You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
94 lines
3.2 KiB
Java
94 lines
3.2 KiB
Java
package com.supervision.config;
|
|
|
|
import cn.hutool.core.util.StrUtil;
|
|
import cn.hutool.json.JSONObject;
|
|
import cn.hutool.json.JSONUtil;
|
|
import cn.hutool.jwt.JWT;
|
|
import cn.hutool.jwt.JWTUtil;
|
|
import com.supervision.exception.BusinessException;
|
|
import com.supervision.util.TokenUtil;
|
|
import jakarta.servlet.http.HttpServletRequest;
|
|
import jakarta.servlet.http.HttpServletResponse;
|
|
import lombok.extern.slf4j.Slf4j;
|
|
import org.jetbrains.annotations.NotNull;
|
|
import org.springframework.data.redis.core.RedisTemplate;
|
|
import org.springframework.http.HttpStatus;
|
|
import org.springframework.lang.Nullable;
|
|
import org.springframework.web.servlet.HandlerInterceptor;
|
|
|
|
import java.util.HashMap;
|
|
import java.util.Map;
|
|
|
|
@Slf4j
|
|
public class JwtInterceptor implements HandlerInterceptor {
|
|
|
|
private final RedisTemplate<String, String> redisTemplate;
|
|
|
|
public JwtInterceptor(RedisTemplate<String, String> redisTemplate) {
|
|
this.redisTemplate = redisTemplate;
|
|
}
|
|
|
|
|
|
@Override
|
|
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
|
|
//请求消息头获取用户ID
|
|
String token = request.getHeader("token");
|
|
if (StrUtil.isBlank(token)) {
|
|
// 如果是swagger来的接口,说明这里是测试的,会伪造一个用户
|
|
if (StrUtil.isNotBlank(request.getHeader("Knife4j-Gateway-Code"))) {
|
|
cacheAuth(JWTUtil.parseToken(devActiveUser()));
|
|
return true;
|
|
} else {
|
|
throw new BusinessException("当前用户未登录", HttpStatus.UNAUTHORIZED.value());
|
|
}
|
|
}
|
|
JWT jwt = JWTUtil.parseToken(token);
|
|
// 校验token是否过期,如果过期了,需要提示过期重新登录
|
|
checkTokenExpire(jwt);
|
|
cacheAuth(jwt);
|
|
return true;
|
|
}
|
|
|
|
|
|
@Override
|
|
public void afterCompletion(@NotNull HttpServletRequest request, @NotNull HttpServletResponse response, @NotNull Object handler,
|
|
@Nullable Exception ex) throws Exception {
|
|
// 请求结束,将用户信息从thread中移除
|
|
clearAuth();
|
|
HandlerInterceptor.super.afterCompletion(request, response, handler, ex);
|
|
}
|
|
|
|
|
|
private void checkTokenExpire(JWT jwt) {
|
|
Object expireTime = jwt.getPayload("expireTime");
|
|
long l = Long.parseLong(String.valueOf(expireTime));
|
|
// 校验是否比当前时间大
|
|
long currentTimeMillis = System.currentTimeMillis();
|
|
if (currentTimeMillis > l) {
|
|
throw new BusinessException("用户登录已过期,请重新登录", HttpStatus.UNAUTHORIZED.value());
|
|
}
|
|
}
|
|
|
|
|
|
private void cacheAuth(JWT jwt) {
|
|
try {
|
|
JSONObject claimsJson = jwt.getPayload().getClaimsJson();
|
|
ThreadCache.USER.set(claimsJson.toString());
|
|
} catch (Exception e) {
|
|
log.error("用户信息异常", e);
|
|
}
|
|
}
|
|
|
|
private String devActiveUser() {
|
|
Map<String, Object> map = new HashMap<>();
|
|
map.put("id", "1");
|
|
map.put("account", "test");
|
|
map.put("name", "测试账户");
|
|
return TokenUtil.creatToken(JSONUtil.toJsonStr(map));
|
|
}
|
|
|
|
private void clearAuth() {
|
|
ThreadCache.USER.remove();
|
|
}
|
|
}
|