java source code of RoleOrAuthorizationFilter

Project: layui-admin (GitHub Link)

layui-admin-master
- src
  - main
    - resources
      - sql
        oracle版本
        初始化存储过程.sql
        角色表.sql
        组织机构表.sql
        菜单角色表.sql
        用户表.sql
        访问权限表.sql
        应用日志表.sql
        菜单表.sql
        用户角色表.sql
        mysql版本
        layuiadmin初始化定时任务.sql
        lauiadmin初始化存储过程.sql
        layui-admin建表语句mysql版本.sql
      - application.yml
      - applicationContext-profile.xml
      - logback.xml
      - applicationContext-springmvc.xml
      - config
        config_.properties
        config_uat.properties
      - applicationContext.xml
      - applicationContext-security.xml
      - applicationContext-datasource.xml
      - mapper
        SysOperLogTestMapper.xml
        SysUserRoleTestMapper.xml
        SysMenuRoleTestMapper.xml
        SysRoleTestMapper.xml
        SysOrganizeTestMapper.xml
        UserMapper.xml
        SysMenuTestMapper.xml
        SysAccessPermissionTestMapper.xml
      - mybatis-config.xml
    - java
      - com
        gameloft9
        demo
        security
        RoleOrAuthorizationFilter.java
        ShiroRealm.java
        ShiroConfig.java
        ShiroConfigService.java
        utils
        PropertyUtil.java
        UUIDUtil.java
        PasswordUtil.java
        SpringContextUtil.java
        Constants.java
        NumberUtil.java
        VCodeUtil.java
        FileUtil.java
        DateUtil.java
        ShiroFilterSortUtil.java
        SHA1.java
        dataaccess
        dao
        system
        SysRoleTestMapper.java
        UserMapper.java
        SysOperLogTestMapper.java
        SysAccessPermissionTestMapper.java
        SysMenuRoleTestMapper.java
        SysMenuTestMapper.java
        SysUserRoleTestMapper.java
        SysOrganizeTestMapper.java
        interceptor
        DialectStatementHandlerInterceptor.java
        model
        readme.txt
        system
        SysOrganizeTest.java
        UserTest.java
        SysMenuRoleTest.java
        SysMenuTest.java
        SysUserRoleTest.java
        SysOperLogTest.java
        SysAccessPermissionTest.java
        SysRoleTest.java
        service
        impl
        system
        SysOrgServiceImpl.java
        LoginServiceImpl.java
        SysAccessPermissionServiceImpl.java
        VCodeServiceImpl.java
        SysRoleServiceImpl.java
        SysOperLogServiceImpl.java
        SysMenuServiceImpl.java
        SysUserServiceImpl.java
        beans
        readme.txt
        system
        OrgNodeResponse.java
        PageRange.java
        MenuTreeResponse.java
        UserUpdateRequest.java
        LogBatchDelRequest.java
        SysUserResponse.java
        LoginResponse.java
        SysMenuTestExtend.java
        UserAddRequest.java
        MenuUpdateRequest.java
        api
        system
        SysMenuService.java
        SysOperLogService.java
        SysOrgService.java
        LoginService.java
        SysRoleService.java
        SysUserService.java
        VCodeService.java
        SysAccessPermissionService.java
        controllers
        system
        LoginController.java
        SysUserController.java
        SysMenuController.java
        UploadController.java
        SysLogController.java
        PersonCenterController.java
        SysRoleController.java
        SysOrgController.java
        VCodeController.java
        mgrframework
        utils
        ModelUtil.java
        IPUtil.java
        UserInfoUtil.java
        CheckUtil.java
        beans
        error
        IErrCode.java
        response
        IResult.java
        ResultBean.java
        PageResultBean.java
        AbstractResult.java
        constant
        OperType.java
        modelview
        ModelView.java
        filters
        UserFilter.java
        aop
        ControllerAOP.java
        annotation
        BizOperLog.java
        exceptions
        BizException.java
        CheckException.java
        UnloginException.java
        handler
        ExceptionHandler.java
        LayuiAdminStartUp.java
    - webapp
      - WEB-INF
        META-INF
        MANIFEST.MF
        web.xml
      - layuicms
        page
        main.html
