文件加密、解密、优化

server/api/v1/system/app_file.go

@@ -6,6 +6,8 @@ import (
 	"go.uber.org/zap"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/credentials/insecure"
+	"io/ioutil"
+	"net/http"
 	"os"
 	"path"
 	"path/filepath"
@@ -54,6 +56,7 @@ func (b *FileApi) Upload(c *gin.Context) {
 	// 获取表单字段的值
 	categoryName := c.PostForm("categoryName")
 	str := c.PostForm("authId")
+	iv := c.PostForm("iv")
 	authId := strings.Replace(str, ",", "", -1)
 	// 获取上传的文件
 	file, err := c.FormFile("file")
@@ -69,15 +72,20 @@ func (b *FileApi) Upload(c *gin.Context) {
 	fileNameStr := strconv.FormatInt(fileNameInt, 10)
 	//新的文件名
 	newfileName := fileNameStr + sufx
-	_, err = os.Stat("uploadfiles")
+
+	currentDir, _ := os.Getwd()
+	parentDir := filepath.Dir(currentDir)
+	folderPath := filepath.Join(parentDir, "uploadfiles")
+
+	_, err = os.Stat(folderPath)
 	if os.IsNotExist(err) {
-		os.Mkdir("./uploadfiles", os.ModePerm)
+		os.Mkdir(folderPath, os.ModePerm)
 	}
 	//保存文件
-	filePath := filepath.Join("uploadfiles", "/", newfileName)
+	filePath := filepath.Join(folderPath, "/", newfileName)
 	c.SaveUploadedFile(file, filePath)
 
-	savePath := "uploadfiles/" + newfileName
+	savePath := "/uploadfiles/" + newfileName
 	currentTimeValue := time.Now()
 	err = fileService.Upload(system.File{
 		OriginalName:  strings.TrimSuffix(file.Filename, filepath.Ext(file.Filename)),
@@ -89,6 +97,7 @@ func (b *FileApi) Upload(c *gin.Context) {
 		UploadTime:    &currentTimeValue,
 		Uploader:      int(id),
 		Icon:          strings.TrimPrefix(path.Ext(file.Filename), ".") + ".png",
+		Iv:            iv,
 	})
 	if err != nil {
 		global.GVA_LOG.Error("上传失败!", zap.Error(err))
@@ -208,3 +217,23 @@ func (b *FileApi) Distribute(c *gin.Context) {
 	}
 	response.OkWithMessage("下发成功", c)
 }
+
+func (b *FileApi) View(c *gin.Context) {
+	var reqId request.GetById
+	err := c.ShouldBindJSON(&reqId)
+	if err != nil {
+		response.FailWithMessage(err.Error(), c)
+		return
+	}
+	file, err := fileService.View(reqId.ID)
+	if err != nil {
+		global.GVA_LOG.Error("查找失败!", zap.Error(err))
+		response.FailWithMessage(err.Error(), c)
+		return
+	}
+	currentDir, _ := os.Getwd()
+	parentDir := filepath.Dir(currentDir)
+	data, _ := ioutil.ReadFile(parentDir + file.SavePath)
+	c.Data(http.StatusOK, "application/octet-stream", data)
+
+}

server/build.bat

@@ -0,0 +1,3 @@
+set GOARCH=amd64
+set GOOS=linux
+go build -o build/veterans_admin ./

server/go.sum

@@ -224,6 +224,7 @@ github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
 github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=

server/model/system/app_file.go

@@ -7,7 +7,7 @@ type File struct {
 	ID            int        `gorm:"primary_key;type:int" json:"id"`                     //编号
 	OriginalName  string     `gorm:"type:varchar(45)" json:"originalName"`               //文件原始名
 	EncryptedName string     `gorm:"type:varchar(45)" json:"encryptedName"`              //文件加密名
-	SavePath      string     `gorm:"type:varchar(45)" json:"savePath"`                   //保存路径
+	SavePath      string     `gorm:"type:varchar(191)" json:"savePath"`                  //保存路径
 	CategoryName  string     `gorm:"type:varchar(12)" json:"categoryName"`               //文件类别名
 	AuthId        string     `gorm:"type:varchar(12);default:'100'" json:"authId"`       //权限id
 	SuffixName    string     `gorm:"type:varchar(12)" json:"suffixName"`                 //文件后缀名
@@ -15,6 +15,7 @@ type File struct {
 	Uploader      int        `gorm:"type:int" json:"uploader"`                           //上传者id
 	IsShowed      int        `gorm:"type:int;default:0" json:"isShowed"`                 //是否展示 0=展示,1=不展示
 	Icon          string     `gorm:"type:varchar(191)" json:"icon"`                      //文件图标
+	Iv            string     `gorm:"type:varchar(191)" json:"iv"`                        //加密文件的偏向量
 	IsDeleted     int        `gorm:"type:int;default:0" json:"isDeleted"`                //是否删除 0=未删除,1=删除
 	SysUser       SysUser    `json:"sysUser" gorm:"foreignKey:Uploader;references:ID;comment:文件上传者"`
 }

