若依Cloud登录日志
新增功能登录日志。
·
能耗管理系统
新增功能登录日志
登录日志
1.项目pom.xml中增加依赖
<bitwalker.version>1.21</bitwalker.version>
<oshi.version>5.6.0</oshi.version>
<!-- 阿里JSON解析器 -->
<dependency>
<groupId>com.alibaba.fastjson2</groupId>
<artifactId>fastjson2</artifactId>
<version>2.0.41</version>
</dependency>
<!-- 解析客户端操作系统、浏览器等 -->
<dependency>
<groupId>eu.bitwalker</groupId>
<artifactId>UserAgentUtils</artifactId>
<version>${bitwalker.version}</version>
</dependency>
<!-- 获取系统信息 -->
<dependency>
<groupId>com.github.oshi</groupId>
<artifactId>oshi-core</artifactId>
<version>${oshi.version}</version>
</dependency>
2.项目中添加工具类util
package com.mgiot.infra.util;
import com.mgiot.infra.constants.Constants;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import javax.net.ssl.*;
import java.io.*;
import java.net.ConnectException;
import java.net.SocketTimeoutException;
import java.net.URL;
import java.net.URLConnection;
import java.security.cert.X509Certificate;
/**
* 通用http发送方法
*
* @author
*/
public class HttpUtils {
private static final Logger log = LoggerFactory.getLogger(HttpUtils.class);
/**
* 向指定 URL 发送GET方法的请求
*
* @param url 发送请求的 URL
* @param param 请求参数,请求参数应该是 name1=value1&name2=value2 的形式。
* @return 所代表远程资源的响应结果
*/
public static String sendGet(String url, String param) {
return sendGet(url, param, Constants.UTF8);
}
/**
* 向指定 URL 发送GET方法的请求
*
* @param url 发送请求的 URL
* @param param 请求参数,请求参数应该是 name1=value1&name2=value2 的形式。
* @param contentType 编码类型
* @return 所代表远程资源的响应结果
*/
public static String sendGet(String url, String param, String contentType) {
StringBuilder result = new StringBuilder();
BufferedReader in = null;
try {
String urlNameString = url + "?" + param;
log.info("sendGet - {}", urlNameString);
URL realUrl = new URL(urlNameString);
URLConnection connection = realUrl.openConnection();
connection.setRequestProperty("accept", "*/*");
connection.setRequestProperty("connection", "Keep-Alive");
connection.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
connection.connect();
in = new BufferedReader(new InputStreamReader(connection.getInputStream(), contentType));
String line;
while ((line = in.readLine()) != null) {
result.append(line);
}
log.info("recv - {}", result);
}
catch (ConnectException e) {
log.error("调用HttpUtils.sendGet ConnectException, url=" + url + ",param=" + param, e);
}
catch (SocketTimeoutException e) {
log.error("调用HttpUtils.sendGet SocketTimeoutException, url=" + url + ",param=" + param, e);
}
catch (IOException e) {
log.error("调用HttpUtils.sendGet IOException, url=" + url + ",param=" + param, e);
}
catch (Exception e) {
log.error("调用HttpsUtil.sendGet Exception, url=" + url + ",param=" + param, e);
}
finally {
try {
if (in != null) {
in.close();
}
}
catch (Exception ex) {
log.error("调用in.close Exception, url=" + url + ",param=" + param, ex);
}
}
return result.toString();
}
/**
* 向指定 URL 发送POST方法的请求
*
* @param url 发送请求的 URL
* @param param 请求参数,请求参数应该是 name1=value1&name2=value2 的形式。
* @return 所代表远程资源的响应结果
*/
public static String sendPost(String url, String param) {
PrintWriter out = null;
BufferedReader in = null;
StringBuilder result = new StringBuilder();
try {
String urlNameString = url;
log.info("sendPost - {}", urlNameString);
URL realUrl = new URL(urlNameString);
URLConnection conn = realUrl.openConnection();
conn.setRequestProperty("accept", "*/*");
conn.setRequestProperty("connection", "Keep-Alive");
conn.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
conn.setRequestProperty("Accept-Charset", "utf-8");
