refactor: replace node-forge with jsencrypt for RSA encryption

Author: wxg0103

ui/package.json

@@ -36,14 +36,14 @@
     "highlight.js": "^11.11.1",
     "html-to-image": "^1.11.13",
     "html2canvas": "^1.4.1",
+    "jsencrypt": "^3.5.4",
     "jspdf": "^4.1.0",
     "katex": "^0.16.10",
     "marked": "^12.0.2",
     "md-editor-v3": "^5.8.2",
     "mermaid": "^11.12.0",
     "moment": "^2.30.1",
     "nanoid": "^5.1.5",
-    "node-forge": "^1.3.1",
     "nprogress": "^0.2.0",
     "pdfjs-dist": "^5.6.205",
     "pinia": "^3.0.1",

ui/src/views/chat/user-login/index.vue

@@ -180,8 +180,8 @@ import QrCodeTab from '@/views/chat/user-login/scanCompinents/QrCodeTab.vue'
 import {MsgConfirm, MsgError} from '@/utils/message.ts'
 import PasswordAuth from '@/views/chat/auth/component/password.vue'
 import {isAppIcon, loadScript} from '@/utils/common'
-import forge from "node-forge";
 import * as dd from "dingtalk-jsapi";
+import JSEncrypt from "jsencrypt";
 
 useResize()
 const router = useRouter()
@@ -251,11 +251,13 @@ const loginHandle = () => {
         })
       })
     } else {
-      const publicKey = forge.pki.publicKeyFromPem(chatUser?.chat_profile?.rsaKey as any);
+      // JSEncrypt 在有些打包环境可能作为 default export 或直接导出，兼容两种情况
+      const JSEncryptCtor = (JSEncrypt as any)?.default ? (JSEncrypt as any).default : JSEncrypt;
+      const js = new (JSEncryptCtor as any)();
+      js.setPublicKey(chatUser?.chat_profile?.rsaKey as any);
       const jsonData = JSON.stringify(loginForm.value);
-      const utf8Bytes = forge.util.encodeUtf8(jsonData);
-      const encrypted = publicKey.encrypt(utf8Bytes, 'RSAES-PKCS1-V1_5');
-      const encryptedBase64 = forge.util.encode64(encrypted);
+      const encryptedBase64 = js.encrypt(jsonData);
+
       chatUser.login({
         encryptedData: encryptedBase64,
         username: loginForm.value.username

ui/src/views/login/index.vue

@@ -141,7 +141,7 @@ import QrCodeTab from '@/views/login/scanCompinents/QrCodeTab.vue'
 import {MsgConfirm, MsgError} from '@/utils/message.ts'
 import * as dd from 'dingtalk-jsapi'
 import {loadScript} from '@/utils/common'
-import forge from 'node-forge';
+import JSEncrypt from 'jsencrypt';
 
 const router = useRouter()
 const {login, user, theme} = useStore()
@@ -200,12 +200,13 @@ const loginHandle = () => {
             loading.value = false
           })
       } else {
-        const publicKey = forge.pki.publicKeyFromPem(user.rsaKey);
-        // 转换为UTF-8编码后再加密
+        // JSEncrypt 在有些打包环境可能作为 default export 或直接导出，兼容两种情况
+        const JSEncryptCtor = (JSEncrypt as any)?.default ? (JSEncrypt as any).default : JSEncrypt;
+        const js = new (JSEncryptCtor as any)();
+        js.setPublicKey(user.rsaKey);
         const jsonData = JSON.stringify(loginForm.value);
-        const utf8Bytes = forge.util.encodeUtf8(jsonData);
-        const encrypted = publicKey.encrypt(utf8Bytes, 'RSAES-PKCS1-V1_5');
-        const encryptedBase64 = forge.util.encode64(encrypted);
+        const encryptedBase64 = js.encrypt(jsonData);
+
         login
           .asyncLogin({encryptedData: encryptedBase64, username: loginForm.value.username})
           .then(() => {

