Merge branch 'develop' of 10.10.31.70:/ervu-lkrp-fl into develop
This commit is contained in:
Zaripov Emil
commit
637251d99b
3 changed files with 50 additions and 10 deletions
|
|
@ -1,9 +1,14 @@
|
||||||
package ru.micord.ervu.audit.service.impl;
|
package ru.micord.ervu.audit.service.impl;
|
||||||
|
|
||||||
|
import java.util.Arrays;
|
||||||
|
import java.util.List;
|
||||||
|
import java.util.Objects;
|
||||||
import javax.servlet.http.HttpServletRequest;
|
import javax.servlet.http.HttpServletRequest;
|
||||||
|
|
||||||
import com.fasterxml.jackson.core.JsonProcessingException;
|
import com.fasterxml.jackson.core.JsonProcessingException;
|
||||||
import com.fasterxml.jackson.databind.ObjectMapper;
|
import com.fasterxml.jackson.databind.ObjectMapper;
|
||||||
|
import org.slf4j.Logger;
|
||||||
|
import org.slf4j.LoggerFactory;
|
||||||
import org.springframework.beans.factory.annotation.Value;
|
import org.springframework.beans.factory.annotation.Value;
|
||||||
import org.springframework.context.annotation.Conditional;
|
import org.springframework.context.annotation.Conditional;
|
||||||
import org.springframework.stereotype.Service;
|
import org.springframework.stereotype.Service;
|
||||||
|
|
@ -26,6 +31,11 @@ import ru.micord.ervu.util.NetworkUtils;
|
||||||
@Service
|
@Service
|
||||||
@Conditional(AuditEnabledCondition.class)
|
@Conditional(AuditEnabledCondition.class)
|
||||||
public class BaseAuditService implements AuditService {
|
public class BaseAuditService implements AuditService {
|
||||||
|
private static final Logger LOGGER = LoggerFactory.getLogger(BaseAuditService.class);
|
||||||
|
private static final List<String> IP_HEADERS =
|
||||||
|
Arrays.asList("X-Forwarded-For", "WL-Proxy-Client-IP", "HTTP_CLIENT_IP", "HTTP_X_FORWARDED_FOR");
|
||||||
|
|
||||||
|
|
||||||
private final AuditKafkaPublisher auditPublisher;
|
private final AuditKafkaPublisher auditPublisher;
|
||||||
private final JwtTokenService jwtTokenService;
|
private final JwtTokenService jwtTokenService;
|
||||||
private final ObjectMapper objectMapper;
|
private final ObjectMapper objectMapper;
|
||||||
|
|
@ -64,10 +74,26 @@ public class BaseAuditService implements AuditService {
|
||||||
@Override
|
@Override
|
||||||
public void processAuthEvent(HttpServletRequest request, PersonModel personModel, String status,
|
public void processAuthEvent(HttpServletRequest request, PersonModel personModel, String status,
|
||||||
String eventType) {
|
String eventType) {
|
||||||
|
long startTime = System.currentTimeMillis();
|
||||||
String serverIp = NetworkUtils.getServerIp();
|
String serverIp = NetworkUtils.getServerIp();
|
||||||
|
LOGGER.info("Thread {} - server ip {} got in {} ms", Thread.currentThread().getId(), serverIp,
|
||||||
|
System.currentTimeMillis() - startTime);
|
||||||
|
|
||||||
|
startTime = System.currentTimeMillis();
|
||||||
String clientIp = NetworkUtils.getClientIp(request);
|
String clientIp = NetworkUtils.getClientIp(request);
|
||||||
|
LOGGER.info("Thread {} - client ip {} got in {} ms", Thread.currentThread().getId(), clientIp,
|
||||||
|
System.currentTimeMillis() - startTime);
|
||||||
|
|
||||||
|
startTime = System.currentTimeMillis();
|
||||||
String serverHostName = NetworkUtils.getHostName(serverIp);
|
String serverHostName = NetworkUtils.getHostName(serverIp);
|
||||||
|
LOGGER.info("Thread {} - server host name {} got in {} ms", Thread.currentThread().getId(), serverHostName,
|
||||||
|
System.currentTimeMillis() - startTime);
|
||||||
|
|
||||||
|
startTime = System.currentTimeMillis();
|
||||||
String clientHostName = NetworkUtils.getHostName(clientIp);
|
String clientHostName = NetworkUtils.getHostName(clientIp);
|
||||||
|
LOGGER.info("Thread {} - client host name {} got in {} ms", Thread.currentThread().getId(), clientHostName,
|
||||||
|
System.currentTimeMillis() - startTime);
|
||||||
|
startTime = System.currentTimeMillis();
|
||||||
|
|
||||||
AuditAuthorizationEvent event = new AuditAuthorizationEvent(
|
AuditAuthorizationEvent event = new AuditAuthorizationEvent(
|
||||||
personModel.getPrnsId(),
|
personModel.getPrnsId(),
