basic user auth

2022-05-06 10:36:00 +08:00
197 changed files with 2814 additions and 23183 deletions
--- a/README.md
+++ b/README.md
@@ -1,16 +1,14 @@
 # kafka可视化管理平台
 一款轻量级的kafka可视化管理平台，安装配置快捷、简单易用。  
-为了开发的省事，没有国际化支持，页面只支持中文展示。  
-用过rocketmq-console(rocketmq-dashboard)吧，对，前端展示风格跟那个有点类似。
+为了开发的省事，没有国际化支持，只支持中文展示。  
+用过rocketmq-console吧，对，前端展示风格跟那个有点类似。

 ## 页面预览
 如果github能查看图片的话，可以点击[查看菜单页面](./document/overview/概览.md)，查看每个页面的样子
 ## 集群迁移支持说明
 当前主分支及日后版本不再提供消息同步、集群迁移的解决方案，如有需要，查看：[集群迁移说明](./document/datasync/集群迁移.md)
 ## ACL说明
-最新代码运行即可看到acl菜单，将权限管理和认证的用户管理（SASL_SCRAM)进行了分离。分离之后，支持只开启SASL_SCRAM认证的时候（未开启鉴权），用户变更操作。或者使用其它认证机制下的权限管理操作（可视化的权限管理），但是可视化的认证用户管理目前只支持Scram。
-
-v1.0.6版本之前，如果kafka集群启用了ACL，但是控制台没看到Acl菜单，可以查看：[Acl配置启用说明](./document/acl/Acl.md)
+acl配置说明，如果kafka集群启用了ACL，但是控制台没看到Acl菜单，可以查看：[Acl配置启用说明](./document/acl/Acl.md)
 ## 功能支持
 * 多集群支持
 * 集群信息
@@ -18,18 +16,13 @@ v1.0.6版本之前，如果kafka集群启用了ACL，但是控制台没看到Acl
 * 消费组管理
 * 消息管理
 * ACL
-* 客户端限流
 * 运维

 功能明细看这个脑图：
 ![功能特性](./document/img/功能特性.png)

 ## 安装包下载
-点击下载(v1.0.8版本)：[kafka-console-ui.zip](https://github.com/xxd763795151/kafka-console-ui/releases/download/v1.0.8/kafka-console-ui.zip)  
-
-如果安装包下载的比较慢，可以查看下面的源码打包说明，把代码下载下来，本地快速打包.  
-
-github下载慢也可以试试从gitee下载，点击下载[gitee来源kafka-console-ui.zip](https://gitee.com/xiaodong_xu/kafka-console-ui/releases/download/v1.0.8/kafka-console-ui.zip)
+点击下载(v1.0.4版本)：[kafka-console-ui.zip](https://github.com/xxd763795151/kafka-console-ui/releases/download/v1.0.4/kafka-console-ui.zip)

 ## 快速使用
 ### Windows
@@ -68,7 +61,7 @@ sh bin/shutdown.sh
 在新增集群的时候，除了集群地址还可以输入集群的其它属性配置，比如请求超时，ACL配置等。如果开启了ACL，切换到该集群的时候，导航栏上便会出现ACL菜单，支持进行相关操作（目前是基于SASL_SCRAM认证授权管理支持的最完善，其它的我也没验证过，虽然是我开发的，但是我也没具体全部验证这一块功能，授权部分应该是通用的）

 ## kafka版本
-* 当前使用的kafka 3.2.0
+* 当前使用的kafka 2.8.0
 ## 监控
 仅提供运维管理功能，监控、告警需要配合其它组件，如有需要，建议请查看：https://blog.csdn.net/x763795151/article/details/119705372

@@ -78,35 +71,10 @@ sh bin/shutdown.sh
 ## 本地开发
 如果需要本地开发，开发环境配置查看：[本地开发](./document/develop/开发配置.md)

-## 登录认证和权限
-1.0.7版本及之前，主分支不支持登录认证，感谢@dongyinuo 同学开发了一版支持登录认证，及相关的按钮权限（主要有两个角色：管理员和普通开发人员）。  
-在分支：feature/dongyinuo/20220501/devops 上。  
-如果有需要使用管理台登录认证的，可以切换到这个分支上进行打包，打包方式看 源码打包 说明。  
-默认登录账户：admin/kafka-console-ui521
-
-目前最新版本主分支已增加登录认证、用户、角色等权限配置，如需开启登录认证，修改配置文件config/application.yml: auth.enable=true(默认 false)，如下：
-```yaml
-# 权限认证设置，设置为true，需要先登录才能访问
-auth:
-  enable: true
-  # 登录用户token的过期时间，单位：小时
-  expire-hours: 24
-```
-默认有两个登录用户：super-admin/123456，admin/123456，登录成功后在个人设置修改密码。super-admin和admin的唯一区别是super-admin可以增加删除用户，admin不能。如果觉得不合适，请在用户菜单下删除相关用户或角色自行创建合适的角色或用户。
-注意：不开启登录认证，页面不显示用户菜单，正常现象。
-
-
-## DockerCompose部署
-感谢@wdkang123 同学分享的部署方式，如果有需要请查看[DockerCompose部署方式](./document/deploy/docker部署.md)
-## 感谢支持
-[![jetbrains](./document/img/jb_beam.svg "jetbrains")](https://jb.gg/OpenSourceSupport)
 ## 联系方式
 + 微信群
-
-<img src="./document/contact/weixin_contact.jpg" width="40%"/>
-
-[//]: # (<img src="https://github.com/xxd763795151/kafka-console-ui/blob/main/document/contact/weixin_contact.jpg" width="40%"/>)
+<img src="https://github.com/dongyinuo/kafka-console-ui/blob/feature/dongyinuo/add/contact/document/contact/weixin_contact.jpeg" width="40%"/>

 + 若联系方式失效, 请联系加一下微信, 说明意图
    - xxd763795151
-    - wxid_7jy2ezljvebt12
+    - wxid_7jy2ezljvebt12
--- a/assembly.xml
+++ b/assembly.xml
@@ -2,10 +2,10 @@
    xmlns="http://maven.apache.org/plugins/maven-assembly-plugin/assembly/1.1.2"
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:schemaLocation="http://maven.apache.org/plugins/maven-assembly-plugin/assembly/1.1.2 http://maven.apache.org/xsd/assembly-1.1.2.xsd">
-    <id>${project.version}</id>
+    <id>rocketmq-reput</id>
    <formats>
+<!--        <format>tar.gz</format>-->
        <format>zip</format>
-        <format>tar.gz</format>
    </formats>

    <fileSets>
--- a/bin/shutdown.sh
+++ b/bin/shutdown.sh
@@ -1,12 +1,7 @@
 #!/bin/bash

-PREFIX='./'
-CMD=$0
-if [[ $CMD == $PREFIX* ]]; then
-        CMD=${CMD:2}
-fi
-SCRIPT_DIR=$(dirname "`pwd`/$CMD")
-PROJECT_DIR=`dirname "$SCRIPT_DIR"`
+SCRIPT_DIR=`dirname $0`
+PROJECT_DIR="$SCRIPT_DIR/.."
 # 不要修改进程标记，作为进程属性关闭使用
 PROCESS_FLAG="kafka-console-ui-process-flag:${PROJECT_DIR}"
 pkill -f $PROCESS_FLAG
--- a/bin/start.bat
+++ b/bin/start.bat
@@ -1,8 +1,8 @@
 rem MAIN_CLASS=org.springframework.boot.loader.JarLauncher
 rem JAVA_HOME=jre1.8.0_66
 set JAVA_CMD=%JAVA_HOME%\bin\java
-set JAVA_OPTS=-Xmx512m -Xms512m -Xmn256m -Xss256k -Dfile.encoding=utf-8
+set JAVA_OPTS=-Xmx512m -Xms512m -Xmn256m -Xss256k
 set CONFIG_FILE=../config/application.yml
 set TARGET=../lib/kafka-console-ui.jar
 set DATA_DIR=..
-"%JAVA_CMD%" -jar %TARGET% --spring.config.location=%CONFIG_FILE% --data.dir=%DATA_DIR%
+%JAVA_CMD% -jar %TARGET% --spring.config.location=%CONFIG_FILE% --data.dir=%DATA_DIR%
--- a/bin/start.sh
+++ b/bin/start.sh
@@ -3,13 +3,8 @@
 # 设置jvm堆大小及栈大小，栈大小最少设置为256K，不要小于这个值，比如设置为128，太小了
 JAVA_MEM_OPTS="-Xmx512m -Xms512m -Xmn256m -Xss256k"

-PREFIX='./'
-CMD=$0
-if [[ $CMD == $PREFIX* ]]; then
-        CMD=${CMD:2}
-fi
-SCRIPT_DIR=$(dirname "`pwd`/$CMD")
-PROJECT_DIR=`dirname "$SCRIPT_DIR"`
+SCRIPT_DIR=`dirname $0`
+PROJECT_DIR="$SCRIPT_DIR/.."
 CONF_FILE="$PROJECT_DIR/config/application.yml"
 TARGET="$PROJECT_DIR/lib/kafka-console-ui.jar"

@@ -17,12 +12,12 @@ TARGET="$PROJECT_DIR/lib/kafka-console-ui.jar"
 DATA_DIR=$PROJECT_DIR

 # 日志目录，默认为当前工程目录下
-# 这个是错误输出，如果启动命令有误，输出到这个文件，应用日志不会输出到error.out，应用日志输出到上面的kafka-console-ui.log中
+# 这个是错误输出，如果启动命令有误，输出到这个文件，应用日志不会输出到error.out，应用日志输出到上面的rocketmq-reput.log中
 ERROR_OUT="$PROJECT_DIR/error.out"
-# 不要修改进程标记，作为进程属性关闭使用，如果要修改，请把shutdown.sh里的该属性的值保持一致
+# 不要修改进程标记，作为进程属性关闭使用，如果要修改，请把stop.sh里的该属性的值保持一致
 PROCESS_FLAG="kafka-console-ui-process-flag:${PROJECT_DIR}"

-JAVA_OPTS="$JAVA_OPTS $JAVA_MEM_OPTS -Dfile.encoding=utf-8"
+JAVA_OPTS="$JAVA_OPTS $JAVA_MEM_OPTS"

 nohup java -jar $JAVA_OPTS $TARGET --spring.config.location="$CONF_FILE" --logging.home="$PROJECT_DIR" --data.dir=$DATA_DIR $PROCESS_FLAG 1>/dev/null 2>$ERROR_OUT &

--- a/document/acl/Acl.md
+++ b/document/acl/Acl.md
@@ -26,7 +26,7 @@ kafka:
 其中说明了kafka.config.enable-acl配置项需要为true。

 注意：**现在不再支持这种方式了**
-## v1.0.6之前的版本说明
+## 新版本说明
 因为现在支持多集群配置，关于多集群配置，可以看主页说明的 配置集群 介绍。
 所以这里把这些额外的配置项都去掉了。

--- a/document/contact/weixin_contact.jpeg
+++ b/document/contact/weixin_contact.jpeg
--- a/document/contact/weixin_contact.jpg
+++ b/document/contact/weixin_contact.jpg
--- a/document/deploy/docker部署.md
+++ b/document/deploy/docker部署.md
@@ -1,189 +0,0 @@
-# Docker/DockerCompose部署
-
-# 1.快速上手
-
-## 1.1 镜像拉取
-
-```shell
-docker pull wdkang/kafka-console-ui
-```
-
-
-
-## 1.2 查看镜像
-
-```shell
-docker images
-```
-
-
-
-## 1.3 启动服务
-
-由于Docker内不会对数据进行持久化 所以这里推荐将数据目录映射到实体机中 
-
-详见 **2.数据持久**
-
-```shell
-docker run -d -p 7766:7766 wdkang/kafka-console-ui
-```
-
-
-
-## 1.4 查看状态
-
-```shell
-docker ps -a
-```
-
-
-
-## 1.5 查看日志
-
-```shell
-docker logs -f ${containerId}
-```
-
-
-
-## 1.6 访问服务
-
-```shell
-http://localhost:7766
-```
-
-
-
-# 2. 数据持久
-
-推荐对数据进行持久化
-
-## 2.1 新建目录
-
-```shell
-mkdir -p /home/kafka-console-ui/data /home/kafka-console-ui/log
-cd /home/kafka-console-ui
-```
-
-## 2.2 启动服务
-
-```shell
-docker run -d -p 7766:7766 -v $PWD/data:/app/data -v $PWD/log:/app/log wdkang/kafka-console-ui
-```
-
-
-
-# 3.自主打包
-
-## 3.1 构建镜像
-
-**前置需求**
-
-(可根据自身情况修改Dockerfile)
-
-下载[kafka-console-ui.zip](https://github.com/xxd763795151/kafka-console-ui/releases)包
-
-解压后 将Dockerfile放入文件夹的根目录
-
-**Dockerfile**
-
-```dockerfile
-# jdk
-FROM openjdk:8-jdk-alpine
-# label
-LABEL by="https://github.com/xxd763795151/kafka-console-ui"
-# root
-RUN mkdir -p /app && cd /app
-WORKDIR /app
-# config log data
-RUN mkdir -p /app/config && mkdir -p /app/log && mkdir -p /app/data && mkdir -p /app/lib
-# add file
-ADD ./lib/kafka-console-ui.jar /app/lib
-ADD ./config /app/config
-# port
-EXPOSE 7766
-# start server
-CMD java -jar -Xmx512m -Xms512m -Xmn256m -Xss256k /app/lib/kafka-console-ui.jar --spring.config.location="/app/config/" --logging.home="/app/log" --data.dir="/app/data"
-
-```
-
-**进行打包**
-
-在文件夹根目录下
-
-(注意末尾有个点)
-
-```shell
-docker build -t ${your_docker_hub_addr} .
-```
-
-
-
-## 3.2 上传镜像
-
-```shell
-docker push ${your_docker_hub_addr}
-```
-
-
-
-# 4.容器编排
-
-```dockerfile
-# docker-compose 编排
-version: '3'
-services:
-  # 服务名
-  kafka-console-ui:
-  	# 容器名
-    container_name: "kafka-console-ui"
-		# 端口
-    ports:
-      - "7766:7766"
-    # 持久化
-    volumes:
-      - ./data:/app/data
-      - ./log:/app/log
-		# 防止读写文件有问题
-    privileged: true
-    user: root
-    # 镜像地址
-    image: "wdkang/kafka-console-ui"
-```
-
-
-
-## 4.1 拉取镜像
-
-```shell
-docker-compose pull kafka-console-ui
-```
-
-
-
-## 4.2 构建启动
-
-```shell
-docker-compose up --detach --build kafka-console-ui
-```
-
-
-
-## 4.3 查看状态
-
-```shell
-docker-compose ps -a
-```
-
-
-
-## 4.3 停止服务
-
-```shell
-docker-compose down
-```
-
-
-
-
-
--- a/document/develop/开发配置.md
+++ b/document/develop/开发配置.md
@@ -12,11 +12,8 @@
 * scala 2.13
 * maven >=3.6+
 * webstorm
-* Node
  
 除了webstorm是开发前端的ide可以根据自己需要代替，jdk scala是必须有的。
-
-开发的时候，我本地用的node版本是v14.16.0，下载目录：https://nodejs.org/download/release/v14.16.0/ . 过高或过低版本是否适用，我也没测试过。
  
 scala 2.13下载地址，在这个页面最下面：https://www.scala-lang.org/download/scala2.html
 ## 克隆代码
@@ -24,8 +21,7 @@ scala 2.13下载地址，在这个页面最下面：https://www.scala-lang.org/d
 ## 后端配置
 1. 用idea打开项目
 2. 打开idea的Project Structure(Settings) ->  Modules -> 设置src/main/scala为Sources，因为约定src/main/java是源码目录，所以这里要再加一个源码目录
-3. 打开idea的Settings -> plugins 搜索scala plugin并安装，然后应该是要重启idea生效，这一步必须在第4步之前
-4. 打开idea的Project Structure(Settings) -> Libraries 添加scala sdk，然后选择本地下载的scala 2.13的目录，确定添加进来（如果使用的idea可以直接勾选，也可以不用先下载到本地）
+3. 打开idea的Project Structure(Settings) -> Libraries 添加scala sdk，然后选择本地下载的scala 2.13的目录，确定添加进来（如果使用的idea可以直接勾选，也可以不用先下载到本地）
 ## 前端
 前端代码在工程的ui目录下，找个前端开发的ide如web storm打开进行开发即可。

