feat(security): IPermissionUrlService 添加 ignoreCheck 方法

Author: andanyoung

…authorization/IPermissionUriService.java …authorization/IPermissionUrlService.javasecurity-spring-boot-starter/src/main/java/com/admin4j/framework/security/authorization/IPermissionUriService.java renamed to security-spring-boot-starter/src/main/java/com/admin4j/framework/security/authorization/IPermissionUrlService.java security-spring-boot-starter/src/main/java/com/admin4j/framework/security/authorization/IPermissionUriService.java renamed to security-spring-boot-starter/src/main/java/com/admin4j/framework/security/authorization/IPermissionUrlService.java

@@ -8,8 +8,18 @@
  * @author andanyang
  * @since 2023/12/19 14:34
  */
-public interface IPermissionUriService {
+public interface IPermissionUrlService {
 
+    /**
+     * 是否忽略 检查权限
+     * 例如 admin、管理员可以直接忽略检查拥有全部权限
+     *
+     * @return
+     */
+    default boolean ignoreCheck() {
+        return false;
+    }
+    
     /**
      * 获取 系统 所有的 PermissionUri
      *
@@ -23,4 +33,6 @@ public interface IPermissionUriService {
      * @return
      */
     List<HttpUrlPermission> getMyPermissionUrls();
+
+
 }

security-spring-boot-starter/src/main/java/com/admin4j/framework/security/authorization/PermissionAuthorizationManager.java

@@ -29,7 +29,7 @@ public class PermissionAuthorizationManager implements AuthorizationManager<Requ
      */
     protected static final AuthorizationDecision UN_AUTHORIZED = new AuthorizationDecision(false);
 
-    protected final IPermissionUriService permissionUriService;
+    protected final IPermissionUrlService permissionUriService;
 
     protected AntPathMatcher antPathMatcher = new AntPathMatcher();
 
@@ -43,6 +43,10 @@ public class PermissionAuthorizationManager implements AuthorizationManager<Requ
     @Override
     public AuthorizationDecision check(Supplier<Authentication> authentication, RequestAuthorizationContext object) {
 
+        if (ignoreCheck()) {
+            return GRANTED;
+        }
+
         // 获取当前请求的 URL 地址
         String requestURI = object.getRequest().getRequestURI();
         String method = object.getRequest().getMethod();
@@ -55,6 +59,17 @@ public AuthorizationDecision check(Supplier<Authentication> authentication, Requ
         return urlNeedPermission(requestURI, method) ? UN_AUTHORIZED : GRANTED;
     }
 
+    /**
+     * 是否忽略 检查权限
+     * 例如 admin、管理员可以直接忽略检查拥有全部权限
+     *
+     * @return
+     */
+    protected boolean ignoreCheck() {
+
+        return permissionUriService.ignoreCheck();
+    }
+
     /**
      * url 是否需要授权
      * TODO 放在 service 立马

security-spring-boot-starter/src/main/java/com/admin4j/framework/security/configuration/PermissionAutoConfiguration.java

@@ -1,6 +1,6 @@
 package com.admin4j.framework.security.configuration;
 
-import com.admin4j.framework.security.authorization.IPermissionUriService;
+import com.admin4j.framework.security.authorization.IPermissionUrlService;
 import com.admin4j.framework.security.authorization.PermissionAuthorizationManager;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnBean;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
@@ -10,12 +10,12 @@
  * @author andanyang
  * @since 2023/12/19 14:40
  */
-@ConditionalOnBean(IPermissionUriService.class)
+@ConditionalOnBean(IPermissionUrlService.class)
 @ConditionalOnMissingBean(PermissionAuthorizationManager.class)
 public class PermissionAutoConfiguration {
 
     @Bean
-    public PermissionAuthorizationManager permissionAuthorizationManager(IPermissionUriService permissionUriService) {
+    public PermissionAuthorizationManager permissionAuthorizationManager(IPermissionUrlService permissionUriService) {
 
         return new PermissionAuthorizationManager(permissionUriService);
     }