fix bugs

blade-starter-auth/pom.xml

@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <artifactId>BladeX-Tool</artifactId>
+        <groupId>org.springblade</groupId>
+        <version>${revision}</version>
+    </parent>
+
+    <artifactId>blade-starter-auth</artifactId>
+    <name>${project.artifactId}</name>
+    <version>${project.parent.version}</version>
+    <packaging>jar</packaging>
+
+    <dependencies>
+        <!--Blade-->
+        <dependency>
+            <groupId>org.springblade</groupId>
+            <artifactId>blade-core-tool</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springblade</groupId>
+            <artifactId>blade-starter-jwt</artifactId>
+        </dependency>
+    </dependencies>
+
+</project>

blade-starter-auth/src/main/java/org/springblade/core/secure/AuthInfo.java

@@ -0,0 +1,55 @@
+/**
+ * BladeX Commercial License Agreement
+ * Copyright (c) 2018-2099, https://bladex.cn. All rights reserved.
+ * <p>
+ * Use of this software is governed by the Commercial License Agreement
+ * obtained after purchasing a license from BladeX.
+ * <p>
+ * 1. This software is for development use only under a valid license
+ * from BladeX.
+ * <p>
+ * 2. Redistribution of this software's source code to any third party
+ * without a commercial license is strictly prohibited.
+ * <p>
+ * 3. Licensees may copyright their own code but cannot use segments
+ * from this software for such purposes. Copyright of this software
+ * remains with BladeX.
+ * <p>
+ * Using this software signifies agreement to this License, and the software
+ * must not be used for illegal purposes.
+ * <p>
+ * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY. The author is
+ * not liable for any claims arising from secondary or illegal development.
+ * <p>
+ * Author: Chill Zhuang (bladejava@qq.com)
+ */
+package org.springblade.core.secure;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import lombok.Data;
+
+/**
+ * AuthInfo
+ *
+ * @author Chill
+ */
+@Data
+@Schema(description = "认证信息")
+public class AuthInfo {
+	@Schema(description = "令牌")
+	private String accessToken;
+	@Schema(description = "令牌类型")
+	private String tokenType;
+	@Schema(description = "头像")
+	private String avatar = "https://bladex.cn/images/logo.png";
+	@Schema(description = "角色名")
+	private String authority;
+	@Schema(description = "用户名")
+	private String userName;
+	@Schema(description = "账号名")
+	private String account;
+	@Schema(description = "过期时间")
+	private long expiresIn;
+	@Schema(description = "许可证")
+	private String license = "powered by bladex";
+}

