SpringBoot配置攔截器實現登錄之后才能調用api接口

本文轉載自查看原文 2019-12-10 11:21 369 [02]SpringBoot

配置一個攔截器

@Component
public class LoginInterceptor implements HandlerInterceptor {

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
        if (request.getSession().getAttribute(Constant.CURRENT_USER) == null) {
            response.setStatus(RestResponseEnum.LOGIN_TIMEOUT.getCode());
            return false;
        } else {
            return true;
        }
    }

}

配置一個WebConfig

@Configuration
public class WebConfig implements WebMvcConfigurer {

    @Autowired
    private LoginInterceptor loginInterceptor;


    @Override
    public void addInterceptors(InterceptorRegistry registry) {
　　　　　// 只有登錄接口才會被攔截到
        registry.addInterceptor(loginInterceptor).addPathPatterns("/**").excludePathPatterns("/v1/login", "/v1/admin/login");
    }
}

LoginController

@RestController
public class LoginController {

    @Autowired
    private LoginService loginService;

    @PostMapping("/v1/login")
    public Object login(@RequestBody UserBean userBean, HttpServletRequest request, HttpServletResponse response) {
        if (loginService.checkLogin(userBean)) {
            response.setStatus(RestResponseEnum.SUCCESS.getCode());
            request.getSession().setAttribute(Constant.CURRENT_USER, userBean);
            return userBean;
        }
        RestResponseEnum loginError = RestResponseEnum.LOGIN_ERROR;
        return RestErrorResponse.build().setErrorCode(loginError.getCode()).setMessage(loginError.getMsg()).getResult();
    }

    @PostMapping(value = "/v1/logout")
    public void logout(HttpServletRequest request, HttpServletResponse response) {
        if (loginService.getCurrentUser(request.getSession()) != null) {
            request.getSession().invalidate();
            response.setStatus(RestResponseEnum.SUCCESS.getCode());
        }
    }
}

LoginService

@Service
public class LoginService {

    @Autowired
    private UserService userService;
public boolean checkLogin(UserBean userBean) {
User userOptional = userService.selectByPrimaryKey(userBean.getUserName());
        if (userOptional == null)) {
            return false;
        } else if (!Md5EncryptionUtil.encrypt(userBean.getPassword()).equals(userOptional.getPassword())) {
            return false;
        } else {
            userBean.setPassword(null);
            userBean.setLoginTime(System.currentTimeMillis());
            userBean.setNickName(userOptional.getNickname());
            userBean.setEmail(userOptional.getEmail());
            return true;
        }
    }public UserBean getCurrentUser(HttpSession session) {
        UserBean userBean = (UserBean) session.getAttribute(Constant.CURRENT_USER);
        return userBean;
    }


}

UserBean

@Data
public class UserBean {

    private String userName;

    private String password;

    private String newPassword;

    private String nickName;

    private String email;

    private String resultMsg = "";

    private Long loginTime;

    private Integer errorType;

    public UserBean() {

    }

    public UserBean(User user) {
        userName = user.getUserName();
        password = user.getPassword();
        newPassword = "";
        nickName = user.getNickname();
        email = user.getEmail();
        loginTime = System.currentTimeMillis();
    }

}

Constant

public class Constant {

    //保存用戶信息的session
    public static final String CURRENT_USER = "CURRENT_USER";
}

controller返回值

public class RestErrorResponse {
    private Integer errorCode;
    private String message;
    private Object details;
    private JSONObject result;


    private RestErrorResponse() {
    }

    public static RestErrorResponse build() {
        return new RestErrorResponse();
    }

    public Integer getErrorCode() {
        return errorCode;
    }

    public RestErrorResponse setErrorCode(Integer errorCode) {
        this.errorCode = errorCode;
        return this;
    }

    public String getMessage() {
        return message;
    }

    public RestErrorResponse setMessage(String message) {
        this.message = message;
        return this;
    }

    public Object getDetails() {
        return details;
    }

    public RestErrorResponse setDetails(Object details) {
        this.details = details;
        return this;
    }

    public void setResult(JSONObject result) {
        this.result = result;
    }

    @Override
    public String toString() {
        return getResult();
    }

    public String getResult() {
        result = new JSONObject();
        JSONObject errorJson = new JSONObject();
        errorJson.put("code", errorCode);
        errorJson.put("message", message);
        errorJson.put("details", details);
        result.put("error", errorJson);
        return result.toString();
    }


}

錯誤枚舉

public enum RestResponseEnum {
    /* */
    SUCCESS(200, "成功"),
    UNKNOWN_ERROR(-1, "未知錯誤"),

    EQUIPMENT_ERROR(511, "操作設備失敗"),

    EXCEL_DOWNLOAD_ERROR(516, "EXCEL下載失敗"),
    EXCEL_UPLOAD_ERROR(517, "EXCEL上傳失敗"),
    /* error result about login*/
    LOGIN_ERROR(501, "用戶登錄失敗"),
    ADMIN_LOGIN_ERROR(502, "管理員登錄失敗"),

    /*  error result about user*/
    USER_ERROR(506, "操作用戶失敗"),

    LOGIN_TIMEOUT(600, "登錄超時");

    private Integer code;
    private String msg;

    RestResponseEnum(Integer code, String msg) {
        this.code = code;
        this.msg = msg;
    }

    public Integer getCode() {
        return code;
    }

    public String getMsg() {
        return msg;
    }

}

session有效時間

application.yml

server:
  port: 9000
  servlet:
    session:
      timeout: 10m

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 Springboot 攔截器配置（登錄攔截） SpringBoot實戰項目（十六）--攔截器配置及登錄攔截 Springboot配置攔截器無法跳轉登錄頁面 SpringBoot項目中如何實現登錄攔截器 springboot + vue實現token登錄攔截器 SpringBoot配置攔截器實現HandlerInterceptor接口沒有提示重寫三個方法的問題 Springboot配置攔截器 SpringBoot——配置類實現WebMvcConfigurer接口來配置攔截器、view-controller、視圖解析器等 springboot攔截器之驗證登錄 springmvc攔截器實現登錄驗證