377 lines
9.3 KiB
Go
377 lines
9.3 KiB
Go
package main
|
||
|
||
import (
|
||
"encoding/json"
|
||
"fmt"
|
||
"github.com/gin-gonic/gin"
|
||
"github.com/golang-jwt/jwt"
|
||
"github.com/robfig/cron/v3"
|
||
"io"
|
||
"log"
|
||
"net/http"
|
||
"os"
|
||
"strconv"
|
||
"strings"
|
||
"videoplayer/dao"
|
||
"videoplayer/handler"
|
||
"videoplayer/proto"
|
||
"videoplayer/service"
|
||
"videoplayer/worker"
|
||
)
|
||
|
||
func main() {
|
||
gin.SetMode(gin.ReleaseMode)
|
||
r := gin.Default()
|
||
err := dao.Init()
|
||
if err != nil {
|
||
panic("failed to connect database:" + err.Error())
|
||
}
|
||
err = worker.InitRedis()
|
||
if err != nil {
|
||
panic("failed to connect redis:" + err.Error())
|
||
}
|
||
r.Use(handler.CrosHandler())
|
||
r.Use(JWTAuthMiddleware()) // 使用 JWT 认证中间件
|
||
handler.SetUpVideoGroup(r) // Video
|
||
handler.SetUpUserGroup(r) // User
|
||
handler.SetUpDeviceGroup(r) // Device
|
||
handler.SetUpIMGroup(r) // IM
|
||
handler.SetUpCIDGroup(r) // CID,持续集成、部署
|
||
handler.SetUpToolGroup(r) // Tool
|
||
handler.SetUpFileGroup(r) // File
|
||
handler.SetUpShellGroup(r) // Shell
|
||
defer dao.Close()
|
||
defer worker.CloseRedis()
|
||
//定时任务
|
||
c := cron.New(cron.WithSeconds())
|
||
// 添加每 10 秒执行一次的任务
|
||
_, err = c.AddFunc("@every 10s", myTask)
|
||
if err != nil {
|
||
log.Fatal("添加定时任务失败: ", err)
|
||
}
|
||
c.Start()
|
||
//读取配置文件,设置系统
|
||
ReadConfigToSetSystem()
|
||
r.Run(":" + proto.Config.SERVER_PORT) // listen and serve on 0.0.0.0:8083
|
||
}
|
||
func init() {
|
||
// 创建cid的目录
|
||
os.MkdirAll(proto.CID_BASE_DIR, os.ModePerm)
|
||
os.MkdirAll(proto.CID_BASE_DIR+"script", os.ModePerm)
|
||
os.MkdirAll(proto.CID_BASE_DIR+"workspace", os.ModePerm)
|
||
//读取配置文件
|
||
//文件地址/home/videoplayer/vp.conf
|
||
configPath := "/home/videoplayer/vp.conf"
|
||
//读取配置文件
|
||
err := proto.ReadConfig(configPath)
|
||
if err != nil {
|
||
panic("failed to read config file:" + err.Error())
|
||
}
|
||
}
|
||
|
||
func writeLogger(c *gin.Context) {
|
||
ip := c.ClientIP()
|
||
method := c.Request.Method
|
||
path := c.Request.URL.Path
|
||
params := ""
|
||
|
||
if method == "GET" {
|
||
params = c.Request.URL.RawQuery
|
||
}
|
||
if method == "POST" && !strings.Contains(c.Request.URL.Path, "/upload") {
|
||
params = c.Request.PostForm.Encode()
|
||
if params == "" {
|
||
// 请求体
|
||
bodyBytes, _ := io.ReadAll(c.Request.Body)
|
||
c.Request.Body = io.NopCloser(strings.NewReader(string(bodyBytes))) // Write body back, so other handler can read it too
|
||
params = string(bodyBytes)
|
||
}
|
||
}
|
||
if strings.Contains(c.Request.URL.Path, "/upload") {
|
||
params = "upload file"
|
||
}
|
||
go dao.InsertLogToDB(path, ip, method, params)
|
||
}
|
||
|
||
func JWTAuthMiddleware() gin.HandlerFunc {
|
||
return func(c *gin.Context) {
|
||
if proto.Config.LOG_SAVE_DAYS > 0 {
|
||
writeLogger(c)
|
||
}
|
||
// 从请求头中获取 JWT 令牌
|
||
tokenString := c.Request.Header.Get("token")
|
||
|
||
//请求方式为get时,从url中获取token
|
||
if tokenString == "" {
|
||
tokenString = c.Query("token")
|
||
}
|
||
|
||
//如果请求为login或register,则不需要验证token
|
||
for k, _ := range proto.Url_map {
|
||
if strings.Contains(c.Request.URL.Path, k) {
|
||
c.Next()
|
||
return
|
||
}
|
||
}
|
||
if tokenString == "" {
|
||
//c.AbortWithStatus(200)
|
||
c.JSON(200, gin.H{
|
||