--- a/document/img/jb_beam.svg
+++ b/document/img/jb_beam.svg
@@ -1 +0,0 @@
-<svg height="180" viewBox="0 0 180 180" width="180" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><linearGradient id="a" gradientUnits="userSpaceOnUse" x1="32.64" x2="82.77" y1="61.16" y2="85.54"><stop offset=".21" stop-color="#fe2857"/><stop offset="1" stop-color="#293896"/></linearGradient><linearGradient id="b" gradientUnits="userSpaceOnUse" x1="17.38" x2="82.95" y1="69.86" y2="21.23"><stop offset="0" stop-color="#fe2857"/><stop offset=".01" stop-color="#fe2857"/><stop offset=".86" stop-color="#ff318c"/></linearGradient><linearGradient id="c" gradientUnits="userSpaceOnUse" x1="74.17" x2="160.27" y1="21.58" y2="99.76"><stop offset=".02" stop-color="#ff318c"/><stop offset=".21" stop-color="#fe2857"/><stop offset=".86" stop-color="#fdb60d"/></linearGradient><linearGradient id="d" gradientUnits="userSpaceOnUse" x1="155.46" x2="55.07" y1="89.8" y2="158.9"><stop offset=".01" stop-color="#fdb60d"/><stop offset=".86" stop-color="#fcf84a"/></linearGradient><path d="m81.56 83.71-41.35-35a15 15 0 1 0 -14.47 25.7h.15l.39.12 52.16 15.89a3.53 3.53 0 0 0 1.18.21 3.73 3.73 0 0 0 1.93-6.91z" fill="url(#a)"/><path d="m89.85 25.93a10.89 10.89 0 0 0 -16.85-9.18l-50.5 30.66a15 15 0 1 0 17.9 24l45.27-36.89.36-.3a10.93 10.93 0 0 0 3.82-8.29z" fill="url(#b)"/><path d="m163.29 92-76.62-73.79a10.91 10.91 0 1 0 -14.81 16l.14.12 81.4 68.58a7.36 7.36 0 0 0 12.09-5.65 7.39 7.39 0 0 0 -2.2-5.26z" fill="url(#c)"/><path d="m165.5 97.29a7.35 7.35 0 0 0 -11.67-6l-92.71 45.3a15 15 0 1 0 15.48 25.59l85.73-58.84a7.35 7.35 0 0 0 3.17-6.05z" fill="url(#d)"/><path d="m60 60h60v60h-60z"/><g fill="#fff"><path d="m66.53 108.75h22.5v3.75h-22.5z"/><path d="m65.59 75.47 1.67-1.58a1.88 1.88 0 0 0 1.47.87c.64 0 1.06-.45 1.06-1.32v-5.92h2.58v5.94a3.44 3.44 0 0 1 -.92 2.63 3.52 3.52 0 0 1 -2.57 1 3.84 3.84 0 0 1 -3.29-1.62z"/><path d="m73.53 67.52h7.53v2.19h-5v1.43h4.49v2h-4.45v1.49h5v2.2h-7.6z"/><path d="m84.73 69.79h-2.8v-2.27h8.21v2.27h-2.81v7.09h-2.6z"/><path d="m66.63 80.58h4.42a3.47 3.47 0 0 1 2.55.83 2.09 2.09 0 0 1 .61 1.52 2.18 2.18 0 0 1 -1.45 2.09 2.27 2.27 0 0 1 1.86 2.29c0 1.69-1.31 2.69-3.55 2.69h-4.44zm5 2.89c0-.52-.42-.8-1.18-.8h-1.29v1.64h1.25c.78 0 1.24-.27 1.24-.81zm-.9 2.66h-1.57v1.73h1.62c.8 0 1.24-.31 1.24-.86-.02-.53-.4-.87-1.27-.87z"/><path d="m75.45 80.58h4.15a4.14 4.14 0 0 1 3.05 1 2.92 2.92 0 0 1 .83 2.18 3 3 0 0 1 -1.93 2.89l2.24 3.35h-3l-1.89-2.84h-.87v2.84h-2.6zm4 4.5c.87 0 1.4-.43 1.4-1.12 0-.75-.55-1.13-1.41-1.13h-1.39v2.27z"/><path d="m87.09 80.51h2.5l4 9.44h-2.79l-.67-1.69h-3.63l-.67 1.74h-2.71zm2.28 5.73-1.05-2.65-1.06 2.65z"/><path d="m94 80.55h2.6v9.37h-2.6z"/><path d="m97.56 80.55h2.44l3.37 5v-5h2.57v9.37h-2.27l-3.53-5.14v5.14h-2.58z"/><path d="m106.37 88.53 1.44-1.73a4.86 4.86 0 0 0 3 1.13c.71 0 1.08-.25 1.08-.65 0-.41-.3-.61-1.59-.91-2-.46-3.53-1-3.53-2.93 0-1.74 1.38-3 3.63-3a5.88 5.88 0 0 1 3.85 1.25l-1.25 1.78a4.56 4.56 0 0 0 -2.62-.92c-.63 0-.94.25-.94.6 0 .43.32.62 1.63.91 2.15.47 3.48 1.17 3.48 2.92 0 1.91-1.51 3-3.78 3a6.56 6.56 0 0 1 -4.4-1.45z"/></g><path d="m0 0h180v180h-180z" fill="none"/></svg>
--- a/document/img/功能特性-old.png
+++ b/document/img/功能特性-old.png
--- a/document/img/功能特性.png
+++ b/document/img/功能特性.png
--- a/document/package/源码打包.md
+++ b/document/package/源码打包.md
@@ -29,6 +29,4 @@ package.bat
 cd kafka-console-ui
 # linux或mac执行
 sh package.sh
-```  
-
-打包完成，会在target目录下生成一个kafka-console-ui.zip的安装包
+```
--- a/pom.xml
+++ b/pom.xml
@@ -10,7 +10,7 @@
    </parent>
    <groupId>com.xuxd</groupId>
    <artifactId>kafka-console-ui</artifactId>
-    <version>1.0.9</version>
+    <version>1.0.4</version>
    <name>kafka-console-ui</name>
    <description>Kafka console manage ui</description>
    <properties>
@@ -21,13 +21,18 @@
        <ui.path>${project.basedir}/ui</ui.path>
        <frontend-maven-plugin.version>1.11.0</frontend-maven-plugin.version>
        <compiler.version>1.8</compiler.version>
-        <kafka.version>3.2.0</kafka.version>
+        <kafka.version>2.8.0</kafka.version>
        <maven.assembly.plugin.version>3.0.0</maven.assembly.plugin.version>
        <mybatis-plus-boot-starter.version>3.4.2</mybatis-plus-boot-starter.version>
        <scala.version>2.13.6</scala.version>
-        <spring-framework.version>5.3.26</spring-framework.version>
+        <jwt.version>0.9.0</jwt.version>
    </properties>
    <dependencies>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt</artifactId>
+            <version>${jwt.version}</version>
+        </dependency>
        <dependency>
            <groupId>org.scala-lang</groupId>
            <artifactId>scala-library</artifactId>
@@ -49,11 +54,6 @@
            <artifactId>spring-boot-starter-web</artifactId>
        </dependency>

-        <dependency>
-            <groupId>org.springframework.boot</groupId>
-            <artifactId>spring-boot-starter-aop</artifactId>
-        </dependency>
-
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-test</artifactId>
@@ -82,18 +82,6 @@
            <groupId>org.apache.kafka</groupId>
            <artifactId>kafka_2.13</artifactId>
            <version>${kafka.version}</version>
-            <exclusions>
-                <exclusion>
-                    <groupId>com.typesafe.scala-logging</groupId>
-                    <artifactId>scala-logging_2.13</artifactId>
-                </exclusion>
-            </exclusions>
-        </dependency>
-
-        <dependency>
-            <groupId>com.typesafe.scala-logging</groupId>
-            <artifactId>scala-logging_2.13</artifactId>
-            <version>3.9.2</version>
        </dependency>

        <dependency>
@@ -174,26 +162,26 @@
                        </executions>
                    </plugin>

-                    <!--                    <plugin>-->
-                    <!--                        <groupId>org.codehaus.mojo</groupId>-->
-                    <!--                        <artifactId>build-helper-maven-plugin</artifactId>-->
-                    <!--                        <version>3.2.0</version>-->
-                    <!--                        <executions>-->
-                    <!--                            <execution>-->
-                    <!--                                <id>add-source</id>-->
-                    <!--                                <phase>generate-sources</phase>-->
-                    <!--                                <goals>-->
-                    <!--                                    <goal>add-source</goal>-->
-                    <!--                                </goals>-->
-                    <!--                                <configuration>-->
-                    <!--                                    <sources>-->
-                    <!--                                        <source>src/main/java</source>-->
-                    <!--                                        <source>src/main/scala</source>-->
-                    <!--                                    </sources>-->
-                    <!--                                </configuration>-->
-                    <!--                            </execution>-->
-                    <!--                        </executions>-->
-                    <!--                    </plugin>-->
+<!--                    <plugin>-->
+<!--                        <groupId>org.codehaus.mojo</groupId>-->
+<!--                        <artifactId>build-helper-maven-plugin</artifactId>-->
+<!--                        <version>3.2.0</version>-->
+<!--                        <executions>-->
+<!--                            <execution>-->
+<!--                                <id>add-source</id>-->
+<!--                                <phase>generate-sources</phase>-->
+<!--                                <goals>-->
+<!--                                    <goal>add-source</goal>-->
+<!--                                </goals>-->
+<!--                                <configuration>-->
+<!--                                    <sources>-->
+<!--                                        <source>src/main/java</source>-->
+<!--                                        <source>src/main/scala</source>-->
+<!--                                    </sources>-->
+<!--                                </configuration>-->
+<!--                            </execution>-->
+<!--                        </executions>-->
+<!--                    </plugin>-->

                    <plugin>
                        <artifactId>maven-compiler-plugin</artifactId>
@@ -201,8 +189,6 @@
                            <source>${compiler.version}</source>
                            <target>${compiler.version}</target>
                            <encoding>${project.build.sourceEncoding}</encoding>
-<!--                            <debug>false</debug>-->
-<!--                            <parameters>false</parameters>-->
                        </configuration>
                    </plugin>
                    <plugin>
@@ -227,8 +213,7 @@
                                    <goal>npm</goal>
                                </goals>
                                <configuration>
-                                    <!--                                    <arguments>install &#45;&#45;registry=https://registry.npmjs.org/</arguments>-->
-                                    <arguments>install --registry=https://registry.npm.taobao.org</arguments>
+                                    <arguments>install --registry=https://registry.npmjs.org/</arguments>
                                </configuration>
                            </execution>
                            <execution>
@@ -281,7 +266,7 @@
                            <attach>true</attach>
                            <tarLongFileMode>posix</tarLongFileMode>
                            <runOnlyAtExecutionRoot>false</runOnlyAtExecutionRoot>
-                            <appendAssemblyId>true</appendAssemblyId>
+                            <appendAssemblyId>false</appendAssemblyId>
                        </configuration>
                    </plugin>
                </plugins>
--- a/src/main/java/com/xuxd/kafka/console/KafkaConsoleUiApplication.java
+++ b/src/main/java/com/xuxd/kafka/console/KafkaConsoleUiApplication.java
@@ -6,9 +6,6 @@ import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.web.servlet.ServletComponentScan;
 import org.springframework.scheduling.annotation.EnableScheduling;

-/**
- * @author 晓东哥哥
- */
@MapperScan("com.xuxd.kafka.console.dao")
@SpringBootApplication
@EnableScheduling
--- a/src/main/java/com/xuxd/kafka/console/aspect/ControllerLogAspect.java
+++ b/src/main/java/com/xuxd/kafka/console/aspect/ControllerLogAspect.java
@@ -1,137 +0,0 @@
-package com.xuxd.kafka.console.aspect;
-
-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.beans.Credentials;
-import com.xuxd.kafka.console.config.LogConfig;
-import com.xuxd.kafka.console.filter.CredentialsContext;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.aspectj.lang.ProceedingJoinPoint;
-import org.aspectj.lang.annotation.Around;
-import org.aspectj.lang.annotation.Aspect;
-import org.aspectj.lang.annotation.Pointcut;
-import org.springframework.core.annotation.Order;
-import org.springframework.stereotype.Component;
-
-import java.lang.reflect.Method;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-import java.util.concurrent.locks.ReentrantLock;
-
-/**
- * @author 晓东哥哥
- */
-@Slf4j
-@Order(-1)
-@Aspect
-@Component
-public class ControllerLogAspect {
-
-    private Map<String, String> descMap = new HashMap<>();
-
-    private ReentrantLock lock = new ReentrantLock();
-
-    private final LogConfig logConfig;
-
-    public ControllerLogAspect(LogConfig logConfig) {
-        this.logConfig = logConfig;
-    }
-
-    @Pointcut("@annotation(com.xuxd.kafka.console.aspect.annotation.ControllerLog)")
-    private void pointcut() {
-
-    }
-
-    @Around("pointcut()")
-    public Object around(ProceedingJoinPoint joinPoint) throws Throwable {
-        if (!logConfig.isPrintControllerLog()) {
-            return joinPoint.proceed();
-        }
-        StringBuilder params = new StringBuilder("[");
-        try {
-            String methodName = getMethodFullName(joinPoint.getTarget().getClass().getName(), joinPoint.getSignature().getName());
-
-            if (!descMap.containsKey(methodName)) {
-                cacheDescInfo(joinPoint);
-            }
-
-            Object[] args = joinPoint.getArgs();
-            long startTime = System.currentTimeMillis();
-            Object res = joinPoint.proceed();
-            long endTime = System.currentTimeMillis();
-
-            for (int i = 0; i < args.length; i++) {
-                params.append(args[i]);
-            }
-            params.append("]");
-
-            String resStr = "[" + (res != null ? res.toString() : "") + "]";
-
-            StringBuilder sb = new StringBuilder();
-            Credentials credentials = CredentialsContext.get();
-            if (credentials != null) {
-                sb.append("[").append(credentials.getUsername()).append("] ");
-            }
-            String shortMethodName = descMap.getOrDefault(methodName, ".-");
-            shortMethodName = shortMethodName.substring(shortMethodName.lastIndexOf(".") + 1);
-            sb.append("[").append(shortMethodName)
-                    .append("调用完成: ")
-                    .append("请求参数=").append(params).append(", ")
-                    .append("响应值=").append(resStr).append(", ")
-                    .append("耗时=").append(endTime - startTime)
-                    .append(" ms");
-            log.info(sb.toString());
-            return res;
-        } catch (Throwable e) {
-            log.error("调用方法异常， 请求参数：" + params, e);
-            throw e;
-        }
-    }
-
-    private void cacheDescInfo(ProceedingJoinPoint joinPoint) {
-        lock.lock();
-        try {
-            String methodName = joinPoint.getSignature().getName();
-            Class<?> aClass = joinPoint.getTarget().getClass();
-
-            Method method = null;
-            try {
-                Object[] args = joinPoint.getArgs();
-
-                Class<?>[] clzArr = new Class[args.length];
-                for (int i = 0; i < args.length; i++) {
-                    clzArr[i] = args[i].getClass();
-                    if (List.class.isAssignableFrom(clzArr[i])) {
-                        clzArr[i] = List.class;
-                    }
-                }
-                method = aClass.getDeclaredMethod(methodName, clzArr);
-
-            } catch (Exception e) {
-                log.warn("cacheDescInfo error: {}", e.getMessage());
-            }
-
-            String fullMethodName = getMethodFullName(aClass.getName(), methodName);
-            String desc = "[" + fullMethodName + "]";
-            if (method == null) {
-                descMap.put(fullMethodName, desc);
-                return;
-            }
-
-            ControllerLog controllerLog = method.getAnnotation(ControllerLog.class);
-            String value = controllerLog.value();
-            if (StringUtils.isBlank(value)) {
-                descMap.put(fullMethodName, desc);
-            } else {
-                descMap.put(fullMethodName, value);
-            }
-        } finally {
-            lock.unlock();
-        }
-    }
-
-    private String getMethodFullName(String className, String methodName) {
-        return className + "#" + methodName;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/aspect/PermissionAspect.java
+++ b/src/main/java/com/xuxd/kafka/console/aspect/PermissionAspect.java
@@ -1,140 +0,0 @@
-package com.xuxd.kafka.console.aspect;
-
-import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.Credentials;
-import com.xuxd.kafka.console.beans.dos.SysUserDO;
-import com.xuxd.kafka.console.cache.RolePermCache;
-import com.xuxd.kafka.console.config.AuthConfig;
-import com.xuxd.kafka.console.dao.SysPermissionMapper;
-import com.xuxd.kafka.console.dao.SysRoleMapper;
-import com.xuxd.kafka.console.dao.SysUserMapper;
-import com.xuxd.kafka.console.exception.UnAuthorizedException;
-import com.xuxd.kafka.console.filter.CredentialsContext;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.aspectj.lang.JoinPoint;
-import org.aspectj.lang.annotation.Aspect;
-import org.aspectj.lang.annotation.Before;
-import org.aspectj.lang.annotation.Pointcut;
-import org.aspectj.lang.reflect.MethodSignature;
-import org.springframework.core.annotation.Order;
-import org.springframework.stereotype.Component;
-
-import java.lang.reflect.Method;
-import java.util.*;
-import java.util.stream.Collectors;
-
-/**
- * @author: xuxd
- * @date: 2023/5/17 22:32
- **/
-@Slf4j
-@Order(1)
-@Aspect
-@Component
-public class PermissionAspect {
-
-
-    private Map<String, Set<String>> permMap = new HashMap<>();
-
-    private final AuthConfig authConfig;
-
-    private final SysUserMapper userMapper;
-
-    private final SysRoleMapper roleMapper;
-
-    private final SysPermissionMapper permissionMapper;
-
-    private final RolePermCache rolePermCache;
-
-    public PermissionAspect(AuthConfig authConfig,
-                            SysUserMapper userMapper,
-                            SysRoleMapper roleMapper,
-                            SysPermissionMapper permissionMapper,
-                            RolePermCache rolePermCache) {
-        this.authConfig = authConfig;
-        this.userMapper = userMapper;
-        this.roleMapper = roleMapper;
-        this.permissionMapper = permissionMapper;
-        this.rolePermCache = rolePermCache;
-    }
-
-    @Pointcut("@annotation(com.xuxd.kafka.console.aspect.annotation.Permission)")
-    private void pointcut() {
-
-    }
-
-    @Before(value = "pointcut()")
-    public void before(JoinPoint joinPoint) {
-        if (!authConfig.isEnable()) {
-            return;
-        }
-        MethodSignature signature = (MethodSignature) joinPoint.getSignature();
-        Method method = signature.getMethod();
-        Permission permission = method.getAnnotation(Permission.class);
-        if (permission == null) {
-            return;
-        }
-        String[] value = permission.value();
-        if (value == null || value.length == 0) {
-            return;
-        }
-        String name = method.getName() + "@" + method.hashCode();
-
-        Map<String, Set<String>> pm = checkPermMap(name, value);
-
-        Set<String> allowPermSet = pm.get(name);
-        if (allowPermSet == null) {
-            log.error("解析权限出现意外啦!!!");
-            return;
-        }
-
-        Credentials credentials = CredentialsContext.get();
-        if (credentials == null || credentials.isInvalid()) {
-            throw new UnAuthorizedException("credentials is invalid");
-        }
-        QueryWrapper<SysUserDO> queryWrapper = new QueryWrapper<>();
-        queryWrapper.eq("username", credentials.getUsername());
-        SysUserDO userDO = userMapper.selectOne(queryWrapper);
-        if (userDO == null) {
-            throw new UnAuthorizedException(credentials.getUsername() + ":" + allowPermSet);
-        }
-
-        boolean unauthorized = true;
-        boolean notFoundHideProperty = true;
-        String roleIds = userDO.getRoleIds();
-        List<Long> roleIdList = Arrays.stream(roleIds.split(",")).
-                map(String::trim).filter(StringUtils::isNotEmpty).
-                map(Long::valueOf).collect(Collectors.toList());
-        for (Long roleId : roleIdList) {
-            Set<String> permSet = rolePermCache.getRolePermCache().getOrDefault(roleId, Collections.emptySet());
-            for (String p : allowPermSet) {
-                if (permSet.contains(p)) {
-                    unauthorized = false;
-                }
-            }
-            if (permSet.contains(authConfig.getHideClusterPropertyPerm())) {
-                notFoundHideProperty = false;
-            }
-        }
-        if (unauthorized) {
-            throw new UnAuthorizedException(credentials.getUsername() + ":" + allowPermSet);
-        }
-        if (authConfig.isHideClusterProperty() && notFoundHideProperty) {
-            credentials.setHideClusterProperty(true);
-        }
-        credentials.setRoleIdList(roleIdList);
-    }
-
-    private Map<String, Set<String>> checkPermMap(String methodName, String[] value) {
-        if (!permMap.containsKey(methodName)) {
-            Map<String, Set<String>> map = new HashMap<>(permMap);
-            map.put(methodName, new HashSet<>(Arrays.asList(value)));
-            permMap = map;
-            return map;
-        }
-        return permMap;
-    }
-
-}
--- a/src/main/java/com/xuxd/kafka/console/aspect/annotation/ControllerLog.java
+++ b/src/main/java/com/xuxd/kafka/console/aspect/annotation/ControllerLog.java
@@ -1,15 +0,0 @@
-package com.xuxd.kafka.console.aspect.annotation;
-
-import java.lang.annotation.*;
-
-/**
- * 该注解用到controller层的方法上
- * @author 晓东哥哥
- */
-@Inherited
-@Retention(RetentionPolicy.RUNTIME)
-@Target(ElementType.METHOD)
-public @interface ControllerLog {
-
-    String value() default "";
-}
--- a/src/main/java/com/xuxd/kafka/console/aspect/annotation/Permission.java
+++ b/src/main/java/com/xuxd/kafka/console/aspect/annotation/Permission.java
@@ -1,17 +0,0 @@
-package com.xuxd.kafka.console.aspect.annotation;
-
-import java.lang.annotation.*;
-
-/**
- * 权限注解，开启认证的时候拥有该权限的用户才能访问对应接口.
- *
- * @author: xuxd
- * @date: 2023/5/17 22:30
- **/
-@Inherited
-@Retention(RetentionPolicy.RUNTIME)
-@Target(ElementType.METHOD)
-public @interface Permission {
-
-    String[] value() default {};
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/AclEntry.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/AclEntry.java
@@ -1,15 +1,18 @@
 package com.xuxd.kafka.console.beans;

