feat: 添加从SecurityContext获取认证信息方法

Author: cadecode

framework/src/main/java/top/cadecode/uniboot/framework/security/TokenAuthHolder.java

@@ -6,7 +6,10 @@
 import cn.hutool.jwt.JWT;
 import lombok.Data;
 import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.stereotype.Component;
+import top.cadecode.uniboot.system.bean.dto.SysUserDto;
 
 import javax.servlet.http.Cookie;
 import javax.servlet.http.HttpServletRequest;
@@ -135,4 +138,33 @@ public String getTokenFromRequest(HttpServletRequest request) {
         }
         return request.getHeader(getHeader());
     }
+
+    /**
+     * SpringSecurity相关，判断是否认证
+     *
+     * @param authentication Security认证信息
+     * @return token
+     */
+    public boolean isAuthenticated(Authentication authentication) {
+        if (ObjectUtil.isNull(authentication)) {
+            authentication = SecurityContextHolder.getContext().getAuthentication();
+        }
+        return authentication != null && authentication.getPrincipal() instanceof SysUserDto;
+    }
+
+    /**
+     * SpringSecurity相关，取出UserDetails SysUserDto
+     *
+     * @param authentication Security认证信息
+     * @return SysUserDto
+     */
+    public SysUserDto getUserDetails(Authentication authentication) {
+        if (ObjectUtil.isNull(authentication)) {
+            authentication = SecurityContextHolder.getContext().getAuthentication();
+        }
+        if (authentication != null && authentication.getPrincipal() instanceof SysUserDto) {
+            return (SysUserDto) authentication.getPrincipal();
+        }
+        return null;
+    }
 }

framework/src/main/java/top/cadecode/uniboot/framework/security/voter/DataBaseRoleVoter.java

@@ -7,6 +7,7 @@
 import org.springframework.security.web.FilterInvocation;
 import org.springframework.stereotype.Component;
 import org.springframework.util.AntPathMatcher;
+import top.cadecode.uniboot.framework.security.TokenAuthHolder;
 import top.cadecode.uniboot.system.bean.dto.SysUserDto;
 import top.cadecode.uniboot.system.bean.vo.SysApiVo;
 import top.cadecode.uniboot.system.service.SysApiService;
@@ -30,9 +31,11 @@ public class DataBaseRoleVoter extends RoleVoter {
 
     private final SysApiService sysApiService;
 
+    private final TokenAuthHolder tokenAuthHolder;
+
     @Override
     public int vote(Authentication authentication, Object object, Collection<ConfigAttribute> attributes) {
-        if (authentication == null || !(authentication.getPrincipal() instanceof SysUserDto)) {
+        if (!tokenAuthHolder.isAuthenticated(authentication)) {
             return ACCESS_ABSTAIN;
         }
         // 获取请求 url
@@ -41,7 +44,7 @@ public int vote(Authentication authentication, Object object, Collection<ConfigA
         // 获取 api role 的关系列表
         List<SysApiVo> sysApiVos = sysApiService.listSysApiVo();
         // 获取用户角色
-        SysUserDto sysUserDto = (SysUserDto) authentication.getPrincipal();
+        SysUserDto sysUserDto = tokenAuthHolder.getUserDetails(authentication);
         List<String> roles = sysUserDto.getRoles();
         // 获取与 url 相同的配置，不存在与 url 相同配置则使用 ant 风格匹配
         SysApiVo sysApiVo = sysApiVos.stream()