first commit

2026-04-19 13:04:21 +08:00 · 2023-06-12 18:44:01 +08:00
commit dc4fc69b57
879 changed files with 573090 additions and 0 deletions
--- a/auth/api/pom.xml
+++ b/auth/api/pom.xml
@@ -0,0 +1,41 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <groupId>com.tencent.supersonic</groupId>
+        <artifactId>auth</artifactId>
+        <version>1.0.0-SNAPSHOT</version>
+    </parent>
+
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>auth-api</artifactId>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>jakarta.validation</groupId>
+            <artifactId>jakarta.validation-api</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>com.tencent.supersonic</groupId>
+            <artifactId>common</artifactId>
+            <version>${project.version}</version>
+        </dependency>
+
+    </dependencies>
+
+    <properties>
+        <maven.compiler.source>8</maven.compiler.source>
+        <maven.compiler.target>8</maven.compiler.target>
+    </properties>
+
+</project>
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/config/AuthenticationConfig.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/config/AuthenticationConfig.java
@@ -0,0 +1,26 @@
+package com.tencent.supersonic.auth.api.authentication.config;
+
+
+import lombok.Data;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Configuration;
+
+@Data
+@Configuration
+public class AuthenticationConfig {
+
+
+    @Value("${authentication.exclude.path:XXX}")
+    private String excludePath;
+
+    @Value("${authentication.enable:false}")
+    private boolean enabled;
+
+    @Value("${authentication.token.secret:secret}")
+    private String tokenSecret;
+
+    @Value("${authentication.token.http.header.key:Auth}")
+    private String tokenHttpHeaderKey;
+
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/constant/UserConstants.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/constant/UserConstants.java
@@ -0,0 +1,26 @@
+package com.tencent.supersonic.auth.api.authentication.constant;
+
+public class UserConstants {
+
+    public static final String TOKEN_USER_ID = "token_user_id";
+
+    public static final String TOKEN_USER_NAME = "token_user_name";
+
+    public static final String TOKEN_USER_PASSWORD = "token_user_password";
+
+    public static final String TOKEN_USER_DISPLAY_NAME = "token_user_display_name";
+
+    public static final String TOKEN_USER_EMAIL = "token_user_email";
+
+    public static final String TOKEN_ALGORITHM = "HS512";
+
+    public static final String TOKEN_CREATE_TIME = "token_create_time";
+
+    public static final String TOKEN_PREFIX = "Bearer";
+
+    public static final Long TOKEN_TIME_OUT = 25920000000L;
+
+    public static final String INTERNAL = "internal";
+
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/pojo/User.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/pojo/User.java
@@ -0,0 +1,34 @@
+package com.tencent.supersonic.auth.api.authentication.pojo;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+import org.apache.commons.lang3.StringUtils;
+
+@Data
+@NoArgsConstructor
+@AllArgsConstructor
+public class User {
+
+    private Long id;
+
+    private String name;
+
+    private String displayName;
+
+    private String email;
+
+    public static User get(Long id, String name, String displayName, String email) {
+        return new User(id, name, displayName, email);
+    }
+
+    public static User getFakeUser() {
+        return new User(1L, "admin", "admin", "admin@email");
+    }
+
+    public String getDisplayName() {
+        return StringUtils.isBlank(displayName) ? name : displayName;
+    }
+
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/pojo/UserWithPassword.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/pojo/UserWithPassword.java
@@ -0,0 +1,21 @@
+package com.tencent.supersonic.auth.api.authentication.pojo;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+
+@Data
+@AllArgsConstructor
+public class UserWithPassword extends User {
+
+    private String password;
+
+    public UserWithPassword(Long id, String name, String displayName, String email, String password) {
+        super(id, name, displayName, email);
+        this.password = password;
+    }
+
+    public static UserWithPassword get(Long id, String name, String displayName, String email, String password) {
+        return new UserWithPassword(id, name, displayName, email, password);
+    }
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/request/UserReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/request/UserReq.java
@@ -0,0 +1,17 @@
+package com.tencent.supersonic.auth.api.authentication.request;
+
+
+import javax.validation.constraints.NotBlank;
+import lombok.Data;
+
+@Data
+public class UserReq {
+
+    @NotBlank(message = "name can not be null")
+    private String name;
+
+    @NotBlank(message = "password can not be null")
+    private String password;
+
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/service/UserService.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/service/UserService.java
@@ -0,0 +1,17 @@
+package com.tencent.supersonic.auth.api.authentication.service;
+
+import com.tencent.supersonic.auth.api.authentication.pojo.User;
+import com.tencent.supersonic.auth.api.authentication.request.UserReq;
+
+import java.util.List;
+
+public interface UserService {
+
+    List<String> getUserNames();
+
+    List<User> getUserList();
+
+    void register(UserReq userCmd);
+
+    String login(UserReq userCmd);
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/service/UserStrategy.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/service/UserStrategy.java
@@ -0,0 +1,14 @@
+package com.tencent.supersonic.auth.api.authentication.service;
+
