2018-12-05 17:56:41 +08:00
|
|
|
|
package com.nis.web.service.configuration;
|
|
|
|
|
|
|
|
|
|
|
|
import java.lang.reflect.Field;
|
|
|
|
|
|
import java.util.ArrayList;
|
|
|
|
|
|
import java.util.Date;
|
|
|
|
|
|
import java.util.HashMap;
|
|
|
|
|
|
import java.util.Iterator;
|
|
|
|
|
|
import java.util.List;
|
|
|
|
|
|
import java.util.Map;
|
|
|
|
|
|
import java.util.Properties;
|
2019-03-11 17:06:31 +08:00
|
|
|
|
import java.util.Map.Entry;
|
2018-12-05 17:56:41 +08:00
|
|
|
|
|
|
|
|
|
|
import net.sf.json.JSONObject;
|
|
|
|
|
|
|
|
|
|
|
|
import org.apache.commons.lang3.StringUtils;
|
|
|
|
|
|
import org.springframework.beans.BeanUtils;
|
|
|
|
|
|
import org.springframework.beans.factory.annotation.Autowired;
|
|
|
|
|
|
import org.springframework.stereotype.Service;
|
|
|
|
|
|
|
|
|
|
|
|
import com.google.common.collect.Lists;
|
|
|
|
|
|
import com.nis.domain.Page;
|
2019-03-11 17:06:31 +08:00
|
|
|
|
import com.nis.domain.basics.AsnGroupInfo;
|
2018-12-05 17:56:41 +08:00
|
|
|
|
import com.nis.domain.basics.AsnIpCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.AppPolicyCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.AreaIpCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.AvFileSampleCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.BaseCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.BaseIpCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.BaseStringCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.CfgIndexInfo;
|
|
|
|
|
|
import com.nis.domain.configuration.CommonStringCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.ComplexkeywordCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.DnsIpCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.DnsResStrategy;
|
|
|
|
|
|
import com.nis.domain.configuration.FileDigestCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.HttpBodyCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.HttpReqHeadCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.HttpResHeadCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.HttpUrlCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.IpPortCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.NtcSubscribeIdCfg;
|
|
|
|
|
|
import com.nis.domain.configuration.PxyObjKeyring;
|
|
|
|
|
|
import com.nis.domain.configuration.PxyObjTrustedCaCert;
|
|
|
|
|
|
import com.nis.domain.configuration.PxyObjTrustedCaCrl;
|
2019-03-11 17:06:31 +08:00
|
|
|
|
import com.nis.domain.maat.GroupReuseAddBean;
|
|
|
|
|
|
import com.nis.domain.maat.GroupReuseCfg;
|
2018-12-05 17:56:41 +08:00
|
|
|
|
import com.nis.domain.maat.MaatCfg;
|
|
|
|
|
|
import com.nis.domain.maat.MaatCfg.DigestCfg;
|
|
|
|
|
|
import com.nis.domain.maat.MaatCfg.GroupCfg;
|
|
|
|
|
|
import com.nis.domain.maat.MaatCfg.IpCfg;
|
|
|
|
|
|
import com.nis.domain.maat.MaatCfg.NumBoundaryCfg;
|
|
|
|
|
|
import com.nis.domain.maat.MaatCfg.StringCfg;
|
|
|
|
|
|
import com.nis.domain.maat.ToMaatBean;
|
|
|
|
|
|
import com.nis.domain.maat.ToMaatResult;
|
|
|
|
|
|
import com.nis.exceptions.MaatConvertException;
|
|
|
|
|
|
import com.nis.util.ConfigServiceUtil;
|
|
|
|
|
