Merge branch 'desensitization' into develop

puff
2 parents 5cf1f437 09024262
Showing 18 changed files with 749 additions and 4 deletions
huaheng-wms-core/pom.xml
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/annotation/SensitiveField.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/enums/SensitiveTypeEnums.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/plugin/DesensitizationInterceptor.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/SensitiveContext.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/SensitiveStrategy.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/AddressStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/BankCardStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/DefaultStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/EmailStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/FixedPhoneStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/IdCardStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/MobileStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/desensitization/strategy/impl/NameStrategyHandle.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/controller/SysUserController.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/entity/SysUser.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/service/ISysRoleService.java
huaheng-wms-core/src/main/java/org/jeecg/modules/system/service/impl/SysRoleServiceImpl.java
@@ -188,6 +188,11 @@
             <classifier>sources</classifier>
             <type>java-source</type>
         </dependency>
+        <dependency>
+            <groupId>org.reflections</groupId>
+            <artifactId>reflections</artifactId>
+            <version>0.9.10</version>
+        </dependency>
     </dependencies>
  
     <build>
+package org.jeecg.modules.desensitization.annotation;
+
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+
+import java.lang.annotation.*;
+
+/**
+ * 对需要脱敏的字段加上该注解
+ *
+ * @author xub
+ * @date 2022/6/1 下午2:08
+ */
+@Documented
+@Inherited
+@Retention(RetentionPolicy.RUNTIME)
+@Target({ElementType.FIELD, ElementType.ANNOTATION_TYPE})
+public @interface SensitiveField {
+
+    /**
+     * 脱敏类型
+     */
+    SensitiveTypeEnums value();
+
+    /**
+     * 填充值
+     */
+    String fillValue() default "*";
+
+}
+package org.jeecg.modules.desensitization.enums;
+
+/**
+ * 脱敏类型
+ *
+ * @author xub
+ * @date 2022/6/1 上午1:09
+ */
+public enum SensitiveTypeEnums {
+
+    /**
+     * 默认方式脱敏
+     */
+    DEFAULT(0,6),
+
+    /**
+     * 中文名称
+     */
+    CHINESE_NAME(1,1),
+
+    /**
+     * 手机号
+     */
+    MOBILE(3,4),
+
+    /**
+     * 座机号码
+     */
+    FIXED_PHONE(0,4),
+
+    /**
+     * 银行卡
+     */
+    BANK_CARD(6,4),
+
+    /**
+     * 身份证号
+     */
+    ID_CARD(0,4),
+
+    /**
+     * 邮箱
+     */
+    EMAIL(2,0),
+
+    /**
+     * 地址
+     */
+    ADDRESS(6,4),
+
+    ;
+
+    SensitiveTypeEnums(int begin, int end){
+        this.begin = begin;
+        this.end = end;
+    };
+
+    /**
+     * 开始长度
+     */
+    private int begin;
+
+    /**
+     * 结束长度
+     */
+    private int end;
+
+    public int getBegin() {
+        return begin;
+    }
+
+    public int getEnd() {
+        return end;
+    }
+}
+package org.jeecg.modules.desensitization.plugin;
+
+
+import cn.hutool.core.util.ObjectUtil;
+import org.apache.ibatis.executor.resultset.ResultSetHandler;
+import org.apache.ibatis.plugin.*;
+import org.apache.shiro.SecurityUtils;
+import org.jeecg.common.exception.JeecgBootException;
+import org.jeecg.modules.desensitization.annotation.SensitiveField;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveContext;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+import org.jeecg.modules.system.entity.SysUserRole;
