lbqms.git - Gitblit

			@@ -1,6 +1,7 @@
			package org.dromara.web.controller;

			import cn.dev33.satoken.annotation.SaIgnore;
			import cn.hutool.core.codec.Base64;
			import cn.hutool.core.collection.CollUtil;
			import cn.hutool.core.util.ObjectUtil;
			import jakarta.servlet.http.HttpServletRequest;
			@@ -14,16 +15,19 @@
			import org.dromara.common.core.domain.R;
			import org.dromara.common.core.domain.model.LoginBody;
			import org.dromara.common.core.domain.model.RegisterBody;
			import org.dromara.common.core.utils.MapstructUtils;
			import org.dromara.common.core.utils.MessageUtils;
			import org.dromara.common.core.utils.StreamUtils;
			import org.dromara.common.core.utils.StringUtils;
			import org.dromara.common.core.domain.model.SocialLoginBody;
			import org.dromara.common.core.utils.*;
			import org.dromara.common.encrypt.annotation.ApiEncrypt;
			import org.dromara.common.json.utils.JsonUtils;
			import org.dromara.common.satoken.utils.LoginHelper;
			import org.dromara.common.social.config.properties.SocialLoginConfigProperties;
			import org.dromara.common.social.config.properties.SocialProperties;
			import org.dromara.common.social.utils.SocialUtils;
			import org.dromara.common.tenant.helper.TenantHelper;
			import org.dromara.system.domain.SysClient;
			import org.dromara.common.websocket.dto.WebSocketMessageDto;
			import org.dromara.common.websocket.utils.WebSocketUtils;
			import org.dromara.system.domain.bo.SysTenantBo;
			import org.dromara.system.domain.vo.SysClientVo;
			import org.dromara.system.domain.vo.SysTenantVo;
			import org.dromara.system.service.ISysClientService;
			import org.dromara.system.service.ISysConfigService;
			@@ -39,7 +43,12 @@
			import org.springframework.web.bind.annotation.*;

			import java.net.URL;
			import java.nio.charset.StandardCharsets;
			import java.util.HashMap;
			import java.util.List;
			import java.util.Map;
			import java.util.concurrent.ScheduledExecutorService;
			import java.util.concurrent.TimeUnit;

			/**
			* 认证
			@@ -48,7 +57,6 @@
			*/
			@Slf4j
			@SaIgnore
			@Validated
			@RequiredArgsConstructor
			@RestController
			@RequestMapping("/auth")
			@@ -61,31 +69,44 @@
			private final ISysTenantService tenantService;
			private final ISysSocialService socialUserService;
			private final ISysClientService clientService;
			private final ScheduledExecutorService scheduledExecutorService;


			/**
			* 登录方法
			*
			* @param loginBody 登录信息
			* @param body 登录信息
			* @return 结果
			*/
			@ApiEncrypt
			@PostMapping("/login")
			public R<LoginVo> login(@Validated @RequestBody LoginBody loginBody) {
			public R<LoginVo> login(@RequestBody String body) {
			LoginBody loginBody = JsonUtils.parseObject(body, LoginBody.class);
			ValidatorUtils.validate(loginBody);
			// 授权类型和客户端id
			String clientId = loginBody.getClientId();
			String grantType = loginBody.getGrantType();
			SysClient client = clientService.queryByClientId(clientId);
			SysClientVo client = clientService.queryByClientId(clientId);
			// 查询不到 client 或 client 内不包含 grantType
			if (ObjectUtil.isNull(client) \|\| !StringUtils.contains(client.getGrantType(), grantType)) {
			log.info("客户端id: {} 认证类型：{} 异常!.", clientId, grantType);
			return R.fail(MessageUtils.message("auth.grant.type.error"));
			} else if (!UserConstants.NORMAL.equals(client.getStatus())) {
			return R.fail(MessageUtils.message("auth.grant.type.stop"));
			return R.fail(MessageUtils.message("auth.grant.type.blocked"));
			}
			// 校验租户
			loginService.checkTenant(loginBody.getTenantId());
			// 登录
			return R.ok(IAuthStrategy.login(loginBody, client));
			LoginVo loginVo = IAuthStrategy.login(body, client, grantType);

			Long userId = LoginHelper.getUserId();
			scheduledExecutorService.schedule(() -> {
			WebSocketMessageDto dto = new WebSocketMessageDto();
			dto.setMessage("欢迎登录RuoYi-Vue-Plus后台管理系统");
			dto.setSessionKeys(List.of(userId));
			WebSocketUtils.publishMessage(dto);
			}, 3, TimeUnit.SECONDS);
			return R.ok(loginVo);
			}

			/**
			@@ -95,13 +116,18 @@
			* @return 结果
			*/
			@GetMapping("/binding/{source}")
			public R<String> authBinding(@PathVariable("source") String source) {
			public R<String> authBinding(@PathVariable("source") String source,
			@RequestParam String tenantId, @RequestParam String domain) {
			SocialLoginConfigProperties obj = socialProperties.getType().get(source);
			if (ObjectUtil.isNull(obj)) {
			return R.fail(source + "平台账号暂不支持");
			}
			AuthRequest authRequest = SocialUtils.getAuthRequest(source, socialProperties);
			String authorizeUrl = authRequest.authorize(AuthStateUtils.createState());
			Map<String, String> map = new HashMap<>();
			map.put("tenantId", tenantId);
			map.put("domain", domain);
			map.put("state", AuthStateUtils.createState());
			String authorizeUrl = authRequest.authorize(Base64.encode(JsonUtils.toJsonString(map), StandardCharsets.UTF_8));
			return R.ok("操作成功", authorizeUrl);
			}

			@@ -112,9 +138,11 @@
			* @return 结果
			*/
			@PostMapping("/social/callback")
			public R<Void> socialCallback(@RequestBody LoginBody loginBody) {
			public R<Void> socialCallback(@RequestBody SocialLoginBody loginBody) {
			// 获取第三方登录信息
			AuthResponse<AuthUser> response = SocialUtils.loginAuth(loginBody, socialProperties);
			AuthResponse<AuthUser> response = SocialUtils.loginAuth(
			loginBody.getSource(), loginBody.getSocialCode(),
			loginBody.getSocialState(), socialProperties);
			AuthUser authUserData = response.getData();
			// 判断授权响应是否成功
			if (!response.ok()) {
			@@ -149,6 +177,7 @@
			/**
			* 用户注册
			*/
			@ApiEncrypt
			@PostMapping("/register")
			public R<Void> register(@Validated @RequestBody RegisterBody user) {
			if (!configService.selectRegisterEnabled(user.getTenantId())) {
			@@ -178,7 +207,7 @@
			}
			// 根据域名进行筛选
			List<TenantListVo> list = StreamUtils.filter(voList, vo ->
			StringUtils.equals(vo.getDomain(), host));
			StringUtils.equals(vo.getDomain(), host));
			// 返回对象
			LoginTenantVo vo = new LoginTenantVo();
			vo.setVoList(CollUtil.isNotEmpty(list) ? list : voList);