|
import com.nis.util.Constants;
|
|
|
|
|
|
import com.nis.util.DateUtils;
|
|
|
|
|
|
import com.nis.util.FileUtils;
|
|
|
|
|
|
import com.nis.util.StringUtil;
|
|
|
|
|
|
import com.nis.web.dao.configuration.AreaIpCfgDao;
|
|
|
|
|
|
import com.nis.web.dao.configuration.CommonPolicyDao;
|
|
|
|
|
|
import com.nis.web.dao.configuration.ConfigSynchronizationDao;
|
|
|
|
|
|
import com.nis.web.dao.configuration.StringCfgDao;
|
|
|
|
|
|
import com.nis.web.dao.configuration.WebsiteCfgDao;
|
|
|
|
|
|
import com.nis.web.security.UserUtils;
|
|
|
|
|
|
import com.nis.web.service.BaseService;
|
|
|
|
|
|
import com.nis.web.service.CrudService;
|
|
|
|
|
|
|
|
|
|
|
|
@Service
|
|
|
|
|
|
public class CommonPolicyService extends CrudService<WebsiteCfgDao, CfgIndexInfo> {
|
|
|
|
|
|
@Autowired
|
|
|
|
|
|
protected CommonPolicyDao commonPolicyDao;
|
|
|
|
|
|
@Autowired
|
|
|
|
|
|
protected ConfigSynchronizationDao synchronizationDao;
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* maat配置批量失效
|
|
|
|
|
|
* @param cfgList
|
|
|
|
|
|
* @param page
|
|
|
|
|
|
* @param entity
|
|
|
|
|
|
* @param list
|
|
|
|
|
|
* @param hasData
|
|
|
|
|
|
* @return
|
|
|
|
|
|
* @throws NoSuchFieldException
|
|
|
|
|
|
* @throws SecurityException
|
|
|
|
|
|
* @throws IllegalArgumentException
|
|
|
|
|
|
* @throws IllegalAccessException
|
|
|
|
|
|
*/
|
|
|
|
|
|
public boolean auditNtcMaatData(List<Map<String,Object>> cfgList,
|
|
|
|
|
|
Page page,
|
|
|
|
|
|
BaseCfg entity,
|
|
|
|
|
|
List<BaseCfg> list,
|
|
|
|
|
|
boolean hasData)throws NoSuchFieldException, SecurityException, IllegalArgumentException, IllegalAccessException{
|
2019-03-11 17:06:31 +08:00
|
|
|
|
long start=System.currentTimeMillis();
|
|
|
|
|
|
long end=System.currentTimeMillis();
|
2018-12-05 17:56:41 +08:00
|
|
|
|
ToMaatBean maatBean;
|
|
|
|
|
|
MaatCfg maatCfg;
|
|
|
|
|
|
List<MaatCfg> configCompileList;
|
|
|
|
|
|
|
|
|
|
|
|
maatBean = new ToMaatBean();
|
|
|
|
|
|
configCompileList = new ArrayList();
|
|
|
|
|
|
List<Integer> compileIds = new ArrayList();
|
|
|
|
|
|
for(BaseCfg cfg:list){
|
|
|
|
|
|
compileIds.add(cfg.getCompileId());
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if(!StringUtil.isEmpty(compileIds) && !StringUtil.isEmpty(entity.getTableName())) {
|
2018-12-10 20:23:19 +08:00
|
|
|
|
List auditHttpCompileIds= new ArrayList();
|
|
|
|
|
|
List deleteHttpCompileIds= new ArrayList();
|
|
|
|
|
|
//http关键字配置失效,获取与其匹配的http url配置
|
|
|
|
|
|
if(entity.getServiceId().equals(152) || entity.getServiceId().equals(40)) {
|
|
|
|
|
|
List<CfgIndexInfo> httpUrlCfgs=commonPolicyDao.getHttpUrlCfgBySourceCompileId(compileIds);
|
|
|
|
|
|
if(!StringUtil.isEmpty(httpUrlCfgs)) {
|
|
|
|
|
|
for (CfgIndexInfo httpUrlCfg: httpUrlCfgs) {
|
|
|
|
|
|
//审核通过的
|
|
|
|
|
|
if(httpUrlCfg.getIsValid().equals(1) && httpUrlCfg.getIsAudit().equals(1)) {
|
|
|
|
|
|
auditHttpCompileIds.add(httpUrlCfg.getCompileId());
|
|
|
|
|
|
maatCfg = new MaatCfg();
|
|
|
|
|
|
maatCfg.setCompileId(httpUrlCfg.getCompileId());
|
|
|
|
|
|
maatCfg.setServiceId(httpUrlCfg.getServiceId());
|
|
|
|
|
|
maatCfg.setIsValid(0);//无效
|
|