+import org.jeecg.modules.system.service.ISysRoleService;
+import org.jeecg.utils.HuahengJwtUtil;
+import org.reflections.ReflectionUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.core.annotation.Order;
+import org.springframework.stereotype.Service;
+import org.springframework.util.CollectionUtils;
+
+import javax.annotation.Resource;
+import javax.servlet.http.HttpServletRequest;
+import java.lang.reflect.Field;
+import java.util.*;
+import java.util.concurrent.ConcurrentHashMap;
+
+import static org.jeecg.utils.HuahengJwtUtil.getRolesByToken;
+
+
+/**
+ * 基于拦截器对数据脱敏
+ *
+ * @author xub
+ * @date 2022/6/2 下午2:23
+ */
+@Intercepts({
+        @Signature(type = ResultSetHandler.class, method = "handleResultSets", args = {java.sql.Statement.class})
+})
+@Service
+@Order(-1)
+public class DesensitizationInterceptor implements Interceptor {
+
+
+    private static final Logger log = LoggerFactory.getLogger(DesensitizationInterceptor.class);
+
+    /**
+     * key值为class对象 value可以理解成是该类带有SensitiveField注解的属性，只不过对属性封装了一层。
+     * 它是非常能够提高性能的处理器 它的作用就是不用每一次一个对象经来都要看下它的哪些属性带有SensitiveField注解
+     * 毕竟类的反射在性能上并不友好。只要key包含该对象那就不需要检查它哪些属性带SensitiveField注解。
+     */
+    private Map<Class, List<Handler>> handlerMap = new ConcurrentHashMap<>();
+
+    @Override
+    public Object intercept(Invocation invocation) throws Throwable {
+        // 获取结果
+        List<Object> results = (List<Object>) invocation.proceed();
+        if (CollectionUtils.isEmpty(results)) {
+            return results;
+        }
+        // 批量设置加密
+        for (Object object : results) {
+            process(object);
+        }
+        return results;
+    }
+
+
+    private void process(Object object) throws Throwable {
+        if(ObjectUtil.isNotEmpty(object)){
+            Class handlerKey = object.getClass();
+            List<Handler> handlerList = handlerMap.get(handlerKey);
+            //性能优化点，如果有两个都是user对象同时,那么只需有个进行反射处理属性就好了,另一个只需执行下面的for循环
+            SYNC:
+            if (handlerList == null) {
+                synchronized (this) {
+                    handlerList = handlerMap.get(handlerKey);
+                    //如果到这里map集合已经存在，则跳出到指定SYNC标签
+                    if (handlerList != null) {
+                        break SYNC;
+                    }
+                    handlerMap.put(handlerKey, handlerList = new ArrayList<>());
+                    // 反射工具类 获取带有SensitiveField注解的所有属性字段
+                    Set<Field> allFields = ReflectionUtils.getAllFields(
+                            object.getClass(),
+                            input -> input != null && input.getAnnotation(SensitiveField.class) != null
+                    );
+
+                    for (Field field : allFields) {
+                        handlerList.add(new Handler(field));
+                    }
+                }
+            }
+            for (Handler handler : handlerList) {
+                handler.accept(object);
+            }
+        }
+
+    }
+
+
+    @Override
+    public Object plugin(Object target) {
+        return Plugin.wrap(target, this);
+    }
+
+    @Override
+    public void setProperties(Properties properties) {
+    }
+
+
+    private static class Handler {
+        Field field;
+
+        Handler(Field field) {
+            this.field = field;
+        }
+
+        private boolean checkField(Object object, Field field) throws IllegalAccessException {
+            if (!field.isAccessible()) {
+                field.setAccessible(true);
+            }
+            //如果为空 那么就不用进行脱敏操作了
+            return field.get(object) != null;
+        }
+
+        public void accept(Object o) throws Throwable {
+            if (checkField(o, field)) {
