2018-01-17 14:10:40 +08:00
|
|
|
|
package cn.keking.web.controller;
|
|
|
|
|
|
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import cn.keking.config.ConfigConstants;
|
2019-06-17 14:21:16 +08:00
|
|
|
|
import cn.keking.model.FileAttribute;
|
2022-05-25 19:32:07 +08:00
|
|
|
|
import cn.keking.service.FileHandlerService;
|
2018-01-17 17:51:53 +08:00
|
|
|
|
import cn.keking.service.FilePreview;
|
|
|
|
|
|
import cn.keking.service.FilePreviewFactory;
|
2019-04-08 17:50:13 +08:00
|
|
|
|
import cn.keking.service.cache.CacheService;
|
2020-12-28 11:13:53 +08:00
|
|
|
|
import cn.keking.service.impl.OtherFilePreviewImpl;
|
2022-12-16 23:58:26 +08:00
|
|
|
|
import cn.keking.utils.KkFileUtils;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import cn.keking.utils.RandomValidateCodeUtil;
|
2020-12-28 18:21:35 +08:00
|
|
|
|
import cn.keking.utils.WebUtils;
|
2021-01-09 15:38:21 +08:00
|
|
|
|
import fr.opensagres.xdocreport.core.io.IOUtils;
|
2020-12-28 18:21:35 +08:00
|
|
|
|
import io.mola.galimatias.GalimatiasParseException;
|
2020-12-29 18:32:24 +08:00
|
|
|
|
import org.apache.commons.codec.binary.Base64;
|
2019-06-17 14:21:16 +08:00
|
|
|
|
import org.slf4j.Logger;
|
|
|
|
|
|
import org.slf4j.LoggerFactory;
|
2018-01-17 14:10:40 +08:00
|
|
|
|
import org.springframework.stereotype.Controller;
|
|
|
|
|
|
import org.springframework.ui.Model;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import org.springframework.util.ObjectUtils;
|
2020-12-27 16:41:07 +08:00
|
|
|
|
import org.springframework.util.StringUtils;
|
2022-07-25 17:26:02 +08:00
|
|
|
|
import org.springframework.web.bind.annotation.GetMapping;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import org.springframework.web.bind.annotation.RequestMapping;
|
2018-01-19 14:51:18 +08:00
|
|
|
|
import org.springframework.web.bind.annotation.ResponseBody;
|
|
|
|
|
|
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import javax.imageio.ImageIO;
|
|
|
|
|
|
import javax.servlet.ServletOutputStream;
|
2018-01-17 14:10:40 +08:00
|
|
|
|
import javax.servlet.http.HttpServletRequest;
|
|
|
|
|
|
import javax.servlet.http.HttpServletResponse;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import java.awt.image.RenderedImage;
|
2022-05-25 19:32:07 +08:00
|
|
|
|
import java.io.IOException;
|
2022-12-13 16:54:33 +08:00
|
|
|
|
import java.io.InputStream;
|
2023-07-28 14:42:13 +08:00
|
|
|
|
import java.io.UnsupportedEncodingException;
|
2022-12-13 16:54:33 +08:00
|
|
|
|
import java.net.HttpURLConnection;
|
2020-12-28 18:21:35 +08:00
|
|
|
|
import java.net.URL;
|
2023-07-28 14:42:13 +08:00
|
|
|
|
import java.net.URLDecoder;
|
|
|
|
|
|
import java.nio.charset.StandardCharsets;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import java.text.SimpleDateFormat;
