diff --git a/.env b/.env index 32badd6..e1f55a8 100644 --- a/.env +++ b/.env @@ -11,3 +11,4 @@ VITE_HASH_ROUTE = Y VITE_AUTH_ROUTE_MODE=dynamic # 存储前缀 VITE_STORAGE_PREFIX = "" +VITE_STORAGE_ENCRYPT_SECRET = '__CryptoJS_Secret__' \ No newline at end of file diff --git a/.env.development b/.env.development index 7e79c65..c23c4a5 100644 --- a/.env.development +++ b/.env.development @@ -1 +1,3 @@ -VITE_HTTP_PROXY=N \ No newline at end of file +VITE_HTTP_PROXY=N +# 开启localStorage内容加密 +VITE_STORAGE_ENCRYPT=N \ No newline at end of file diff --git a/.env.production b/.env.production index 98dff9b..a30cea6 100644 --- a/.env.production +++ b/.env.production @@ -6,3 +6,6 @@ VITE_COMPRESS_TYPE=gzip # 是否开启打包依赖分析 VITE_VISUALIZER=N + +# 开启localStorage内容加密 +VITE_STORAGE_ENCRYPT=Y diff --git a/package.json b/package.json index 2f68c47..b98472a 100644 --- a/package.json +++ b/package.json @@ -31,11 +31,13 @@ "./src/**/*.{vue,js,jsx,ts,tsx,json}": "eslint --fix" }, "dependencies": { + "@types/crypto-js": "^4.1.1", "@types/qs": "^6.9.7", "@vueuse/core": "^9.10.0", "@wangeditor/editor": "^5.1.23", "@wangeditor/editor-for-vue": "^5.1.12", "axios": "^1.2.2", + "crypto-js": "^4.1.1", "echarts": "^5.4.1", "md-editor-v3": "^2.7.2", "pinia": "^2.0.28", diff --git a/src/typings/env.d.ts b/src/typings/env.d.ts index 5a50454..c6c4a3e 100644 --- a/src/typings/env.d.ts +++ b/src/typings/env.d.ts @@ -31,17 +31,18 @@ interface ImportMetaEnv { /** 是否开启打包压缩 */ readonly VITE_COMPRESS_OPEN?: 'Y' | 'N'; /** 压缩算法类型 */ - readonly VITE_COMPRESS_TYPE?: - | 'gzip' - | 'brotliCompress' - | 'deflate' - | 'deflateRaw'; + readonly VITE_COMPRESS_TYPE?: 'gzip' | 'brotliCompress' | 'deflate' | 'deflateRaw'; /** hash路由模式 */ readonly VITE_HASH_ROUTE?: 'Y' | 'N'; /** 路由加载模式 */ readonly VITE_AUTH_ROUTE_MODE?: 'static' | 'dynamic'; /** 本地存储前缀 */ readonly VITE_STORAGE_PREFIX?: string; + /** 本地存储内容开启加密 */ + readonly VITE_STORAGE_ENCRYPT?: 'Y' | 'N'; + /** 本地存储加密密钥 */ + readonly VITE_STORAGE_ENCRYPT_SECRET: string; + /** 后端服务的环境类型 */ readonly VITE_SERVICE_ENV?: ServiceEnvType; } diff --git a/src/utils/crypto.ts b/src/utils/crypto.ts new file mode 100644 index 0000000..826dadd --- /dev/null +++ b/src/utils/crypto.ts @@ -0,0 +1,41 @@ +import CryptoJS from 'crypto-js'; +import { isObject } from './is'; + +const { VITE_STORAGE_ENCRYPT, VITE_STORAGE_ENCRYPT_SECRET } = import.meta.env; + +/** + * 加密数据 + * @param data - 数据 + */ +export function encrypto(data: any) { + let newData = data; + + if (isObject(data)) { + newData = JSON.stringify(data); + } + + if (VITE_STORAGE_ENCRYPT === 'N') { + return newData; + } + + return CryptoJS.AES.encrypt(newData, VITE_STORAGE_ENCRYPT_SECRET).toString(); +} + +/** + * 解密数据 + * @param cipherText - 密文 + */ +export function decrypto(cipherText: string) { + if (VITE_STORAGE_ENCRYPT === 'N') { + return JSON.parse(cipherText); + } + + const bytes = CryptoJS.AES.decrypt(cipherText, VITE_STORAGE_ENCRYPT_SECRET); + const originalText = bytes.toString(CryptoJS.enc.Utf8); + + if (originalText) { + return JSON.parse(originalText); + } + + return null; +} diff --git a/src/utils/storage.ts b/src/utils/storage.ts index 4c62542..b91e953 100644 --- a/src/utils/storage.ts +++ b/src/utils/storage.ts @@ -1,3 +1,4 @@ +import { encrypto, decrypto } from './crypto'; // 读取缓存前缀 const prefix = import.meta.env.VITE_STORAGE_PREFIX as string; @@ -17,7 +18,7 @@ function createLocalStorage() { value, expire: new Date().getTime() + expire * 1000, }; - const json = JSON.stringify(storageData); + const json = encrypto(storageData); window.localStorage.setItem(prefix + key, json); } @@ -26,7 +27,11 @@ function createLocalStorage() { if (!json) return null; let storageData: StorageData | null = null; - storageData = JSON.parse(json as string); + try { + storageData = decrypto(json); + } catch { + // 防止解析失败 + } if (storageData) { const { value, expire } = storageData; @@ -34,7 +39,7 @@ function createLocalStorage() { return value; } } - local.remove(key); + remove(key); return null; } @@ -58,20 +63,24 @@ function createLocalStorage() { function createSessionStorage() { function set(key: string, value: any) { - const json = JSON.stringify(value); + const json = encrypto(value); window.sessionStorage.setItem(prefix + key, json); } function get(key: string) { const json = sessionStorage.getItem(prefix + key); - let data: T | null = null; - if (json) { - try { - data = JSON.parse(json); - } catch { - // 防止解析失败 - } + if (!json) return null; + + let storageData; + try { + storageData = decrypto(json); + } catch { + // 防止解析失败 } - return data; + + if (storageData) { + return storageData; + } + return null; } function remove(key: string) { window.sessionStorage.removeItem(prefix + key); @@ -79,6 +88,13 @@ function createSessionStorage() { function clear() { window.sessionStorage.clear(); } + + return { + set, + get, + remove, + clear, + }; } export const local = createLocalStorage(); diff --git a/src/views/login/index.vue b/src/views/login/index.vue index 7dfd7d6..ef15574 100644 --- a/src/views/login/index.vue +++ b/src/views/login/index.vue @@ -35,6 +35,7 @@