91九色麻豆,午夜精品一区二区三区在线观看 ,人人鲁人人莫人人爱精品

這里使用 aop 來實現權限驗證

引入依賴

				?

									<dependency>

									  <groupid>org.springframework.boot</groupid>

									  <artifactid>spring-boot-starter-aop</artifactid>

									</dependency>

定義注解

				?

									package com.lmxdawn.api.admin.annotation;

									import java.lang.annotation.elementtype;

									import java.lang.annotation.retention;

									import java.lang.annotation.retentionpolicy;

									import java.lang.annotation.target;

									/**

									 * 后臺登錄授權/權限驗證的注解

									 */

									//此注解只能修飾方法

									@target(elementtype.method)

									//當前注解如何去保持

									@retention(retentionpolicy.runtime)

									public @interface authruleannotation {

									  string value();

									}

攔截實現登錄和權限驗證

				?

									package com.lmxdawn.api.admin.aspect;

									import com.lmxdawn.api.admin.annotation.authruleannotation;

									import com.lmxdawn.api.admin.enums.resultenum;

									import com.lmxdawn.api.admin.exception.jsonexception;

									import com.lmxdawn.api.admin.service.auth.authloginservice;

									import com.lmxdawn.api.common.utils.jwtutils;

									import io.jsonwebtoken.claims;

									import lombok.extern.slf4j.slf4j;

									import org.aspectj.lang.joinpoint;

									import org.aspectj.lang.annotation.aspect;

									import org.aspectj.lang.annotation.before;

									import org.aspectj.lang.annotation.pointcut;

									import org.aspectj.lang.reflect.methodsignature;

									import org.springframework.stereotype.component;

									import org.springframework.web.context.request.requestcontextholder;

									import org.springframework.web.context.request.servletrequestattributes;

									import javax.annotation.resource;

									import javax.servlet.http.httpservletrequest;

									import java.lang.reflect.method;

									import java.util.list;

									/**

									 * 登錄驗證 aop

									 */

									@aspect

									@component

									@slf4j

									public class authorizeaspect {

									  @resource

									  private authloginservice authloginservice;

									  @pointcut("@annotation(com.lmxdawn.api.admin.annotation.authruleannotation)")

									  public void adminloginverify() {

									  }

									  /**

									   * 登錄驗證

									   *

									   * @param joinpoint

									   */

									  @before("adminloginverify()")

									  public void doadminauthverify(joinpoint joinpoint) {

									    servletrequestattributes attributes = (servletrequestattributes) requestcontextholder.getrequestattributes();

									    if (attributes == null) {

									      throw new jsonexception(resultenum.not_network);

									    }

									    httpservletrequest request = attributes.getrequest();

									    string id = request.getheader("x-adminid");

									    long adminid = long.valueof(id);

									    string token = request.getheader("x-token");

									    if (token == null) {

									      throw new jsonexception(resultenum.login_verify_fall);

									    }

									    // 驗證 token

									    claims claims = jwtutils.parse(token);

									    if (claims == null) {

									      throw new jsonexception(resultenum.login_verify_fall);

									    }

									    long jwtadminid = long.valueof(claims.get("admin_id").tostring());

									    if (adminid.compareto(jwtadminid) != 0) {

									      throw new jsonexception(resultenum.login_verify_fall);

									    }

									    // 判斷是否進行權限驗證

									    methodsignature signature = (methodsignature) joinpoint.getsignature();

									    //從切面中獲取當前方法

									    method method = signature.getmethod();

									    //得到了方,提取出他的注解

									    authruleannotation action = method.getannotation(authruleannotation.class);

									    // 進行權限驗證

									    authruleverify(action.value(), adminid);

									  }

									  /**

									   * 權限驗證

									   *

									   * @param authrule

									   */

									  private void authruleverify(string authrule, long adminid) {

									    if (authrule != null && authrule.length() > 0) {

									      list<string> authrules = authloginservice.listrulebyadminid(adminid);

									      // admin 為最高權限

									      for (string item : authrules) {

									        if (item.equals("admin") || item.equals(authrule)) {

									          return;

									        }

									      }

									      throw new jsonexception(resultenum.auth_failed);

									    }

									  }

									}

controller 中使用

使用 authruleannotation 注解, value 值就是在數據庫里面定義的權限規則名稱

				?

									/**

									 * 獲取管理員列表

									 */

									@authruleannotation("admin/auth/admin/index")

									@getmapping("/admin/auth/admin/index")

									public resultvo index(@valid authadminqueryform authadminqueryform,

									           bindingresult bindingresult) {

									  if (bindingresult.haserrors()) {

									    return resultvoutils.error(resultenum.param_verify_fall, bindingresult.getfielderror().getdefaultmessage());

									  }

									  if (authadminqueryform.getroleid() != null) {

									    list<authroleadmin> authroleadmins = authroleadminservice.listbyroleid(authadminqueryform.getroleid());

									    list<long> ids = new arraylist<>();

									    if (authroleadmins != null && !authroleadmins.isempty()) {

									      ids = authroleadmins.stream().map(authroleadmin::getadminid).collect(collectors.tolist());

									    }

									    authadminqueryform.setids(ids);

									  }

									  list<authadmin> authadminlist = authadminservice.listadminpage(authadminqueryform);

									  // 查詢所有的權限

									  list<long> adminids = authadminlist.stream().map(authadmin::getid).collect(collectors.tolist());

									  list<authroleadmin> authroleadminlist = authroleadminservice.listbyadminidin(adminids);

									  // 視圖列表

									  list<authadminvo> authadminvolist = authadminlist.stream().map(item -> {

									    authadminvo authadminvo = new authadminvo();

									    beanutils.copyproperties(item, authadminvo);

									    list<long> roles = authroleadminlist.stream()

									        .filter(authroleadmin -> authadminvo.getid().equals(authroleadmin.getadminid()))

									        .map(authroleadmin::getroleid)

									        .collect(collectors.tolist());

									    authadminvo.setroles(roles);

									    return authadminvo;

									  }).collect(collectors.tolist());

									  pageinfo<authadmin> authadminpageinfo = new pageinfo<>(authadminlist);

									  pagesimplevo<authadminvo> authadminpagesimplevo = new pagesimplevo<>();

									  authadminpagesimplevo.settotal(authadminpageinfo.gettotal());

									  authadminpagesimplevo.setlist(authadminvolist);

									  return resultvoutils.success(authadminpagesimplevo);

									}