wvp-pro.git - Gitblit

parent: 6faf7fc9 | 补丁 | 提交 | ignore whitespace

Lawrence

2021-01-11 5de358d38e885505866c4882267c2ab0f2bd4c8d

格式调整

5个文件已修改

	src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java	92 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/java/com/genersoft/iot/vmp/storager/dao/DeviceMapper.java	1 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/resources/application-dev.yml	12 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	src/main/resources/application.yml	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	web_src/src/components/gb28181/devicePlayer.vue	8 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java

@@ -1,28 +1,28 @@
/*
* Conditions Of Use
*
* This software was developed by employees of the National Institute of
* Standards and Technology (NIST), an agency of the Federal Government.
* Pursuant to title 15 Untied States Code Section 105, works of NIST
* employees are not subject to copyright protection in the United States
* and are considered to be in the public domain.  As a result, a formal
* license is not needed to use the software.
*
* This software is provided by NIST as a service and is expressly
* provided "AS IS."  NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
* OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
* AND DATA ACCURACY.  NIST does not warrant or make any representations
* regarding the use of the software or the results thereof, including but
* not limited to the correctness, accuracy, reliability or usefulness of
* the software.
*
* Permission to use this software is contingent upon your acceptance
* of the terms of this agreement
*
* .
*
*/
 * Conditions Of Use
 *
 * This software was developed by employees of the National Institute of
 * Standards and Technology (NIST), an agency of the Federal Government.
 * Pursuant to title 15 Untied States Code Section 105, works of NIST
 * employees are not subject to copyright protection in the United States
 * and are considered to be in the public domain.  As a result, a formal
 * license is not needed to use the software.
 *
 * This software is provided by NIST as a service and is expressly
 * provided "AS IS."  NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
 * OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
 * AND DATA ACCURACY.  NIST does not warrant or make any representations
 * regarding the use of the software or the results thereof, including but
 * not limited to the correctness, accuracy, reliability or usefulness of
 * the software.
 *
 * Permission to use this software is contingent upon your acceptance
 * of the terms of this agreement
 *
 * .
 *
 */
package com.genersoft.iot.vmp.gb28181.auth;

import java.security.MessageDigest;
@@ -42,18 +42,18 @@

/**
 * Implements the HTTP digest authentication method server side functionality.
 * 
 *
 * @author M. Ranganathan
 * @author Marc Bednarek
 */

public class DigestServerAuthenticationHelper  {
    

    private MessageDigest messageDigest;
    

    public static final String DEFAULT_ALGORITHM = "MD5";
    public static final String DEFAULT_SCHEME = "Digest";
    




@@ -63,11 +63,11 @@

    /**
     * Default constructor.
     * @throws NoSuchAlgorithmException 
     * @throws NoSuchAlgorithmException
     */
    public DigestServerAuthenticationHelper() 
        throws NoSuchAlgorithmException {
            messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
    public DigestServerAuthenticationHelper()
            throws NoSuchAlgorithmException {
        messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
    }

    public static String toHexString(byte b[]) {
@@ -79,7 +79,7 @@
        }
        return new String(c);
    }
    

    /**
     * Generate the challenge string.
     *
@@ -121,34 +121,34 @@
     *
     * @param request - the request to authenticate.
     * @param hashedPassword -- the MD5 hashed string of username:realm:plaintext password.
     * 
     *
     * @return true if authentication succeded and false otherwise.
     */
    public boolean doAuthenticateHashedPassword(Request request, String hashedPassword) {
        AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
        AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
        if ( authHeader == null ) return false;
        String realm = authHeader.getRealm();
        String username = authHeader.getUsername();
      

        if ( username == null || realm == null ) {
            return false;
        }
       

        String nonce = authHeader.getNonce();
        URI uri = authHeader.getURI();
        if (uri == null) {
            return false;
        }
        

      


        String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();
        String HA1 = hashedPassword;

       

        byte[] mdbytes = messageDigest.digest(A2.getBytes());
        String HA2 = toHexString(mdbytes);
      

        String cnonce = authHeader.getCNonce();
        String KD = HA1 + ":" + nonce;
        if (cnonce != null) {
@@ -158,7 +158,7 @@
        mdbytes = messageDigest.digest(KD.getBytes());
        String mdString = toHexString(mdbytes);
        String response = authHeader.getResponse();
       


        return mdString.equals(response);
    }
@@ -168,11 +168,11 @@
     *
     * @param request - the request to authenticate.
     * @param pass -- the plain text password.
     * 
     *
     * @return true if authentication succeded and false otherwise.
     */
    public boolean doAuthenticatePlainTextPassword(Request request, String pass) {
        AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
        AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
        if ( authHeader == null ) return false;
        String realm = authHeader.getRealm().trim();
        String username = authHeader.getUsername().trim();
@@ -184,7 +184,7 @@
        String nonce = authHeader.getNonce();
        URI uri = authHeader.getURI();
        if (uri == null) {
           return false;
            return false;
        }
        // qop 保护质量 包含auth（默认的）和auth-int（增加了报文完整性检测）两种策略
        String qop = authHeader.getQop();
@@ -233,6 +233,6 @@
        String response = authHeader.getResponse();
        System.out.println("response: " + response);
        return mdString.equals(response);
        

