authorizationcheckaspect.java

来自「ssh 实例spring对hibernate的封装」· Java 代码 · 共 47 行

package com.ssh.struts.security;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;

import org.aopalliance.intercept.MethodInterceptor;
import org.aopalliance.intercept.MethodInvocation;
import org.apache.struts.action.Action;
import org.apache.struts.action.ActionMapping;
import org.apache.struts.action.ActionMessage;
import org.apache.struts.action.ActionMessages;
/**
 * 操作权限检查类
 * @author T.Xin.Jun
 *
 */
public class AuthorizationCheckAspect extends Action implements MethodInterceptor {

	@Override
	public Object invoke(MethodInvocation invocation) throws Throwable {
		// TODO Auto-generated method stub
		Object[] args = invocation.getArguments();
		HttpServletRequest request = null;
		ActionMapping mapping = null;
		for(Object obj : args){
			if(obj instanceof HttpServletRequest){
				request = (HttpServletRequest)obj;
			}
			if(obj instanceof ActionMapping){
				mapping = (ActionMapping)obj;
			}
		}
		HttpSession session = request.getSession(true);
		String user = (String)session.getAttribute("user");
		if(user == null || "".equals(user)){
			session.invalidate();
			ActionMessages errors = new ActionMessages();
			errors.add(ActionMessages.GLOBAL_MESSAGE, new ActionMessage("error.authorization.no"));
			this.saveErrors(request, errors);
			return mapping.findForward("login");
		}else{
			return invocation.proceed();
		}
	}

}