feature(alldatadc): ElAdmin 认证问题修复 && 支持3节点分布式部署微服务 && 新增README部署文档 && 修改部署SQL脚本只使用单个数据库Eladmin

Author: alldatafounder

oneHub/eladmin-versions/eladmin-2.6/.gitignore

@@ -4,5 +4,4 @@
 */target/*
 */*.iml
 /.gradle/
-/application.pid
-*.yml
+/application.pid

oneHub/eladmin-versions/eladmin-2.6/README.md

@@ -157,63 +157,35 @@
 > 
 > 上传服务器解压
 > 
-#### 5、部署微服务：install/alldata_dev/alldata_start.md
-> 
-| 16gmaster                      | port | ip             |
-|--------------------------------| ---- | -------------- |
-| eladmin-system                 | 8613 | 16gmaster  |
-| datax-config                   | 8611 | 16gmaster  |
-| data-market-service      | 8822 | 16gmaster  |
-| datax-service-data-integration | 8824 | 16gmaster  |
-| data-metadata-service    | 8820 | 16gmaster  |
-
-| 16gslave                      | port | ip             |
-|-------------------------------| ---- | -------------- |
-| datax-eureka                  | 8610 | 16gslave    |
-| datax-gateway                 | 8612 | 16gslave    |
-| datax-service-workflow        | 8814 | 16gslave    |
-| data-metadata-service-console    | 8821 | 16gslave    |
-| datax-service-data-mapping    | 8823 | 16gslave    |
-| data-masterdata-service | 8828 | 16gslave    |
-| data-quality-service    | 8826 | 16gslave    |
-
-| 16gdata               | port | ip             |
-|-----------------------| ---- | -------------- |
-| data-standard-service | 8825 | 16gdata |
-| data-visual-service   | 8827 | 16gdata |
-| email-service         | 8812 | 16gdata |
-| file-service          | 8811 | 16gdata |
-| quartz-service        | 8813 | 16gdata |
-| system-service        | 8810 | 16gdata |
-| datax-tool-monitor    | 8711 | 16gdata |
-
-
-#### 6、启动顺序
-
-> 1、启动eureka
->
-> 2、启动config
->
-> 3、启动gateway
->
-> 4、启动masterdata
->
-> 5、启动metadata
->
-> 6、启动其他Jar
+#### 5、部署微服务: 进入不同的目录启动相关服务
 > 
-> 用户名：admin 密码：123456
+> 5.1 必须启动、并且顺序启动
+> 
+> eureka->config->gateway
+> 
+> 5.2 按需启动`cd install/16gmaster`
 > 
+> 譬如启动元数据管理
 > 
-#### 7、部署`Eladmin`:
+> sh `install/16gmaster/data-metadata-service.sh`
 > 
-> 7.1 启动`Eladmin`后端
+> tail -100f `install/16gmaster/data-metadata-service.log`
 > 
-> nohup java -jar -Xms128m -Xmx2048m -XX:PermSize=128M -XX:MaxPermSize=256M -XX:+UseG1GC -XX:MaxGCPauseMillis=20 
+> 5.2 按需启动`cd install/16gdata`
 > 
-> -XX:InitiatingHeapOccupancyPercent=35 -XX:+ExplicitGCInvokesConcurrent -XX:MaxInlineLevel=15 /mnt/poc/eladmin/deploy/eladmin-system-2.6.jar  &
+> 按需启动相关服务
 > 
-> 7.2 部署`Eladmin`前端
+> 5.3 按需启动`cd install/16gslave`
+>
+> 按需启动相关服务
+> 
+> 
+
+#### 6、部署`Eladmin`:
+>
+> 6.1 启动`sh install/16gmaster/eladmin-system.sh`
+> 
+> 6.2 部署`Eladmin`前端
 > 
 > source /etc/profile
 >
@@ -223,6 +195,8 @@
 > 
 > nohup npm run dev &
 > 
-> 7.3 访问`Eladmin`页面
+> 6.3 访问`Eladmin`页面
 > 
 > curl http://localhost:8013
+>
+> 用户名：admin 密码：123456