+import com.tencent.supersonic.auth.api.authentication.pojo.User;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+public interface UserStrategy {
+
+    boolean accept(boolean isEnableAuthentication);
+
+    User findUser(HttpServletRequest request, HttpServletResponse response);
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/utils/UserHolder.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authentication/utils/UserHolder.java
@@ -0,0 +1,20 @@
+package com.tencent.supersonic.auth.api.authentication.utils;
+
+import com.tencent.supersonic.auth.api.authentication.pojo.User;
+import com.tencent.supersonic.auth.api.authentication.service.UserStrategy;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+public final class UserHolder {
+
+    private static UserStrategy REPO;
+
+    public static synchronized void setStrategy(UserStrategy strategy) {
+        REPO = strategy;
+    }
+
+    public static User findUser(HttpServletRequest request, HttpServletResponse response) {
+        return REPO.findUser(request, response);
+    }
+
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/AuthRes.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/AuthRes.java
@@ -0,0 +1,20 @@
+package com.tencent.supersonic.auth.api.authorization.pojo;
+
+import lombok.Data;
+import lombok.ToString;
+
+@Data
+@ToString
+public class AuthRes {
+
+    private String domainId;
+    private String name;
+
+    public AuthRes() {
+    }
+
+    public AuthRes(String domainId, String name) {
+        this.domainId = domainId;
+        this.name = name;
+    }
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/AuthResGrp.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/AuthResGrp.java
@@ -0,0 +1,11 @@
+package com.tencent.supersonic.auth.api.authorization.pojo;
+
+import java.util.ArrayList;
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class AuthResGrp {
+
+    private List<AuthRes> group = new ArrayList<>();
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/DimensionFilter.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/pojo/DimensionFilter.java
@@ -0,0 +1,12 @@
+package com.tencent.supersonic.auth.api.authorization.pojo;
+
+import java.util.ArrayList;
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class DimensionFilter {
+
+    private List<String> expressions = new ArrayList<>();
+    private String description;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/AddUsersToGroupReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/AddUsersToGroupReq.java
@@ -0,0 +1,11 @@
+package com.tencent.supersonic.auth.api.authorization.request;
+
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class AddUsersToGroupReq {
+
+    private Integer groupId;
+    private List<String> users;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/QueryAuthResReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/QueryAuthResReq.java
@@ -0,0 +1,16 @@
+package com.tencent.supersonic.auth.api.authorization.request;
+
+import com.tencent.supersonic.auth.api.authorization.pojo.AuthRes;
+import java.util.List;
+
+import lombok.Data;
+import lombok.ToString;
+
+@Data
+@ToString
+public class QueryAuthResReq {
+
+    private String user;
+    private List<AuthRes> resources;
+    private String domainId;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/QueryGroupReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/QueryGroupReq.java
@@ -0,0 +1,13 @@
+package com.tencent.supersonic.auth.api.authorization.request;
+
+
+import com.tencent.supersonic.common.request.PageBaseReq;
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class QueryGroupReq extends PageBaseReq {
+
+    private List<Integer> groupIds;
+    private List<String> users;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/RemoveGroupReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/RemoveGroupReq.java
@@ -0,0 +1,10 @@
+package com.tencent.supersonic.auth.api.authorization.request;
+
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class RemoveGroupReq {
+
+    private List<Integer> groupIds;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/RemoveUsersFromGroupReq.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/request/RemoveUsersFromGroupReq.java
@@ -0,0 +1,11 @@
+package com.tencent.supersonic.auth.api.authorization.request;
+
+import java.util.List;
+import lombok.Data;
+
+@Data
+public class RemoveUsersFromGroupReq {
+
+    private Integer groupId;
+    private List<String> users;
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/response/AuthorizedResourceResp.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/response/AuthorizedResourceResp.java
@@ -0,0 +1,16 @@
+package com.tencent.supersonic.auth.api.authorization.response;
+
+import com.tencent.supersonic.auth.api.authorization.pojo.AuthResGrp;
+import com.tencent.supersonic.auth.api.authorization.pojo.DimensionFilter;
+import java.util.ArrayList;
+import java.util.List;
+
+import lombok.Data;
+
+@Data
+public class AuthorizedResourceResp {
+
+    private List<AuthResGrp> resources = new ArrayList<>();
+
+    private List<DimensionFilter> filters = new ArrayList<>();
+}
--- a/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/service/AuthService.java
+++ b/auth/api/src/main/java/com/tencent/supersonic/auth/api/authorization/service/AuthService.java
@@ -0,0 +1,10 @@
+package com.tencent.supersonic.auth.api.authorization.service;
+
+import com.tencent.supersonic.auth.api.authorization.request.QueryAuthResReq;
+import com.tencent.supersonic.auth.api.authorization.response.AuthorizedResourceResp;
+import javax.servlet.http.HttpServletRequest;
+
+public interface AuthService {
+
+    AuthorizedResourceResp queryAuthorizedResources(HttpServletRequest request, QueryAuthResReq req);
+}