1

Author: cym1102

Dockerfile

@@ -1,4 +1,4 @@
-FROM alpine:3.21
+FROM alpine:3.22
 ENV LANG=zh_CN.UTF-8 \
     TZ=Asia/Shanghai \
     PS1="\u@\h:\w \$ "
@@ -13,6 +13,7 @@ RUN    apk add --update --no-cache \
 	   nginx-mod-http-headers-more \
 	   nginx-mod-http-js \
 	   nginx-mod-http-keyval \
+	   nginx-mod-http-lua \
 	   nginx-mod-http-brotli \
 	   nginx-mod-rtmp \
 	   nginx-mod-mail \

README.md

@@ -111,9 +111,9 @@ Path : JDK安装目录\bin
 
 ```
 Linux: mkdir /home/nginxWebUI/ 
-       wget -O /home/nginxWebUI/nginxWebUI.jar https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.2/nginxWebUI-4.3.2.jar
+       wget -O /home/nginxWebUI/nginxWebUI.jar https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.3/nginxWebUI-4.3.3.jar
 
-Windows: 直接使用浏览器下载 https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.2/nginxWebUI-4.3.2.jar 到 D:/home/nginxWebUI/nginxWebUI.jar
+Windows: 直接使用浏览器下载 https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.3/nginxWebUI-4.3.3.jar 到 D:/home/nginxWebUI/nginxWebUI.jar
 ```
 
 有新版本只需要修改路径中的版本即可
@@ -282,7 +282,7 @@ Restart=always
 WantedBy=multi-user.target
 ```
 
-之后执行
+2. 之后执行
 
 ```
 systemctl daemon-reload

README_EN.md

@@ -107,9 +107,9 @@ reboot
 
 ```
 Linux: mkdir /home/nginxWebUI/   
-       wget -O /home/nginxWebUI/nginxWebUI.jar https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.2/nginxWebUI-4.3.2.jar
+       wget -O /home/nginxWebUI/nginxWebUI.jar https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.3/nginxWebUI-4.3.3.jar
 
-Windows: Download directly from your browser https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.2/nginxWebUI-4.3.2.jar into D:/home/nginxWebUI/
+Windows: Download directly from your browser https://gitee.com/cym1102/nginxWebUI/releases/download/4.3.3/nginxWebUI-4.3.3.jar into D:/home/nginxWebUI/
 ```
 
 With a new version, you just need to change the version in the path
@@ -278,7 +278,7 @@ Restart=always
 WantedBy=multi-user.target
 ```
 
-Then execute
+2. Then execute
 
 ```
 systemctl daemon-reload

pom.xml

@@ -11,7 +11,7 @@
 	<modelVersion>4.0.0</modelVersion>
 	<groupId>com.cym</groupId>
 	<artifactId>nginxWebUI</artifactId>
-	<version>4.3.2</version>
+	<version>4.3.3</version>
 
 	<properties>
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
@@ -125,6 +125,12 @@
 			<artifactId>expiringmap</artifactId>
 			<version>0.5.11</version>
 		</dependency>
+
+		<dependency>
+			<groupId>com.jayway.jsonpath</groupId>
+			<artifactId>json-path</artifactId>
+			<version>2.6.0</version>
+		</dependency>
 	</dependencies>
 
 	<build>

src/main/java/com/cym/config/AppFilter.java

@@ -171,6 +171,9 @@ private boolean adminInterceptor(Context ctx) {
 		if (ctx.path().toLowerCase().contains("adminPage/login".toLowerCase())) {
 			return true;
 		}
+		if (ctx.path().toLowerCase().contains("adminPage/sso/code".toLowerCase())) {
+			return true;
+		}
 
 		String creditKey = ctx.param("creditKey");
 		boolean isCredit = creditService.check(creditKey);