    }
}

 src/main/java/com/genersoft/iot/vmp/storager/dao/DeviceMapper.java

@@ -43,7 +43,6 @@
            ")")
    int add(Device device);


    @Update(value = {" <script>" +
                "UPDATE device " +
                "SET deviceId='${deviceId}'" +

 src/main/resources/application-dev.yml

@@ -13,12 +13,12 @@
        timeout: 10000
    # [不可用] jdbc数据库配置, 暂不支持
    datasource:
        #        name: eiot
        #        url: jdbc:mysql://127.0.0.1:3306/eiot?useUnicode=true&characterEncoding=UTF8&rewriteBatchedStatements=true
        #        username:
        #        password:
        #        type: com.alibaba.druid.pool.DruidDataSource
        #        driver-class-name: com.mysql.jdbc.Driver
        #name: eiot
        #url: jdbc:mysql://127.0.0.1:3306/eiot?useUnicode=true&characterEncoding=UTF8&rewriteBatchedStatements=true
        #username:
        #password:
        #type: com.alibaba.druid.pool.DruidDataSource
        #driver-class-name: com.mysql.jdbc.Driver
        name: eiot
        url: jdbc:sqlite::resource:wvp.sqlite
        username:

 src/main/resources/application.yml

@@ -1,3 +1,3 @@
spring:
  profiles:
    active: local
    active: dev

 web_src/src/components/gb28181/devicePlayer.vue

@@ -1,6 +1,6 @@
<template>
<div id="devicePlayer" v-loading="isLoging">
    

    <el-dialog title="视频播放" top="0" :close-on-click-modal="false" :visible.sync="showVideoDialog" :destroy-on-close="true" @close="close()">
        <!-- <LivePlayer v-if="showVideoDialog" ref="videoPlayer" :videoUrl="videoUrl" :error="videoError" :message="videoError" :hasaudio="hasaudio" fluent autoplay live></LivePlayer> -->
        <player ref="videoPlayer" :visible.sync="showVideoDialog" :videoUrl="videoUrl" :error="videoError" :message="videoError" :hasaudio="hasaudio" fluent autoplay live></player>
@@ -125,7 +125,7 @@
                                <p>采样率: {{item.sample_rate}}</p>
                            </div>
                        </div>
                        

                    </div>

                </el-tab-pane>
@@ -237,7 +237,7 @@
            console.log(val)
        },
        play: function (streamInfo, hasAudio) {
            

            this.hasaudio = hasAudio;
            this.isLoging = false;
            this.videoUrl = streamInfo.ws_flv;
@@ -319,7 +319,7 @@
            }
            this.convertKey = ''
        },
        

        copySharedInfo: function (data) {
            console.log('复制内容：' + data);
            this.coverPlaying = false;

			@@ -1,28 +1,28 @@
			/*
			* Conditions Of Use
			*
			* This software was developed by employees of the National Institute of
			* Standards and Technology (NIST), an agency of the Federal Government.
			* Pursuant to title 15 Untied States Code Section 105, works of NIST
			* employees are not subject to copyright protection in the United States
			* and are considered to be in the public domain. As a result, a formal
			* license is not needed to use the software.
			*
			* This software is provided by NIST as a service and is expressly
			* provided "AS IS." NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
			* OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
			* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
			* AND DATA ACCURACY. NIST does not warrant or make any representations
			* regarding the use of the software or the results thereof, including but
			* not limited to the correctness, accuracy, reliability or usefulness of
			* the software.
			*
			* Permission to use this software is contingent upon your acceptance
			* of the terms of this agreement
			*
			* .
			*
			*/
			* Conditions Of Use
			*
			* This software was developed by employees of the National Institute of
			* Standards and Technology (NIST), an agency of the Federal Government.
			* Pursuant to title 15 Untied States Code Section 105, works of NIST
			* employees are not subject to copyright protection in the United States
			* and are considered to be in the public domain. As a result, a formal
			* license is not needed to use the software.
			*
			* This software is provided by NIST as a service and is expressly
			* provided "AS IS." NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
			* OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
			* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
			* AND DATA ACCURACY. NIST does not warrant or make any representations
			* regarding the use of the software or the results thereof, including but
			* not limited to the correctness, accuracy, reliability or usefulness of
			* the software.
			*
			* Permission to use this software is contingent upon your acceptance
			* of the terms of this agreement
			*
			* .
			*
			*/
			package com.genersoft.iot.vmp.gb28181.auth;

			import java.security.MessageDigest;
			@@ -42,18 +42,18 @@

			/**
			* Implements the HTTP digest authentication method server side functionality.
			*
			*
			* @author M. Ranganathan
			* @author Marc Bednarek
			*/

			public class DigestServerAuthenticationHelper {


			private MessageDigest messageDigest;


			public static final String DEFAULT_ALGORITHM = "MD5";
			public static final String DEFAULT_SCHEME = "Digest";





