fix(X-Pack): CAS登录session过期后系统未退出

2024-09-20 16:08:07 +08:00 · 2024-09-20 16:08:07 +08:00 · 7936afbf0d
commit 7936afbf0d
parent ecc61aca44
2 changed files with 15 additions and 1 deletions
--- a/core/backend/src/main/java/io/dataease/auth/config/cas/CasStrategy.java
+++ b/core/backend/src/main/java/io/dataease/auth/config/cas/CasStrategy.java
@ -86,7 +86,7 @@ public class CasStrategy implements UrlPatternMatcherStrategy {
        try {
            DecodedJWT jwt = JWT.decode(token);
            Claim forShot = jwt.getClaim("forShot");
-            return ObjectUtils.isNotEmpty(forShot) && forShot.asBoolean();
+            return ObjectUtils.isNotEmpty(forShot) && !forShot.isNull() && forShot.asBoolean();
        } catch (Exception e) {
            LogUtil.error(e.getMessage());
            return false;
--- a/core/frontend/src/utils/request.js
+++ b/core/frontend/src/utils/request.js
@ -114,6 +114,7 @@ service.setTimeOut = time => {

 // 请根据实际需求修改
 service.interceptors.response.use(response => {
+  checkCasRedirect(response)
  response.config.loading && tryHideLoading(store.getters.currentPath)
  checkAuth(response)
  Vue.prototype.$currentHttpRequestList.delete(response.config.url)
@ -191,4 +192,17 @@ const checkAuth = response => {
    store.dispatch('user/setLinkToken', linkToken)
  }
 }
+const checkCasRedirect = (response) => {
+  if (!response || !response.data) {
+    return
+  }
+  const resData = response.data
+  const routine = resData.hasOwnProperty('success')
+  const redirectUrl = response?.request?.responseURL
+  if (resData && !routine && resData.startsWith('<!') && redirectUrl?.includes('cas/login')) {
+    store.dispatch('user/logout').finally(() => {
+      location.reload()
+    })
+  }
+}
 export default service