|
||||||
|
|
@ -85,6 +111,10 @@ public class BaseAuditService implements AuditService {
|
||||||
);
|
);
|
||||||
String message = convertToMessage(event);
|
String message = convertToMessage(event);
|
||||||
auditPublisher.publishEvent(authorizationTopic, message);
|
auditPublisher.publishEvent(authorizationTopic, message);
|
||||||
|
LOGGER.info("Thread {} - event published in {} ms", Thread.currentThread().getId(),
|
||||||
|
System.currentTimeMillis() - startTime);
|
||||||
|
|
||||||
|
IP_HEADERS.forEach(header -> LOGGER.info("Data from header: {} - {}", header, request.getHeader(header)));
|
||||||
}
|
}
|
||||||
|
|
||||||
@Override
|
@Override
|
||||||
|
|
|
||||||
|
|
@ -29,13 +29,13 @@ public abstract class BaseReplyingKafkaService<T, V> implements ReplyingKafkaSer
|
||||||
try {
|
try {
|
||||||
ConsumerRecord<String, V> result = Optional.ofNullable(replyFuture.get())
|
ConsumerRecord<String, V> result = Optional.ofNullable(replyFuture.get())
|
||||||
.orElseThrow(() -> new KafkaMessageException("Kafka return result is null"));
|
.orElseThrow(() -> new KafkaMessageException("Kafka return result is null"));
|
||||||
LOGGER.info("Thread {} - KafkaSendMessageAndGetReply: {} ms",
|
LOGGER.info("Thread {} - KafkaSendMessageAndGetReply: {} ms, replyTopic: {}",
|
||||||
Thread.currentThread().getId(), System.currentTimeMillis() - startTime);
|
Thread.currentThread().getId(), System.currentTimeMillis() - startTime, replyTopic);
|
||||||
return result;
|
return result;
|
||||||
}
|
}
|
||||||
catch (InterruptedException | ExecutionException e) {
|
catch (InterruptedException | ExecutionException e) {
|
||||||
LOGGER.error("Thread {} - KafkaSendMessageAndGetReply: {} ms",
|
LOGGER.error("Thread {} - KafkaSendMessageAndGetReply: {} ms, replyTopic: {}",
|
||||||
Thread.currentThread().getId(), System.currentTimeMillis() - startTime);
|
Thread.currentThread().getId(), System.currentTimeMillis() - startTime, replyTopic);
|
||||||
throw new KafkaMessageReplyTimeoutException(e);
|
throw new KafkaMessageReplyTimeoutException(e);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -183,11 +183,15 @@ public class EsiaAuthService {
|
||||||
}
|
}
|
||||||
|
|
||||||
public void authEsiaTokensByCode(String esiaAuthCode, String state, HttpServletResponse response, HttpServletRequest request) {
|
public void authEsiaTokensByCode(String esiaAuthCode, String state, HttpServletResponse response, HttpServletRequest request) {
|
||||||
|
long startReqTime = System.currentTimeMillis();
|
||||||
|
long startSubReqTime = startReqTime;
|
||||||
String esiaAccessTokenStr = null;
|
String esiaAccessTokenStr = null;
|
||||||
String prnOid = null;
|
String prnOid = null;
|
||||||
Long expiresIn = null;
|
Long expiresIn = null;
|
||||||
long signSecret = 0, requestAccessToken = 0, verifySecret = 0;
|
long signSecret = 0, requestAccessToken = 0, verifySecret = 0;
|
||||||
verifyStateFromCookie(request, state, response);
|
verifyStateFromCookie(request, state, response);
|
||||||
|
LOGGER.info("Thread {} - Verify state from cookie: {} ms", Thread.currentThread().getId(), System.currentTimeMillis() - startSubReqTime);
|
||||||
|
|
||||||
try {
|
try {
|
||||||
String clientId = esiaConfig.getClientId();
|
String clientId = esiaConfig.getClientId();
|
||||||
DateTimeFormatter formatter = DateTimeFormatter.ofPattern("yyyy.MM.dd HH:mm:ss xx");
|
DateTimeFormatter formatter = DateTimeFormatter.ofPattern("yyyy.MM.dd HH:mm:ss xx");
|
||||||
|
|
@ -203,9 +207,9 @@ public class EsiaAuthService {
|
||||||
parameters.put("state", "%s");
|
parameters.put("state", "%s");
|
||||||
parameters.put("redirect_uri", redirectUrl);
|
parameters.put("redirect_uri", redirectUrl);
|
||||||
parameters.put("code", esiaAuthCode);
|
parameters.put("code", esiaAuthCode);
|
||||||
long startTime = System.currentTimeMillis();
|
startSubReqTime = System.currentTimeMillis();
|
||||||
SignResponse signResponse = signMap(parameters);
|
SignResponse signResponse = signMap(parameters);
|
||||||
signSecret = System.currentTimeMillis() - startTime;
|
signSecret = System.currentTimeMillis() - startSubReqTime;
|
||||||
