1. 新增 api 绑定客户凭证进行权限校验

2. 去除 api 定义的缓存策略 3. 新增短信渠道 4. 新增用户信息模糊查询 5. 修复全局的单元测试
2025-12-12 10:03:10 +08:00
parent 99645c5ac8
commit cae0b9e4af
66 changed files with 1323 additions and 211 deletions
--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/framework/integration/gateway/core/ApiGatewayExecutionService.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/framework/integration/gateway/core/ApiGatewayExecutionService.java
@@ -11,6 +11,7 @@ import com.zt.plat.module.databus.framework.integration.gateway.domain.ApiCreden
 import com.zt.plat.module.databus.framework.integration.gateway.domain.ApiDefinitionAggregate;
 import com.zt.plat.module.databus.framework.integration.gateway.model.ApiGatewayResponse;
 import com.zt.plat.module.databus.framework.integration.gateway.model.ApiInvocationContext;
+import com.zt.plat.module.databus.framework.integration.gateway.security.GatewayJwtResolver;
 import com.zt.plat.module.databus.framework.integration.gateway.security.GatewaySecurityFilter;
 import com.zt.plat.module.databus.service.gateway.ApiDefinitionService;
 import lombok.RequiredArgsConstructor;
@@ -171,6 +172,7 @@ public class ApiGatewayExecutionService {
        if (reqVO.getHeaders() != null) {
            requestHeaders.putAll(reqVO.getHeaders());
        }
+        normalizeJwtHeaders(requestHeaders, reqVO.getQueryParams());
        requestHeaders.putIfAbsent(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_JSON_VALUE);
        builder.setHeader(HEADER_REQUEST_HEADERS, requestHeaders);
        requestHeaders.forEach((key, value) -> {
@@ -304,4 +306,37 @@ public class ApiGatewayExecutionService {
        builder.queryParam(key, value);
    }

+    private void normalizeJwtHeaders(Map<String, Object> headers, Map<String, Object> queryParams) {
+        String token = GatewayJwtResolver.resolveJwtToken(headers, queryParams, objectMapper);
+        if (!StringUtils.hasText(token)) {
+            return;
+        }
+        ensureHeaderValue(headers, GatewayJwtResolver.HEADER_ZT_AUTH_TOKEN, token);
+        ensureHeaderValue(headers, HttpHeaders.AUTHORIZATION, "Bearer " + token);
+    }
+
+    private void ensureHeaderValue(Map<String, Object> headers, String headerName, String value) {
+        if (!StringUtils.hasText(headerName) || value == null) {
+            return;
+        }
+        String existingKey = findHeaderKey(headers, headerName);
+        if (existingKey != null) {
+            headers.put(existingKey, value);
+        } else {
+            headers.put(headerName, value);
+        }
+    }
+
+    private String findHeaderKey(Map<String, Object> headers, String headerName) {
+        if (headers == null || !StringUtils.hasText(headerName)) {
+            return null;
+        }
+        for (String key : headers.keySet()) {
+            if (headerName.equalsIgnoreCase(key)) {
+                return key;
+            }
+        }
+        return null;
+    }
+
 }
--- a/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/service/gateway/impl/ApiDefinitionServiceImpl.java
+++ b/zt-module-databus/zt-module-databus-server/src/main/java/com/zt/plat/module/databus/service/gateway/impl/ApiDefinitionServiceImpl.java