server/router/system/app_file.go

@@ -19,6 +19,7 @@ func (s *FileRouter) InitFileRouter(Router *gin.RouterGroup) {
 		fileRouter.PUT("deletbasefile", baseApi.DeleteBaseFile) //撤销文件
 		fileRouter.POST("getdepts", deptApi.GetDepts)           //获取下发的部门
 		fileRouter.POST("distribute", baseApi.Distribute)       //下发文件
+		fileRouter.POST("preview", baseApi.View)                //预览文件
 	}
 	{
 		fileRouterWithoutRecord.POST("getfilelist", baseApi.GetFileList) //获取文件列表

server/service/system/app_file.go

@@ -1,8 +1,6 @@
 package system
 
 import (
-	"errors"
-	"gorm.io/gorm"
 	"server/global"
 	"server/model/system"
 	"server/model/system/request"
@@ -36,10 +34,10 @@ func (fileService *FileService) GetFileInfoList(info request.SearchAppFileParams
 }
 
 func (fileService *FileService) Upload(f system.File) (err error) {
-	var file system.File
-	if !errors.Is(global.GVA_DB.Where("encrypted_name = ?", f.EncryptedName).First(&file).Error, gorm.ErrRecordNotFound) {
-		return errors.New("该文件已存在")
-	}
+	//var file system.File
+	//if !errors.Is(global.GVA_DB.Where("encrypted_name = ?", f.EncryptedName).First(&file).Error, gorm.ErrRecordNotFound) {
+	//	return errors.New("该文件已存在")
+	//}
 	err = global.GVA_DB.Create(&f).Error
 	return err
 }
@@ -65,3 +63,9 @@ func (fileService *FileService) Distribute(userfile []request.UserFile) error {
 	err := global.GVA_DB.Model(&request.UserFile{}).Create(&userfile).Error
 	return err
 }
+
+func (fileService *FileService) View(id int) (*system.File, error) {
+	var file system.File
+	err := global.GVA_DB.Model(&system.File{}).Where("id=?", id).First(&file).Error
+	return &file, err
+}

server/uploadfiles/1717137002.txt

@@ -1 +0,0 @@
-U2FsdGVkX1+mGCiAOAdr0Povl0egjMU/MgZ6+L/216IXCpW1WGRLeWW0OkPmqtxP3Uv2We6qOuUlT1npoUI/tN2tnqgRQgEWQ7KUoXDwGlxYn5RqV/ZLBg8vOYC3pnrDxgFlwgYTBeZYUzjiiau5G3LGiha0++E5rTlg4OKZN0CpYdvBOuKURoMjXQmskLyQ0LG7dURgJ22o53J5qRA8Zvlq7Y/AtkdEUV01prB8hTwZ/nl5vSCbs4c2CWycRPZSBiIPzTxkaBmCLMH486rx/QjxbcuPpCWI/vyD55L88UQ31QanZxrPrF7BOCgnBJfLQdJqyLKNtwCY479zWjbGb3nUUSGAPn3HgDDXlgJaJ0zwqN8LA5tfyNxQaJJpbvE9l7kBQatCVcM7Yx9gsV326GjM6kvckrHvU0EqVnzLY0hhDWDDJ9C4MbwMQZc/yXQN8nF+r5ykB8mcMqp6R6VcB0Cik42NEcpEE1A2+hmHink=

server/uploadfiles/1717551356.txt

@@ -1 +0,0 @@
-U2FsdGVkX1+wDWUv6njIcQ5Qbgyo0ZZ7ofqs4lnXXjCoLISCOsCZrhtn2FoEsqgBrUgW+jOrMIiDvUpuowbfLRAC7hwRX/Bk4nQ0ivkFXUM6uY3Ul6SPeMJXlSR1zFANltXnhCpr2sib3r7E0SGLb2CogmLkcf7rdLYBoN31qxUTmWQB/n80IHrJvDkfEQZuRe/KbOHP+xv/RL/zjCNwLbN8s+pl/brH3UabEEKAcWT5Uhn9JHpfguvuF5U5VWg/5qbQ5Xz7HDPNOQYqoAvRSyykpUqFSRoO/q/T5RiRiqw1fyw3sbjuyDvTNKxEjLIB/t6eHptxzt7rRH9zEQ6oZKlveLFcC5Wm3bhS2UjmPXnfXAC/FcMRrTlA/yafthb/pBcJ+1X7oyc5bXBvURPdfYJe/5QmAzPremVkXpOblITwRoPm1Jw4nH36Ub8ZeBwVdrJcp87BQ3AI+l7iaoOmYY04zrS8RXtIBa2qgB3GW+o=