+import java.util.Objects;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.kafka.common.acl.*;
+import org.apache.kafka.common.acl.AccessControlEntry;
+import org.apache.kafka.common.acl.AccessControlEntryFilter;
+import org.apache.kafka.common.acl.AclBinding;
+import org.apache.kafka.common.acl.AclBindingFilter;
+import org.apache.kafka.common.acl.AclOperation;
+import org.apache.kafka.common.acl.AclPermissionType;
 import org.apache.kafka.common.resource.PatternType;
 import org.apache.kafka.common.resource.ResourcePattern;
 import org.apache.kafka.common.resource.ResourcePatternFilter;
 import org.apache.kafka.common.resource.ResourceType;
 import org.apache.kafka.common.security.auth.KafkaPrincipal;
-import org.apache.kafka.common.utils.SecurityUtils;
-
-import java.util.Objects;

 /**
 * kafka-console-ui.
@@ -38,9 +41,7 @@ public class AclEntry {
        entry.setResourceType(binding.pattern().resourceType().name());
        entry.setName(binding.pattern().name());
        entry.setPatternType(binding.pattern().patternType().name());
-//        entry.setPrincipal(KafkaPrincipal.fromString(binding.entry().principal()).getName());
-        // 3.x版本使用该方法
-        entry.setPrincipal(SecurityUtils.parseKafkaPrincipal(binding.entry().principal()).getName());
+        entry.setPrincipal(KafkaPrincipal.fromString(binding.entry().principal()).getName());
        entry.setHost(binding.entry().host());
        entry.setOperation(binding.entry().operation().name());
        entry.setPermissionType(binding.entry().permissionType().name());
--- a/src/main/java/com/xuxd/kafka/console/beans/Credentials.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/Credentials.java
@@ -1,30 +0,0 @@
-package com.xuxd.kafka.console.beans;
-
-import lombok.Data;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/5/14 19:37
- **/
-@Data
-public class Credentials {
-
-    public static final Credentials INVALID = new Credentials();
-
-    private String username;
-
-    private long expiration;
-
-    /**
-     * 是否隐藏集群属性
-     */
-    private boolean hideClusterProperty;
-
-    private List<Long> roleIdList;
-
-    public boolean isInvalid() {
-        return this == INVALID;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/KafkaConsoleException.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/KafkaConsoleException.java
@@ -0,0 +1,7 @@
+package com.xuxd.kafka.console.beans;
+
+public class KafkaConsoleException extends RuntimeException{
+    public KafkaConsoleException(String msg){
+        super(msg);
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/LoginResult.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/LoginResult.java
@@ -1,17 +0,0 @@
-package com.xuxd.kafka.console.beans;
-
-import lombok.Data;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/5/14 20:44
- **/
-@Data
-public class LoginResult {
-
-    private String token;
-
-    private List<String> permissions;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/ResponseData.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/ResponseData.java
@@ -11,7 +11,7 @@ import lombok.Setter;
 **/
 public class ResponseData<T> {

-    public static final int SUCCESS_CODE = 0, FAILED_CODE = -9999;
+    public static final int SUCCESS_CODE = 0, TOKEN_ILLEGAL = -5000, FAILED_CODE = -9999;

    public static final String SUCCESS_MSG = "success", FAILED_MSG = "failed";

@@ -58,6 +58,12 @@ public class ResponseData<T> {
        return this;
    }

+    public ResponseData<T> failed(int code) {
+        this.code = code;
+        this.msg = FAILED_MSG;
+        return this;
+    }
+
    public ResponseData<T> failed(String msg) {
        this.code = FAILED_CODE;
        this.msg = msg;
--- a/src/main/java/com/xuxd/kafka/console/beans/RolePermUpdateEvent.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/RolePermUpdateEvent.java
@@ -1,22 +0,0 @@
-package com.xuxd.kafka.console.beans;
-
-import lombok.Getter;
-import lombok.Setter;
-import lombok.ToString;
-import org.springframework.context.ApplicationEvent;
-
-/**
- * @author: xuxd
- * @date: 2023/5/18 15:49
- **/
-@ToString
-public class RolePermUpdateEvent extends ApplicationEvent {
-
-    @Getter
-    @Setter
-    private boolean reload = false;
-
-    public RolePermUpdateEvent(Object source) {
-        super(source);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/SendMessage.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/SendMessage.java
@@ -1,6 +1,5 @@
 package com.xuxd.kafka.console.beans;

-import java.util.List;
 import lombok.Data;

 /**
@@ -23,18 +22,4 @@ public class SendMessage {
    private int num;

    private long offset;
-
-    private List<Header> headers;
-
-    /**
-     * true: sync send.
-     */
-    private boolean sync;
-
-    @Data
-    public static class Header{
-        private String headerKey;
-
-        private String headerValue;
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/beans/annotation/RequiredAuthorize.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/annotation/RequiredAuthorize.java
@@ -0,0 +1,9 @@
+package com.xuxd.kafka.console.beans.annotation;
+
+import java.lang.annotation.*;
+
+@Target({ElementType.TYPE, ElementType.METHOD})
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+public @interface RequiredAuthorize {
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/dos/ClusterRoleRelationDO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dos/ClusterRoleRelationDO.java
@@ -1,24 +0,0 @@
-package com.xuxd.kafka.console.beans.dos;
-
-import com.baomidou.mybatisplus.annotation.IdType;
-import com.baomidou.mybatisplus.annotation.TableId;
-import com.baomidou.mybatisplus.annotation.TableName;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @since: 2023/8/23 21:35
- **/
-@Data
-@TableName("t_cluster_role_relation")
-public class ClusterRoleRelationDO {
-
-    @TableId(type = IdType.AUTO)
-    private Long id;
-
-    private Long roleId;
-
-    private Long clusterInfoId;
-
-    private String updateTime;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dos/DevOpsUserDO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dos/DevOpsUserDO.java
@@ -3,15 +3,14 @@ package com.xuxd.kafka.console.beans.dos;
 import com.baomidou.mybatisplus.annotation.IdType;
 import com.baomidou.mybatisplus.annotation.TableId;
 import com.baomidou.mybatisplus.annotation.TableName;
+import com.xuxd.kafka.console.beans.enums.Role;
 import lombok.Data;

-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
+import java.util.Date;
+
@Data
-@TableName("t_sys_user")
-public class SysUserDO {
+@TableName("t_devops_user")
+public class DevOpsUserDO {

    @TableId(type = IdType.AUTO)
    private Long id;
@@ -20,7 +19,11 @@ public class SysUserDO {

    private String password;

-    private String salt;
+    private Role role;

-    private String roleIds;
+    private boolean delete;
+
+    private Date createTime;
+
+    private Date updateTime;
 }
--- a/src/main/java/com/xuxd/kafka/console/beans/dos/SysPermissionDO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dos/SysPermissionDO.java
@@ -1,29 +0,0 @@
-package com.xuxd.kafka.console.beans.dos;
-
-import com.baomidou.mybatisplus.annotation.IdType;
-import com.baomidou.mybatisplus.annotation.TableId;
-import com.baomidou.mybatisplus.annotation.TableName;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
-@Data
-@TableName("t_sys_permission")
-public class SysPermissionDO {
-
-    @TableId(type = IdType.AUTO)
-    private Long id;
-
-    private String name;
-
-    /**
-     * 权限类型: 0：菜单，1：按钮
-     */
-    private Integer type;
-
-    private Long parentId;
-
-    private String permission;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dos/SysRoleDO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dos/SysRoleDO.java
@@ -1,24 +0,0 @@
-package com.xuxd.kafka.console.beans.dos;
-
-import com.baomidou.mybatisplus.annotation.IdType;
-import com.baomidou.mybatisplus.annotation.TableId;
-import com.baomidou.mybatisplus.annotation.TableName;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
-@Data
-@TableName("t_sys_role")
-public class SysRoleDO {
-
-    @TableId(type = IdType.AUTO)
-    private Long id;
-
-    private String roleName;
-
-    private String description;
-
-    private String permissionIds;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/AlterClientQuotaDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/AlterClientQuotaDTO.java
@@ -1,27 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import lombok.Data;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/1/10 20:12
- **/
-@Data
-public class AlterClientQuotaDTO {
-
-    private String type;
-
-    private List<String> types;
-
-    private List<String> names;
-
-    private String consumerRate;
-
-    private String producerRate;
-
-    private String requestPercentage;
-
-    private List<String> deleteConfigs;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/ClusterRoleRelationDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/ClusterRoleRelationDTO.java
@@ -1,28 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import com.xuxd.kafka.console.beans.dos.ClusterRoleRelationDO;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @since: 2023/8/23 21:42
- **/
-@Data
-public class ClusterRoleRelationDTO {
-
-    private Long id;
-
-    private Long roleId;
-
-    private Long clusterInfoId;
-
-    private String updateTime;
-
-    public ClusterRoleRelationDO toDO() {
-        ClusterRoleRelationDO aDo = new ClusterRoleRelationDO();
-        aDo.setId(id);
-        aDo.setRoleId(roleId);
-        aDo.setClusterInfoId(clusterInfoId);
-        return aDo;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/LoginUserDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/LoginUserDTO.java
@@ -1,15 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/5/14 18:59
- **/
-@Data
-public class LoginUserDTO {
-
-    private String username;
-
-    private String password;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/QueryClientQuotaDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/QueryClientQuotaDTO.java
@@ -1,17 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import lombok.Data;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/1/9 21:53
- **/
-@Data
-public class QueryClientQuotaDTO {
-
-    private List<String> types;
-
-    private List<String> names;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/QuerySendStatisticsDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/QuerySendStatisticsDTO.java
@@ -1,23 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import lombok.Data;
-
-import java.util.Date;
-import java.util.Set;
-
-/**
- * 发送统计查询请求，指定时间段内，发送了多少消息.
- * @author: xuxd
- * @since: 2023/12/1 22:01
- **/
-@Data
-public class QuerySendStatisticsDTO {
-
-    private String topic;
-
-    private Set<Integer> partition;
-
-    private Date startTime;
-
-    private Date endTime;
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/SysPermissionDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/SysPermissionDTO.java
@@ -1,32 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import com.xuxd.kafka.console.beans.dos.SysPermissionDO;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
-@Data
-public class SysPermissionDTO {
-
-    private String name;
-
-    /**
-     * 权限类型: 0：菜单，1：按钮
-     */
-    private Integer type;
-
-    private Long parentId;
-
-    private String permission;
-
-    public SysPermissionDO toSysPermissionDO() {
-        SysPermissionDO permissionDO = new SysPermissionDO();
-        permissionDO.setName(this.name);
-        permissionDO.setType(this.type);
-        permissionDO.setParentId(this.parentId);
-        permissionDO.setPermission(this.permission);
-        return permissionDO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/SysRoleDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/SysRoleDTO.java
@@ -1,35 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import com.xuxd.kafka.console.beans.dos.SysRoleDO;
-import lombok.Data;
-import org.apache.commons.collections.CollectionUtils;
-import org.apache.commons.lang3.StringUtils;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
-@Data
-public class SysRoleDTO {
-
-    private Long id;
-
-    private String roleName;
-
-    private String description;
-
-    private List<String> permissionIds;
-
-    public SysRoleDO toDO() {
-        SysRoleDO roleDO = new SysRoleDO();
-        roleDO.setId(this.id);
-        roleDO.setRoleName(this.roleName);
-        roleDO.setDescription(this.description);
-        if (CollectionUtils.isNotEmpty(permissionIds)) {
-            roleDO.setPermissionIds(StringUtils.join(this.permissionIds, ","));
-        }
-        return roleDO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/SysUserDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/SysUserDTO.java
@@ -1,34 +0,0 @@
-package com.xuxd.kafka.console.beans.dto;
-
-import com.xuxd.kafka.console.beans.dos.SysUserDO;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:17
- **/
-@Data
-public class SysUserDTO {
-
-    private Long id;
-
-    private String username;
-
-    private String password;
-
-    private String salt;
-
-    private String roleIds;
-
-    private Boolean resetPassword = false;
-
-    public SysUserDO toDO() {
-        SysUserDO userDO = new SysUserDO();
-        userDO.setId(this.id);
-        userDO.setUsername(this.username);
-        userDO.setPassword(this.password);
-        userDO.setSalt(this.salt);
-        userDO.setRoleIds(this.roleIds);
-        return userDO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/user/AddUserDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/user/AddUserDTO.java
@@ -0,0 +1,11 @@
+package com.xuxd.kafka.console.beans.dto.user;
+
+import com.xuxd.kafka.console.beans.enums.Role;
+import lombok.Data;
+
+@Data
+public class AddUserDTO {
+    private String username;
+    private String password;
+    private Role role;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/user/ListUserDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/user/ListUserDTO.java
@@ -0,0 +1,9 @@
+package com.xuxd.kafka.console.beans.dto.user;
+
+import lombok.Data;
+
+@Data
+public class ListUserDTO {
+    private Long id;
+    private String username;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/user/LoginDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/user/LoginDTO.java
@@ -0,0 +1,9 @@
+package com.xuxd.kafka.console.beans.dto.user;
+
+import lombok.Data;
+
+@Data
+public class LoginDTO {
+    private String username;
+    private String password;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/user/PasswordDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/user/PasswordDTO.java
@@ -0,0 +1,9 @@
+package com.xuxd.kafka.console.beans.dto.user;
+
+import lombok.Data;
+
+@Data
+public class PasswordDTO {
+    private Long userId;
+    private String password;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/dto/user/UpdateUserDTO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/dto/user/UpdateUserDTO.java
@@ -0,0 +1,11 @@
+package com.xuxd.kafka.console.beans.dto.user;
+
+import com.xuxd.kafka.console.beans.enums.Role;
+import lombok.Data;
+
+@Data
+public class UpdateUserDTO {
+    private String username;
+    private String password;
+    private Role role;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/enums/Role.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/enums/Role.java
@@ -0,0 +1,6 @@
+package com.xuxd.kafka.console.beans.enums;
+
+public enum Role {
+    developer,
+    manager
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/ClientQuotaEntityVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/ClientQuotaEntityVO.java
@@ -1,82 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import lombok.Data;
-import org.apache.commons.lang3.StringUtils;
-import org.apache.kafka.common.config.internals.QuotaConfigs;
-import org.apache.kafka.common.quota.ClientQuotaEntity;
-
-import java.util.List;
-import java.util.Map;
-
-/**
- * @author 晓东哥哥
- */
-@Data
-public class ClientQuotaEntityVO {
-
-    private String user;
-
-    private String client;
-
-    private String ip;
-
-    private String consumerRate;
-
-    private String producerRate;
-
-    private String requestPercentage;
-
-    public static ClientQuotaEntityVO from(ClientQuotaEntity entity, List<String> entityTypes, Map<String, Object> config) {
-        ClientQuotaEntityVO entityVO = new ClientQuotaEntityVO();
-        Map<String, String> entries = entity.entries();
-        entityTypes.forEach(type -> {
-            switch (type) {
-                case ClientQuotaEntity.USER:
-                    entityVO.setUser(entries.get(type));
-                    break;
-                case ClientQuotaEntity.CLIENT_ID:
-                    entityVO.setClient(entries.get(type));
-                    break;
-                case ClientQuotaEntity.IP:
-                    entityVO.setIp(entries.get(type));
-                    break;
-                default:
-                    break;
-            }
-        });
-        entityVO.setConsumerRate(convert(config.getOrDefault(QuotaConfigs.CONSUMER_BYTE_RATE_OVERRIDE_CONFIG, "")));
-        entityVO.setProducerRate(convert(config.getOrDefault(QuotaConfigs.PRODUCER_BYTE_RATE_OVERRIDE_CONFIG, "")));
-        entityVO.setRequestPercentage(config.getOrDefault(QuotaConfigs.REQUEST_PERCENTAGE_OVERRIDE_CONFIG, "").toString());
-        return entityVO;
-    }
-
-
-    public static String convert(Object num) {
-        if (num == null) {
-            return null;
-        }
-
-        if (num instanceof String) {
-            if ((StringUtils.isBlank((String) num))) {
-                return (String) num;
-            }
-        }
-
-        if (num instanceof Number) {
-            Number number = (Number) num;
-            double value = number.doubleValue();
-            double _1kb = 1024;
-            double _1mb = 1024 * _1kb;
-            if (value < _1kb) {
-                return value + " Byte";
-            }
-            if (value < _1mb) {
-                return String.format("%.1f KB", (value / _1kb));
-            }
-            if (value >= _1mb) {
-                return String.format("%.1f MB", (value / _1mb));
-            }
-        }
-        return String.valueOf(num);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/ClusterRoleRelationVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/ClusterRoleRelationVO.java
@@ -1,33 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import com.xuxd.kafka.console.beans.dos.ClusterRoleRelationDO;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @since: 2023/8/23 21:45
- **/
-@Data
-public class ClusterRoleRelationVO {
-
-    private Long id;
-
-    private Long roleId;
-
-    private Long clusterInfoId;
-
-    private String updateTime;
-
-    private String roleName;
-
-    private String clusterName;
-
-    public static ClusterRoleRelationVO from(ClusterRoleRelationDO relationDO) {
-        ClusterRoleRelationVO vo = new ClusterRoleRelationVO();
-        vo.setId(relationDO.getId());
-        vo.setRoleId(relationDO.getRoleId());
-        vo.setClusterInfoId(relationDO.getClusterInfoId());
-        vo.setUpdateTime(relationDO.getUpdateTime());
-        return vo;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/DevOpsUserVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/DevOpsUserVO.java
@@ -0,0 +1,16 @@
+package com.xuxd.kafka.console.beans.vo;
+
+import com.fasterxml.jackson.annotation.JsonFormat;
+import com.xuxd.kafka.console.beans.enums.Role;
+import lombok.Data;
+
+import java.util.Date;
+
+@Data
+public class DevOpsUserVO {
+    private Long id;
+    private String username;
+    private Role role;
+    @JsonFormat(pattern="yyyy-MM-dd HH:mm:ss",timezone="GMT+8")
+    private Date createTime;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/LoginVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/LoginVO.java
@@ -0,0 +1,16 @@
+package com.xuxd.kafka.console.beans.vo;
+
+import com.xuxd.kafka.console.beans.enums.Role;
+import lombok.AllArgsConstructor;
+import lombok.Builder;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Data
+@Builder
+@AllArgsConstructor
+@NoArgsConstructor
+public class LoginVO {
+    private String token;
+    private Role role;
+}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/QuerySendStatisticsVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/QuerySendStatisticsVO.java
@@ -1,36 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import lombok.Data;
-
-import java.text.DateFormat;
-import java.text.SimpleDateFormat;
-import java.util.Date;
-import java.util.Map;
-
-/**
- * @author: xuxd
- * @since: 2023/12/1 17:49
- **/
-@Data
-public class QuerySendStatisticsVO {
-
-    private static final String FORMAT = "yyyy-MM-dd'T'HH:mm:ss.SSSXXX";
-
-    private static final DateFormat DATE_FORMAT = new SimpleDateFormat(FORMAT);
-
-    private String topic;
-
-    private Long total;
-
-    private Map<Integer, Long> detail;
-
-    private String startTime;
-
-    private String endTime;
-
-    private String searchTime = format(new Date());
-
-    public static String format(Date date) {
-        return DATE_FORMAT.format(date);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/SysPermissionVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/SysPermissionVO.java
@@ -1,43 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import com.xuxd.kafka.console.beans.dos.SysPermissionDO;
-import lombok.Data;
-
-import java.util.List;
-
-/**
- * @author: xuxd
- * @date: 2023/4/17 21:18
- **/
-@Data
-public class SysPermissionVO {
-
-    private Long id;
-
-    private String name;
-
-    /**
-     * 权限类型: 0：菜单，1：按钮
-     */
-    private Integer type;
-
-    private Long parentId;
-
-    private String permission;
-
-    private Long key;
-
-    private List<SysPermissionVO> children;
-
-    public static SysPermissionVO from(SysPermissionDO permissionDO) {
-        SysPermissionVO permissionVO = new SysPermissionVO();
-
-        permissionVO.setPermission(permissionDO.getPermission());
-        permissionVO.setType(permissionDO.getType());
-        permissionVO.setName(permissionDO.getName());
-        permissionVO.setParentId(permissionDO.getParentId());
-        permissionVO.setKey(permissionDO.getId());
-        permissionVO.setId(permissionDO.getId());
-        return permissionVO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/SysRoleVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/SysRoleVO.java
@@ -1,38 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import com.xuxd.kafka.console.beans.dos.SysRoleDO;
-import lombok.Data;
-import org.apache.commons.lang3.StringUtils;
-
-import java.util.Arrays;
-import java.util.List;
-import java.util.stream.Collectors;
-
-/**
- * @author: xuxd
- * @date: 2023/4/19 21:12
- **/
-@Data
-public class SysRoleVO {
-
-    private Long id;
-
-    private String roleName;
-
-    private String description;
-
-    private List<Long> permissionIds;
-
-    public static SysRoleVO from(SysRoleDO roleDO) {
-        SysRoleVO roleVO = new SysRoleVO();
-        roleVO.setId(roleDO.getId());
-        roleVO.setRoleName(roleDO.getRoleName());
-        roleVO.setDescription(roleDO.getDescription());
-        if (StringUtils.isNotEmpty(roleDO.getPermissionIds())) {
-            List<Long> list = Arrays.stream(roleDO.getPermissionIds().split(",")).
-                    filter(StringUtils::isNotEmpty).map(e -> Long.valueOf(e.trim())).collect(Collectors.toList());
-            roleVO.setPermissionIds(list);
-        }
-        return roleVO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/beans/vo/SysUserVO.java
+++ b/src/main/java/com/xuxd/kafka/console/beans/vo/SysUserVO.java
@@ -1,31 +0,0 @@
-package com.xuxd.kafka.console.beans.vo;
-
-import com.xuxd.kafka.console.beans.dos.SysUserDO;
-import lombok.Data;
-
-/**
- * @author: xuxd
- * @date: 2023/5/6 13:06
- **/
-@Data
-public class SysUserVO {
-
-    private Long id;
-
-    private String username;
-
-    private String password;
-
-    private String roleIds;
-
-    private String roleNames;
-
-    public static SysUserVO from(SysUserDO userDO) {
-        SysUserVO userVO = new SysUserVO();
-        userVO.setId(userDO.getId());
-        userVO.setUsername(userDO.getUsername());
-        userVO.setRoleIds(userDO.getRoleIds());
-        userVO.setPassword(userDO.getPassword());
-        return userVO;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/boot/Bootstrap.java
+++ b/src/main/java/com/xuxd/kafka/console/boot/Bootstrap.java
@@ -2,15 +2,20 @@ package com.xuxd.kafka.console.boot;

