通过获取类的RequestMapping注解来判断当前请求是否有权限

zengqiao · zengqiao · commit 1141d4b83320 · 2021-04-15T18:12:21.000+08:00
diff --git a/kafka-manager-extends/kafka-manager-account/src/main/java/com/xiaojukeji/kafka/manager/account/impl/LoginServiceImpl.java b/kafka-manager-extends/kafka-manager-account/src/main/java/com/xiaojukeji/kafka/manager/account/impl/LoginServiceImpl.java
@@ -84,7 +84,7 @@ public boolean checkLogin(HttpServletRequest request, HttpServletResponse respon
             return false;
         }
 
-        boolean status = checkAuthority(request, accountService.getAccountRoleFromCache(username));
+        boolean status = checkAuthority(classRequestMappingValue, accountService.getAccountRoleFromCache(username));
         if (status) {
             HttpSession session = request.getSession();
             session.setAttribute(LoginConstant.SESSION_USERNAME_KEY, username);
@@ -94,19 +94,18 @@ public boolean checkLogin(HttpServletRequest request, HttpServletResponse respon
         return false;
     }
 
-    private boolean checkAuthority(HttpServletRequest request, AccountRoleEnum accountRoleEnum) {
-        String uri = request.getRequestURI();
-        if (uri.contains(ApiPrefix.API_V1_NORMAL_PREFIX)) {
+    private boolean checkAuthority(String classRequestMappingValue, AccountRoleEnum accountRoleEnum) {
+        if (classRequestMappingValue.equals(ApiPrefix.API_V1_NORMAL_PREFIX)) {
             // normal 接口都可以访问
             return true;
         }
 
-        if (uri.contains(ApiPrefix.API_V1_RD_PREFIX) ) {
-            // RD 接口 OP 或者 RD 可以访问
+        if (classRequestMappingValue.equals(ApiPrefix.API_V1_RD_PREFIX) ) {
+            // RD 接口, OP 或者 RD 可以访问
             return AccountRoleEnum.RD.equals(accountRoleEnum) || AccountRoleEnum.OP.equals(accountRoleEnum);
         }
 
-        if (uri.contains(ApiPrefix.API_V1_OP_PREFIX)) {
+        if (classRequestMappingValue.equals(ApiPrefix.API_V1_OP_PREFIX)) {
             // OP 接口只有 OP 可以访问
             return AccountRoleEnum.OP.equals(accountRoleEnum);
         }

Original file line number	Diff line number	Diff line change
`@@ -84,7 +84,7 @@ public boolean checkLogin(HttpServletRequest request, HttpServletResponse respon`
`84`	`84`	`return false;`
`85`	`85`	`}`
`86`	`86`
`87`		`- boolean status = checkAuthority(request, accountService.getAccountRoleFromCache(username));`
	`87`	`+ boolean status = checkAuthority(classRequestMappingValue, accountService.getAccountRoleFromCache(username));`
`88`	`88`	`if (status) {`
`89`	`89`	`HttpSession session = request.getSession();`
`90`	`90`	`session.setAttribute(LoginConstant.SESSION_USERNAME_KEY, username);`
`@@ -94,19 +94,18 @@ public boolean checkLogin(HttpServletRequest request, HttpServletResponse respon`
`94`	`94`	`return false;`
`95`	`95`	`}`
`96`	`96`
`97`		`- private boolean checkAuthority(HttpServletRequest request, AccountRoleEnum accountRoleEnum) {`
`98`		`- String uri = request.getRequestURI();`
`99`		`- if (uri.contains(ApiPrefix.API_V1_NORMAL_PREFIX)) {`
	`97`	`+ private boolean checkAuthority(String classRequestMappingValue, AccountRoleEnum accountRoleEnum) {`
	`98`	`+ if (classRequestMappingValue.equals(ApiPrefix.API_V1_NORMAL_PREFIX)) {`
`100`	`99`	`// normal 接口都可以访问`
`101`	`100`	`return true;`
`102`	`101`	`}`
`103`	`102`
`104`		`- if (uri.contains(ApiPrefix.API_V1_RD_PREFIX) ) {`
`105`		`- // RD 接口 OP 或者 RD 可以访问`
	`103`	`+ if (classRequestMappingValue.equals(ApiPrefix.API_V1_RD_PREFIX) ) {`
	`104`	`+ // RD 接口, OP 或者 RD 可以访问`
`106`	`105`	`return AccountRoleEnum.RD.equals(accountRoleEnum) \|\| AccountRoleEnum.OP.equals(accountRoleEnum);`
`107`	`106`	`}`
`108`	`107`
`109`		`- if (uri.contains(ApiPrefix.API_V1_OP_PREFIX)) {`
	`108`	`+ if (classRequestMappingValue.equals(ApiPrefix.API_V1_OP_PREFIX)) {`
`110`	`109`	`// OP 接口只有 OP 可以访问`
`111`	`110`	`return AccountRoleEnum.OP.equals(accountRoleEnum);`
`112`	`111`	`}`