在 SpringBoot 中使用 Spring AOP 实现接口鉴权

@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
public @interface Auth {
    String value();
}
1.
2.
3.
4.
5.

@Component
@Aspect
public class AuthAspect {
    @Autowired
    private AuthService authService;
    
    @Pointcut("@annotation(com.example.Auth)")
    public void authPointcut() {}
    
    @Before("authPointcut() && @annotation(auth)")
    public void authBefore(JoinPoint joinPoint, Auth auth) {
        String permission = auth.value();
        if (!authService.checkPermission(permission)) {
            throw new UnauthorizedException("Unauthorized access");
        }
    }
}
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.

@Component
@Aspect
public class AuthAspect {
    @Autowired
    private AuthService authService;
    
    @Pointcut("execution(* com.example.UserService.*(..))")
    public void userServicePointcut() {}
    
    @Before("userServicePointcut()")
    public void userServiceBefore(JoinPoint joinPoint) {
        MethodSignature signature = (MethodSignature) joinPoint.getSignature();
        Method method = signature.getMethod();
        Auth auth = method.getAnnotation(Auth.class);
        if (auth != null && !authService.checkPermission(auth.value())) {
            throw new UnauthorizedException("Unauthorized access");
        }
    }
}
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.

@RestController
public class UserController {
    @Autowired
    private UserService userService;
    
    @GetMapping("/user/{id}")
    @Auth("user:view")
    public User getUser(@PathVariable Long id) {
        return userService.getUser(id);
    }
}
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.