zhouweidong 发布系统代码

919c8a3f · ibizdev · ec3119d5 · 919c8a3f · 919c8a3f · 919c8a3f
--- a/ibzlite-boot/pom.xml
+++ b/ibzlite-boot/pom.xml
@@ -19,6 +19,11 @@
            <artifactId>ibzlite-core</artifactId>
            <version>${project.version}</version>
        </dependency>
+        <dependency>
+            <groupId>cn.ibizlab</groupId>
+            <artifactId>ibzlite-provider-api</artifactId>
+            <version>${project.version}</version>
+        </dependency>
        <dependency>
            <groupId>cn.ibizlab</groupId>
            <artifactId>ibzlite-app-web</artifactId>

--- a/ibzlite-boot/src/main/resources/application.yml
+++ b/ibzlite-boot/src/main/resources/application.yml
 spring:
  profiles:
-    include: sys ,nacos, web-dev,  dev
+    include: sys ,nacos, web-dev,  api-dev,  dev
  application:
    name: ibzlite
  main:

--- a/ibzlite-provider/ibzlite-provider-api/pom.xml
+++ b/ibzlite-provider/ibzlite-provider-api/pom.xml
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <artifactId>ibzlite-provider</artifactId>
+        <groupId>cn.ibizlab</groupId>
+        <version>1.0.0.0</version>
+    </parent>
+
+    <artifactId>ibzlite-provider-api</artifactId>
+    <name>Ibzlite Microservice api</name>
+    <description> micorservice</description>
+
+    <dependencies>
+        <dependency>
+            <groupId>cn.ibizlab</groupId>
+            <artifactId>ibzlite-core</artifactId>
+            <version>${project.version}</version>
+        </dependency>
+    </dependencies>
+
+
+    <profiles>
+        <profile>
+            <id>api</id>
+            <build>
+                <resources>
+                    <resource>
+                        <directory>${basedir}/src/main/resources</directory>
+                        <includes>
+                            <include>**/**</include>
+                        </includes>
+                    </resource>
+                </resources>
+
+                <plugins>
+                    <plugin>
+                        <groupId>org.springframework.boot</groupId>
+                        <artifactId>spring-boot-maven-plugin</artifactId>
+                        <configuration>
+                            <finalName>ibzlite-provider-api</finalName>
+                            <jvmArguments>-Dfile.encoding=UTF-8</jvmArguments>
+                            <mainClass>cn.ibizlab.api.ibzliteapiApplication</mainClass>
+                            <outputDirectory>../../</outputDirectory>
+                        </configuration>
+                        <executions>
+                            <execution>
+                                <goals>
+                                    <goal>repackage</goal>
+                                </goals>
+                            </execution>
+                        </executions>
+                    </plugin>
+
+                </plugins>
+            </build>
+        </profile>
+    </profiles>
+
+</project>
--- a/ibzlite-provider/ibzlite-provider-api/src/main/docker/Dockerfile
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/docker/Dockerfile
+
+FROM openjdk:8-jre-alpine
+
+ENV TZ=Asia/Shanghai \
+    SPRING_OUTPUT_ANSI_ENABLED=ALWAYS \
+    IBIZ_SLEEP=0 \
+    JAVA_OPTS=""
+
+RUN ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ > /etc/timezone
+
+CMD echo "The application will start in ${IBIZ_SLEEP}s..." && \
+    sleep ${IBIZ_SLEEP} && \
+    java ${JAVA_OPTS} -Djava.security.egd=file:/dev/./urandom -jar /ibzlite-provider-api.jar
+
+EXPOSE 8081
+
+ADD ibzlite-provider-api.jar /ibzlite-provider-api.jar
--- a/ibzlite-provider/ibzlite-provider-api/src/main/docker/ibzlite-provider-api.yaml
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/docker/ibzlite-provider-api.yaml
+version: "3.2"
+services:
+  ibzlite-provider-api:
+    image: registry.cn-shanghai.aliyuncs.com/ibizsys/ibzlite-provider-api:latest
+    ports:
+      - "8081:8081"
+    networks:
+      - agent_network
+    deploy:
+      resources:
+           limits:
+               memory: 4048M
+           reservations:
+               memory: 400M    
+      mode: replicated
+      replicas: 1
+    volumes:
+      - "nfs:/app/file"
+
+volumes:
+  nfs:
+    driver: local
+    driver_opts:
+      type: "nfs"
+      o: "addr=172.16.240.109,rw"
+      device: ":/nfs"
+
+networks:
+  agent_network:
+    driver: overlay
+    attachable: true
+
