Merge branch 'test' into test-dsc

* test: 修复BUG710，添加文件下载次数统计修改私服地址,把 seata-dm 项目从 dsc挪过来 feat(gateway): 添加API客户端凭证加密功能支持 bmp 已挪到 ztcloud-dist 仓库修改发布信息增加快照仓库恢复 erp 模块数据权限从maven模块中移除 zt-server 修改版本号 feat:登陆用户的部门数据权限接口增加角色参数；获取当前用户可访问的顶级部门列表不校验数据权限 no message
2026-01-15 14:51:00 +08:00
parent 70f8e59c1b a44e7e835e
commit 378a9e7bcb
26 changed files with 156 additions and 24 deletions
--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/controller/admin/gateway/vo/credential/ApiClientCredentialRespVO.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/controller/admin/gateway/vo/credential/ApiClientCredentialRespVO.java
@@ -42,6 +42,9 @@ public class ApiClientCredentialRespVO {
    @Schema(description = "匿名访问固定用户昵称", example = "张三")
    private String anonymousUserNickname;

+    @Schema(description = "是否启用加密", example = "true")
+    private Boolean enableEncryption;
+
    @Schema(description = "创建时间")
    private LocalDateTime createTime;

--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/controller/admin/gateway/vo/credential/ApiClientCredentialSaveReqVO.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/controller/admin/gateway/vo/credential/ApiClientCredentialSaveReqVO.java
@@ -45,4 +45,8 @@ public class ApiClientCredentialSaveReqVO {
    @Schema(description = "匿名访问固定用户 ID", example = "1024")
    private Long anonymousUserId;

+    @Schema(description = "是否启用加密", example = "true")
+    @NotNull(message = "启用加密标识不能为空")
+    private Boolean enableEncryption;
+
 }
--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/dal/dataobject/gateway/ApiClientCredentialDO.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/dal/dataobject/gateway/ApiClientCredentialDO.java
@@ -38,4 +38,6 @@ public class ApiClientCredentialDO extends BaseDO {

    private Long anonymousUserId;

+    private Boolean enableEncryption;
+
 }
--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/framework/integration/gateway/security/GatewaySecurityFilter.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/framework/integration/gateway/security/GatewaySecurityFilter.java
@@ -238,6 +238,11 @@ public class GatewaySecurityFilter extends OncePerRequestFilter {
    private byte[] decryptRequestBody(byte[] originalBody,
                                      ApiClientCredentialDO credential,
                                      ApiGatewayProperties.Security security) {
+        // 检查是否启用加密，如果未启用则直接返回原文
+        if (credential != null && Boolean.FALSE.equals(credential.getEnableEncryption())) {
+            return originalBody != null ? originalBody : new byte[0];
+        }
+
        if (originalBody == null || originalBody.length == 0) {
            return new byte[0];
        }
@@ -390,6 +395,11 @@ public class GatewaySecurityFilter extends OncePerRequestFilter {
    private void encryptResponse(ContentCachingResponseWrapper responseWrapper,
                                 ApiClientCredentialDO credential,
                                 ApiGatewayProperties.Security security) throws IOException {
+        // 检查是否启用加密，如果未启用则直接返回，不加密响应
+        if (credential != null && Boolean.FALSE.equals(credential.getEnableEncryption())) {
+            return;
+        }
+
        if (!security.isEncryptResponse()) {
            return;
        }
@@ -524,6 +534,10 @@ public class GatewaySecurityFilter extends OncePerRequestFilter {
        if (security == null || credential == null) {
            return false;
        }
+        // 检查是否启用加密，如果未启用则不加密错误响应
+        if (Boolean.FALSE.equals(credential.getEnableEncryption())) {
+            return false;
+        }
        if (!security.isEncryptResponse()) {
            return false;
        }