自动化立体仓库 - WMS系统
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
*
lsh
4 天以前 49f306cb470a8ee824204b701796d1d8f63ff223 
 src/main/java/com/zy/common/config/AdminInterceptor.java


@@ -2,12 +2,14 @@




import com.alibaba.fastjson.JSON;


import com.baomidou.mybatisplus.mapper.EntityWrapper;


import com.zy.common.utils.Http;


import com.zy.system.entity.*;


import com.zy.system.service.*;


import com.core.annotations.AppAuth;


import com.core.annotations.ManagerAuth;


import com.core.common.BaseRes;


import com.core.common.Cools;


import com.zy.common.properties.SystemProperties;


import com.zy.common.utils.Http;


import com.zy.system.entity.*;


import com.zy.system.service.*;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.beans.factory.annotation.Value;


import org.springframework.lang.Nullable;


@@ -19,6 +21,7 @@


import javax.servlet.http.HttpServletRequest;


import javax.servlet.http.HttpServletResponse;


import java.lang.reflect.Method;


import java.util.Date;




/**


 * Created by vincent on 2019-06-13


@@ -62,14 +65,25 @@


                }


            }


        }


        // 白名单


//        if (IpTools.gainRealIp(request).equals("127.0.0.1")) {


//            request.setAttribute("userId", 9527);


//            return true;


//        }


        // 跨域设置


        // response.setHeader("Access-Control-Allow-Origin", "*");


        HandlerMethod handlerMethod = (HandlerMethod) handler;


        Method method = handlerMethod.getMethod();


        if (method.isAnnotationPresent(AppAuth.class)){


            AppAuth annotation = method.getAnnotation(AppAuth.class);


            if (annotation.value().equals(AppAuth.Auth.CHECK)){


                request.setAttribute("appAuth", annotation.memo());


            }


        }


        if (method.isAnnotationPresent(ManagerAuth.class)){


            ManagerAuth annotation = method.getAnnotation(ManagerAuth.class);


            if (annotation.value().equals(ManagerAuth.Auth.CHECK)){


                return check(request, response);


                return check(request, response, annotation.memo());


            }


        }


        return true;


@@ -85,19 +99,28 @@


        }


    }




    private boolean check(HttpServletRequest request, HttpServletResponse response) {


    @Override


    public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, @Nullable Exception ex) throws Exception {


//        Object r = request.getAttribute("cool-response");


    }




    private boolean check(HttpServletRequest request, HttpServletResponse response, String memo) {


        try {


            String token = request.getHeader("token");


            String token = new String();


            token = request.getHeader("token");


            if (Cools.isEmpty(token)){


                return true;


            }


            UserLogin userLogin = userLoginService.selectOne(new EntityWrapper<UserLogin>().eq("token", token));


            if (null == userLogin){


                Http.response(response, BaseRes.DENIED);


                return false;


            }


            User user = userService.selectById(userLogin.getUserId());


            String deToken = Cools.deTokn(token, user.getPassword());


            long timestamp = Long.parseLong(deToken.substring(0, 13));


            // 1天后过期


            if (System.currentTimeMillis() - timestamp > 86400000){


//            String deToken = Cools.deTokn(token, user.getPassword());


//            long timestamp = Long.parseLong(deToken.substring(0, 13));


            // 15分钟后过期


            if (System.currentTimeMillis() - userLogin.getCreateTime().getTime() > 900000){


                Http.response(response, BaseRes.DENIED);


                return false;


            }


@@ -106,15 +129,26 @@


                Http.response(response, BaseRes.LIMIT);


                return false;


            }


            // 操作日志


            OperateLog operateLog = new OperateLog();


            operateLog.setAction(request.getRequestURI());


            operateLog.setIp(request.getRemoteAddr());


            operateLog.setUserId(user.getId());


            operateLog.setRequest(JSON.toJSONString(request.getParameterMap()));


            // 请求缓存


            request.setAttribute("userId", user.getId());


            request.setAttribute("operateLog", operateLog);


            // 更新 token 有效期


            userLogin.setCreateTime(new Date());


            userLoginService.updateById(userLogin);


            // 操作日志


            if (!Cools.isEmpty(memo)) {


                // 进行激活判断


                if (!SystemProperties.SYSTEM_ACTIVATION) {


                    Http.response(response, BaseRes.NO_ACTIVATION);


                    return false;


                }


//                // 记录操作日志


//                OperateLog operateLog = new OperateLog();


//                operateLog.setAction(Cools.isEmpty(memo)?request.getRequestURI():memo);


//                operateLog.setIp(request.getRemoteAddr());


//                operateLog.setUserId(user.getId());


//                operateLog.setRequest(JSON.toJSONString(request.getParameterMap()));


//                request.setAttribute("operateLog", operateLog);


            }


            return true;


        } catch (Exception e){


            Http.response(response, BaseRes.DENIED);


@@ -142,7 +176,7 @@


    /**


     * 跨域


     */


    private void cors(HttpServletResponse response){


    public static void cors(HttpServletResponse response){


        // 跨域设置


        response.setHeader("Access-Control-Allow-Origin", "*");


        response.setHeader("Access-Control-Allow-Credentials", "true");