conn.setRequestProperty("contentType", "utf-8");
conn.setDoOutput(true);
conn.setDoInput(true);
out = new PrintWriter(conn.getOutputStream());
out.print(param);
out.flush();
in = new BufferedReader(new InputStreamReader(conn.getInputStream(), "utf-8"));
String line;
while ((line = in.readLine()) != null) {
result.append(line);
}
log.info("recv - {}", result);
}
catch (ConnectException e) {
log.error("调用HttpUtils.sendPost ConnectException, url=" + url + ",param=" + param, e);
}
catch (SocketTimeoutException e) {
log.error("调用HttpUtils.sendPost SocketTimeoutException, url=" + url + ",param=" + param, e);
}
catch (IOException e) {
log.error("调用HttpUtils.sendPost IOException, url=" + url + ",param=" + param, e);
}
catch (Exception e) {
log.error("调用HttpsUtil.sendPost Exception, url=" + url + ",param=" + param, e);
}
finally {
try {
if (out != null) {
out.close();
}
if (in != null) {
in.close();
}
}
catch (IOException ex) {
log.error("调用in.close Exception, url=" + url + ",param=" + param, ex);
}
}
return result.toString();
}
public static String sendSSLPost(String url, String param) {
StringBuilder result = new StringBuilder();
String urlNameString = url + "?" + param;
try {
log.info("sendSSLPost - {}", urlNameString);
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, new TrustManager[] { new TrustAnyTrustManager() }, new java.security.SecureRandom());
URL console = new URL(urlNameString);
HttpsURLConnection conn = (HttpsURLConnection) console.openConnection();
conn.setRequestProperty("accept", "*/*");
conn.setRequestProperty("connection", "Keep-Alive");
conn.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
conn.setRequestProperty("Accept-Charset", "utf-8");
conn.setRequestProperty("contentType", "utf-8");
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setSSLSocketFactory(sc.getSocketFactory());
conn.setHostnameVerifier(new TrustAnyHostnameVerifier());
conn.connect();
InputStream is = conn.getInputStream();
BufferedReader br = new BufferedReader(new InputStreamReader(is));
String ret = "";
while ((ret = br.readLine()) != null) {
if (ret != null && !ret.trim().equals("")) {
result.append(new String(ret.getBytes("ISO-8859-1"), "utf-8"));
}
}
log.info("recv - {}", result);
conn.disconnect();
br.close();
}
catch (ConnectException e) {
log.error("调用HttpUtils.sendSSLPost ConnectException, url=" + url + ",param=" + param, e);
}
catch (SocketTimeoutException e) {
log.error("调用HttpUtils.sendSSLPost SocketTimeoutException, url=" + url + ",param=" + param, e);
}
catch (IOException e) {
log.error("调用HttpUtils.sendSSLPost IOException, url=" + url + ",param=" + param, e);
}
catch (Exception e) {
log.error("调用HttpsUtil.sendSSLPost Exception, url=" + url + ",param=" + param, e);
}
return result.toString();
}
private static class TrustAnyTrustManager implements X509TrustManager {
@Override
public void checkClientTrusted(X509Certificate[] chain, String authType) {
}
@Override
public void checkServerTrusted(X509Certificate[] chain, String authType) {
}
@Override
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[] {};
}
}
private static class TrustAnyHostnameVerifier implements HostnameVerifier {
@Override
public boolean verify(String hostname, SSLSession session)
{
return true;
}
}
}
package com.mgiot.infra.util;
import com.alibaba.fastjson.JSONObject;
import com.baomidou.mybatisplus.core.toolkit.StringUtils;
import com.mgiot.infra.constants.Constants;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
/**
* 获取地址类
*/
public class AddressUtils {
