配置拦截器

c24697fd · sin · 56b8a053 · c24697fd · c24697fd · c24697fd
--- a/order/order-application/pom.xml
+++ b/order/order-application/pom.xml
@@ -27,6 +27,11 @@
            <artifactId>admin-sdk</artifactId>
            <version>1.0-SNAPSHOT</version>
        </dependency>
+        <dependency>
+            <groupId>cn.iocoder.mall</groupId>
+            <artifactId>user-sdk</artifactId>
+            <version>1.0-SNAPSHOT</version>
+        </dependency>
        <dependency>
            <groupId>cn.iocoder.mall</groupId>
            <artifactId>common-framework</artifactId>

--- a/order/order-application/src/main/java/cn/iocoder/mall/order/application/config/MVCConfiguration.java
+++ b/order/order-application/src/main/java/cn/iocoder/mall/order/application/config/MVCConfiguration.java
 package cn.iocoder.mall.order.application.config;
+import cn.iocoder.common.framework.config.GlobalExceptionHandler;
+import cn.iocoder.common.framework.servlet.CorsFilter;
+import cn.iocoder.mall.admin.sdk.interceptor.AdminSecurityInterceptor;
+import cn.iocoder.mall.user.sdk.interceptor.UserAccessLogInterceptor;
+import cn.iocoder.mall.user.sdk.interceptor.UserSecurityInterceptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.web.servlet.FilterRegistrationBean;
+import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Import;
 import org.springframework.web.servlet.config.annotation.*;
 @EnableWebMvc
 @Configuration
+@Import(value = {GlobalExceptionHandler.class,  // 统一全局返回
+        UserSecurityInterceptor.class, AdminSecurityInterceptor.class,
+        UserAccessLogInterceptor.class}) // 安全拦截器，实现认证和授权功能。
 public class MVCConfiguration implements WebMvcConfigurer {
 //    @Autowired
@@ -13,9 +25,28 @@ public class MVCConfiguration implements WebMvcConfigurer {
 //    @Reference
 //    private OAuth2Service oauth2Service;
+    @Autowired
+    private UserSecurityInterceptor userSecurityInterceptor;
+    @Autowired
+    private UserAccessLogInterceptor userAccessLogInterceptor;
+    @Autowired
+    private AdminSecurityInterceptor adminSecurityInterceptor;
    @Override
    public void addInterceptors(InterceptorRegistry registry) {
-//        registry.addInterceptor(securityInterceptor);
+        // 用户
+        registry.addInterceptor(userAccessLogInterceptor).addPathPatterns("/users/**");
+        registry.addInterceptor(userSecurityInterceptor).addPathPatterns("/users/**"); // 只拦截我们定义的接口
+        // 管理员
+        registry.addInterceptor(adminSecurityInterceptor).addPathPatterns("/admins/**"); // 只拦截我们定义的接口
+    }
+    @Bean
+    public FilterRegistrationBean<CorsFilter> corsFilter() {
+        FilterRegistrationBean<CorsFilter> registrationBean = new FilterRegistrationBean<>();
+        registrationBean.setFilter(new CorsFilter());
+        registrationBean.addUrlPatterns("/*");
+        return registrationBean;
    }
 //    @Override

--- a/order/order-application/src/main/resources/application.yaml
+++ b/order/order-application/src/main/resources/application.yaml
@@ -4,6 +4,6 @@ spring:
 # server
 server:
-  port: 18084
+  port: 18088
  servlet:
    context-path: /order-api/