首页 > 英语园地

Api接口鉴权注解实现

更新时间:2023-07-17 00:13:59 阅读: 评论:0

Api接⼝鉴权注解实现考研政治参考书
定义注解
@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@Documented
public @interface ApiHeaderCheck {
}
定义切⾯
@Aspect
@Component
@Slf4j
public class ApiHeaderCheckAspect {
//30s超时
public static final int REQUEST_EXPIRE_TIME = 30000;
gentle是什么意思
@Before("@annotation(apiHeaderCheck)")
public void checkAuth(ApiHeaderCheck apiHeaderCheck) {
HttpServletRequest request = currentRequest();
if (Objects.isNull(request)) {
return;
}
String timeStampStr = Header("x-ts");
String sign = Header("x-sign");torch是什么意思
if (StringUtils.isEmpty(timeStampStr) || StringUtils.isEmpty(sign)) {
没办法英文
throw new BaException(ApiAuthErrorEnum.UNAUTHORIZED);
}
String regex = "^\\d{13}$";
if (!Pattern.matches(regex, im())) {
throw new BaException(ApiAuthErrorEnum.UNAUTHORIZED);
}
long requestTimestamp = Long.parLong(timeStampStr);
if (System.currentTimeMillis() - requestTimestamp > REQUEST_EXPIRE_TIME) {
throw new BaException(ApiAuthErrorEnum.REQUEST_EXPIRED);
}
/
/验证RSA签名
String targetTimestamp = RsaUtil.decrypt(sign);
if (!targetTimestamp.equals(timeStampStr)) {
throw new BaException(ApiAuthErrorEnum.UNAUTHORIZED);毕业旅行英文
}
}
/**
* 获取当前请求信息
* @return Current request or null
aisle*/
private HttpServletRequest currentRequest() {
ServletRequestAttributes rvletRequestAttributes = (ServletRequestAttributes) RequestAttributes();        return Optional.ofNullable(rvletRequestAttributes).map(ServletRequestAttributes::getRequest).orEl(null);
}
}
定义异常
1public enum ApiAuthErrorEnum implements IErrorCode {
2
3    UNAUTHORIZED("10001", "Unauthorized"),
4    REQUEST_EXPIRED("10002", "Request Expired"),
5    ;
6
7private final String errorCode;
8private final String errorMessage;
appleton9private static final String ERROR_CODE_START = "Auth-";
10
11    ApiAuthErrorEnum(String errorCode, String errorMessage) {
14    }
15
16    @Override
血染拜占庭17public String getErrorCode() {
bec考试教材
18return ERROR_CODE_START + errorCode;
19    }
20
21    @Override
22public String getErrorMessage() {
23return errorMessage;
24    }
25 }
使⽤⽅式
在⽅法上添加@ApiHeaderCheck
add_header Access-Control-Allow-Headers 'x-sign,x-ts'; 如
location /bssgw/ {
  proxy_pass 127.0.0.1:8080/test/;
  proxy_t_header Host $host:$rver_port;
  proxy_t_header X-Real-IP $remote_addr;
  proxy_t_header REMOTE-HOST $remote_addr;
青岛it  proxy_t_header X-Forwarded-For $proxy_add_x_forwarded_for;  add_header Access-Control-Allow-Headers 'x-sign,x-ts';
  client_max_body_size 50m;
}

本文发布于:2023-07-17 00:13:59,感谢您对本站的认可!

本文链接:https://www.wtabcd.cn/fanwen/fan/78/1100462.html

版权声明:本站内容均来自互联网,仅供演示用,请勿用于商业和其他非法用途。如果侵犯了您的权益请与我们联系,我们将在24小时内删除。

上一篇:javaCollections排序--多条件排序
下一篇:MyBatis下标越界异常解决
标签:注解   考研   请求   路径   验证   毕业   考试
相关文章
留言与评论(共有 0 条评论)
   
验证码:
推荐文章
排行榜
热门标签
Copyright ©2019-2022 Comsenz Inc.Powered by © 专利检索| 网站地图