|
2018-01-17 14:10:40 +08:00
|
|
|
|
import java.util.Arrays;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import java.util.Date;
|
2018-01-17 14:10:40 +08:00
|
|
|
|
import java.util.List;
|
2023-07-21 17:52:27 +08:00
|
|
|
|
import java.util.Map;
|
2018-01-17 14:10:40 +08:00
|
|
|
|
|
2020-12-27 16:41:07 +08:00
|
|
|
|
import static cn.keking.service.FilePreview.PICTURE_FILE_PREVIEW_PAGE;
|
|
|
|
|
|
|
2018-01-17 14:10:40 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* @author yudian-it
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Controller
|
|
|
|
|
|
public class OnlinePreviewController {
|
|
|
|
|
|
|
2020-12-28 11:13:53 +08:00
|
|
|
|
public static final String BASE64_DECODE_ERROR_MSG = "Base64解码失败,请检查你的 %s 是否采用 Base64 + urlEncode 双重编码了!";
|
2020-05-14 10:11:15 +08:00
|
|
|
|
private final Logger logger = LoggerFactory.getLogger(OnlinePreviewController.class);
|
2019-06-17 14:21:16 +08:00
|
|
|
|
|
2020-05-15 18:09:19 +08:00
|
|
|
|
private final FilePreviewFactory previewFactory;
|
|
|
|
|
|
private final CacheService cacheService;
|
2020-12-26 19:13:50 +08:00
|
|
|
|
private final FileHandlerService fileHandlerService;
|
2020-12-28 11:13:53 +08:00
|
|
|
|
private final OtherFilePreviewImpl otherFilePreview;
|
2020-05-15 18:09:19 +08:00
|
|
|
|
|
2020-12-28 11:13:53 +08:00
|
|
|
|
public OnlinePreviewController(FilePreviewFactory filePreviewFactory, FileHandlerService fileHandlerService, CacheService cacheService, OtherFilePreviewImpl otherFilePreview) {
|
2020-05-15 18:09:19 +08:00
|
|
|
|
this.previewFactory = filePreviewFactory;
|
2020-12-26 19:13:50 +08:00
|
|
|
|
this.fileHandlerService = fileHandlerService;
|
2020-05-15 18:09:19 +08:00
|
|
|
|
this.cacheService = cacheService;
|
2020-12-28 11:13:53 +08:00
|
|
|
|
this.otherFilePreview = otherFilePreview;
|
2020-05-15 18:09:19 +08:00
|
|
|
|
}
|
2018-01-19 14:51:18 +08:00
|
|
|
|
|
2022-07-25 17:26:02 +08:00
|
|
|
|
@GetMapping( "/onlinePreview")
|
2018-01-17 17:51:53 +08:00
|
|
|
|
public String onlinePreview(String url, Model model, HttpServletRequest req) {
|
2023-07-28 14:42:13 +08:00
|
|
|
|
|
2020-12-28 11:13:53 +08:00
|
|
|
|
String fileUrl;
|
|
|
|
|
|
try {
|
2022-11-11 10:14:12 +08:00
|
|
|
|
fileUrl = WebUtils.decodeUrl(url);
|
2020-12-28 11:13:53 +08:00
|
|
|
|
} catch (Exception ex) {
|
|
|
|
|
|
String errorMsg = String.format(BASE64_DECODE_ERROR_MSG, "url");
|
|
|
|
|
|
return otherFilePreview.notSupportedFile(model, errorMsg);
|
|
|
|
|
|
}
|
2020-12-27 14:47:28 +08:00
|
|
|
|
FileAttribute fileAttribute = fileHandlerService.getFileAttribute(fileUrl, req);
|
2020-12-28 14:50:05 +08:00
|
|
|
|
model.addAttribute("file", fileAttribute);
|
2019-06-17 14:21:16 +08:00
