From 406f20f7cb19f0fe8bf857f9af672355f38eaa5d Mon Sep 17 00:00:00 2001 From: cuijiawang Date: Thu, 23 Oct 2025 17:30:00 +0800 Subject: [PATCH] =?UTF-8?q?fix(gateway):=20=E6=B3=A8=E9=87=8A=E6=8E=89?= =?UTF-8?q?=E5=AE=A2=E6=88=B7=E7=AB=AFID=E4=B8=8EToken=E5=8C=B9=E9=85=8D?= =?UTF-8?q?=E6=A3=80=E6=9F=A5=E9=80=BB=E8=BE=91-=20=E4=B8=B4=E6=97=B6?= =?UTF-8?q?=E6=B3=A8=E9=87=8A=E6=8E=89Sa-Token=E4=B8=AD=E7=9A=84=E5=AE=A2?= =?UTF-8?q?=E6=88=B7=E7=AB=AFID=E4=B8=8EToken=E5=8C=B9=E9=85=8D=E6=A3=80?= =?UTF-8?q?=E6=9F=A5=E4=BB=A3=E7=A0=81=20-=20=E4=BF=9D=E7=95=99=E5=8E=9F?= =?UTF-8?q?=E6=9C=89=E7=99=BB=E5=BD=95=E6=A0=A1=E9=AA=8C=E9=80=BB=E8=BE=91?= =?UTF-8?q?=20-=20=E4=B8=BA=E5=90=8E=E7=BB=AD=E9=87=8D=E6=96=B0=E8=AE=BE?= =?UTF-8?q?=E8=AE=A1=E5=AE=A2=E6=88=B7=E7=AB=AF=E8=AE=A4=E8=AF=81=E6=9C=BA?= =?UTF-8?q?=E5=88=B6=E5=81=9A=E5=87=86=E5=A4=87?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../gateway/config/SaTokenConfig.java | 33 ++++++++++--------- 1 file changed, 17 insertions(+), 16 deletions(-) diff --git a/wol-gateway/src/main/java/com/agileboot/gateway/config/SaTokenConfig.java b/wol-gateway/src/main/java/com/agileboot/gateway/config/SaTokenConfig.java index 288dde8..4135cdc 100644 --- a/wol-gateway/src/main/java/com/agileboot/gateway/config/SaTokenConfig.java +++ b/wol-gateway/src/main/java/com/agileboot/gateway/config/SaTokenConfig.java @@ -35,22 +35,23 @@ public class SaTokenConfig { .setAuth(obj -> { // 登录校验 -- 拦截所有路由 SaRouter.match("/**", "/auth/login", StpUtil::checkLogin) - .check(r -> { - ServerHttpRequest request = SaReactorSyncHolder.getExchange().getRequest(); - // 检查是否登录 是否有token - StpUtil.checkLogin(); - - // 检查 header 与 param 里的 clientid 与 token 里的是否一致 - String headerCid = request.getHeaders().getFirst(LoginHelper.CLIENT_KEY); - String paramCid = request.getQueryParams().getFirst(LoginHelper.CLIENT_KEY); - String clientId = StpUtil.getExtra(LoginHelper.CLIENT_KEY).toString(); - if (!StringUtils.equalsAny(clientId, headerCid, paramCid)) { - // token 无效 - throw NotLoginException.newInstance(StpUtil.getLoginType(), - "-100", "客户端ID与Token不匹配", - StpUtil.getTokenValue()); - } - }); +// .check(r -> { +// ServerHttpRequest request = SaReactorSyncHolder.getExchange().getRequest(); +// // 检查是否登录 是否有token +// StpUtil.checkLogin(); +// +// // 检查 header 与 param 里的 clientid 与 token 里的是否一致 +// String headerCid = request.getHeaders().getFirst(LoginHelper.CLIENT_KEY); +// String paramCid = request.getQueryParams().getFirst(LoginHelper.CLIENT_KEY); +// String clientId = StpUtil.getExtra(LoginHelper.CLIENT_KEY).toString(); +// if (!StringUtils.equalsAny(clientId, headerCid, paramCid)) { +// // token 无效 +// throw NotLoginException.newInstance(StpUtil.getLoginType(), +// "-100", "客户端ID与Token不匹配", +// StpUtil.getTokenValue()); +// } +// }) + ; }).setError(e -> { if (e instanceof NotLoginException) { return SaResult.error(e.getMessage()).setCode(HttpStatus.UNAUTHORIZED);