SpringBooturi统一权限管理的实现方法及步骤详解

SpringBoot uri统一权限管理

业务需求&＃xff1a;为了增加系统的安全性,系统的任意一个接口均要做权限拦截验证。

1. 表结构定义

CREATE TABLE &＃96;sys_uri&＃96; (&＃96;id&＃96; bigint(11) NOT NULL AUTO_INCREMENT COMMENT &＃39;id&＃39;,&＃96;bean_name&＃96; varchar(128) DEFAULT NULL COMMENT &＃39;controller类名&＃39;,&＃96;uri&＃96; varchar(256) DEFAULT NULL COMMENT &＃39;访问地址&＃39;,&＃96;clazz_name&＃96; varchar(256) DEFAULT NULL COMMENT &＃39;类名&＃39;,&＃96;create_time&＃96; datetime DEFAULT NULL COMMENT &＃39;创建时间&＃39;,PRIMARY KEY (&＃96;id&＃96;)
) ENGINE&＃61;InnoDB AUTO_INCREMENT&＃61;44 DEFAULT CHARSET&＃61;utf8 COMMENT&＃61;&＃39;系统uri记录表&＃39;;CREATE TABLE &＃96;role_uri_authority&＃96; (&＃96;id&＃96; bigint(11) NOT NULL AUTO_INCREMENT COMMENT &＃39;id 自增&＃39;,&＃96;role_id&＃96; bigint(11) NOT NULL COMMENT &＃39;角色id&＃xff0c;对应角色表roles主键&＃39;,&＃96;sys_uri_id&＃96; bigint(11) NOT NULL COMMENT &＃39;sys_uri表中的主键id&＃39;,PRIMARY KEY (&＃96;id&＃96;),KEY &＃96;role_id&＃96; (&＃96;role_id&＃96;),KEY &＃96;sys_uri_id&＃96; (&＃96;sys_uri_id&＃96;)
) ENGINE&＃61;InnoDB AUTO_INCREMENT&＃61;21 DEFAULT CHARSET&＃61;utf8 COMMENT&＃61;&＃39;角色uri权限访问表&＃39;;


2. 自动统计URI,并自动删除脏数据

直接上service&＃xff0c;

&＃64;Service
public class UriInitServiceImpl implements UriInitService {// 排除swagger与其他内置的uri;排序用户登录模块,以及内部测试模块controllerprivate static final List<String> excludesControllerList &＃61;Stream.of("apiResourceController", "knife4jController", "basicErrorController", "loginController", "thymeleafTest", "testController").collect(Collectors.toList());// SpringBoot 内置对象,可获取controller所有的uri信息&＃64;Autowiredprivate RequestMappingHandlerMapping requestMappingHandlerMapping;// 逆向工程自动生成dao&＃64;Autowiredprivate RoleUriAuthMapperExt roleUriAuthMapperExt;// 逆向工程自动生成dao&＃64;Autowiredprivate SysUriMapperExt sysUriMapperExt;private Date sysDate;&＃64;Transactional&＃64;Overridepublic void initSysUri() {// 全量uriList<SysUri> sysUriList &＃61; new ArrayList<>();sysDate &＃61; new Date();// 获取系统所有的uri信息Map<RequestMappingInfo, HandlerMethod> handlerMethodsMap &＃61; requestMappingHandlerMapping.getHandlerMethods();for (Map.Entry<RequestMappingInfo, HandlerMethod> item : handlerMethodsMap.entrySet()) {saveUriMap(sysUriList, item);}// 原有的存量数据List<SysUri> oldSysUriList &＃61; sysUriMapperExt.selectByExample(new SysUriExample());// sysUriList - oldSysUriList 新增差集List<SysUri> addSysUriList &＃61; sysUriList.stream().filter(s -> !oldSysUriList.stream().map(os -> os.getUri()).collect(Collectors.toList()).contains(s.getUri())).collect(Collectors.toList());// oldSysUriList - sysUriList 移除差集List<Long> reduceSysUriIdList &＃61; oldSysUriList.stream().filter(os -> !sysUriList.stream().map(s -> s.getUri()).collect(Collectors.toList()).contains(os.getUri())).map(item -> item.getId()).collect(Collectors.toList());// sysUri 新增if (!CollectionUtils.isEmpty(addSysUriList)) {sysUriMapperExt.batchInsert(addSysUriList);}// sysUri,roleUriAuth删除已清除的uriif (!CollectionUtils.isEmpty(reduceSysUriIdList)) {SysUriExample example &＃61; new SysUriExample();example.createCriteria().andIdIn(reduceSysUriIdList);sysUriMapperExt.deleteByExample(example);RoleUriAuthExample roleUriAuthExample &＃61; new RoleUriAuthExample();roleUriAuthExample.createCriteria().andSysUriIdIn(reduceSysUriIdList);roleUriAuthMapperExt.deleteByExample(roleUriAuthExample);}}// 过滤映射转换private void saveUriMap(List<SysUri> sysUriList, Map.Entry<RequestMappingInfo, HandlerMethod> item) {RequestMappingInfo uriMappingInfo &＃61; item.getKey();HandlerMethod value &＃61; item.getValue();String uri &＃61; uriMappingInfo.getPatternsCondition().toString();// 类名:xxxControllerString beanName &＃61; value.getBean().toString();// clazz全路径名称String clazzName &＃61; value.getBeanType().getName();if (!excludesControllerList.contains(beanName)) {SysUri sysUri &＃61; new SysUri();sysUri.setBeanName(beanName);sysUri.setUri(uri);sysUri.setClazzName(clazzName);sysUri.setCreateTime(sysDate);sysUriList.add(sysUri);}}
}

3. 程序启动加载

&＃64;Service
public class StartupListener implements ApplicationListener<ContextRefreshedEvent> {private Logger logger &＃61; LoggerFactory.getLogger(StartupListener.class);&＃64;Autowiredprivate UriInitService uriInitService;/*** 触发机制* 容器中所有的bean初始化完成之后执行** &＃64;param evt*/&＃64;Overridepublic void onApplicationEvent(ContextRefreshedEvent evt) {try {// 保证只执行一次if (evt.getApplicationContext().getParent() &＃61;&＃61; null) {// 程序启动初始化uriuriInitService.initSysUri();}} catch (Exception e) {logger.error("onApplicationEvent error {}", e.getMessage());// 异常 强制关闭启动throw new RuntimeException(e.getMessage());}}}


4. 结果

5. 其他

以上为各个系统通用模块。
其他拦截器验证业务&＃xff0c;缓存等代码根据自身系统开发。