仅验证权限

  1. @PermissionScope(permissionKey = "ZZZZJG001")

特定值的数据范围验证

  1. @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKey = {"31", "32"})

参数值的数据范围验证

路径参数

  1. @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "organizationId", scopeKeyParameterType = PermissionScope.ParameterType.PATH)

请求参数

  1. @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "organizationId", scopeKeyParameterType = PermissionScope.ParameterType.QUERY)

头部参数

  1. @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "X-NXCloud-AAAA", scopeKeyParameterType = PermissionScope.ParameterType.HEADER)

参数变换

即请求参数中获取的是 A 参数,经过注解标记后使用特定的转换器转换成 B 参数,由 B 参数类型的数据范围验证器进行验证。

  1. @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "userId", scopeKeyParameterType = PermissionScope.ParameterType.QUERY, transform="userId")

多个验证规则(与)

  1. @PermissionScopes(
  2.     value = {
  3.         @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "organizationId", scopeKeyParameterType = PermissionScope.ParameterType.PATH)
  4.     },
  5.     logical = Logical.AND
  6. )

多个验证规则(或)

  1. @PermissionScopes(
  2.     value = {
  3.         @PermissionScope(permissionKey = "ZZZZJG001", scopeType = ScopeConstants.SCOPE_TYPE_ORG, scopeKeyParameter = "organizationId", scopeKeyParameterType = PermissionScope.ParameterType.PATH)
  4.     },
  5.     logical = Logical.OR
  6. )