介绍

单体项目的时候使用权限框架不是特别方便所以直接主动去封装一下拦截器进行简单的处理,可以自己去获取cookies还有jwt以及session处理用户登录状态

拦截器

package com.example.huihuifusdk.config;

import cn.hutool.core.util.ObjectUtil;
import cn.hutool.json.JSONUtil;
import com.example.huihuifusdk.common.UserContextHolder;
import com.example.huihuifusdk.entity.ResultVo;
import com.example.huihuifusdk.entity.system.SysUserB;
import com.example.huihuifusdk.mappers.SystemMapper;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.redis.core.StringRedisTemplate;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;

import static com.example.huihuifusdk.common.HttpStatusEum.NOT_LOGGED_IN;

@Component
public class MyInterceptor implements HandlerInterceptor {
    @Autowired
    private StringRedisTemplate redisTemplate;
    @Autowired
    private SystemMapper systemMapper;

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        String token = request.getHeader("token");
        String loginKey = "login:" + token;
        Boolean hasKey = redisTemplate.hasKey(loginKey);
        if (Boolean.TRUE.equals(hasKey)) {
            String phone  = redisTemplate.opsForValue().get(loginKey);
            //校验用户是否存在
            SysUserB user = systemMapper.getUser(null, phone, null);
            if (ObjectUtil.isNotEmpty(user)){
                UserContextHolder.setCurrentUser(user.getPhone());
                return true;
            }else {
                return false;
            }
        }else {
            response.setContentType("application/json;charset=UTF-8");
            response.getWriter().write(JSONUtil.toJsonStr(ResultVo.error(NOT_LOGGED_IN)));
            // 在请求处理之前进行调用
            return false;
        }
    }

    @Override
    public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
        // 在请求处理之后进行调用，但是在渲染视图之前
    }

    @Override
    public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
        // 在请求处理之后进行调用，包括对视图的渲染等操作
        UserContextHolder.clear();
    }
}

WebConfig注册拦截器

package com.example.huihuifusdk.config;

import jakarta.annotation.Resource;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;

import java.util.List;

@Configuration
public class InterceptorConfig implements WebMvcConfigurer {
    @Resource
    private WeChatConfig weChatConfig;
    @Autowired
    private  MyInterceptor myInterceptor;
    @Override
    public void addInterceptors(InterceptorRegistry registry) {
        //过滤请求
        List<String> intercept = weChatConfig.getIntercept();
        registry.addInterceptor(myInterceptor).addPathPatterns("/**").excludePathPatterns(intercept);
    }
}

过滤路由(yml)

    intercept:
      - '/services/system/enrollCode'
      - '/services/system/loginCode'
      - '/services/system/loginType'
      - '/services/system/loginwx'
      - '/services/system/login'
      - '/services/system/enroll'
      - '/services/system/getWechatAppConfig'
      - '/services/pay/payFixedAmount'

将一些路由可以自己放到配置文件中统一加到忽略拦截路径集合进行统一拦截