mybatisplus添加数据权限过滤（自定义拦截器，sql拦截）

 

添加数据权限过滤监听类

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91

import com.baomidou.mybatisplus.core.toolkit.PluginUtils; import com.baomidou.mybatisplus.extension.handlers.AbstractSqlParserHandler; import org.apache.ibatis.executor.statement.StatementHandler; import org.apache.ibatis.mapping.BoundSql; import org.apache.ibatis.mapping.MappedStatement; import org.apache.ibatis.mapping.SqlCommandType; import org.apache.ibatis.plugin.Interceptor; import org.apache.ibatis.plugin.Invocation; import org.apache.ibatis.plugin.Plugin; import org.apache.ibatis.reflection.MetaObject; import org.apache.ibatis.reflection.SystemMetaObject;   import javax.sql.DataSource; import java.util.Properties;   //@Slf4j //@AllArgsConstructor //@Intercepts({@Signature(type = StatementHandler.class, method = "prepare", args = {Connection.class, Integer.class})}) //@Component public class DataScopeInterceptor  extends AbstractSqlParserHandler implements Interceptor { private DataSource dataSource;   @Override public Object intercept(Invocation invocation) throws Throwable { StatementHandler statementHandler = PluginUtils.realTarget(invocation.getTarget()); MetaObject metaObject = SystemMetaObject.forObject(statementHandler); this.sqlParser(metaObject); // 先判断是不是SELECT操作 不是直接过滤 MappedStatement mappedStatement = (MappedStatement) metaObject.getValue("delegate.mappedStatement"); if (!SqlCommandType.SELECT.equals(mappedStatement.getSqlCommandType())) { return invocation.proceed(); } BoundSql boundSql = (BoundSql) metaObject.getValue("delegate.boundSql"); // 执行的SQL语句 String originalSql = boundSql.getSql(); // SQL语句的参数 Object parameterObject = boundSql.getParameterObject();   originalSql = "select * from (" + originalSql + ") temp_data_scope where temp_data_scope." + 1 + " in (" + 2 + ")"; metaObject.setValue("delegate.boundSql.sql", originalSql); return invocation.proceed();   }   /**   * 生成拦截对象的代理 * * @param target 目标对象 * @return 代理对象   */   @Override   public Object plugin(Object target) {   if (target instanceof StatementHandler) {   return Plugin.wrap(target, this);   }   return target;   }   /**   * mybatis配置的属性 * * @param properties mybatis配置的属性   */   @Override   public void setProperties(Properties properties) {   }   /**   * 查找参数是否包括DataScope对象 * * @param parameterObj 参数列表 * @return DataScope   */   //    private DataScope findDataScopeObject(Object parameterObj) { //        if (parameterObj instanceof DataScope) { //            return (DataScope) parameterObj; //        } else if (parameterObj instanceof Map) { //            for (Object val : ((Map) parameterObj).values()) { //                if (val instanceof DataScope) { //                    return (DataScope) val; //                } //            } //        } //        return null; //    } }

mybatisplus配置文件

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19

@Configuration public class MybatisPlusConfig {     @Bean     public MybatisPlusInterceptor mybatisPlusInterceptor() {         MybatisPlusInterceptor interceptor = new MybatisPlusInterceptor();         interceptor.addInnerInterceptor(new PaginationInnerInterceptor(DbType.ORACLE));         return interceptor;     }     /**      * 数据权限插件      *      * @return DataScopeInterceptor      */     @Bean     @ConditionalOnMissingBean     public DataScopeInterceptor dataScopeInterceptor(DataSource dataSource) {         return new DataScopeInterceptor(dataSource);     } }

　　转载

__EOF__

本文作者：皮军旗
本文链接：https://www.cnblogs.com/pijunqi/p/15534412.html
关于博主：评论和私信会在第一时间回复。或者直接私信我。
版权声明：本博客所有文章除特别声明外，均采用 BY-NC-SA 许可协议。转载请注明出处！
声援博主：如果您觉得文章对您有帮助，可以点击文章右下角【推荐】一下。您的鼓励是博主的最大动力！