兰宝车间质量管理系统
blame | 历史 | 补丁 | 提交 | 提交对比 | 忽略空白
疯狂的狮子Li
2023-07-02 bb2836b6f1789a60c30537444a3bd331f16b45e1 
 ruoyi-admin/src/main/java/org/dromara/web/controller/AuthController.java


@@ -3,54 +3,49 @@


import cn.dev33.satoken.annotation.SaIgnore;


import cn.hutool.core.collection.CollUtil;


import cn.hutool.core.util.ObjectUtil;


import cn.hutool.json.JSONObject;


import cn.hutool.json.JSONUtil;


import com.alibaba.fastjson.JSON;


import jakarta.servlet.http.HttpServletRequest;


import jakarta.validation.constraints.NotBlank;


import lombok.RequiredArgsConstructor;


import me.zhyd.oauth.cache.AuthDefaultStateCache;


import me.zhyd.oauth.cache.AuthStateCache;


import me.zhyd.oauth.model.AuthCallback;


import lombok.extern.slf4j.Slf4j;


import me.zhyd.oauth.model.AuthResponse;


import me.zhyd.oauth.model.AuthUser;


import me.zhyd.oauth.request.AuthRequest;


import me.zhyd.oauth.utils.AuthStateUtils;


import org.dromara.common.auth.utils.AuthUtils;


import org.dromara.common.core.domain.R;


import org.dromara.common.core.domain.model.EmailLoginBody;


import org.dromara.common.core.domain.model.LoginBody;


import org.dromara.common.core.domain.model.RegisterBody;


import org.dromara.common.core.domain.model.SmsLoginBody;


import org.dromara.common.core.utils.MapstructUtils;


import org.dromara.common.core.utils.MessageUtils;


import org.dromara.common.core.utils.StreamUtils;


import org.dromara.common.core.utils.StringUtils;


import org.dromara.common.social.config.properties.SocialLoginConfigProperties;


import org.dromara.common.social.config.properties.SocialProperties;


import org.dromara.common.social.utils.SocialUtils;


import org.dromara.common.tenant.helper.TenantHelper;


import org.dromara.system.domain.SysClient;


import org.dromara.system.domain.bo.SysTenantBo;


import org.dromara.system.domain.vo.SysTenantVo;


import org.dromara.system.domain.vo.SysUserVo;


import org.dromara.system.mapper.SysUserMapper;


import org.dromara.system.service.ISysClientService;


import org.dromara.system.service.ISysConfigService;


import org.dromara.system.service.ISysSocialService;


import org.dromara.system.service.ISysTenantService;


import org.dromara.web.domain.vo.LoginTenantVo;


import org.dromara.web.domain.vo.LoginVo;


import org.dromara.web.domain.vo.TenantListVo;


import org.dromara.web.service.IAuthStrategy;


import org.dromara.web.service.SysLoginService;


import org.dromara.web.service.SysRegisterService;


import org.springframework.validation.annotation.Validated;


import org.springframework.web.bind.annotation.*;




import java.io.IOException;


import java.net.URL;


import java.util.HashMap;


import java.util.List;


import java.util.Map;




/**


 * 认证


 *


 * @author Lion Li


 */


@Slf4j


@SaIgnore


@Validated


@RequiredArgsConstructor


@@ -58,145 +53,85 @@


@RequestMapping("/auth")


public class AuthController {




    private AuthStateCache authStateCache;


    private final SocialProperties socialProperties;


    private final SysLoginService loginService;


    private final SysRegisterService registerService;


    private final ISysConfigService configService;


    private final ISysTenantService tenantService;


    private final SysUserMapper userMapper;


    private final Map<String, String> auths = new HashMap<>();


    {


        auths.put("gitee", "{\"clientId\":\"38eaaa1b77b5e064313057a2f5745ce3a9f3e7686d9bd302c7df2f308ef6db81\",\"clientSecret\":\"2e633af8780cb9fe002c4c7291b722db944402e271efb99b062811f52d7da1ff\",\"redirectUri\":\"http://127.0.0.1:8888/social-login?source=gitee\"}");


        auths.put("github", "{\"clientId\":\"Iv1.1be0cdcd71aca63b\",\"clientSecret\":\"0d59d28b43152bc8906011624db37b0fed88d154\",\"redirectUri\":\"http://127.0.0.1:80/social-login?source=github\"}");


        authStateCache = AuthDefaultStateCache.INSTANCE;// 使用默认的缓存


    }


    private final ISysSocialService socialUserService;


    private final ISysClientService clientService;






    /**


     * 登录方法


     *


     * @param body 登录信息


     * @param loginBody 登录信息


     * @return 结果


     */


    @PostMapping("/login")


    public R<LoginVo> login(@Validated @RequestBody LoginBody body) {


        LoginVo loginVo = new LoginVo();


        // 生成令牌


        String token = loginService.login(


            body.getTenantId(),


            body.getUsername(), body.getPassword(),


            body.getCode(), body.getUuid());


        loginVo.setToken(token);


        return R.ok(loginVo);


    public R<LoginVo> login(@Validated @RequestBody LoginBody loginBody) {


        // 授权类型和客户端id


        String clientId = loginBody.getClientId();


        String grantType = loginBody.getGrantType();


