From 983bdb5b89932b38d08a11ad1eed6ea89d1597e1 Mon Sep 17 00:00:00 2001
From: kongzy <kongzy>
Date: 星期一, 29 一月 2024 10:07:31 +0800
Subject: [PATCH] 更新

---
 assess-framework/src/main/java/com/gkhy/assess/framework/shiro/realm/UserRealm.java |   18 +++++++++++++++---
 1 files changed, 15 insertions(+), 3 deletions(-)

diff --git a/assess-framework/src/main/java/com/gkhy/assess/framework/shiro/realm/UserRealm.java b/assess-framework/src/main/java/com/gkhy/assess/framework/shiro/realm/UserRealm.java
index 18ba914..a56af8e 100644
--- a/assess-framework/src/main/java/com/gkhy/assess/framework/shiro/realm/UserRealm.java
+++ b/assess-framework/src/main/java/com/gkhy/assess/framework/shiro/realm/UserRealm.java
@@ -1,5 +1,7 @@
 package com.gkhy.assess.framework.shiro.realm;
 
+import com.gkhy.assess.common.enums.UserIdentityEnum;
+import com.gkhy.assess.common.exception.ApiException;
 import com.gkhy.assess.common.utils.RequestUtil;
 import com.gkhy.assess.common.utils.SpringContextUtils;
 import com.gkhy.assess.framework.shiro.JwtToken;
@@ -37,8 +39,17 @@
         Set<String> roles=new HashSet<>();
         Set<String> menus=new HashSet<>();
         SimpleAuthorizationInfo info=new SimpleAuthorizationInfo();
-        info.addRole("admin");
-        info.addStringPermission("*:*:*");
+        if(sysUser.getIdentity().equals(UserIdentityEnum.MONITOR.getCode())){
+            info.addRole("monitor");
+            info.addStringPermission("system:assess:monitor");
+        }else if(sysUser.getIdentity().equals(UserIdentityEnum.AGENCY.getCode())){
+            info.addRole("agency");
+            info.addStringPermission("system:assess:agency");
+        }else{
+            info.addRole("expert");
+            info.addStringPermission("system:assess:expert");
+        }
+
         return info;
     }
 
@@ -50,11 +61,12 @@
      */
     @Override
     protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
+        HttpServletRequest req = SpringContextUtils.getHttpServletRequest();
         SysUser sysUser=null;
         if(authenticationToken instanceof JwtToken){
             String token= (String) authenticationToken.getCredentials();
             if(token==null){
-                HttpServletRequest req = SpringContextUtils.getHttpServletRequest();
+
                 log.info("————————身份认证失败——————————IP地址:  "+ RequestUtil.getRequestIp(req) +"，URL:"+req.getRequestURI());
                 throw new AuthenticationException("token为空!");
             }

--
Gitblit v1.9.2