0

src/main/java/com/ekexiu/console/servlet/AuthCssServlet.java

@@ -0,0 +1,73 @@
package com.ekexiu.console.servlet;
import java.io.IOException;
import java.io.OutputStream;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.jfw.util.ConstData;
import org.jfw.util.auth.AuthUtil;
import org.jfw.util.context.JfwAppContext;
import com.ekexiu.console.system.po.SysRight;
import com.ekexiu.console.system.service.RightService;
import com.ekexiu.console.system.vo.ConsoleAuthUser;
public class AuthCssServlet extends HttpServlet {
	private static final long serialVersionUID = -2443799398873114107L;
	private static final int[] EMPTY_RIGHT = new int[] {};
	private RightService rightService;
	@Override
	protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
		StringBuilder sb = new StringBuilder();
		int[] rights = EMPTY_RIGHT;
		ConsoleAuthUser cau = (ConsoleAuthUser) req.getSession().getAttribute(org.jfw.util.auth.AuthUser.LOGIN_USER_FLAG_IN_SESSION);
		if (cau != null) {
			rights = AuthUtil.unCompress(cau.getAuths());
		}
		sb.append("@charset \"UTF-8\";").append("\n");
		for (SysRight r : this.rightService.query()) {
			boolean found = false;
			for (int rc : rights) {
				if (rc == r.getId()) {
					found = true;
					break;
				}
			}
			if (!found) {
				sb.append("auth-").append(r.getId()).append(",");
			}
		}
		sb.append("auth-FFFFFFF{display:none;}");
		byte[] bs = sb.toString().getBytes(ConstData.UTF8);
		resp.setDateHeader("Expires", 0);
		resp.setHeader("Cache-Control", "no-store, no-cache, must-revalidate");
		resp.addHeader("Cache-Control", "post-check=0, pre-check=0");
		resp.setHeader("Pragma", "no-cache");
		resp.setContentType("text/css");
		resp.setContentLength(bs.length);
		OutputStream os = resp.getOutputStream();
		try {
			os.write(bs);
			os.flush();
		} finally {
			os.close();
		}
	}
	@Override
	public void init() throws ServletException {
		super.init();
		this.rightService = JfwAppContext.getBeanFactory().getBean("com_ekexiu_console_system_service_RightService", RightService.class);
	}
}

src/main/java/com/ekexiu/console/system/service/RightService.java

@@ -43,7 +43,7 @@ public class RightService {
	@Get
	@Path("/all")
	public Collection<SysRight> query() throws SQLException {
	public Collection<SysRight> query()  {
		return this.rights.get().values();
	}

src/main/java/com/ekexiu/console/system/service/TestService.java

@@ -1,56 +0,0 @@
package com.ekexiu.console.system.service;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
import javax.sql.DataSource;
import org.jfw.apt.annotation.Autowrie;
import org.jfw.apt.web.annotation.Path;
import org.jfw.apt.web.annotation.operate.Get;
@Path("/test")
public class TestService {
	@Autowrie("dataSource2")
	private DataSource ds;
	public DataSource getDs() {
		return ds;
	}
	public void setDs(DataSource ds) {
		this.ds = ds;
	}
	@Get
	@Path
	public Object get() throws SQLException {
		Connection con = ds.getConnection();
		try {
			PreparedStatement ps = con.prepareStatement("SELECT ARTICLE_TITLE FROM ARTICLE");
			try {
				ResultSet rs = ps.executeQuery();
				try {
					List<String> list = new ArrayList<String>();
					while (rs.next()) {
						list.add(rs.getString(1));
					}
					return list;
				} finally {
					rs.close();
				}
			} finally {
				ps.close();
			}
		} finally {
			con.close();
		}
	}
}

