1. @Controller
    2. @RequestMapping("order")
    3. public class OrderController {
    5.     @RequestMapping("save")
    6.     public String save(){
    7.         System.out.println("进入方法");
    8.         //获取主体对象
    9.         Subject subject = SecurityUtils.getSubject();
    10.         //代码方式
    11.         if (subject.hasRole("admin")) {
    12.             System.out.println("保存订单!");
    13.         } else {
    14.             System.out.println("无权访问");
    15.         }
    16.         return "redirect:/index.jsp";
    17.     }
    18. }