/**
* @author mark
* @date 2021年06月10日13:40
*/
@Component
@Log4j2
public class AuthorizeFilter implements GlobalFilter, Ordered {
@Override
public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain) {
//1.获取请求对象和响应对象
ServerHttpRequest request = exchange.getRequest();
ServerHttpResponse response = exchange.getResponse();
//2.判断当前的请求是否为登录,如果是,直接放行
if(request.getURI().getPath().contains("/login/in")){
//放行
return chain.filter(exchange);
}
//3.获取当前用户的请求头jwt信息
HttpHeaders headers = request.getHeaders();
String jwtToken = headers.getFirst("token");
//4.判断当前令牌是否存在
if(StringUtils.isEmpty(jwtToken)){
//如果不存在,向客户端返回错误提示信息
response.setStatusCode(HttpStatus.UNAUTHORIZED);
return response.setComplete();//终止请求,返回上面的装填
}
try {
//5.如果令牌存在,解析jwt令牌,判断该令牌是否合法,如果不合法,则向客户端返回错误信息
Claims claims = AppJwtUtil.getClaimsBody(jwtToken);
int result = AppJwtUtil.verifyToken(claims);
if(result == 0 || result == -1){
//5.1 合法,则向header中重新设置userId
Integer id = (Integer) claims.get("id");
log.info("find userid:{} from uri:{}",id,request.getURI());
//重新设置token到header中
ServerHttpRequest serverHttpRequest = request.mutate().headers(httpHeaders -> {
httpHeaders.add("userId", id + "");
}).build();
exchange.mutate().request(serverHttpRequest).build();//把头设置到新的请求中
}else {
response.setStatusCode(HttpStatus.UNAUTHORIZED);
return response.setComplete();
}
}catch (Exception e){
e.printStackTrace();
//想客户端返回错误提示信息
response.setStatusCode(HttpStatus.UNAUTHORIZED);
return response.setComplete();
}
//6.放行 责任链设计模式,将当前请求传递到下一个过滤器
return chain.filter(exchange);
}
/**
* 优先级设置
* 值越小,优先级越高
* @return
*/
@Override
public int getOrder() {
return 0;
}
}
在网关模块,引入网关的全局过滤器,并实现全局过滤器接口
import org.springframework.cloud.gateway.filter.GlobalFilter;
继承spring框架的过滤器优先级设置接口Ordered,重写对应的方法,返回的是一个整形数值,数值越小优先级越高
import org.springframework.core.Ordered;
网关验证实现类共有两个接口实现如下:
public class AuthorizeFilter implements GlobalFilter, Ordered {
1.全局过滤接口实现方法详解:
public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain)
1.1.ServerWebExchange可以获取请求和响应的对象
ServerHttpRequest request = exchange.getRequest();
ServerHttpResponse response = exchange.getResponse();
1.2过滤器放行
if(request.getURI().getPath().contains("/login/in")){
//放行
return chain.filter(exchange);
}
1.3获取请求头
HttpHeaders headers = request.getHeaders();
1.4重写设置某些东西到请求头中
//重新设置token到header中
ServerHttpRequest serverHttpRequest = request.mutate().headers(httpHeaders -> {
httpHeaders.add("userId", id + "");
}).build();
//把头设置到新的请求中
exchange.mutate().request(serverHttpRequest).build();
1.5返回响应
response.setStatusCode(HttpStatus.UNAUTHORIZED);
return response.setComplete();
2过滤器顺序
/**
* 优先级设置
* 值越小,优先级越高
* @return
*/
@Override
public int getOrder() {
return 0;
}