 import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
 import com.xuxd.kafka.console.beans.dos.ClusterInfoDO;
+import com.xuxd.kafka.console.beans.dos.DevOpsUserDO;
 import com.xuxd.kafka.console.config.KafkaConfig;
 import com.xuxd.kafka.console.dao.ClusterInfoMapper;
+import com.xuxd.kafka.console.dao.DevOpsUserMapper;
 import com.xuxd.kafka.console.utils.ConvertUtil;
 import java.util.List;
+
+import com.xuxd.kafka.console.utils.Md5Utils;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.collections.CollectionUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.ObjectProvider;
 import org.springframework.beans.factory.SmartInitializingSingleton;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Component;

 /**
--- a/src/main/java/com/xuxd/kafka/console/boot/InitSuperDevOpsUser.java
+++ b/src/main/java/com/xuxd/kafka/console/boot/InitSuperDevOpsUser.java
@@ -0,0 +1,42 @@
+package com.xuxd.kafka.console.boot;
+
+import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
+import com.xuxd.kafka.console.beans.dos.DevOpsUserDO;
+import com.xuxd.kafka.console.beans.enums.Role;
+import com.xuxd.kafka.console.dao.DevOpsUserMapper;
+import com.xuxd.kafka.console.utils.Md5Utils;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.SmartInitializingSingleton;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+
+@Component
+@Slf4j
+@RequiredArgsConstructor
+public class InitSuperDevOpsUser implements SmartInitializingSingleton {
+
+    private final DevOpsUserMapper devOpsUserMapper;
+    public final static String SUPER_USERNAME = "admin";
+
+    @Value("${devops.password:kafka-console-ui521}")
+    private String password;
+
+    @Override
+    public void afterSingletonsInstantiated() {
+        QueryWrapper<DevOpsUserDO> userDOQueryWrapper = new QueryWrapper<>();
+        userDOQueryWrapper.eq("username", SUPER_USERNAME);
+        DevOpsUserDO userDO = devOpsUserMapper.selectOne(userDOQueryWrapper);
+        if (userDO == null){
+            DevOpsUserDO devOpsUserDO = new DevOpsUserDO();
+            devOpsUserDO.setUsername(SUPER_USERNAME);
+            devOpsUserDO.setPassword(Md5Utils.MD5(password));
+            devOpsUserDO.setRole(Role.manager);
+            devOpsUserMapper.insert(devOpsUserDO);
+        } else {
+            userDO.setPassword(Md5Utils.MD5(password));
+            devOpsUserMapper.updateById(userDO);
+        }
+        log.info("init super devops user done, username = {}", SUPER_USERNAME);
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/cache/RolePermCache.java
+++ b/src/main/java/com/xuxd/kafka/console/cache/RolePermCache.java
@@ -1,91 +0,0 @@
-package com.xuxd.kafka.console.cache;
-
-import com.xuxd.kafka.console.beans.RolePermUpdateEvent;
-import com.xuxd.kafka.console.beans.dos.SysPermissionDO;
-import com.xuxd.kafka.console.beans.dos.SysRoleDO;
-import com.xuxd.kafka.console.dao.SysPermissionMapper;
-import com.xuxd.kafka.console.dao.SysRoleMapper;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.beans.factory.SmartInitializingSingleton;
-import org.springframework.context.ApplicationListener;
-import org.springframework.context.annotation.DependsOn;
-import org.springframework.stereotype.Component;
-
-import java.util.*;
-import java.util.function.Function;
-import java.util.stream.Collectors;
-
-/**
- * @author: xuxd
- * @date: 2023/5/18 15:47
- **/
-@DependsOn("dataInit")
-@Slf4j
-@Component
-public class RolePermCache implements ApplicationListener<RolePermUpdateEvent>, SmartInitializingSingleton {
-
-    private Map<Long, SysPermissionDO> permCache = new HashMap<>();
-
-    private Map<Long, Set<String>> rolePermCache = new HashMap<>();
-
-    private final SysPermissionMapper permissionMapper;
-
-    private final SysRoleMapper roleMapper;
-
-    public RolePermCache(SysPermissionMapper permissionMapper, SysRoleMapper roleMapper) {
-        this.permissionMapper = permissionMapper;
-        this.roleMapper = roleMapper;
-    }
-
-    @Override
-    public void onApplicationEvent(RolePermUpdateEvent event) {
-        log.info("更新角色权限信息：{}", event);
-        if (event.isReload()) {
-            this.loadPermCache();
-        }
-        refresh();
-    }
-
-    public Map<Long, SysPermissionDO> getPermCache() {
-        return permCache;
-    }
-
-    public Map<Long, Set<String>> getRolePermCache() {
-        return rolePermCache;
-    }
-
-    private void refresh() {
-        List<SysRoleDO> roleDOS = roleMapper.selectList(null);
-        Map<Long, Set<String>> tmp = new HashMap<>();
-        for (SysRoleDO roleDO : roleDOS) {
-            String permissionIds = roleDO.getPermissionIds();
-            if (StringUtils.isEmpty(permissionIds)) {
-                continue;
-            }
-            List<Long> list = Arrays.stream(permissionIds.split(",")).map(String::trim).filter(StringUtils::isNotEmpty).map(Long::valueOf).collect(Collectors.toList());
-            Set<String> permSet = tmp.getOrDefault(roleDO.getId(), new HashSet<>());
-            for (Long permId : list) {
-                SysPermissionDO permissionDO = permCache.get(permId);
-                if (permissionDO != null) {
-                    permSet.add(permissionDO.getPermission());
-                }
-            }
-            tmp.put(roleDO.getId(), permSet);
-        }
-        rolePermCache = tmp;
-    }
-
-    private void loadPermCache() {
-        List<SysPermissionDO> roleDOS = permissionMapper.selectList(null);
-        Map<Long, SysPermissionDO> map = roleDOS.stream().collect(Collectors.toMap(SysPermissionDO::getId, Function.identity(), (e1, e2) -> e1));
-        permCache = map;
-    }
-
-
-    @Override
-    public void afterSingletonsInstantiated() {
-        this.loadPermCache();
-        this.refresh();
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/cache/TimeBasedCache.java
+++ b/src/main/java/com/xuxd/kafka/console/cache/TimeBasedCache.java
@@ -1,33 +0,0 @@
-package com.xuxd.kafka.console.cache;
-
-import com.google.common.cache.CacheBuilder;
-import com.google.common.cache.CacheLoader;
-import com.google.common.cache.LoadingCache;
-import com.google.common.cache.RemovalListener;
-import kafka.console.KafkaConsole;
-
-import java.util.concurrent.ExecutionException;
-import java.util.concurrent.TimeUnit;
-
-public class TimeBasedCache<K, V> {
-    private LoadingCache<K, V> cache;
-
-    private KafkaConsole console;
-
-    public TimeBasedCache(CacheLoader<K, V> loader, RemovalListener<K, V> listener) {
-        cache = CacheBuilder.newBuilder()
-                .maximumSize(50)                             // maximum 100 records can be cached
-                .expireAfterAccess(30, TimeUnit.MINUTES)      // cache will expire after 30 minutes of access
-                .removalListener(listener)
-                .build(loader);
-
-    }
-
-    public V get(K k) {
-        try {
-            return cache.get(k);
-        } catch (ExecutionException e) {
-            throw new RuntimeException("Get connection from cache error.", e);
-        }
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/config/AuthConfig.java
+++ b/src/main/java/com/xuxd/kafka/console/config/AuthConfig.java
@@ -1,54 +0,0 @@
-package com.xuxd.kafka.console.config;
-
-import lombok.Data;
-import org.springframework.boot.context.properties.ConfigurationProperties;
-import org.springframework.context.annotation.Configuration;
-
-/**
- * @author: xuxd
- * @date: 2023/5/9 21:08
- **/
-@Data
-@Configuration
-@ConfigurationProperties(prefix = "auth")
-public class AuthConfig {
-
-    /**
-     * 是否启用登录权限认证.
-     */
-    private boolean enable;
-
-    /**
-     * 认证生成Jwt token用的,随便写.
-     */
-    private String secret = "kafka-console-ui-default-secret";
-
-    /**
-     * token有效期，小时.
-     */
-    private long expireHours;
-
-    /**
-     * 隐藏集群的属性信息，如果当前用户没有集群切换里的编辑权限，就不能看集群的属性信息，有开启ACL的集群需要开启这个.
-     * 不隐藏属性不行，开启ACL的时候，属性里需要配置认证信息，比如超管的用户名密码等，不等被普通角色看到.
-     */
-    private boolean hideClusterProperty;
-
-    /**
-     * 不要修改.与data-h2.sql里配置的一致即可.
-     */
-    private String hideClusterPropertyPerm = "op:cluster-switch:edit";
-
-    /**
-     * 是否启用集群的数据权限，如果启用，可以配置哪些角色看到哪些集群.
-     * 默认false是为了兼容老版本.
-     *
-     * @since 1.0.9
-     */
-    private boolean enableClusterAuthority;
-
-    /**
-     * 重新加载权限信息，版本升级替换jar包的时候，新版本里增加了新的权限菜单，这个设置为true.
-     */
-    private boolean reloadPermission;
-}
--- a/src/main/java/com/xuxd/kafka/console/config/KafkaConfig.java
+++ b/src/main/java/com/xuxd/kafka/console/config/KafkaConfig.java
@@ -20,12 +20,6 @@ public class KafkaConfig {

    private Properties properties;

-    private boolean cacheAdminConnection;
-
-    private boolean cacheProducerConnection;
-
-    private boolean cacheConsumerConnection;
-
    public String getBootstrapServer() {
        return bootstrapServer;
    }
@@ -49,28 +43,4 @@ public class KafkaConfig {
    public void setProperties(Properties properties) {
        this.properties = properties;
    }
-
-    public boolean isCacheAdminConnection() {
-        return cacheAdminConnection;
-    }
-
-    public void setCacheAdminConnection(boolean cacheAdminConnection) {
-        this.cacheAdminConnection = cacheAdminConnection;
-    }
-
-    public boolean isCacheProducerConnection() {
-        return cacheProducerConnection;
-    }
-
-    public void setCacheProducerConnection(boolean cacheProducerConnection) {
-        this.cacheProducerConnection = cacheProducerConnection;
-    }
-
-    public boolean isCacheConsumerConnection() {
-        return cacheConsumerConnection;
-    }
-
-    public void setCacheConsumerConnection(boolean cacheConsumerConnection) {
-        this.cacheConsumerConnection = cacheConsumerConnection;
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/config/KafkaConfiguration.java
+++ b/src/main/java/com/xuxd/kafka/console/config/KafkaConfiguration.java
@@ -1,6 +1,13 @@
 package com.xuxd.kafka.console.config;

-import kafka.console.*;
+import kafka.console.ClusterConsole;
+import kafka.console.ConfigConsole;
+import kafka.console.ConsumerConsole;
+import kafka.console.KafkaAclConsole;
+import kafka.console.KafkaConfigConsole;
+import kafka.console.MessageConsole;
+import kafka.console.OperationConsole;
+import kafka.console.TopicConsole;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;

@@ -45,7 +52,7 @@ public class KafkaConfiguration {

    @Bean
    public OperationConsole operationConsole(KafkaConfig config, TopicConsole topicConsole,
-                                             ConsumerConsole consumerConsole) {
+        ConsumerConsole consumerConsole) {
        return new OperationConsole(config, topicConsole, consumerConsole);
    }

@@ -53,9 +60,4 @@ public class KafkaConfiguration {
    public MessageConsole messageConsole(KafkaConfig config) {
        return new MessageConsole(config);
    }
-
-    @Bean
-    public ClientQuotaConsole clientQuotaConsole(KafkaConfig config) {
-        return new ClientQuotaConsole(config);
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/config/LogConfig.java
+++ b/src/main/java/com/xuxd/kafka/console/config/LogConfig.java
@@ -1,23 +0,0 @@
-package com.xuxd.kafka.console.config;
-
-import org.springframework.boot.context.properties.ConfigurationProperties;
-import org.springframework.context.annotation.Configuration;
-
-/**
- * @author: xuxd
- * @since: 2023/8/20 20:00
- **/
-@Configuration
-@ConfigurationProperties(prefix = "log")
-public class LogConfig {
-
-    private boolean printControllerLog = true;
-
-    public boolean isPrintControllerLog() {
-        return printControllerLog;
-    }
-
-    public void setPrintControllerLog(boolean printControllerLog) {
-        this.printControllerLog = printControllerLog;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/controller/AclAuthController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/AclAuthController.java
@@ -1,7 +1,5 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.AclEntry;
 import com.xuxd.kafka.console.beans.dto.AddAuthDTO;
 import com.xuxd.kafka.console.beans.dto.ConsumerAuthDTO;
@@ -30,7 +28,6 @@ public class AclAuthController {
    @Autowired
    private AclService aclService;

-    @Permission({"acl:authority:detail", "acl:sasl-scram:detail"})
    @PostMapping("/detail")
    public Object getAclDetailList(@RequestBody QueryAclDTO param) {
        return aclService.getAclDetailList(param.toEntry());
@@ -41,14 +38,11 @@ public class AclAuthController {
        return aclService.getOperationList();
    }

-    @Permission("acl:authority")
    @PostMapping("/list")
    public Object getAclList(@RequestBody QueryAclDTO param) {
        return aclService.getAclList(param.toEntry());
    }

-    @ControllerLog("增加Acl")
-    @Permission({"acl:authority:add-principal", "acl:authority:add", "acl:sasl-scram:add-auth"})
    @PostMapping
    public Object addAcl(@RequestBody AddAuthDTO param) {
        return aclService.addAcl(param.toAclEntry());
@@ -60,8 +54,6 @@ public class AclAuthController {
     * @param param entry.topic && entry.username must.
     * @return
     */
-    @ControllerLog("增加ProducerAcl")
-    @Permission({"acl:authority:producer", "acl:sasl-scram:producer"})
    @PostMapping("/producer")
    public Object addProducerAcl(@RequestBody ProducerAuthDTO param) {

