From ae6e7fef814a52f3d9643426ffca3e935ddd2efb Mon Sep 17 00:00:00 2001
From: MaxKey <shimingxy@qq.com>
Date: Tue, 21 Mar 2023 17:28:11 +0800
Subject: [PATCH] Update RequestTokenUtils.java

---
 .../java/org/maxkey/util/RequestTokenUtils.java    | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/maxkey-common/src/main/java/org/maxkey/util/RequestTokenUtils.java b/maxkey-common/src/main/java/org/maxkey/util/RequestTokenUtils.java
index 792c2c102..e17e92adc 100644
--- a/maxkey-common/src/main/java/org/maxkey/util/RequestTokenUtils.java
+++ b/maxkey-common/src/main/java/org/maxkey/util/RequestTokenUtils.java
@@ -18,14 +18,22 @@ import org.apache.commons.lang3.StringUtils;
 
 public class RequestTokenUtils {
 	
+	public static String TOKEN 			= "token";
+	
+	public static String ACCESS_TOKEN 	= "access_token";
 	/**
-	 * resolveAccessToken
+	 * 从请求中获取token令牌信息,优先级顺序如下  
+	 * <p>
+	 *  1) 参数 access_token <br/>
+	 *  2) header 的Authorization或者authorization <br/>
+	 *  3) 参数 token <br/>
+	 * </p>
 	 * 
 	 * @param request
 	 * @return access_token
 	 */
 	public static String resolveAccessToken(HttpServletRequest request) {
-		String access_token = request.getParameter("access_token");
+		String access_token = request.getParameter(ACCESS_TOKEN);
 		
 		if(StringUtils.isBlank(access_token)) {
 	    	//for header authorization bearer
@@ -33,7 +41,7 @@ public class RequestTokenUtils {
 	    }
 		
 		if(StringUtils.isBlank(access_token)) {
-			access_token = request.getParameter("token");
+			access_token = request.getParameter(TOKEN);
 		}
 		return access_token;
 	}