src/main/java/com/cym/controller/adminPage/SSOController.java

@@ -0,0 +1,128 @@
+package com.cym.controller.adminPage;
+
+import cn.hutool.core.lang.UUID;
+import cn.hutool.core.util.StrUtil;
+import cn.hutool.http.HttpUtil;
+import cn.hutool.json.JSONObject;
+import cn.hutool.json.JSONUtil;
+import com.cym.ext.AdminExt;
+import com.cym.ext.Tree;
+import com.cym.model.Admin;
+import com.cym.model.Group;
+import com.cym.service.AdminService;
+import com.cym.service.GroupService;
+import com.cym.service.SettingService;
+import com.cym.sqlhelper.bean.Page;
+import com.cym.sqlhelper.utils.ConditionAndWrapper;
+import com.cym.utils.*;
+import com.google.zxing.BarcodeFormat;
+import com.google.zxing.EncodeHintType;
+import com.google.zxing.MultiFormatWriter;
+import com.google.zxing.WriterException;
+import com.google.zxing.client.j2se.MatrixToImageWriter;
+import com.google.zxing.common.BitMatrix;
+import com.jayway.jsonpath.JsonPath;
+import org.noear.solon.annotation.Controller;
+import org.noear.solon.annotation.Inject;
+import org.noear.solon.annotation.Mapping;
+import org.noear.solon.core.handle.Context;
+import org.noear.solon.core.handle.ModelAndView;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.io.IOException;
+import java.util.*;
+
+@Controller
+@Mapping("/adminPage/sso")
+public class SSOController extends BaseController {
+	Logger logger = LoggerFactory.getLogger(this.getClass());
+	@Inject
+	AdminService adminService;
+	@Inject
+	SettingService settingService;
+	@Inject
+	SendMailUtils sendCloudUtils;
+	@Inject
+	AuthUtils authUtils;
+	@Inject
+	GroupService groupService;
+	@Inject
+	RemoteController remoteController;
+
+	@Mapping("")
+	public ModelAndView index(ModelAndView modelAndView) {
+
+		modelAndView.put("codeUrl", settingService.get("sso_codeUrl"));
+		modelAndView.put("tokenUrl", settingService.get("sso_tokenUrl"));
+		modelAndView.put("userinfoUrl", settingService.get("sso_userinfoUrl"));
+		modelAndView.put("jsonpath", settingService.get("sso_jsonpath"));
+		modelAndView.put("clientID", settingService.get("sso_clientID"));
+		modelAndView.put("clientSecret", settingService.get("sso_clientSecret"));
+		modelAndView.view("/adminPage/sso/index.html");
+		return modelAndView;
+	}
+
+	@Mapping("save")
+	public JsonResult save(String codeUrl, String tokenUrl, String userinfoUrl, String jsonpath, String clientID, String clientSecret, String callbackUrl) {
+
+		settingService.set("sso_codeUrl", codeUrl);
+		settingService.set("sso_tokenUrl", tokenUrl);
+		settingService.set("sso_userinfoUrl", userinfoUrl);
+		settingService.set("sso_jsonpath", jsonpath);
+		settingService.set("sso_clientID", clientID);
+		settingService.set("sso_clientSecret", clientSecret);
+		settingService.set("sso_callbackUrl", callbackUrl);
+
+		return renderSuccess();
+	}
+
+	@Mapping("redirect")
+	public void redirect(Context ctx) {
+
+		String codeUrl = settingService.get("sso_codeUrl");
+		String clientID = settingService.get("sso_clientID");
+		String callbackUrl = settingService.get("sso_callbackUrl");
+
+		String url = codeUrl + "?client_id=" + clientID + "&response_type=code&redirect_uri=" + callbackUrl + "&oauth_timestamp=" + System.currentTimeMillis() + "&state=";
+
+		ctx.redirect(url);
+	}
+
+	@Mapping("code")
+	public void code(String code, Context ctx) {
+
+		String tokenUrl = settingService.get("sso_tokenUrl");
+		String userinfoUrl = settingService.get("sso_userinfoUrl");
+		String jsonpath = settingService.get("sso_jsonpath");
+		String clientID = settingService.get("sso_clientID");
+		String clientSecret = settingService.get("sso_clientSecret");
+		String callbackUrl = settingService.get("sso_callbackUrl");
+
+		String getTokenUrl = tokenUrl + "?grant_type=authorization_code&oauth_timestamp=" + System.currentTimeMillis() + "&client_id=" + clientID + "&client_secret=" + clientSecret + "&code=" + code
+				+ "&redirect_uri=" + callbackUrl;
+
+		String post = HttpUtil.post(getTokenUrl, "");
+
+		JSONObject entries = JSONUtil.parseObj(post);
+		String accessToken = entries.getStr("access_token");
+
+		String userInfoUrl = userinfoUrl + "?access_token=" + accessToken;
+
+		String userinfoStr = HttpUtil.get(userInfoUrl);
+
+		String read = JsonPath.read(userinfoStr, jsonpath);
+
+		Admin admin = sqlHelper.findOneByQuery(new ConditionAndWrapper().eq(Admin::getName, read), Admin.class);
+
+		admin.setAutoKey(UUID.randomUUID().toString()); // 生成自动登录code
+		sqlHelper.updateById(admin);
+
+		Context.current().sessionSet("localType", "local");
+		Context.current().sessionSet("isLogin", true);
+		Context.current().sessionSet("admin", admin);
+		Context.current().sessionRemove("imgCode"); // 立刻销毁验证码
+
+		ctx.redirect("/adminPage/monitor");
+	}
+}

src/main/resources/WEB-INF/view/adminPage/login/index.html

@@ -46,6 +46,7 @@
 				<div class="layui-form-item" style="text-align: center;">
 					<input type="hidden" name="authCode" id="authCode">
 					<button type="button" class="layui-btn layui-btn-normal" onclick="getAuth()">${loginStr.login}</button>
+					<a type="button" class="layui-btn layui-btn-normal" href="/adminPage/sso/redirect" >${menuStr.sso}</a>
 				</div>
 			</form>
 		</div>

