Snailclimb
diff --git a/‎README-ENGLISH.md
+9 b/‎README-ENGLISH.md
+9
diff --git a/‎README.md
+98-13 b/‎README.md
+98-13
diff --git a/‎config/checkstyle/checkstyle.xml
+178 b/‎config/checkstyle/checkstyle.xml
+178
diff --git a/‎docs/H2内存数据库介绍.md
+11 b/‎docs/H2内存数据库介绍.md
+11
@@ -1,10 +1,19 @@
 # spring-security-jwt-guide
 
+## Introduce
+
+[Spring Security](https://spring.io/projects/spring-security )  is a very powerful framework in the Spring family for authentication and permission control, and we can easily extend it to meet our current system security requirements.
+
+However, compared with some other technologies such as JPA, Spring Security is more difficult to get started. Many people can hardly write a Demo independently after reading video or sending documents, so they may give up learning this thing later.
+
+Spring Security, a powerful Security authentication framework, has been used in the induction training practical project when I first came to the company and the projects I am working on now. It can be seen that this framework is a good choice in the field of authentication and permission authentication. I am not familiar with Spring Security because I did not make this part of the module of the previous project by myself. So I took the time to learn this part of knowledge and implemented a simple Demo. This Demo mainly USES **Spring Security** and **Spring Boot**, and all the dependencies adopt the latest stable version. Beyond the initial project, the JPA technology was also used. The code structure of the project is as follows (chrome plug-in: octree), which is relatively clear as a whole. Due to my limited ability and time, there must be a lot of areas that can be optimized. Interested friends can improve it together.
+
 ## Setup
 
 1. git clone https://github.com/Snailclimb/spring-security-jwt-guide.git
 2. open project and wait maven to install project Dependencies
 3. change `application.properties` change the database connection information parameter to your own
+4. Run the project (related data tables will be created automatically, if you don't understand, take a look at JPA)
 
 ## Example
 
 
@@ -1,35 +1,120 @@
-# spring-security-jwt-guide
 
-[English version](https://github.com/Snailclimb/spring-security-jwt-guide/blob/master/README-ENGLISH.md)
+# spring-security-jwt-guide
 
 **如果国内访问缓慢的话，可以通过码云查看：** https://gitee.com/SnailClimb/spring-security-jwt-guide 。
 
-## 下载配置
+## 前言
+
+[Spring Security](https://spring.io/projects/spring-security ) 是 Spring 全家桶中非常强大的一个用来做身份验证以及权限控制的框架，我们可以轻松地扩展它来满足我们当前系统安全性这方面的需求。
+
+但是 Spring Security 相比于其他一些技术比如 JPA 来说更难上手，很多人初学的时候很难通过看视频或者文档发就很快能独立写一个 Demo 出来，于是后面可能就放弃了学习这个东西。
+
+刚来公司的时候的入职培训实战项目以及现在正在做的项目都用到了 Spring Security 这个强大的安全验证框架，可以看出这个框架在身份验证以及权限验证领域可以说应该是比较不错的选择。由于之前经历项目的这部分模块都不是自己做的，所以对于 Spring Security 并不是太熟悉。于是自/己抽时间对这部分知识学习了一下，并实现了一个简单的 Demo 。这个 Demo 主要用到了 **Spring Security** 和 **Spring Boot** 这两门技术，并且所有的依赖采用的都是最新的稳定版本。初次之外，这个项目还用到了 JPA 这门技术。
+
+由于自己的能力以及时间有限，所以一定还有很多可以优化的地方，有兴趣的朋友可以一起完善，期待你的 PR。
+
+## 介绍
+
+**项目用到的一些框架/服务：**
+
+- **数据库**： H2内存数据库，无需手动安装。
+- **缓存**： Redis
+- **权限框架** ：Spring Security
+- **ORM框架** ：JPA （低SQL）
+- **接口文档** ：  swagger。在线 API 文档地址：[http://localhost:9333/api/swagger-ui/](http://localhost:9333/api/swagger-ui/) 。
+
+**你能从这个项目中学习到什么？**
+
+1. Spring Security +JWT 实现登入登出以及权限校验
+2. JPA 实现审计功能、多对多的映射关系如何通过关联表实现
+
+## 教程
+
+1. [项目讲解/分析](./docs/SpringSecurity介绍.md) （内容待重构）
+2. [swagger3.0整合](./docs/swagger.md) 
+
+## 代办
+
+- [x] 增加H2内存数据库支持，无须MySQL，一键启动项目启动后访问 `http://{host}:9333/h2-console/` (数据库 url 地址、用户名和密码都在  `application.properties` 配置文件中)
+- [x] 增加Swagger，方便调用接口
+- [x] 异常处理部分代码重构，优化返回结构
+- [x] 新建一个role表，然后通过新建一个role_user表的形式，将用户与角色关联起来
+- [x] 文件结构重构
+- [x] 增加jpa审计功能
+- [x] login（登录）接口在controller层暴露出来
+- [x] 登出功能：redis保存token信息（key->user id,value->token），登出后将 redis中的token信息删除
+- [x] 重新登录将上一次登录生成的token弄失效（解决未过期的token还是可以用的问题）：重新登录会将 redis 中保存的 token 信息进行更新
+- [ ] 重构详解文章
+
+## 项目概览
+
+为了区分，我把 Spring Security相关的都单独放在了一个文件夹下面。
+
+![](./pictures/structure.png)
+
+
+## 如何运行项目
 
