From 47f45aa8951b5d941e774dddfe11fb2438299c34 Mon Sep 17 00:00:00 2001
From: Romesum <zhiyuewu@foxmail.com>
Date: Thu, 28 May 2020 13:34:49 +0800
Subject: [PATCH] =?UTF-8?q?[feat][M]:=20=E6=96=B0=E5=A2=9E=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E6=9D=83=E9=99=90=E6=A0=A1=E9=AA=8C=E8=A7=84=E5=88=99?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../filter/UserAuthorizeAspect.java           | 39 +++++++++++++++++--
 .../repository/UserSecurityMapper.java        | 34 ++++++++++++++++
 2 files changed, 70 insertions(+), 3 deletions(-)
 create mode 100644 java/src/main/java/com/hzu/bookingsystem/repository/UserSecurityMapper.java

diff --git a/java/src/main/java/com/hzu/bookingsystem/filter/UserAuthorizeAspect.java b/java/src/main/java/com/hzu/bookingsystem/filter/UserAuthorizeAspect.java
index aa52fd3..6fc53df 100644
--- a/java/src/main/java/com/hzu/bookingsystem/filter/UserAuthorizeAspect.java
+++ b/java/src/main/java/com/hzu/bookingsystem/filter/UserAuthorizeAspect.java
@@ -1,6 +1,9 @@
 package com.hzu.bookingsystem.filter;
 
+import com.hzu.bookingsystem.controller.UserController;
 import com.hzu.bookingsystem.exception.UserAuthorizeException;
+import com.hzu.bookingsystem.exception.UserRuleAuthorizeException;
+import com.hzu.bookingsystem.repository.UserSecurityMapper;
 import com.hzu.bookingsystem.utils.CookieUtil;
 import org.aspectj.lang.annotation.Aspect;
 import org.aspectj.lang.annotation.Before;
@@ -12,8 +15,12 @@ import org.springframework.util.StringUtils;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
+import javax.annotation.Resource;
 import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
 
 /**
  * author 吴志岳
@@ -24,12 +31,20 @@ public class UserAuthorizeAspect {
     @Autowired
     private StringRedisTemplate redisTemplate;
 
+    @Autowired
+    private UserController userController;
+
+    @Resource
+    private UserSecurityMapper userSecurityMapper;
+
     @Pointcut("execution(public * com.hzu.bookingsystem.controller.*.*(..))" +
             "&& !execution(public * com.hzu.bookingsystem.controller.UserController.login(..))" +
-            "&& !execution(public * com.hzu.bookingsystem.controller.UserController.logout(..))")
+            "&& !execution(public * com.hzu.bookingsystem.controller.UserController.logout(..))" +
+            "&& !execution(public * com.hzu.bookingsystem.controller.UserController.getUIdByCookie(..))")
 //    @Pointcut(
 //            "execution(public * com.hzu.bookingsystem.controller.UserController.getUserList(..))")
-    public void verify() {}
+    public void verify() {
+    }
 
     @Before("verify()")
     public void doVerify() {
@@ -47,7 +62,25 @@ public class UserAuthorizeAspect {
         String tokenValue = redisTemplate.opsForValue().get(cookie.getValue());
         if (StringUtils.isEmpty(tokenValue)) {
             System.out.println("登陆已过期");
-            throw new UserAuthorizeException();
+            throw new UserAuthorizeException("未登录");
         }
+
+        //查询权限
+        Map<String, Object> map = userSecurityMapper.getRules(userController.getUIdByCookie(request));
+        String rule = (String) map.get("rules_id");
+        String[] rules = rule.split(",");
+        List<String> ruleList = Arrays.asList(rules);
+
+        String url = request.getRequestURI();
+        String[] split = url.split("/");
+        String realUrl = "/" + split[1] + "/" + split[2] + "/" + split[3];
+        Map<String, Object> map2 = userSecurityMapper.getRuleId(realUrl);
+
+        if (ruleList.contains(((Integer) map2.get("rules_id")).toString())) {
+            System.out.println("权限通过");
+        } else {
+            throw new UserRuleAuthorizeException("无权限访问！");
+        }
+
     }
 }
diff --git a/java/src/main/java/com/hzu/bookingsystem/repository/UserSecurityMapper.java b/java/src/main/java/com/hzu/bookingsystem/repository/UserSecurityMapper.java
new file mode 100644
index 0000000..dce8e89
--- /dev/null
+++ b/java/src/main/java/com/hzu/bookingsystem/repository/UserSecurityMapper.java
@@ -0,0 +1,34 @@
+package com.hzu.bookingsystem.repository;
+
+import com.hzu.bookingsystem.VO.WeekVO;
+import com.hzu.bookingsystem.bean.LabRecordBean;
+import com.hzu.bookingsystem.bean.LabTimeBean;
+import com.hzu.bookingsystem.dto.LabRecordDTO;
+import org.apache.ibatis.annotations.Mapper;
+import org.apache.ibatis.annotations.Select;
+
+import java.util.List;
+import java.util.Map;
+
+@Mapper
+public interface UserSecurityMapper {
+    @Select("SELECT " +
+            " tb_auth_group.rules_id  " +
+            "FROM " +
+            " tb_user, " +
+            " tb_auth_group_access, " +
+            " tb_auth_group  " +
+            "WHERE " +
+            " tb_user.u_id = tb_auth_group_access.u_id  " +
+            " AND tb_auth_group.group_id = tb_auth_group_access.group_id  " +
+            " AND tb_auth_group_access.u_id = #{uId}")
+    Map<String,Object> getRules(Integer uId);
+
+    @Select("SELECT " +
+            " tb_auth_rules.rules_id " +
+            "FROM " +
+            " tb_auth_rules " +
+            "WHERE " +
+            " tb_auth_rules.url = #{url}")
+    Map<String,Object> getRuleId(String url);
+}