        main.js
        system
        personCenter
        changePwd.html
        userInfo.html
        userInfo.js
        changePwd.js
        sysOrg
        addOrg.js
        addOrg.html
        allOrgs.js
        allOrgs.html
        401.html
        sysRole
        addRole.html
        editRole.html
        allRoles.html
        editRole.js
        allRoles.js
        addRole.js
        sysLog
        allLogs.html
        allLogs.js
        404.html
        sysMenu
        allMenus.html
        addMenu.js
        editMenu.js
        addMenu.html
        editMenu.html
        allMenus.js
        sysUser
        editUser.html
        addUser.js
        allUsers.html
        addUser.html
        editUser.js
        allUsers.js
        dashang.html
        common
        images
        face.jpg
        wxpay.jpg
        alipay.jpg
        js
        tool.js
        leftNav.js
        ajaxExtention.js
        api.js
        bodyTab.js
        css
        main.css
        login.css
        user.css
        lib
        layui
        version.txt
        images
        face
        43.gif
        30.gif
        47.gif
        28.gif
        8.gif
        7.gif
        71.gif
        11.gif
        21.gif
        49.gif
        67.gif
        50.gif
        0.gif
        59.gif
        55.gif
        32.gif
        46.gif
        5.gif
        16.gif
        6.gif
        15.gif
        27.gif
        18.gif
        52.gif
        34.gif
        35.gif
        31.gif
        33.gif
        4.gif
        29.gif
        14.gif
        19.gif
        58.gif
        60.gif
        57.gif
        42.gif
        12.gif
        40.gif
        54.gif
        3.gif
        2.gif
        26.gif
        66.gif
        37.gif
        13.gif
        1.gif
        25.gif
        69.gif
        36.gif
        10.gif
        17.gif
        61.gif
        24.gif
        56.gif
        51.gif
        9.gif
        44.gif
        45.gif
        23.gif
        48.gif
        22.gif
        64.gif
        38.gif
        20.gif
        53.gif
        65.gif
        68.gif
        70.gif
        63.gif
        62.gif
        41.gif
        39.gif
        lay
        modules
        carousel.js
        jquery.js
        laytpl.js
        util.js
        laydate.js
        code.js
        element.js
        table.js
        upload.js
        layer.js
        laypage.js
        form.js
        mobile.js
        tree.js
        flow.js
        layedit.js
        font
        iconfont.eot
        iconfont.ttf
        iconfont.woff
        css
        layui.css
        modules
        layer
        default
        loading-0.gif
        layer.css
        loading-1.gif
        loading-2.gif
        laydate
        default
        laydate.css
        code.css
        layui.mobile.css
        layui.js
        jquery-2.2.4
        测试用.txt
        sha1
        sha1.js
        filedownload
        readme.txt
        filedownload.js
        config
        config.js
        favicon.ico
        login.js
        index.html
        .idea
        modules.xml
        layuicms.iml
        .name
        misc.xml
        workspace.xml
        vcs.xml
        index.js
        login.html
- pom.xml
- LICENSE
- README.md

package com.gameloft9.demo.security;

import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.filter.authz.AuthorizationFilter;

import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;

/**
 * shiro的url定义中的roles参数，必须满足所有角色才通过(也就是and关系)
 * 这里自定义一个权限满足角色之一的Or关系的filter
 * Created by gameloft9 on 2018/7/23.
 */
public class RoleOrAuthorizationFilter extends AuthorizationFilter {

    @Override
    protected boolean isAccessAllowed(ServletRequest request,
                                      ServletResponse response, Object mappedValue) throws Exception {
        Subject subject = getSubject(request, response);
        String[] rolesArray = (String[]) mappedValue;

        if (rolesArray == null || rolesArray.length == 0) {
            return true;
        }

        for(int i=0;i<rolesArray.length;i++) {
            if(subject.hasRole(rolesArray[i])) { // 有一个满足即可
                return true;
            }
        }

        return false;
    }
}