server/uploadfiles/1717551377.txt

@@ -1 +0,0 @@
-U2FsdGVkX1/vrQYpDDzt2n3ApUb1Fe+YUie04fLDnB8=

uploadfiles/1718271900.txt

@@ -0,0 +1 @@
+4Àö̳Fñ9³å¸ÉTuGä—¨5Ì�!ÒTÃt3*'e@̵eOÖµ
õEµßþ

web/src/api/appfile.js

@@ -13,6 +13,15 @@ export const uploadfile = (formdata) =>{
         }
     })
 }
+//预览文件
+export const previewfile = (data) =>{
+    return axios({
+        url: "http://localhost:8080/api/appfile/preview",
+        method: 'post',
+        data: data,
+        responseType: 'arraybuffer'
+    })
+}
 
 //获取文件列表
 export const getFileList = (data) => {

web/src/view/superAdmin/file/file.vue

@@ -52,7 +52,7 @@
         row-key="id"
         border
     >
-      <el-table-column prop="id" label="ID" />
+      <el-table-column prop="id" label="ID" width="200" />
       <el-table-column prop="icon" label="图标"  width="100">
         <template #default="scope">
           <el-image style="width: 50px;height: 50px;" :src="'http://localhost:8888/form-generator/icons/'+scope.row.icon"></el-image>
@@ -74,10 +74,16 @@
           align="left"
           fixed="right"
           label="操作"
-          width="300"
+          width="340"
       >
         <template #default="scope">
           <el-button type="primary" :icon="Share" @click="xiafa(scope.row)">下发</el-button>
+          <el-button
+              type="primary"
+              link
+              icon="view"
+              @click="preview(scope.row)"
+          >查看</el-button>
           <el-button
               type="primary"
               link
@@ -188,10 +194,18 @@
       </template>
     </el-dialog>
 
