springboot的管理session的过滤器Filter

其他 2019-03-18 15:00:54 阅读次数: 0 
package com.zhjx.filter;

import java.io.IOException;
import java.util.ArrayList;
import java.util.List;
import java.util.regex.Matcher;
import java.util.regex.Pattern;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import org.springframework.beans.factory.annotation.Value;
import org.springframework.boot.context.properties.EnableConfigurationProperties;

import com.alibaba.fastjson.JSON;
import com.zhjx.entity.SSOConfig;
import com.zhjx.response.ResultResponse;



/**
 * 
 *  @desc session管理的过滤器--filter
 *	@author zhjx-研发部-luobw
 * 
 *  2019年3月14日
 */
@EnableConfigurationProperties(SSOConfig.class)
public class SessionFilter implements Filter{

	protected static List<Pattern> patterns = new ArrayList<Pattern>();
	@Value("${CLIENT_ID}")
	private String CLIENT_ID;
	// 认证服务器分配给应用的secret
	@Value("${CLIENT_SECRET}")
	private String CLIENT_SECRET;
	// oes认证服务器的地址
	// String OES_URL = "http://10.47.202.218:28002/";
	@Value("${OES_URL}")
	private String OES_URL;// 本地测试
	// 回调地址(转码后)
	// String REDIRECT_URI = "http://10.41.148.24:8080/index.html/callback";
	@Value("${REDIRECT_URI}")
	private String REDIRECT_URI;// 本地测试
	// 获取accesstoken的url后缀
	@Value("${OES_URL_ACCESSTOKEN_SUFFIX}")
	private String OES_URL_ACCESSTOKEN_SUFFIX;
	// 获取服务器认证的url后缀
	@Value("${OES_URL_AUTH_SUFFIX}")
	private String OES_URL_AUTH_SUFFIX;
	// 获取服务器退出的url后缀
	@Value("${OES_URL_LOGOUT_SUFFIX}")
	private String OES_URL_LOGOUT_SUFFIX;
	@Value("${URI}")
	private String URI;// 本地测试
	@Override
	public void init(FilterConfig filterConfig) throws ServletException {
		// TODO Auto-generated method stub
		
	}

	@Override
	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
			throws IOException, ServletException {
		HttpServletRequest httpRequest = (HttpServletRequest) request;
	    HttpServletResponse httpResponse = (HttpServletResponse) response; 
	    HttpServletResponse re = (HttpServletResponse) response;
	    re.setHeader("Access-Control-Allow-Origin", "*");
	    re.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
	    re.setHeader("Access-Control-Max-Age", "3600");
	    re.setHeader("Access-Control-Allow-Headers"," Origin, X-Requested-With, Content-Type, Accept");
		  
		 String url =
		  httpRequest.getRequestURI().substring(httpRequest.getContextPath().length());
		  if (url.startsWith("/") && url.length() > 1) { url = url.substring(1); }
		  
		  if (isInclude(url)){ chain.doFilter(httpRequest, httpResponse); return; }
		  else {
		 
            HttpSession session = httpRequest.getSession();
            if (session.getAttribute("tokenId") != null){
                // session存在
                chain.doFilter(httpRequest, httpResponse);//放行
                return;
            } else {
            	String apiUrl = OES_URL+OES_URL_AUTH_SUFFIX+"?scope=user.role&response_type=code&redirect_uri="+REDIRECT_URI+"&client_id="+CLIENT_ID+"&stage=random";
            	((HttpServletResponse) response).sendRedirect(apiUrl);//重定向到认证服务器获取code
            	//chain.doFilter(request, re);//放行 本地测试放开
                return;
            }
        }
		
	}

	

	@Override
	public void destroy() {
		// TODO Auto-generated method stub
		
	}
	
	/**
	 * 
	 *  @desc 过滤的url
	 *	@author zhjx-研发部-luobw
	 * 
	 *  @param url
	 *  @return
	 *  2019年3月14日
	 */
	private boolean isInclude(String url) {
		for (Pattern pattern : patterns) {
            Matcher matcher = pattern.matcher(url);
            if (matcher.matches()) {
                return true;
            }
        }
        return false;
	}

}

package com.zhjx.config;

import javax.servlet.Filter;

import org.springframework.boot.web.servlet.FilterRegistrationBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

import com.zhjx.filter.SessionFilter;
/**
 * 
 *  @desc 配置session过滤器
 *	@author zhjx-研发部-luobw
 * 
 *  2019年3月14日
 */
@Configuration
public class WebComponentConfig {
	
	 /**
     * 配置过滤器
     * @return
     */
    @Bean
    public FilterRegistrationBean someFilterRegistration() {
        FilterRegistrationBean registration = new FilterRegistrationBean();
        registration.setFilter(sessionFilter());
        registration.addUrlPatterns("/*");
        registration.addInitParameter("paramName", "paramValue");
        registration.setName("sessionFilter");
        registration.setOrder(1);
        return registration;
    }

    /**
     * 创建一个bean
     * @return
     */
    @Bean(name = "sessionFilter")
    public Filter sessionFilter() {
        return new SessionFilter();
    }

}

猜你喜欢

转载自blog.csdn.net/luo_Json/article/details/88638692
今日推荐
《美国对全球网络空间安全与发展的威胁和破坏》报告发布
火速冲上 GitHub 热榜 —— 开源编程语言、框架哪有这么可爱?
北京人形机器人创新中心发布全球首个纯电驱拟人奔跑的全尺寸人形机器人“天工”
LFOSSA 源来如此公开课 | 掌握云原生未来:CNCF 认证全面攻略与备考秘籍
周排行
循环神经网络(rnn)讲解
Tigao教程四:单独的关节运动
金蝶K3WISE15.0-注册套打教程
如何在Mac上配置Kubernetes
Android应用结束自身进程的方法
SpringMVC学习 十三 拦截器栈
中国驻洛杉矶总领馆举行新春招待会
HttpClient get post 发送
11 - three.js 笔记 - 绘制三维字体模型
Mysql递归获取某个父节点下面的所有子节点和子节点上的所有父节点
每日归档
更多
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)
2024-04-28(0)
2024-04-27(56)
2024-04-26(39)
2024-04-25(22)
2024-04-24(36)
2024-04-23(26)
2024-04-22(39)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022