Merge branch 'main' into personal/heshunme/auth-restart-1

# Conflicts: # src/main/java/org/cmh/backend/authentication/controller/UserController.java # src/main/resources/application.properties
全集修改上传文件大小上限，添加验证码路径支持
2024-07-05 15:04:06 +08:00 · 2024-07-04 00:35:54 +08:00 · 2024-07-03 14:50:03 +08:00 · 2024-07-03 14:50:03 +08:00 · 2024-07-03 14:13:20 +08:00 · 2024-07-03 13:58:25 +08:00
4 changed files with 42 additions and 30 deletions
--- a/src/main/java/org/cmh/backend/Utils/GlobalExceptionHandler.java
+++ b/src/main/java/org/cmh/backend/Utils/GlobalExceptionHandler.java
@ -2,9 +2,15 @@ package org.cmh.backend.Utils;

 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
+import org.springframework.http.converter.HttpMessageNotReadableException;
+import org.springframework.web.bind.MissingServletRequestParameterException;
 import org.springframework.web.bind.annotation.ControllerAdvice;
 import org.springframework.web.bind.annotation.ExceptionHandler;

+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.Map;
+
@ControllerAdvice
 public class GlobalExceptionHandler {

@ -12,4 +18,17 @@ public class GlobalExceptionHandler {
    public ResponseEntity<Object> handleJwtInvalidException(JwtValidationException ex) {
        return new ResponseEntity<>(HttpStatus.UNAUTHORIZED);
    }
+
+    @ExceptionHandler(MissingServletRequestParameterException.class)
+    public ResponseEntity<Map<String, String>> handleMissingServletRequestParameterException(MissingServletRequestParameterException ex) {
+        HashMap<String, String> response = new HashMap<>();
+        response.put("error", ex.getMessage());
+        response.put("stackTrace", Arrays.toString(ex.getStackTrace()));
+        return new ResponseEntity<>(response, HttpStatus.BAD_REQUEST);
+    }
+
+    @ExceptionHandler(HttpMessageNotReadableException.class)
+    public ResponseEntity<String> handleHttpMessageNotReadableException(HttpMessageNotReadableException ex) {
+        return new ResponseEntity<>(ex.getMessage(), HttpStatus.BAD_REQUEST);
+    }
 }
--- a/src/main/java/org/cmh/backend/Utils/JwtVerifyAspect.java
+++ b/src/main/java/org/cmh/backend/Utils/JwtVerifyAspect.java
@ -1,5 +1,6 @@
 package org.cmh.backend.Utils;

+import org.aspectj.lang.JoinPoint;
 import org.aspectj.lang.annotation.Aspect;
 import org.aspectj.lang.annotation.Before;
 import org.springframework.stereotype.Component;
@ -7,14 +8,26 @@ import org.springframework.stereotype.Component;
@Aspect
@Component
 public class JwtVerifyAspect {
-    @Before("@annotation(JwtVerify) && args(request,..)")
-    public void verifyJwtToken(Object request) throws JwtValidationException {
-        if (request instanceof JwtRequest) {
-            String token = ((JwtRequest) request).getToken();
-            if (!JwtUtil.isTokenValid(token)) {
-                throw new JwtValidationException("JWT token is invalid");
+    @Before("@annotation(JwtVerify)&&args(..)")
+    public void verifyJwtToken(JoinPoint joinPoint) throws JwtValidationException {
+        Object[] args = joinPoint.getArgs();
+        for (Object arg : args) {
+            if (arg instanceof JwtRequest jwtRequest) {
+                String token = jwtRequest.getToken();
+                if (!JwtUtil.isTokenValid(token)) {
+                    throw new JwtValidationException("请求未正确携带身份令牌");
+                }
+                return;  // 只接受第一个 JwtRequest 对象，收到后不再校验其他参数
+            }
+            // JWTRequest对象优先，否则再检查其他字符串参数
+            if (arg instanceof String token){
+                if (JwtUtil.isTokenValid(token)){
+                    // 验证成功就直接退出。
+                    return;
+                }
            }
        }
+        throw new JwtValidationException("请求未正确携带身份令牌");
    }
 }

--- a/src/main/java/org/cmh/backend/authentication/controller/UserController.java
+++ b/src/main/java/org/cmh/backend/authentication/controller/UserController.java
@ -1,23 +0,0 @@
-package org.cmh.backend.authentication.controller;
-
-import org.cmh.backend.authentication.model.UserHS;
-import org.cmh.backend.authentication.service.UserService;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RestController;
-
-@RestController
-@RequestMapping("/users")
-public class UserController {
-    @Autowired
-    private UserService userService;
-
-    @GetMapping("/{username}")
-    public ResponseEntity<UserHS> getUser(@PathVariable String username) {
-        UserHS user = userService.getUserByUsername(username);
-        return ResponseEntity.ok(user);
-    }
-}
--- a/src/main/resources/application.properties
+++ b/src/main/resources/application.properties
@ -22,5 +22,8 @@ server.servlet.encoding.force=true
 server.servlet.encoding.charset=utf-8
 # verificationCode
 verification.code.images.path=src/main/resources/static/verificationCodeImages
-
+# set the max size of a single file
+spring.servlet.multipart.max-file-size=50MB
+# set the max size of the total request
+spring.servlet.multipart.max-request-size=50MB
Author	SHA1	Message	Date
heshunme	55e40288df	Merge branch 'main' into personal/heshunme/auth-restart-1 # Conflicts: # src/main/java/org/cmh/backend/authentication/controller/UserController.java # src/main/resources/application.properties	2024-07-05 15:04:06 +08:00
heshunme	441c984108	全集修改上传文件大小上限，添加验证码路径支持	2024-07-04 00:35:54 +08:00
heshunme	9d6ab53f5f	给HttpMessageNotReadableException和MissingServletRequestParameterException指定了全局错误处理器，现在当前端发送给后端的参数不对的时候也能正确返回401错误了	2024-07-03 14:50:03 +08:00
heshunme	a58da98dd1	给@JwtVerify添加了校验字符串参数的用法，现在只要有任意一个字符串参数的内容是JWT就也能校验了。	2024-07-03 14:50:03 +08:00
heshunme	fc2c97b502	bugfix@JwtVerify	2024-07-03 14:13:20 +08:00
heshunme	df6686fc19	升级了@JwtVerify的能力，现在被修饰的方法的任意一个参数是继承于JwtRequest的对象即可，不再强制为第一个参	2024-07-03 13:58:25 +08:00
heshunme	6beeb110c2	删除了无用示例	2024-07-03 01:59:40 +08:00