oneHub/eladmin-versions/eladmin-2.6/datax-auth/pom.xml

@@ -0,0 +1,76 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>eladmin</artifactId>
+        <groupId>com.platform</groupId>
+        <version>2.6</version>
+
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+    <version>2.6</version>
+    <artifactId>datax-auth</artifactId>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+            <exclusions>
+                <exclusion>
+                    <artifactId>spring-boot-starter-tomcat</artifactId>
+                    <groupId>org.springframework.boot</groupId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-undertow</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.cloud</groupId>
+            <artifactId>spring-cloud-starter-config</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>com.platform</groupId>
+            <artifactId>datax-common-core</artifactId>
+            <version>2.6</version>
+        </dependency>
+        <dependency>
+            <groupId>com.platform</groupId>
+            <artifactId>datax-common-mybatis</artifactId>
+            <version>2.6</version>
+        </dependency>
+        <dependency>
+            <groupId>com.platform</groupId>
+            <artifactId>datax-common-security</artifactId>
+            <version>2.6</version>
+        </dependency>
+        <dependency>
+            <groupId>com.platform</groupId>
+            <artifactId>datax-common-redis</artifactId>
+            <version>2.6</version>
+        </dependency>
+
+        <dependency>
+            <groupId>com.platform</groupId>
+            <artifactId>eladmin-service-api</artifactId>
+            <version>2.6</version>
+        </dependency>
+
+        <!--Spring boot Redis-->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-redis</artifactId>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-maven-plugin</artifactId>
+            </plugin>
+        </plugins>
+    </build>
+</project>

oneHub/eladmin-versions/eladmin-2.6/datax-auth/src/main/java/cn/datax/auth/DataxAuthApplication.java

@@ -0,0 +1,17 @@
+package cn.datax.auth;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.boot.autoconfigure.jdbc.DataSourceAutoConfiguration;
+import org.springframework.cloud.client.SpringCloudApplication;
+import org.springframework.cloud.openfeign.EnableFeignClients;
+
+@EnableFeignClients(basePackages = {"cn.datax.service.system.api.feign"})
+@SpringCloudApplication
+public class DataxAuthApplication {
+
+    public static void main(String[] args) {
+        SpringApplication.run(DataxAuthApplication.class, args);
+    }
+
+}

oneHub/eladmin-versions/eladmin-2.6/datax-auth/src/main/java/cn/datax/auth/config/AuthorizationServerConfig.java

