优化内部服务的白名单策略，剔除外部白名单的影响

bb7eacb6 · 技术部-任文超 · 186f9b15 · bb7eacb6 · 186f9b15 · bb7eacb6
Commit bb7eacb6 authored Dec 06, 2017 by 技术部-任文超
3 changed files
--- a/src/main/java/cn/quantgroup/xyqb/aspect/accessable/IpValidateAdvisor.java
+++ b/src/main/java/cn/quantgroup/xyqb/aspect/accessable/IpValidateAdvisor.java
@@ -57,20 +57,8 @@ public class IpValidateAdvisor {
        if(IPUtil.whiteOf(clientIp)){
            return pjp.proceed();
        }
-        // 补充白名单
-        if(redisTemplate.opsForSet().isMember(Constants.IPV4_LOCK_WHITE, clientIp)){
-            return pjp.proceed();
-        }
        IPUtil.logIp(LOGGER, request);
        LOGGER.error("Lock_ipv4: don't match white ip access:{}", clientIp);
        return JsonResult.buildErrorStateResult("非法访问", null);
    }
-
-    @Pointcut("@annotation(cn.quantgroup.xyqb.aspect.accessable.IpValidator)")
-    private void needIpValidate() {
-    }
-
-    @Before("needIpValidate()")
-    private void doCapchaValidate() throws Throwable {
-    }
 }
--- a/src/main/java/cn/quantgroup/xyqb/aspect/accessable/IpValidator.java
+++ b/src/main/java/cn/quantgroup/xyqb/aspect/accessable/IpValidator.java
-package cn.quantgroup.xyqb.aspect.accessable;
-
-import java.lang.annotation.*;
-
-/**
- * Ip白名单检验标记
- */
-@Documented
-@Target(ElementType.METHOD)
-@Retention(RetentionPolicy.RUNTIME)
-public @interface IpValidator {
-}
--- a/src/main/java/cn/quantgroup/xyqb/controller/external/user/InnerController.java
+++ b/src/main/java/cn/quantgroup/xyqb/controller/external/user/InnerController.java
@@ -3,13 +3,11 @@ package cn.quantgroup.xyqb.controller.external.user;
 import cn.quantgroup.user.enums.Relation;

 import cn.quantgroup.xyqb.Constants;
-import cn.quantgroup.xyqb.aspect.accessable.IpValidator;
 import cn.quantgroup.xyqb.aspect.logcaller.LogHttpCaller;
 import cn.quantgroup.xyqb.controller.IBaseController;
 import cn.quantgroup.xyqb.entity.*;
 import cn.quantgroup.xyqb.entity.enumerate.*;
 import cn.quantgroup.xyqb.model.*;
-import cn.quantgroup.xyqb.repository.IUserDetailRepository;
 import cn.quantgroup.xyqb.service.api.IUserApiService;
 import cn.quantgroup.xyqb.service.auth.IIdCardService;
 import cn.quantgroup.xyqb.service.http.IHttpService;
@@ -40,7 +38,6 @@ import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;

-import javax.annotation.Resource;
 import javax.servlet.http.HttpServletRequest;
 import java.sql.Timestamp;
 import java.text.ParseException;
@@ -524,7 +521,6 @@ public class InnerController implements IBaseController {
    return JsonResult.buildSuccessResult(null, UserExtInfoRet.getUserExtInfoRet(info));
  }

-  @IpValidator
  @LogHttpCaller
  @RequestMapping("/user_detail/search_list")
  public JsonResult searchUserDetailList(String name, String phoneNo, String idNo) {
@@ -578,7 +574,6 @@ public class InnerController implements IBaseController {
    return JsonResult.buildSuccessResult("success", wechatUserInfo.getOpenId());
  }

-  @IpValidator
  @LogHttpCaller
  @RequestMapping("/user-association/search/phone")
  public JsonResult findUserAssociationByPhone(String phoneNo) {