SpringBoot登錄用戶權限攔截器
1. 創建自定義攔截器類並實現 HandlerInterceptor 接口
package com.xgf.online_mall.interceptor;
import com.xgf.online_mall.system.domain.User;
import lombok.extern.slf4j.Slf4j;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.BufferedWriter;
import java.io.FileWriter;
import java.nio.file.Files;
import java.nio.file.Path;
import java.nio.file.Paths;
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.logging.SimpleFormatter;
@Slf4j
@Component
public class UserLoginAuthInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
log.info(" ======== UserAuthInterceptor preHandle 登錄權限攔截器攔截");
User user = (User) request.getSession().getAttribute("loginUser");
//未登錄才判斷,登錄瞭直接放行
if(user == null){
//獲取訪問路徑
String address = request.getRequestURI();
log.info("======== 攔截,訪問路徑 address : {}", address);
response.sendRedirect(request.getContextPath() + "/login.html");
return false;
/*String address = request.getRequestURI();
log.info("======== 攔截,訪問路徑 address : {}", address);
//不是登錄或者註冊頁面,就直接跳轉登錄界面
if(!address.contains("login") && !address.contains("register")){
//強制到登錄頁面
response.sendRedirect(request.getContextPath() + "/login.html");
//設置為false,不訪問controller
return false;
}*/
}
//其它模塊或者已經登錄,就直接放行
// log.info("======== 已登錄 user = {}", user);
return true;
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
log.info(" ===== UserAuthInterceptor postHandle");
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
log.info("==== UserAuthInterceptor afterCompletion");
//記錄日志 向文件裡面寫日志
//獲取服務器記錄日志log文件所存放的目錄位置 -- tomcat下的真實路徑+log目錄
String logdir = request.getServletContext().getRealPath("log");
//路徑不存在就創建
Path logdirPath = Paths.get(logdir);
if(Files.notExists(logdirPath)){
Files.createDirectories(logdirPath);
}
//目錄存在就將數據[字符]寫入 //存放日志的路徑+文件名
Path logfile = Paths.get(logdir,"userlog.log");
//logfile.toFile() paths轉換為File類型 true以追加的方式寫入
BufferedWriter writer = new BufferedWriter(new FileWriter(logfile.toFile(),true));
//獲取登錄用戶信息
User user = (User)request.getSession().getAttribute("loginUser");
//記錄user信息,存入日志
writer.write(new SimpleDateFormat("yyyy-MM-dd HH:mm:ss").format(new Date()) + " >> " + user +"\r\n");
writer.flush();
writer.close();
}
}
2. 創建WebMvcConfigurer接口實現類,註冊並生效自定義的攔截器
import com.xgf.online_mall.constant.PathConstantParam;
import com.xgf.online_mall.interceptor.UserLoginAuthInterceptor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import java.util.ArrayList;
import java.util.List;
@Configuration
@Slf4j
public class LoginConfig implements WebMvcConfigurer {
@Autowired
private UserLoginAuthInterceptor userLoginAuthInterceptor;
/**
* addInterceptors方法設置攔截路徑
* addPathPatterns:需要攔截的訪問路徑
* excludePathPatterns:不需要攔截的路徑,
* String數組類型可以寫多個用","分割
* @param registry
*/
@Override
public void addInterceptors(InterceptorRegistry registry){
log.info(" ======== LoginConfig.addInterceptors");
//添加對用戶未登錄的攔截器,並添加排除項
//error路徑,excludePathPatterns排除訪問的路徑在項目中不存在的時候,
//springboot會將路徑變成 /error, 導致無法進行排除。
registry.addInterceptor(userLoginAuthInterceptor)
.addPathPatterns("/**")
.excludePathPatterns("/js/**", "/css/**", "/img/**", "/plugins/**")
.excludePathPatterns("/login.html", "/register.html", "/system/user/login", "/system/user/login", "/index")
.excludePathPatterns("/error");
}
}
到此這篇關於SpringBoot登錄用戶權限攔截器的文章就介紹到這瞭,更多相關SpringBoot 用戶權限攔截器內容請搜索WalkonNet以前的文章或繼續瀏覽下面的相關文章希望大傢以後多多支持WalkonNet!
推薦閱讀:
- 在springboot中使用攔截器的步驟詳解
- SpringBoot攔截器使用精講
- springboot使用攔截器判斷是否登錄
- SpringBoot 過濾器與攔截器實例演示
- SpringBoot通過ThreadLocal實現登錄攔截詳解流程