链接:https://pan.baidu.com/s/14wTJ53RR1zDIiX4YXt4XDw
提取码:thk6
1.获取请求头中token,从redis中获取当前登录对象的id 方法: request.getHeader("token")
2.通过用户id到数据库中查询当前登录对象的角色,获取到角色id
3.通过角色id关联查询当前登录对象能访问的url 返回ArrayList
4.请求头中获取当前访问接口的url路径 方法:request.getRequestURI();
5.将ArrayList遍历,获取ArrayList中的url 放入一个新的ArrayList
6.遍历ArrayList
CREATE TABLE `people` (
`id` bigint(20) NOT NULL AUTO_INCREMENT COMMENT 'id',
`name` varchar(20) DEFAULT NULL COMMENT '姓名',
`sex` char(1) DEFAULT NULL COMMENT '性别(0女,1男)',
`age` int(20) DEFAULT NULL COMMENT '年龄',
`address` varchar(20) DEFAULT NULL COMMENT '地址',
`user_name` varchar(20) DEFAULT NULL COMMENT '用户名',
`pwd` varchar(50) DEFAULT NULL COMMENT '密码',
`email` varchar(20) DEFAULT NULL COMMENT '邮箱',
`phonenumber` varchar(20) DEFAULT NULL COMMENT '电话',
`login_ip` varchar(20) DEFAULT NULL COMMENT '最后登录IP',
`status` char(1) DEFAULT NULL COMMENT '帐号状态(0正常 1停用)',
`login_date` datetime DEFAULT NULL COMMENT '最后登录时间',
`create_by` varchar(20) DEFAULT NULL COMMENT '创建者',
`create_time` datetime DEFAULT NULL COMMENT '创建时间',
`update_by` varchar(20) DEFAULT NULL COMMENT '修改者',
`update_time` datetime DEFAULT NULL COMMENT '修改时间',
`remark` varchar(255) DEFAULT NULL COMMENT '备注',
`roleid` bigint(20) DEFAULT NULL COMMENT '角色id',
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=6918579172826951681 DEFAULT CHARSET=utf8;
CREATE TABLE `role` (
`id` bigint(20) NOT NULL COMMENT 'id',
`rolename` varchar(25) DEFAULT NULL COMMENT '角色名称',
`powerid` bigint(20) DEFAULT NULL COMMENT '权限id',
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
CREATE TABLE `power` (
`id` bigint(20) NOT NULL COMMENT 'id',
`url` varchar(255) DEFAULT NULL COMMENT '地址',
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
CREATE TABLE `rolemiddle` (
`id` bigint(20) NOT NULL COMMENT 'id',
`roleid` bigint(20) DEFAULT NULL COMMENT '角色id',
`powerid` bigint(20) DEFAULT NULL COMMENT '权限id',
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
用户表中的roleid(角色id) 与角色表 一对一
用户表与权限表 一对多
实体类: 用户表package com.thk.domain;
import com.fasterxml.jackson.annotation.JsonFormat;
import com.fasterxml.jackson.annotation.JsonIgnore;
import com.fasterxml.jackson.annotation.JsonProperty;
import javax.validation.constraints.Email;
import javax.validation.constraints.NotBlank;
import javax.validation.constraints.Size;
import java.util.Date;
public class People extends BaseEntity {
private Long id;
@Size(min = 0, max = 30, message = "用户昵称长度不能超过30个字符")
private String name;
private Integer age;
private String sex;
private String address;
@NotBlank(message = "用户账号不能为空")
@Size(min = 0, max = 30, message = "用户账号长度不能超过30个字符")
private String userName;
private String pwd;
@Email(message = "邮箱格式不正确")
@Size(min = 0, max = 50, message = "邮箱长度不能超过50个字符")
private String email;
@Size(min = 0, max = 11, message = "手机号码长度不能超过11个字符")
private String phonenumber;
private String loginIp;
private String status;
@JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss", timezone = "GMT+8")
private Date loginDate;
private Long roleid;
public Long getRoleid() {
return roleid;
}
public void setRoleid(Long roleid) {
this.roleid = roleid;
}
public String getStatus() {
return status;
}
public void setStatus(String status) {
this.status = status;
}
public Long getId() {
return id;
}
public void setId(Long id) {
this.id = id;
}
@Size(min = 0, max = 30, message = "用户昵称长度不能超过30个字符")
public String getName() {
return name;
}
public void setName(String name) {
this.name = name;
}
public Integer getAge() {
return age;
}
public void setAge(Integer age) {
this.age = age;
}
public String getAddress() {
return address;
}
public void setAddress(String address) {
this.address = address;
}
@NotBlank(message = "用户账号不能为空")
@Size(min = 0, max = 10, message = "用户账号长度不能超过10个字符")
public String getUserName() {
return userName;
}
public void setUserName(String userName) {
this.userName = userName;
}
@JsonIgnore