+<!--    <el-dialog :close-on-click-modal="true" title="文件预览" type="primary"-->
+<!--               v-model="previewDialog"  width="80%" left>-->
+<!--&lt;!&ndash;      <iframe src="https://view.xdocin.com/view?src=https://cloud.long-chi.com/veterans_api/icons/退伍军人设计文档.docx"  width="100%" height="600"></iframe>&ndash;&gt;-->
+<!--      <iframe :src="decryptedBlobUrl" width="100%" height="500"></iframe>-->
+<!--      <div slot="footer" class="dialog-footer">-->
+<!--        <el-button type="primary" v-on:click="previewDialog = false">关闭</el-button>-->
+<!--      </div>-->
+<!--    </el-dialog>-->
   </div>
 </template>
 <script setup>
-import {deleteBaseFile, uploadfile, getFileList, setFileInfo, getDepts, Distribute} from "@/api/appfile";
+import {deleteBaseFile, uploadfile, getFileList, setFileInfo, getDepts, Distribute, previewfile} from "@/api/appfile";
 import { ref,reactive } from 'vue'
 import {Share} from '@element-plus/icons-vue'
 import {ElMessage, ElMessageBox} from "element-plus";
@@ -283,13 +297,20 @@ const enterAddFileDialog = async() => {
         var reader = new FileReader();
         reader.onload = async (e) => {
           const fileContent = e.target.result;
-          const encrypted = CryptoJS.AES.encrypt(CryptoJS.lib.WordArray.create(fileContent), 'vMmD8A9nGi5D9Org');
-          const encryptedBlob = new Blob([encrypted.toString()], { type: fileList[0].type });
-          // 创建加密后的 File 对象
+          const key = CryptoJS.enc.Utf8.parse('vMmD8A9nGi5D9Org');
+          const iv = CryptoJS.lib.WordArray.random(16);
+
+
+          const wordArray = CryptoJS.lib.WordArray.create(fileContent);
+          const encrypted = CryptoJS.AES.encrypt(wordArray, key, { iv: iv });
+          const arrayBuffer = wordArrayToArrayBuffer(encrypted.ciphertext);
+          const encryptedBlob = new Blob([arrayBuffer], { type: fileList[0].type });
           const encryptedFile = new File([encryptedBlob], fileList[0].name, { type: fileList[0].type });
+
           const formData = new FormData()
           formData.append('categoryName',fileInfo.value.categoryName)
           formData.append('authId',fileInfo.value.authId)
+          formData.append('iv',CryptoJS.enc.Base64.stringify(iv))
           formData.append('file',encryptedFile)
           var res = await uploadfile(formData);
           if (res.data.code === 0) {
@@ -315,6 +336,67 @@ const enterAddFileDialog = async() => {
     }
   })
 }
+
+const preview = async(obj) => {
+  const res = await previewfile({ ID:obj.id });
+  const iv = CryptoJS.enc.Hex.parse(CryptoJS.enc.Base64.parse(obj.iv).toString())
+  const key = CryptoJS.enc.Utf8.parse('vMmD8A9nGi5D9Org')
+
+  const encryptedWordArray = CryptoJS.lib.WordArray.create(res.data);
+  console.log(res.data)
+  const decrypted = CryptoJS.AES.decrypt({ ciphertext: encryptedWordArray }, key, { iv: iv });
+  const arrayBuffer = wordArrayToArrayBuffer(decrypted);
+
+  var blob;
+  if (obj.suffixName.includes("pdf")){
+    blob = new Blob([arrayBuffer], { type: 'application/pdf' });
+    // previewDialog.value = true
+  }else if (obj.suffixName.includes("txt")){
+    blob = new Blob([arrayBuffer], { type: 'text/plain' });
+    // previewDialog.value = true
+  }else if (obj.suffixName.includes("doc")){
+    blob = new Blob([arrayBuffer], { type: 'application/msword' });
+  }else if (obj.suffixName.includes("docx")){
+    blob = new Blob([arrayBuffer], { type: 'application/vnd.openxmlformats-officedocument.wordprocessingml.document' });
+  }else if (obj.suffixName.includes("ppt")){
+    blob = new Blob([arrayBuffer], { type: 'application/vnd.ms-powerpoint' });
+  }else if (obj.suffixName.includes("pptx")){
+    blob = new Blob([arrayBuffer], { type: 'application/vnd.openxmlformats-officedocument.presentationml.presentation' });
+  }else if (obj.suffixName.includes("xls")){
+    blob = new Blob([arrayBuffer], { type: 'application/vnd.ms-excel' });
+  }else if (obj.suffixName.includes("xlsx")){
+    blob = new Blob([arrayBuffer], { type: 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet' });
+  }
+      // 更新视图以显示预览
+  const url = URL.createObjectURL(blob);
+
+  const link = document.createElement('a');
+  link.href = url ;
+  link.download = obj.encryptedName;  // 指定下载时的文件名
+  link.click();
+
+  // 释放 URL 对象
+  URL.revokeObjectURL(url);
+}
+
+const wordArrayToArrayBuffer = (wordArray)=>{
+  const len = wordArray.sigBytes;
+  const u8_array = new Uint8Array(len);
+  const words = wordArray.words;
+  let i = 0, j = 0;
+  while (true) {
+    if (i === len) break;
+    const word = words[j++];
+    u8_array[i++] = (word & 0xff000000) >>> 24;
+    if (i === len) break;
+    u8_array[i++] = (word & 0x00ff0000) >>> 16;
+    if (i === len) break;
+    u8_array[i++] = (word & 0x0000ff00) >>> 8;
+    if (i === len) break;
+    u8_array[i++] = (word & 0x000000ff);
+  }
+  return u8_array.buffer;
+}
 const enterxiafaDialog = async() => {
   xffileForm.value.validate(async valid => {
     if (valid) {
@@ -355,6 +437,8 @@ const dialogFlag = ref('add')
 const isFlag = ref('')
 const addFileDialog = ref(false)
 const xiafaDialog = ref(false)
+// const previewDialog = ref(false)
+// const decryptedBlobUrl = ref('')
 
 const rules = ref({
   categoryName: [
@@ -386,6 +470,7 @@ const xiafa = (row) => {
   xiafaDialog.value = true
 }
 
+
 const deleteFile = (obj) => {
   ElMessageBox.confirm('您确定要撤销吗？', '提示', {
     confirmButtonText: '确定',

web/src/view/superAdmin/user/user.vue

@@ -349,7 +349,8 @@ const optionProps = {
 const fileAuth = ref([
   {"id":1,"name":"查看"},
   {"id":2,"name":"下载"},
-  {"id":3,"name":"转发"}
+  {"id":3,"name":"转发"},
+  {"id":4,"name":"上传"}
 ])
 const searchInfo = ref({})
 // 分页