 1. git clone https://github.com/Snailclimb/spring-security-jwt-guide.git
-2. 打开项目并且等待Maven下载好相关依赖。建议使用idea 打开，并确保你的idea 下载了 lombok插件。
-3. 修改 `application.properties` 将数据库连接信息改成你自己的。
+2. 打开项目并且等待 Maven 下载好相关依赖。建议使用 Intellij IDEA 打开，并确保你的 Intellij IDEA 下载了 lombok 插件。
+3. 下载 redis 并`application.yaml`中redis的配置
+4. 运行项目（相关数据表会被自动创建，不了解的看一下 JPA）
+
 ## 示例
 
 ### 1.注册一个账号
 
-![Register](https://my-blog-to-use.oss-cn-beijing.aliyuncs.com/2019-7/1-register.png)
+**URL:**
+
+`POST http://localhost:9333/api/users/sign-up`
+
+**RequestBody:**
+
+```json
+{"userName":"123456","fullName":"shuangkou","password":"123456"}
+```
+
+![注册](./pictures/sign-up.png)
+
+新注册的用户默认绑定的角色为：用户（USER）和管理者（MANAGER）。
 
 ### 2.登录
 
-![Login](https://my-blog-to-use.oss-cn-beijing.aliyuncs.com/2019-7/2-login.png)
+**URL:**
+
+`POST http://localhost:9333/api/auth/login`
+
+**RequestBody:**
+
+```json
+{"username": "123456", "password": "123456","rememberMe":true}
+```
+
+![登录](./pictures/login.png)
+
+
+### 3.使用正确 Token 访问需要进行身份验证的资源
+
+我们使用 GET 请求访问 `/api/users`，这个接口的访问权限是
+
+```java
+@PreAuthorize("hasAnyRole('ROLE_USER','ROLE_MANAGER','ROLE_ADMIN')")
+```
+
+![Access resources that require authentication](./pictures/access-resources-that-require-authentication.png)
+
+### 4.不带 Token 或者使用无效 Token 访问
 
-### 3.使用正确Token访问需要进行身份验证的资源
+我们使用 GET 请求访问 `/api/users`，但是不带token或者带上无效token。
 
-![Access resources that require authentication](https://my-blog-to-use.oss-cn-beijing.aliyuncs.com/2019-7/3-visit-authenticated-resourse-have-token.png)
 
-### 4.不带Token访问需要进行身份验证的资源
+![Access resources that require authentication without token or with invalid token](./pictures/access-resources-that-require-authentication2.png)
 
-![Access resources that require authentication  without token](https://my-blog-to-use.oss-cn-beijing.aliyuncs.com/2019-7/4-visit-authenticated-resourse-not-have-token.png)
+### 5.带了正确Token但是访问权限
 