blade-starter-auth/src/main/java/org/springblade/core/secure/BladeUser.java

@@ -0,0 +1,109 @@
+/**
+ * BladeX Commercial License Agreement
+ * Copyright (c) 2018-2099, https://bladex.cn. All rights reserved.
+ * <p>
+ * Use of this software is governed by the Commercial License Agreement
+ * obtained after purchasing a license from BladeX.
+ * <p>
+ * 1. This software is for development use only under a valid license
+ * from BladeX.
+ * <p>
+ * 2. Redistribution of this software's source code to any third party
+ * without a commercial license is strictly prohibited.
+ * <p>
+ * 3. Licensees may copyright their own code but cannot use segments
+ * from this software for such purposes. Copyright of this software
+ * remains with BladeX.
+ * <p>
+ * Using this software signifies agreement to this License, and the software
+ * must not be used for illegal purposes.
+ * <p>
+ * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY. The author is
+ * not liable for any claims arising from secondary or illegal development.
+ * <p>
+ * Author: Chill Zhuang (bladejava@qq.com)
+ */
+package org.springblade.core.secure;
+
+import io.swagger.v3.oas.annotations.Hidden;
+import io.swagger.v3.oas.annotations.media.Schema;
+import lombok.Data;
+import org.springblade.core.tool.support.Kv;
+
+import java.io.Serial;
+import java.io.Serializable;
+
+/**
+ * 用户实体
+ *
+ * @author Chill
+ */
+@Data
+@Hidden
+public class BladeUser implements Serializable {
+
+	@Serial
+	private static final long serialVersionUID = 1L;
+	/**
+	 * 客户端id
+	 */
+	@Schema(hidden = true)
+	private String clientId;
+
+	/**
+	 * 用户id
+	 */
+	@Schema(hidden = true)
+	private Long userId;
+	/**
+	 * 账号
+	 */
+	@Schema(hidden = true)
+	private String account;
+	/**
+	 * 用户名
+	 */
+	@Schema(hidden = true)
+	private String userName;
+	/**
+	 * 昵称
+	 */
+	@Schema(hidden = true)
+	private String nickName;
+	/**
+	 * 租户ID
+	 */
+	@Schema(hidden = true)
+	private String tenantId;
+	/**
+	 * 第三方认证ID
+	 */
+	@Schema(hidden = true)
+	private String oauthId;
+	/**
+	 * 部门id
+	 */
+	@Schema(hidden = true)
+	private String deptId;
+	/**
+	 * 岗位id
+	 */
+	@Schema(hidden = true)
+	private String postId;
+	/**
+	 * 角色id
+	 */
+	@Schema(hidden = true)
+	private String roleId;
+	/**
+	 * 角色名
+	 */
+	@Schema(hidden = true)
+	private String roleName;
+	/**
+	 * 用户详情
+	 */
+	@Schema(hidden = true)
+	private Kv detail;
+
+}

blade-starter-auth/src/main/java/org/springblade/core/secure/TokenInfo.java

@@ -0,0 +1,48 @@
+/**
+ * BladeX Commercial License Agreement
+ * Copyright (c) 2018-2099, https://bladex.cn. All rights reserved.
+ * <p>
+ * Use of this software is governed by the Commercial License Agreement
+ * obtained after purchasing a license from BladeX.
+ * <p>
+ * 1. This software is for development use only under a valid license
+ * from BladeX.
+ * <p>
+ * 2. Redistribution of this software's source code to any third party
+ * without a commercial license is strictly prohibited.
+ * <p>
+ * 3. Licensees may copyright their own code but cannot use segments
+ * from this software for such purposes. Copyright of this software
+ * remains with BladeX.
+ * <p>
+ * Using this software signifies agreement to this License, and the software
+ * must not be used for illegal purposes.
+ * <p>
+ * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY. The author is
+ * not liable for any claims arising from secondary or illegal development.
+ * <p>
+ * Author: Chill Zhuang (bladejava@qq.com)
+ */
+package org.springblade.core.secure;
+
+import lombok.Data;
+
+/**
+ * TokenInfo
+ *
+ * @author Chill
+ */
+@Data
+public class TokenInfo {
+
+	/**
+	 * 令牌值
+	 */
+	private String token;
+
+	/**
+	 * 过期秒数
+	 */
+	private int expire;
+
+}

blade-starter-auth/src/main/java/org/springblade/core/secure/exception/SecureException.java

@@ -0,0 +1,65 @@
+/**
+ * BladeX Commercial License Agreement
+ * Copyright (c) 2018-2099, https://bladex.cn. All rights reserved.
+ * <p>
+ * Use of this software is governed by the Commercial License Agreement
+ * obtained after purchasing a license from BladeX.
+ * <p>
+ * 1. This software is for development use only under a valid license
+ * from BladeX.
+ * <p>
+ * 2. Redistribution of this software's source code to any third party
+ * without a commercial license is strictly prohibited.
+ * <p>
+ * 3. Licensees may copyright their own code but cannot use segments
+ * from this software for such purposes. Copyright of this software
+ * remains with BladeX.
+ * <p>
+ * Using this software signifies agreement to this License, and the software
+ * must not be used for illegal purposes.
+ * <p>
+ * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY. The author is
+ * not liable for any claims arising from secondary or illegal development.
+ * <p>
+ * Author: Chill Zhuang (bladejava@qq.com)
+ */
+package org.springblade.core.secure.exception;
+
+import lombok.Getter;
+import org.springblade.core.tool.api.IResultCode;
+import org.springblade.core.tool.api.ResultCode;
+
+import java.io.Serial;
+
+/**
+ * Secure异常
+ *
+ * @author Chill
+ */
+public class SecureException extends RuntimeException {
+	@Serial
+	private static final long serialVersionUID = 1L;
+
+	@Getter
+	private final IResultCode resultCode;
+
+	public SecureException(String message) {
+		super(message);
+		this.resultCode = ResultCode.UN_AUTHORIZED;
+	}
+
+	public SecureException(IResultCode resultCode) {
+		super(resultCode.getMessage());
+		this.resultCode = resultCode;
+	}
+
+	public SecureException(IResultCode resultCode, Throwable cause) {
+		super(cause);
+		this.resultCode = resultCode;
+	}
+
+	@Override
+	public Throwable fillInStackTrace() {
+		return this;
+	}
+}