--- a/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiAutoConfiguration.java
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiAutoConfiguration.java
+package cn.ibizlab.api.config;
+
+import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
+import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication;
+import org.springframework.boot.context.properties.EnableConfigurationProperties;
+import org.springframework.boot.web.servlet.ServletRegistrationBean;
+import org.springframework.context.ApplicationContext;
+import org.springframework.context.ApplicationContextAware;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.context.support.AnnotationConfigWebApplicationContext;
+import org.springframework.web.servlet.DispatcherServlet;
+import org.springframework.scheduling.concurrent.ThreadPoolTaskExecutor;
+import java.util.concurrent.Executor;
+import java.util.concurrent.ThreadPoolExecutor;
+import org.springframework.context.annotation.Import;
+
+@Configuration
+@ConditionalOnClass(apiRestConfiguration.class)
+@ConditionalOnWebApplication
+@EnableConfigurationProperties(apiServiceProperties.class)
+public class apiAutoConfiguration implements ApplicationContextAware{
+
+	protected ApplicationContext applicationContext;
+
+
+	public void setApplicationContext(ApplicationContext applicationContext) {
+		this.applicationContext = applicationContext;
+	}
+
+    @Bean("asyncExecutor")
+    public Executor asyncExecutor() {
+        ThreadPoolTaskExecutor executor = new ThreadPoolTaskExecutor();
+        executor.setCorePoolSize(10);
+        executor.setMaxPoolSize(20);
+        executor.setQueueCapacity(2000);
+        executor.setKeepAliveSeconds(600);
+        executor.setThreadNamePrefix("asyncExecutor-");
+        executor.setRejectedExecutionHandler(new ThreadPoolExecutor.CallerRunsPolicy());
+        return executor;
+    }
+
+//	@Bean
+//	public ServletRegistrationBean apiServlet() {
+//		AnnotationConfigWebApplicationContext dispatcherServletConfiguration = new AnnotationConfigWebApplicationContext();
+//		dispatcherServletConfiguration.setParent(applicationContext);
+//		dispatcherServletConfiguration.register(apiRestConfiguration.class);
+//		DispatcherServlet servlet = new DispatcherServlet(dispatcherServletConfiguration);
+//		String path = "/api";
+//		String urlMapping = (path.endsWith("/") ? path + "*" : path + "/*");
+//		ServletRegistrationBean registrationBean = new ServletRegistrationBean(servlet, urlMapping);
+//		registrationBean.setName("api");
+//		return registrationBean;
+//	}
+}
+
--- a/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiRestConfiguration.java
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiRestConfiguration.java
+package cn.ibizlab.api.config;
+
+import org.springframework.context.annotation.ComponentScan;
+
+@ComponentScan("cn.ibizlab.api")
+public class apiRestConfiguration {
+
+}
--- a/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiSecurityConfig.java
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiSecurityConfig.java
+package cn.ibizlab.api.config;
+
+import cn.ibizlab.util.security.AuthenticationEntryPoint;
+import cn.ibizlab.util.security.AuthorizationTokenFilter;
+import cn.ibizlab.util.service.AuthenticationUserService;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpMethod;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.core.GrantedAuthorityDefaults;
+import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+import org.springframework.context.annotation.Profile;
+import org.springframework.beans.factory.annotation.Qualifier;
+
+@Profile("api-prod")
+@Configuration
+@EnableWebSecurity
+@EnableGlobalMethodSecurity(prePostEnabled = true)
+public class apiSecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    private AuthenticationEntryPoint unauthorizedHandler;
+
+    @Autowired
+    private AuthenticationUserService userDetailsService;
+
+    /**
+     * 自定义基于JWT的安全过滤器
+     */
+    @Autowired
+    AuthorizationTokenFilter authenticationTokenFilter;
+
+    @Value("${ibiz.auth.path:v7/login}")
+    private String loginPath;
+
+    @Value("${ibiz.auth.logoutpath:v7/logout}")
+    private String logoutPath;
+
+    @Value("${ibiz.file.uploadpath:ibizutil/upload}")
+    private String uploadpath;
+
+    @Value("${ibiz.file.downloadpath:ibizutil/download}")
+    private String downloadpath;
+
+    @Value("${ibiz.file.previewpath:ibizutil/preview}")
