SpringAop获取自定义注解

SpringAop获取自定义注解

/**
 * 通过切面进行角色和权限的校验
 * Author：daWang
 * Date：2023/7/1  15:23
 */
@Aspect
@Component
@RequiredArgsConstructor
public class AuthCheck {

    private final RedisUtils redisUtils;


    @Pointcut(value = "@annotation(com.ct.common.core.auth.annotation.RequiresPermissions)")
    public void pointCut() {
    }

    @Before("pointCut()")
    public void doBefore(JoinPoint joinPoint) throws Throwable {

        // 获取方法名
        String methodName = joinPoint.getSignature().getName();

        // 获取方法参数
        Object[] args = joinPoint.getArgs();

        // 获取目标对象
        Object target = joinPoint.getTarget();

        // 获取自定义注解
        RequiresPermissions permissions = joinPoint
                .getSignature()
                .getDeclaringType()
                .getMethod(methodName)
                .getAnnotation(RequiresPermissions.class);

        String[] strings = permissions.havesRole();
        String permiss = permissions.havesPermiss();
        UserHeardBean userHeardBean = HttpHeaderUtils.getUserHeardBean(SpringMvcUtils.getRequest());
        String tokenKey = userHeardBean.getTokenKey();
		//redis中获取权限信息
        SysUserLogin sysUserLogin = redisUtils.get(CacheConstants.LOGIN_TOKEN_KEY + tokenKey, SysUserLogin.class);
        Set<String> premiss = sysUserLogin.getPremiss();
        Set<String> roles = sysUserLogin.getRoles();

        //角色校验
        if (Objects.nonNull(strings) && strings.length > 0) {
            HashSet<String> strings1 = new HashSet<>(Arrays.asList(strings));
            if (!roles.containsAll(strings1)) {
                throw new PermissException("您没有操作的权限", ResponseCodeConstants.NO_PERMISS);
            }
        }
        //权限校验
        if (StrUtil.isNotBlank(permiss)) {
            if (!premiss.contains(permiss)) {
                throw new PermissException("您没有操作的权限", ResponseCodeConstants.NO_PERMISS);
            }
        }

    }

}