Java tutorial
/** * Copyright © 2012-2013 <a href="https://github.com/thinkgem/jeesite">JeeSite</a> All rights reserved. * * Licensed under the Apache License, Version 2.0 (the "License"); */ package com.green.modules.sys.service; import java.util.Date; import java.util.List; import java.util.Map; import org.activiti.engine.IdentityService; import org.activiti.engine.identity.Group; import org.apache.commons.lang3.ObjectUtils; import org.apache.shiro.SecurityUtils; import org.hibernate.criterion.DetachedCriteria; import org.hibernate.criterion.Order; import org.hibernate.criterion.Restrictions; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Service; import org.springframework.transaction.annotation.Transactional; import com.google.common.collect.Maps; import com.green.common.persistence.Page; import com.green.common.security.Digests; import com.green.common.service.BaseService; import com.green.common.utils.Collections3; import com.green.common.utils.Encodes; import com.green.common.utils.StringUtils; import com.green.modules.sys.dao.MenuDao; import com.green.modules.sys.dao.RoleDao; import com.green.modules.sys.dao.UserDao; import com.green.modules.sys.entity.Menu; import com.green.modules.sys.entity.Role; import com.green.modules.sys.entity.User; import com.green.modules.sys.security.SystemAuthorizingRealm; import com.green.modules.sys.utils.UserUtils; /** * ??,????. * @author ThinkGem * @version 2013-5-15 */ @Service @Transactional(readOnly = true) public class SystemService extends BaseService { public static final String HASH_ALGORITHM = "SHA-1"; public static final int HASH_INTERATIONS = 1024; public static final int SALT_SIZE = 8; @Autowired private UserDao userDao; @Autowired private RoleDao roleDao; @Autowired private MenuDao menuDao; @Autowired private SystemAuthorizingRealm systemRealm; @Autowired private IdentityService identityService; //-- User Service --// public User getUser(String id) { return userDao.get(id); } public Page<User> findUser(Page<User> page, User user) { DetachedCriteria dc = userDao.createDetachedCriteria(); User currentUser = UserUtils.getUser(); dc.createAlias("company", "company"); if (user.getCompany() != null && StringUtils.isNotBlank(user.getCompany().getId())) { dc.add(Restrictions.or(Restrictions.eq("company.id", user.getCompany().getId()), Restrictions.like("company.parentIds", "%," + user.getCompany().getId() + ",%"))); } dc.createAlias("office", "office"); if (user.getOffice() != null && StringUtils.isNotBlank(user.getOffice().getId())) { dc.add(Restrictions.or(Restrictions.eq("office.id", user.getOffice().getId()), Restrictions.like("office.parentIds", "%," + user.getOffice().getId() + ",%"))); } // ???? if (!currentUser.isAdmin()) { dc.add(Restrictions.ne("id", "1")); } dc.add(dataScopeFilter(currentUser, "office", "")); //System.out.println(dataScopeFilterString(currentUser, "office", "")); if (StringUtils.isNotEmpty(user.getLoginName())) { dc.add(Restrictions.like("loginName", "%" + user.getLoginName() + "%")); } if (StringUtils.isNotEmpty(user.getName())) { dc.add(Restrictions.like("name", "%" + user.getName() + "%")); } dc.add(Restrictions.eq(User.FIELD_DEL_FLAG, User.DEL_FLAG_NORMAL)); if (!StringUtils.isNotEmpty(page.getOrderBy())) { dc.addOrder(Order.asc("company.code")).addOrder(Order.asc("office.code")).addOrder(Order.desc("name")); } return userDao.find(page, dc); } public User getUserByLoginName(String loginName) { return userDao.findByLoginName(loginName); } @Transactional(readOnly = false) public void saveUser(User user) { userDao.clear(); userDao.save(user); systemRealm.clearAllCachedAuthorizationInfo(); // ?Activiti saveActiviti(user); } @Transactional(readOnly = false) public void deleteUser(String id) { userDao.deleteById(id); // ?Activiti deleteActiviti(userDao.get(id)); } @Transactional(readOnly = false) public void updatePasswordById(String id, String loginName, String newPassword) { userDao.updatePasswordById(entryptPassword(newPassword), id); systemRealm.clearCachedAuthorizationInfo(loginName); } @Transactional(readOnly = false) public void updateUserLoginInfo(String id) { userDao.updateLoginInfo(SecurityUtils.getSubject().getSession().getHost(), new Date(), id); } /** * ????16?salt?1024 sha-1 hash */ public static String entryptPassword(String plainPassword) { byte[] salt = Digests.generateSalt(SALT_SIZE); byte[] hashPassword = Digests.sha1(plainPassword.getBytes(), salt, HASH_INTERATIONS); return Encodes.encodeHex(salt) + Encodes.encodeHex(hashPassword); } /** * ?? * @param plainPassword ? * @param password ? * @return ??true */ public static boolean validatePassword(String plainPassword, String password) { byte[] salt = Encodes.decodeHex(password.substring(0, 16)); byte[] hashPassword = Digests.sha1(plainPassword.getBytes(), salt, HASH_INTERATIONS); return password.equals(Encodes.encodeHex(salt) + Encodes.encodeHex(hashPassword)); } //-- Role Service --// public Role getRole(String id) { return roleDao.get(id); } public Role findRoleByName(String name) { return roleDao.findByName(name); } public List<Role> findAllRole() { return UserUtils.getRoleList(); } @Transactional(readOnly = false) public void saveRole(Role role) { roleDao.clear(); roleDao.save(role); systemRealm.clearAllCachedAuthorizationInfo(); // ?Activiti saveActiviti(role); UserUtils.removeCache(UserUtils.CACHE_ROLE_LIST); } @Transactional(readOnly = false) public void deleteRole(String id) { roleDao.deleteById(id); systemRealm.clearAllCachedAuthorizationInfo(); // ?Activiti deleteActiviti(roleDao.get(id)); UserUtils.removeCache(UserUtils.CACHE_ROLE_LIST); } @Transactional(readOnly = false) public Boolean outUserInRole(Role role, String userId) { User user = userDao.get(userId); List<String> roleIds = user.getRoleIdList(); List<Role> roles = user.getRoleList(); // if (roleIds.contains(role.getId())) { roles.remove(role); saveUser(user); return true; } return false; } @Transactional(readOnly = false) public User assignUserToRole(Role role, String userId) { User user = userDao.get(userId); List<String> roleIds = user.getRoleIdList(); if (roleIds.contains(role.getId())) { return null; } user.getRoleList().add(role); saveUser(user); return user; } //-- Menu Service --// public Menu getMenu(String id) { return menuDao.get(id); } public List<Menu> findAllMenu() { return UserUtils.getMenuList(); } @Transactional(readOnly = false) public void saveMenu(Menu menu) { menu.setParent(this.getMenu(menu.getParent().getId())); String oldParentIds = menu.getParentIds(); // ??parentIds?parentIds menu.setParentIds(menu.getParent().getParentIds() + menu.getParent().getId() + ","); menuDao.clear(); menuDao.save(menu); // ? parentIds List<Menu> list = menuDao.findByParentIdsLike("%," + menu.getId() + ",%"); for (Menu e : list) { e.setParentIds(e.getParentIds().replace(oldParentIds, menu.getParentIds())); } menuDao.save(list); systemRealm.clearAllCachedAuthorizationInfo(); UserUtils.removeCache(UserUtils.CACHE_MENU_LIST); saveActiviti(menu); } @Transactional(readOnly = false) public void deleteMenu(String id) { menuDao.deleteById(id, "%," + id + ",%"); systemRealm.clearAllCachedAuthorizationInfo(); UserUtils.removeCache(UserUtils.CACHE_MENU_LIST); deleteActiviti(id); } ///////////////// Synchronized to the Activiti ////////////////// /** * ?Activiti? */ @Transactional(readOnly = false) public void synToActiviti() { menuDao.updateBySql("delete from ACT_ID_MEMBERSHIP", null); menuDao.updateBySql("delete from ACT_ID_GROUP", null); menuDao.updateBySql("delete from ACT_ID_USER", null); List<Group> activitiGroupList = identityService.createGroupQuery().list(); List<org.activiti.engine.identity.User> activitiUserList = identityService.createUserQuery().list(); if (activitiGroupList.size() == 0 && activitiUserList.size() == 0) { //??????? List<User> userList = userDao.findAllList(); for (User user : userList) { org.activiti.engine.identity.User activitiUesr = identityService .newUser(ObjectUtils.toString(user.getId())); identityService.saveUser(activitiUesr); } for (Menu menu : menuDao.findAllActivitiList()) { if (StringUtils.isNotEmpty(menu.getActivitiGroupId())) { Group group = identityService.newGroup(menu.getActivitiGroupId()); identityService.saveGroup(group); } } //? for (User user : userList) { List<Menu> menuList = menuDao.findAllActivitiList(user.getId()); if (!Collections3.isEmpty(menuList)) { for (Menu menu : menuList) { if (StringUtils.isNotEmpty(menu.getActivitiGroupId())) { identityService.createMembership(ObjectUtils.toString(user.getId()), menu.getActivitiGroupId()); } } } } } } private void saveActiviti(Role role) { if (role != null) { List<User> userList = roleDao.get(role.getId()).getUserList(); if (!Collections3.isEmpty(userList)) { for (User user : userList) { List<Menu> menuList = menuDao.findAllActivitiList(user.getId()); merge(user, menuList); } } } } private void deleteActiviti(Role role) { if (role != null) { List<User> userList = roleDao.get(role.getId()).getUserList(); if (!Collections3.isEmpty(userList)) { for (User user : userList) { List<Menu> menuList = menuDao.findAllActivitiList(user.getId()); merge(user, menuList); } } } } private void saveActiviti(User user) { if (user != null) { String userId = ObjectUtils.toString(user.getId()); org.activiti.engine.identity.User activitiUser = identityService.createUserQuery().userId(userId) .singleResult(); // if (activitiUser == null) { activitiUser = identityService.newUser(userId); identityService.saveUser(activitiUser); } // ??? List<Menu> menuList = menuDao.findAllActivitiList(user.getId()); merge(user, menuList); } } private void deleteActiviti(User user) { if (user != null) { String userId = ObjectUtils.toString(user.getId()); identityService.deleteUser(userId); } } private void saveActiviti(Menu menu) { if (menu != null) { Group group = identityService.createGroupQuery().groupId(menu.getActivitiGroupId()).singleResult(); if (group != null) { identityService.deleteGroup(group.getId()); } if (Menu.YES.equals(menu.getIsActiviti()) && StringUtils.isNotBlank(menu.getActivitiGroupId())) { group = identityService.newGroup(menu.getActivitiGroupId()); group.setName(menu.getActivitiGroupName()); identityService.saveGroup(group); List<Role> roleList = menuDao.get(menu.getId()).getRoleList(); if (!Collections3.isEmpty(roleList)) { for (Role role : roleList) { List<User> userList = role.getUserList(); if (!Collections3.isEmpty(userList)) { for (User user : userList) { identityService.createMembership(ObjectUtils.toString(user.getId()), menu.getActivitiGroupId()); } } } } } } } private void deleteActiviti(String id) { if (id != null) { Menu menu = menuDao.get(id); if (Menu.YES.equals(menu.getIsActiviti()) && StringUtils.isNotBlank(menu.getActivitiGroupId())) { identityService.deleteGroup(menu.getActivitiGroupId()); } if (menu != null) { List<Menu> menuList = menuDao.findByParentIdsLike("%," + menu.getId() + ",%"); for (Menu m : menuList) { if (Menu.YES.equals(menu.getIsActiviti()) && StringUtils.isNotBlank(m.getActivitiGroupId())) { identityService.deleteGroup(m.getActivitiGroupId()); } } } } } @SuppressWarnings("unchecked") private void merge(User user, List<Menu> menuList) { String userId = ObjectUtils.toString(user.getId()); List<Group> activitiGroupList = identityService.createGroupQuery().groupMember(userId).list(); if (Collections3.isEmpty(menuList)) { for (Group group : activitiGroupList) { identityService.deleteMembership(userId, group.getId()); } } else { Map<String, String> groupMap = Maps.newHashMap(); for (Menu menu : menuList) { groupMap.put(menu.getActivitiGroupId(), menu.getActivitiGroupName()); } Map<String, String> activitiGroupMap = Collections3.extractToMap(activitiGroupList, "id", "name"); for (String groupId : activitiGroupMap.keySet()) { if (StringUtils.isNotBlank(groupId) && !groupMap.containsKey(groupId)) { identityService.deleteMembership(userId, groupId); } } for (String groupId : groupMap.keySet()) { if (StringUtils.isNotBlank(groupId) && !activitiGroupMap.containsKey(groupId)) { identityService.createMembership(userId, groupId); } } } } ///////////////// Synchronized to the Activiti end ////////////////// }