+    private String previewpath;
+    
+    @Value("${ibiz.auth.excludesPattern:}")
+    private String[] excludesPattern;
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
+        auth
+                .userDetailsService(userDetailsService)
+                .passwordEncoder(passwordEncoderBean());
+    }
+
+    @Bean
+    GrantedAuthorityDefaults grantedAuthorityDefaults() {
+        // Remove the ROLE_ prefix
+        return new GrantedAuthorityDefaults("");
+    }
+
+    @Bean
+    public PasswordEncoder passwordEncoderBean() {
+        return new BCryptPasswordEncoder();
+    }
+
+    @Bean
+    @Override
+    public AuthenticationManager authenticationManagerBean() throws Exception {
+        return super.authenticationManagerBean();
+    }
+
+    @Override
+    protected void configure(HttpSecurity httpSecurity) throws Exception {
+
+       httpSecurity
+                // 禁用 CSRF
+                .csrf().disable()
+
+                // 授权异常
+                .exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and()
+
+                // 不创建会话
+                .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
+
+                // 过滤请求
+                .authorizeRequests()
+                .antMatchers(
+                        HttpMethod.GET,
+                        "/*.html",
+                        "/**/*.html",
+                        "/**/*.css",
+                        "/**/*.js",
+                        "/**/*.ico",
+                        "/**/assets/**",
+                        "/**/css/**",
+                        "/**/fonts/**",
+                        "/**/js/**",
+                        "/**/img/**",
+                        "/",
+                        "webjars/**",
+                        "/swagger-resources/**",
+                        "/v2/**"
+                ).permitAll()
+                //放行登录请求
+                .antMatchers( HttpMethod.POST,"/"+loginPath).permitAll()
+                //放行注销请求
+                .antMatchers( HttpMethod.GET,"/"+logoutPath).permitAll()
+                // 文件操作
+                .antMatchers("/"+downloadpath+"/**").permitAll()
+                .antMatchers("/"+uploadpath).permitAll()
+                .antMatchers("/"+previewpath+"/**").permitAll();
+                
+        for (String excludePattern : excludesPattern) {
+            authenticationTokenFilter.addExcludePattern(excludePattern);
+            httpSecurity.authorizeRequests().antMatchers(excludePattern).permitAll();
+        }
+                
+        // 所有请求都需要认证
+        httpSecurity.authorizeRequests().anyRequest().authenticated()
+                // 防止iframe 造成跨域
+                .and().headers().frameOptions().disable();
+
+        httpSecurity
+                .addFilterBefore(authenticationTokenFilter, UsernamePasswordAuthenticationFilter.class);
+    }
+}
--- a/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiServiceProperties.java
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/config/apiServiceProperties.java
+package cn.ibizlab.api.config;
+
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import lombok.Data;
+
+@ConfigurationProperties(prefix = "service.api")
+@Data
+public class apiServiceProperties {
+
+	private boolean enabled;
+
+	private boolean auth;
+
+
+}
\ No newline at end of file
--- a/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/ibzliteapiApplication.java
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/java/cn/ibizlab/api/ibzliteapiApplication.java
+package cn.ibizlab.api;
+
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Import;
+import org.springframework.data.mongodb.repository.config.EnableMongoRepositories;
+import org.springframework.transaction.annotation.EnableTransactionManagement;
+import org.mybatis.spring.annotation.MapperScan;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
+import org.springframework.cloud.openfeign.EnableFeignClients;
+import org.springframework.scheduling.annotation.EnableAsync;
+import org.springframework.scheduling.annotation.EnableScheduling;
+import cn.ibizlab.util.web.SearchContextHandlerMethodArgumentResolver;
+import org.springframework.beans.factory.annotation.Autowired;
+import java.util.List;
+
+@Slf4j
+@EnableDiscoveryClient
+@Configuration
+@EnableTransactionManagement
+@ComponentScan(basePackages = {"cn.ibizlab"}
+//        ,excludeFilters={
