refactor: 添加未认证和未授权自定义异常处理,printWriter无需手动关闭
This commit is contained in:
haoxr
@@ -5,9 +5,7 @@ import org.springframework.boot.autoconfigure.SpringBootApplication;
|
|||||||
|
|
||||||
@SpringBootApplication
|
@SpringBootApplication
|
||||||
public class SystemApplication {
|
public class SystemApplication {
|
||||||
|
|
||||||
public static void main(String[] args) {
|
public static void main(String[] args) {
|
||||||
SpringApplication.run(SystemApplication.class, args);
|
SpringApplication.run(SystemApplication.class, args);
|
||||||
}
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -1,7 +1,10 @@
|
|||||||
package com.youlai.system.config;
|
package com.youlai.system.config;
|
||||||
|
|
||||||
import com.youlai.system.filter.JwtAuthenticationFilter;
|
import com.youlai.system.filter.JwtAuthenticationFilter;
|
||||||
|
import com.youlai.system.security.exception.MyAccessDeniedHandler;
|
||||||
|
import com.youlai.system.security.exception.MyAuthenticationEntryPoint;
|
||||||
import com.youlai.system.security.jwt.JwtTokenManager;
|
import com.youlai.system.security.jwt.JwtTokenManager;
|
||||||
|
import lombok.RequiredArgsConstructor;
|
||||||
import org.springframework.context.annotation.Bean;
|
import org.springframework.context.annotation.Bean;
|
||||||
import org.springframework.context.annotation.Configuration;
|
import org.springframework.context.annotation.Configuration;
|
||||||
import org.springframework.security.authentication.AuthenticationManager;
|
import org.springframework.security.authentication.AuthenticationManager;
|
||||||
@@ -22,16 +25,13 @@ import org.springframework.security.web.authentication.UsernamePasswordAuthentic
|
|||||||
@Configuration
|
@Configuration
|
||||||
@EnableWebSecurity
|
@EnableWebSecurity
|
||||||
@EnableGlobalMethodSecurity(prePostEnabled = true)
|
@EnableGlobalMethodSecurity(prePostEnabled = true)
|
||||||
|
@RequiredArgsConstructor
|
||||||
public class SecurityConfig {
|
public class SecurityConfig {
|
||||||
|
|
||||||
|
private final MyAuthenticationEntryPoint myAuthenticationEntryPoint;
|
||||||
|
private final MyAccessDeniedHandler myAccessDeniedHandler;
|
||||||
private final JwtTokenManager jwtTokenManager;
|
private final JwtTokenManager jwtTokenManager;
|
||||||
|
|
||||||
public SecurityConfig(
|
|
||||||
JwtTokenManager jwtTokenManager
|
|
||||||
) {
|
|
||||||
this.jwtTokenManager = jwtTokenManager;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@Bean
|
@Bean
|
||||||
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
||||||
@@ -39,8 +39,13 @@ public class SecurityConfig {
|
|||||||
.csrf().disable()
|
.csrf().disable()
|
||||||
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS)
|
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS)
|
||||||
.and()
|
.and()
|
||||||
.authorizeHttpRequests(auth -> auth.antMatchers("/**").permitAll()
|
.authorizeHttpRequests()
|
||||||
.anyRequest().authenticated());
|
.anyRequest().authenticated()
|
||||||
|
.and()
|
||||||
|
.exceptionHandling()
|
||||||
|
.authenticationEntryPoint(myAuthenticationEntryPoint)
|
||||||
|
.accessDeniedHandler(myAccessDeniedHandler)
|
||||||
|
;
|
||||||
|
|
||||||
// disable cache
|
// disable cache
|
||||||
http.headers().cacheControl();
|
http.headers().cacheControl();
|
||||||
|
|||||||
@@ -4,9 +4,11 @@ import com.youlai.system.common.result.ResultCode;
|
|||||||
import com.youlai.system.util.ResponseUtils;
|
import com.youlai.system.util.ResponseUtils;
|
||||||
import org.springframework.security.access.AccessDeniedException;
|
import org.springframework.security.access.AccessDeniedException;
|
||||||
import org.springframework.security.web.access.AccessDeniedHandler;
|
import org.springframework.security.web.access.AccessDeniedHandler;
|
||||||
|
import org.springframework.stereotype.Component;
|
||||||
|
|
||||||
import javax.servlet.http.HttpServletRequest;
|
import javax.servlet.http.HttpServletRequest;
|
||||||
import javax.servlet.http.HttpServletResponse;
|
import javax.servlet.http.HttpServletResponse;
|
||||||
|
import java.io.IOException;
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Spring Security访问异常处理器
|
* Spring Security访问异常处理器
|
||||||
@@ -14,9 +16,10 @@ import javax.servlet.http.HttpServletResponse;
|
|||||||
* @author haoxr
|
* @author haoxr
|
||||||
* @date 2022/10/18
|
* @date 2022/10/18
|
||||||
*/
|
*/
|
||||||
|
@Component
|
||||||
public class MyAccessDeniedHandler implements AccessDeniedHandler {
|
public class MyAccessDeniedHandler implements AccessDeniedHandler {
|
||||||
