| package com.panzhihua.zuul.manager; | 
|   | 
| import java.util.Collection; | 
|   | 
| import org.springframework.security.access.AccessDecisionManager; | 
| import org.springframework.security.access.AccessDeniedException; | 
| import org.springframework.security.access.ConfigAttribute; | 
| import org.springframework.security.authentication.InsufficientAuthenticationException; | 
| import org.springframework.security.core.Authentication; | 
| import org.springframework.security.core.GrantedAuthority; | 
| import org.springframework.stereotype.Component; | 
|   | 
| /** | 
|  * @program: springcloud_k8s_panzhihuazhihuishequ | 
|  * @description: 权限判断 | 
|  * @author: huang.hongfa weixin hhf9596 qq 959656820 | 
|  * @create: 2020-11-25 16:19 | 
|  **/ | 
| @Component | 
| public class RoleAccessDecisionManager implements AccessDecisionManager { | 
|     /** | 
|      * decide 方法是判定是否拥有权限的决策方法, | 
|      *  | 
|      * @param authentication | 
|      *            当前用户的信息 | 
|      * @param o | 
|      *            包含客户端发起的请求的requset信息 | 
|      * @param collection | 
|      *            当前路径对应的权限 | 
|      * @throws AccessDeniedException | 
|      *             无权限 | 
|      * @throws InsufficientAuthenticationException | 
|      */ | 
|     @Override | 
|     public void decide(Authentication authentication, Object o, Collection<ConfigAttribute> collection) | 
|         throws AccessDeniedException, InsufficientAuthenticationException { | 
|         Collection<? extends GrantedAuthority> authorities = authentication.getAuthorities(); | 
|         for (GrantedAuthority authority : authorities) { | 
|             for (ConfigAttribute c : collection) { | 
|                 if (c.getAttribute().equals(authority.getAuthority())) { | 
|                     return; | 
|                 } | 
|             } | 
|         } | 
|         throw new AccessDeniedException("当前访问没有权限"); | 
|     } | 
|   | 
|     @Override | 
|     public boolean supports(ConfigAttribute configAttribute) { | 
|         return false; | 
|     } | 
|   | 
|     @Override | 
|     public boolean supports(Class<?> aClass) { | 
|         return false; | 
|     } | 
| } |