代码自动化平台
blame | 历史 | 原始文档
admin
2022-05-19 56364722d3ed70d48ec41f567a4e59e5ccbbb868 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88

package com.ks.app.aop;


 


import com.ks.app.entity.admin.AdminUser;


import com.ks.app.service.inter.admin.AdminRoleRuleService;


import com.ks.app.utils.ApiCodeConstant;


import com.ks.app.utils.SystemInfoUtil;


import com.ks.app.vo.AcceptAdminData;


import org.aspectj.lang.ProceedingJoinPoint;


import org.aspectj.lang.annotation.Around;


import org.aspectj.lang.annotation.Aspect;


import org.springframework.core.annotation.Order;


import org.springframework.security.core.Authentication;


import org.springframework.security.core.context.SecurityContext;


import org.springframework.stereotype.Component;


import org.springframework.web.context.request.RequestContextHolder;


import org.springframework.web.context.request.ServletRequestAttributes;


import org.yeshi.utils.JsonUtil;


 


import javax.annotation.Resource;


import javax.servlet.http.HttpSession;


import java.io.IOException;


import java.io.PrintWriter;


 


//后台接口监控


@Component


@Aspect


@Order(2)


public class AdminApiFilter {


 


    @Resource


    private AdminRoleRuleService adminRoleRuleService;


 


    public static final String EDP = "execution(* com.yeshi.makemoney.app.controller.admin..*.*(..))";


 


    @Around(EDP)


    public Object around(ProceedingJoinPoint joinPoint) throws IOException {


        Object[] args = joinPoint.getArgs();


        ServletRequestAttributes servletContainer = (ServletRequestAttributes) RequestContextHolder


                .getRequestAttributes();


        servletContainer.getResponse().setCharacterEncoding("UTF-8");


 


        AcceptAdminData acceptAdminData = null;


        for (Object obj : args) {


            if (obj instanceof AcceptAdminData) {


                acceptAdminData = (AcceptAdminData) obj;


                break;


            }


        }


 


        if (acceptAdminData != null) {


            HttpSession session = servletContainer.getRequest().getSession();


            String url = servletContainer.getRequest().getRequestURI();


 


            acceptAdminData.setSystem(SystemInfoUtil.getAdminSelectedSystem(session));


            if (acceptAdminData.getSystem() == null && !url.endsWith("index.html") && !url.endsWith("login.html")) {


                PrintWriter out = servletContainer.getResponse().getWriter();


                out.print(JsonUtil.loadFalseResult(ApiCodeConstant.CODE_ERROR_IN_SERVER, "未选择系统"));


                out.close();


                return null;


            }


            //如果用户登录了将用户信息加入进去


            SecurityContext contextSession = (SecurityContext) session.getAttribute("SPRING_SECURITY_CONTEXT");


            if (contextSession != null) {


                Authentication authentication = contextSession.getAuthentication();


                AdminUser adminUser = (AdminUser) authentication.getPrincipal();


                //加载权限


                if (adminUser != null && adminUser.getRules() == null) {


                    adminUser.setRules(adminRoleRuleService.listPaths(adminUser.getAccount()));


                }


                acceptAdminData.setAdminUser(adminUser);


            }


 


        }


 


 


        try {


            return joinPoint.proceed(args);


        } catch (Throwable e) {


            e.printStackTrace();


            PrintWriter out = servletContainer.getResponse().getWriter();


            out.print(JsonUtil.loadFalseResult(ApiCodeConstant.CODE_ERROR_IN_SERVER, "服务器内部错误"));


            out.close();


        }


        return null;


    }


 


 


}