Tenlion/business-card
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

1

Browse Source
This commit is contained in:
cuibaocheng 2021-01-28 17:32:04 +08:00
parent 871ba27ca9
commit 51b5534304
1 changed files with 31 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
src/main/java/cn/com/tenlion/config/CheckAuthInterceptor.java
View File

@ -6,10 +6,13 @@ import cn.com.tenlion.pojo.dtos.carduser.CardUserDTO;
import cn.com.tenlion.pojo.vos.carduser.CardUserVO; import cn.com.tenlion.pojo.vos.carduser.CardUserVO;
import cn.com.tenlion.service.carduser.ICardUserService; import cn.com.tenlion.service.carduser.ICardUserService;
import cn.com.tenlion.util.AesUtil; import cn.com.tenlion.util.AesUtil;
import cn.com.tenlion.util.annotation.AccessRightsCheck;
import cn.com.tenlion.util.enumeration.Auth;
import com.alibaba.fastjson.JSONObject; import com.alibaba.fastjson.JSONObject;
import com.github.pagehelper.util.StringUtil; import com.github.pagehelper.util.StringUtil;
import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component; import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor; import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView; import org.springframework.web.servlet.ModelAndView;
@ -17,6 +20,7 @@ import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpServletResponse;
import java.io.IOException; import java.io.IOException;
import java.io.PrintWriter; import java.io.PrintWriter;
import java.lang.reflect.Method;
/** /**
* TODO * TODO
@ -40,6 +44,33 @@ public class CheckAuthInterceptor implements HandlerInterceptor {
if(path.contains("release")){ if(path.contains("release")){
return true; return true;
} }
/**
* 2021年1月28日10:28:38
* CBC Start
* 通过Controller中方法上的注解进行权限控制与放行
*/
// 获得类的请求
HandlerMethod handlerMethod = null;
if(handler instanceof HandlerMethod) {
handlerMethod = (HandlerMethod) handler;
}else{
return true;
}
// 权限校验的注解
Method m = handlerMethod.getMethod();
AccessRightsCheck accessRightsCheck = m.getAnnotation(AccessRightsCheck.class);
if(accessRightsCheck != null) {
if(accessRightsCheck != null) {
// 不校验
if(Auth.NOCHECK.equals(accessRightsCheck.auth())) {
return true;
}
}
}
/**
* 2021年1月28日10:34:47
* CBC End
*/
String token = request.getHeader("token"); String token = request.getHeader("token");
if(token == null || StringUtil.isEmpty(token)){ if(token == null || StringUtil.isEmpty(token)){
response.setStatus(response.SC_UNAUTHORIZED); response.setStatus(response.SC_UNAUTHORIZED);