37 lines
1.4 KiB
Java
37 lines
1.4 KiB
Java
package com.rymcu.vertical.config;
|
|
|
|
import org.apache.shiro.web.servlet.ShiroHttpServletRequest;
|
|
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
|
|
import org.apache.shiro.web.util.WebUtils;
|
|
import org.springframework.util.StringUtils;
|
|
|
|
import javax.servlet.ServletRequest;
|
|
import javax.servlet.ServletResponse;
|
|
import java.io.Serializable;
|
|
|
|
public class HpeisSessionManager extends DefaultWebSessionManager {
|
|
private static final String AUTHORIZATION = "Authorization";
|
|
|
|
private static final String REFERENCED_SESSION_ID_SOURCE = "Stateless request";
|
|
|
|
public HpeisSessionManager() {
|
|
super();
|
|
}
|
|
|
|
@Override
|
|
protected Serializable getSessionId(ServletRequest request, ServletResponse response) {
|
|
String id = WebUtils.toHttp(request).getHeader(AUTHORIZATION);
|
|
// 如果请求头中有 Authorization 则其值为 sessionId
|
|
if (!StringUtils.isEmpty(id)) {
|
|
request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID_SOURCE, REFERENCED_SESSION_ID_SOURCE);
|
|
request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID, id);
|
|
request.setAttribute(ShiroHttpServletRequest.REFERENCED_SESSION_ID_IS_VALID, Boolean.TRUE);
|
|
|
|
return id;
|
|
} else {
|
|
// 否则按默认规则从 cookie 取 sessionId
|
|
return super.getSessionId(request, response);
|
|
}
|
|
}
|
|
}
|