兰宝车间质量管理系统
blame | 历史 | 原始文档
疯狂的狮子Li
2023-11-08 81f7a59caad20cfd7b91987da81e78abeafc9927 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74

package org.dromara.common.security.config;


 


import cn.dev33.satoken.exception.NotLoginException;


import cn.dev33.satoken.interceptor.SaInterceptor;


import cn.dev33.satoken.router.SaRouter;


import cn.dev33.satoken.stp.StpUtil;


import org.dromara.common.core.utils.ServletUtils;


import org.dromara.common.core.utils.SpringUtils;


import org.dromara.common.core.utils.StringUtils;


import org.dromara.common.satoken.utils.LoginHelper;


import org.dromara.common.security.config.properties.SecurityProperties;


import org.dromara.common.security.handler.AllUrlHandler;


import lombok.RequiredArgsConstructor;


import lombok.extern.slf4j.Slf4j;


import org.springframework.boot.autoconfigure.AutoConfiguration;


import org.springframework.boot.context.properties.EnableConfigurationProperties;


import org.springframework.web.servlet.config.annotation.InterceptorRegistry;


import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;


 


/**


 * 权限安全配置


 *


 * @author Lion Li


 */


 


@Slf4j


@AutoConfiguration


@EnableConfigurationProperties(SecurityProperties.class)


@RequiredArgsConstructor


public class SecurityConfig implements WebMvcConfigurer {


 


    private final SecurityProperties securityProperties;


 


    /**


     * 注册sa-token的拦截器


     */


    @Override


    public void addInterceptors(InterceptorRegistry registry) {


        // 注册路由拦截器,自定义验证规则


        registry.addInterceptor(new SaInterceptor(handler -> {


            AllUrlHandler allUrlHandler = SpringUtils.getBean(AllUrlHandler.class);


            // 登录验证 -- 排除多个路径


            SaRouter


                // 获取所有的


                .match(allUrlHandler.getUrls())


                // 对未排除的路径进行检查


                .check(() -> {


                    // 检查是否登录 是否有token


                    StpUtil.checkLogin();


 


                    // 检查 header 与 param 里的 clientid 与 token 里的是否一致


                    String headerCid = ServletUtils.getRequest().getHeader(LoginHelper.CLIENT_KEY);


                    String paramCid = ServletUtils.getParameter(LoginHelper.CLIENT_KEY);


                    String clientId = StpUtil.getExtra(LoginHelper.CLIENT_KEY).toString();


                    if (!StringUtils.equalsAny(clientId, headerCid, paramCid)) {


                        // token 无效


                        throw NotLoginException.newInstance(StpUtil.getLoginType(),


                            "-100", "客户端ID与Token不匹配",


                            StpUtil.getTokenValue());


                    }


 


                    // 有效率影响 用于临时测试


                    // if (log.isDebugEnabled()) {


                    //     log.info("剩余有效时间: {}", StpUtil.getTokenTimeout());


                    //     log.info("临时有效时间: {}", StpUtil.getTokenActivityTimeout());


                    // }


 


                });


        })).addPathPatterns("/**")


            // 排除不需要拦截的路径


            .excludePathPatterns(securityProperties.getExcludes());


    }


 


}