@@ -74,8 +66,6 @@ public class AclAuthController {
     * @param param entry.topic && entry.groupId entry.username must.
     * @return
     */
-    @ControllerLog("增加ConsumerAcl")
-    @Permission({"acl:authority:consumer", "acl:sasl-scram:consumer"})
    @PostMapping("/consumer")
    public Object addConsumerAcl(@RequestBody ConsumerAuthDTO param) {

@@ -88,8 +78,6 @@ public class AclAuthController {
     * @param entry entry
     * @return
     */
-    @ControllerLog("删除Acl")
-    @Permission({"acl:authority:clean", "acl:sasl-scram:pure"})
    @DeleteMapping
    public Object deleteAclByUser(@RequestBody AclEntry entry) {
        return aclService.deleteAcl(entry);
@@ -101,21 +89,17 @@ public class AclAuthController {
     * @param param entry.username
     * @return
     */
-    @ControllerLog("删除Acl")
-    @Permission({"acl:authority:clean", "acl:sasl-scram:pure"})
    @DeleteMapping("/user")
    public Object deleteAclByUser(@RequestBody DeleteAclDTO param) {
        return aclService.deleteUserAcl(param.toUserEntry());
    }

    /**
-     * delete producer acl.
+     * add producer acl.
     *
     * @param param entry.topic && entry.username must.
     * @return
     */
-    @ControllerLog("删除ProducerAcl")
-    @Permission({"acl:authority:clean", "acl:sasl-scram:pure"})
    @DeleteMapping("/producer")
    public Object deleteProducerAcl(@RequestBody ProducerAuthDTO param) {

@@ -123,29 +107,15 @@ public class AclAuthController {
    }

    /**
-     * delete consumer acl.
+     * add consumer acl.
     *
     * @param param entry.topic && entry.groupId entry.username must.
     * @return
     */
-    @ControllerLog("删除ConsumerAcl")
-    @Permission({"acl:authority:clean", "acl:sasl-scram:pure"})
    @DeleteMapping("/consumer")
    public Object deleteConsumerAcl(@RequestBody ConsumerAuthDTO param) {

        return aclService.deleteConsumerAcl(param.toTopicEntry(), param.toGroupEntry());
    }

-    /**
-     * clear principal acls.
-     *
-     * @param param acl principal.
-     * @return true or false.
-     */
-    @ControllerLog("清除Acl")
-    @Permission({"acl:authority:clean", "acl:sasl-scram:pure"})
-    @DeleteMapping("/clear")
-    public Object clearAcl(@RequestBody DeleteAclDTO param) {
-        return aclService.clearAcl(param.toUserEntry());
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/controller/AclUserController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/AclUserController.java
@@ -1,11 +1,8 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.AclEntry;
 import com.xuxd.kafka.console.beans.AclUser;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
 import com.xuxd.kafka.console.service.AclService;
-import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.web.bind.annotation.DeleteMapping;
 import org.springframework.web.bind.annotation.GetMapping;
@@ -16,7 +13,7 @@ import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;

 /**
- * kafka-console-ui. sasl scram user.
+ * kafka-console-ui.
 *
 * @author xuxd
 * @date 2021-08-28 21:13:05
@@ -28,44 +25,32 @@ public class AclUserController {
    @Autowired
    private AclService aclService;

-    @Permission("acl:sasl-scram")
    @GetMapping
    public Object getUserList() {
        return aclService.getUserList();
    }

-    @ControllerLog("增加SaslUser")
-    @Permission({"acl:sasl-scram:add-update", "acl:sasl-scram:add-auth"})
    @PostMapping
+    @RequiredAuthorize
    public Object addOrUpdateUser(@RequestBody AclUser user) {
        return aclService.addOrUpdateUser(user.getUsername(), user.getPassword());
    }

-    @ControllerLog("删除SaslUser")
-    @Permission({"acl:sasl-scram:del", "acl:sasl-scram:pure"})
    @DeleteMapping
+    @RequiredAuthorize
    public Object deleteUser(@RequestBody AclUser user) {
        return aclService.deleteUser(user.getUsername());
    }


-    @ControllerLog("删除SaslUser和Acl")
-    @Permission({"acl:sasl-scram:del", "acl:sasl-scram:pure"})
    @DeleteMapping("/auth")
+    @RequiredAuthorize
    public Object deleteUserAndAuth(@RequestBody AclUser user) {
        return aclService.deleteUserAndAuth(user.getUsername());
    }

-    @Permission("acl:sasl-scram:detail")
    @GetMapping("/detail")
-    public Object getUserDetail(@RequestParam("username") String username) {
+    public Object getUserDetail(@RequestParam String username) {
        return aclService.getUserDetail(username);
    }
-
-    @GetMapping("/scram")
-    public Object getSaslScramUserList(@RequestParam(required = false, name = "username") String username) {
-        AclEntry entry = new AclEntry();
-        entry.setPrincipal(StringUtils.isNotBlank(username) ? username : null);
-        return aclService.getSaslScramUserList(entry);
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/controller/AuthController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/AuthController.java
@@ -1,36 +0,0 @@
-package com.xuxd.kafka.console.controller;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.LoginUserDTO;
-import com.xuxd.kafka.console.config.AuthConfig;
-import com.xuxd.kafka.console.service.AuthService;
-import org.springframework.web.bind.annotation.*;
-
-/**
- * @author: xuxd
- * @date: 2023/5/11 18:54
- **/
-@RestController
-@RequestMapping("/auth")
-public class AuthController {
-
-
-    private final AuthConfig authConfig;
-
-    private final AuthService authService;
-
-    public AuthController(AuthConfig authConfig, AuthService authService) {
-        this.authConfig = authConfig;
-        this.authService = authService;
-    }
-
-    @GetMapping("/enable")
-    public boolean enable() {
-        return authConfig.isEnable();
-    }
-
-    @PostMapping("/login")
-    public ResponseData login(@RequestBody LoginUserDTO userDTO) {
-        return authService.login(userDTO);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/controller/ClientQuotaController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/ClientQuotaController.java
@@ -1,59 +0,0 @@
-package com.xuxd.kafka.console.controller;
-
-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.AlterClientQuotaDTO;
-import com.xuxd.kafka.console.beans.dto.QueryClientQuotaDTO;
-import com.xuxd.kafka.console.service.ClientQuotaService;
-import org.apache.commons.collections.CollectionUtils;
-import org.springframework.web.bind.annotation.*;
-
-/**
- * @author: xuxd
- * @date: 2023/1/9 21:50
- **/
-@RestController
-@RequestMapping("/client/quota")
-public class ClientQuotaController {
-
-    private final ClientQuotaService clientQuotaService;
-
-    public ClientQuotaController(ClientQuotaService clientQuotaService) {
-        this.clientQuotaService = clientQuotaService;
-    }
-
-    @Permission({"quota:user", "quota:client", "quota:user-client"})
-    @PostMapping("/list")
-    public Object getClientQuotaConfigs(@RequestBody QueryClientQuotaDTO request) {
-        return clientQuotaService.getClientQuotaConfigs(request.getTypes(), request.getNames());
-    }
-
-    @ControllerLog("增加限流配额")
-    @Permission({"quota:user:add", "quota:client:add", "quota:user-client:add", "quota:edit"})
-    @PostMapping
-    public Object alterClientQuotaConfigs(@RequestBody AlterClientQuotaDTO request) {
-        if (request.getTypes().size() != 2) {
-            if (CollectionUtils.isEmpty(request.getTypes())
-                    || CollectionUtils.isEmpty(request.getNames())
-                    || request.getTypes().size() != request.getNames().size()) {
-                return ResponseData.create().failed("types length and names length is invalid.");
-            }
-        }
-        return clientQuotaService.alterClientQuotaConfigs(request);
-    }
-
-    @ControllerLog("删除限流配额")
-    @Permission("quota:del")
-    @DeleteMapping
-    public Object deleteClientQuotaConfigs(@RequestBody AlterClientQuotaDTO request) {
-        if (request.getTypes().size() != 2) {
-            if (CollectionUtils.isEmpty(request.getTypes())
-                    || CollectionUtils.isEmpty(request.getNames())
-                    || request.getTypes().size() != request.getNames().size()) {
-                return ResponseData.create().failed("types length and names length is invalid.");
-            }
-        }
-        return clientQuotaService.deleteClientQuotaConfigs(request);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/controller/ClusterController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/ClusterController.java
@@ -1,7 +1,5 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.dto.ClusterInfoDTO;
 import com.xuxd.kafka.console.service.ClusterService;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -25,34 +23,21 @@ public class ClusterController {
        return clusterService.getClusterInfo();
    }

-    @Permission({"op:cluster-switch", "user-manage:cluster-role:add"})
    @GetMapping("/info")
    public Object getClusterInfoList() {
        return clusterService.getClusterInfoList();
    }

-    @Permission({"user-manage:cluster-role:add"})
-    @GetMapping("/info/select")
-    public Object getClusterInfoListForSelect() {
-        return clusterService.getClusterInfoListForSelect();
-    }
-
-    @ControllerLog("增加集群信息")
-    @Permission("op:cluster-switch:add")
    @PostMapping("/info")
    public Object addClusterInfo(@RequestBody ClusterInfoDTO dto) {
        return clusterService.addClusterInfo(dto.to());
    }

-    @ControllerLog("删除集群信息")
-    @Permission("op:cluster-switch:del")
    @DeleteMapping("/info")
    public Object deleteClusterInfo(@RequestBody ClusterInfoDTO dto) {
        return clusterService.deleteClusterInfo(dto.getId());
    }

-    @ControllerLog("编辑集群信息")
-    @Permission("op:cluster-switch:edit")
    @PutMapping("/info")
    public Object updateClusterInfo(@RequestBody ClusterInfoDTO dto) {
        return clusterService.updateClusterInfo(dto.to());
--- a/src/main/java/com/xuxd/kafka/console/controller/ClusterRoleRelationController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/ClusterRoleRelationController.java
@@ -1,42 +0,0 @@
-package com.xuxd.kafka.console.controller;
-
-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.dto.ClusterRoleRelationDTO;
-import com.xuxd.kafka.console.service.ClusterRoleRelationService;
-import org.springframework.web.bind.annotation.*;
-
-/**
- * @author: xuxd
- * @since: 2023/8/23 22:01
- **/
-@RestController
-@RequestMapping("/cluster-role/relation")
-public class ClusterRoleRelationController {
-
-    private final ClusterRoleRelationService service;
-
-    public ClusterRoleRelationController(ClusterRoleRelationService service) {
-        this.service = service;
-    }
-
-    @Permission("user-manage:cluster-role")
-    @GetMapping
-    public Object select() {
-        return service.select();
-    }
-
-    @ControllerLog("增加集群归属角色信息")
-    @Permission("user-manage:cluster-role:add")
-    @PostMapping
-    public Object add(@RequestBody ClusterRoleRelationDTO dto) {
-        return service.add(dto);
-    }
-
-    @ControllerLog("删除集群归属角色信息")
-    @Permission("user-manage:cluster-role:delete")
-    @DeleteMapping
-    public Object delete(@RequestParam("id") Long id) {
-        return service.delete(id);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/controller/ConfigController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/ConfigController.java
@@ -1,8 +1,7 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.ResponseData;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
 import com.xuxd.kafka.console.beans.dto.AlterConfigDTO;
 import com.xuxd.kafka.console.beans.enums.AlterType;
 import com.xuxd.kafka.console.config.KafkaConfig;
@@ -43,62 +42,53 @@ public class ConfigController {
        return ResponseData.create().data(configMap).success();
    }

-    @Permission("topic:property-config")
    @GetMapping("/topic")
    public Object getTopicConfig(String topic) {
        return configService.getTopicConfig(topic);
    }

-    @ControllerLog("编辑topic配置")
-    @Permission("topic:property-config:edit")
    @PostMapping("/topic")
+    @RequiredAuthorize
    public Object setTopicConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterTopicConfig(dto.getEntity(), dto.to(), AlterType.SET);
    }

-    @ControllerLog("删除topic配置")
-    @Permission("topic:property-config:del")
    @DeleteMapping("/topic")
+    @RequiredAuthorize
    public Object deleteTopicConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterTopicConfig(dto.getEntity(), dto.to(), AlterType.DELETE);
    }

-    @Permission("cluster:property-config")
    @GetMapping("/broker")
    public Object getBrokerConfig(String brokerId) {
        return configService.getBrokerConfig(brokerId);
    }

-    @ControllerLog("设置broker配置")
-    @Permission("cluster:edit")
    @PostMapping("/broker")
+    @RequiredAuthorize
    public Object setBrokerConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterBrokerConfig(dto.getEntity(), dto.to(), AlterType.SET);
    }

-    @ControllerLog("编辑broker配置")
-    @Permission("cluster:edit")
    @DeleteMapping("/broker")
+    @RequiredAuthorize
    public Object deleteBrokerConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterBrokerConfig(dto.getEntity(), dto.to(), AlterType.DELETE);
    }

-    @Permission("cluster:log-config")
    @GetMapping("/broker/logger")
    public Object getBrokerLoggerConfig(String brokerId) {
        return configService.getBrokerLoggerConfig(brokerId);
    }

-    @ControllerLog("编辑broker日志配置")
-    @Permission("cluster:edit")
    @PostMapping("/broker/logger")
+    @RequiredAuthorize
    public Object setBrokerLoggerConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterBrokerLoggerConfig(dto.getEntity(), dto.to(), AlterType.SET);
    }

-    @ControllerLog("删除broker日志配置")
-    @Permission("cluster:edit")
    @DeleteMapping("/broker/logger")
+    @RequiredAuthorize
    public Object deleteBrokerLoggerConfig(@RequestBody AlterConfigDTO dto) {
        return configService.alterBrokerLoggerConfig(dto.getEntity(), dto.to(), AlterType.DELETE);
    }
--- a/src/main/java/com/xuxd/kafka/console/controller/ConsumerController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/ConsumerController.java
@@ -1,21 +1,29 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.ResponseData;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
 import com.xuxd.kafka.console.beans.dto.AddSubscriptionDTO;
 import com.xuxd.kafka.console.beans.dto.QueryConsumerGroupDTO;
 import com.xuxd.kafka.console.beans.dto.ResetOffsetDTO;
 import com.xuxd.kafka.console.service.ConsumerService;
+import java.util.Collections;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Objects;
+import java.util.Set;
 import org.apache.commons.collections.CollectionUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.kafka.clients.consumer.OffsetResetStrategy;
 import org.apache.kafka.common.ConsumerGroupState;
 import org.apache.kafka.common.TopicPartition;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.*;
-
-import java.util.*;
+import org.springframework.web.bind.annotation.DeleteMapping;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;

 /**
 * kafka-console-ui.
@@ -44,45 +52,36 @@ public class ConsumerController {
        return consumerService.getConsumerGroupList(groupIdList, stateSet);
    }

-    @ControllerLog("删除消费组")
-    @Permission("group:del")
    @DeleteMapping("/group")
-    public Object deleteConsumerGroup(@RequestParam("groupId") String groupId) {
+    public Object deleteConsumerGroup(@RequestParam String groupId) {
        return consumerService.deleteConsumerGroup(groupId);
    }

-    @Permission("group:client")
    @GetMapping("/member")
-    public Object getConsumerMembers(@RequestParam("groupId") String groupId) {
+    public Object getConsumerMembers(@RequestParam String groupId) {
        return consumerService.getConsumerMembers(groupId);
    }

-    @Permission("group:consumer-detail")
    @GetMapping("/detail")
-    public Object getConsumerDetail(@RequestParam("groupId") String groupId) {
+    public Object getConsumerDetail(@RequestParam String groupId) {
        return consumerService.getConsumerDetail(groupId);
    }

-    @ControllerLog("新增消费组")
-    @Permission("group:add")
    @PostMapping("/subscription")
+    @RequiredAuthorize
    public Object addSubscription(@RequestBody AddSubscriptionDTO subscriptionDTO) {
        return consumerService.addSubscription(subscriptionDTO.getGroupId(), subscriptionDTO.getTopic());
    }

-    @ControllerLog("重置消费位点")
-    @Permission({"group:consumer-detail:min",
-            "group:consumer-detail:last",
-            "group:consumer-detail:timestamp",
-            "group:consumer-detail:any"})
    @PostMapping("/reset/offset")
+    @RequiredAuthorize
    public Object restOffset(@RequestBody ResetOffsetDTO offsetDTO) {
        ResponseData res = ResponseData.create().failed("unknown");
        switch (offsetDTO.getLevel()) {
            case ResetOffsetDTO.Level.TOPIC:
                switch (offsetDTO.getType()) {
                    case ResetOffsetDTO.Type
-                            .EARLIEST:
+                        .EARLIEST:
                        res = consumerService.resetOffsetToEndpoint(offsetDTO.getGroupId(), offsetDTO.getTopic(), OffsetResetStrategy.EARLIEST);
                        break;
                    case ResetOffsetDTO.Type.LATEST:
@@ -98,7 +97,7 @@ public class ConsumerController {
            case ResetOffsetDTO.Level.PARTITION:
                switch (offsetDTO.getType()) {
                    case ResetOffsetDTO.Type
-                            .SPECIAL:
+                        .SPECIAL:
                        res = consumerService.resetPartitionToTargetOffset(offsetDTO.getGroupId(), new TopicPartition(offsetDTO.getTopic(), offsetDTO.getPartition()), offsetDTO.getOffset());
                        break;
                    default:
@@ -118,19 +117,17 @@ public class ConsumerController {
    }

    @GetMapping("/topic/list")
-    public Object getSubscribeTopicList(@RequestParam("groupId") String groupId) {
+    public Object getSubscribeTopicList(@RequestParam String groupId) {
        return consumerService.getSubscribeTopicList(groupId);
    }

-    @Permission({"topic:consumer-detail"})
    @GetMapping("/topic/subscribed")
-    public Object getTopicSubscribedByGroups(@RequestParam("topic") String topic) {
+    public Object getTopicSubscribedByGroups(@RequestParam String topic) {
        return consumerService.getTopicSubscribedByGroups(topic);
    }