blade-starter-auth/src/main/java/org/springblade/core/secure/utils/AuthUtil.java

@@ -0,0 +1,518 @@
+/**
+ * BladeX Commercial License Agreement
+ * Copyright (c) 2018-2099, https://bladex.cn. All rights reserved.
+ * <p>
+ * Use of this software is governed by the Commercial License Agreement
+ * obtained after purchasing a license from BladeX.
+ * <p>
+ * 1. This software is for development use only under a valid license
+ * from BladeX.
+ * <p>
+ * 2. Redistribution of this software's source code to any third party
+ * without a commercial license is strictly prohibited.
+ * <p>
+ * 3. Licensees may copyright their own code but cannot use segments
+ * from this software for such purposes. Copyright of this software
+ * remains with BladeX.
+ * <p>
+ * Using this software signifies agreement to this License, and the software
+ * must not be used for illegal purposes.
+ * <p>
+ * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY. The author is
+ * not liable for any claims arising from secondary or illegal development.
+ * <p>
+ * Author: Chill Zhuang (bladejava@qq.com)
+ */
+package org.springblade.core.secure.utils;
+
+import io.jsonwebtoken.Claims;
+import org.springblade.core.jwt.JwtCrypto;
+import org.springblade.core.jwt.JwtUtil;
+import org.springblade.core.jwt.props.JwtProperties;
+import org.springblade.core.launch.constant.TokenConstant;
+import org.springblade.core.launch.props.BladeProperties;
+import org.springblade.core.secure.BladeUser;
+import org.springblade.core.tool.constant.RoleConstant;
+import org.springblade.core.tool.support.Kv;
+import org.springblade.core.tool.utils.*;
+
+import jakarta.servlet.http.HttpServletRequest;
+
+import java.util.Map;
+import java.util.Objects;
+
+import static org.springblade.core.jwt.JwtCrypto.BLADE_TOKEN_CRYPTO_KEY;
+
+/**
+ * Auth工具类
+ *
+ * @author Chill
+ */
+public class AuthUtil {
+	private static final String BLADE_USER_REQUEST_ATTR = "_BLADE_USER_REQUEST_ATTR_";
+	private final static String BLADE_SECURE_HEADER_KEY = "Blade-Requested-With";
+	private final static String BLADE_SECURE_HEADER_VALUE = "BladeHttpRequest";
+	private final static String HEADER = TokenConstant.HEADER;
+	private final static String ACCOUNT = TokenConstant.ACCOUNT;
+	private final static String USER_NAME = TokenConstant.USER_NAME;
+	private final static String NICK_NAME = TokenConstant.NICK_NAME;
+	private final static String USER_ID = TokenConstant.USER_ID;
+	private final static String DEPT_ID = TokenConstant.DEPT_ID;
+	private final static String POST_ID = TokenConstant.POST_ID;
+	private final static String ROLE_ID = TokenConstant.ROLE_ID;
+	private final static String ROLE_NAME = TokenConstant.ROLE_NAME;
+	private final static String TENANT_ID = TokenConstant.TENANT_ID;
+	private final static String OAUTH_ID = TokenConstant.OAUTH_ID;
+	private final static String CLIENT_ID = TokenConstant.CLIENT_ID;
+	private final static String DETAIL = TokenConstant.DETAIL;
+
+	private static BladeProperties bladeProperties;
+	private static JwtProperties jwtProperties;
+
+	/**
+	 * 获取配置类
+	 *
+	 * @return jwtProperties
+	 */
+	private static BladeProperties getBladeProperties() {
