tongtong/youlai-boot
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: 用户登录权限缓存键值不一致导致获取用户数据权限错误问题修复

Browse Source
This commit is contained in:
haoxr
2023-05-21 15:09:40 +08:00
parent 32f73dbe94
commit 222607fd30
1 changed files with 9 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/main/java/com/youlai/system/framework/security/service/PermissionService.java
View File

@@ -2,8 +2,10 @@ package com.youlai.system.framework.security.service;
import cn.hutool.core.collection.CollectionUtil; import cn.hutool.core.collection.CollectionUtil;
import cn.hutool.core.util.StrUtil; import cn.hutool.core.util.StrUtil;
import com.youlai.system.common.constant.SecurityConstants;
import com.youlai.system.framework.security.util.SecurityUtils; import com.youlai.system.framework.security.util.SecurityUtils;
import lombok.RequiredArgsConstructor; import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.data.redis.core.RedisTemplate; import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.stereotype.Service; import org.springframework.stereotype.Service;
import org.springframework.util.PatternMatchUtils; import org.springframework.util.PatternMatchUtils;
@@ -14,10 +16,11 @@ import java.util.Set;
* SpringSecurity权限校验 * SpringSecurity权限校验
* *
* @author haoxr * @author haoxr
* @date 2022/2/22 * @since 2022/2/22
*/ */
@Service("ss") @Service("ss")
@RequiredArgsConstructor @RequiredArgsConstructor
@Slf4j
public class PermissionService { public class PermissionService {
private final RedisTemplate redisTemplate; private final RedisTemplate redisTemplate;
@@ -40,13 +43,17 @@ public class PermissionService {
Long userId = SecurityUtils.getUserId(); Long userId = SecurityUtils.getUserId();
Set<String> perms = (Set<String>) redisTemplate.opsForValue().get("USER_PERMS:" + userId); // 权限数据用户登录成功节点存入redis详见 JwtTokenManager#createToken() Set<String> perms = (Set<String>) redisTemplate.opsForValue().get(SecurityConstants.USER_PERMS_CACHE_PREFIX + userId); // 权限数据用户登录成功节点存入redis详见 JwtTokenManager#createToken()
if (CollectionUtil.isEmpty(perms)) { if (CollectionUtil.isEmpty(perms)) {
return false; return false;
} }
boolean hasPermission = perms.stream() boolean hasPermission = perms.stream()
.anyMatch(item -> PatternMatchUtils.simpleMatch(perm, item)); // *号匹配任意字符 .anyMatch(item -> PatternMatchUtils.simpleMatch(perm, item)); // *号匹配任意字符
if (!hasPermission) {
log.error("用户无访问权限");
}
return hasPermission; return hasPermission;
} }