        SysClient client = clientService.queryByClientId(clientId);


        // 查询不到 client 或 client 内不包含 grantType


        if (ObjectUtil.isNull(client) || !StringUtils.contains(client.getGrantType(), grantType)) {


            log.info("客户端id: {} 认证类型:{} 异常!.", clientId, grantType);


            return R.fail(MessageUtils.message("auth.grant.type.error"));


        }


        // 校验租户


        loginService.checkTenant(loginBody.getTenantId());


        // 登录


        return R.ok(IAuthStrategy.login(loginBody, client));


    }




    /**


     * 短信登录


     * 第三方登录请求


     *


     * @param body 登录信息


     * @param source 登录来源


     * @return 结果


     */


    @PostMapping("/smsLogin")


    public R<LoginVo> smsLogin(@Validated @RequestBody SmsLoginBody body) {


        LoginVo loginVo = new LoginVo();


        // 生成令牌


        String token = loginService.smsLogin(


            body.getTenantId(),


            body.getPhonenumber(),


            body.getSmsCode());


        loginVo.setToken(token);


        return R.ok(loginVo);


    }




    /**


     * 邮件登录


     *


     * @param body 登录信息


     * @return 结果


     */


    @PostMapping("/emailLogin")


    public R<LoginVo> emailLogin(@Validated @RequestBody EmailLoginBody body) {


        LoginVo loginVo = new LoginVo();


        // 生成令牌


        String token = loginService.emailLogin(


            body.getTenantId(),


            body.getEmail(),


            body.getEmailCode());


        loginVo.setToken(token);


        return R.ok(loginVo);


    }




    /**


     * 小程序登录(示例)


     *


     * @param xcxCode 小程序code


     * @return 结果


     */


    @PostMapping("/xcxLogin")


    public R<LoginVo> xcxLogin(@NotBlank(message = "{xcx.code.not.blank}") String xcxCode) {


        LoginVo loginVo = new LoginVo();


        // 生成令牌


        String token = loginService.xcxLogin(xcxCode);


        loginVo.setToken(token);


        return R.ok(loginVo);


    }










    /**


     * 认证授权


     * @param source


     * @throws IOException


     */


    @GetMapping("/binding/{source}")


    @ResponseBody


    public R<LoginVo> authBinding(@PathVariable("source") String source, HttpServletRequest request){


        SysUserVo userLoding = new SysUserVo();


        if (ObjectUtil.isNull(userLoding)) {


            return R.fail("授权失败,请先登录再绑定");


        }


        if (userMapper.checkAuthUser(userLoding.getUserId(),source) > 0)


        {


            return R.fail(source + "平台账号已经绑定");


        }


        String obj = auths.get(source);


        if (StringUtils.isEmpty(obj))


        {


    public R<String> authBinding(@PathVariable("source") String source) {


        SocialLoginConfigProperties obj = socialProperties.getType().get(source);


        if (ObjectUtil.isNull(obj)) {


            return R.fail(source + "平台账号暂不支持");


        }


        JSONObject json = JSONUtil.parseObj(obj);


        AuthRequest authRequest = AuthUtils.getAuthRequest(source,


            json.getStr("clientId"),


            json.getStr("clientSecret"),


            json.getStr("redirectUri"), authStateCache);


        AuthRequest authRequest = SocialUtils.getAuthRequest(source, socialProperties);


        String authorizeUrl = authRequest.authorize(AuthStateUtils.createState());


        return R.ok(authorizeUrl);


        return R.ok("操作成功", authorizeUrl);


    }




    /**


     * @param source


     * @param callback


     * @param request


     * @return


     * 第三方登录回调业务处理 绑定授权


     *


     * @param loginBody 请求体


     * @return 结果


     */


    @SuppressWarnings("unchecked")


    @GetMapping("/social-login/{source}")


    public R<String> socialLogin(@PathVariable("source") String source, AuthCallback callback, HttpServletRequest request) throws IOException {


        String obj = auths.get(source);


        if (StringUtils.isEmpty(obj))


        {


            return R.fail("第三方平台系统不支持或未提供来源");


    @PostMapping("/social/callback")


    public R<LoginVo> socialCallback(@RequestBody LoginBody loginBody) {


        // 获取第三方登录信息


        AuthResponse<AuthUser> response = SocialUtils.loginAuth(loginBody, socialProperties);


        AuthUser authUserData = response.getData();


        // 判断授权响应是否成功


        if (!response.ok()) {


            return R.fail(response.getMsg());


        }


        JSONObject json = JSONUtil.parseObj(obj);


        AuthRequest authRequest = AuthUtils.getAuthRequest(source,


            json.getStr("clientId"),


            json.getStr("clientSecret"),


            json.getStr("redirectUri"), authStateCache);


        AuthResponse<AuthUser> response = authRequest.login(callback);


        return loginService.socialLogin(source, response, request);


        return loginService.sociaRegister(authUserData);


    }






    /**


     * 取消授权


     *


     * @param socialId socialId


     */


    @DeleteMapping(value = "/unlock/{socialId}")


    public R<Void> unlockSocial(@PathVariable Long socialId) {


        Boolean rows = socialUserService.deleteWithValidById(socialId);


        return rows ? R.ok() : R.fail("取消授权失败");


    }






    /**


     * 退出登录