+		if (bladeProperties == null) {
+			bladeProperties = SpringUtil.getBean(BladeProperties.class);
+		}
+		return bladeProperties;
+	}
+
+	private static JwtProperties getJwtProperties() {
+		if (jwtProperties == null) {
+			jwtProperties = SpringUtil.getBean(JwtProperties.class);
+		}
+		return jwtProperties;
+	}
+
+	/**
+	 * 获取用户信息
+	 *
+	 * @return BladeUser
+	 */
+	public static BladeUser getUser() {
+		HttpServletRequest request = WebUtil.getRequest();
+		if (request == null) {
+			return null;
+		}
+		// 优先从 request 中获取
+		Object bladeUser = request.getAttribute(BLADE_USER_REQUEST_ATTR);
+		if (bladeUser == null) {
+			bladeUser = getUser(request);
+			if (bladeUser != null) {
+				// 设置到 request 中
+				request.setAttribute(BLADE_USER_REQUEST_ATTR, bladeUser);
+			}
+		}
+		return (BladeUser) bladeUser;
+	}
+
+	/**
+	 * 获取用户信息
+	 *
+	 * @param request request
+	 * @return BladeUser
+	 */
+	@SuppressWarnings("unchecked")
+	public static BladeUser getUser(HttpServletRequest request) {
+		Claims claims = getClaims(request);
+		if (claims == null) {
+			return null;
+		}
+		String clientId = Func.toStr(claims.get(AuthUtil.CLIENT_ID));
+		Long userId = Func.toLong(claims.get(AuthUtil.USER_ID));
+		String tenantId = Func.toStr(claims.get(AuthUtil.TENANT_ID));
+		String oauthId = Func.toStr(claims.get(AuthUtil.OAUTH_ID));
+		String deptId = Func.toStrWithEmpty(claims.get(AuthUtil.DEPT_ID), StringPool.MINUS_ONE);
+		String postId = Func.toStrWithEmpty(claims.get(AuthUtil.POST_ID), StringPool.MINUS_ONE);
+		String roleId = Func.toStrWithEmpty(claims.get(AuthUtil.ROLE_ID), StringPool.MINUS_ONE);
+		String account = Func.toStr(claims.get(AuthUtil.ACCOUNT));
+		String roleName = Func.toStr(claims.get(AuthUtil.ROLE_NAME));
+		String userName = Func.toStr(claims.get(AuthUtil.USER_NAME));
+		String nickName = Func.toStr(claims.get(AuthUtil.NICK_NAME));
+		Kv detail = Kv.create().setAll((Map<? extends String, ?>) claims.get(AuthUtil.DETAIL));
+		BladeUser bladeUser = new BladeUser();
+		bladeUser.setClientId(clientId);
+		bladeUser.setUserId(userId);
+		bladeUser.setTenantId(tenantId);
+		bladeUser.setOauthId(oauthId);
+		bladeUser.setAccount(account);
+		bladeUser.setDeptId(deptId);
+		bladeUser.setPostId(postId);
+		bladeUser.setRoleId(roleId);
+		bladeUser.setRoleName(roleName);
+		bladeUser.setUserName(userName);
+		bladeUser.setNickName(nickName);
+		bladeUser.setDetail(detail);
+		return bladeUser;
+	}
+
+	/**
+	 * 是否为超管
+	 *
+	 * @return boolean
+	 */
+	public static boolean isAdministrator() {
+		return StringUtil.containsAny(getUserRole(), RoleConstant.ADMINISTRATOR);
+	}
+
+	/**
+	 * 是否为管理员
+	 *
+	 * @return boolean
+	 */
+	public static boolean isAdmin() {
+		return StringUtil.containsAny(getUserRole(), RoleConstant.ADMIN);
+	}
+
+	/**
+	 * 获取用户id
+	 *
+	 * @return userId
+	 */
+	public static Long getUserId() {
+		BladeUser user = getUser();
+		return (null == user) ? -1 : user.getUserId();
+	}
+
+	/**
+	 * 获取用户id
+	 *
+	 * @param request request
+	 * @return userId
+	 */
+	public static Long getUserId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? -1 : user.getUserId();
+	}
+
+	/**
+	 * 获取用户账号
+	 *
+	 * @return userAccount
+	 */
