一、创建拦截器
public class UserTokenInterceptor implements HandlerInterceptor {
//封装的操作redis的类
@Autowired
private RedisOperator redisOperator;
/***
* 调用controller之前拦截请求
* @param request
* @param response
* @param handler
* @return
* @throws Exception
*/
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
//前端请求header中携带userId和userToken
String userId = request.getHeader("headerUserId");
String userToken = request.getHeader("headerUserToken");
if(StringUtils.isNotBlank(userId)&&StringUtils.isNotBlank(userToken)){
//根据userId获取redis中用户的token
String redisToken = redisOperator.get("redis_user_token"+":"+userId);
if(StringUtils.isBlank(redisToken)){
returnErrorResponse(response,ApiResult.retFail("登录信息失效,请重新登录!"));
return false;
}else{
if(!redisToken.equals(userToken)){
returnErrorResponse(response,ApiResult.retFail("账号在异地登录,请重新登录!"));
return false;
}
}
}else{
returnErrorResponse(response,ApiResult.retFail("登录信息失效,请重新登录!"));
return false;
}
return true;
}
/***
* 重写返回响应
* @param request
* @param result
*/
public void return ErrorResponse(HttpServletResponse response,ApiResult result){
OutputStream out = null;
try{
response.setCharacterEncoding("utf-8");
response.setContentType("text/json");
out = response.getOutputStream();
out.write(JsonUtils.objectToJson(result).getBytes("utf-8"));
out.flush();
} catch(IOException e){
e.printStackTrace();
} finally{
try{
if( out != null){
out.close();
}
} catch(IOException e){
e.printStackTrace();
}
}
}
/***
* 请求controller之后,渲染视图之前
* @param request
* @param response
* @param handler
* @param modelAndView
* @throws Exception
*/
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
}
/***
* 请求controller之后,渲染视图之后
* @param request
* @param response
* @param handler
* @param ex
* @throws Exception
*/
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
}
}
二、注册拦截器
WebMvcConfig.java
@Configuration
public class WebMvcConfig implements WebMvcConfigurer {
@Bean
public UserTokenInterceptor userTokenInterceptor(){
return new UserTokenInterceptor();
}
/***
* 注册拦截器
* @param registry
*/
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(userTokenInterceptor()).addPathPatterns("");
WebMvcConfigurer.super.addInterceptors(registry);
}
}