-    @Permission("group:offset-partition")
    @GetMapping("/offset/partition")
-    public Object getOffsetPartition(@RequestParam("groupId") String groupId) {
+    public Object getOffsetPartition(@RequestParam String groupId) {
        return consumerService.getOffsetPartition(groupId);
    }
 }
--- a/src/main/java/com/xuxd/kafka/console/controller/DevOpsUserController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/DevOpsUserController.java
@@ -0,0 +1,53 @@
+package com.xuxd.kafka.console.controller;
+
+import com.xuxd.kafka.console.beans.ResponseData;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
+import com.xuxd.kafka.console.beans.dto.user.*;
+import com.xuxd.kafka.console.beans.vo.DevOpsUserVO;
+import com.xuxd.kafka.console.beans.vo.LoginVO;
+import com.xuxd.kafka.console.service.DevOpsUserService;
+import lombok.RequiredArgsConstructor;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * 用户管理
+ * @author dongyinuo
+ */
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/devops/user")
+public class DevOpsUserController {
+
+    private final DevOpsUserService devOpsUserService;
+
+    @PostMapping("add")
+    @RequiredAuthorize
+    public ResponseData<Boolean> add(@RequestBody AddUserDTO addUserDTO){
+        return devOpsUserService.add(addUserDTO);
+    }
+
+    @PostMapping("update")
+    @RequiredAuthorize
+    public ResponseData<Boolean> update(@RequestBody UpdateUserDTO updateUserDTO){
+        return devOpsUserService.update(updateUserDTO);
+    }
+
+    @DeleteMapping
+    @RequiredAuthorize
+    public ResponseData<Boolean> delete(@RequestParam Long id){
+        return devOpsUserService.delete(id);
+    }
+
+    @GetMapping("list")
+    @RequiredAuthorize
+    public ResponseData<List<DevOpsUserVO>> list(@ModelAttribute ListUserDTO listUserDTO){
+        return devOpsUserService.list(listUserDTO);
+    }
+
+    @PostMapping("login")
+    public ResponseData<LoginVO> login(@RequestBody LoginDTO loginDTO){
+        return devOpsUserService.login(loginDTO.getUsername(), loginDTO.getPassword());
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/controller/MessageController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/MessageController.java
@@ -1,19 +1,14 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.QueryMessage;
-import com.xuxd.kafka.console.beans.ResponseData;
 import com.xuxd.kafka.console.beans.SendMessage;
 import com.xuxd.kafka.console.beans.dto.QueryMessageDTO;
-import com.xuxd.kafka.console.beans.dto.QuerySendStatisticsDTO;
 import com.xuxd.kafka.console.service.MessageService;
-import org.apache.commons.collections.CollectionUtils;
-import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.*;
-
-import java.util.List;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;

 /**
 * kafka-console-ui.
@@ -28,19 +23,16 @@ public class MessageController {
    @Autowired
    private MessageService messageService;

-    @Permission("message:search-time")
    @PostMapping("/search/time")
    public Object searchByTime(@RequestBody QueryMessageDTO dto) {
        return messageService.searchByTime(dto.toQueryMessage());
    }

-    @Permission("message:search-offset")
    @PostMapping("/search/offset")
    public Object searchByOffset(@RequestBody QueryMessageDTO dto) {
        return messageService.searchByOffset(dto.toQueryMessage());
    }

-    @Permission("message:detail")
    @PostMapping("/search/detail")
    public Object searchDetail(@RequestBody QueryMessageDTO dto) {
        return messageService.searchDetail(dto.toQueryMessage());
@@ -52,35 +44,12 @@ public class MessageController {
    }

    @PostMapping("/send")
-    @ControllerLog("在线发送消息")
-    @Permission("message:send")
    public Object send(@RequestBody SendMessage message) {
-        return messageService.sendWithHeader(message);
+        return messageService.send(message);
    }

-    @ControllerLog("重新发送消息")
-    @Permission("message:resend")
    @PostMapping("/resend")
    public Object resend(@RequestBody SendMessage message) {
        return messageService.resend(message);
    }
-
-    @ControllerLog("在线删除消息")
-    @Permission("message:del")
-    @DeleteMapping
-    public Object delete(@RequestBody List<QueryMessage> messages) {
-        if (CollectionUtils.isEmpty(messages)) {
-            return ResponseData.create().failed("params is null");
-        }
-        return messageService.delete(messages);
-    }
-
-    @Permission("message:send-statistics")
-    @PostMapping("/send/statistics")
-    public Object sendStatistics(@RequestBody QuerySendStatisticsDTO dto) {
-        if (StringUtils.isEmpty(dto.getTopic())) {
-            return ResponseData.create().failed("Topic is null");
-        }
-        return messageService.sendStatisticsByTime(dto);
-    }
 }
--- a/src/main/java/com/xuxd/kafka/console/controller/OperationController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/OperationController.java
@@ -1,8 +1,7 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.TopicPartition;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
 import com.xuxd.kafka.console.beans.dto.BrokerThrottleDTO;
 import com.xuxd.kafka.console.beans.dto.ProposedAssignmentDTO;
 import com.xuxd.kafka.console.beans.dto.ReplicationDTO;
@@ -10,7 +9,13 @@ import com.xuxd.kafka.console.beans.dto.SyncDataDTO;
 import com.xuxd.kafka.console.service.OperationService;
 import org.apache.kafka.clients.admin.AdminClientConfig;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.*;
+import org.springframework.web.bind.annotation.DeleteMapping;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;

 /**
 * kafka-console-ui.
@@ -25,15 +30,15 @@ public class OperationController {
    @Autowired
    private OperationService operationService;

-    @ControllerLog("同步消费位点")
    @PostMapping("/sync/consumer/offset")
+    @RequiredAuthorize
    public Object syncConsumerOffset(@RequestBody SyncDataDTO dto) {
        dto.getProperties().put(AdminClientConfig.BOOTSTRAP_SERVERS_CONFIG, dto.getAddress());
        return operationService.syncConsumerOffset(dto.getGroupId(), dto.getTopic(), dto.getProperties());
    }

-    @ControllerLog("重新位点对齐")
    @PostMapping("/sync/min/offset/alignment")
+    @RequiredAuthorize
    public Object minOffsetAlignment(@RequestBody SyncDataDTO dto) {
        dto.getProperties().put(AdminClientConfig.BOOTSTRAP_SERVERS_CONFIG, dto.getAddress());
        return operationService.minOffsetAlignment(dto.getGroupId(), dto.getTopic(), dto.getProperties());
@@ -44,47 +49,40 @@ public class OperationController {
        return operationService.getAlignmentList();
    }

-    @ControllerLog("deleteAlignment")
    @DeleteMapping("/sync/alignment")
-    public Object deleteAlignment(@RequestParam("id") Long id) {
+    @RequiredAuthorize
+    public Object deleteAlignment(@RequestParam Long id) {
        return operationService.deleteAlignmentById(id);
    }

-    @ControllerLog("优先副本leader")
-    @Permission({"topic:partition-detail:preferred", "op:replication-preferred"})
    @PostMapping("/replication/preferred")
    public Object electPreferredLeader(@RequestBody ReplicationDTO dto) {
        return operationService.electPreferredLeader(dto.getTopic(), dto.getPartition());
    }

-    @ControllerLog("配置同步限流")
-    @Permission("op:config-throttle")
    @PostMapping("/broker/throttle")
+    @RequiredAuthorize
    public Object configThrottle(@RequestBody BrokerThrottleDTO dto) {
        return operationService.configThrottle(dto.getBrokerList(), dto.getUnit().toKb(dto.getThrottle()));
    }

-    @ControllerLog("移除限流配置")
-    @Permission("op:remove-throttle")
    @DeleteMapping("/broker/throttle")
    public Object removeThrottle(@RequestBody BrokerThrottleDTO dto) {
        return operationService.removeThrottle(dto.getBrokerList());
    }

-    @Permission("op:replication-update-detail")
    @GetMapping("/replication/reassignments")
    public Object currentReassignments() {
        return operationService.currentReassignments();
    }

-    @ControllerLog("取消副本重分配")
-    @Permission("op:replication-update-detail:cancel")
    @DeleteMapping("/replication/reassignments")
    public Object cancelReassignment(@RequestBody TopicPartition partition) {
        return operationService.cancelReassignment(new org.apache.kafka.common.TopicPartition(partition.getTopic(), partition.getPartition()));
    }

    @PostMapping("/replication/reassignments/proposed")
+    @RequiredAuthorize
    public Object proposedAssignments(@RequestBody ProposedAssignmentDTO dto) {
        return operationService.proposedAssignments(dto.getTopic(), dto.getBrokers());
    }
--- a/src/main/java/com/xuxd/kafka/console/controller/TopicController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/TopicController.java
@@ -1,20 +1,24 @@
 package com.xuxd.kafka.console.controller;

-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
 import com.xuxd.kafka.console.beans.ReplicaAssignment;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
 import com.xuxd.kafka.console.beans.dto.AddPartitionDTO;
 import com.xuxd.kafka.console.beans.dto.NewTopicDTO;
 import com.xuxd.kafka.console.beans.dto.TopicThrottleDTO;
 import com.xuxd.kafka.console.beans.enums.TopicType;
 import com.xuxd.kafka.console.service.TopicService;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.*;
-
 import java.util.ArrayList;
 import java.util.Collections;
 import java.util.List;
 import java.util.Map;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.DeleteMapping;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;

 /**
 * kafka-console-ui.
@@ -34,35 +38,30 @@ public class TopicController {
        return topicService.getTopicNameList(false);
    }

-    @Permission("topic:load")
    @GetMapping("/list")
-    public Object getTopicList(@RequestParam(required = false, name = "topic") String topic, @RequestParam("type") String type) {
+    public Object getTopicList(@RequestParam(required = false) String topic, @RequestParam String type) {
        return topicService.getTopicList(topic, TopicType.valueOf(type.toUpperCase()));
    }

-    @ControllerLog("删除topic")
-    @Permission({"topic:batch-del", "topic:del"})
    @DeleteMapping
-    public Object deleteTopic(@RequestBody List<String> topics) {
-        return topicService.deleteTopics(topics);
+    @RequiredAuthorize
+    public Object deleteTopic(@RequestParam String topic) {
+        return topicService.deleteTopic(topic);
    }

-    @Permission("topic:partition-detail")
    @GetMapping("/partition")
-    public Object getTopicPartitionInfo(@RequestParam("topic") String topic) {
+    public Object getTopicPartitionInfo(@RequestParam String topic) {
        return topicService.getTopicPartitionInfo(topic.trim());
    }

-    @ControllerLog("创建topic")
-    @Permission("topic:add")
    @PostMapping("/new")
+    @RequiredAuthorize
    public Object createNewTopic(@RequestBody NewTopicDTO topicDTO) {
        return topicService.createTopic(topicDTO.toNewTopic());
    }

-    @ControllerLog("增加topic分区")
-    @Permission("topic:partition-add")
    @PostMapping("/partition/new")
+    @RequiredAuthorize
    public Object addPartition(@RequestBody AddPartitionDTO partitionDTO) {
        String topic = partitionDTO.getTopic().trim();
        int addNum = partitionDTO.getAddNum();
@@ -80,27 +79,24 @@ public class TopicController {
    }

    @GetMapping("/replica/assignment")
-    public Object getCurrentReplicaAssignment(@RequestParam("topic") String topic) {
+    public Object getCurrentReplicaAssignment(@RequestParam String topic) {
        return topicService.getCurrentReplicaAssignment(topic);
    }

-    @ControllerLog("更新副本")
-    @Permission({"topic:replication-modify", "op:replication-reassign"})
    @PostMapping("/replica/assignment")
+    @RequiredAuthorize
    public Object updateReplicaAssignment(@RequestBody ReplicaAssignment assignment) {
        return topicService.updateReplicaAssignment(assignment);
    }

-    @ControllerLog("配置限流")
-    @Permission("topic:replication-sync-throttle")
    @PostMapping("/replica/throttle")
+    @RequiredAuthorize
    public Object configThrottle(@RequestBody TopicThrottleDTO dto) {
        return topicService.configThrottle(dto.getTopic(), dto.getPartitions(), dto.getOperation());
    }

