青阳考试系统
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
龚焕茏
2024-07-03 3ec909b27b3eba956aa9d00cc7a94c179bd04bbf 
 src/main/java/com/mindskip/xzs/configuration/spring/security/RestAuthenticationProvider.java


@@ -2,11 +2,13 @@






import com.mindskip.xzs.context.WebContext;


import com.mindskip.xzs.domain.enums.DeptAdminEnum;


import com.mindskip.xzs.domain.enums.RoleEnum;


import com.mindskip.xzs.domain.enums.UserStatusEnum;


import com.mindskip.xzs.repository.DepartmentMapper;


import com.mindskip.xzs.service.AuthenticationService;


import com.mindskip.xzs.service.UserService;


import org.springframework.beans.factory.annotation.Autowired;


import lombok.RequiredArgsConstructor;


import org.springframework.security.authentication.AuthenticationProvider;


import org.springframework.security.authentication.BadCredentialsException;


import org.springframework.security.authentication.LockedException;


@@ -15,11 +17,12 @@


import org.springframework.security.core.AuthenticationException;


import org.springframework.security.core.GrantedAuthority;


import org.springframework.security.core.authority.SimpleGrantedAuthority;


import org.springframework.security.core.userdetails.User;


import org.springframework.security.core.userdetails.UsernameNotFoundException;


import org.springframework.stereotype.Component;


import org.springframework.util.CollectionUtils;




import java.util.ArrayList;


import java.util.List;






/**


@@ -29,25 +32,13 @@


 * @date 2021/12/25 9:45


 */


@Component


@RequiredArgsConstructor


public class RestAuthenticationProvider implements AuthenticationProvider {




    private final AuthenticationService authenticationService;


    private final UserService userService;


    private final WebContext webContext;




    /**


     * Instantiates a new Rest authentication provider.


     *


     * @param authenticationService the authentication service


     * @param userService           the user service


     * @param webContext            the web context


     */


    @Autowired


    public RestAuthenticationProvider(AuthenticationService authenticationService, UserService userService, WebContext webContext) {


        this.authenticationService = authenticationService;


        this.userService = userService;


        this.webContext = webContext;


    }


    private final DepartmentMapper departmentMapper;




    @Override


    public Authentication authenticate(Authentication authentication) throws AuthenticationException {


@@ -70,9 +61,18 @@


        }




        ArrayList<GrantedAuthority> grantedAuthorities = new ArrayList<>();


        // 赋予部门管理员角色


        if (new Integer(-1).equals(user.getRole())) {


            grantedAuthorities.add(new SimpleGrantedAuthority(RoleEnum.DEPT_ADMIN.getRoleName()));


        }


        grantedAuthorities.add(new SimpleGrantedAuthority(RoleEnum.fromCode(user.getRole()).getRoleName()));




        User authUser = new User(user.getUserName(), user.getPassword(), grantedAuthorities);


        // 获取该用户管理部门


        List<Integer> deptAdminIds = userService.getDeptAdminIds(user.getId());


        if (CollectionUtils.isEmpty(deptAdminIds)) {


            // 如果是普通学员,查出所在部门


            deptAdminIds = userService.getDeptIds(user.getId());


        }


        MyUser authUser = new MyUser(user.getUserName(), user.getPassword(), grantedAuthorities, user.getRole(), deptAdminIds);


        return new UsernamePasswordAuthenticationToken(authUser, authUser.getPassword(), authUser.getAuthorities());


    }