增加权限验证

2018-12-02 21:12:04 +08:00
parent f3d2b4eeab
commit 67c584761d
70 changed files with 21137 additions and 366 deletions
--- a/zyplayer-doc-manage/src/main/java/com/zyplayer/doc/manage/web/manage/HelloController.java
+++ b/zyplayer-doc-manage/src/main/java/com/zyplayer/doc/manage/web/manage/HelloController.java
@@ -0,0 +1,23 @@
+package com.zyplayer.doc.manage.web.manage;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+@Controller
+public class HelloController {
+
+//	@RequestMapping("/")
+//	public String index() {
+//		return "manage/index";
+//	}
+//
+//	@RequestMapping("/hello")
+//	public String hello() {
+//		return "manage/hello";
+//	}
+//
+//	@RequestMapping("/login")
+//	public String login() {
+//		return "statics/manage/hello.html";
+//	}
+}
--- a/zyplayer-doc-manage/src/main/java/com/zyplayer/doc/manage/web/manage/UserController.java
+++ b/zyplayer-doc-manage/src/main/java/com/zyplayer/doc/manage/web/manage/UserController.java
@@ -0,0 +1,123 @@
+package com.zyplayer.doc.manage.web.manage;
+
+import java.util.Collection;
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.web.WebAttributes;
+import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
+import org.springframework.security.web.savedrequest.RequestCache;
+import org.springframework.security.web.savedrequest.SavedRequest;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.servlet.ModelAndView;
+
+import com.zyplayer.doc.manage.framework.config.security.MyUserDetails;
+import com.zyplayer.doc.manage.framework.config.security.UserUtil;
+
+@RestController
+public class UserController {
+	private RequestCache requestCache = new HttpSessionRequestCache();
+
+	@RequestMapping(value = "/login_page", method = RequestMethod.GET)
+	public ModelAndView loginPage(HttpServletRequest request) {
+		if (true) {
+			return new ModelAndView("/login/ajax");
+		} else {
+			return new ModelAndView("login.html");
+		}
+
+	}
+
+	/**
+	 * 如果是访问受限页面后，跳转到登录页的，则在targetUrl保存之前受限页面的路径，供页面调用
+	 * 
+	 * @param request
+	 * @param response
+	 * @return
+	 */
+	@RequestMapping(value = "/login/success", method = RequestMethod.GET)
+	public Map<String, Object> loginSuccess(HttpServletRequest request, HttpServletResponse response) {
+		SavedRequest savedRequest = requestCache.getRequest(request, response);
+		String targetUrl = null;
+		if (savedRequest != null) {
+			targetUrl = savedRequest.getRedirectUrl();
+		}
+		Map<String, Object> result = new HashMap<String, Object>();
+		result.put("success", true);
+		result.put("targetUrl", targetUrl);
+		return result;
+	}
+
+	/**
+	 * 获取异常信息返回给页面
+	 * @param request
+	 * @param response
+	 * @return
+	 */
+	@RequestMapping(value = "/login/failure", method = RequestMethod.GET)
+	public Map<String, Object> loginFailure(HttpServletRequest request, HttpServletResponse response) {
+		AuthenticationException ae = (AuthenticationException) request.getSession().getAttribute(WebAttributes.AUTHENTICATION_EXCEPTION);
+		Map<String, Object> result = new HashMap<String, Object>();
+		result.put("success", false);
+		result.put("message", ae.getMessage());
+		return result;
+	}
+
+	@RequestMapping(value = "/login/ajax", method = RequestMethod.GET)
+	public Map<String, Object> loginAjax() {
+		Map<String, Object> result = new HashMap<String, Object>();
+		result.put("success", false);
+		result.put("message", "you need login!");
+		return result;
+	}
+
+	@RequestMapping(value = "/security/user", method = RequestMethod.GET)
+	public Map<String, Object> securityUser(HttpServletRequest request) {
+		MyUserDetails user = UserUtil.getCurrentUser();
+		Map<String, Object> result = new HashMap<String, Object>();
+		StringBuilder userRole = new StringBuilder();
+		if (user != null) {
+			result.put("userId", user.getUserId());
+			result.put("userName", user.getUsername());
+			Collection<? extends GrantedAuthority> roleLst = user.getAuthorities();
+			for (GrantedAuthority sga : roleLst) {
+				userRole.append(sga.toString() + "; ");
+			}
+		}
+		result.put("userRole", userRole.toString());
+		result.put("message", "This message is only visible to the user");
+		return result;
+	}
+
+	@RequestMapping(value = "/security/admin", method = RequestMethod.GET)
+	public Map<String, Object> securityAdmin(HttpServletRequest request) {
+		MyUserDetails user = UserUtil.getCurrentUser();
+		Map<String, Object> result = new HashMap<String, Object>();
+		StringBuilder userRole = new StringBuilder();
+		if (user != null) {
+			result.put("userId", user.getUserId());
+			result.put("userName", user.getUsername());
+			Collection<? extends GrantedAuthority> roleLst = user.getAuthorities();
+			for (GrantedAuthority sga : roleLst) {
+				userRole.append(sga.toString() + "; ");
+			}
+		}
+		result.put("userRole", userRole.toString());
+		result.put("message", "This message is only visible to the admin");
+		return result;
+	}
+
+	@RequestMapping(value = "/user/account", method = RequestMethod.GET)
+	public Map<String, Object> getUserAcctunt(HttpServletRequest request) {
+		Map<String, Object> result = new HashMap<String, Object>();
+		result.put("message", "需要进行完整认证的请求（不是通过Remember-me功能进行的认证）");
+		return result;
+	}
+}