| | |
|---|
| | | package com.lf.server.interceptor; |
|---|
| | | |
|---|
| | | import com.alibaba.fastjson.JSON; |
|---|
| | | import com.lf.server.entity.all.HttpStatus; |
|---|
| | | import com.lf.server.entity.all.ResponseMsg; |
|---|
| | | import com.lf.server.entity.all.StaticData; |
|---|
| | | import com.lf.server.entity.sys.UsersEntity; |
|---|
| | | import com.lf.server.entity.all.*; |
|---|
| | | import com.lf.server.entity.sys.UserEntity; |
|---|
| | | import com.lf.server.helper.StringHelper; |
|---|
| | | import com.lf.server.helper.WebHelper; |
|---|
| | | import com.lf.server.service.all.RedisService; |
|---|
| | | import com.lf.server.service.sys.TokenService; |
|---|
| | | import org.apache.commons.logging.Log; |
|---|
| | | import org.apache.commons.logging.LogFactory; |
|---|
| | | import org.springframework.context.annotation.Configuration; |
|---|
| | | import org.springframework.data.redis.cache.RedisCache; |
|---|
| | | import org.springframework.web.method.HandlerMethod; |
|---|
| | | import org.springframework.web.servlet.HandlerInterceptor; |
|---|
| | | |
|---|
| | |
|---|
| | | |
|---|
| | | private static final String NO_LOGIN = JSON.toJSONString(new ResponseMsg<String>(HttpStatus.NO_LOGIN_ERROR, "用户未登录")); |
|---|
| | | |
|---|
| | | |
|---|
| | | public AuthInterceptor(TokenService tokenService) { |
|---|
| | | this.tokenService = tokenService; |
|---|
| | | } |
|---|
| | |
|---|
| | | @Override |
|---|
| | | public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) { |
|---|
| | | try { |
|---|
| | | System.out.println(request.getRequestURI().toLowerCase() + "," + (handler instanceof HandlerMethod)); |
|---|
| | | |
|---|
| | | // 非方法,无需拦截 |
|---|
| | | if (!(handler instanceof HandlerMethod)) { |
|---|
| | | return true; |
|---|
| | | } |
|---|
| | | |
|---|
| | | // 无需授权 |
|---|
| | | if (noNeedAuth(request)) { |
|---|
| | | System.out.println(request.getRequestURI().toLowerCase() + ", " + (handler instanceof HandlerMethod)); |
|---|
| | | // 非方法 或 无需授权,无需拦截 |
|---|
| | | if (!(handler instanceof HandlerMethod) || noNeedAuth(request)) { |
|---|
| | | return true; |
|---|
| | | } |
|---|
| | | |
|---|
| | | String token = WebHelper.getToken(request); |
|---|
| | | if (StringHelper.isNull(token)) { |
|---|
| | | WebHelper.write2Page(response, NO_TOKEN); |
|---|
| | | return false; |
|---|
| | | return WebHelper.write2Page(response, NO_TOKEN); |
|---|
| | | } |
|---|
| | | |
|---|
| | | UsersEntity ue = tokenService.getCurrentUser(request); |
|---|
| | | UserEntity ue = tokenService.getCurrentUser(request); |
|---|
| | | if (ue == null) { |
|---|
| | | WebHelper.write2Page(response, NO_LOGIN); |
|---|
| | | return false; |
|---|
| | | return WebHelper.write2Page(response, NO_LOGIN); |
|---|
| | | } |
|---|
| | | |
|---|
| | | Object objCount = tokenService.redisService.get(RedisCacheKey.signPwdError(ue.getUid())); |
|---|
| | | if (objCount != null && (int) objCount > SettingData.PWD_ERR_COUNT) { |
|---|
| | | return WebHelper.write2Page(response, JSON.toJSONString(new ResponseMsg<String>(HttpStatus.NO_LOGIN_ERROR, SettingData.PWD_ERR_TIME + "分钟内禁止登录"))); |
|---|
| | | } |
|---|
| | | |
|---|
| | | // noinspection AlibabaRemoveCommentedCode |
|---|
| | | // 权限校验 |
|---|
| | | |
|---|
| | | return true; |
|---|
| | | } catch (Exception ex) { |
|---|
| | | log.error(ex.getStackTrace()); |
|---|
| | | log.error(ex.getMessage() + ex.getStackTrace() + "\n"); |
|---|
| | | return false; |
|---|
| | | } |
|---|
| | | } |
|---|