|
|
|
|
FilePreview filePreview = previewFactory.get(fileAttribute);
|
2020-12-27 01:43:50 +08:00
|
|
|
|
logger.info("预览文件url:{},previewType:{}", fileUrl, fileAttribute.getType());
|
|
|
|
|
|
return filePreview.filePreviewHandle(fileUrl, model, fileAttribute);
|
2018-01-17 14:10:40 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-07-25 17:26:02 +08:00
|
|
|
|
@GetMapping( "/picturesPreview")
|
2022-12-14 09:40:37 +08:00
|
|
|
|
public String picturesPreview(String urls, Model model, HttpServletRequest req) {
|
|
|
|
|
|
String fileUrls;
|
2020-12-28 11:13:53 +08:00
|
|
|
|
try {
|
2022-11-11 10:14:12 +08:00
|
|
|
|
fileUrls = WebUtils.decodeUrl(urls);
|
2022-07-21 11:19:46 +08:00
|
|
|
|
// 防止XSS攻击
|
2022-12-16 23:58:26 +08:00
|
|
|
|
fileUrls = KkFileUtils.htmlEscape(fileUrls);
|
2020-12-28 11:13:53 +08:00
|
|
|
|
} catch (Exception ex) {
|
|
|
|
|
|
String errorMsg = String.format(BASE64_DECODE_ERROR_MSG, "urls");
|
|
|
|
|
|
return otherFilePreview.notSupportedFile(model, errorMsg);
|
|
|
|
|
|
}
|
2020-12-27 14:47:28 +08:00
|
|
|
|
logger.info("预览文件url:{},urls:{}", fileUrls, urls);
|
2020-06-09 16:35:11 +08:00
|
|
|
|
// 抽取文件并返回文件列表
|
2020-12-28 11:13:53 +08:00
|
|
|
|
String[] images = fileUrls.split("\\|");
|
|
|
|
|
|
List<String> imgUrls = Arrays.asList(images);
|
2020-12-26 16:44:05 +08:00
|
|
|
|
model.addAttribute("imgUrls", imgUrls);
|
2020-12-27 16:41:07 +08:00
|
|
|
|
String currentUrl = req.getParameter("currentUrl");
|
2020-12-28 11:13:53 +08:00
|
|
|
|
if (StringUtils.hasText(currentUrl)) {
|
2020-12-29 18:32:24 +08:00
|
|
|
|
String decodedCurrentUrl = new String(Base64.decodeBase64(currentUrl));
|
2022-12-16 23:58:26 +08:00
|
|
|
|
decodedCurrentUrl = KkFileUtils.htmlEscape(decodedCurrentUrl); // 防止XSS攻击
|
2020-12-27 16:41:07 +08:00
|
|
|
|
model.addAttribute("currentUrl", decodedCurrentUrl);
|
2020-12-28 11:13:53 +08:00
|
|
|
|
} else {
|
2020-12-27 19:18:16 +08:00
|
|
|
|
model.addAttribute("currentUrl", imgUrls.get(0));
|
2020-12-27 16:41:07 +08:00
|
|
|
|
}
|
|
|
|
|
|
return PICTURE_FILE_PREVIEW_PAGE;
|
2018-03-08 14:28:44 +08:00
|
|
|
|
}
|
2020-06-09 16:35:11 +08:00
|
|
|
|
|
2018-01-17 14:10:40 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* 根据url获取文件内容
|
|
|
|
|
|
* 当pdfjs读取存在跨域问题的文件时将通过此接口读取
|
|
|
|
|
|
*
|
2020-12-27 14:47:28 +08:00
|
|
|
|
* @param urlPath url
|
2020-05-15 18:09:19 +08:00
|
|
|
|
* @param response response
|
2018-01-17 14:10:40 +08:00
|
|
|
|
*/
|
2022-07-25 17:26:02 +08:00
|
|
|
|
@GetMapping("/getCorsFile")
|
2022-12-14 09:40:37 +08:00
|
|
|
|
public void getCorsFile(String urlPath, HttpServletResponse response) throws IOException {
|
2022-07-21 11:27:06 +08:00
|
|
|
|
try {
|
2022-11-11 10:14:12 +08:00
|
|
|
|
urlPath = WebUtils.decodeUrl(urlPath);