|
|
|
|
configCompileList.add(maatCfg);
|
|
|
|
|
|
}
|
|
|
|
|
|
//未审核或者审核未通过的
|
|
|
|
|
|
if(httpUrlCfg.getIsValid().equals(0) && (httpUrlCfg.getIsAudit().equals(0) || httpUrlCfg.getIsAudit().equals(2))) {
|
|
|
|
|
|
deleteHttpCompileIds.add(httpUrlCfg.getCompileId());
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
if(!StringUtil.isEmpty(auditHttpCompileIds)) {
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch("cfg_index_info", entity,auditHttpCompileIds,null);
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch("http_url_cfg", entity,auditHttpCompileIds,null);
|
|
|
|
|
|
}
|
|
|
|
|
|
if(!StringUtil.isEmpty(deleteHttpCompileIds)) {
|
|
|
|
|
|
commonPolicyDao.deleteHttpUrlCfg("cfg_index_info", entity,deleteHttpCompileIds);
|
|
|
|
|
|
commonPolicyDao.deleteHttpUrlCfg("http_url_cfg", entity,deleteHttpCompileIds);
|
|
|
|
|
|
}
|
2018-12-05 17:56:41 +08:00
|
|
|
|
commonPolicyDao.auditCfgBatch( entity.getTableName(), entity,compileIds,null);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if(cfgList!=null){
|
|
|
|
|
|
for(Map<String,Object> m:cfgList){
|
|
|
|
|
|
String tableName = m.get("tableName").toString();
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch( tableName, entity,compileIds,null);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
for(BaseCfg cfg:list){
|
|
|
|
|
|
maatCfg = new MaatCfg();
|
|
|
|
|
|
maatCfg.setCompileId(cfg.getCompileId());
|
|
|
|
|
|
maatCfg.setServiceId(cfg.getServiceId());
|
|
|
|
|
|
maatCfg.setIsValid(0);//无效
|
|
|
|
|
|
configCompileList.add(maatCfg);
|
|
|
|
|
|
}
|
|
|
|
|
|
page.setList(list);
|
|
|
|
|
|
if(page.isLastPage()){
|
|
|
|
|
|
hasData = false;
|
|
|
|
|
|
}
|
|
|
|
|
|
if(!StringUtil.isEmpty(configCompileList.size())){
|
|
|
|
|
|
maatBean.setConfigCompileList(configCompileList);
|
|
|
|
|
|
maatBean.setAuditTime(entity.getAuditTime());
|
|
|
|
|
|
maatBean.setCreatorName(entity.getCurrentUser().getName());
|
|
|
|
|
|
maatBean.setVersion(Constants.MAAT_VERSION);
|
|
|
|
|
|
maatBean.setOpAction(Constants.UPDATE_ACTION);
|
|
|
|
|
|
//调用服务接口取消配置
|
|
|
|
|
|
String json=gsonToJson(maatBean);
|
2019-03-12 11:01:53 +08:00
|
|
|
|
if(!StringUtil.isEmpty(list)) {
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("批量配置取消("+page.getPageNo()+"次)个数:"+list.size());
|
2019-03-01 18:18:49 +08:00
|
|
|
|
}
|
2018-12-05 17:56:41 +08:00
|
|
|
|
//调用服务接口下发配置
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("Maat配置批量失效-下发:start()");
|
|
|
|
|
|
//logger.warn("Maat配置批量失效-下发:start()"+json);
|
2019-03-11 17:06:31 +08:00
|
|
|
|
start=System.currentTimeMillis();
|
2018-12-05 17:56:41 +08:00
|
|
|
|
ToMaatResult result = ConfigServiceUtil.put(json,1);
|
2019-03-11 17:06:31 +08:00
|
|
|
|
end=System.currentTimeMillis();
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("配置取消配置响应信息:"+result.getMsg());
|
|
|
|
|
|
logger.warn("Maat配置批量失效-下发:end("+(end-start)+")");
|
2018-12-05 17:56:41 +08:00
|
|
|
|
}
|
|
|
|
|
|
return hasData;
|
|
|
|
|
|
}
|
|
|
|
|
|
public List<IpPortCfg> getIpDropList(String tabName,List compileIds){
|
|
|
|
|
|
return synchronizationDao.getIpDropList(tabName, compileIds);
|
