权限处理

2024-03-14 18:45:09 +08:00 · 2024-03-14 18:45:09 +08:00 · 3bde291f0f
commit 3bde291f0f
parent e0df2dcc4e
2 changed files with 3 additions and 1 deletions
--- a/src/main/java/com/jsl/oa/aspect/AuthControllerAspect.java
+++ b/src/main/java/com/jsl/oa/aspect/AuthControllerAspect.java
@ -76,7 +76,8 @@ public class AuthControllerAspect {
            "&& !execution(* com.jsl.oa.controllers.CustomController.*(..)) " +
            "&& !execution(* com.jsl.oa.controllers.InfoController.infoGetHeaderImage(..)) " +
            "&& !execution(* com.jsl.oa.controllers.InfoController.infoGetHeaderUser(..))" +
-            "&& !execution(* com.jsl.oa.controllers.ProjectController.projectGetCustom(..))")
+            "&& !execution(* com.jsl.oa.controllers.ProjectController.*(..))" +
+            "&& !execution(* com.jsl.oa.controllers.TagController.*(..))")
    public Object tokenControllerAround(ProceedingJoinPoint pjp) throws Throwable {
        // 获取 HttpServletRequest 对象
        HttpServletRequest request = ((ServletRequestAttributes) Objects.requireNonNull(RequestContextHolder.getRequestAttributes())).getRequest();
--- a/src/main/java/com/jsl/oa/config/shiro/ShiroConfiguration.java
+++ b/src/main/java/com/jsl/oa/config/shiro/ShiroConfiguration.java
@ -67,6 +67,7 @@ public class ShiroConfiguration {
        filterChainDefinitionMap.put("/tags/project/list", "anon"); // 信息接口允许匿名访问
        filterChainDefinitionMap.put("/**/**", "authc"); // 其他接口一律拦截(需要Token)

+
        return filterChainDefinitionMap;
    }
 }