package com.sinata.shop.core.shiro.check;
|
|
import com.sinata.core.support.CollectionKit;
|
import com.sinata.core.support.HttpKit;
|
import com.sinata.core.util.SpringContextHolder;
|
import com.sinata.shop.core.listener.ConfigListener;
|
import com.sinata.shop.core.shiro.ShiroKit;
|
import com.sinata.shop.core.shiro.ShiroUser;
|
import org.springframework.context.annotation.DependsOn;
|
import org.springframework.stereotype.Service;
|
import org.springframework.transaction.annotation.Transactional;
|
|
import javax.servlet.http.HttpServletRequest;
|
|
/**
|
* 权限自定义检查
|
*/
|
@Service
|
@DependsOn("springContextHolder")
|
@Transactional(readOnly = true)
|
public class PermissionCheckFactory implements com.sinata.shop.core.shiro.check.ICheck {
|
|
public static com.sinata.shop.core.shiro.check.ICheck me() {
|
return SpringContextHolder.getBean(ICheck.class);
|
}
|
|
@Override
|
public boolean check(Object[] permissions) {
|
ShiroUser user = ShiroKit.getUser();
|
if (null == user) {
|
return false;
|
}
|
String join = CollectionKit.join(permissions, ",");
|
if (ShiroKit.hasAnyRoles(join)) {
|
return true;
|
}
|
return false;
|
}
|
|
@Override
|
public boolean checkAll() {
|
HttpServletRequest request = HttpKit.getRequest();
|
ShiroUser user = ShiroKit.getUser();
|
if (null == user) {
|
return false;
|
}
|
String requestURI = request.getRequestURI().replaceFirst(ConfigListener.getConf().get("contextPath"), "");
|
String[] str = requestURI.split("/");
|
if (str.length > 3) {
|
requestURI = "/" + str[1] + "/" + str[2];
|
}
|
if (ShiroKit.hasPermission(requestURI)) {
|
return true;
|
}
|
return false;
|
}
|
|
}
|
