Zhiqim Manager(知启蒙管理台)是知启蒙框架中最核心的基础组件,大部分后台组件和产品都依赖该组件。因为管理台提供了核心的系统配置、菜单、操作员、部门、角色等权限功能,以及6种皮肤样式可供选择
ZmrInterceptor.java4KB
/*
* 版权所有 (C) 2015 知启蒙(ZHIQIM) 保留所有权利。[遇见知启蒙,邂逅框架梦]
*
* https://zhiqim.org/project/zhiqim_components/zhiqim_manager.htm
*
* Zhiqim Manager is licensed under Mulan PSL v2.
* You can use this software according to the terms and conditions of the Mulan PSL v2.
* You may obtain a copy of Mulan PSL v2 at:
* http://license.coscl.org.cn/MulanPSL2
* THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
* EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
* MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
* See the Mulan PSL v2 for more details.
*/
package org.zhiqim.manager;
import org.zhiqim.httpd.HttpRequest;
import org.zhiqim.httpd.context.ZmlContexts;
import org.zhiqim.httpd.context.core.Interceptor;
import org.zhiqim.kernel.annotation.AnAlias;
import org.zhiqim.kernel.util.Strings;
import org.zhiqim.kernel.util.Validates;
import org.zhiqim.manager.dao.ZmrParamDao;
/**
* 检查是否登录拦截器
*
* @version v1.0.0 @author zouzhigang 2015-5-28 新建与整理
*/
@AnAlias("chkZmrLogin")
public class ZmrInterceptor implements Interceptor, ZmrConstants
{
private String mainUrl;
public void intercept(HttpRequest request) throws Exception
{
if (mainUrl == null)
{//主页地址
this.mainUrl = ZmlContexts.parseZmlContent(request, ZMR_MAIN_URL_DEFAULT);
}
if (_PATH_SERVICE_AJAX_.equals(request.getPathInContext()))
{//AJAX访问
chkAjax(request);
}
else
{//URL访问
chkUrl(request);
}
}
/** AJAX访问 */
private void chkAjax(HttpRequest request) throws Exception
{
if (!request.isXMLHttpRequest())
{
request.setResponseError("您闲置太久或未登录,请重新登录后再操作...");
return;
}
ZmrSessionUser sessionUser = request.getSessionUser(ZmrSessionUser.class);
if (sessionUser == null)
{//会话超时
request.setResponseError("您闲置太久或未登录,请重新登录后再操作...");
return;
}
String path = request.getPathInRMI();
if (Validates.isEmpty(path))
{//没有配置权限路径
return;
}
path = ZmlContexts.parseZmlContent(request, path);
if (!sessionUser.hasMenuRule(path))
{//没有权限
request.setResponseError("您没有该权限,请与管理员联系...");
return;
}
}
/** URL访问 */
private void chkUrl(HttpRequest request)
{
ZmrSessionUser sessionUser = request.getSessionUser(ZmrSessionUser.class);
if (sessionUser == null)
{//会话超时
request.setRedirectTop("/"+request.getContextAttributeString(ZMR_PATH)+"/logout.htm", "您闲置太久或未登录,正在返回初始界面,请确定.....");
return;
}
String path = request.getPathInContext();
if (sessionUser.hasAllRule(path))
{//在所有菜单中的,要检查是否有权限
if (!sessionUser.hasMenuRule(path))
{//没有权限
request.setRedirectTop("/"+request.getContextAttributeString(ZMR_PATH)+"/logout.htm", "您没有该权限,请与管理员联系...");
return;
}
}
if (!ZmrParamDao.isThemeFrame())
{//非框架模式结束检查
return;
}
if (!_GET_.equalsIgnoreCase(request.getMethod()) || !ZMR_TEMPLATE_MAIN.equals(request.getView()))
{//非GET方法和没使用主模板的请求不处理
return;
}
if (!Strings.endsWith(path, ".htm") && !Strings.endsWith(path, ".zml"))
{//不是.htm/.zml结尾的不处理
return;
}
if (mainUrl.equals(path) || "/manager/welcome.htm".equals(path))
{//主页不处理
return;
}
//其他认为是内部页,设置到会话中,以便F5刷新恢复
sessionUser.setIncludeUrl(request.getRequestURI());
}
}