|
2022-07-21 11:27:06 +08:00
|
|
|
|
} catch (Exception ex) {
|
2022-07-25 17:26:02 +08:00
|
|
|
|
logger.error(String.format(BASE64_DECODE_ERROR_MSG, urlPath),ex);
|
2022-07-21 11:27:06 +08:00
|
|
|
|
return;
|
|
|
|
|
|
}
|
2023-06-03 14:36:06 +08:00
|
|
|
|
HttpURLConnection urlcon = null;
|
2022-12-13 16:54:33 +08:00
|
|
|
|
InputStream inputStream = null;
|
2023-07-28 14:42:13 +08:00
|
|
|
|
String urlStr;
|
2023-06-03 14:36:06 +08:00
|
|
|
|
assert urlPath != null;
|
|
|
|
|
|
if (!urlPath.toLowerCase().startsWith("http") && !urlPath.toLowerCase().startsWith("https") && !urlPath.toLowerCase().startsWith("ftp")) {
|
2022-07-21 11:19:46 +08:00
|
|
|
|
logger.info("读取跨域文件异常,可能存在非法访问,urlPath:{}", urlPath);
|
|
|
|
|
|
return;
|
|
|
|
|
|
}
|
2020-05-14 10:11:15 +08:00
|
|
|
|
logger.info("下载跨域pdf文件url:{}", urlPath);
|
2022-12-13 16:54:33 +08:00
|
|
|
|
if (!urlPath.toLowerCase().startsWith("ftp:")){
|
|
|
|
|
|
try {
|
|
|
|
|
|
URL url = WebUtils.normalizedURL(urlPath);
|
|
|
|
|
|
urlcon=(HttpURLConnection)url.openConnection();
|
|
|
|
|
|
urlcon.setConnectTimeout(30000);
|
|
|
|
|
|
urlcon.setReadTimeout(30000);
|
|
|
|
|
|
urlcon.setInstanceFollowRedirects(false);
|
2023-06-03 14:36:06 +08:00
|
|
|
|
int responseCode = urlcon.getResponseCode();
|
2023-07-28 14:42:13 +08:00
|
|
|
|
if ( responseCode == 403 || responseCode == 500) { //403 500
|
|
|
|
|
|
logger.error("读取跨域文件异常,url:{},错误:{}", urlPath,responseCode);
|
|
|
|
|
|
return ;
|
|
|
|
|
|
}
|
2023-06-03 14:36:06 +08:00
|
|
|
|
if (responseCode == HttpURLConnection.HTTP_MOVED_PERM || responseCode == HttpURLConnection.HTTP_MOVED_TEMP) { //301 302
|
2022-12-13 16:54:33 +08:00
|
|
|
|
url =new URL(urlcon.getHeaderField("Location"));
|
|
|
|
|
|
urlcon=(HttpURLConnection)url.openConnection();
|
2023-07-28 14:42:13 +08:00
|
|
|
|
} if (responseCode == 404 ) { //404
|
|
|
|
|
|
try {
|
|
|
|
|
|
urlStr = URLDecoder.decode(urlPath, StandardCharsets.UTF_8.name());
|
|
|
|
|
|
urlStr = URLDecoder.decode(urlStr, StandardCharsets.UTF_8.name());
|
|
|
|
|
|
url = WebUtils.normalizedURL(urlStr);
|
|
|
|
|
|
urlcon=(HttpURLConnection)url.openConnection();
|
|
|
|
|
|
urlcon.setConnectTimeout(30000);
|
|
|
|
|
|
urlcon.setReadTimeout(30000);
|
|
|
|
|
|
urlcon.setInstanceFollowRedirects(false);
|
|
|
|
|
|
responseCode = urlcon.getResponseCode();
|
|
|
|
|
|
if (responseCode == HttpURLConnection.HTTP_MOVED_PERM || responseCode == HttpURLConnection.HTTP_MOVED_TEMP) { //301 302
|
|
|
|
|
|
url =new URL(urlcon.getHeaderField("Location"));
|
|
|
|
|
|
}
|
|
|
|
|
|
if(responseCode == 404 ||responseCode == 403 || responseCode == 500 ){
|
|
|
|
|
|
logger.error("读取跨域文件异常,url:{},错误:{}", urlPath,responseCode);
|
|
|
|
|
|
return ;
|
|
|
|
|
|
}
|
|