"message": "Unauthorized",
|
||
"error": "token is empty",
|
||
"code": proto.TokenIsNull,
|
||
})
|
||
return
|
||
}
|
||
if proto.Config.TOKEN_USE_REDIS {
|
||
redisToken := worker.GetRedis(tokenString)
|
||
if redisToken == "" {
|
||
c.AbortWithStatus(200)
|
||
c.JSON(200, gin.H{
|
||
"message": "NOT_LOGIN",
|
||
"error": "server token is empty",
|
||
"code": proto.TokenIsNull,
|
||
})
|
||
return
|
||
}
|
||
}
|
||
//测试
|
||
if strings.Contains(c.Request.URL.Path, "/shell/") {
|
||
log.Printf("req token:%s ,path:%s", tokenString, c.Request.URL.Path)
|
||
}
|
||
|
||
//查看token是否在超级token中
|
||
if worker.IsContainSet("super_permission_tokens", tokenString) {
|
||
sId := c.Request.Header.Get("super_id")
|
||
if sId == "" {
|
||
sId = c.Query("super_id")
|
||
}
|
||
if sId == "" {
|
||
c.AbortWithStatus(200)
|
||
c.JSON(200, gin.H{
|
||
"message": "NOT_LOGIN",
|
||
"error": "super_id is empty",
|
||
"code": proto.TokenIsNull,
|
||
})
|
||
return
|
||
}
|
||
log.Printf("req super_id:%s", sId)
|
||
id, _ := strconv.Atoi(sId)
|
||
idFloat64 := float64(id)
|
||
//查看s_id类型
|
||
c.Set("id", idFloat64)
|
||
c.Next()
|
||
return
|
||
}
|
||
|
||
// 使用加密secret 解析 JWT 令牌
|
||
token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
|
||
return proto.SigningKey, nil
|
||
})
|
||
|
||
// 验证令牌
|
||
if err != nil || !token.Valid {
|
||
c.AbortWithStatus(200)
|
||
c.JSON(200, gin.H{
|
||
"message": "NOT_LOGIN",
|
||
"error": "Invalid token",
|
||
"code": proto.TokenExpired,
|
||
})
|
||
return
|
||
}
|
||
|
||
// 将用户信息添加到上下文中
|
||
c.Set("id", token.Claims.(jwt.MapClaims)["id"])
|
||
c.Set("username", token.Claims.(jwt.MapClaims)["username"])
|
||
|
||
if UserFuncIntercept(int(token.Claims.(jwt.MapClaims)["id"].(float64)), c.Request.URL.Path) {
|
||
c.AbortWithStatus(200)
|
||
c.JSON(http.StatusOK, gin.H{
|
||
"message": "no function permission",
|
||
"error": "no permission",
|
||
"code": proto.NoPermission,
|
||
})
|
||
return
|
||
}
|
||
|
||
// 继续处理请求
|
||
c.Next()
|
||
}
|
||
}
|
||
|
||
func myTask() {
|
||
// 定时任务
|
||
//redis中取出数据
|
||
handler.RunCron()
|
||
if proto.Config.MONITOR {
|
||
handler.ScanDeviceStatus()
|
||
}
|
||
//其它定时任务-通用
|
||
RunGeneralCron()
|
||
service.ShellWillRunFromServer()
|
||
|
||
}
|
||
|
||
func ReadConfigToSetSystem() {
|
||
//将当前配置文件的信息写入redis,用于程序运行时排查
|
||
config_json, c_err := json.Marshal(proto.Config)
|
||
if c_err != nil {
|
||
fmt.Println("ReadConfigToSetSystem Error encoding config,err :", c_err)
|
||
} else {
|
||
worker.SetRedis("system_config_info", string(config_json))
|
||
}
|
||
|
||
//redis添加通用定时任务
|
||
key := "cron_info"
|
||
//日志清理
|
||
res := worker.GetRedis(key)
|
||
var cron_infos []proto.CronInfo
|
||
if res != "" {
|
||
err := json.Unmarshal([]byte(res), &cron_infos)
|
||
if err != nil {
|
||
fmt.Println("ReadConfigToSetSystem Error decoding config,key value is :", res)
|
||
}
|
||
|
||
//查看清除日志任务是否存在
|
||
if proto.Config.LOG_SAVE_DAYS > 0 {
|
||
var is_exist bool
|
||
for _, v := range cron_infos {
|
||
if v.Type == 1 {
|
||
is_exist = true
|
||
break
|
||
}
|
||
}
|
||
if !is_exist {
|
||
var logClean proto.CronInfo
|
||
logClean.Type = 1
|
||
logClean.Info = "日志清理"
|
||
logClean.Curr = 86400
|
||
logClean.Every = 86400
|
||
cron_infos = append(cron_infos, logClean)
|
||
}
|
||
}
|
||
|
||
