前期准备
1.token工具类
2.redis工具类
使用链接里的更新版工具类代码,否则可能或报空指针。
3.springboot项目
添加拦截器
1.创建一个interceptor包,创建LoginInterceptor.java和WebConfig.java
WebConfig.java:
package com.hospital.total_managed.interceptor;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
@Configuration
public class WebConfig implements WebMvcConfigurer {
//解决跨域问题
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**") //项目中的所有接口都支持跨域--当Credentials为true时,Origin不能为星号,需为具体的ip地址【如果接口不带cookie,ip无需设成具体ip】
.allowedOrigins("*") // 允许跨域的域名,可以用*表示允许任何域名使用
.allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
.maxAge(3600) // maxAge(3600)表明在3600秒内,不需要再发送预检验请求,可以缓存该结果
.allowedHeaders("*")
.allowCredentials(false); // 允许Cookie跨域,在做登录校验的时候有用
}
//添加拦截器
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(new LoginInterceptor())
.addPathPatterns("/**")
.excludePathPatterns("/api/mainadmin/login");
}
}
LoginInterceptor.java:
package com.hospital.total_managed.interceptor;
import com.alibaba.fastjson.JSON;
import com.alibaba.fastjson.JSONObject;
import com.hospital.total_managed.entity.CommonResult;
import com.hospital.total_managed.utils.TokenUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.PrintWriter;
import static com.hospital.total_managed.utils.RedisUtils.redisUtils;
@Component
public class LoginInterceptor implements HandlerInterceptor {
@Autowired
private TokenUtils tokenUtils;
// @Autowired
// private RedisUtils redisUtils;
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
//返回数据格式
response.setContentType("application/json;charset=UTF-8");
//获取请求头的token
String token = request.getHeader("token");
System.out.println("token:"+token);
//判断token是否有效
boolean b = tokenUtils.verify(token);
if (b) {
//获取token中的用户名
String username = tokenUtils.getUsername(token);
System.out.println("用户名"+username);
System.out.println(redisUtils);
boolean is_token = redisUtils.hasKey(username);
System.out.println("是否存在:"+is_token);
if (is_token) {
//获取redis中该用户的token
String re_token = (String) redisUtils.get(username);
// System.out.println("re_token:"+re_token);
if (re_token.equals(token)) {
return true;
}else {
PrintWriter out;
out = response.getWriter();
out.append(JSON.parseObject(JSON.toJSONString(new CommonResult(202,"账号在其他途径登录")), JSONObject.class).toString());
return false;
}
}else {
PrintWriter out;
out = response.getWriter();
out.append(JSON.parseObject(JSON.toJSONString(new CommonResult(201,"登录信息超时,请重新登录")), JSONObject.class).toString());
return false;
}
}else {
PrintWriter out;
out = response.getWriter();
out.append(JSON.parseObject(JSON.toJSONString(new CommonResult(201,"登录信息超时,请重新登录")), JSONObject.class).toString());
return false;
}
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
}
}