权限为空问题处理

2021-08-06 11:46:23 +08:00 · 2021-08-06 11:46:23 +08:00 · e01586b394
commit e01586b394
parent ba81cc5ece
2 changed files with 3 additions and 1 deletions
--- a/framework/src/main/java/cn/lili/modules/system/token/ManagerTokenGenerate.java
+++ b/framework/src/main/java/cn/lili/modules/system/token/ManagerTokenGenerate.java
@ -77,7 +77,7 @@ public class ManagerTokenGenerate extends AbstractTokenGenerate {
        //循环权限菜单
        userMenuVOList.forEach(menu -> {
            //循环菜单，赋予用户权限
-            if (menu.getPermission() != null) {
+            if (!menu.getPermission().isEmpty()) {
                //获取路径集合
                String[] permissionUrl = menu.getPermission().split(",");
                //for循环路径集合
--- a/manager-api/src/main/java/cn/lili/security/ManagerAuthenticationFilter.java
+++ b/manager-api/src/main/java/cn/lili/security/ManagerAuthenticationFilter.java
@ -84,7 +84,9 @@ public class ManagerAuthenticationFilter extends BasicAuthenticationFilter {

        //如果不是超级管理员， 则鉴权
        if (!authUser.getIsSuper()) {
+            //获取缓存中的权限
            Map<String, List<String>> permission = (Map<String, List<String>>) cache.get(CachePrefix.PERMISSION_LIST.getPrefix(UserEnums.MANAGER) + authUser.getId());
+
            //获取数据(GET 请求)权限
            if (request.getMethod().equals(RequestMethod.GET.name())) {
                //如果用户的超级权限和查阅权限都不包含当前请求的api