concat(['--config', 'test/e2e/nightwatch.conf.js'])
31 | }
32 | if (opts.indexOf('--env') === -1) {
33 | opts = opts.concat(['--env', 'chrome'])
34 | }
35 |
36 | const spawn = require('cross-spawn')
37 | const runner = spawn('./node_modules/.bin/nightwatch', opts, { stdio: 'inherit' })
38 |
39 | runner.on('exit', function (code) {
40 | server.close()
41 | process.exit(code)
42 | })
43 |
44 | runner.on('error', function (err) {
45 | server.close()
46 | throw err
47 | })
48 | })
49 |
--------------------------------------------------------------------------------
/api/src/main/java/com/zoctan/api/service/AccountService.java:
--------------------------------------------------------------------------------
1 | package com.zoctan.api.service;
2 |
3 | import com.zoctan.api.core.service.Service;
4 | import com.zoctan.api.dto.AccountDto;
5 | import com.zoctan.api.dto.AccountWithRole;
6 | import com.zoctan.api.dto.AccountWithRolePermission;
7 | import com.zoctan.api.entity.Account;
8 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
9 |
10 | import java.util.List;
11 | import java.util.Map;
12 |
13 | /**
14 | * @author Zoctan
15 | * @date 2018/06/09
16 | */
17 | public interface AccountService extends Service {
18 | /**
19 | * 保存用户
20 | *
21 | * @param accountDto 用户
22 | */
23 | void save(AccountDto accountDto);
24 |
25 | /**
26 | * 获取所有用户以及对应角色
27 | *
28 | * @return 用户列表
29 | */
30 | List listAllWithRole();
31 |
32 | /**
33 | * 按条件查询用户
34 | *
35 | * @param params 参数
36 | * @return 用户列表
37 | */
38 | List findWithRoleBy(final Map params);
39 |
40 | /**
41 | * 按条件查询用户信息
42 | *
43 | * @param column 列名
44 | * @param params 参数
45 | * @return 用户
46 | */
47 | AccountWithRolePermission findDetailBy(String column, Object params);
48 |
49 | /**
50 | * 按用户名查询用户信息
51 | *
52 | * @param name 用户名
53 | * @return 用户
54 | * @throws UsernameNotFoundException 用户名找不到
55 | */
56 | AccountWithRolePermission findDetailByName(String name) throws UsernameNotFoundException;
57 |
58 | /**
59 | * 按用户名更新最后一次登录时间
60 | *
61 | * @param name 用户名
62 | */
63 | void updateLoginTimeByName(String name);
64 |
65 | /**
66 | * 验证用户密码
67 | *
68 | * @param rawPassword 原密码
69 | * @param encodedPassword 加密后的密码
70 | * @return boolean
71 | */
72 | boolean verifyPassword(String rawPassword, String encodedPassword);
73 | }
74 |
--------------------------------------------------------------------------------
/admin/src/icons/svg/eye.svg:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/admin/src/views/layout/components/Sidebar/SidebarItem.vue:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
9 |
10 |
11 | {{ item.children[0].name }}
12 |
13 |
14 |
15 |
16 |
17 | {{ item.name }}
18 |
19 |
20 |
21 |
27 |
30 |
31 |
32 |
33 |
34 |
3 |
28 |
3 |
返回
4 |
5 |
6 | Oops!
gif来源
7 | airbnb 页面
8 | 你没有权限去该页面
9 | 如有不满请联系你领导
10 |
11 | - 或者你可以去:
12 | -
13 | 回首页
14 |
15 | -
16 | 随便看看
17 |
18 | -
19 | 点我看图
20 |
21 |
22 |
23 |
24 | ![Girl has dropped her ice cream.]()
25 |
26 |
27 |
28 | ![]()
29 |
30 |
12 |
13 | user 表:用户信息。
14 |
15 | 
16 |
17 | role 表:角色信息。
18 |
19 | 
20 |
21 | user_role 表:用户对应的角色,一对一。
22 |
23 | 
24 |
25 | permission 表:权限能操作的资源以及操作方式。
26 |
27 | 
28 |
29 | role_permission 表:角色所对应的权限,一对多。
30 |
31 | 
32 |
33 | > 为什么 ROLE_ADMIN 角色在数据库没有权限?
34 | >
35 | > ROLE_ADMIN 作为超级管理员这类角色,应该是具有所有权限的,但是对于数据库来说,没必要保存所有权限,只要在查询到该角色时返回所有权限即可。
36 |
37 | ## 角色权限控制
38 |
39 | Spring Security + Json Web Token 鉴权:
40 |
41 | 最终效果,在控制器上的注解:
42 |
43 | ```java
44 | @PreAuthorize("hasAuthority('user:list')")
45 | ```
46 |
47 | 实现思路:用户登录 -> 服务端生成 token -> 客户端保存 token,之后的每次请求都携带该 token,服务端认证解析。
48 |
49 | 所以在服务端认证解析的 token 就要保存有用户的角色和相应的权限:
50 |
51 | ```java
52 | // service/impl/UserDetailsServiceImpl.java
53 |
54 | // 为了方便,角色和权限都放在一起
55 | // 权限
56 | List authorities =
57 | user.getPermissionCodeList().stream()
58 | .map(SimpleGrantedAuthority::new)
59 | .collect(Collectors.toList());
60 | // 角色
61 | authorities.add(new SimpleGrantedAuthority(user.getRoleName()));
62 | // [ROLE_TEST, role:list, user:list]
63 | ```
64 |
65 | JWT 生成 token:
66 |
67 | ```java
68 | // core/jwt/JwtUtil.java
69 |
70 | Jwts.builder()
71 | // 设置用户名
72 | .setSubject(username)
73 | // 添加权限属性
74 | .claim(this.AUTHORITIES_KEY, authorities)
75 | // 设置失效时间
76 | .setExpiration(date)
77 | // 私钥加密生成签名
78 | .signWith(SignatureAlgorithm.RS256, privateKey)
79 | .compact();
80 | ```
81 |
82 | Base64 解码 JWT 生成的 token:
83 |
84 | ```
85 | {"alg":"RS256"}{"sub":"test","auth":"ROLE_TEST,role:list,user:list,"exp":1519742226}