From 7c2fe18a03ddd19cd6ddff11c2cd6d38f62b3129 Mon Sep 17 00:00:00 2001
From: chen-xin-zhi <3588068430@qq.com>
Date: Mon, 12 May 2025 09:47:02 +0800
Subject: [PATCH] =?UTF-8?q?=E5=88=9D=E6=AD=A5=E5=AE=8C=E6=88=90=E5=B0=8F?=
 =?UTF-8?q?=E7=A8=8B=E5=BA=8F=E6=A8=A1=E5=9D=97?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../promotion/aop/PermissionCheck.java           | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

diff --git a/src/main/java/com/greenorange/promotion/aop/PermissionCheck.java b/src/main/java/com/greenorange/promotion/aop/PermissionCheck.java
index 4fe321f..cb345ba 100644
--- a/src/main/java/com/greenorange/promotion/aop/PermissionCheck.java
+++ b/src/main/java/com/greenorange/promotion/aop/PermissionCheck.java
@@ -1,14 +1,26 @@
 package com.greenorange.promotion.aop;
 
+import com.auth0.jwt.interfaces.DecodedJWT;
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
 import com.greenorange.promotion.annotation.RequiresPermission;
+import com.greenorange.promotion.common.ErrorCode;
+import com.greenorange.promotion.exception.ThrowUtils;
+import com.greenorange.promotion.model.entity.UserInfo;
+import com.greenorange.promotion.model.enums.UserRoleEnum;
 import com.greenorange.promotion.service.userInfo.UserInfoService;
 import com.greenorange.promotion.utils.JWTUtils;
 import jakarta.annotation.Resource;
+import jakarta.servlet.http.HttpServletRequest;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
 import org.aspectj.lang.ProceedingJoinPoint;
 import org.aspectj.lang.annotation.Around;
 import org.aspectj.lang.annotation.Aspect;
 import org.springframework.stereotype.Component;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.util.Objects;
 
 
 /**
@@ -34,7 +46,7 @@ public class PermissionCheck {
      **/
     @Around("@annotation(requiresPermission)")
     public Object check(ProceedingJoinPoint joinPoint, RequiresPermission requiresPermission) throws Throwable {
-/*        // 获取请求对象
+        // 获取请求对象
         HttpServletRequest request = ((ServletRequestAttributes) Objects.requireNonNull(RequestContextHolder.getRequestAttributes())).getRequest();
         // 接口的权限
         String mustRole = requiresPermission.mustRole();
@@ -64,7 +76,7 @@ public class PermissionCheck {
         // 校验角色
         ThrowUtils.throwIf(UserRoleEnum.USER.equals(userRoleEnum) && !UserRoleEnum.USER.equals(interfaceRoleEnum), ErrorCode.NO_AUTH_ERROR);
         ThrowUtils.throwIf(UserRoleEnum.BAN.equals(userRoleEnum), ErrorCode.NO_AUTH_ERROR, "用户已被封禁");
-        ThrowUtils.throwIf(UserRoleEnum.ADMIN.equals(userRoleEnum) && UserRoleEnum.BOSS.equals(interfaceRoleEnum), ErrorCode.NO_AUTH_ERROR);*/
+        ThrowUtils.throwIf(UserRoleEnum.ADMIN.equals(userRoleEnum) && UserRoleEnum.BOSS.equals(interfaceRoleEnum), ErrorCode.NO_AUTH_ERROR);
 
         return joinPoint.proceed();
     }