import lombok.extern.slf4j.Slf4j;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import pro.tjkj.zauth.client.interceptor.ZAuthInterceptor;
import javax.annotation.Resource;
@Slf4j
public class InterceptorConfig implements WebMvcConfigurer {
@Resource
ZAuthInterceptor zAuthInterceptor;
@Resource
ZAuthConfigurationProperties zAuthConfigurationProperties;
@Override
public void addInterceptors(InterceptorRegistry registry) {
if (!zAuthConfigurationProperties.isApiGuard()) {
log.warn("ZAuth API Guard Is Not Enable, Your API Port Is Danger!");
}else {
registry.addInterceptor(zAuthInterceptor);
}
}
}
二 拦截器设置(根据业务进行配置)
import lombok.extern.slf4j.Slf4j;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.mvc.ParameterizableViewController;
import org.springframework.web.servlet.resource.ResourceHttpRequestHandler;
import pro.tjkj.zauth.client.annotation.ZAuthFilter;
import pro.tjkj.zauth.client.config.ZAuthConfigurationProperties;
import pro.tjkj.zauth.client.exception.AuthInterceptException;
import pro.tjkj.zauth.client.service.ZAuthCallBack;
import pro.tjkj.zauth.client.service.ZAuthService;
import javax.annotation.Resource;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.lang.annotation.Annotation;
@Component
@Slf4j
public class ZAuthInterceptor implements HandlerInterceptor {
@Resource
private ZAuthConfigurationProperties zAuthConfigurationProperties;
@Resource
ZAuthService zAuthService;
ZAuthCallBack zAuthCallBack = null;
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
if (request.getMethod().equals("OPTIONS")) {
return true;
}
boolean showLog = zAuthConfigurationProperties.getLogMode() == ZAuthConfigurationProperties.LogMode.DEBUG;
HandlerMethod method;
try {
method = (HandlerMethod) handler;
} catch (ClassCastException classCastException) {
if (handler instanceof ParameterizableViewController || handler instanceof ResourceHttpRequestHandler) {
return true;
}
if (showLog) {
log.info(">>> === API Guard === Intercept === >>>");
}
throw new AuthInterceptException(">>> === API Guard === Intercept === >>>",true);
}
boolean haveZAuthAnnotation = false;
for (Annotation annotation : method.getMethod().getAnnotations()) {
if (annotation instanceof ZAuthFilter) {
haveZAuthAnnotation = true;
ZAuthFilter zAuthFilter = (ZAuthFilter) annotation;
if (zAuthFilter.any()) {
if (showLog) {
log.info(">>> === API Guard === Method === " + handler + " === >>>");
log.info(">>> === API Guard === Any Request Pass === >>> ");
}
return true;
}
}
}
if (zAuthConfigurationProperties.isApiGuard()) {
if (!haveZAuthAnnotation) {
if (showLog) {
log.info(">>> === API Guard === Method === " + handler + " === >>>");
}
if (zAuthService.sign(zAuthCallBack) || zAuthService.haveToken(zAuthCallBack)) {
if (showLog) {
log.info(">>> === API Guard === Match Success === >>>");
}
return true;
} else {
if (showLog) {
log.info(">>> === API Guard === Intercept === >>>");
}
throw new AuthInterceptException(">>> === API Guard === Intercept === >>>", true);
}
}
}
return HandlerInterceptor.super.preHandle(request, response, handler);
}
}
本文介绍了Java Spring框架中拦截器的设计和配置方法,包括拦截器配置类的实现以及根据业务需求进行的拦截器设置。
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