ui/src/views/system/user-manage/component/UserDrawer.vue

@@ -115,21 +115,21 @@
   </el-dialog>
 </template>
 <script setup lang="ts">
-import { ref, reactive, watch, onBeforeMount, computed } from 'vue'
-import type { FormInstance } from 'element-plus'
+import {computed, onBeforeMount, reactive, ref, watch} from 'vue'
+import type {FormInstance} from 'element-plus'
 import userManageApi from '@/api/system/user-manage'
-import { MsgSuccess } from '@/utils/message'
-import { t } from '@/locales'
-import type { FormItemModel } from '@/api/type/role'
+import {MsgSuccess} from '@/utils/message'
+import {t} from '@/locales'
+import type {FormItemModel} from '@/api/type/role'
 import WorkspaceApi from '@/api/workspace/workspace'
 import MemberFormContent from '@/views/system/role/component/MemberFormContent.vue'
-import { AuthorizationEnum, RoleTypeEnum } from '@/enums/system'
+import {AuthorizationEnum, RoleTypeEnum} from '@/enums/system'
 import useStore from '@/stores'
-import { hasPermission } from '@/utils/permission'
-import { EditionConst } from '@/utils/permission/data.ts'
-import forge from 'node-forge'
+import {hasPermission} from '@/utils/permission'
+import {EditionConst} from '@/utils/permission/data.ts'
+import JSEncrypt from "jsencrypt";
 
-const { user } = useStore()
+const {user} = useStore()
 const props = defineProps({
   title: String,
 })
@@ -289,7 +289,7 @@ onBeforeMount(async () => {
     }
     formItemModel.value = [...roleFormItem.value, ...workspaceFormItem.value]
   }
-  list.value = [{ role_id: '', workspace_ids: [] }]
+  list.value = [{role_id: '', workspace_ids: []}]
 })
 
 const rules = reactive({
@@ -361,7 +361,7 @@ watch(visible, (bool) => {
       nick_name: '',
     }
     isEdit.value = false
-    list.value = [{ role_id: '', workspace_ids: [] }]
+    list.value = [{role_id: '', workspace_ids: []}]
     userFormRef.value?.clearValidate()
   }
 })
@@ -405,12 +405,12 @@ const submit = async (formEl: FormInstance | undefined) => {
 
           // 如果是管理员角色，则设置为 ['None']
           if (isAdminRole) {
-            return { ...item, workspace_ids: ['None'] }
+            return {...item, workspace_ids: ['None']}
           }
 
           // 如果是普通用户且是 PE 类型，则设置为 ['default']
           if (user.isPE()) {
-            return { ...item, workspace_ids: ['default'] }
+            return {...item, workspace_ids: ['default']}
           }
 
           // 其他情况保持原样
@@ -431,10 +431,10 @@ const submit = async (formEl: FormInstance | undefined) => {
         })
       } else {
         params.defaultPermission = defaultPermission.value
-        const publicKey = forge.pki.publicKeyFromPem(user.rsaKey)
-        const utf8Bytes = forge.util.encodeUtf8(params.password)
-        const encrypted = publicKey.encrypt(utf8Bytes, 'RSAES-PKCS1-V1_5')
-        params.password = forge.util.encode64(encrypted)
+        const JSEncryptCtor = (JSEncrypt as any)?.default ? (JSEncrypt as any).default : JSEncrypt;
+        const js = new (JSEncryptCtor as any)();
+        js.setPublicKey(user.rsaKey);
+        params.password = js.encrypt(params.password);
         params.encrypted = true
         userManageApi.postUserManage(params, loading).then((res) => {
           return user.profile(loading).then(() => {
@@ -461,7 +461,7 @@ const submitDialog = () => {
   closeDialog()
 }
 
-defineExpose({ open })
+defineExpose({open})
 </script>
 <style lang="scss" scoped>
 .dialog-header {