+	public static String getUserAccount() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getAccount();
+	}
+
+	/**
+	 * 获取用户账号
+	 *
+	 * @param request request
+	 * @return userAccount
+	 */
+	public static String getUserAccount(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getAccount();
+	}
+
+	/**
+	 * 获取用户名
+	 *
+	 * @return userName
+	 */
+	public static String getUserName() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getUserName();
+	}
+
+	/**
+	 * 获取用户名
+	 *
+	 * @param request request
+	 * @return userName
+	 */
+	public static String getUserName(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getUserName();
+	}
+
+	/**
+	 * 获取昵称
+	 *
+	 * @return userName
+	 */
+	public static String getNickName() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getNickName();
+	}
+
+	/**
+	 * 获取昵称
+	 *
+	 * @param request request
+	 * @return userName
+	 */
+	public static String getNickName(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getNickName();
+	}
+
+	/**
+	 * 获取用户部门
+	 *
+	 * @return userName
+	 */
+	public static String getDeptId() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getDeptId();
+	}
+
+	/**
+	 * 获取用户部门
+	 *
+	 * @param request request
+	 * @return userName
+	 */
+	public static String getDeptId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getDeptId();
+	}
+
+	/**
+	 * 获取用户岗位
+	 *
+	 * @return userName
+	 */
+	public static String getPostId() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getPostId();
+	}
+
+	/**
+	 * 获取用户岗位
+	 *
+	 * @param request request
+	 * @return userName
+	 */
+	public static String getPostId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getPostId();
+	}
+
+	/**
+	 * 获取用户角色
+	 *
+	 * @return userName
+	 */
+	public static String getUserRole() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getRoleName();
+	}
+
+	/**
+	 * 获取用角色
+	 *
+	 * @param request request
+	 * @return userName
+	 */
+	public static String getUserRole(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getRoleName();
+	}
+
+	/**
+	 * 获取租户ID
+	 *
+	 * @return tenantId
+	 */
+	public static String getTenantId() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getTenantId();
+	}
+
+	/**
+	 * 获取租户ID
+	 *
+	 * @param request request
+	 * @return tenantId
+	 */
+	public static String getTenantId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getTenantId();
+	}
+
+	/**
+	 * 获取第三方认证ID
+	 *
+	 * @return tenantId
+	 */
+	public static String getOauthId() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getOauthId();
+	}
+
+	/**
+	 * 获取第三方认证ID
+	 *
+	 * @param request request
+	 * @return tenantId
+	 */
+	public static String getOauthId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getOauthId();
+	}
+
+	/**
+	 * 获取客户端id
+	 *
+	 * @return clientId
+	 */
+	public static String getClientId() {
+		BladeUser user = getUser();
+		return (null == user) ? StringPool.EMPTY : user.getClientId();
+	}
+
+	/**
+	 * 获取客户端id
+	 *
+	 * @param request request
+	 * @return clientId
+	 */
+	public static String getClientId(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? StringPool.EMPTY : user.getClientId();
+	}
+
+	/**
+	 * 获取用户详情
+	 *
+	 * @return clientId
+	 */
