From 01ab61191b93956954b463ab4416fda6b5f960ee Mon Sep 17 00:00:00 2001
From: cl <1442464845@qq.com>
Date: 星期三, 29 四月 2026 13:48:02 +0800
Subject: [PATCH] token 改到redis

---
 rsf-open-api/src/main/java/com/vincent/rsf/openApi/security/filter/AppIdAuthenticationFilter.java |   24 +++++++++++++-----------
 1 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/rsf-open-api/src/main/java/com/vincent/rsf/openApi/security/filter/AppIdAuthenticationFilter.java b/rsf-open-api/src/main/java/com/vincent/rsf/openApi/security/filter/AppIdAuthenticationFilter.java
index a87269e..c8ca85f 100644
--- a/rsf-open-api/src/main/java/com/vincent/rsf/openApi/security/filter/AppIdAuthenticationFilter.java
+++ b/rsf-open-api/src/main/java/com/vincent/rsf/openApi/security/filter/AppIdAuthenticationFilter.java
@@ -1,8 +1,10 @@
 package com.vincent.rsf.openApi.security.filter;
 
+import com.vincent.rsf.openApi.entity.app.App;
 import com.vincent.rsf.openApi.entity.constant.Constants;
 import com.vincent.rsf.openApi.security.service.AppAuthService;
 import com.vincent.rsf.openApi.security.utils.TokenUtils;
+import com.vincent.rsf.openApi.service.TokenService;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.core.annotation.Order;
 import org.springframework.stereotype.Component;
@@ -27,6 +29,8 @@
 
     @Resource
     private AppAuthService appAuthService;
+    @Resource
+    private TokenService tokenService;
 
     @Override
     protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
@@ -41,21 +45,19 @@
         String authHeader = request.getHeader(Constants.HEADER_AUTHORIZATION);
         if (authHeader != null) {
             String token = TokenUtils.extractTokenFromHeader(authHeader);
-            if (token != null && TokenUtils.validateTokenTime(token)) {
-                String tokenAppId = TokenUtils.getAppIdFromToken(token);
-                String tokenAppSecret = TokenUtils.getSecretFromToken(token);
-                if (!StringUtils.hasText(tokenAppId) || !StringUtils.hasText(tokenAppSecret)
-                        || !appAuthService.validateApp(tokenAppId, tokenAppSecret)) {
-                    log.warn("Token楠岃瘉澶辫触");
-                    sendErrorResponse(response, Constants.UNAUTHENTICATED_CODE, "璁よ瘉澶辫触锛岃鎻愪緵鏈夋晥鐨凾oken");
-                    return;
-                }
-                request.setAttribute(Constants.REQUEST_ATTR_APP_ID, tokenAppId);
-            } else {
+            String tokenAppId = token != null ? tokenService.getAppIdIfValid(token) : null;
+            if (!StringUtils.hasText(tokenAppId)) {
                 log.warn("Token楠岃瘉澶辫触鎴栫己澶�");
                 sendErrorResponse(response, Constants.UNAUTHENTICATED_CODE, "璁よ瘉澶辫触锛岃鎻愪緵鏈夋晥鐨凾oken");
                 return;
             }
+            App app = appAuthService.getAppInfo(tokenAppId);
+            if (app == null || app.getEnable() == null || app.getEnable() != 1) {
+                log.warn("Token瀵瑰簲搴旂敤鏃犳晥鎴栧凡绂佺敤");
+                sendErrorResponse(response, Constants.UNAUTHENTICATED_CODE, "璁よ瘉澶辫触锛岃鎻愪緵鏈夋晥鐨凾oken");
+                return;
+            }
+            request.setAttribute(Constants.REQUEST_ATTR_APP_ID, tokenAppId);
         } else {
             log.warn("缂哄皯Token璁よ瘉淇℃伅");
             sendErrorResponse(response, Constants.UNAUTHENTICATED_CODE, "璁よ瘉澶辫触锛岃鎻愪緵鏈夋晥鐨凾oken");

--
Gitblit v1.9.1