ssyg/SIMS
2
0
Fork 0
mirror of https://github.com/suyiiyii/SIMS.git synced 2025-05-31 11:46:42 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix(JwtInterceptor): 解决登录过期问题

Browse Source 
增加对过期JWT令牌的异常处理,以在访问受限时强制重新认证。在验证失败时抛出服务异常前,捕获并处理TokenExpiredException。
This commit is contained in:
suyiiyii 2024-08-25 19:12:28 +08:00
parent f5efdf8bf4
commit 437b23022c
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/main/java/top/suyiiyii/sims/common/JwtInterceptor.java
View File

@ -1,5 +1,6 @@
package top.suyiiyii.sims.common;
import com.auth0.jwt.exceptions.TokenExpiredException;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import org.springframework.beans.factory.annotation.Value;
@ -41,10 +42,13 @@ public class JwtInterceptor implements HandlerInterceptor {
return true;
}
// 验证 token 的有效性
if (!JwtUtils.verifyToken(token, secret) || JwtUtils.extractUserId(token) == null) {
try {
if (!JwtUtils.verifyToken(token, secret) || JwtUtils.extractUserId(token) == null) {
throw new ServiceException("401", "登录已过期,请重新登录");
}
} catch (TokenExpiredException e) {
throw new ServiceException("401", "登录已过期,请重新登录");
}
// 获取 token 中的 user id
Integer userId = Integer.parseInt(Objects.requireNonNull(JwtUtils.extractUserId(token)));