String newState = signResponse.getState();
|
String newState = signResponse.getState();
|
||||||
String clientSecret = signResponse.getSignature();
|
String clientSecret = signResponse.getSignature();
|
||||||
String authUrl = esiaConfig.getEsiaBaseUri() + esiaConfig.getEsiaTokenUrl();
|
String authUrl = esiaConfig.getEsiaBaseUri() + esiaConfig.getEsiaTokenUrl();
|
||||||
|
|
@ -221,7 +225,7 @@ public class EsiaAuthService {
|
||||||
.setParameter("token_type", "Bearer")
|
.setParameter("token_type", "Bearer")
|
||||||
.setParameter("client_certificate_hash", esiaConfig.getClientCertHash())
|
.setParameter("client_certificate_hash", esiaConfig.getClientCertHash())
|
||||||
.toFormUrlencodedString();
|
.toFormUrlencodedString();
|
||||||
startTime = System.currentTimeMillis();
|
startSubReqTime = System.currentTimeMillis();
|
||||||
HttpRequest postReq = HttpRequest.newBuilder(URI.create(authUrl))
|
HttpRequest postReq = HttpRequest.newBuilder(URI.create(authUrl))
|
||||||
.header(HttpHeaders.CONTENT_TYPE, "application/x-www-form-urlencoded")
|
.header(HttpHeaders.CONTENT_TYPE, "application/x-www-form-urlencoded")
|
||||||
.POST(HttpRequest.BodyPublishers.ofString(postBody))
|
.POST(HttpRequest.BodyPublishers.ofString(postBody))
|
||||||
|
|
@ -231,7 +235,7 @@ public class EsiaAuthService {
|
||||||
.connectTimeout(Duration.ofSeconds(esiaConfig.getConnectionTimeout()))
|
.connectTimeout(Duration.ofSeconds(esiaConfig.getConnectionTimeout()))
|
||||||
.build()
|
.build()
|
||||||
.send(postReq, HttpResponse.BodyHandlers.ofString());
|
.send(postReq, HttpResponse.BodyHandlers.ofString());
|
||||||
requestAccessToken = System.currentTimeMillis() - startTime;
|
requestAccessToken = System.currentTimeMillis() - startSubReqTime;
|
||||||
String responseString = postResp.body();
|
String responseString = postResp.body();
|
||||||
EsiaTokenResponse tokenResponse = objectMapper.readValue(responseString,
|
EsiaTokenResponse tokenResponse = objectMapper.readValue(responseString,
|
||||||
EsiaTokenResponse.class
|
EsiaTokenResponse.class
|
||||||
|
|
@ -246,9 +250,9 @@ public class EsiaAuthService {
|
||||||
throw new EsiaException("Token invalid. State from request not equals with state from response.");
|
throw new EsiaException("Token invalid. State from request not equals with state from response.");
|
||||||
}
|
}
|
||||||
esiaAccessTokenStr = tokenResponse.getAccessToken();
|
esiaAccessTokenStr = tokenResponse.getAccessToken();
|
||||||
startTime = System.currentTimeMillis();
|
startSubReqTime = System.currentTimeMillis();
|
||||||
String verifyResult = verifyToken(esiaAccessTokenStr);
|
String verifyResult = verifyToken(esiaAccessTokenStr);
|
||||||
verifySecret = System.currentTimeMillis() - startTime;
|
verifySecret = System.currentTimeMillis() - startSubReqTime;
|
||||||
if (verifyResult != null) {
|
if (verifyResult != null) {
|
||||||
throw new EsiaException(verifyResult);
|
throw new EsiaException(verifyResult);
|
||||||
}
|
}
|
||||||
|
|
@ -282,11 +286,17 @@ public class EsiaAuthService {
|
||||||
}
|
}
|
||||||
finally {
|
finally {
|
||||||
if (personModel != null) {
|
if (personModel != null) {
|
||||||
|
startSubReqTime = System.currentTimeMillis();
|
||||||
auditService.processAuthEvent(
|
auditService.processAuthEvent(
|
||||||
request, personModel, status, AuditConstants.LOGIN_EVENT_TYPE
|
request, personModel, status, AuditConstants.LOGIN_EVENT_TYPE
|
||||||
);
|
);
|
||||||
|
LOGGER.info("Thread {} - Process auth event: {} ms", Thread.currentThread().getId(), System.currentTimeMillis() - startSubReqTime);
|
||||||
}
|
}
|
||||||
|
startSubReqTime = System.currentTimeMillis();
|
||||||
createTokenAndAddCookie(response, prnOid, ervuId, expiresIn);
|
createTokenAndAddCookie(response, prnOid, ervuId, expiresIn);
|
||||||
|
LOGGER.info("Thread {} - Creating token and add cookie: {} ms", Thread.currentThread().getId(), System.currentTimeMillis() - startSubReqTime);
|
||||||
|
|
||||||
|
LOGGER.info("Thread {} - Request time: {} ms", Thread.currentThread().getId(), System.currentTimeMillis() - startReqTime);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue