为了统一区分所有请求,将所有的请求加上.do
登录,如果用户登录成功后,则生成一个随机的字符串,将字符串作为key存储在redis中。
登录拦截时,也只拦截.do请求,如果通过字符串查询到信息,则视为登录。否则未登录
增加配置 LoginInterceptorConfig, 这里设定我们要拦截的是什么,哪些拦截,哪些不拦截,特殊例外
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.ResourceHandlerRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import com.ccjr.business.aop.LoginInterceptor;
import lombok.extern.slf4j.Slf4j;
/**
* @Description : 登录拦截器
* @author : Chenweixian
* @Date : 2020年11月3日 下午6:49:09
*/
@Slf4j
@Configuration
public class LoginInterceptorConfig implements WebMvcConfigurer{
@Value("${login.uriIgnore:/login/*}")
private String LOGIN_URIIGNORE;
@Autowired
private LoginInterceptor interceptor;
public static final String PATH_PATTERNS = "/*/*.do,*.do";
@Override
public void addInterceptors(InterceptorRegistry registry) {
//addPathPatterns 用于添加拦截规则
//excludePathPatterns 用于排除拦截
registry.addInterceptor(interceptor)
.addPathPatterns(PATH_PATTERNS.split(","))
.excludePathPatterns(LOGIN_URIIGNORE.split(","));
log.info("登录拦截器注册成功!");
}
}
增加拦截器 LoginInterceptor ,拦截所有的请求
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.apache.commons.lang.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.redis.core.StringRedisTemplate;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import com.ccjr.base.BaseApiService;
import com.ccjr.base.BaseResponse;
import com.ccjr.business.web.controller.BaseController;
import com.ccjr.business.web.services.LoginServices;
import com.ccjr.commons.constants.ApiErrorEnum;
import lombok.extern.slf4j.Slf4j;
/**
* @Description : d登录拦截器
* @Company : 晨创科技
* @author : Chenweixian
* @Date : 2020年11月5日 下午1:24:54
*/
@Slf4j
@Component
public class LoginInterceptor implements HandlerInterceptor {
@Autowired
private LoginServices loginServices;
@Autowired
protected StringRedisTemplate stringRedisTemplate;
@Autowired
protected BaseApiService baseApiService;
/**
* 在业务处理器处理请求之前被调用。预处理,可以进行编码、安全控制、权限校验等处理;
*/
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler)
throws Exception {
String token = request.getHeader(BaseController.LOGIN_USER_TOKEN);
if (StringUtils.isEmpty(token)) {
returnJson(response);
return false;
}
String userInfoString = stringRedisTemplate.boundValueOps(token).get();
if (StringUtils.isEmpty(userInfoString)) {
returnJson(response);
return false;
}
if (!StringUtils.isEmpty(token)) {
loginServices.refreshLoginToken(token);
}
return true;
}
/**
* 在业务处理器处理请求执行完成后,生成视图之前执行。后处理(调用了Service并返回ModelAndView,但未进行页面渲染),有机会修改ModelAndView;
*/
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler,
ModelAndView modelAndView) throws Exception {
// log.info("postHandle...");
}
/**
* 在DispatcherServlet完全处理完请求后被调用,可用于清理资源等。返回处理(已经渲染了页面);
*/
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex)
throws Exception {
// log.info("afterCompletion...");
}
private void returnJson(HttpServletResponse response){
PrintWriter writer = null;
response.setCharacterEncoding("UTF-8");
response.setContentType("application/json; charset=utf-8");
try {
BaseResponse baseResponse = baseApiService.setResultError(ApiErrorEnum.USER_LOGIN_20103);
writer = response.getWriter();
writer.print(baseResponse);
} catch (IOException e){
log.error("拦截器输出流异常",e);
} finally {
if(writer != null){
writer.close();
}
}
}
}
完。
