小程序登录授权后,通过一个注解获取用户信息
小程序登录授权后,通过一个注解就可以获取用户信息,看下图:
/**
* 分页查询我的订单
*
* @param request
* @return
* @date 2018年4月17日
* @
*/
@Authorize //注解
@RequestMapping(value = "/listMyOrderPage", method = RequestMethod.POST)
@ResponseBody
public CommonResult listMyOrderPage(HttpServletRequest request, @RequestBody OrderSrarchParam reqData) {
UmsMember user = (UmsMember) request.getAttribute(Constant.user);//获取用户
reqData.setUserId(user.getId());
List<OrderResult> list = omsOrderService.listMyOrderPage(reqData);
return CommonResult.success(CommonPage.restPage(list));
}
那是怎么实现的,什么都不说直接上代码
1.想自定义一个注解Authorize
import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;
@Target({ElementType.METHOD})
@Retention(RetentionPolicy.RUNTIME)
public @interface Authorize {
}
2.授权处理
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.lang.reflect.Method;
/**
* @description: 授权处理
* @author: fun
* @create: 2020-04-02 19:11
*/
@Component
public class AuthorizationInterceptor implements HandlerInterceptor {
private static final Logger logger = LoggerFactory.getLogger(AuthorizationInterceptor.class);
@Autowired
private UmsMemberService umsMemberService;
/**
* 预处理
*
* @param request
* @param response
* @param handler
* @return
*/
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
if (!(handler instanceof HandlerMethod)) {
return true;
}
HandlerMethod handlerMethod = (HandlerMethod) handler;
Method method = handlerMethod.getMethod();
if (method.isAnnotationPresent(Authorize.class)) {
try {
String token = request.getHeader("token");
logger.info("---------token:" + token);
if (token == null) {
throw new ApiException(ResultCode.UNAUTHORIZED);
}
UmsMember user = umsMemberService.getByToken(token);
if (user == null) {
throw new ApiException(ResultCode.UNAUTHORIZED);
}
request.setAttribute(Constant.user, user);
} catch (Exception ex) {
throw ex;
}
}
return true;
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) {
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) {
}
3写一个拦截器WebMvcConfig
import com.uslife.common.annotation.AuthorizationInterceptor;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import javax.annotation.Resource;
/**
* @description: 授权拦截
* @author: fun
* @create: 2020-04-02 19:47
*/
@Configuration
public class WebMvcConfig implements WebMvcConfigurer {
@Resource
private AuthorizationInterceptor authorizationInterceptor;
/**
* 添加拦截器
*/
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(authorizationInterceptor);
}
}
完成以上就可以直接使用@Authorize 注解了