+                SensitiveField annotation = field.getAnnotation(SensitiveField.class);
+                SensitiveTypeEnums typeEnums = annotation.value();
+                String fillValue = annotation.fillValue();
+                Object o1 = field.get(o);
+                if(!SecurityUtils.getSubject().hasRole("desensitization")){
+                    SensitiveStrategy sensitiveStrategy = SensitiveContext.get(typeEnums);
+                    String s = sensitiveStrategy.handle(o1, fillValue);
+                    field.set(o, s);
+                }
+            }
+        }
+    }
+
+}
+package org.jeecg.modules.desensitization.strategy;
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.impl.*;
+import org.springframework.stereotype.Component;
+import org.springframework.util.Assert;
+
+import java.util.Map;
+import java.util.concurrent.ConcurrentHashMap;
+
+/**
+ *  获取所有策略
+ *
+ * @author xub
+ * @date 2022/6/2 下午2:13
+ */
+@Component
+public class SensitiveContext {
+
+    private static final Map<SensitiveTypeEnums,SensitiveStrategy> map = new ConcurrentHashMap<>();
+
+    static {
+        map.put(SensitiveTypeEnums.DEFAULT,new DefaultStrategyHandle());
+        map.put(SensitiveTypeEnums.CHINESE_NAME,new NameStrategyHandle());
+        map.put(SensitiveTypeEnums.MOBILE,new MobileStrategyHandle());
+        map.put(SensitiveTypeEnums.FIXED_PHONE,new FixedPhoneStrategyHandle());
+        map.put(SensitiveTypeEnums.BANK_CARD,new BankCardStrategyHandle());
+        map.put(SensitiveTypeEnums.ID_CARD,new IdCardStrategyHandle());
+        map.put(SensitiveTypeEnums.EMAIL,new EmailStrategyHandle());
+        map.put(SensitiveTypeEnums.ADDRESS,new AddressStrategyHandle());
+    }
+
+
+    public static SensitiveStrategy get(SensitiveTypeEnums sensitiveType){
+
+        SensitiveStrategy sensitiveStrategy =  map.get(sensitiveType);
+        Assert.notNull(sensitiveStrategy,"sensitiveStrategy no found!");
+        return sensitiveStrategy;
+    }
+
+
+}
+package org.jeecg.modules.desensitization.strategy;
+
+
+import org.apache.commons.lang3.StringUtils;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+
+/**
+ * 脱敏策略
+ *
+ * @author xub
+ * @date 2021/12/2 上午10:22
+ */
+public interface SensitiveStrategy {
+
+
+    /**
+     * 具体脱敏类型
+     */
+    SensitiveTypeEnums getType();
+
+    /**
+     * 默认处理具体脱敏方法，如果特色子类 由子类实现
+     *
+     * @param object    具体需要脱敏字段
+     * @param fillValue 填充值 默认*
+     * @return 已经脱敏后的数据
+     */
+    String handle(Object object, String fillValue);
+
+
+//===========================接口默认方法，把实现类公共部分抽离出来==========================================================
+
+    /**
+     * 中间填充的脱敏数据 比如手机号、银行卡、座机等等
+     *
+     * @param value     具体需要脱敏字段
+     * @param fillValue 填充值 默认*
+     * @return 已经脱敏后的数据
+     */
+    default String centerFill(String value, String fillValue) {
+
+        SensitiveTypeEnums typeEnums = this.getType();
+        int begin = typeEnums.getBegin();
+        int end = typeEnums.getEnd();
+        int length = StringUtils.length(value);
+
+        //这里以手机为列子 说明下是如何做到中间填充的。其它的比如银行卡，身份证号等等都是一个道理
+        //这里一共做了4步:
+        //1、获取左边值:StringUtils.left(mobile, begin) 13312345678获取133
+        //2、获取右边值:StringUtils.right(mobile, end)  13312345678获取5678
+        //3、填充将5678左填充变为 ***5678
+        //4、在合并1，3就变成 133133***5678
+        return StringUtils.left(value, begin)
+                .concat(StringUtils.leftPad(StringUtils.right(value, end), length - begin, fillValue));
+
+    }
+
+    /**
+     * 右边填充的脱敏数据 比如身份证号、座机号、地址等等
+     *
+     * @param value     具体需要脱敏字段
+     * @param fillValue 填充值 默认*
+     * @return 已经脱敏后的数据
+     */
+    default String rightFill(String value, String fillValue) {
+
+        SensitiveTypeEnums typeEnums = this.getType();
