gitee
/
roses
mirror of https://gitee.com/stylefeng/roses
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

【8.0】【scanner】更新资源扫描鉴权的逻辑

pull/57/head
fengshuonan 2023-07-07 18:54:40 +08:00
parent 4ca60ba625
commit f9190cb524
1 changed files with 16 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
kernel-d-scanner/scanner-sdk-scanner/src/main/java/cn/stylefeng/roses/kernel/scanner/ApiResourceScanner.java
View File

@ -429,29 +429,31 @@ public class ApiResourceScanner implements BeanPostProcessor {
private void processPermissionWithParentCondition(ApiResource classApiAnnotation, Annotation methodApiResource, private void processPermissionWithParentCondition(ApiResource classApiAnnotation, Annotation methodApiResource,
ResourceDefinition resourceDefinition) { ResourceDefinition resourceDefinition) {
// 获取控制器当前方法上的配置 // 设置是否认证的开关,这个开关只以方法上的注解为准
Boolean requiredLogin = invokeAnnotationMethod(methodApiResource, "requiredLogin", Boolean.class); Boolean requiredLogin = invokeAnnotationMethod(methodApiResource, "requiredLogin", Boolean.class);
resourceDefinition.setRequiredLoginFlag(requiredLogin);
// 设置是否鉴权的开关,如果方法没有则判断控制器上,如果控制器有权限校验编码设置,则以控制器为准
Boolean requiredPermission = invokeAnnotationMethod(methodApiResource, "requiredPermission", Boolean.class); Boolean requiredPermission = invokeAnnotationMethod(methodApiResource, "requiredPermission", Boolean.class);
String requirePermissionCode = invokeAnnotationMethod(methodApiResource, "requirePermissionCode", String.class); String requirePermissionCode = invokeAnnotationMethod(methodApiResource, "requirePermissionCode", String.class);
// 如果鉴权开关为空,但是鉴权的编码不为空,则直接打开权限校验开关 if ((requiredPermission == null || !requiredPermission)) {
if ((requiredPermission == null || !requiredPermission) && ObjectUtil.isNotEmpty(requirePermissionCode)) {
requiredPermission = true;
}
// 如果方法上的接口注解,配置的不需要登录,则以类上整体配置的为准 // 鉴权开关为空但是方法上的鉴权编码不为空则直接设置鉴权开关为true并返回
if (requiredLogin == null || !requiredLogin) { if (ObjectUtil.isNotEmpty(requirePermissionCode)) {
requiredLogin = classApiAnnotation.requiredLogin(); requiredPermission = true;
} }
// 如果方法上配置的权限校验为空,则以类上的配置为准 // 鉴权开关为空,鉴权编码也为空,则此时去查询类上是否配置了鉴权编码
if (requiredPermission == null || !requiredPermission) { else {
requiredPermission = classApiAnnotation.requiredPermission(); if (ObjectUtil.isNotEmpty(classApiAnnotation.requirePermissionCode())) {
requirePermissionCode = classApiAnnotation.requirePermissionCode(); requiredPermission = true;
requirePermissionCode = classApiAnnotation.requirePermissionCode();
}
}
} }
// 设置权限校验标识 // 设置权限校验标识
resourceDefinition.setRequiredLoginFlag(requiredLogin);
resourceDefinition.setRequiredPermissionFlag(requiredPermission); resourceDefinition.setRequiredPermissionFlag(requiredPermission);
resourceDefinition.setPermissionCode(requirePermissionCode); resourceDefinition.setPermissionCode(requirePermissionCode);
} }