private static final Logger log = LoggerFactory.getLogger(AddressUtils.class);
// IP地址查询
public static final String IP_URL = "http://whois.pconline.com.cn/ipJson.jsp";
// 未知地址
public static final String UNKNOWN = "XX XX";
public static String getRealAddressByIP(String ip) {
String address = UNKNOWN;
// 内网不查询
if (IpUtils.internalIp(ip)) {
return "内网IP";
}
try {
String rspStr = HttpUtils.sendGet(IP_URL, "ip=" + ip + "&json=true", Constants.GBK);
if (StringUtils.isEmpty(rspStr)) {
log.error("获取地理位置异常 {}", ip);
return UNKNOWN;
}
JSONObject obj = JSONObject.parseObject(rspStr);
String region = obj.getString("pro");
String city = obj.getString("city");
return String.format("%s %s", region, city);
}
catch (Exception e) {
log.error("获取地理位置异常 {}", e);
}
return address;
}
}
3.实体类
package com.mgiot.infra.entity.log;
import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import com.baomidou.mybatisplus.annotation.TableName;
import com.baomidou.mybatisplus.extension.activerecord.Model;
import java.time.LocalDateTime;
import com.fasterxml.jackson.annotation.JsonFormat;
import io.swagger.v3.oas.annotations.media.Schema;
import lombok.Data;
/**
* <p>
* 登录信息
* </p>
*/
@Data
@TableName("login_info")
@Schema(defaultValue = "LoginInfo对象", description = "登录信息")
public class LoginInfo extends Model<LoginInfo> {
private static final long serialVersionUID = 1L;
@Schema(defaultValue = "主键id")
@TableId(value = "id", type = IdType.AUTO)
private Integer id;
@Schema(defaultValue = "用户账号")
private String userName;
@Schema(defaultValue = "登录ip地址")
private String ipaddr;
@Schema(defaultValue = "登陆地点")
private String loginLocation;
@Schema(defaultValue = "浏览器类型")
private String browser;
@Schema(defaultValue = "操作系统")
private String os;
@Schema(defaultValue = "登录状态(0成功 1失败)")
private String status;
@Schema(defaultValue = "提示信息")
private String msg;
@Schema(defaultValue = "访问时间")
@JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss")
private LocalDateTime accessTime;
}
4.实现记录逻辑
package com.mgiot.application.log.service.impl;
import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.baomidou.mybatisplus.core.toolkit.Wrappers;
import com.mgiot.domain.transfor.log.LoginInfoDTO;
import com.mgiot.infra.constants.Constants;
import com.mgiot.infra.constants.SecurityConstants;
import com.mgiot.infra.entity.log.LoginInfo;
import com.mgiot.domain.repository.log.LoginInfoRepository;
import com.mgiot.domain.service.log.LoginInfoService;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import com.mgiot.infra.util.AddressUtils;
import com.mgiot.infra.util.IpUtils;
import com.mgiot.infra.util.ServletUtils;
import eu.bitwalker.useragentutils.UserAgent;
import org.apache.commons.lang3.StringUtils;
import org.springframework.stereotype.Service;
import java.util.List;
/**
* <p>
* 登录信息 服务实现类
* </p>
*/
@Service
public class LoginInfoServiceImpl extends ServiceImpl<LoginInfoRepository, LoginInfo> implements LoginInfoService {
/**
* 记录登录信息
*
* @param username 用户名
* @param status 状态
* @param message 消息内容
* @return
*/
public void recordLogininfor(String username, String status, String message) {
final UserAgent userAgent = UserAgent.parseUserAgentString(ServletUtils.getRequest().getHeader("User-Agent"));
String address = AddressUtils.getRealAddressByIP(IpUtils.getIpAddr());
// 获取客户端操作系统
String os = userAgent.getOperatingSystem().getName();
// 获取客户端浏览器
String browser = userAgent.getBrowser().getName();
LoginInfo logininfor = new LoginInfo();
logininfor.setUserName(username);
logininfor.setIpaddr(IpUtils.getIpAddr());
