springcloud alibaba+springboot开发个人博客微服务版本的demo实例,通过接口测试服务发现，监控，降级的代码详情-代码-最代码

首页>代码>springcloud alibaba+springboot开发个人博客微服务版本的demo实例,通过接口测试服务发现，监控，降级>/my_blog/blog-center/src/main/java/com/my/blogcenter/aop/AuthAspect.java

package com.my.blogcenter.aop;

import com.my.blogcenter.exception.AuthException;
import com.my.blogcenter.utils.JwtOperator;
import io.jsonwebtoken.Claims;
import org.aspectj.lang.ProceedingJoinPoint;
import org.aspectj.lang.annotation.Around;
import org.aspectj.lang.annotation.Aspect;
import org.aspectj.lang.reflect.MethodSignature;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.context.request.RequestAttributes;
import org.springframework.web.context.request.RequestContextHolder;
import org.springframework.web.context.request.ServletRequestAttributes;

import javax.servlet.http.HttpServletRequest;
import java.lang.reflect.Method;
import java.util.Objects;


@Aspect
@Component
public class AuthAspect {

    @Autowired
    private JwtOperator operator;

    @Around("@annotation(com.my.blogcenter.aop.CheckLogin)")
    public Object checkLogin(ProceedingJoinPoint point) throws Throwable {
        checkToken();
        return point.proceed();

    }

    @Around("@annotation(com.my.blogcenter.aop.CheckAdminAspect)")
    public Object checkAdmin(ProceedingJoinPoint point) {
        try {
            this.checkToken();
            HttpServletRequest request = this.getRequest();
            int role = (Integer) request.getAttribute("role");
            MethodSignature signature = (MethodSignature) point.getSignature();
            Method method = signature.getMethod();
            CheckAdminAspect annotation = method.getAnnotation(CheckAdminAspect.class);
            //拿到注解的value
            int value = annotation.value();
            if (!Objects.equals(value, role)) {
                throw new AuthException("用户无权访问");
            }
            return point.proceed();
        } catch (Throwable throwable) {
//            throwable.printStackTrace();
            throw new AuthException("用户无权访问");
        }

    }

    private void checkToken() {
        try {
            HttpServletRequest request = this.getRequest();
            String token = request.getHeader("x-token");
            //校验token
            Boolean isOk = operator.validateToken(token);
            if (!isOk) {
                throw new AuthException("token不合法");
            }
            //将用户信息存入header
            Claims claimsFromToken = operator.getClaimsFromToken(token);
            request.setAttribute("userId", claimsFromToken.get("userId"));
            request.setAttribute("nickName", claimsFromToken.get("nickName"));
            request.setAttribute("role", claimsFromToken.get("role"));
        } catch (Throwable throwable) {
            throw new AuthException("token不合法");
        }

    }

    private HttpServletRequest getRequest() {
        RequestAttributes requestAttributes = RequestContextHolder.getRequestAttributes();
        ServletRequestAttributes servletRequestAttributes = (ServletRequestAttributes) requestAttributes;
        HttpServletRequest request = servletRequestAttributes.getRequest();
        return request;
    }
}