filter 過濾器 token 校驗

package cn.futuremove.tsp.skywell.config;

import com.fasterxml.jackson.databind.ObjectMapper;
import org.apache.commons.lang.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.data.redis.core.BoundValueOperations;
import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.web.filter.OncePerRequestFilter;

import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.PrintWriter;
import java.util.HashMap;
import java.util.Map;

/**
 * web 端token 校驗
 * @author wanght
 * @date 09:27 2019/04/25
 * @return
 */
@Configuration
@WebFilter
public class TokenFilter extends OncePerRequestFilter {
    @Autowired
    RedisTemplate<String,String> redisTemplate;

    @Override
    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
        if (request.getRequestURI().indexOf("/login/") >= 0) {
            filterChain.doFilter(request, response);
        } else {
            Map<String,Object> result = new HashMap<String,Object>();
            String accessToken = request.getHeader("webToken");
            // Header 中沒有 token , 就看看參數中是否有
            if (StringUtils.isEmpty(accessToken)) {
                accessToken = request.getParameter("webToken");
            }
            if (null == accessToken) {
                result.put("status",0);
                result.put("message","token 不存在,請登錄！");
            } else {
                BoundValueOperations<String, String> stringStringBoundValueOperations = redisTemplate.boundValueOps(accessToken);
                if (stringStringBoundValueOperations != null) {
                    filterChain.doFilter(request, response);
                } else {
                    result.put("status",1);
                    result.put("message","token已過期,請重新登錄!");
                }
            }
            try {
                responseOutWithJson(response, result);
            } catch (Exception e) {
                e.printStackTrace();
            }
        }
    }

    protected void responseOutWithJson(HttpServletResponse response, Object responseObject) throws Exception {
        ObjectMapper mapper = new ObjectMapper();
        String jsonStr = mapper.writeValueAsString(responseObject);
        response.setCharacterEncoding("UTF-8");
        response.setContentType("application/json; charset=utf-8");
        PrintWriter out = null;
        try {
            out = response.getWriter();
            out.append(jsonStr);
        } catch (IOException e) {
            e.printStackTrace();
        } finally {
            if (out != null) {
                out.close();
            }
        }
    }
}