@JsonProperty
public String getPwd() {
return pwd;
}
public void setPwd(String pwd) {
this.pwd = pwd;
}
@Email(message = "邮箱格式不正确")
@Size(min = 0, max = 50, message = "邮箱长度不能超过50个字符")
public String getEmail() {
return email;
}
public void setEmail(String email) {
this.email = email;
}
@Size(min = 0, max = 11, message = "手机号码长度不能超过11个字符")
public String getPhonenumber() {
return phonenumber;
}
public void setPhonenumber(String phonenumber) {
this.phonenumber = phonenumber;
}
public String getLoginIp() {
return loginIp;
}
public void setLoginIp(String loginIp) {
this.loginIp = loginIp;
}
public Date getLoginDate() {
return loginDate;
}
public void setLoginDate(Date loginDate) {
this.loginDate = loginDate;
}
public String getSex() {
return sex;
}
public void setSex(String sex) {
this.sex = sex;
}
public People() {
}
@Override
public String toString() {
return "People{" +
"id=" + id +
", name='" + name + ''' +
", age=" + age +
", sex='" + sex + ''' +
", address='" + address + ''' +
", userName='" + userName + ''' +
", pwd='" + pwd + ''' +
", email='" + email + ''' +
", phonenumber='" + phonenumber + ''' +
", loginIp='" + loginIp + ''' +
", status='" + status + ''' +
", loginDate=" + loginDate +
", roleid=" + roleid +
'}';
}
}
角色表
package com.thk.domain;
import lombok.Data;
@Data
public class Role extends BaseEntity
{
private Long id;
private String rolename;
private Long powerid;
}
权限表
package com.thk.domain;
import lombok.Data;
import org.apache.commons.lang3.builder.ToStringBuilder;
import org.apache.commons.lang3.builder.ToStringStyle;
@Data
public class Power extends BaseEntity
{
private Long id;
private String url;
}
controller
@GetMapping("/selectAll")
public TableDataInfo selectAll(People people, HttpServletRequest request, HttpServletResponse response) {
if (verifyPermissions(request)) {
return errorDataTable();
}
//判断是否有权限
if (!competence(request)) {
return errorDataTable();
}
startPage();
List list = peopleService.selectAll(people);
return getDataTable(list);
}
@GetMapping("/list")
public AjaxResult list(People people, HttpServletRequest request, HttpServletResponse response) {
if (verifyPermissions(request)) {
return AjaxResult.error(HttpStatus.UNAUTHORIZED, "非法访问,请先登录");
}
//判断是否有权限
if (!competence(request)) {
return AjaxResult.error(HttpStatus.UNAUTHORIZED, "您没有权限访问,只有充钱才能让你变得更加强大,请充钱......");
}
List list = peopleService.selectAll(people);
return AjaxResult.success(list);
public boolean competence(HttpServletRequest request) {
//request.getHeader("token")------从请求头中获取token
//getUserId(request.getHeader("token"))----获取当前登录对象的id
//获取当前登录对象的全部信息
People people = peopleMapper.selectById(getUserId(request.getHeader("token")));
//从请求头中获取的地址
String requestURI = request.getRequestURI();
//通过角色id查询当前登陆对象的所有权限
List list = powerMapper.selectUrl(people.getRoleid());
ArrayList list1 = new ArrayList<>();
if (!StringUtils.isEmpty(list)) {
list.forEach(r -> {
list1.add(r.getUrl());
});
return lsitUtils.ifcontain(list1, requestURI);
}
return false;
}
public Long getUserId(String token) {
Object o = redisUtil.get(token);
if (!StringUtils.isNull(o)) {
Long id = Long.valueOf(String.valueOf(o));
return id;
}
throw new NullPointerException();
}
public boolean ifcontain(Collection list, String str){
boolean b =false;
for (Object o : list) {
if (o.equals(str)) {
return b = true;
}
}
return b;
}
}service
Listservice实现类:selectAll(People people);
@Override public ListmapperselectAll(People people) { List list = baseMapper.selectLists(people); list.forEach(r -> { if (r.getSex() == null) { r.setSex(Constant.UNKNOWN); } if (Constant.MALE.equals(r.getSex())) { r.setSex(Constant.MAN); } if (Constant.GIRL.equals(r.getSex())) { r.setSex(Constant.WOMAN); } }); return list; }
Listmapper.xmlselectLists(People people);
测试
admin拥有全部权限
总经理拥有全部权限
员工只能查询
admin测试: 登录获取token admin查询全部 员工测试: 员工登录获取token 员工查询全部 删除员工的查询权限: 删除前 删除后 员工查询全部
