zuul作为网关充当过滤器

一，zuul作为过滤器实现身份校验

网关连接redis校验令牌

import com.alibaba.fastjson.JSON;
import com.netflix.zuul.ZuulFilter;
import com.netflix.zuul.context.RequestContext;
import com.netflix.zuul.exception.ZuulException;

import com.xuecheng.filesystem.framework.model.response.CommonCode;
import com.xuecheng.filesystem.framework.model.response.ResponseResult;
import com.xuecheng.govern.gateway.service.LoginService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.util.StringUtils;

import javax.servlet.http.HttpServletRequest;

@Component
public class LoginFilter extends ZuulFilter {

    @Autowired
    private LoginService loginService;

    @Override
    public String filterType() {
        return "pre";
    }

    @Override
    public int filterOrder() {
        return 0;
    }

    @Override
    public boolean shouldFilter() {
        return true;
    }
    
    /**
     * 验证登录信息
     * @return
     * @throws ZuulException
     */
    @Override
    public Object run() throws ZuulException {

        RequestContext requestContext = RequestContext.getCurrentContext();
        HttpServletRequest request = requestContext.getRequest();

        //1. 判断cookie中jti是否存在
        String jti = loginService.getJtiFromCookie(request);
        if (StringUtils.isEmpty(jti)){
            //拒绝访问
            this.accessRefused();
        }


        //2. 判断redis中的token是否过期
        boolean result = loginService.getTokenFromRedis(jti);
        if (!result){
            //过期
            this.accessRefused();
        }

        //3. 判断header中是否存在Authorization
        String headerValue=loginService.getHeaderInfo(request);
        if (StringUtils.isEmpty(headerValue)){
            this.accessRefused();
        }

        return null;
    }

    private void accessRefused() {

        RequestContext requestContext = RequestContext.getCurrentContext();
        //设置拒绝访问
        requestContext.setSendZuulResponse(false);
        //设置响应码
        requestContext.setResponseStatusCode(200);
        //设置contenttype
        requestContext.getResponse().setContentType("application/json;charset=utf-8");
        //设置响应内容
        ResponseResult responseResult = new ResponseResult(CommonCode.UNAUTHENTICATED);
        String jsonString = JSON.toJSONString(responseResult);

        requestContext.setResponseBody(jsonString);
    }
}

service

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.redis.core.StringRedisTemplate;
import org.springframework.stereotype.Service;
import org.springframework.util.StringUtils;

import javax.servlet.http.HttpServletRequest;
import java.util.Map;

@Service
public class LoginService {

    @Autowired
    private StringRedisTemplate stringRedisTemplate;

    /**
     * 从cookie中获取数据
     * @param request
     * @return
     */
    public String getJtiFromCookie(HttpServletRequest request) {

        Map<String, String> map = CookieUtil.readCookie(request, "uid");
        String jti = map.get("uid");
        return jti;
    }

    /**
     * 从redis中获取令牌信息是否过期
     * @param jti
     * @return
     */
    public boolean getTokenFromRedis(String jti) {
        String key = "user_token:"+jti;
        Long expire = stringRedisTemplate.getExpire(key);
        return expire>0;
    }

    /**
     * 从header中获取数据
     * @param request
     * @return
     */
    public String getHeaderInfo(HttpServletRequest request) {
        String headerValue = request.getHeader("Authorization");
        if (StringUtils.isEmpty(headerValue)){
            return null;
        }
        if (!headerValue.startsWith("Bearer ")){
            return null;
        }

        return headerValue;
    }
}

 

实现功能

 

出现的问题：客户端不同，cookie不同

postman

和浏览器保存的令牌不同