@@ -0,0 +1,147 @@
+package cn.datax.auth.config;
+
+import cn.datax.auth.service.DataUserDetailService;
+import cn.datax.auth.translator.DataWebResponseExceptionTranslator;
+import cn.datax.common.core.DataConstant;
+import cn.datax.common.core.DataUser;
+
+import cn.datax.common.security.utils.RedisTokenStore;
+import cn.hutool.core.collection.CollUtil;
+import cn.hutool.core.util.StrUtil;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.data.redis.connection.RedisConnectionFactory;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.oauth2.common.DefaultOAuth2AccessToken;
+import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
+import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
+import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
+import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;
+import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerSecurityConfigurer;
+import org.springframework.security.oauth2.provider.ClientDetailsService;
+import org.springframework.security.oauth2.provider.client.JdbcClientDetailsService;
+import org.springframework.security.oauth2.provider.token.*;
+import org.springframework.security.oauth2.provider.token.store.JwtAccessTokenConverter;
+import org.springframework.security.oauth2.provider.token.store.JwtTokenStore;
+
+import javax.sql.DataSource;
+import java.util.HashMap;
+import java.util.Map;
+
+@Configuration
+@EnableAuthorizationServer
+public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
+
+    @Autowired
+    private DataSource dataSource;
+
+    @Autowired
+    private AuthenticationManager authenticationManager;
+
+    @Autowired
+    private DataUserDetailService userDetailService;
+
+    @Autowired
+    private RedisConnectionFactory redisConnectionFactory;
+
+    @Autowired
+    private DataWebResponseExceptionTranslator exceptionTranslator;
+
+
+
+    /**
+     * 配置客户端详情服务
+     * @param clients
+     * @throws Exception
+     */
+    @Override
+    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
+        // 默认数据库的配置
+        // datax:123456
+        // normal-app:normal-app
+        // trusted-app:trusted-app
+        clients.jdbc(dataSource).clients(clientDetails());
+    }
+
+    /**
+     * 用来配置令牌端点(Token Endpoint)的安全约束.
+     * @param security
+     * @throws Exception
+     */
+    @Override
+    public void configure(AuthorizationServerSecurityConfigurer security) {
+        security.tokenKeyAccess("permitAll()")
+                .checkTokenAccess("isAuthenticated()")
+                .allowFormAuthenticationForClients();
+    }
+
+    /**
+     * 用来配置授权（authorization）以及令牌（token）的访问端点和令牌服务(token services)
+     * @param endpoints
+     * @throws Exception
+     */
+    @Override
+    public void configure(AuthorizationServerEndpointsConfigurer endpoints) {
+        endpoints.tokenStore(tokenStore())
+                .tokenServices(tokenServices())
+                .userDetailsService(userDetailService)
+                .authenticationManager(authenticationManager)
+                .exceptionTranslator(exceptionTranslator);
+    }
+
+    @Bean
+    public ClientDetailsService clientDetails() {
+        return new JdbcClientDetailsService(dataSource);
+    }
+
+    @Bean
+    public TokenStore tokenStore(){
+        return new JwtTokenStore(accessTokenConverter());
+    }
+
+    @Bean
+    public JwtAccessTokenConverter accessTokenConverter() {
+        JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
+        converter.setSigningKey("123");
+        return converter;
+    }
+
+    @Bean
+    public DefaultTokenServices tokenServices(){
+        DefaultTokenServices tokenServices = new DefaultTokenServices();
+        tokenServices.setTokenStore(tokenStore());
+        tokenServices.setSupportRefreshToken(true);
+        tokenServices.setClientDetailsService(clientDetails());
+        tokenServices.setTokenEnhancer(tokenEnhancer());
+//        // token有效期自定义设置，默认12小时 设置为24小时86400
+//        tokenServices.setAccessTokenValiditySeconds(60 * 60 * 24 * 1);
+//        // refresh_token默认30天 设置为7天604800
+//        tokenServices.setRefreshTokenValiditySeconds(60 * 60 * 24 * 7);
+        return tokenServices;
+    }
+
+    @Bean
+    public TokenEnhancer tokenEnhancer() {
+        return (accessToken, authentication) -> {
+            final Map<String, Object> additionalInfo = new HashMap<>();
+            DataUser user = (DataUser) authentication.getUserAuthentication().getPrincipal();
+            additionalInfo.put(DataConstant.UserAdditionalInfo.LICENSE.getKey(), DataConstant.UserAdditionalInfo.LICENSE.getVal());
+            additionalInfo.put(DataConstant.UserAdditionalInfo.USERID.getKey(), user.getId());
+            additionalInfo.put(DataConstant.UserAdditionalInfo.USERNAME.getKey(), user.getUsername());
+            additionalInfo.put(DataConstant.UserAdditionalInfo.NICKNAME.getKey(), user.getNickname());
+
+            if (StrUtil.isNotBlank(user.getDept())){
+                additionalInfo.put(DataConstant.UserAdditionalInfo.DEPT.getKey(), user.getDept());
+            }
+            if (CollUtil.isNotEmpty(user.getRoles())){
+                additionalInfo.put(DataConstant.UserAdditionalInfo.ROLE.getKey(), user.getRoles());
+            }
+            if (CollUtil.isNotEmpty(user.getPosts())){
+                additionalInfo.put(DataConstant.UserAdditionalInfo.POST.getKey(), user.getPosts());
+            }
+            ((DefaultOAuth2AccessToken) accessToken).setAdditionalInformation(additionalInfo);
+            return accessToken;
+        };
+    }
+}

oneHub/eladmin-versions/eladmin-2.6/eladmin-system/src/main/java/com/platform/dts/config/DataResourceServerConfig.java renamed to oneHub/eladmin-versions/eladmin-2.6/datax-auth/src/main/java/cn/datax/auth/config/DataResourceServerConfig.java

@@ -1,7 +1,6 @@
-package com.platform.dts.config;
+package cn.datax.auth.config;
+
 
-import cn.datax.common.security.handler.DataAccessDeniedHandler;
-import cn.datax.common.security.handler.DataAuthExceptionEntryPoint;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
@@ -23,11 +22,7 @@
 @EnableResourceServer
 public class DataResourceServerConfig extends ResourceServerConfigurerAdapter {
 
-    @Autowired
-    private DataAccessDeniedHandler accessDeniedHandler;
 
-    @Autowired
-    private DataAuthExceptionEntryPoint exceptionEntryPoint;
 
     @Override
     public void configure(HttpSecurity http) throws Exception {