校验token和解析token获取数据代码优化
解决方案
基于ThreadLocal + 拦截器的形式统一处理
一、使用拦截器进行统一身份鉴权
1.1定义拦截器
package com.tanhua.server.interceptor;
import com.tanhua.commons.utils.JwtUtils;
import org.springframework.web.servlet.HandlerInterceptor;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class TokenInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
//1.获取请求头中的token
String token = request.getHeader("Authorization");
//2.校验token合法性
boolean verifyToken = JwtUtils.verifyToken(token);
if(!verifyToken){
//token失效,拦截
response.setStatus(401);
return false;
}
//3.放行
return