+//                @ComponentScan.Filter(type= org.springframework.context.annotation.FilterType.REGEX,pattern="cn.ibizlab.api.rest.xxx"),
+//        }
+)
+@EnableMongoRepositories(basePackages = {"cn.ibizlab"})
+@MapperScan("cn.ibizlab.*.mapper")
+@SpringBootApplication(exclude = {
+        org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration.class,
+            org.springframework.boot.autoconfigure.mongo.MongoAutoConfiguration.class,
+})
+@Import({
+        org.springframework.cloud.openfeign.FeignClientsConfiguration.class
+})
+@EnableFeignClients(basePackages = {"cn.ibizlab" })
+@EnableAsync
+@EnableScheduling
+public class ibzliteapiApplication extends WebMvcConfigurerAdapter{
+
+    @Autowired
+    SearchContextHandlerMethodArgumentResolver resolver;
+
+    public static void main(String[] args) {
+        SpringApplication.run(ibzliteapiApplication.class, args);
+    }
+
+    @Override
+    public void addArgumentResolvers(List<HandlerMethodArgumentResolver> argumentResolvers) {
+        super.addArgumentResolvers(argumentResolvers);
+        argumentResolvers.add(resolver);
+    }
+}
--- a/ibzlite-provider/ibzlite-provider-api/src/main/resources/application-api-dev.yml
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/resources/application-api-dev.yml
+server:
+  port: 8081
\ No newline at end of file
--- a/ibzlite-provider/ibzlite-provider-api/src/main/resources/application-api-prod.yml
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/resources/application-api-prod.yml
+server:
+  port: 8081
+#Log配置
+logging:
+  level:
+    cn.ibizlab: info
\ No newline at end of file
--- a/ibzlite-provider/ibzlite-provider-api/src/main/resources/application.yml
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/resources/application.yml
+spring:
+  profiles:
+    include: sys ,nacos, api-prod
+  application:
+    name: ibzlite-api
\ No newline at end of file
--- a/ibzlite-provider/ibzlite-provider-api/src/main/resources/logback-spring.xml
+++ b/ibzlite-provider/ibzlite-provider-api/src/main/resources/logback-spring.xml
+<?xml version="1.0" encoding="UTF-8"?>
+<configuration debug="false">
+    <property name="LOG_PATH" value="logs" />
+    <property name="LOG_PATTERN" value="%d{yyyy-MM-dd HH:mm:ss.SSS} [%-5level] %-40.40logger{39} : %msg%n" />
+    <!-- 彩色日志 -->
+    <!-- 彩色日志依赖的渲染类 -->
+    <conversionRule conversionWord="clr" converterClass="org.springframework.boot.logging.logback.ColorConverter" />
+    <conversionRule conversionWord="wex" converterClass="org.springframework.boot.logging.logback.WhitespaceThrowableProxyConverter" />
+    <conversionRule conversionWord="wEx" converterClass="org.springframework.boot.logging.logback.ExtendedWhitespaceThrowableProxyConverter" />
+    <!-- 彩色日志格式 -->
+    <property name="LOG_PATTERN2" value="${CONSOLE_LOG_PATTERN:-%clr(%d{yyyy-MM-dd HH:mm:ss.SSS}){faint} %clr([${LOG_LEVEL_PATTERN:-%5p}]) %clr(%-40.40logger{39}){cyan} %clr(:){faint} %m%n${LOG_EXCEPTION_CONVERSION_WORD:-%wEx}}" />
+
+    <!-- 控制台输出 -->
+    <appender name="Console" class="ch.qos.logback.core.ConsoleAppender">
+        <encoder class="ch.qos.logback.classic.encoder.PatternLayoutEncoder">
+            <pattern>${LOG_PATTERN}</pattern>
+        </encoder>
+    </appender>
+    <!-- 按照每天生成日志文件 -->
+    <appender name="file"  class="ch.qos.logback.core.rolling.RollingFileAppender">
+        <rollingPolicy class="ch.qos.logback.core.rolling.TimeBasedRollingPolicy">
+            <!--日志文件输出的文件名-->
+            <FileNamePattern>${LOG_PATH}/ibzlite-api.%d{yyyy-MM-dd}.log</FileNamePattern>
+            <!--日志文件保留天数-->
+            <MaxHistory>30</MaxHistory>
+        </rollingPolicy>
+        <encoder class="ch.qos.logback.classic.encoder.PatternLayoutEncoder">
+            <pattern>${LOG_PATTERN}</pattern>
+        </encoder>
+
+        <!--日志文件最大的大小-->
+        <triggeringPolicy class="ch.qos.logback.core.rolling.SizeBasedTriggeringPolicy">
+            <MaxFileSize>100MB</MaxFileSize>
+        </triggeringPolicy>
+    </appender>
+    <!-- 日志输出级别 -->
+    <root level="INFO">
+        <appender-ref ref="Console" />
+        <appender-ref ref="file" />
+    </root>
+</configuration>
--- a/ibzlite-provider/pom.xml
+++ b/ibzlite-provider/pom.xml
@@ -15,6 +15,7 @@
    <description>Ibzlite Provider</description>

    <modules>
+        <module>ibzlite-provider-api</module>
    </modules>

    <dependencies>