添加依赖
注意:springboot版本2.7.0
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
<version>1.7.36</version>
</dependency>
<dependency>
<groupId>ch.qos.logback</groupId>
<artifactId>logback-classic</artifactId>
<version>1.2.11</version>
</dependency>自定义枚举值
/**
* 脱敏枚举值
*/
public enum SensitiveType {
DEFAULT, // 默认规则(部分隐藏)
PHONE, // 手机号
ID_CARD, // 身份证号
EMAIL, // 邮箱
ADDRESS, //地址
USER_NAME, //用户名
NUMBER; //数字,直接全脱敏
}自定义注解
import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;
@Retention(RetentionPolicy.RUNTIME)
@Target(ElementType.FIELD)
public @interface Sensitive {
SensitiveType type() default SensitiveType.DEFAULT;
}重写ClassicConverter
import ch.qos.logback.classic.pattern.ClassicConverter;
import ch.qos.logback.classic.spi.ILoggingEvent;
import com.ybchen.log.Sensitive;
import com.ybchen.log.SensitiveType;
import org.slf4j.helpers.MessageFormatter;
import java.lang.reflect.Field;
import java.math.BigDecimal;
import java.util.ArrayList;
import java.util.List;
/**
* @description: 敏感日志转换器
* @author: 陈彦斌
* @create: 2024-12-09 18:55
*/
public class SensitiveLogConverter extends ClassicConverter {
@Override
public String convert(ILoggingEvent event) {
Object[] args = event.getArgumentArray();
if (args == null || args.length == 0) {
return event.getFormattedMessage();
}
for (int i = 0; i < args.length; i++) {
Object arg = args[i];
if (arg != null) {
args[i] = desensitize(arg);
}
}
return MessageFormatter.arrayFormat(event.getMessage(), args).getMessage();
}
private Object desensitize(Object obj) {
if (obj == null) {
return null;
}
try {
Class<?> clazz = obj.getClass();
// 如果对象是集合类型
if (obj instanceof List) {
List<?> list = (List<?>) obj;
List<Object> newList = new ArrayList<>();
for (Object item : list) {
newList.add(desensitize(item)); // 递归处理列表中的每个对象
}
return newList;
}
// 如果对象是普通类型,直接返回
if (isPrimitiveOrWrapper(clazz) || clazz == String.class) {
return obj;
}
// 创建新实例
Object newObj = clazz.getDeclaredConstructor().newInstance();
// 遍历字段
Field[] fields = clazz.getDeclaredFields();
for (Field field : fields) {
field.setAccessible(true);
Object fieldValue = field.get(obj); // 获取原字段值
if (fieldValue == null){
continue;
}
if (field.isAnnotationPresent(Sensitive.class)) {
// 处理标注为 @Sensitive 的字段
if (fieldValue instanceof String) {
Sensitive sensitive = field.getAnnotation(Sensitive.class);
SensitiveType type = sensitive.type();
field.set(newObj, applyDesensitization((String) fieldValue, type));
}else if (
fieldValue instanceof Integer
|| fieldValue instanceof Long
|| fieldValue instanceof BigDecimal
|| fieldValue instanceof Byte
|| fieldValue instanceof Short
|| fieldValue instanceof Float
|| fieldValue instanceof Double
){
//数字直接脱敏
field.set(newObj, null);
}else if (fieldValue instanceof List) {
// 如果字段是 List 类型,递归处理其内部元素
List<?> list = (List<?>) fieldValue;
List<Object> newList = new ArrayList<>();
for (Object item : list) {
newList.add(desensitize(item));
}
field.set(newObj, newList);
} else {
// 对其他非字符串类型的字段,递归脱敏
field.set(newObj, desensitize(fieldValue));
}
} else {
// 未标注 @Sensitive 的字段直接复制
field.set(newObj, fieldValue);
}
}
return newObj; // 返回脱敏后的新对象
} catch (Exception e) {
e.printStackTrace();
return obj; // 异常情况下返回原对象
}
}
private String applyDesensitization(String value, SensitiveType type) {
if (value==null || "".equals(value)){
return "";
}
switch (type) {
case DEFAULT:
return value.replaceAll("^(.{3}).*$", "$1*****");
case PHONE:
if (value.length()<11||value.length()>11){
return value.replaceAll("^(.{5}).*$", "$1*****");
}
return value.replaceAll("(\\d{3})\\d{4}(\\d{4})", "$1****$2");
case ID_CARD:
if (value.length()<18){
return value.replaceAll("^(.{5}).*$", "$1*****");
}
return value.replaceAll("(\\d{4})\\d{10}(\\d{4})", "$1**********$2");
case EMAIL:
if (!value.contains("@")){
return value.replaceAll("^(.{5}).*$", "$1*****");
}
return value.replaceAll("(?<=^.{3}).*(?=@)", "*****");
case ADDRESS:
if (value.length() <= 9) {
return value.replaceAll("(.)(.*)(..)", "$1*$2$3");
}
return value.replaceAll("(.{3}).*(.{3})", "$1*****$2");
case USER_NAME:
return value.replaceAll("(\\S)\\S(\\S*)", "$1*$2");
default:
return value;
}
}
private boolean isPrimitiveOrWrapper(Class<?> clazz) {
return clazz.isPrimitive() || clazz == Boolean.class || clazz == Integer.class ||
clazz == Long.class || clazz == Double.class || clazz == Float.class ||
clazz == Byte.class || clazz == Short.class || clazz == BigDecimal.class || clazz == Character.class;
}
}logback-spring.xml配置
<configuration>
<conversionRule conversionWord="sensitive" converterClass="com.ybchen.config.SensitiveLogConverter" />
<appender name="CONSOLE" class="ch.qos.logback.core.ConsoleAppender">
<encoder>
<pattern>%d{yyyy-MM-dd HH:mm:ss} [%thread] %-5level %logger{36} - %sensitive{%msg}%n</pattern>
</encoder>
</appender>
<root level="info">
<appender-ref ref="CONSOLE" />
</root>
</configuration>VO类
@Data
public class UserVO {
@Sensitive(type = SensitiveType.USER_NAME)
private String userName;
@Sensitive(type = SensitiveType.EMAIL)
private String email;
@Sensitive(type = SensitiveType.PHONE)
private String phone;
@Sensitive(type = SensitiveType.ID_CARD)
private String idCard;
@Sensitive(type = SensitiveType.ADDRESS)
private String address;
@Sensitive
private Integer age;
@Sensitive
private BigDecimal money;
@Sensitive
private String content;
}打印日志
@PostMapping("test")
public Object test(@RequestBody List<UserVO> userList){
UserVO vo=new UserVO();
vo.setUserName("张三");
vo.setAddress("广东省广州市天河区xxxxxx号");
vo.setAge(18);
log.info("日志脱敏----info:\r\n{}\r\n{}", userList,vo);
log.info("\r\n");
log.error("日志脱敏----error:\r\n{}\r\n{}", userList,vo);
System.out.println("正常获取脱敏数据 userName:"+vo.getUserName());
System.out.println("正常获取脱敏数据 address:"+vo.getAddress());
return userList;
}效果