+        int end = typeEnums.getEnd();
+        int length = StringUtils.length(value);
+
+        //这里以身份证为示例 说明下是如何做到中间填充的
+        //这里一共做了2步:
+        //1、获取左边值:StringUtils.left(value, end) 330127199911114444获取33012719991111
+        //2、填充将33012719991111左填充变为 33012719991111****
+        return StringUtils.rightPad(StringUtils.left(value, length - end), length, fillValue);
+    }
+
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+import org.apache.commons.lang3.StringUtils;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+
+/**
+ * 地址填充: 宁波市慈溪市观海卫镇禹皇路999号鸣鹤古镇 转为 宁波市慈溪市***********鸣鹤古镇
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class AddressStrategyHandle implements SensitiveStrategy {
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.ADDRESS;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        SensitiveTypeEnums type = getType();
+        int begin = type.getBegin();
+        int end = type.getEnd();
+        int length = StringUtils.length(value);
+        //如果开始+结束 < 地址总长度 那就可以中间填充
+        if (end + begin < length) {
+            return this.centerFill(value, fillValue);
+        }
+
+        //如果开始+结束 > 地址总长度 同时 结束 < 地址总长度 那么右边填充
+        if (end + begin < length && end < length) {
+            return this.rightFill(value, fillValue);
+        }
+        return value;
+    }
+
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+import java.util.regex.Pattern;
+
+/**
+ * 银行卡脱敏: 6228477477865321转为622847******5321
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class BankCardStrategyHandle implements SensitiveStrategy {
+
+    /**
+     * 银行卡卡号位数匹配
+     */
+    public final static String BANK_CARD_NUMBER = "^\\d{16}|\\d{19}$";
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.BANK_CARD;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        //如果银行卡不符合格式 直接返回 不进行脱敏
+        if (!Pattern.matches(BANK_CARD_NUMBER, value)) {
+            return value;
+        }
+        //填充银行卡卡号
+        return this.centerFill(value, fillValue);
+    }
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+import org.apache.commons.lang3.StringUtils;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+/**
+ * 默认脱敏方式
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class DefaultStrategyHandle implements SensitiveStrategy {
+
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.DEFAULT;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        SensitiveTypeEnums type = getType();
+        int end = type.getEnd();
+        int length = StringUtils.length(value);
+        if (end < length) {
+            return this.rightFill(value, fillValue);
+        }
+        return value;
+    }
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+import org.apache.commons.lang3.StringUtils;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+import java.util.regex.Pattern;
+
+
+/**
+ * 邮箱脱敏 邮箱脱敏比较特殊。一般我们说455555@qq.com 那我们会在@之前几位进行脱敏 45****@qq.com
+ *
+ * @author xub
+ * @date 2022/6/2 上午10:31
+ */
+public class EmailStrategyHandle implements SensitiveStrategy {
+
+
+    /**
+     * 邮箱email
+     */
+    public static final String EMAIL_REG = "^\\w+([-+.]\\w+)*@\\w+([-.]\\w+)*\\.\\w+([-.]\\w+)*$";
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.EMAIL;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        //如果不符合格式 直接返回 不进行脱敏
+        if (!Pattern.matches(EMAIL_REG, value)) {
+            return value;
+        }
+        //以 455555@qq.com 示例
+        int length = StringUtils.length(value);
+        //获取@位置
+        int indexOf = StringUtils.indexOf(value, "@");
+        //获取455555 部分
+        String left = StringUtils.left(value, indexOf);
+        //获取@qq.com部分 这部分数据是不用处理的 后面在拼接回来就好了