|
|
|
|
} catch (UnsupportedEncodingException e) {
|
|
|
|
|
|
e.printStackTrace();
|
|
|
|
|
|
}finally {
|
|
|
|
|
|
assert urlcon != null;
|
|
|
|
|
|
urlcon.disconnect();
|
|
|
|
|
|
}
|
2022-12-13 16:54:33 +08:00
|
|
|
|
}
|
|
|
|
|
|
if(urlPath.contains( ".svg")) {
|
|
|
|
|
|
response.setContentType("image/svg+xml");
|
|
|
|
|
|
}
|
|
|
|
|
|
inputStream=(url).openStream();
|
|
|
|
|
|
IOUtils.copy(inputStream, response.getOutputStream());
|
2023-07-28 14:42:13 +08:00
|
|
|
|
|
2022-12-13 16:54:33 +08:00
|
|
|
|
} catch (IOException | GalimatiasParseException e) {
|
|
|
|
|
|
logger.error("读取跨域文件异常,url:{}", urlPath);
|
|
|
|
|
|
} finally {
|
2023-06-03 14:36:06 +08:00
|
|
|
|
assert urlcon != null;
|
|
|
|
|
|
urlcon.disconnect();
|
2022-12-13 16:54:33 +08:00
|
|
|
|
IOUtils.closeQuietly(inputStream);
|
|
|
|
|
|
}
|
|
|
|
|
|
} else {
|
|
|
|
|
|
try {
|
|
|
|
|
|
URL url = WebUtils.normalizedURL(urlPath);
|
|
|
|
|
|
if(urlPath.contains(".svg")) {
|
|
|
|
|
|
response.setContentType("image/svg+xml");
|
|
|
|
|
|
}
|
|
|
|
|
|
inputStream = (url).openStream();
|
|
|
|
|
|
IOUtils.copy(inputStream, response.getOutputStream());
|
|
|
|
|
|
} catch (IOException | GalimatiasParseException e) {
|
|
|
|
|
|
logger.error("读取跨域文件异常,url:{}", urlPath);
|
|
|
|
|
|
} finally {
|
|
|
|
|
|
IOUtils.closeQuietly(inputStream);
|
|
|
|
|
|
}
|
2018-01-17 14:10:40 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2023-07-21 17:52:27 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* 验证码方法
|
|
|
|
|
|
*/
|
|
|
|
|
|
@RequestMapping("/captcha")
|
|
|
|
|
|
public void captcha(HttpServletRequest request, HttpServletResponse response) throws Exception {
|
|
|
|
|
|
if(!ConfigConstants.getDeleteCaptcha()){
|
|
|
|
|
|
return;
|
|
|
|
|
|
}
|
|
|
|
|
|
response.setContentType("image/gif");
|
|
|
|
|
|
response.setHeader("Pragma", "No-cache");
|
|
|
|
|
|
response.setHeader("Cache-Control", "no-cache");
|
|
|
|
|
|
response.setDateHeader("Expires", 0);
|
|
|
|
|
|
Date date = new Date(); // 当前时间
|
|
|
|
|
|
SimpleDateFormat formater = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); // 设置时间格式
|
|
|
|
|
|
String sessionCode;
|
|
|
|
|
|
try {
|
|
|
|
|
|
sessionCode = request.getSession().getAttribute("code").toString(); //获取已经保存的验证码
|
|
|
|
|
|
} catch (Exception e) {
|
|
|
|
|
|
sessionCode= null;
|
|
|
|
|
|
}
|
|
|
|
|
|
Object time = request.getSession().getAttribute("time"); //获取已经保存的时间
|
|
|
|
|
|
if (ObjectUtils.isEmpty(time)){ //判断时间是否为空
|
|
|
|
|
|
request.getSession().setAttribute("time", formater.format(date)); //为空重新添加缓存时间
|
|
|
|
|
|
time = request.getSession().getAttribute("time");
|
|
|
|
|
|
}
|
|
|
|
|
|
Date joinTime = formater.parse(String.valueOf(time));
|
|
|
|
|
|