|
|
|
|
|
}
|
|
|
|
|
|
public List<IpPortCfg> getIpPortList(IpPortCfg entity){
|
|
|
|
|
|
return synchronizationDao.getIpPortListByService(entity);
|
|
|
|
|
|
}
|
2018-12-08 17:54:59 +08:00
|
|
|
|
public List<PxyObjTrustedCaCrl> getPxyObjTrustedCrlCfgListByCertId(List certIds){
|
|
|
|
|
|
return synchronizationDao.getPxyObjTrustedCrlCfgListByCertId(certIds);
|
|
|
|
|
|
}
|
2019-03-11 17:06:31 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* IP复用配置取消
|
|
|
|
|
|
* @param cfgList
|
|
|
|
|
|
* @param page
|
|
|
|
|
|
* @param auditMap
|
|
|
|
|
|
* @param hasData
|
|
|
|
|
|
* @return
|
|
|
|
|
|
*/
|
|
|
|
|
|
public boolean auditReuseConfigData(
|
|
|
|
|
|
Page page,
|
|
|
|
|
|
BaseCfg entity,
|
|
|
|
|
|
Map<Integer, List> auditMap,
|
|
|
|
|
|
boolean hasData){
|
|
|
|
|
|
long start=System.currentTimeMillis();
|
|
|
|
|
|
long end=System.currentTimeMillis();
|
|
|
|
|
|
long totolSize=0;
|
|
|
|
|
|
|
|
|
|
|
|
if(page.isLastPage()){
|
|
|
|
|
|
hasData = false;
|
|
|
|
|
|
}
|
|
|
|
|
|
List<Integer> regionIds = new ArrayList();
|
|
|
|
|
|
for(Entry<Integer, List> e:auditMap.entrySet()) {
|
|
|
|
|
|
List<BaseCfg> list=e.getValue();
|
|
|
|
|
|
for (BaseCfg baseCfg : list) {
|
|
|
|
|
|
if("asn_ip_cfg".equals(entity.getTableName())) {
|
|
|
|
|
|
regionIds.add(baseCfg.getRegionId());
|
|
|
|
|
|
}else {
|
|
|
|
|
|
regionIds.add(Integer.parseInt(baseCfg.getUserRegion1()));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
totolSize=totolSize+list.size();
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
start=System.currentTimeMillis();
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("APP IP配置批量失效-数据库状态变更:start()");
|
2019-03-11 17:06:31 +08:00
|
|
|
|
commonPolicyDao.auditCfgBatch( entity.getTableName(), entity,regionIds,null);
|
|
|
|
|
|
end=System.currentTimeMillis();
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("APP IP配置批量失效-数据库状态变更:end("+(end-start)+")");
|
2019-03-11 17:06:31 +08:00
|
|
|
|
|
|
|
|
|
|
//已经下发过的,调用分组复用配置删除接口
|
|
|
|
|
|
if(!auditMap.isEmpty()) {
|
|
|
|
|
|
GroupReuseAddBean maatBean = new GroupReuseAddBean();
|
|
|
|
|
|
List<GroupReuseCfg> groupReuseList=new ArrayList<>();
|
|
|
|
|
|
GroupReuseCfg groupReuseCfg=new GroupReuseCfg();
|
|
|
|
|
|
List<IpCfg> ipRegionList=new ArrayList<>();
|
|
|
|
|
|
for (Integer groupId : auditMap.keySet()) {
|
|
|
|
|
|
ipRegionList.addAll(groupReuseCfgAddRemoveConvert(auditMap.get(groupId),Constants.VALID_NO,groupId));
|
|
|
|
|
|
}
|
|
|
|
|
|
groupReuseCfg.setIpRegionList(ipRegionList);
|
|
|
|
|
|
groupReuseCfg.setStrRegionList(null);
|
|
|
|
|
|
groupReuseCfg.setNumRegionList(null);
|
|
|
|
|
|
groupReuseList.add(groupReuseCfg);
|
|
|
|
|
|
maatBean.setGroupReuseCfgList(groupReuseList);
|
|
|
|
|
|
maatBean.setAuditTime(new Date());
|
|
|
|
|
|
maatBean.setCreatorName(UserUtils.getUser().getName());
|
|
|
|
|
|
maatBean.setVersion(Constants.MAAT_VERSION);
|
|
|
|
|
|
maatBean.setOpAction(Constants.UPDATE_ACTION);
|
|
|
|
|
|
//调用服务接口下发配置数据
|
|
|
|
|
|
String json=gsonToJson(maatBean);
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("app协议IP域配置批量取消("+page.getPageNo()+"次):"+ipRegionList.size());
