From 76171e5a5c04f3c0f594151075eb1b9c7d0b5422 Mon Sep 17 00:00:00 2001 From: sin <2943460818@qq.com> Date: Sun, 5 May 2019 21:54:01 +0800 Subject: [PATCH] =?UTF-8?q?-=20TODO=20=E6=9A=82=E6=97=B6=E4=B8=8D=E5=BC=80?= =?UTF-8?q?=E5=90=AF=20=E8=AE=A4=E8=AF=81=E6=8B=A6=E6=88=AA?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../sdk/interceptor/AdminSecurityInterceptor.java | 13 +++++++++++-- 1 file changed, 11 insertions(+), 2 deletions(-) diff --git a/system/system-sdk/src/main/java/cn/iocoder/mall/admin/sdk/interceptor/AdminSecurityInterceptor.java b/system/system-sdk/src/main/java/cn/iocoder/mall/admin/sdk/interceptor/AdminSecurityInterceptor.java index 47ec86953..fe748ffed 100644 --- a/system/system-sdk/src/main/java/cn/iocoder/mall/admin/sdk/interceptor/AdminSecurityInterceptor.java +++ b/system/system-sdk/src/main/java/cn/iocoder/mall/admin/sdk/interceptor/AdminSecurityInterceptor.java @@ -8,6 +8,7 @@ import cn.iocoder.mall.admin.api.bo.OAuth2AuthenticationBO; import cn.iocoder.mall.admin.api.constant.AdminErrorCodeEnum; import cn.iocoder.mall.admin.sdk.context.AdminSecurityContext; import cn.iocoder.mall.admin.sdk.context.AdminSecurityContextHolder; +import com.google.common.collect.Sets; import org.apache.dubbo.config.annotation.Reference; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Component; @@ -15,6 +16,7 @@ import org.springframework.web.servlet.handler.HandlerInterceptorAdapter; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; +import java.util.HashSet; import java.util.Set; /** @@ -42,7 +44,13 @@ public class AdminSecurityInterceptor extends HandlerInterceptorAdapter { String accessToken = HttpUtil.obtainAccess(request); OAuth2AuthenticationBO authentication = null; if (accessToken != null) { - CommonResult result = oauth2Service.checkToken(accessToken); +// CommonResult result = oauth2Service.checkToken(accessToken); + + // TODO sin 先临时跳过 认证 + CommonResult result = CommonResult.success(new OAuth2AuthenticationBO() + .setAdminId(1) + .setRoleIds(Sets.newHashSet(1, 2, 3, 4))); + if (result.isError()) { // TODO 芋艿,如果访问的地址无需登录,这里也不用抛异常 throw new ServiceException(result.getCode(), result.getMessage()); } @@ -64,7 +72,8 @@ public class AdminSecurityInterceptor extends HandlerInterceptorAdapter { } } // 校验是否需要已授权 - checkPermission(request, authentication); + // TODO sin 暂时不校验 + // checkPermission(request, authentication); // 返回成功 return super.preHandle(request, response, handler); }