Skip to content

DolphinScheduler
DolphinScheduler

wk1234123 / DolphinScheduler
与 Fork 源项目一致

Fork自 apache / DolphinScheduler

通知 5
Star 0
Fork 0
DolphinScheduler
DolphinScheduler

体验新版 GitCode,发现更多精彩内容 >>

切换分支/标签
查找文件 普通视图历史永久链接Permalink
LoginHandlerInterceptor.java 4.2 KB
Newer Older
L
Initial module escheduler-api commit  
ligang 已提交
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 
/*
 * Licensed to the Apache Software Foundation (ASF) under one or more
 * contributor license agreements.  See the NOTICE file distributed with
 * this work for additional information regarding copyright ownership.
 * The ASF licenses this file to You under the Apache License, Version 2.0
 * (the "License"); you may not use this file except in compliance with
 * the License.  You may obtain a copy of the License at
 *
 *    http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
Q
rename project and doc  
qiaozhanwei 已提交
17 
package org.apache.dolphinscheduler.api.interceptor;
L
Initial module escheduler-api commit  
ligang 已提交
18
Q
rename project and doc  
qiaozhanwei 已提交
19 20 21 22 23 
import org.apache.dolphinscheduler.api.service.SessionService;
import org.apache.dolphinscheduler.api.utils.Constants;
import org.apache.dolphinscheduler.dao.entity.Session;
import org.apache.dolphinscheduler.dao.entity.User;
import org.apache.dolphinscheduler.dao.mapper.UserMapper;
L
Initial module escheduler-api commit  
ligang 已提交
24 
import org.apache.commons.httpclient.HttpStatus;
Q
api access token dev  
qiaozhanwei 已提交
25 
import org.apache.commons.lang.StringUtils;
L
Initial module escheduler-api commit  
ligang 已提交
26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * login interceptor, must login first
 */
public class LoginHandlerInterceptor implements HandlerInterceptor {
  private static final Logger logger = LoggerFactory.getLogger(LoginHandlerInterceptor.class);

  @Autowired
  private SessionService sessionService;

  @Autowired
  private UserMapper userMapper;

  /**
   * Intercept the execution of a handler. Called after HandlerMapping determined
   * an appropriate handler object, but before HandlerAdapter invokes the handler.
   * <p>DispatcherServlet processes a handler in an execution chain, consisting
   * of any number of interceptors, with the handler itself at the end.
   * With this method, each interceptor can decide to abort the execution chain,
   * typically sending a HTTP error or writing a custom response.
   * <p><strong>Note:</strong> special considerations apply for asynchronous
   * request processing. For more details see
   * {@link org.springframework.web.servlet.AsyncHandlerInterceptor}.
   * @param request current HTTP request
   * @param response current HTTP response
   * @param handler chosen handler to execute, for type and/or instance evaluation
   * @return {@code true} if the execution chain should proceed with the
   * next interceptor or the handler itself. Else, DispatcherServlet assumes
   * that this interceptor has already dealt with the response itself.
   * @throws Exception in case of errors
   */
  @Override
  public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
Q
api access token dev  
qiaozhanwei 已提交
68 69 70 71 72 73 74 75 76 77 78 79 80 
    // get token
    String token = request.getHeader("token");
    User user = null;
    if (StringUtils.isEmpty(token)){
      Session session = sessionService.getSession(request);

      if (session == null) {
        response.setStatus(HttpStatus.SC_UNAUTHORIZED);
        logger.info("session info is null ");
        return false;
      }

      //get user object from session
B
add mybatis plus (#881)  
bao liang 已提交
81 
      user = userMapper.selectById(session.getUserId());
Q
command and task monitor dev  
qiaozhanwei 已提交
82 83 84 85 86 87 88 

      // if user is null
      if (user == null) {
        response.setStatus(HttpStatus.SC_UNAUTHORIZED);
        logger.info("user does not exist");
        return false;
      }
Q
api access token dev  
qiaozhanwei 已提交
89 90 
    }else {
       user = userMapper.queryUserByToken(token);
Q
command and task monitor dev  
qiaozhanwei 已提交
91 92 93 94 95 
      if (user == null) {
        response.setStatus(HttpStatus.SC_UNAUTHORIZED);
        logger.info("user token has expired");
        return false;
      }
L
Initial module escheduler-api commit  
ligang 已提交
96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 
    }
    request.setAttribute(Constants.SESSION_USER, user);
    return true;
  }

  @Override
  public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {

  }

  @Override
  public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {

  }

}