|
2019-03-11 17:06:31 +08:00
|
|
|
|
//logger.info("app协议IP域配置批量取消:"+json);
|
|
|
|
|
|
//调用服务接口下发配置
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("APP IP配置批量失效-下发:start()");
|
2019-03-11 17:06:31 +08:00
|
|
|
|
start=System.currentTimeMillis();
|
|
|
|
|
|
ToMaatResult result = ConfigServiceUtil.put(json,3);
|
|
|
|
|
|
end=System.currentTimeMillis();
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("app协议IP域配置批量取消响应信息:"+result.getMsg());
|
|
|
|
|
|
logger.warn("APP IP配置批量失效-下发:end("+(end-start)+")");
|
2019-03-11 17:06:31 +08:00
|
|
|
|
}
|
|
|
|
|
|
return hasData;
|
|
|
|
|
|
}
|
2018-12-05 17:56:41 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* 回调类配置下发
|
|
|
|
|
|
* @param className
|
|
|
|
|
|
* @param page
|
|
|
|
|
|
* @param entity
|
|
|
|
|
|
* @param hasData
|
|
|
|
|
|
* @param isUpdateCfg
|
|
|
|
|
|
* @throws ClassNotFoundException
|
|
|
|
|
|
*/
|
|
|
|
|
|
public void auditCallBackData(List auditList,List compileIds,List ids,BaseCfg entity){
|
2019-03-12 11:01:53 +08:00
|
|
|
|
long start=System.currentTimeMillis();
|
|
|
|
|
|
long end=System.currentTimeMillis();
|
2018-12-05 17:56:41 +08:00
|
|
|
|
if(!StringUtil.isEmpty(compileIds) && !StringUtil.isEmpty(entity.getTableName())) {
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch( "cfg_index_info", entity,compileIds,null);
|
|
|
|
|
|
}
|
|
|
|
|
|
if(!StringUtil.isEmpty(ids) && !StringUtil.isEmpty(entity.getTableName())) {
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch( entity.getTableName(), entity,ids,null);
|
2018-12-08 17:54:59 +08:00
|
|
|
|
if(entity.getTableName().equals("pxy_obj_trusted_ca_cert")) {
|
|
|
|
|
|
commonPolicyDao.auditCfgBatch("pxy_obj_trusted_ca_crl", entity,ids,null);
|
|
|
|
|
|
}
|
2018-12-05 17:56:41 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if(entity.getIsAudit()==1){
|
|
|
|
|
|
//调用服务接口下发配置数据
|
|
|
|
|
|
String json=gsonToJson(auditList);
|
2019-03-15 16:15:11 +08:00
|
|
|
|
//logger.warn("批量下发配置参数:"+json);
|
2018-12-05 17:56:41 +08:00
|
|
|
|
//调用服务接口下发配置
|
|
|
|
|
|
ToMaatResult result = ConfigServiceUtil.postCallbackCfg(json);
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("批量下发响应信息:"+result.getMsg());
|
2018-12-05 17:56:41 +08:00
|
|
|
|
|
|
|
|
|
|
}else if(entity.getIsAudit()==3){
|
|
|
|
|
|
//调用服务接口取消配置
|
|
|
|
|
|
String json=gsonToJson(auditList);
|
2019-03-15 16:15:11 +08:00
|
|
|
|
//logger.warn("批量下发配置参数:"+json);
|
2019-03-12 11:01:53 +08:00
|
|
|
|
if(!StringUtil.isEmpty(auditList)) {
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("批量配置取消个数:"+auditList.size());
|
2019-03-12 11:01:53 +08:00
|
|
|
|
}
|
|
|
|
|
|
logger.info("回调配置批量失效-下发:start()");
|
|
|
|
|
|
start=System.currentTimeMillis();
|
2018-12-05 17:56:41 +08:00
|
|
|
|
//调用服务接口下发配置
|
|
|
|
|
|
ToMaatResult result = ConfigServiceUtil.put(json,2);
|
2019-03-12 11:01:53 +08:00
|
|
|
|
end=System.currentTimeMillis();
|
2019-03-15 16:15:11 +08:00
|
|
|
|
logger.warn("批量响应信息:"+result.getMsg());
|
|
|
|
|
|
logger.warn("回调配置批量失效-下发耗时:end("+(end-start)+")");
|
2018-12-05 17:56:41 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