-    @Permission("topic:send-count")
    @GetMapping("/send/stats")
-    public Object sendStats(@RequestParam("topic") String topic) {
+    public Object sendStats(@RequestParam String topic) {
        return topicService.sendStats(topic);
    }
 }
--- a/src/main/java/com/xuxd/kafka/console/controller/UserManageController.java
+++ b/src/main/java/com/xuxd/kafka/console/controller/UserManageController.java
@@ -1,97 +0,0 @@
-package com.xuxd.kafka.console.controller;
-
-import com.xuxd.kafka.console.aspect.annotation.ControllerLog;
-import com.xuxd.kafka.console.aspect.annotation.Permission;
-import com.xuxd.kafka.console.beans.Credentials;
-import com.xuxd.kafka.console.beans.dto.SysPermissionDTO;
-import com.xuxd.kafka.console.beans.dto.SysRoleDTO;
-import com.xuxd.kafka.console.beans.dto.SysUserDTO;
-import com.xuxd.kafka.console.service.UserManageService;
-import org.springframework.web.bind.annotation.*;
-
-import javax.servlet.http.HttpServletRequest;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:34
- **/
-@RestController
-@RequestMapping("/sys/user/manage")
-public class UserManageController {
-
-    private final UserManageService userManageService;
-
-    public UserManageController(UserManageService userManageService) {
-        this.userManageService = userManageService;
-    }
-
-    @Permission({"user-manage:user:add", "user-manage:user:change-role", "user-manage:user:reset-pass"})
-    @ControllerLog("新增/更新用户")
-    @PostMapping("/user")
-    public Object addOrUpdateUser(@RequestBody SysUserDTO userDTO) {
-        return userManageService.addOrUpdateUser(userDTO);
-    }
-
-    @Permission("user-manage:role:save")
-    @ControllerLog("新增/更新角色")
-    @PostMapping("/role")
-    public Object addOrUpdateRole(@RequestBody SysRoleDTO roleDTO) {
-        return userManageService.addOrUdpateRole(roleDTO);
-    }
-
-    @ControllerLog("新增权限")
-    @PostMapping("/permission")
-    public Object addPermission(@RequestBody SysPermissionDTO permissionDTO) {
-        return userManageService.addPermission(permissionDTO);
-    }
-
-    @Permission("user-manage:role:save")
-    @ControllerLog("更新角色")
-    @PutMapping("/role")
-    public Object updateRole(@RequestBody SysRoleDTO roleDTO) {
-        return userManageService.updateRole(roleDTO);
-    }
-
-    @Permission({"user-manage:role"})
-    @GetMapping("/role")
-    public Object selectRole() {
-        return userManageService.selectRole();
-    }
-
-    @Permission({"user-manage:permission"})
-    @GetMapping("/permission")
-    public Object selectPermission() {
-        return userManageService.selectPermission();
-    }
-
-    @Permission({"user-manage:user"})
-    @GetMapping("/user")
-    public Object selectUser() {
-        return userManageService.selectUser();
-    }
-
-    @Permission("user-manage:role:del")
-    @ControllerLog("删除角色")
-    @DeleteMapping("/role")
-    public Object deleteRole(@RequestParam("id") Long id) {
-        return userManageService.deleteRole(id);
-    }
-
-    @Permission("user-manage:user:del")
-    @ControllerLog("删除用户")
-    @DeleteMapping("/user")
-    public Object deleteUser(@RequestParam("id") Long id) {
-        return userManageService.deleteUser(id);
-    }
-
-    @Permission("user-manage:setting")
-    @ControllerLog("更新密码")
-    @PostMapping("/user/password")
-    public Object updatePassword(@RequestBody SysUserDTO userDTO, HttpServletRequest request) {
-        Credentials credentials = (Credentials) request.getAttribute("credentials");
-        if (credentials != null && !credentials.isInvalid()) {
-            userDTO.setUsername(credentials.getUsername());
-        }
-        return userManageService.updatePassword(userDTO);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/ClusterRoleRelationMapper.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/ClusterRoleRelationMapper.java
@@ -1,15 +0,0 @@
-package com.xuxd.kafka.console.dao;
-
-import com.baomidou.mybatisplus.core.mapper.BaseMapper;
-import com.xuxd.kafka.console.beans.dos.ClusterRoleRelationDO;
-import org.apache.ibatis.annotations.Mapper;
-
-/**
- * Cluster info and role relation.
- *
- * @author: xuxd
- * @since: 2023/8/23 21:40
- **/
-@Mapper
-public interface ClusterRoleRelationMapper extends BaseMapper<ClusterRoleRelationDO> {
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/DevOpsUserMapper.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/DevOpsUserMapper.java
@@ -0,0 +1,7 @@
+package com.xuxd.kafka.console.dao;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.xuxd.kafka.console.beans.dos.DevOpsUserDO;
+
+public interface DevOpsUserMapper extends BaseMapper<DevOpsUserDO> {
+}
--- a/src/main/java/com/xuxd/kafka/console/dao/SysPermissionMapper.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/SysPermissionMapper.java
@@ -1,15 +0,0 @@
-package com.xuxd.kafka.console.dao;
-
-import com.baomidou.mybatisplus.core.mapper.BaseMapper;
-import com.xuxd.kafka.console.beans.dos.SysPermissionDO;
-import org.apache.ibatis.annotations.Mapper;
-
-/**
- * 系统权限 .
- *
- * @author: xuxd
- * @date: 2023/4/11 21:21
- **/
-@Mapper
-public interface SysPermissionMapper extends BaseMapper<SysPermissionDO> {
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/SysRoleMapper.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/SysRoleMapper.java
@@ -1,13 +0,0 @@
-package com.xuxd.kafka.console.dao;
-
-import com.baomidou.mybatisplus.core.mapper.BaseMapper;
-import com.xuxd.kafka.console.beans.dos.SysRoleDO;
-import org.apache.ibatis.annotations.Mapper;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:22
- **/
-@Mapper
-public interface SysRoleMapper extends BaseMapper<SysRoleDO> {
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/SysUserMapper.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/SysUserMapper.java
@@ -1,13 +0,0 @@
-package com.xuxd.kafka.console.dao;
-
-import com.baomidou.mybatisplus.core.mapper.BaseMapper;
-import com.xuxd.kafka.console.beans.dos.SysUserDO;
-import org.apache.ibatis.annotations.Mapper;
-
-/**
- * @author: xuxd
- * @date: 2023/4/11 21:22
- **/
-@Mapper
-public interface SysUserMapper extends BaseMapper<SysUserDO> {
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/init/DataInit.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/init/DataInit.java
@@ -1,96 +0,0 @@
-package com.xuxd.kafka.console.dao.init;
-
-import com.xuxd.kafka.console.beans.RolePermUpdateEvent;
-import com.xuxd.kafka.console.config.AuthConfig;
-import com.xuxd.kafka.console.dao.SysPermissionMapper;
-import com.xuxd.kafka.console.dao.SysRoleMapper;
-import com.xuxd.kafka.console.dao.SysUserMapper;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.SmartInitializingSingleton;
-import org.springframework.context.ApplicationEventPublisher;
-import org.springframework.stereotype.Component;
-
-import javax.sql.DataSource;
-import java.sql.Connection;
-import java.sql.PreparedStatement;
-import java.sql.SQLException;
-
-/**
- * @author: xuxd
- * @date: 2023/5/17 13:10
- **/
-@Slf4j
-@Component
-public class DataInit implements SmartInitializingSingleton {
-
-    private final AuthConfig authConfig;
-
-    private final SysUserMapper userMapper;
-
-    private final SysRoleMapper roleMapper;
-
-    private final SysPermissionMapper permissionMapper;
-
-    private final DataSource dataSource;
-
-    private final SqlParse sqlParse;
-
-    private final ApplicationEventPublisher publisher;
-
-
-    public DataInit(AuthConfig authConfig,
-                    SysUserMapper userMapper,
-                    SysRoleMapper roleMapper,
-                    SysPermissionMapper permissionMapper,
-                    DataSource dataSource,
-                    ApplicationEventPublisher publisher) {
-        this.authConfig = authConfig;
-        this.userMapper = userMapper;
-        this.roleMapper = roleMapper;
-        this.permissionMapper = permissionMapper;
-        this.dataSource = dataSource;
-        this.publisher = publisher;
-        this.sqlParse = new SqlParse();
-    }
-
-    @Override
-    public void afterSingletonsInstantiated() {
-        if (!authConfig.isEnable()) {
-            log.info("Disable login authentication, no longer try to initialize the data");
-            return;
-        }
-        try {
-            Connection connection = dataSource.getConnection();
-            Integer userCount = userMapper.selectCount(null);
-            if (userCount == null || userCount == 0) {
-                initData(connection, SqlParse.USER_TABLE);
-            }
-
-            Integer roleCount = roleMapper.selectCount(null);
-            if (roleCount == null || roleCount == 0) {
-                initData(connection, SqlParse.ROLE_TABLE);
-            }
-
-            if (authConfig.isReloadPermission()) {
-                permissionMapper.delete(null);
-            }
-            Integer permCount = permissionMapper.selectCount(null);
-            if (permCount == null || permCount == 0) {
-                initData(connection, SqlParse.PERM_TABLE);
-            }
-            RolePermUpdateEvent event = new RolePermUpdateEvent(this);
-            event.setReload(true);
-            publisher.publishEvent(event);
-        } catch (SQLException e) {
-            throw new RuntimeException(e);
-        }
-
-    }
-
-    private void initData(Connection connection, String table) throws SQLException {
-        log.info("Init default data for {}", table);
-        String sql = sqlParse.getMergeSql(table);
-        PreparedStatement statement = connection.prepareStatement(sql);
-        statement.execute();
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/dao/init/SqlParse.java
+++ b/src/main/java/com/xuxd/kafka/console/dao/init/SqlParse.java
@@ -1,96 +0,0 @@
-package com.xuxd.kafka.console.dao.init;
-
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import scala.collection.mutable.StringBuilder;
-
-import java.io.BufferedReader;
-import java.io.InputStream;
-import java.io.InputStreamReader;
-import java.util.ArrayList;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-/**
- * @author: xuxd
- * @date: 2023/5/17 21:22
- **/
-@Slf4j
-public class SqlParse {
-
-    private final String FILE = "db/data-h2.sql";
-
-    private final Map<String, List<String>> sqlMap = new HashMap<>();
-
-    public static final String ROLE_TABLE = "t_sys_role";
-    public static final String USER_TABLE = "t_sys_user";
-    public static final String PERM_TABLE = "t_sys_permission";
-
-    public SqlParse() {
-        sqlMap.put(ROLE_TABLE, new ArrayList<>());
-        sqlMap.put(USER_TABLE, new ArrayList<>());
-        sqlMap.put(PERM_TABLE, new ArrayList<>());
-
-        String table = null;
-        try {
-            List<String> lines = getSqlLines();
-            for (String str : lines) {
-                if (StringUtils.isNotEmpty(str)) {
-                    if (str.indexOf("start--") > 0) {
-                        if (str.indexOf(ROLE_TABLE) > 0) {
-                            table = ROLE_TABLE;
-                        }
-                        if (str.indexOf(USER_TABLE) > 0) {
-                            table = USER_TABLE;
-                        }
-                        if (str.indexOf(PERM_TABLE) > 0) {
-                            table = PERM_TABLE;
-                        }
-                    }
-                    if (isSql(str)) {
-                        if (table == null) {
-                            log.error("Table is null, can not load sql: {}", str);
-                            continue;
-                        }
-                        sqlMap.get(table).add(str);
-                    }
-                }
-            }
-        } catch (Exception e) {
-            throw new RuntimeException(e);
-        }
-    }
-
-    public List<String> getSqlList(String table) {
-        return sqlMap.get(table);
-    }
-
-    public String getMergeSql(String table) {
-        List<String> list = getSqlList(table);
-        StringBuilder sb = new StringBuilder();
-        list.forEach(sql -> sb.append(sql));
-        return sb.toString();
-    }
-
-    private boolean isSql(String str) {
-        return StringUtils.isNotEmpty(str) && str.startsWith("insert");
-    }
-
-    private List<String> getSqlLines() throws Exception {
-//        File file = ResourceUtils.getFile(FILE);
-//        List<String> lines = Files.readLines(file, Charset.forName("UTF-8"));
-        List<String> lines = new ArrayList<>();
-        try (InputStream inputStream = Thread.currentThread().getContextClassLoader().getResourceAsStream(FILE)) {
-            try (InputStreamReader inputStreamReader = new InputStreamReader(inputStream, "UTF-8")) {
-                try (BufferedReader reader = new BufferedReader(inputStreamReader)) {
-                    String line;
-                    while ((line = reader.readLine()) != null) {
-                        lines.add(line);
-                    }
-                }
-            }
-        }
-        return lines;
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/exception/GlobalExceptionHandler.java
+++ b/src/main/java/com/xuxd/kafka/console/exception/GlobalExceptionHandler.java
@@ -1,38 +0,0 @@
-package com.xuxd.kafka.console.exception;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.http.HttpStatus;
-import org.springframework.web.bind.annotation.ControllerAdvice;
-import org.springframework.web.bind.annotation.ExceptionHandler;
-import org.springframework.web.bind.annotation.ResponseBody;
-import org.springframework.web.bind.annotation.ResponseStatus;
-
-import javax.servlet.http.HttpServletRequest;
-
-/**
- * kafka-console-ui.
- *
- * @author xuxd
- * @date 2021-10-19 14:32:18
- **/
-@Slf4j
-@ControllerAdvice(basePackages = "com.xuxd.kafka.console.controller")
-public class GlobalExceptionHandler {
-
-    @ResponseStatus(code = HttpStatus.FORBIDDEN)
-    @ExceptionHandler(value = UnAuthorizedException.class)
-    @ResponseBody
-    public Object unAuthorizedExceptionHandler(HttpServletRequest req, Exception ex) throws Exception {
-        log.error("unAuthorized: {}", ex.getMessage());
-        return ResponseData.create().failed("UnAuthorized: " + ex.getMessage());
-    }
-
-    @ExceptionHandler(value = Exception.class)
-    @ResponseBody
-    public Object exceptionHandler(HttpServletRequest req, Exception ex) throws Exception {
-
-        log.error("exception handle: ", ex);
-        return ResponseData.create().failed(ex.getMessage());
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/exception/UnAuthorizedException.java
+++ b/src/main/java/com/xuxd/kafka/console/exception/UnAuthorizedException.java
@@ -1,12 +0,0 @@
-package com.xuxd.kafka.console.exception;
-
-/**
- * @author: xuxd
- * @date: 2023/5/17 23:08
- **/
-public class UnAuthorizedException extends RuntimeException{
-
-    public UnAuthorizedException(String message) {
-        super(message);
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/filter/AuthFilter.java
+++ b/src/main/java/com/xuxd/kafka/console/filter/AuthFilter.java
@@ -1,78 +0,0 @@
-package com.xuxd.kafka.console.filter;
-
-import com.xuxd.kafka.console.beans.Credentials;
-import com.xuxd.kafka.console.config.AuthConfig;
-import com.xuxd.kafka.console.utils.AuthUtil;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.core.annotation.Order;
-import org.springframework.http.HttpStatus;
-
-import javax.servlet.*;
-import javax.servlet.annotation.WebFilter;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.io.IOException;
-
-/**
- * @author: xuxd
- * @date: 2023/5/9 21:20
- **/
-@Order(1)
-@WebFilter(filterName = "auth-filter", urlPatterns = {"/*"})
-@Slf4j
-public class AuthFilter implements Filter {
-
-    private final AuthConfig authConfig;
-
-    private final String TOKEN_HEADER = "X-Auth-Token";
-
-    private final String AUTH_URI_PREFIX = "/auth";
-
-    public AuthFilter(AuthConfig authConfig) {
-        this.authConfig = authConfig;
-    }
-
-    @Override
-    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
-        if (!authConfig.isEnable()) {
-            filterChain.doFilter(servletRequest, servletResponse);
-            return;
-        }
-        HttpServletRequest request = (HttpServletRequest) servletRequest;
-        HttpServletResponse response = (HttpServletResponse) servletResponse;
-        String accessToken = request.getHeader(TOKEN_HEADER);
-
-        String requestURI = request.getRequestURI();
-        if (isResourceRequest(requestURI)) {
-            filterChain.doFilter(servletRequest, servletResponse);
-            return;
-        }
-        if (requestURI.startsWith(AUTH_URI_PREFIX)) {
-            filterChain.doFilter(servletRequest, servletResponse);
-            return;
-        }
-        if (StringUtils.isEmpty(accessToken)) {
-            response.setStatus(HttpStatus.UNAUTHORIZED.value());
-            return;
-        }
-
-        Credentials credentials = AuthUtil.parseToken(authConfig.getSecret(), accessToken);
-        if (credentials.isInvalid()) {
-            response.setStatus(HttpStatus.UNAUTHORIZED.value());
-            return;
-        }
-        request.setAttribute("credentials", credentials);
-
-        try {
-            CredentialsContext.set(credentials);
-            filterChain.doFilter(servletRequest, servletResponse);
-        } finally {
-            CredentialsContext.remove();
-        }
-    }
-
-    private boolean isResourceRequest(String requestURI) {
-        return requestURI.contains(".") || requestURI.equals("/");
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/filter/CredentialsContext.java
+++ b/src/main/java/com/xuxd/kafka/console/filter/CredentialsContext.java
@@ -1,23 +0,0 @@
-package com.xuxd.kafka.console.filter;
-
-import com.xuxd.kafka.console.beans.Credentials;
-
-/**
- * @author: xuxd
- * @date: 2023/5/17 23:02
- **/
-public class CredentialsContext {
-    private static final ThreadLocal<Credentials> CREDENTIALS = new ThreadLocal<>();
-
-    public static void set(Credentials credentials) {
-        CREDENTIALS.set(credentials);
-    }
-
-    public static Credentials get() {
-        return CREDENTIALS.get();
-    }
-
-    public static void remove() {
-        CREDENTIALS.remove();
-    }
-}
--- a/src/main/java/com/xuxd/kafka/console/interceptor/ContextSetFilter.java
+++ b/src/main/java/com/xuxd/kafka/console/interceptor/ContextSetFilter.java
@@ -1,4 +1,4 @@
-package com.xuxd.kafka.console.filter;
+package com.xuxd.kafka.console.interceptor;

 import com.xuxd.kafka.console.beans.ResponseData;
 import com.xuxd.kafka.console.beans.dos.ClusterInfoDO;
@@ -6,18 +6,20 @@ import com.xuxd.kafka.console.config.ContextConfig;
 import com.xuxd.kafka.console.config.ContextConfigHolder;
 import com.xuxd.kafka.console.dao.ClusterInfoMapper;
 import com.xuxd.kafka.console.utils.ConvertUtil;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.core.annotation.Order;
-import org.springframework.http.MediaType;
-
-import javax.servlet.*;
-import javax.servlet.annotation.WebFilter;
-import javax.servlet.http.HttpServletRequest;
 import java.io.IOException;
 import java.util.HashSet;
 import java.util.Set;
+import javax.servlet.Filter;
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.MediaType;

 /**
 * kafka-console-ui.
@@ -25,8 +27,7 @@ import java.util.Set;
 * @author xuxd
 * @date 2022-01-05 19:56:25
 **/
-@Order(100)
-@WebFilter(filterName = "context-set-filter", urlPatterns = {"/acl/*", "/user/*", "/cluster/*", "/config/*", "/consumer/*", "/message/*", "/topic/*", "/op/*", "/client/*"})
+@WebFilter(filterName = "context-set-filter", urlPatterns = {"/acl/*","/user/*","/cluster/*","/config/*","/consumer/*","/message/*","/topic/*","/op/*"})
@Slf4j
 public class ContextSetFilter implements Filter {

@@ -41,9 +42,8 @@ public class ContextSetFilter implements Filter {
    @Autowired
    private ClusterInfoMapper clusterInfoMapper;

-    @Override
-    public void doFilter(ServletRequest req, ServletResponse response,
-                         FilterChain chain) throws IOException, ServletException {
+    @Override public void doFilter(ServletRequest req, ServletResponse response,
+        FilterChain chain) throws IOException, ServletException {
        try {
            HttpServletRequest request = (HttpServletRequest) req;
            String uri = request.getRequestURI();
@@ -72,7 +72,6 @@ public class ContextSetFilter implements Filter {
                        config.setProperties(ConvertUtil.toProperties(infoDO.getProperties()));
                    }
                    ContextConfigHolder.CONTEXT_CONFIG.set(config);
-//                    log.info("current kafka config: {}", config);
                }
            }
            chain.doFilter(req, response);
--- a/src/main/java/com/xuxd/kafka/console/interceptor/GlobalExceptionHandler.java
+++ b/src/main/java/com/xuxd/kafka/console/interceptor/GlobalExceptionHandler.java
@@ -0,0 +1,25 @@
+package com.xuxd.kafka.console.interceptor;
+
+import com.xuxd.kafka.console.utils.ResponseUtil;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.web.bind.annotation.ControllerAdvice;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+/**
+ * kafka-console-ui.
+ *
+ * @author xuxd
+ * @date 2021-10-19 14:32:18
+ **/
+@Slf4j
+@ControllerAdvice(basePackages = "com.xuxd.kafka.console")
+public class GlobalExceptionHandler {
+
+    @ExceptionHandler(value = Exception.class)
+    @ResponseBody
+    public Object exceptionHandler(Exception ex) {
+        log.error("exception handle: ", ex);
+        return ResponseUtil.error(ex.getMessage());
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/interceptor/TokenInterceptor.java
+++ b/src/main/java/com/xuxd/kafka/console/interceptor/TokenInterceptor.java
@@ -0,0 +1,84 @@
+package com.xuxd.kafka.console.interceptor;
+
+import com.xuxd.kafka.console.beans.ResponseData;
+import com.xuxd.kafka.console.beans.annotation.RequiredAuthorize;
+import com.xuxd.kafka.console.beans.enums.Role;
+import com.xuxd.kafka.console.beans.vo.DevOpsUserVO;
+import com.xuxd.kafka.console.service.DevOpsUserService;
+import com.xuxd.kafka.console.utils.ContextUtil;
+import com.xuxd.kafka.console.utils.ConvertUtil;
+import com.xuxd.kafka.console.utils.JwtUtils;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Component;
+import org.springframework.web.method.HandlerMethod;
+import org.springframework.web.servlet.AsyncHandlerInterceptor;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.PrintWriter;
+
+import static com.xuxd.kafka.console.beans.ResponseData.TOKEN_ILLEGAL;
+
+@Component
+@Slf4j
+@RequiredArgsConstructor
+public class TokenInterceptor implements AsyncHandlerInterceptor {
+
+    private final static String TOKEN = "token";
+    private final DevOpsUserService devOpsUserService;
+
+    @Override
+    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
+        if (handler instanceof HandlerMethod){
+            String token = request.getHeader(TOKEN);
+            if (StringUtils.isBlank(token)){
+                log.info("token not exist");
+                write(response);
+                return false;
+            }
+
+            String username = JwtUtils.parse(token);
+            if (StringUtils.isBlank(username)){
+                log.info("{} is wrongful", token);
+                write(response);
+                return false;
+            }
+
+            ResponseData<DevOpsUserVO> userVORsp = devOpsUserService.detail(username);
+            if (userVORsp == null || userVORsp.getData() == null){
+                log.info("{} not exist", username);
+                write(response);
+                return false;
+            }
+
+            ContextUtil.set(ContextUtil.USERNAME, username);
+            HandlerMethod method = (HandlerMethod)handler;
+            RequiredAuthorize annotation = method.getMethodAnnotation(RequiredAuthorize.class);
+            if (annotation != null){
+                DevOpsUserVO userVO = userVORsp.getData();
+                if (!userVO.getRole().equals(Role.manager)){
+                    log.info("{},{} no permission", username, request.getRequestURI());
+                    write(response);
+                    return false;
+                }
+            }
+        }
+        return true;
+    }
+
+    private void write(HttpServletResponse response){
+        PrintWriter writer = null;
+        try {
+            writer = response.getWriter();
+            writer.write(ConvertUtil.toJsonString(ResponseData.create().failed(TOKEN_ILLEGAL)));
+        } catch (Exception ignored){
+        } finally {
+            if (writer != null){
+                writer.flush();
+                writer.close();
+            }
+        }
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/interceptor/WebMvcConfig.java
+++ b/src/main/java/com/xuxd/kafka/console/interceptor/WebMvcConfig.java
@@ -0,0 +1,20 @@
+package com.xuxd.kafka.console.interceptor;
+
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+@RequiredArgsConstructor
+public class WebMvcConfig implements WebMvcConfigurer {
+
+    private final TokenInterceptor tokenInterceptor;
+
+    @Override
+    public void addInterceptors(InterceptorRegistry registry) {
+        registry.addInterceptor(tokenInterceptor)
+                .addPathPatterns("/**")
+                .excludePathPatterns("/devops/user/login");
+    }
+}
--- a/src/main/java/com/xuxd/kafka/console/service/AclService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/AclService.java
@@ -42,7 +42,4 @@ public interface AclService {

    ResponseData getUserDetail(String username);