+        String right = StringUtils.right(value, length - indexOf);
+
+        int leftLength = StringUtils.length(left);
+        //45@qq.com 直接返回 **@qq.com
+        if (leftLength <= 2) {
+            return StringUtils.leftPad(right, length, fillValue);
+        }
+        //如果leftLength大于2
+        String leftFill = this.centerFill(left, fillValue);
+        //做好拼接
+        return leftFill.concat(right);
+    }
+
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+import java.util.regex.Pattern;
+
+/**
+ * 座机电话号脱敏 0211-8711882转为0211-871****
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class FixedPhoneStrategyHandle implements SensitiveStrategy {
+
+    /**
+     * 身份证号码位数限制 匹配形式如 0511-4405222 或 021-87888822
+     */
+    public final static String FIXED_PHONE = "^\\d{3}-\\d{7,8}|\\d{4}-\\d{7,8}$";
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.FIXED_PHONE;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        //如果座机不符合格式 直接返回 不进行脱敏
+        if (!Pattern.matches(FIXED_PHONE, value)) {
+            return value;
+        }
+        //座机脱敏
+        return this.rightFill(value, fillValue);
+    }
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+import java.util.regex.Pattern;
+
+/**
+ * 身份证号脱敏 330127199911114444转为330127199911114444****
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class IdCardStrategyHandle implements SensitiveStrategy {
+
+    /**
+     * 身份证号码位数限制
+     */
+    public final static String ID_CARD = "^\\d{15}|(\\d{17}[0-9,x,X])$";
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.ID_CARD;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        //如果身份证号不符合格式 直接返回 不进行脱敏
+        if (!Pattern.matches(ID_CARD, value)) {
+            return value;
+        }
+        //身份证号脱敏
+        return this.rightFill(value, fillValue);
+    }
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+import java.util.regex.Pattern;
+
+/**
+ * 手机号码脱敏 13312345678转为133****5678
+ *
+ * @author xub
+ * @date 2022/6/2 上午9:16
+ */
+public class MobileStrategyHandle implements SensitiveStrategy {
+
+
+    /**
+     * 手机号码匹配
+     */
+    public static final String PHONE_REG = "^((13[0-9])|(14[5,7])|(15[0-3,5-9])|(17[0,3,5-8])|(18[0-9])|166|198|199|(147))\\d{8}$";
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.MOBILE;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String mobile = object.toString();
+        //如果手机号不符合手机格式 直接返回 不进行脱敏
+        if (!Pattern.matches(PHONE_REG, mobile)) {
+            return mobile;
+        }
+
+        //填充手机号
+        return this.centerFill(mobile, fillValue);
+    }
+
+}
+package org.jeecg.modules.desensitization.strategy.impl;
+
+
+import org.apache.commons.lang3.StringUtils;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
+import org.jeecg.modules.desensitization.strategy.SensitiveStrategy;
+
+
+/**
+ * 中文名称脱敏 这个比较特殊。张三 转 张*,李世民->李*民,司徒伯雷->司**雷
+ *
+ * @author xub
+ * @date 2022/6/2 上午10:31
+ */
+public class NameStrategyHandle implements SensitiveStrategy {
+
+    @Override
+    public SensitiveTypeEnums getType() {
+        return SensitiveTypeEnums.CHINESE_NAME;
+    }
+
+    @Override
+    public String handle(Object object, String fillValue) {
+        if (object == null) {
+            return null;
+        }
+        //字段原始值
+        String value = object.toString();
+        int length = StringUtils.length(value);
+        //如果为2 则说明为右边填充
+        if (length == 2) {
+            return this.rightFill(value, fillValue);
+        }
+        //如果大于2 则说明为中间填充
+        if (length > 2) {
+            return this.centerFill(value, fillValue);
+        }
+        //如果只有一个子那就直接返回
+        return value;
+    }
+
+}
@@ -154,7 +154,7 @@ public class SysUserController {
