From: Tang Cheng Date: Tue, 23 Apr 2019 08:26:34 +0000 (+0800) Subject: 增加了jwt filter 注释 X-Git-Tag: 1.0.0^2~258 X-Git-Url: https://source.supwisdom.com/gerrit/gitweb?a=commitdiff_plain;h=96ce1deea88705fd1c3f26a3dcc523585591ec14;p=epayment%2Ffood_payapi.git 增加了jwt filter 注释 --- diff --git a/src/main/kotlin/com/supwisdom/dlpay/security.kt b/src/main/kotlin/com/supwisdom/dlpay/security.kt index abb1dd7d..20f12070 100644 --- a/src/main/kotlin/com/supwisdom/dlpay/security.kt +++ b/src/main/kotlin/com/supwisdom/dlpay/security.kt @@ -64,6 +64,7 @@ class ApiJwtAuthenticationFilter : OncePerRequestFilter() { if (!it.isPresent) { throw JoseException("JWT has not been register") } + // token 已被设为黑名单 if (it.get().status != TradeDict.JWT_STATUS_NORMAL) { throw JoseException("JWT status error : ${it.get().status}") } @@ -75,6 +76,7 @@ class ApiJwtAuthenticationFilter : OncePerRequestFilter() { } catch (e: InvalidJwtException) { SecurityContextHolder.clearContext() if (e.hasExpired()) { + // jwt 过期后返回 401 apiJwtRepository.deleteById(e.jwtContext.jwtClaims.jwtId) response.sendError(HttpStatus.UNAUTHORIZED.value(), e.message) } else { @@ -82,7 +84,8 @@ class ApiJwtAuthenticationFilter : OncePerRequestFilter() { } } catch (e: JoseException) { SecurityContextHolder.clearContext() - response.sendError(HttpStatus.BAD_REQUEST.value(), e.message) + // jwt 失效后返回 401 + response.sendError(HttpStatus.UNAUTHORIZED.value(), e.message) } } filterChain.doFilter(request, response)