package com.ycl.config; import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper; import com.ycl.entity.NewsAdmin; import com.ycl.entity.NewsIp; import com.ycl.entity.auth.AuthInfo; import com.ycl.exception.ApiException; import com.ycl.service.NewsAdminService; import com.ycl.service.NewsIpService; import com.ycl.utils.JwtTokenUtil; import org.springframework.web.servlet.HandlerInterceptor; import org.springframework.web.servlet.ModelAndView; import javax.annotation.Resource; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.util.List; import java.util.stream.Collectors; public class Intercept implements HandlerInterceptor { @Resource NewsAdminService newsAdminService; @Resource NewsIpService newsIpService; @Override public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) { List ips = newsIpService.list().stream().map(item->item.getIpAddess()).collect(Collectors.toList()); if (!ips.contains(request.getRemoteAddr())){ return false; } String token = request.getHeader("token"); System.out.println(token); JwtTokenUtil jwtTokenUtil = new JwtTokenUtil(); AuthInfo authInfo = jwtTokenUtil.parseToken(token); if (authInfo == null) { throw new ApiException("未认证用户"); } if (newsAdminService.getOne(new LambdaQueryWrapper().eq(NewsAdmin::getUsername, authInfo.getUsername())) == null) { throw new ApiException("不是系统用户"); } else { return true; } } @Override public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception { HandlerInterceptor.super.postHandle(request, response, handler, modelAndView); } @Override public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception { HandlerInterceptor.super.afterCompletion(request, response, handler, ex); } }