             userIds.add(u.getId().toString());
         }
  
-        if (userIds != null && userIds.size() > 0) {
+        if (!userIds.isEmpty()) {
             Map<String, String> useDepNames = sysUserService.getDepNamesByUserIds(userIds);
             pageList.getRecords().forEach(item -> {
                 item.setOrgCodeTxt(useDepNames.get(item.getId().toString()));
@@ -6,6 +6,8 @@ import java.util.Date;
 import java.util.List;
  
 import org.jeecg.common.aspect.annotation.Dict;
+import org.jeecg.modules.desensitization.annotation.SensitiveField;
+import org.jeecg.modules.desensitization.enums.SensitiveTypeEnums;
 import org.jeecgframework.poi.excel.annotation.Excel;
 import org.springframework.format.annotation.DateTimeFormat;
 import org.springframework.util.StringUtils;
@@ -45,12 +47,14 @@ public class SysUser implements Serializable {
      * 登录账号
      */
     @Excel(name = "登录账号", width = 15)
+//    @SensitiveField(SensitiveTypeEnums.CHINESE_NAME)
     private String username;
  
     /**
      * 真实姓名
      */
     @Excel(name = "真实姓名", width = 15)
+    @SensitiveField(SensitiveTypeEnums.CHINESE_NAME)
     private String realname;
  
     /**
@@ -96,6 +100,7 @@ public class SysUser implements Serializable {
      * 电话
      */
     @Excel(name = "电话", width = 15)
+    @SensitiveField(SensitiveTypeEnums.MOBILE)
     private String phone;
  
     /**
@@ -45,5 +45,4 @@ public interface ISysRoleService extends IService&lt;SysRole&gt; {
      * @return
      */
     public SysRole getRoleByName(String roleName);
-
 }
@@ -3,14 +3,20 @@ package org.jeecg.modules.system.service.impl;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.List;
+import java.util.concurrent.atomic.AtomicReference;
  
+import cn.hutool.core.util.ObjectUtil;
 import org.jeecg.common.api.vo.Result;
 import org.jeecg.common.constant.CommonConstant;
 import org.jeecg.common.util.ImportExcelUtil;
 import org.jeecg.modules.system.entity.SysRole;
+import org.jeecg.modules.system.entity.SysUser;
+import org.jeecg.modules.system.entity.SysUserRole;
 import org.jeecg.modules.system.mapper.SysRoleMapper;
 import org.jeecg.modules.system.mapper.SysUserMapper;
 import org.jeecg.modules.system.service.ISysRoleService;
+import org.jeecg.modules.system.service.ISysUserRoleService;
+import org.jeecg.modules.system.service.ISysUserService;
 import org.jeecgframework.poi.excel.ExcelImportUtil;
 import org.jeecgframework.poi.excel.entity.ImportParams;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -22,6 +28,8 @@ import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
 import com.baomidou.mybatisplus.core.toolkit.Wrappers;
 import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
  
+import javax.annotation.Resource;
+
 /**
  * <p>
  * 角色表 服务实现类
@@ -36,6 +44,12 @@ public class SysRoleServiceImpl extends ServiceImpl&lt;SysRoleMapper, SysRole&gt; impl
     @Autowired
     SysUserMapper sysUserMapper;
  
+    @Resource
+    private ISysUserRoleService iSysUserRoleService;
+
+    @Resource
+    private ISysUserService iSysUserService;
+
     @Override
     public Result importExcelCheckRoleCode(MultipartFile file, ImportParams params) throws Exception {
         List<Object> listSysRoles = ExcelImportUtil.importExcel(file.getInputStream(), SysRole.class, params);
@@ -92,7 +106,6 @@ public class SysRoleServiceImpl extends ServiceImpl&lt;SysRoleMapper, SysRole&gt; impl
     public SysRole getRoleByName(String roleName) {
         LambdaQueryWrapper<SysRole> roleLambdaQueryWrapper = Wrappers.lambdaQuery();
         roleLambdaQueryWrapper.eq(SysRole::getRoleName, roleName);
-        SysRole role = getOne(roleLambdaQueryWrapper);
-        return role;
+        return getOne(roleLambdaQueryWrapper);
     }
 }