@Override
|
@Override
|
||||||
public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) {
|
public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) throws IOException {
|
||||||
ResponseUtils.writeErrMsg(response, ResultCode.TOKEN_ACCESS_FORBIDDEN);
|
ResponseUtils.writeErrMsg(response, ResultCode.TOKEN_ACCESS_FORBIDDEN);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -4,6 +4,7 @@ import com.youlai.system.common.result.ResultCode;
|
|||||||
import com.youlai.system.util.ResponseUtils;
|
import com.youlai.system.util.ResponseUtils;
|
||||||
import org.springframework.security.core.AuthenticationException;
|
import org.springframework.security.core.AuthenticationException;
|
||||||
import org.springframework.security.web.AuthenticationEntryPoint;
|
import org.springframework.security.web.AuthenticationEntryPoint;
|
||||||
|
import org.springframework.stereotype.Component;
|
||||||
|
|
||||||
import javax.servlet.ServletException;
|
import javax.servlet.ServletException;
|
||||||
import javax.servlet.http.HttpServletRequest;
|
import javax.servlet.http.HttpServletRequest;
|
||||||
@@ -16,6 +17,7 @@ import java.io.IOException;
|
|||||||
* @author haoxr
|
* @author haoxr
|
||||||
* @date 2022/10/18
|
* @date 2022/10/18
|
||||||
*/
|
*/
|
||||||
|
@Component
|
||||||
public class MyAuthenticationEntryPoint implements AuthenticationEntryPoint {
|
public class MyAuthenticationEntryPoint implements AuthenticationEntryPoint {
|
||||||
@Override
|
@Override
|
||||||
public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
|
public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
|
||||||
|
|||||||
@@ -211,12 +211,13 @@ public class SysUserServiceImpl extends ServiceImpl<SysUserMapper, SysUser> impl
|
|||||||
@Override
|
@Override
|
||||||
public UserAuthInfo getUserAuthInfo(String username) {
|
public UserAuthInfo getUserAuthInfo(String username) {
|
||||||
UserAuthInfo userAuthInfo = this.baseMapper.getUserAuthInfo(username);
|
UserAuthInfo userAuthInfo = this.baseMapper.getUserAuthInfo(username);
|
||||||
|
if(userAuthInfo!=null){
|
||||||
Set<String> roles = userAuthInfo.getRoles();
|
Set<String> roles = userAuthInfo.getRoles();
|
||||||
if(CollectionUtil.isNotEmpty(roles)){
|
if(CollectionUtil.isNotEmpty(roles)){
|
||||||
Set<String> perms= menuService.listRolePerms(roles);
|
Set<String> perms= menuService.listRolePerms(roles);
|
||||||
userAuthInfo.setPerms(perms);
|
userAuthInfo.setPerms(perms);
|
||||||
}
|
}
|
||||||
|
}
|
||||||
return userAuthInfo;
|
return userAuthInfo;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@@ -4,6 +4,7 @@ import cn.hutool.json.JSONUtil;
|
|||||||
import com.youlai.system.common.result.Result;
|
import com.youlai.system.common.result.Result;
|
||||||
import com.youlai.system.common.result.ResultCode;
|
import com.youlai.system.common.result.ResultCode;
|
||||||
import org.springframework.http.HttpStatus;
|
import org.springframework.http.HttpStatus;
|
||||||
|
import org.springframework.http.MediaType;
|
||||||
|
|
||||||
import javax.servlet.http.HttpServletResponse;
|
import javax.servlet.http.HttpServletResponse;
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
@@ -23,7 +24,7 @@ public class ResponseUtils {
|
|||||||
* @param response
|
* @param response
|
||||||
* @param resultCode
|
* @param resultCode
|
||||||
*/
|
*/
|
||||||
public static void writeErrMsg(HttpServletResponse response, ResultCode resultCode) {
|
public static void writeErrMsg(HttpServletResponse response, ResultCode resultCode) throws IOException {
|
||||||
switch (resultCode) {
|
switch (resultCode) {
|
||||||
case ACCESS_UNAUTHORIZED:
|
case ACCESS_UNAUTHORIZED:
|
||||||
case TOKEN_INVALID_OR_EXPIRED:
|
case TOKEN_INVALID_OR_EXPIRED:
|
||||||
@@ -36,15 +37,9 @@ public class ResponseUtils {
|
|||||||
response.setStatus(HttpStatus.BAD_REQUEST.value());
|
response.setStatus(HttpStatus.BAD_REQUEST.value());
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
response.setContentType(MediaType.APPLICATION_JSON_VALUE);
|
||||||
response.setCharacterEncoding("UTF-8");
|
response.setCharacterEncoding("UTF-8");
|
||||||
try {
|
response.getWriter().print(JSONUtil.toJsonStr(Result.failed(resultCode)));
|
||||||
String bodyJsonStr = JSONUtil.toJsonStr(Result.failed(resultCode));
|
|
||||||
PrintWriter printWriter = response.getWriter();
|
|
||||||
printWriter.print(bodyJsonStr);
|
|
||||||
printWriter.flush();
|
|
||||||
printWriter.close();
|
|
||||||
} catch (IOException e) {
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user