| | |
|---|
| | | import lombok.extern.slf4j.Slf4j; |
|---|
| | | import org.dromara.common.core.constant.Constants; |
|---|
| | | import org.dromara.common.core.constant.GlobalConstants; |
|---|
| | | import org.dromara.common.core.domain.model.LoginBody; |
|---|
| | | import org.dromara.common.core.domain.model.LoginUser; |
|---|
| | | import org.dromara.common.core.domain.model.PasswordLoginBody; |
|---|
| | | import org.dromara.common.core.enums.LoginType; |
|---|
| | | import org.dromara.common.core.enums.UserStatus; |
|---|
| | | import org.dromara.common.core.exception.user.CaptchaException; |
|---|
| | |
|---|
| | | import org.dromara.common.core.utils.MessageUtils; |
|---|
| | | import org.dromara.common.core.utils.StringUtils; |
|---|
| | | import org.dromara.common.core.utils.ValidatorUtils; |
|---|
| | | import org.dromara.common.core.validate.auth.PasswordGroup; |
|---|
| | | import org.dromara.common.json.utils.JsonUtils; |
|---|
| | | import org.dromara.common.redis.utils.RedisUtils; |
|---|
| | | import org.dromara.common.satoken.utils.LoginHelper; |
|---|
| | | import org.dromara.common.tenant.helper.TenantHelper; |
|---|
| | | import org.dromara.common.web.config.properties.CaptchaProperties; |
|---|
| | | import org.dromara.system.domain.SysClient; |
|---|
| | | import org.dromara.system.domain.SysUser; |
|---|
| | | import org.dromara.system.domain.vo.SysClientVo; |
|---|
| | | import org.dromara.system.domain.vo.SysUserVo; |
|---|
| | | import org.dromara.system.mapper.SysUserMapper; |
|---|
| | | import org.dromara.web.domain.vo.LoginVo; |
|---|
| | |
|---|
| | | private final SysUserMapper userMapper; |
|---|
| | | |
|---|
| | | @Override |
|---|
| | | public void validate(LoginBody loginBody) { |
|---|
| | | ValidatorUtils.validate(loginBody, PasswordGroup.class); |
|---|
| | | } |
|---|
| | | |
|---|
| | | @Override |
|---|
| | | public LoginVo login(String clientId, LoginBody loginBody, SysClient client) { |
|---|
| | | public LoginVo login(String body, SysClientVo client) { |
|---|
| | | PasswordLoginBody loginBody = JsonUtils.parseObject(body, PasswordLoginBody.class); |
|---|
| | | ValidatorUtils.validate(loginBody); |
|---|
| | | String tenantId = loginBody.getTenantId(); |
|---|
| | | String username = loginBody.getUsername(); |
|---|
| | | String password = loginBody.getPassword(); |
|---|
| | |
|---|
| | | if (captchaEnabled) { |
|---|
| | | validateCaptcha(tenantId, username, code, uuid); |
|---|
| | | } |
|---|
| | | |
|---|
| | | SysUserVo user = loadUserByUsername(tenantId, username); |
|---|
| | | loginService.checkLogin(LoginType.PASSWORD, tenantId, username, () -> !BCrypt.checkpw(password, user.getPassword())); |
|---|
| | | // 此处可根据登录用户的数据不同 自行创建 loginUser |
|---|
| | | LoginUser loginUser = loginService.buildLoginUser(user); |
|---|
| | | LoginUser loginUser = TenantHelper.dynamic(tenantId, () -> { |
|---|
| | | SysUserVo user = loadUserByUsername(username); |
|---|
| | | loginService.checkLogin(LoginType.PASSWORD, tenantId, username, () -> !BCrypt.checkpw(password, user.getPassword())); |
|---|
| | | // 此处可根据登录用户的数据不同 自行创建 loginUser |
|---|
| | | return loginService.buildLoginUser(user); |
|---|
| | | }); |
|---|
| | | loginUser.setClientKey(client.getClientKey()); |
|---|
| | | loginUser.setDeviceType(client.getDeviceType()); |
|---|
| | | SaLoginModel model = new SaLoginModel(); |
|---|
| | | model.setDevice(client.getDeviceType()); |
|---|
| | | // 自定义分配 不同用户体系 不同 token 授权时间 不设置默认走全局 yml 配置 |
|---|
| | | // 例如: 后台用户30分钟过期 app用户1天过期 |
|---|
| | | model.setTimeout(client.getTimeout()); |
|---|
| | | model.setActiveTimeout(client.getActiveTimeout()); |
|---|
| | | model.setExtra(LoginHelper.CLIENT_KEY, client.getClientId()); |
|---|
| | | // 生成token |
|---|
| | | LoginHelper.login(loginUser, model); |
|---|
| | | |
|---|
| | | loginService.recordLogininfor(loginUser.getTenantId(), username, Constants.LOGIN_SUCCESS, MessageUtils.message("user.login.success")); |
|---|
| | | loginService.recordLoginInfo(user.getUserId()); |
|---|
| | | |
|---|
| | | LoginVo loginVo = new LoginVo(); |
|---|
| | | loginVo.setAccessToken(StpUtil.getTokenValue()); |
|---|
| | | loginVo.setExpireIn(StpUtil.getTokenTimeout()); |
|---|
| | | loginVo.setClientId(clientId); |
|---|
| | | loginVo.setClientId(client.getClientId()); |
|---|
| | | return loginVo; |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | * @param uuid 唯一标识 |
|---|
| | | */ |
|---|
| | | private void validateCaptcha(String tenantId, String username, String code, String uuid) { |
|---|
| | | String verifyKey = GlobalConstants.CAPTCHA_CODE_KEY + StringUtils.defaultString(uuid, ""); |
|---|
| | | String verifyKey = GlobalConstants.CAPTCHA_CODE_KEY + StringUtils.blankToDefault(uuid, ""); |
|---|
| | | String captcha = RedisUtils.getCacheObject(verifyKey); |
|---|
| | | RedisUtils.deleteObject(verifyKey); |
|---|
| | | if (captcha == null) { |
|---|
| | |
|---|
| | | } |
|---|
| | | } |
|---|
| | | |
|---|
| | | private SysUserVo loadUserByUsername(String tenantId, String username) { |
|---|
| | | SysUser user = userMapper.selectOne(new LambdaQueryWrapper<SysUser>() |
|---|
| | | .select(SysUser::getUserName, SysUser::getStatus) |
|---|
| | | .eq(TenantHelper.isEnable(), SysUser::getTenantId, tenantId) |
|---|
| | | .eq(SysUser::getUserName, username)); |
|---|
| | | private SysUserVo loadUserByUsername(String username) { |
|---|
| | | SysUserVo user = userMapper.selectVoOne(new LambdaQueryWrapper<SysUser>().eq(SysUser::getUserName, username)); |
|---|
| | | if (ObjectUtil.isNull(user)) { |
|---|
| | | log.info("登录用户:{} 不存在.", username); |
|---|
| | | throw new UserException("user.not.exists", username); |
|---|
| | |
|---|
| | | log.info("登录用户:{} 已被停用.", username); |
|---|
| | | throw new UserException("user.blocked", username); |
|---|
| | | } |
|---|
| | | if (TenantHelper.isEnable()) { |
|---|
| | | return userMapper.selectTenantUserByUserName(username, tenantId); |
|---|
| | | } |
|---|
| | | return userMapper.selectUserByUserName(username); |
|---|
| | | return user; |
|---|
| | | } |
|---|
| | | |
|---|
| | | } |
|---|