is_exist := false
|
||
user_sync_id := -1 //用户同步任务索引
|
||
for i, v := range cron_infos {
|
||
if v.Type == 2 {
|
||
is_exist = true
|
||
if proto.Config.USER_SYNC_TIME != v.Every {
|
||
v.Every = proto.Config.USER_SYNC_TIME
|
||
v.Curr = proto.Config.USER_SYNC_TIME
|
||
}
|
||
user_sync_id = i
|
||
cron_infos[i] = v
|
||
break
|
||
}
|
||
}
|
||
if proto.Config.SERVER_USER_TYPE == "slave" {
|
||
if proto.Config.USER_SYNC_TIME > 0 && !is_exist {
|
||
var userSync proto.CronInfo
|
||
userSync.Type = 2
|
||
userSync.Info = "user"
|
||
userSync.Curr = proto.Config.USER_SYNC_TIME
|
||
userSync.Every = proto.Config.USER_SYNC_TIME
|
||
cron_infos = append(cron_infos, userSync)
|
||
} else if user_sync_id != -1 {
|
||
cron_infos = append(cron_infos[:user_sync_id], cron_infos[user_sync_id+1:]...) //删除
|
||
}
|
||
}
|
||
|
||
} else {
|
||
if proto.Config.LOG_SAVE_DAYS > 0 {
|
||
var logClean proto.CronInfo
|
||
logClean.Type = 1
|
||
logClean.Info = "日志清理"
|
||
logClean.Curr = 86400
|
||
logClean.Every = 86400
|
||
cron_infos = append(cron_infos, logClean)
|
||
}
|
||
if proto.Config.SERVER_USER_TYPE == "slave" && proto.Config.USER_SYNC_TIME > 0 {
|
||
var userSync proto.CronInfo
|
||
userSync.Type = 2
|
||
userSync.Info = "user"
|
||
userSync.Curr = proto.Config.USER_SYNC_TIME
|
||
userSync.Every = proto.Config.USER_SYNC_TIME
|
||
cron_infos = append(cron_infos, userSync)
|
||
}
|
||
}
|
||
//存入redis
|
||
json_data, err := json.Marshal(cron_infos)
|
||
if err != nil {
|
||
fmt.Println("ReadConfigToSetSystem Error encoding config,value is :", cron_infos)
|
||
} else {
|
||
worker.SetRedis(key, string(json_data))
|
||
}
|
||
}
|
||
|
||
func RunGeneralCron() {
|
||
//redis添加通用定时任务
|
||
key := "cron_info"
|
||
//日志清理
|
||
res := worker.GetRedis(key)
|
||
var cron_infos []proto.CronInfo
|
||
if res != "" {
|
||
err := json.Unmarshal([]byte(res), &cron_infos)
|
||
if err != nil {
|
||
fmt.Println("RunGeneralCron Error decoding config,key value is :", res)
|
||
}
|
||
for i, v := range cron_infos {
|
||
//1:日志清理,其他待定
|
||
if v.Type == 1 {
|
||
//日志清理
|
||
if v.Curr <= 0 {
|
||
//执行日志清理
|
||
go dao.DeleteLog(proto.Config.LOG_SAVE_DAYS)
|
||
v.Curr = v.Every
|
||
} else {
|
||
v.Curr -= 10
|
||
}
|
||
cron_infos[i] = v
|
||
continue
|
||
}
|
||
//2 从服务器同步数据
|
||
if v.Type == 2 {
|
||
if v.Curr <= 0 {
|
||
//执行从服务器同步数据
|
||
if proto.Config.SERVER_USER_TYPE == "slave" && v.Info == "user" {
|
||
go service.UserSyncDataFromMaster()
|
||
}
|
||
v.Curr = v.Every
|
||
} else {
|
||
v.Curr -= 10
|
||
}
|
||
cron_infos[i] = v
|
||
continue
|
||
}
|
||
}
|
||
//存入redis
|
||
json_data, err := json.Marshal(cron_infos)
|
||
if err != nil {
|
||
fmt.Println("RunGeneralCron Error encoding config,value is :", cron_infos)
|
||
} else {
|
||
worker.SetRedis(key, string(json_data))
|
||
}
|
||
}
|
||
}
|
||
|
||
// 用户功能拦截,返回true表示拦截,false表示不拦截
|
||
func UserFuncIntercept(id int, url string) bool {
|
||
//先查看是否有权限
|
||
user := dao.FindUserByUserID(id)
|
||
//如果用户有权限,则不拦截
|
||
for k, v := range proto.Per_menu_map {
|
||
if strings.Contains(url, k) {
|
||
if v == 1 && user.VideoFunc == false {
|
||
return true
|
||
}
|
||
if v == 2 && user.DeviceFunc == false {
|
||
return true
|
||
}
|
||
if v == 3 && user.CIDFunc == false {
|
||
return true
|
||
}
|
||
}
|
||
}
|
||
return false
|
||
}
|