| | |
|---|
| | | AuthUser authUser = new Gson().fromJson(json, AuthUser.class); |
|---|
| | | |
|---|
| | | //校验redis中是否有权限 |
|---|
| | | if (cache.hasKey(CachePrefix.ACCESS_TOKEN.getPrefix(UserEnums.STORE, authUser.getId()) + jwt)) { |
|---|
| | | if (cache.hasKey(CachePrefix.ACCESS_TOKEN.getPrefix(UserEnums.MEMBER, authUser.getId()) + jwt) || |
|---|
| | | cache.hasKey(CachePrefix.ACCESS_TOKEN.getPrefix(UserEnums.STORE, authUser.getId()) + jwt) |
|---|
| | | ) { |
|---|
| | | //用户角色 |
|---|
| | | List<GrantedAuthority> auths = new ArrayList<>(); |
|---|
| | | auths.add(new SimpleGrantedAuthority("ROLE_" + authUser.getRole().name())); |
|---|
| | |
|---|
| | | //获取缓存中的权限 |
|---|
| | | Map<String, List<String>> permission = |
|---|
| | | (Map<String, List<String>>) cache.get(permissionCacheKey); |
|---|
| | | if (permission == null || permission.isEmpty()) { |
|---|
| | | //根据会员id查询店员信息 |
|---|
| | | Clerk clerk = clerkService.getClerkByMemberId(authUser.getId()); |
|---|
| | | if (clerk != null) { |
|---|
| | | permission = storeTokenGenerate.permissionList(storeMenuRoleService.findAllMenu(clerk.getId(), authUser.getId())); |
|---|
| | | cache.put(permissionCacheKey, permission); |
|---|
| | | } |
|---|
| | | // if (permission == null || permission.isEmpty()) { |
|---|
| | | //根据会员id查询店员信息 |
|---|
| | | Clerk clerk = clerkService.getClerkByMemberId(authUser.getId()); |
|---|
| | | if (clerk != null) { |
|---|
| | | permission = storeTokenGenerate.permissionList(storeMenuRoleService.findAllMenu(clerk.getId(), authUser.getId())); |
|---|
| | | cache.put(permissionCacheKey, permission); |
|---|
| | | } |
|---|
| | | //} |
|---|
| | | //获取数据(GET 请求)权限 |
|---|
| | | if (request.getMethod().equals(RequestMethod.GET.name())) { |
|---|
| | | //如果用户的超级权限和查阅权限都不包含当前请求的api |
|---|