			@@ -63,11 +63,11 @@

			/**
			* Default constructor.
			* @throws NoSuchAlgorithmException
			* @throws NoSuchAlgorithmException
			*/
			public DigestServerAuthenticationHelper()
			throws NoSuchAlgorithmException {
			messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
			public DigestServerAuthenticationHelper()
			throws NoSuchAlgorithmException {
			messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
			}

			public static String toHexString(byte b[]) {
			@@ -79,7 +79,7 @@
			}
			return new String(c);
			}


			/**
			* Generate the challenge string.
			*
			@@ -121,34 +121,34 @@
			*
			* @param request - the request to authenticate.
			* @param hashedPassword -- the MD5 hashed string of username:realm:plaintext password.
			*
			*
			* @return true if authentication succeded and false otherwise.
			*/
			public boolean doAuthenticateHashedPassword(Request request, String hashedPassword) {
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			if ( authHeader == null ) return false;
			String realm = authHeader.getRealm();
			String username = authHeader.getUsername();


			if ( username == null \|\| realm == null ) {
			return false;
			}


			String nonce = authHeader.getNonce();
			URI uri = authHeader.getURI();
			if (uri == null) {
			return false;
			}





			String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();
			String HA1 = hashedPassword;



			byte[] mdbytes = messageDigest.digest(A2.getBytes());
			String HA2 = toHexString(mdbytes);


			String cnonce = authHeader.getCNonce();
			String KD = HA1 + ":" + nonce;
			if (cnonce != null) {
			@@ -158,7 +158,7 @@
			mdbytes = messageDigest.digest(KD.getBytes());
			String mdString = toHexString(mdbytes);
			String response = authHeader.getResponse();



			return mdString.equals(response);
			}
			@@ -168,11 +168,11 @@
			*
			* @param request - the request to authenticate.
			* @param pass -- the plain text password.
			*
			*
			* @return true if authentication succeded and false otherwise.
			*/
			public boolean doAuthenticatePlainTextPassword(Request request, String pass) {
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			if ( authHeader == null ) return false;
			String realm = authHeader.getRealm().trim();
			String username = authHeader.getUsername().trim();
			@@ -184,7 +184,7 @@
			String nonce = authHeader.getNonce();
			URI uri = authHeader.getURI();
			if (uri == null) {
			return false;
			return false;
			}
			// qop 保护质量包含auth（默认的）和auth-int（增加了报文完整性检测）两种策略
			String qop = authHeader.getQop();
			@@ -233,6 +233,6 @@
			String response = authHeader.getResponse();
			System.out.println("response: " + response);
			return mdString.equals(response);


			}
			}

			@@ -43,7 +43,6 @@
			")")
			int add(Device device);


			@Update(value = {" <script>" +
			"UPDATE device " +
			"SET deviceId='${deviceId}'" +

			@@ -13,12 +13,12 @@
			timeout: 10000
			# [不可用] jdbc数据库配置, 暂不支持
			datasource:
			# name: eiot
			# url: jdbc:mysql://127.0.0.1:3306/eiot?useUnicode=true&characterEncoding=UTF8&rewriteBatchedStatements=true
			# username:
			# password:
			# type: com.alibaba.druid.pool.DruidDataSource
			# driver-class-name: com.mysql.jdbc.Driver
			#name: eiot
			#url: jdbc:mysql://127.0.0.1:3306/eiot?useUnicode=true&characterEncoding=UTF8&rewriteBatchedStatements=true
			#username:
			#password:
			#type: com.alibaba.druid.pool.DruidDataSource
			#driver-class-name: com.mysql.jdbc.Driver
			name: eiot
			url: jdbc:sqlite::resource:wvp.sqlite
			username:

			@@ -1,6 +1,6 @@
			<template>
			<div id="devicePlayer" v-loading="isLoging">


			<el-dialog title="视频播放" top="0" :close-on-click-modal="false" :visible.sync="showVideoDialog" :destroy-on-close="true" @close="close()">
			<!-- <LivePlayer v-if="showVideoDialog" ref="videoPlayer" :videoUrl="videoUrl" :error="videoError" :message="videoError" :hasaudio="hasaudio" fluent autoplay live></LivePlayer> -->
			<player ref="videoPlayer" :visible.sync="showVideoDialog" :videoUrl="videoUrl" :error="videoError" :message="videoError" :hasaudio="hasaudio" fluent autoplay live></player>
			@@ -125,7 +125,7 @@
			<p>采样率: {{item.sample_rate}}</p>
			</div>
			</div>


			</div>

			</el-tab-pane>
			@@ -237,7 +237,7 @@
			console.log(val)
			},
			play: function (streamInfo, hasAudio) {


			this.hasaudio = hasAudio;
			this.isLoging = false;
			this.videoUrl = streamInfo.ws_flv;
			@@ -319,7 +319,7 @@
			}
			this.convertKey = ''
			},


			copySharedInfo: function (data) {
			console.log('复制内容：' + data);
			this.coverPlaying = false;