String dateStart = formater.format(joinTime);
|
|
|
|
|
|
Date d1=formater.parse(dateStart);
|
|
|
|
|
|
// 时间差:
|
|
|
|
|
|
long diff = date.getTime() - d1.getTime();
|
|
|
|
|
|
long diffSeconds = diff / 1000 % 60;
|
|
|
|
|
|
String ip=request.getRemoteAddr();
|
|
|
|
|
|
ServletOutputStream sos = null;
|
|
|
|
|
|
if (ObjectUtils.isEmpty(sessionCode) || diffSeconds > 50){ //判断验证码是否为空 为空重新生成 判断是否在有效时间内 默认50秒
|
|
|
|
|
|
Map<String, Object> codeMap = RandomValidateCodeUtil.generateCodeAndPic(ip,sessionCode,0);
|
|
|
|
|
|
// 验证码存入session
|
|
|
|
|
|
request.getSession().setAttribute("code", codeMap.get("code").toString());
|
|
|
|
|
|
// 时间存入session
|
|
|
|
|
|
request.getSession().setAttribute("time", formater.format(date));
|
|
|
|
|
|
// 禁止图像缓存。
|
|
|
|
|
|
response.setHeader("Pragma", "no-cache");
|
|
|
|
|
|
response.setHeader("Cache-Control", "no-cache");
|
|
|
|
|
|
response.setDateHeader("Expires", -1);
|
|
|
|
|
|
response.setContentType("image/jpeg");
|
|
|
|
|
|
// 将图像输出到Servlet输出流中。
|
|
|
|
|
|
try {
|
|
|
|
|
|
sos = response.getOutputStream();
|
|
|
|
|
|
ImageIO.write((RenderedImage) codeMap.get("codePic"), "jpeg", sos);
|
|
|
|
|
|
} catch (IOException e) {
|
|
|
|
|
|
e.printStackTrace();
|
|
|
|
|
|
} finally {
|
|
|
|
|
|
assert sos != null;
|
|
|
|
|
|
sos.close();
|
|
|
|
|
|
}
|
|
|
|
|
|
}else {
|
|
|
|
|
|
// System.out.println("请输入你的姓名:");
|
|
|
|
|
|
Map<String, Object> codeMap = RandomValidateCodeUtil.generateCodeAndPic(ip,sessionCode,1);
|
|
|
|
|
|
// 禁止图像缓存。
|
|
|
|
|
|
response.setHeader("Pragma", "no-cache");
|
|
|
|
|
|
response.setHeader("Cache-Control", "no-cache");
|
|
|
|
|
|
response.setDateHeader("Expires", -1);
|
|
|
|
|
|
response.setContentType("image/jpeg");
|
|
|
|
|
|
// 将图像输出到Servlet输出流中。
|
|
|
|
|
|
try {
|
|
|
|
|
|
sos = response.getOutputStream();
|
|
|
|
|
|
ImageIO.write((RenderedImage) codeMap.get("codePic"), "jpeg", sos);
|
|
|
|
|
|
} catch (IOException e) {
|
|
|
|
|
|
e.printStackTrace();
|
|
|
|
|
|
} finally {
|
|
|
|
|
|
assert sos != null;
|
|
|
|
|
|
sos.close();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
}
|
2018-01-17 14:10:40 +08:00
|
|
|
|
|
2018-01-19 14:51:18 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* 通过api接口入队
|
2020-12-27 14:47:28 +08:00
|
|
|
|
*
|
2018-01-19 14:51:18 +08:00
|
|
|
|
* @param url 请编码后在入队
|
|
|
|
|
|
*/
|
2022-07-25 17:26:02 +08:00
|
|
|
|
@GetMapping("/addTask")
|
2018-01-19 14:51:18 +08:00
|
|
|
|
@ResponseBody
|
|
|
|
|
|
public String addQueueTask(String url) {
|
2020-05-14 10:11:15 +08:00
|
|
|
|
logger.info("添加转码队列url:{}", url);
|
2019-04-08 17:50:13 +08:00
|
|
|
|
cacheService.addQueueTask(url);
|
2018-01-19 14:51:18 +08:00
|
|
|
|
return "success";
|
|
|
|
|
|
}
|
2018-01-17 14:10:40 +08:00
|
|
|
|
}
|