logininfor.setMsg(message);
logininfor.setLoginLocation(address);
logininfor.setBrowser(browser);
logininfor.setOs(os);
// 日志状态
if (StringUtils.equalsAny(status, Constants.LOGIN_SUCCESS, Constants.LOGOUT, Constants.REGISTER)) {
logininfor.setStatus(Constants.LOGIN_SUCCESS_STATUS);
} else if (Constants.LOGIN_FAIL.equals(status)) {
logininfor.setStatus(Constants.LOGIN_FAIL_STATUS);
}
baseMapper.insert(logininfor);
// remoteLogService.saveLogininfor(logininfor, SecurityConstants.INNER);
}
@Override
public List<LoginInfo> findLoginInfo(LoginInfoDTO loginInfo) {
LambdaQueryWrapper<LoginInfo> queryWrapper = Wrappers.lambdaQuery();
if (StringUtils.isNotEmpty(loginInfo.getIpaddr())) {
queryWrapper.like(LoginInfo::getIpaddr, "%" + loginInfo.getIpaddr() + "%");
}
if (StringUtils.isNotEmpty(loginInfo.getStatus())) {
queryWrapper.eq(LoginInfo::getStatus, loginInfo.getStatus());
}
if (StringUtils.isNotEmpty(loginInfo.getUserName())) {
queryWrapper.like(LoginInfo::getUserName, "%" + loginInfo.getUserName() + "%");
}
queryWrapper.orderByDesc(LoginInfo::getAccessTime);
List<LoginInfo> loginInfos = baseMapper.selectList(queryWrapper);
return loginInfos;
}
@Override
public int deleteLoginInfoById(LoginInfoDTO infoId) {
return baseMapper.deleteById(infoId.getId());
}
}
如登录\注册\退出登录 验证码 调用记录
package com.mgiot.manager;
import com.baomidou.mybatisplus.core.toolkit.ObjectUtils;
import com.baomidou.mybatisplus.core.toolkit.StringUtils;
import com.mgiot.application.exception.ServiceException;
import com.mgiot.application.log.service.impl.LoginInfoServiceImpl;
import com.mgiot.domain.service.log.LoginInfoService;
import com.mgiot.domain.service.system.UserService;
import com.mgiot.domain.transfor.system.UserConvertor;
import com.mgiot.domain.transfor.system.UserDTO;
import com.mgiot.domain.transfor.system.UserVO;
import com.mgiot.infra.constants.CacheConstants;
import com.mgiot.infra.constants.Constants;
import com.mgiot.infra.constants.UserConstants;
import com.mgiot.infra.entity.system.User;
import com.mgiot.infra.redis.service.RedisService;
import com.mgiot.infra.util.IpUtils;
import com.mgiot.infra.util.MD5Utils;
import jakarta.annotation.Resource;
import org.springframework.stereotype.Component;
import java.util.concurrent.TimeUnit;
@Component
public class UserManager {
@Resource
private UserService userService;
@Resource
private RedisService redisService;
@Resource
private UserConvertor userConvertor;
@Resource
private LoginInfoServiceImpl recordLogService;
private final int maxRetryCount = CacheConstants.PASSWORD_MAX_RETRY_COUNT;
private final Long lockTime = CacheConstants.PASSWORD_LOCK_TIME;
public UserVO login(String username, String password) {
// 用户名或密码为空 错误
if (StringUtils.isBlank(username) || StringUtils.isBlank(password)) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "用户/密码必须填写");
throw new ServiceException("用户/密码必须填写");
}
// 密码如果不在指定范围内 错误
if (password.length() < UserConstants.PASSWORD_MIN_LENGTH
|| password.length() > UserConstants.PASSWORD_MAX_LENGTH) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "用户密码不在指定范围");
throw new ServiceException("用户密码不在指定范围");
}
// 用户名不在指定范围内 错误
if (username.length() < UserConstants.USERNAME_MIN_LENGTH
|| username.length() > UserConstants.USERNAME_MAX_LENGTH) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "用户名不在指定范围");
throw new ServiceException("用户名不在指定范围");
}
// IP黑名单校验
// String blackStr = Convert.toStr(redisService.getCacheObject(CacheConstants.SYS_LOGIN_BLACKIPLIST));
// if (IpUtils.isMatchedIp(blackStr, IpUtils.getIpAddr())) {
// recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "很遗憾,访问IP已被列入系统黑名单");
// throw new ServiceException("很遗憾,访问IP已被列入系统黑名单");
// }
// 查询用户信息
UserVO userResult = userService.queryUserInfo(username);
if (ObjectUtils.isEmpty(userResult) || ObjectUtils.isNull(userResult)) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "登录用户不存在");
throw new ServiceException("登录用户:" + username + " 不存在");
}
if (StringUtils.equals(userResult.getStatus(), UserConstants.EXCEPTION)) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "用户已停用,请联系管理员");
throw new ServiceException("对不起,您的账号:" + username + " 已停用");
}
if (StringUtils.equals(userResult.getStatus(), UserConstants.USER_DISABLE)) {
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, "该用户账号已封禁,请联系管理员");
throw new ServiceException("对不起,您的账号:" + username + " 已封禁");
}
validate(userResult, password);
recordLogService.recordLogininfor(username, Constants.LOGIN_SUCCESS, "登录成功");
return userResult;
}
public void register(String username, String password) {
// 用户名或密码为空 错误
if (StringUtils.isEmpty(username) || StringUtils.isEmpty(password)) {
throw new ServiceException("用户/密码必须填写");
}
if (username.length() < UserConstants.USERNAME_MIN_LENGTH
|| username.length() > UserConstants.USERNAME_MAX_LENGTH) {
throw new ServiceException("账户长度必须在2到20个字符之间");
}
if (password.length() < UserConstants.PASSWORD_MIN_LENGTH
|| password.length() > UserConstants.PASSWORD_MAX_LENGTH) {
throw new ServiceException("密码长度必须在5到20个字符之间");
}
// 注册用户信息
User user = new User();
user.setUserName(username);
user.setPassword(MD5Utils.calculateMD5(password));
UserDTO dto = userConvertor.toDTO(user);
int registerResult = userService.addUser(dto);
if (registerResult == 0) {
throw new ServiceException("保存用户'" + username + "'失败,注册账号已存在");
}
recordLogService.recordLogininfor(username, Constants.REGISTER, "注册成功");
}
private String getCacheKey(String username) {
return CacheConstants.PWD_ERR_CNT_KEY + username;
}
public void validate(UserVO userVO, String password) throws ServiceException {
String username = userVO.getUserName();
Integer retryCount = redisService.getCacheObject(getCacheKey(username));
if (retryCount == null) {
retryCount = 0;
}
if (retryCount >= Integer.valueOf(maxRetryCount).intValue()) {
String errMsg = String.format("密码输入错误%s次,帐户锁定%s分钟", maxRetryCount, lockTime);
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL,errMsg);
throw new ServiceException(errMsg);
}
// 将传入的密码 对数据库中加密的密码 和 明文密码进行判断
if (!matches(userVO, password) && !compare(userVO, password)) {
retryCount = retryCount + 1;
recordLogService.recordLogininfor(username, Constants.LOGIN_FAIL, String.format("密码输入错误%s次", retryCount));
redisService.setCacheObject(getCacheKey(username), retryCount, lockTime, TimeUnit.MINUTES);
throw new ServiceException("用户不存在/密码错误");
} else {
clearLoginRecordCache(username);
}
}
// 比较数据库密文密码 是否相等
public boolean matches(UserVO user, String rawPassword) {
String s = MD5Utils.calculateMD5(user.getPassword());
return StringUtils.equals(s, rawPassword);
}
// 比较数据库明文密码 是否相等
public boolean compare(UserVO user, String rawPassword) {
return StringUtils.equals(user.getPassword(), rawPassword);
}
public void clearLoginRecordCache(String loginName) {
if (redisService.hasKey(getCacheKey(loginName))) {
redisService.deleteObject(getCacheKey(loginName));
}
}
public void logout(String loginName) {
recordLogService.recordLogininfor(loginName, Constants.LOGOUT, "退出成功");
}
}
快速构建 Web 应用程序
更多推荐
2
0- 0
已为社区贡献4条内容
所有评论(0)