-### 5.使用不正确Token访问需要进行身份验证的资源
+我们使用 DELETE 请求访问 `/api/users?username=xxx`，携带有效的 token ，但是 token 的访问权限不够。
 
-![Access resources that require authentication  with not correct token](https://my-blog-to-use.oss-cn-beijing.aliyuncs.com/2019-7/5-visit-authenticated-resourse-not-have-valid-token.png)
+![](./pictures/not-have-enough-permission.png)
 
 ## 参考
 
 
@@ -0,0 +1,178 @@
+<?xml version="1.0"?>
+<!DOCTYPE module PUBLIC
+        "-//Puppy Crawl//DTD Check Configuration 1.3//EN"
+        "http://checkstyle.sourceforge.net/dtds/configuration_1_3.dtd">
+
+<!--
+
+  Checkstyle configuration that checks the sun coding conventions from:
+
+    - the Java Language Specification at
+      http://java.sun.com/docs/books/jls/second_edition/html/index.html
+
+    - the Sun Code Conventions at http://java.sun.com/docs/codeconv/
+
+    - the Javadoc guidelines at
+      http://java.sun.com/j2se/javadoc/writingdoccomments/index.html
+
+    - the JDK Api documentation http://java.sun.com/j2se/docs/api/index.html
+
+    - some best practices
+
+  Checkstyle is very configurable. Be sure to read the documentation at
+  http://checkstyle.sf.net (or in your downloaded distribution).
+
+  Most Checks are configurable, be sure to consult the documentation.
+
+  To completely disable a check, just comment it out or delete it from the file.
+
+  Finally, it is worth reading the documentation.
+
+-->
+
+<module name="Checker">
+    <!--
+        If you set the basedir property below, then all reported file
+        names will be relative to the specified directory. See
+        http://checkstyle.sourceforge.net/5.x/config.html#Checker
+
+        <property name="basedir" value="${basedir}"/>
+    -->
+
+    <property name="fileExtensions" value="java, properties, xml"/>
+
+    <!-- Checks that a resource-info.java file exists for each resource.     -->
+    <!-- See http://checkstyle.sf.net/config_javadoc.html#JavadocPackage -->
+    <!--<module name="JavadocPackage"/>-->
+
+    <!-- Checks whether files end with a new line.                        -->
+    <!-- See http://checkstyle.sf.net/config_misc.html#NewlineAtEndOfFile -->
+
+    <!-- Checks that property files contain the same keys.         -->
+    <!-- See http://checkstyle.sf.net/config_misc.html#Translation -->
+    <module name="NewlineAtEndOfFile">
+        <property name="severity" value="ignore" />
+    </module>
+    <module name="Translation"/>
+
+    <!-- Checks for Size Violations.                    -->
+    <!-- See http://checkstyle.sf.net/config_sizes.html -->
+    <module name="FileLength"/>
+
+    <!-- Checks for whitespace                               -->
+    <!-- See http://checkstyle.sf.net/config_whitespace.html -->
+    <module name="FileTabCharacter"/>
+
+    <!-- Miscellaneous other checks.                   -->
+    <!-- See http://checkstyle.sf.net/config_misc.html -->
+    <module name="RegexpSingleline">
+        <property name="format" value="\s+$"/>
+        <property name="minimum" value="0"/>
+        <property name="maximum" value="0"/>
+        <property name="message" value="Line has trailing spaces."/>
+    </module>
+
+    <!-- Checks for Headers                                -->
+    <!-- See http://checkstyle.sf.net/config_header.html   -->
+    <!-- <module name="Header"> -->
+    <!--   <property name="headerFile" value="${checkstyle.header.file}"/> -->
+    <!--   <property name="fileExtensions" value="java"/> -->
+    <!-- </module> -->
+
+    <module name="SuppressWarningsFilter"/>
+    <module name="TreeWalker">
+        <module name="SuppressWarningsHolder"/>
+
+        <!-- Checks for Javadoc comments.                     -->
+        <!-- See http://checkstyle.sf.net/config_javadoc.html -->
+        <!--
+        <module name="JavadocMethod"/>
+        <module name="JavadocType"/>
