• Home
• com.centit.framework
• framework-security
• 4.1.1806
• source code
• DaoInvocationSecurityMetadataSource.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.centit.framework.security.DaoInvocationSecurityMetadataSource Maven / Gradle / Ivy

package com.centit.framework.security;

import com.centit.framework.security.model.CentitSecurityMetadata;
import org.springframework.security.access.ConfigAttribute;
import org.springframework.security.web.FilterInvocation;
import org.springframework.security.web.access.intercept.FilterInvocationSecurityMetadataSource;

import javax.servlet.http.HttpServletRequest;
import java.util.Collection;

//@Component("centitSecurityMetadataSource")
public class DaoInvocationSecurityMetadataSource
            implements FilterInvocationSecurityMetadataSource
         {
    //private static final Logger logger = LoggerFactory.getLogger(DaoInvocationSecurityMetadataSource.class);
    //private static boolean logDebug = logger.isDebugEnabled();
    @Override
    public boolean supports(Class clazz) {
        if (FilterInvocation.class.isAssignableFrom(clazz)) {
            return true;
        }
        return false;
    }

    @Override
    public Collection getAllConfigAttributes() {
        return null;
    }

    @Override
    // According to a URL, Find out permission configuration of this URL.
    public Collection getAttributes(Object object) throws IllegalArgumentException {
        // guess object is a URL.
        if ((object == null) || !this.supports(object.getClass())) {
            throw new IllegalArgumentException("对不起,目标对象不是类型");
        }
        FilterInvocation fi = (FilterInvocation) object;
        HttpServletRequest request = fi.getHttpRequest();
        String requestUrl = fi.getRequestUrl();
        /* if (logDebug) {
            logger.debug("通过权限过滤器 请求url = " + requestUrl + " 请求类型 = " + request.getMethod());
        }*/
        return CentitSecurityMetadata.matchUrlToRole(requestUrl,request);
/*        Collection needRoles = CentitSecurityMetadata.matchUrlToRole(requestUrl,request);
        if(needRoles==null && requestUrl.contains("/mainframe/logincas")){
            needRoles = new ArrayList<>(1);
            needRoles.add(new SecurityConfig(CentitSecurityMetadata.ROLE_PREFIX + SecurityContextUtils.PUBLIC_ROLE_CODE));
        }
        return needRoles;*/
    }
}