詳解Java攔截器以及自定義注解的使用

第詳解Java攔截器以及自定義注解的使用目錄1，設(shè)置預(yù)處理，設(shè)置不需要攔截的請(qǐng)求2.UserTokenInterceptor，securityInterceptor分別處理不同的請(qǐng)求攔截，執(zhí)行不同的攔截邏輯。3.關(guān)于注解的使用總結(jié)

1，設(shè)置預(yù)處理，設(shè)置不需要攔截的請(qǐng)求

@Component

publicclassMyWebConfigimplementsWebMvcConfigurer{

privatefinalUserTokenInterceptoruserTokenInterceptor;

privatefinalSecurityInterceptorsecurityInterceptor;

publicMyWebConfig(

UserTokenInterceptoruserTokenInterceptor,SecurityInterceptorsecurityInterceptor){

this.userTokenInterceptor=userTokenInterceptor;

this.securityInterceptor=securityInterceptor;

@Override

publicvoidaddInterceptors(InterceptorRegistryregistry){

//定義排除swagger訪問的路徑配置

String[]swaggerExcludes=

newString[]{"/swagger-ui.html","/swagger-resources/**","/webjars/**"};

registry

.addInterceptor(userTokenInterceptor)

.addPathPatterns("/**")

.excludePathPatterns(

"/user/login","/static/**","/*.html","/*.ico","/*.json","/*.png","/heartbeat/**")

.excludePathPatterns(swaggerExcludes);

registry

.addInterceptor(securityInterceptor)

.addPathPatterns("/maintain/**","/user/**")

.excludePathPatterns("/user/login");

}

2.UserTokenInterceptor，securityInterceptor分別處理不同的請(qǐng)求攔截，執(zhí)行不同的攔截邏輯。

2個(gè)處理的類請(qǐng)求上可以有交集，2個(gè)處理類都執(zhí)行。

@Component

publicclassUserTokenInterceptorimplementsHandlerInterceptor{

privatefinalEmpInfoServiceempInfoService;

publicUserTokenInterceptor(EmpInfoServiceempInfoService){

this.empInfoService=empInfoService;

@Override

publicbooleanpreHandle(HttpServletRequestrequest,HttpServletResponseresponse,Objecthandler)

throwsException{

//校驗(yàn)handler是否是HandlerMethod

if(!(handlerinstanceofHandlerMethod)){

returntrue;

//從請(qǐng)求頭中獲取token

Stringtoken=request.getHeader("Authorization");

*update:2025/11/30ShengJieLi

*增加邏輯：Authorization的值不為本系統(tǒng)生成的token時(shí)，解密Authorization，獲取token并驗(yàn)證

if(StrUtil.isNotEmpty(token)){

EmpInfosecurityEmployee=empInfoService.queryToken(token);

if(securityEmployee!=null){

//token有效

Stringref=empInfoService.isRef(token);

if(StrUtil.isNotBlank(ref)){

response.setHeader("Access-Control-Expose-Headers","token");

response.addHeader("token",ref);

}else{

//Authorization為PBE加密數(shù)據(jù)

securityEmployee=empInfoService.analyticQueryToken(token,response);

if(securityEmployee!=null){

//token有效

//將User對(duì)象放入到ThreadLocal中

UserLocal.set(securityEmployee);

returntrue;

returnfalse;

//Strings=JSONUtil.toJsonStr(ResponseResult.error(ErrorCode.TOKEN_ERROR));

//response.setContentType("text/html;charset=UTF-8");

//JSONUtil.toJsonStr(s,response.getWriter());

//response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);

InterceptorExceptionRerceptorError(response,ErrorCode.TOKEN_ERROR);

//update結(jié)束

returnfalse;

@Override

publicvoidafterCompletion(

Htt