+        <module name="JavadocVariable"/>
+        <module name="JavadocStyle"/>
+        -->
+
+        <!-- Checks for Naming Conventions.                  -->
+        <!-- See http://checkstyle.sf.net/config_naming.html -->
+        <module name="ConstantName"/>
+        <module name="LocalFinalVariableName"/>
+        <module name="LocalVariableName"/>
+        <module name="MemberName"/>
+        <module name="MethodName"/>
+        <module name="PackageName"/>
+        <module name="ParameterName"/>
+        <module name="StaticVariableName"/>
+        <module name="TypeName"/>
+
+        <!-- Checks for imports                              -->
+        <!-- See http://checkstyle.sf.net/config_import.html -->
+        <!--<module name="AvoidStarImport"/>-->
+        <module name="RedundantImport">
+            <!-- Checks for redundant import statements. -->
+            <property name="severity" value="error"/>
+        </module>
+
+        <!-- Checks for Size Violations.                    -->
+        <!-- See http://checkstyle.sf.net/config_sizes.html -->
+        <module name="MethodLength"/>
+        <module name="ParameterNumber">
+            <property name="max" value="16"/>
+            <property name="ignoreOverriddenMethods" value="true"/>
+        </module>
+        <module name="UnusedImports">
+            <property name="processJavadoc" value="true"/>
+        </module>
+        <!-- Checks for whitespace                               -->
+        <!-- See http://checkstyle.sf.net/config_whitespace.html -->
+        <module name="EmptyForIteratorPad"/>
+        <module name="GenericWhitespace"/>
+        <module name="MethodParamPad"/>
+        <module name="NoWhitespaceAfter"/>
+        <module name="NoWhitespaceBefore"/>
+        <module name="ParenPad"/>
+        <module name="TypecastParenPad"/>
+        <module name="WhitespaceAfter"/>
+        <module name="WhitespaceAround"/>
+
+        <!-- Modifier Checks                                    -->
+        <!-- See http://checkstyle.sf.net/config_modifiers.html -->
+        <module name="ModifierOrder"/>
+        <module name="RedundantModifier"/>
+
+        <!-- Checks for blocks. You know, those {}'s         -->
+        <!-- See http://checkstyle.sf.net/config_blocks.html -->
+        <module name="AvoidNestedBlocks"/>
+        <module name="EmptyBlock"/>
+        <module name="LeftCurly"/>
+        <module name="NeedBraces"/>
+        <module name="RightCurly"/>
+
+        <!-- Checks for common coding problems               -->
+        <!-- See http://checkstyle.sf.net/config_coding.html -->
+        <!--<module name="AvoidInlineConditionals"/>-->
+        <module name="EmptyStatement"/>
+        <module name="EqualsHashCode"/>
+        <!--<module name="HiddenField"/>-->
+        <module name="IllegalInstantiation"/>
+        <module name="InnerAssignment"/>
+        <!--<module name="MagicNumber"/>-->
+        <module name="MissingSwitchDefault"/>
+        <module name="SimplifyBooleanExpression"/>
+        <module name="SimplifyBooleanReturn"/>
+
+        <!-- Checks for class design                         -->
+        <!-- See http://checkstyle.sf.net/config_design.html -->
+        <!--<module name="DesignForExtension"/>-->
+        <module name="FinalClass"/>
+        <module name="InterfaceIsType"/>
+        <module name="VisibilityModifier"/>
+
+        <!-- Miscellaneous other checks.                   -->
+        <!-- See http://checkstyle.sf.net/config_misc.html -->
+        <module name="ArrayTypeStyle"/>
+        <module name="TodoComment"/>
+        <module name="UpperEll"/>
+
+    </module>
+
+</module>
@@ -0,0 +1,11 @@
+### 1.什么是H2数据库？
+
+H2是用Java编写的内存数据库。
+
+### 2.为什么要用H2数据库？什么时候用？
+
+因为是内存数据库，所以h2的速度比一般的关系型数据库快很多，一般用于单元测试环境。
+
+
+
+![](../pictures/h2-collection.png)