在项目下新建config文件夹
新建LoginHandlerInterceptor类
具体内容
import org.springframework.stereotype.Component;
import org.springframework.util.StringUtils;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
@Component
public class LoginHandlerInterceptor implements HandlerInterceptor {
//目标方法执行之前
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
Object user = request.getSession().getAttribute("userid");
//判定并且写自己的业务代码
if (StringUtils.isEmpty(user)) {
//未登陆,返回首页
request.setAttribute("msg", "没有权限请先登陆");
response.sendRedirect(request.getContextPath() + "/");//重定向
// request.getRequestDispatcher("/").forward(request,response);//转发
return false;
} else {
//已登陆,放行请求
return true;
}
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
}
}
- preHandle:在业务处理器处理请求之前被调用。预处理,可以进行编码、安全控制、权限校验等处理;
- postHandle:在业务处理器处理请求执行完成后,生成视图之前执行。后处理(调用了Service并返回ModelAndView,但未进行页面渲染),有机会修改ModelAndView
- afterCompletion:在DispatcherServlet完全处理完请求后被调用,可用于清理资源等。返回处理(已经渲染了页面)
除了使用@compant直接当作bean直接注入springboot中还可以继承WebMvcConfigurer来进行注册
- 新建 LoginInterceptor 实现 HandlerInterceptor接口
public class LoginInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler)
throws Exception {
Object obj = request.getSession().getAttribute("loginUser");//(你的用户信息session)
// 如果user不为空则放行
if (null != obj) {
return true;
}
// 否则拦截并跳转到登录
response.sendRedirect("/admin/login");
return false;
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler,
ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex)
throws Exception {
}
新建WebAppConfigurer 实现WebMvcConfigurer接口
public class WebAppConfigurer implements WebMvcConfigurer {
@Autowired
private LoginInterceptor loginAuthenticator;
/**
* 注册拦截器
*/
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(loginAuthenticator).addPathPatterns("/admin/**")
.excludePathPatterns("/admin/login")
.excludePathPatterns("/admin/getLogin");
// - /**: 匹配所有路径
// - /admin/**:匹配 /admin/ 下的所有路径
// - /admin/*:只匹配 /admin/login,不匹配 /secure/login/tologin ("/*"只匹配一级子目录,"/**"匹配所有子目录)
}
.......//其实下面还有很多方法我这里就省略了,过滤器可以添加多个。
}