src/main/resources/WEB-INF/view/adminPage/menu.html

@@ -77,6 +77,9 @@
 						<dd>
 							<a href="${ctx}/adminPage/admin">${menuStr.admin}</a>
 						</dd>
+						<dd>
+							<a href="${ctx}/adminPage/sso">${menuStr.sso}</a>
+						</dd>
 					</#if>
 					<dd>
 						<a href="${ctx}/doc/api.html" target="_blank">${menuStr.doc}</a>

src/main/resources/WEB-INF/view/adminPage/sso/index.html

@@ -0,0 +1,152 @@
+<!DOCTYPE HTML>
+<html>
+<head>
+<#include "/adminPage/common.html"/>
+<link rel="stylesheet" type="text/css" href="${ctx}/lib/jsdifflib/diffview.css" />
+<style type="text/css">
+.layui-form-label {
+	width: 140px;
+}
+
+.layui-input-block {
+	margin-left: 170px;
+}
+
+.name {
+	padding: 10px;
+	padding-left: 0px;
+	font-size: 16px;
+}
+
+.title {
+	margin-top: 5px;
+	margin-bottom: 5px;
+	height: 30px;
+	line-height: 30px;
+	cursor: pointer;
+}
+
+table.diff {
+	width: 100%;
+}
+
+.long {
+	width: 150px !important;
+}
+
+.layui-form-radio {
+	width: 700px;
+}
+
+input[type='radio'] {
+	width: 1000px;
+}
+</style>
+</head>
+<body class="layui-layout-body">
+	<div class="layui-layout layui-layout-admin">
+
+		<#include "/adminPage/header.html"/>
+		<#include "/adminPage/menu.html"/>
+
+		<div class="layui-body">
+			<!-- 内容主体区域 -->
+			<fieldset class="layui-elem-field layui-field-title">
+				<legend>SSO-OAuth2.0配置</legend>
+			</fieldset>
+			<form id="addForm" style="margin-top: 48px">
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">${ssoStr.codeAddr}</label>
+					<div class="layui-input-block">
+						<input type="text" name="codeUrl" id="codeUrl" class="layui-input" value="${codeUrl}">
+					</div>
+				</div>
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">${ssoStr.tokenAddr}</label>
+					<div class="layui-input-block">
+						<input type="text" name="tokenUrl" id="tokenUrl" class="layui-input" value="${tokenUrl}">
+					</div>
+				</div>
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">${ssoStr.userinfoAddr}</label>
+					<div class="layui-input-block">
+						<input type="text" name="userinfoUrl" id="userinfoUrl" class="layui-input" value="${userinfoUrl}">
+					</div>
+				</div>
+
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">${ssoStr.jsonpath}</label>
+					<div class="layui-input-block">
+						<input type="text" name="jsonpath" id="jsonpath" class="layui-input" value="${jsonpath}" placeholder="${ssoStr.placeholder}">
+					</div>
+				</div>
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">clientID</label>
+					<div class="layui-input-block">
+						<input type="text" name="clientID" id="clientID" class="layui-input" value="${clientID}">
+					</div>
+				</div>
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">clientSecret</label>
+					<div class="layui-input-block">
+						<input type="text" name="clientSecret" id="clientSecret" class="layui-input" value="${clientSecret}">
+					</div>
+				</div>
+
+				<div class="layui-form-item">
+					<label class="layui-form-label">${ssoStr.callbackAddr}</label>
+					<div class="layui-input-block">
+						<input id="callbackUrl" name="callbackUrl" class="layui-input">
+					</div>
+				</div>
+
+
+				<div class="layui-form-item center">
+					<button type="button" class="layui-btn layui-btn-normal" onclick="save()">${commonStr.submit}</button>
+				</div>
+			</form>
+
+		</div>
+	</div>
+
+
+
+	<#include '/adminPage/script.html'/>
+	<#include '/adminPage/select_root.html'/>
+	<script src="${ctx}/lib/auto-line-number/auto-line-number.js" type="text/javascript"></script>
+	<script src="${ctx}/lib/jsdifflib/difflib.js" type="text/javascript"></script>
+	<script src="${ctx}/lib/jsdifflib/diffview.js" type="text/javascript"></script>
+	<script src="${ctx}/lib/base64/base64.js" type="text/javascript"></script>
+	<script type="application/javascript">
+		
+
+	const href = location.href.split('/');
+	const host = href[0]+"//"+href[2];
+	document.getElementById("callbackUrl").value=host+"/adminPage/sso/code";//host+"/adminPage/sso/code?code=xxxxxxx";
+
+	async function save(){
+		const form = document.getElementById('addForm');
+		const formData = new FormData(form);
+		const response = await fetch('/adminPage/sso/save', {
+			method: 'POST',
+			body: formData
+		});
+		const data = await response.json();
+		if (data.success) {
+			layer.msg(ssoStr.success)
+		}else {
+			layer.msg(data.msg)
+		}
+	}
+
+	</script>
+</body>
+
+
+</html>