修改mybatis版本启动报错，swagger注解问题

2026-04-12 00:15:59 +08:00
parent c3308e069d
commit a489e2b204
25 changed files with 510 additions and 64 deletions
--- a/src/main/java/com/label/common/shiro/TokenFilter.java
+++ b/src/main/java/com/label/common/shiro/TokenFilter.java
@@ -13,6 +13,7 @@ import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.shiro.SecurityUtils;
 import org.apache.shiro.util.ThreadContext;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.http.MediaType;
 import org.springframework.web.filter.OncePerRequestFilter;

@@ -38,6 +39,24 @@ public class TokenFilter extends OncePerRequestFilter {
    private final RedisService redisService;
    private final ObjectMapper objectMapper;

+    @Value("${shiro.auth.enabled:true}")
+    private boolean authEnabled;
+
+    @Value("${shiro.auth.mock-company-id:1}")
+    private Long mockCompanyId;
+
+    @Value("${shiro.auth.mock-user-id:1}")
+    private Long mockUserId;
+
+    @Value("${shiro.auth.mock-role:ADMIN}")
+    private String mockRole;
+
+    @Value("${shiro.auth.mock-username:mock}")
+    private String mockUsername;
+
+    @Value("${token.ttl-seconds:7200}")
+    private long tokenTtlSeconds;
+
    /**
     * 公开端点跳过过滤：非 /api/ 前缀路径，以及登录接口本身。
     */
@@ -46,13 +65,25 @@ public class TokenFilter extends OncePerRequestFilter {
        String path = request.getServletPath();
        return !path.startsWith("/api/")
                || path.equals("/api/auth/login")
-                || path.equals("/api/video/callback");  // AI 服务内部回调，不走用户 Token 认证
+                || path.equals("/api/video/callback")
+                || path.startsWith("/swagger-ui")
+                || path.startsWith("/v3/api-docs");  // AI 服务内部回调，不走用户 Token 认证
    }

    @Override
    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response,
                                     FilterChain filterChain) throws ServletException, IOException {
        try {
+            if (!authEnabled) {
+                TokenPrincipal principal = new TokenPrincipal(
+                        mockUserId, mockRole, mockCompanyId, mockUsername, "mock-token");
+                CompanyContext.set(mockCompanyId);
+                SecurityUtils.getSubject().login(new BearerToken("mock-token", principal));
+                request.setAttribute("__token_principal__", principal);
+                filterChain.doFilter(request, response);
+                return;
+            }
+
            String authHeader = request.getHeader("Authorization");
            if (authHeader == null || !authHeader.startsWith("Bearer ")) {
                writeUnauthorized(response, "缺少或无效的认证令牌");
@@ -79,6 +110,8 @@ public class TokenFilter extends OncePerRequestFilter {
            TokenPrincipal principal = new TokenPrincipal(userId, role, companyId, username, token);
            SecurityUtils.getSubject().login(new BearerToken(token, principal));
            request.setAttribute("__token_principal__", principal);
+            redisService.expire(RedisKeyManager.tokenKey(token), tokenTtlSeconds);
+            redisService.expire(RedisKeyManager.userSessionsKey(userId), tokenTtlSeconds);

            filterChain.doFilter(request, response);
        } catch (Exception e) {