java 中用户访问权限（spring 权限管理）

// AuthorityInterceptor.java 文件
package com.aptech.jb.epet.web.authority;
import javax.servlet.http.HttpServletRequest;
import org.aopalliance.intercept.MethodInterceptor;
import org.aopalliance.intercept.MethodInvocation;
import org.apache.struts.action.ActionMapping;
public class AuthorityInterceptor implements MethodInterceptor {
 public Object invoke(MethodInvocation methodInvocation) throws Throwable {
  System.out.println("=============AuthorityInterceptor==="+methodInvocation.getMethod().getName());
  HttpServletRequest request=null;
  ActionMapping mapping=null;
  Object [] args=methodInvocation.getArguments();
  for(int i=0;i<args.length;i++){
   //左边是否是右边的一实例
   if(args[i] instanceof HttpServletRequest)
    request=(HttpServletRequest) args[i];
   if(args[i] instanceof ActionMapping)
    mapping=(ActionMapping) args[i];
   
  }
  if(request.getSession().getAttribute("CURRENT_PET")!=null){
   return methodInvocation.proceed();
  }else{
   return mapping.findForward("index");
  }
  
 }
}
------------------------------------------------------------------------
------------------spring 配置文件如下------------------
-----authorityInterceptor 为 AuthorityInterceptor 的实例。
<!-- 自动创建权限代理 -->
 <bean
  class="org.springframework.aop.framework.autoproxy.BeanNameAutoProxyCreator">
  <property name="beanNames">0
   <list>
    <value>/pet</value>
    <value>/diary</value> //不能包含当前登录Action path 路径
   </list>
  </property>
  
  <property name="interceptorNames">
 &n