Java tutorial
/** * Copyright © 2012-2013 <a href="https://github.com/ourlife/dev">dev</a> All rights reserved. * * Licensed under the Apache License, Version 2.0 (the "License"); */ package com.ourlife.dev.modules.sys.service; import java.util.Date; import java.util.List; import org.apache.shiro.SecurityUtils; import org.hibernate.criterion.DetachedCriteria; import org.hibernate.criterion.Order; import org.hibernate.criterion.Restrictions; import org.hibernate.sql.JoinType; import org.springframework.beans.factory.InitializingBean; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Service; import org.springframework.transaction.annotation.Transactional; import com.ourlife.dev.common.persistence.Page; import com.ourlife.dev.common.security.Digests; import com.ourlife.dev.common.service.BaseService; import com.ourlife.dev.common.utils.Encodes; import com.ourlife.dev.common.utils.StringUtils; import com.ourlife.dev.modules.sys.dao.MenuDao; import com.ourlife.dev.modules.sys.dao.RoleDao; import com.ourlife.dev.modules.sys.dao.UserDao; import com.ourlife.dev.modules.sys.entity.Menu; import com.ourlife.dev.modules.sys.entity.Role; import com.ourlife.dev.modules.sys.entity.User; import com.ourlife.dev.modules.sys.security.SystemAuthorizingRealm; import com.ourlife.dev.modules.sys.utils.UserUtils; /** * ??,????. * * @author ourlife * @version 2013-5-15 */ @Service @Transactional(readOnly = true) public class SystemService extends BaseService implements InitializingBean { public static final String HASH_ALGORITHM = "SHA-1"; public static final int HASH_INTERATIONS = 1024; public static final int SALT_SIZE = 8; @Autowired private UserDao userDao; @Autowired private RoleDao roleDao; @Autowired private MenuDao menuDao; @Autowired private SystemAuthorizingRealm systemRealm; // -- User Service --// public User getUser(Long id) { return userDao.findOne(id); } public Page<User> findUser(Page<User> page, User user) { DetachedCriteria dc = userDao.createDetachedCriteria(); User currentUser = UserUtils.getUser(); dc.createAlias("company", "company"); if (user.getCompany() != null && user.getCompany().getId() != null) { dc.add(Restrictions.or(Restrictions.eq("company.id", user.getCompany().getId()), Restrictions.like("company.parentIds", "%," + user.getCompany().getId() + ",%"))); } dc.createAlias("office", "office"); if (user.getOffice() != null && user.getOffice().getId() != null) { dc.add(Restrictions.or(Restrictions.eq("office.id", user.getOffice().getId()), Restrictions.like("office.parentIds", "%," + user.getOffice().getId() + ",%"))); } // ???? if (!currentUser.isAdmin()) { dc.add(Restrictions.ne("id", 1L)); } dc.add(dataScopeFilter(currentUser, "office", "")); // System.out.println(dataScopeFilterString(currentUser, "office", "")); if (StringUtils.isNotEmpty(user.getLoginName())) { dc.add(Restrictions.like("loginName", "%" + user.getLoginName() + "%")); } if (StringUtils.isNotEmpty(user.getName())) { dc.add(Restrictions.like("name", "%" + user.getName() + "%")); } dc.add(Restrictions.eq(User.DEL_FLAG, User.DEL_FLAG_NORMAL)); if (!StringUtils.isNotEmpty(page.getOrderBy())) { dc.addOrder(Order.asc("company.code")).addOrder(Order.asc("office.code")).addOrder(Order.desc("id")); } return userDao.find(page, dc); } public User getUserByLoginName(String loginName) { return userDao.findByLoginName(loginName); } @Transactional(readOnly = false) public void saveUser(User user) { userDao.clear(); userDao.save(user); systemRealm.clearAllCachedAuthorizationInfo(); } @Transactional(readOnly = false) public void deleteUser(Long id) { userDao.deleteById(id); } @Transactional(readOnly = false) public void updatePasswordById(Long id, String loginName, String newPassword) { userDao.updatePasswordById(entryptPassword(newPassword), id); systemRealm.clearCachedAuthorizationInfo(loginName); } @Transactional(readOnly = false) public void updateUserLoginInfo(Long id) { userDao.updateLoginInfo(SecurityUtils.getSubject().getSession().getHost(), new Date(), id); } /** * ????16?salt?1024 sha-1 hash */ public static String entryptPassword(String plainPassword) { byte[] salt = Digests.generateSalt(SALT_SIZE); byte[] hashPassword = Digests.sha1(plainPassword.getBytes(), salt, HASH_INTERATIONS); return Encodes.encodeHex(salt) + Encodes.encodeHex(hashPassword); } /** * ?? * * @param plainPassword * ? * @param password * ? * @return ??true */ public static boolean validatePassword(String plainPassword, String password) { byte[] salt = Encodes.decodeHex(password.substring(0, 16)); byte[] hashPassword = Digests.sha1(plainPassword.getBytes(), salt, HASH_INTERATIONS); return password.equals(Encodes.encodeHex(salt) + Encodes.encodeHex(hashPassword)); } // -- Role Service --// public Role getRole(Long id) { return roleDao.findOne(id); } public Role findRoleByName(String name) { return roleDao.findByName(name); } public List<Role> findAllRole() { User user = UserUtils.getUser(); DetachedCriteria dc = roleDao.createDetachedCriteria(); dc.createAlias("office", "office"); dc.createAlias("userList", "userList", JoinType.LEFT_OUTER_JOIN); dc.add(dataScopeFilter(user, "office", "userList")); dc.add(Restrictions.eq(Role.DEL_FLAG, Role.DEL_FLAG_NORMAL)); dc.addOrder(Order.asc("office.code")).addOrder(Order.asc("name")); return roleDao.find(dc); } @Transactional(readOnly = false) public void saveRole(Role role) { roleDao.clear(); roleDao.save(role); systemRealm.clearAllCachedAuthorizationInfo(); } @Transactional(readOnly = false) public void deleteRole(Long id) { roleDao.deleteById(id); systemRealm.clearAllCachedAuthorizationInfo(); } @Transactional(readOnly = false) public Boolean outUserInRole(Role role, Long userId) { User user = userDao.findOne(userId); List<Long> roleIds = user.getRoleIdList(); List<Role> roles = user.getRoleList(); // if (roleIds.contains(role.getId())) { roles.remove(role); saveUser(user); return true; } return false; } @Transactional(readOnly = false) public User assignUserToRole(Role role, Long userId) { User user = userDao.findOne(userId); List<Long> roleIds = user.getRoleIdList(); if (roleIds.contains(role.getId())) { return null; } user.getRoleList().add(role); saveUser(user); return user; } // -- Menu Service --// public Menu getMenu(Long id) { return menuDao.findOne(id); } public List<Menu> findAllMenu() { return UserUtils.getMenuList(); } @Transactional(readOnly = false) public void saveMenu(Menu menu) { menu.setParent(this.getMenu(menu.getParent().getId())); String oldParentIds = menu.getParentIds(); // ??parentIds?parentIds menu.setParentIds(menu.getParent().getParentIds() + menu.getParent().getId() + ","); menuDao.clear(); menuDao.save(menu); // ? parentIds List<Menu> list = menuDao.findByParentIdsLike("%," + menu.getId() + ",%"); for (Menu e : list) { e.setParentIds(e.getParentIds().replace(oldParentIds, menu.getParentIds())); } menuDao.save(list); systemRealm.clearAllCachedAuthorizationInfo(); UserUtils.removeCache(UserUtils.CACHE_MENU_LIST); } @Transactional(readOnly = false) public void deleteMenu(Long id) { menuDao.deleteById(id, "%," + id + ",%"); systemRealm.clearAllCachedAuthorizationInfo(); UserUtils.removeCache(UserUtils.CACHE_MENU_LIST); } @Override public void afterPropertiesSet() throws Exception { // TODO Auto-generated method stub } }