当前位置：首页 > news >正文

用户访问认证

news 2025/7/28 0:11:36

注解

@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@Documented
public @interface Login {
}

自定义拦截器

@Component
public class AuthInterceptor implements HandlerInterceptor {@ResourceJwtUtils jwtUtils;@Overridepublic boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {// 判断是否有@Login注解，没有就放行Login annotation;if(handler instanceof HandlerMethod){annotation = ((HandlerMethod) handler).getMethodAnnotation(Login.class);}else{return true;}if(annotation == null){return true;}// 获取用户凭证tokenString token = request.getHeader("token");// 判断token是否合法if(!StringUtils.hasText(token)){throw new HubException("请先登录");}Claims claim = jwtUtils.getClaimByToken(token);if(claim == null || jwtUtils.isTokenExpired(claim.getExpiration())){throw new HubException("请先登录");}// 把用户信息存到sessionrequest.getSession().setAttribute(Const.USER_KEY, Long.parseLong(claim.getSubject()));return true;}
}

MvcConfig

@Configuration
public class MvcConfig implements WebMvcConfigurer {@ResourceAuthInterceptor authInterceptor;@Overridepublic void addInterceptors(InterceptorRegistry registry) {registry.addInterceptor(authInterceptor).addPathPatterns("/app/**");}
}

测试

@RestController
@RequestMapping("/app")
public class UserController {@Login@GetMapping("/userInfo")public Result getUserInfo(){return Result.success();}@GetMapping("/userInfo2")public Result getUserInfo2(){return Result.success();}
}