+	public static Kv getDetail() {
+		BladeUser user = getUser();
+		return (null == user) ? Kv.create() : user.getDetail();
+	}
+
+	/**
+	 * 获取用户详情
+	 *
+	 * @param request request
+	 * @return clientId
+	 */
+	public static Kv getDetail(HttpServletRequest request) {
+		BladeUser user = getUser(request);
+		return (null == user) ? Kv.create() : user.getDetail();
+	}
+
+	/**
+	 * 用户信息是否缺失
+	 *
+	 * @return boolean
+	 */
+	public static boolean userIncomplete() {
+		return userIncomplete(Objects.requireNonNull(getUser()));
+	}
+
+	/**
+	 * 用户信息是否缺失
+	 *
+	 * @param user user
+	 * @return boolean
+	 */
+	public static boolean userIncomplete(BladeUser user) {
+		if (Func.isEmpty(user)) {
+			return true;
+		}
+		if (Func.hasEmpty(user.getUserId(),
+			user.getAccount(),
+			user.getTenantId(),
+			user.getClientId(),
+			user.getDeptId(),
+			user.getRoleId())) {
+			return true;
+		}
+		return NumberUtil.toLong(String.valueOf(user.getUserId()), -1L) < 0
+			|| NumberUtil.toLong(user.getDeptId(), -1L) < 0
+			|| NumberUtil.toLong(user.getRoleId(), -1L) < 0;
+	}
+
+	/**
+	 * 不包含安全请求头
+	 *
+	 * @return boolean
+	 */
+	public static boolean secureHeaderIncomplete() {
+		HttpServletRequest request = WebUtil.getRequest();
+		String value = Objects.requireNonNull(request).getHeader(BLADE_SECURE_HEADER_KEY);
+		return !StringUtil.equals(BLADE_SECURE_HEADER_VALUE, value);
+	}
+
+	/**
+	 * 获取Claims
+	 *
+	 * @param request request
+	 * @return Claims
+	 */
+	public static Claims getClaims(HttpServletRequest request) {
+		// 获取 Token 参数
+		String auth = request.getHeader(AuthUtil.HEADER);
+		String token = getToken(
+			StringUtil.isNotBlank(auth) ? auth : request.getParameter(AuthUtil.HEADER)
+		);
+		// 获取 Token 值
+		Claims claims = null;
+		if (StringUtil.isNotBlank(token)) {
+			claims = AuthUtil.parseJWT(token);
+		}
+		// 判断 Token 状态
+		if (ObjectUtil.isNotEmpty(claims) && getJwtProperties().getState()) {
+			String tenantId = Func.toStr(claims.get(AuthUtil.TENANT_ID));
+			String clientId = Func.toStr(claims.get(AuthUtil.CLIENT_ID));
+			String userId = Func.toStr(claims.get(AuthUtil.USER_ID));
+			String accessToken = JwtUtil.getAccessToken(tenantId, clientId, userId, token);
+			if (!token.equalsIgnoreCase(accessToken)) {
+				return null;
+			}
+		}
+		return claims;
+	}
+
+	/**
+	 * 获取请求头
+	 *
+	 * @return header
+	 */
+	public static String getHeader() {
+		return getHeader(Objects.requireNonNull(WebUtil.getRequest()));
+	}
+
+	/**
+	 * 获取请求头
+	 *
+	 * @param request request
+	 * @return header
+	 */
+	public static String getHeader(HttpServletRequest request) {
+		return request.getHeader(HEADER);
+	}
+
+	/**
+	 * 解析jsonWebToken
+	 *
+	 * @param jsonWebToken jsonWebToken
+	 * @return Claims
+	 */
+	public static Claims parseJWT(String jsonWebToken) {
+		return JwtUtil.parseJWT(jsonWebToken);
+	}
+
+	/**
+	 * 获取Token
+	 *
+	 * @param auth 认证串
+	 * @return string
+	 */
+	public static String getToken(String auth) {
+		String token = JwtUtil.getToken(auth);
+		if (JwtUtil.isCrypto(auth)) {
+			token = JwtCrypto.decryptToString(token, getBladeProperties().getEnvironment().getProperty(BLADE_TOKEN_CRYPTO_KEY));
+		}
+		return token;
+	}
+
+}