src/main/java/com/ekexiu/console/system/service/UserService.java

@@ -17,6 +17,7 @@ import org.jfw.apt.web.annotation.operate.Post;
import org.jfw.apt.web.annotation.operate.Put;
import org.jfw.apt.web.annotation.param.FieldParam;
import org.jfw.apt.web.annotation.param.JdbcConn;
import org.jfw.apt.web.annotation.param.PathVar;
import org.jfw.apt.web.annotation.param.RequestBody;
import org.jfw.apt.web.annotation.param.RequestParam;
import org.jfw.util.PageQueryResult;
@@ -34,15 +35,14 @@ import com.ekexiu.console.system.vo.ConsoleAuthUser;
@Path("/sys/user")
public class UserService extends Upload {
	public static final String DEFAULT_AUTH_STR=AuthUtil.serialAuth(new int[]{0});
	public static final String DEFAULT_PW_STR=StringUtil.md5("12345678");
	public static final String DEFAULT_AUTH_STR = AuthUtil.serialAuth(new int[] { 0 });
	public static final String DEFAULT_PW_STR = StringUtil.md5("12345678");
	@Autowrie
	private UserDao userDao;
	@Autowrie
	RoleDao roleDao;
	public RoleDao getRoleDao() {
		return roleDao;
	}
@@ -81,9 +81,10 @@ public class UserService extends Upload {
		}
		return null;
	}
	@Get
	@Path
	public ConsoleAuthUser get(@LoginUser ConsoleAuthUser user){
	public ConsoleAuthUser get(@LoginUser ConsoleAuthUser user) {
		return user;
	}
@@ -121,7 +122,7 @@ public class UserService extends Upload {
					@FieldParam(value = "email", valueClass = String.class, required = true),
					@FieldParam(value = "mobile", valueClass = String.class, required = false),
					@FieldParam(value = "descp", valueClass = String.class, required = false),
					@FieldParam(value="head",valueClass=String.class,required=false)}) User user)
					@FieldParam(value = "head", valueClass = String.class, required = false) }) User user)
			throws SQLException {
		String id = StringUtil.buildUUID();
		user.setId(id);
@@ -130,28 +131,44 @@ public class UserService extends Upload {
		user.setLoginPassword(DEFAULT_PW_STR);
		this.userDao.insert(con, user);
	}
	@Put
	@Path
	public void update(@JdbcConn(true) Connection con,@RequestBody User user)throws SQLException{
	public void update(@JdbcConn(true) Connection con, @RequestBody User user) throws SQLException {
		user.setLoginPassword(null);
		this.userDao.update(con, user);
	}
	
	@Get
	@Path("/info")
	public User editInfo(@JdbcConn Connection con,@LoginUser ConsoleAuthUser cau)throws SQLException{
	public User editInfo(@JdbcConn Connection con, @LoginUser ConsoleAuthUser cau) throws SQLException {
		User user = this.userDao.queryById(con, cau.getId());
		if(user!=null){
		if (user != null) {
			user.setLoginPassword(null);
		}
		return user;
	}
	@Post
	@Path("/resetpw")
	public void resetpw(@JdbcConn(true) Connection con,String[] ids)throws SQLException{
		this.userDao.resetPassword(con, ids,DEFAULT_PW_STR);
	public void resetpw(@JdbcConn(true) Connection con, String[] ids) throws SQLException {
		this.userDao.resetPassword(con, ids, DEFAULT_PW_STR);
	}
	@Get
	@Path("/right/{id}")
	public int[] getRights(@JdbcConn Connection con, @PathVar String id) throws SQLException {
		User user = this.userDao.queryById(con, id);
		if (user != null) {
			return AuthUtil.unCompress(AuthUtil.deSerialAuth(user.getAuthinfo()));
		}
		return null;
	}
	@Post
	@Path("/right")
	public void updateRights(@JdbcConn(true) Connection con, String userid,int[] right)throws SQLException{
		this.userDao.update(con, userid, AuthUtil.serialAuth(AuthUtil.compress(right)));
	}
	@Post
	@Path("/head")

src/main/webapp/WEB-INF/web.xml

@@ -21,10 +21,19 @@
    </init-param>
    <load-on-startup>1</load-on-startup>
  </servlet>
  <servlet>
  		<servlet-name>authcss</servlet-name>
  		<servlet-class>com.ekexiu.console.servlet.AuthCssServlet</servlet-class>
  		<load-on-startup>2</load-on-startup>
  </servlet>
  
  <servlet-mapping>
    <servlet-name>ajax</servlet-name>
    <url-pattern>/ajax/*</url-pattern>
  </servlet-mapping>
  <servlet-mapping>
  		<servlet-name>authcss</servlet-name>
  		<url-pattern>/ajax/dyn/auth.css</url-pattern>
  </servlet-mapping>
 
</web-app>