-    ResponseData clearAcl(AclEntry entry);
-
-    ResponseData getSaslScramUserList(AclEntry entry);
 }
--- a/src/main/java/com/xuxd/kafka/console/service/AuthService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/AuthService.java
@@ -1,13 +0,0 @@
-package com.xuxd.kafka.console.service;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.LoginUserDTO;
-
-/**
- * @author: xuxd
- * @date: 2023/5/14 19:00
- **/
-public interface AuthService {
-
-    ResponseData login(LoginUserDTO userDTO);
-}
--- a/src/main/java/com/xuxd/kafka/console/service/ClientQuotaService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/ClientQuotaService.java
@@ -1,18 +0,0 @@
-package com.xuxd.kafka.console.service;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.AlterClientQuotaDTO;
-
-import java.util.List;
-
-/**
- * @author 晓东哥哥
- */
-public interface ClientQuotaService {
-
-    ResponseData getClientQuotaConfigs(List<String> types, List<String> names);
-
-    ResponseData alterClientQuotaConfigs(AlterClientQuotaDTO request);
-
-    ResponseData deleteClientQuotaConfigs(AlterClientQuotaDTO request);
-}
--- a/src/main/java/com/xuxd/kafka/console/service/ClusterRoleRelationService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/ClusterRoleRelationService.java
@@ -1,19 +0,0 @@
-package com.xuxd.kafka.console.service;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.ClusterRoleRelationDTO;
-
-/**
- * Cluster info and role relation.
- *
- * @author: xuxd
- * @since: 2023/8/23 21:42
- **/
-public interface ClusterRoleRelationService {
-
-    ResponseData select();
-
-    ResponseData add(ClusterRoleRelationDTO dto);
-
-    ResponseData delete(Long id);
-}
--- a/src/main/java/com/xuxd/kafka/console/service/ClusterService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/ClusterService.java
@@ -12,8 +12,6 @@ import com.xuxd.kafka.console.beans.dos.ClusterInfoDO;
 public interface ClusterService {
    ResponseData getClusterInfo();

-    ResponseData getClusterInfoListForSelect();
-
    ResponseData getClusterInfoList();

    ResponseData addClusterInfo(ClusterInfoDO infoDO);
--- a/src/main/java/com/xuxd/kafka/console/service/DevOpsUserService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/DevOpsUserService.java
@@ -0,0 +1,26 @@
+package com.xuxd.kafka.console.service;
+
+import com.xuxd.kafka.console.beans.ResponseData;
+import com.xuxd.kafka.console.beans.dto.user.AddUserDTO;
+import com.xuxd.kafka.console.beans.dto.user.ListUserDTO;
+import com.xuxd.kafka.console.beans.dto.user.UpdateUserDTO;
+import com.xuxd.kafka.console.beans.vo.DevOpsUserVO;
+import com.xuxd.kafka.console.beans.vo.LoginVO;
+
+import java.util.List;
+
+public interface DevOpsUserService {
+
+    ResponseData<Boolean> add(AddUserDTO addUserDTO);
+
+    ResponseData<Boolean> update(UpdateUserDTO updateUserDTO);
+
+    ResponseData<Boolean> delete(Long id);
+
+    ResponseData<List<DevOpsUserVO>> list(ListUserDTO listUserDTO);
+
+    ResponseData<DevOpsUserVO> detail(String username);
+
+    ResponseData<LoginVO> login(String username, String password);
+
+}
--- a/src/main/java/com/xuxd/kafka/console/service/MessageService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/MessageService.java
@@ -1,12 +1,9 @@
 package com.xuxd.kafka.console.service;

 import com.xuxd.kafka.console.beans.QueryMessage;
-import com.xuxd.kafka.console.beans.dto.QuerySendStatisticsDTO;
 import com.xuxd.kafka.console.beans.ResponseData;
 import com.xuxd.kafka.console.beans.SendMessage;

-import java.util.List;
-
 /**
 * kafka-console-ui.
 *
@@ -25,11 +22,5 @@ public interface MessageService {

    ResponseData send(SendMessage message);

-    ResponseData sendWithHeader(SendMessage message);
-
    ResponseData resend(SendMessage message);
-
-    ResponseData delete(List<QueryMessage> messages);
-
-    ResponseData sendStatisticsByTime(QuerySendStatisticsDTO request);
 }
--- a/src/main/java/com/xuxd/kafka/console/service/TopicService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/TopicService.java
@@ -4,8 +4,6 @@ import com.xuxd.kafka.console.beans.ReplicaAssignment;
 import com.xuxd.kafka.console.beans.ResponseData;
 import com.xuxd.kafka.console.beans.enums.TopicThrottleSwitch;
 import com.xuxd.kafka.console.beans.enums.TopicType;
-
-import java.util.Collection;
 import java.util.List;
 import org.apache.kafka.clients.admin.NewTopic;

@@ -21,7 +19,7 @@ public interface TopicService {

    ResponseData getTopicList(String topic, TopicType type);

-    ResponseData deleteTopics(Collection<String> topics);
+    ResponseData deleteTopic(String topic);

    ResponseData getTopicPartitionInfo(String topic);

--- a/src/main/java/com/xuxd/kafka/console/service/UserManageService.java
+++ b/src/main/java/com/xuxd/kafka/console/service/UserManageService.java
@@ -1,40 +0,0 @@
-package com.xuxd.kafka.console.service;
-
-import com.xuxd.kafka.console.beans.ResponseData;
-import com.xuxd.kafka.console.beans.dto.SysPermissionDTO;
-import com.xuxd.kafka.console.beans.dto.SysRoleDTO;
-import com.xuxd.kafka.console.beans.dto.SysUserDTO;
-
-/**
- * 登录用户权限管理.
- *
- * @author: xuxd
- * @date: 2023/4/11 21:24
- **/
-public interface UserManageService {
-
-    /**
-     * 增加权限
-     */
-    ResponseData addPermission(SysPermissionDTO permissionDTO);
-
-    ResponseData addOrUdpateRole(SysRoleDTO roleDTO);
-
-    ResponseData addOrUpdateUser(SysUserDTO userDTO);
-
-    ResponseData selectRole();
-
-    ResponseData selectPermission();
-
-    ResponseData selectUser();
-
-    ResponseData updateUser(SysUserDTO userDTO);
-
-    ResponseData updateRole(SysRoleDTO roleDTO);
-
-    ResponseData deleteRole(Long id);
-
-    ResponseData deleteUser(Long id);
-
-    ResponseData updatePassword(SysUserDTO userDTO);
-}
--- a/src/main/java/com/xuxd/kafka/console/service/impl/AclServiceImpl.java
+++ b/src/main/java/com/xuxd/kafka/console/service/impl/AclServiceImpl.java
@@ -10,23 +10,30 @@ import com.xuxd.kafka.console.config.ContextConfigHolder;
 import com.xuxd.kafka.console.dao.KafkaUserMapper;
 import com.xuxd.kafka.console.service.AclService;
 import com.xuxd.kafka.console.utils.SaslUtil;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Properties;
+import java.util.Set;
+import java.util.stream.Collectors;
 import kafka.console.KafkaAclConsole;
 import kafka.console.KafkaConfigConsole;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
+import org.apache.kafka.clients.CommonClientConfigs;
+import org.apache.kafka.clients.admin.ScramMechanism;
 import org.apache.kafka.clients.admin.UserScramCredentialsDescription;
 import org.apache.kafka.common.acl.AclBinding;
 import org.apache.kafka.common.acl.AclOperation;
 import org.apache.kafka.common.config.SaslConfigs;
-import org.apache.kafka.common.errors.SecurityDisabledException;
+import org.apache.kafka.common.security.auth.SecurityProtocol;
 import org.springframework.beans.factory.ObjectProvider;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
 import scala.Tuple2;

-import java.util.*;
-import java.util.stream.Collectors;
-
 import static com.xuxd.kafka.console.utils.SaslUtil.isEnableSasl;
 import static com.xuxd.kafka.console.utils.SaslUtil.isEnableScram;

@@ -132,52 +139,39 @@ public class AclServiceImpl implements AclService {
    }

    @Override public ResponseData getAclList(AclEntry entry) {
-        List<AclBinding> aclBindingList = Collections.emptyList();
-        try {
-            aclBindingList = entry.isNull() ? aclConsole.getAclList(null) : aclConsole.getAclList(entry);
-        }catch (Exception ex) {
-            if (ex.getCause() instanceof SecurityDisabledException) {
-                Throwable e = ex.getCause();
-                log.info("SecurityDisabledException: {}", e.getMessage());
-                Map<String, String> hint = new HashMap<>(2);
-                hint.put("hint", "Security Disabled: " + e.getMessage());
-                return ResponseData.create().data(hint).success();
-            }
-            throw new RuntimeException(ex.getCause());
-        }
-//        List<AclBinding> aclBindingList = entry.isNull() ? aclConsole.getAclList(null) : aclConsole.getAclList(entry);
+        List<AclBinding> aclBindingList = entry.isNull() ? aclConsole.getAclList(null) : aclConsole.getAclList(entry);
        List<AclEntry> entryList = aclBindingList.stream().map(x -> AclEntry.valueOf(x)).collect(Collectors.toList());
        Map<String, List<AclEntry>> entryMap = entryList.stream().collect(Collectors.groupingBy(AclEntry::getPrincipal));
        Map<String, Object> resultMap = new HashMap<>();
        entryMap.forEach((k, v) -> {
            Map<String, List<AclEntry>> map = v.stream().collect(Collectors.groupingBy(e -> e.getResourceType() + "#" + e.getName()));
-//            String username = SaslUtil.findUsername(ContextConfigHolder.CONTEXT_CONFIG.get().getProperties().getProperty(SaslConfigs.SASL_JAAS_CONFIG));
-//            if (k.equals(username)) {
-//                Map<String, Object> map2 = new HashMap<>(map);
-//                Map<String, Object> userMap = new HashMap<>();
-//                userMap.put("role", "admin");
-//                map2.put("USER", userMap);
-//            }
+            String username = SaslUtil.findUsername(ContextConfigHolder.CONTEXT_CONFIG.get().getProperties().getProperty(SaslConfigs.SASL_JAAS_CONFIG));
+            if (k.equals(username)) {
+                Map<String, Object> map2 = new HashMap<>(map);
+                Map<String, Object> userMap = new HashMap<>();
+                userMap.put("role", "admin");
+                map2.put("USER", userMap);
+            }
            resultMap.put(k, map);
        });
-//        if (entry.isNull() || StringUtils.isNotBlank(entry.getPrincipal())) {
-//            Map<String, UserScramCredentialsDescription> detailList = configConsole.getUserDetailList(StringUtils.isNotBlank(entry.getPrincipal()) ? Collections.singletonList(entry.getPrincipal()) : null);
-//
-//            detailList.values().forEach(u -> {
-//                if (!resultMap.containsKey(u.name()) && !u.credentialInfos().isEmpty()) {
-//                    String username = SaslUtil.findUsername(ContextConfigHolder.CONTEXT_CONFIG.get().getProperties().getProperty(SaslConfigs.SASL_JAAS_CONFIG));
-//                    if (!u.name().equals(username)) {
-//                        resultMap.put(u.name(), Collections.emptyMap());
-//                    } else {
-//                        Map<String, Object> map2 = new HashMap<>();
-//                        Map<String, Object> userMap = new HashMap<>();
-//                        userMap.put("role", "admin");
-//                        map2.put("USER", userMap);
-//                        resultMap.put(u.name(), map2);
-//                    }
-//                }
-//            });
-//        }
+        if (entry.isNull() || StringUtils.isNotBlank(entry.getPrincipal())) {
+            Map<String, UserScramCredentialsDescription> detailList = configConsole.getUserDetailList(StringUtils.isNotBlank(entry.getPrincipal()) ? Collections.singletonList(entry.getPrincipal()) : null);
+
+            detailList.values().forEach(u -> {
+                if (!resultMap.containsKey(u.name()) && !u.credentialInfos().isEmpty()) {
+                    String username = SaslUtil.findUsername(ContextConfigHolder.CONTEXT_CONFIG.get().getProperties().getProperty(SaslConfigs.SASL_JAAS_CONFIG));
+                    if (!u.name().equals(username)) {
+                        resultMap.put(u.name(), Collections.emptyMap());
+                    } else {
+                        Map<String, Object> map2 = new HashMap<>();
+                        Map<String, Object> userMap = new HashMap<>();
+                        userMap.put("role", "admin");
+                        map2.put("USER", userMap);
+                        resultMap.put(u.name(), map2);
+                    }
+                }
+            });
+        }

        return ResponseData.create().data(new CounterMap<>(resultMap)).success();
    }
@@ -242,37 +236,6 @@ public class AclServiceImpl implements AclService {
        return ResponseData.create().data(vo).success();
    }

-    @Override
-    public ResponseData clearAcl(AclEntry entry) {
-        log.info("Start clear acl, principal: {}", entry);
-        return aclConsole.deleteUserAcl(entry) ? ResponseData.create().success() : ResponseData.create().failed("操作失败");
-    }
-
-    @Override
-    public ResponseData getSaslScramUserList(AclEntry entry) {
-        Map<String, Object> resultMap = new HashMap<>();
-        if (entry.isNull() || StringUtils.isNotBlank(entry.getPrincipal())) {
-            Map<String, UserScramCredentialsDescription> detailList = configConsole.getUserDetailList(StringUtils.isNotBlank(entry.getPrincipal()) ? Collections.singletonList(entry.getPrincipal()) : null);
-
-            detailList.values().forEach(u -> {
-                if (!resultMap.containsKey(u.name()) && !u.credentialInfos().isEmpty()) {
-                    String username = SaslUtil.findUsername(ContextConfigHolder.CONTEXT_CONFIG.get().getProperties().getProperty(SaslConfigs.SASL_JAAS_CONFIG));
-                    if (!u.name().equals(username)) {
-                        resultMap.put(u.name(), Collections.emptyMap());
-                    } else {
-                        Map<String, Object> map2 = new HashMap<>();
-                        Map<String, Object> userMap = new HashMap<>();
-                        userMap.put("role", "admin");
-                        map2.put("USER", userMap);
-                        resultMap.put(u.name(), map2);
-                    }
-                }
-            });
-        }
-
-        return ResponseData.create().data(new CounterMap<>(resultMap)).success();
-    }
-
 //    @Override public void afterSingletonsInstantiated() {
 //        if (kafkaConfig.isEnableAcl() && kafkaConfig.isAdminCreate()) {
 //            log.info("Start create admin user, username: {}, password: {}", kafkaConfig.getAdminUsername(), kafkaConfig.getAdminPassword());
--- a/Show More
+++ b/Show More
				`@@ -1 +0,0 @@`
				<svg height="180" viewBox="0 0 180 180" width="180" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><linearGradient id="a" gradientUnits="userSpaceOnUse" x1="32.64" x2="82.77" y1="61.16" y2="85.54"><stop offset=".21" stop-color="#fe2857"/><stop offset="1" stop-color="#293896"/></linearGradient><linearGradient id="b" gradientUnits="userSpaceOnUse" x1="17.38" x2="82.95" y1="69.86" y2="21.23"><stop offset="0" stop-color="#fe2857"/><stop offset=".01" stop-color="#fe2857"/><stop offset=".86" stop-color="#ff318c"/></linearGradient><linearGradient id="c" gradientUnits="userSpaceOnUse" x1="74.17" x2="160.27" y1="21.58" y2="99.76"><stop offset=".02" stop-color="#ff318c"/><stop offset=".21" stop-color="#fe2857"/><stop offset=".86" stop-color="#fdb60d"/></linearGradient><linearGradient id="d" gradientUnits="userSpaceOnUse" x1="155.46" x2="55.07" y1="89.8" y2="158.9"><stop offset=".01" stop-color="#fdb60d"/><stop offset=".86" stop-color="#fcf84a"/></linearGradient><path d="m81.56 83.71-41.35-35a15 15 0 1 0 -14.47 25.7h.15l.39.12 52.16 15.89a3.53 3.53 0 0 0 1.18.21 3.73 3.73 0 0 0 1.93-6.91z" fill="url(#a)"/><path d="m89.85 25.93a10.89 10.89 0 0 0 -16.85-9.18l-50.5 30.66a15 15 0 1 0 17.9 24l45.27-36.89.36-.3a10.93 10.93 0 0 0 3.82-8.29z" fill="url(#b)"/><path d="m163.29 92-76.62-73.79a10.91 10.91 0 1 0 -14.81 16l.14.12 81.4 68.58a7.36 7.36 0 0 0 12.09-5.65 7.39 7.39 0 0 0 -2.2-5.26z" fill="url(#c)"/><path d="m165.5 97.29a7.35 7.35 0 0 0 -11.67-6l-92.71 45.3a15 15 0 1 0 15.48 25.59l85.73-58.84a7.35 7.35 0 0 0 3.17-6.05z" fill="url(#d)"/><path d="m60 60h60v60h-60z"/><g fill="#fff"><path d="m66.53 108.75h22.5v3.75h-22.5z"/><path d="m65.59 75.47 1.67-1.58a1.88 1.88 0 0 0 1.47.87c.64 0 1.06-.45 1.06-1.32v-5.92h2.58v5.94a3.44 3.44 0 0 1 -.92 2.63 3.52 3.52 0 0 1 -2.57 1 3.84 3.84 0 0 1 -3.29-1.62z"/><path d="m73.53 67.52h7.53v2.19h-5v1.43h4.49v2h-4.45v1.49h5v2.2h-7.6z"/><path d="m84.73 69.79h-2.8v-2.27h8.21v2.27h-2.81v7.09h-2.6z"/><path d="m66.63 80.58h4.42a3.47 3.47 0 0 1 2.55.83 2.09 2.09 0 0 1 .61 1.52 2.18 2.18 0 0 1 -1.45 2.09 2.27 2.27 0 0 1 1.86 2.29c0 1.69-1.31 2.69-3.55 2.69h-4.44zm5 2.89c0-.52-.42-.8-1.18-.8h-1.29v1.64h1.25c.78 0 1.24-.27 1.24-.81zm-.9 2.66h-1.57v1.73h1.62c.8 0 1.24-.31 1.24-.86-.02-.53-.4-.87-1.27-.87z"/><path d="m75.45 80.58h4.15a4.14 4.14 0 0 1 3.05 1 2.92 2.92 0 0 1 .83 2.18 3 3 0 0 1 -1.93 2.89l2.24 3.35h-3l-1.89-2.84h-.87v2.84h-2.6zm4 4.5c.87 0 1.4-.43 1.4-1.12 0-.75-.55-1.13-1.41-1.13h-1.39v2.27z"/><path d="m87.09 80.51h2.5l4 9.44h-2.79l-.67-1.69h-3.63l-.67 1.74h-2.71zm2.28 5.73-1.05-2.65-1.06 2.65z"/><path d="m94 80.55h2.6v9.37h-2.6z"/><path d="m97.56 80.55h2.44l3.37 5v-5h2.57v9.37h-2.27l-3.53-5.14v5.14h-2.58z"/><path d="m106.37 88.53 1.44-1.73a4.86 4.86 0 0 0 3 1.13c.71 0 1.08-.25 1.08-.65 0-.41-.3-.61-1.59-.91-2-.46-3.53-1-3.53-2.93 0-1.74 1.38-3 3.63-3a5.88 5.88 0 0 1 3.85 1.25l-1.25 1.78a4.56 4.56 0 0 0 -2.62-.92c-.63 0-.94.25-.94.6 0 .43.32.62 1.63.91 2.15.47 3.48 1.17 3.48 2.92 0 1.91-1.51 3-3.78 3a6.56 6.56 0 0 1 -4.4-1.45z"/></g><path d="m0 0h180v180h-180z" fill="none"/></svg>