pipIrr-SV.git - Gitblit

			@@ -2,10 +2,13 @@

			import com.dy.common.aop.SsoVo;
			import com.dy.common.multiDataSource.DataSourceContext;
			import com.dy.common.util.MD5;
			import com.dy.common.webUtil.BaseResponse;
			import com.dy.common.webUtil.BaseResponseUtils;
			import com.dy.common.webUtil.ResultCodeMsg;
			import com.dy.pipIrrGlobal.pojoBa.BaUser;
			import com.dy.pipIrrGlobal.util.Org;
			import com.mysql.cj.util.StringUtils;
			import io.swagger.v3.oas.annotations.Hidden;
			import io.swagger.v3.oas.annotations.Operation;
			import io.swagger.v3.oas.annotations.Parameter;
			@@ -18,13 +21,11 @@
			import jakarta.validation.Valid;
			import lombok.extern.slf4j.Slf4j;
			import org.springframework.beans.factory.annotation.Autowired;
			//import org.springframework.cache.CacheManager;
			import org.springframework.http.MediaType;
			import org.springframework.validation.BindingResult;
			import org.springframework.web.bind.annotation.*;

			import java.util.Objects;
			import java.util.UUID;
			import java.util.*;

			/**
			* 注解Tag 在API中显示： Tag 注解, 给整个接口起了个名字与描述"
			@@ -42,6 +43,7 @@
			//在属性上注解@Autowired时，会警告 Field injection is not recommended（不再推荐使用字段注入）
			private SsoSv sv ;

			//private KaptchaConfig kaptchaConfig;
			//@Autowired
			//private CacheManager cacheManager ;

			@@ -50,6 +52,29 @@
			this.sv = sv ;
			}

			//@Autowired
			//public void setKaptchaConfig(KaptchaConfig kaptchaConfig) {
			// this.kaptchaConfig = kaptchaConfig;
			//}

			/**
			* 客户端请求得到所有组织机构
			* @return 所有组织机构数据
			*/
			@Operation(summary = "所有组织机构", description = "返回所有所有组织机构数据")
			@ApiResponses(value = {
			@ApiResponse(
			responseCode = ResultCodeMsg.RsCode.SUCCESS_CODE,
			description = "返回所有组织机构数据（BaseResponse.content:[ { \"tag\":\"ym\", \"name\":\"元谋\" }, { \"tag\":\"片角\", \"name\":\"片角镇\" }]）",
			content = {@Content(mediaType = MediaType.APPLICATION_JSON_VALUE,
			schema = @Schema(implementation = Org.class))}
			)
			})
			@GetMapping(path = "allOrg")
			public BaseResponse<List<Org.OrgVo>> allOrg(){
			//List<Org> list = Arrays.asList(Org.Ym, Org.Pj) ;
			return BaseResponseUtils.buildSuccess(Org.OrgList);
			}

			/**
			* 客户端请求用户登录，客户端提交Json数据
			@@ -76,9 +101,47 @@
			)
			})
			@PostMapping(path = "loginJson", consumes = MediaType.APPLICATION_JSON_VALUE)
			public BaseResponse<UserVo> loginJson(@Valid @RequestBody LoginVo vo, @Parameter(hidden = true) BindingResult bindingResult) {
			public BaseResponse<UserVo> loginJson(HttpServletRequest request, @RequestBody @Parameter(description = "登录json数据", required = true) @Valid LoginVo vo, @Parameter(hidden = true) BindingResult bindingResult) {
			if(bindingResult != null && bindingResult.hasErrors()){
			return BaseResponseUtils.buildFail(Objects.requireNonNull(bindingResult.getFieldError()).getDefaultMessage());
			return BaseResponseUtils.buildErrorMsg(Objects.requireNonNull(bindingResult.getFieldError()).getDefaultMessage());
			}
			if(!vo.phone.equals("admin")){
			if(vo.phone.length() != 11){
			return BaseResponseUtils.buildErrorMsg("手机号（长度不是11位）不正确");
			}
			}
			if(vo.orgTag == null \|\| vo.orgTag.trim().length() == 0){
			return BaseResponseUtils.buildErrorMsg("未选择组织单位");
			}
			//把组织单位标签作为数据源名称
			DataSourceContext.set(vo.orgTag);

			String token = Optional.ofNullable(vo.getToken()).orElse("");
			String code = Optional.ofNullable(vo.getCode()).orElse("");

			if(token.length() > 0 && code.length() > 0) {
			// 从session中获取验证码
			//HttpSession session = (HttpSession) request.getSession();
			//String localCode = session.getAttribute(token).toString();

			Map map = sv.getCodeByToken(token);
			Long expiration = Long.parseLong(map.get("expiration").toString());
			Long currentTimestamp = System.currentTimeMillis();
			if(currentTimestamp > expiration) {
			return BaseResponseUtils.buildErrorMsg("验证码已超时");
			}

			// 从数据库获取验证码
			String localCode = map.get("code").toString();
			if(!code.equals(localCode)) {
			return BaseResponseUtils.buildErrorMsg("验证码错误");
			}
			}

			//得到所有用户账号
			List<String> phones = sv.getPhones();
			if(!phones.contains(vo.phone)){
			return BaseResponseUtils.buildErrorMsg("账号不存在");
			}

			String uuid ;
			@@ -86,7 +149,14 @@
			try {
			//Boolean flag = cacheManager.getCacheNames().isEmpty() ;
			uuid = UUID.randomUUID().toString();
			userPo = this.sv.login(uuid, vo.phone, vo.password);
			if(!StringUtils.isNullOrEmpty(vo.password)){
			/*
			如果前端进行了base64加密
			po.password = new String(Base64.getDecoder().decode(po.password)) ;
			*/
			vo.password = MD5.encrypt(vo.password) ;
			}
			userPo = this.sv.loginWithMapperXml(uuid, vo.phone, vo.password);
			} catch (Exception e) {
			log.error("用户登录异常", e);
			return BaseResponseUtils.buildException(e.getMessage()) ;
			@@ -97,7 +167,7 @@
			uVo.token = uuid ;
			return BaseResponseUtils.buildSuccess(uVo);
			}else{
			return BaseResponseUtils.buildFail("登录失败");
			return BaseResponseUtils.buildErrorMsg("密码错误");
			}
			}

			@@ -118,10 +188,10 @@
			@PostMapping(path = "loginForm", consumes = MediaType.MULTIPART_FORM_DATA_VALUE)
			public BaseResponse<UserVo> loginForm(@Parameter(description = "form表单数据", required = true) @Valid LoginVo vo, @Parameter(hidden = true) BindingResult bindingResult){
			if(bindingResult != null && bindingResult.hasErrors()){
			return BaseResponseUtils.buildFail(Objects.requireNonNull(bindingResult.getFieldError()).getDefaultMessage());
			return BaseResponseUtils.buildErrorMsg(Objects.requireNonNull(bindingResult.getFieldError()).getDefaultMessage());
			}
			if(vo.orgTag == null \|\| vo.orgTag.trim().length() == 0){
			return BaseResponseUtils.buildFail("未选择组织单位");
			return BaseResponseUtils.buildErrorMsg("未选择组织单位");
			}
			//把组织单位标签作为数据源名称
			DataSourceContext.set(vo.orgTag);
			@@ -131,7 +201,14 @@
			try {
			//Boolean flag = cacheManager.getCacheNames().isEmpty() ;
			uuid = UUID.randomUUID().toString();
			userPo = this.sv.login(uuid, vo.phone, vo.password);
			if(!StringUtils.isNullOrEmpty(vo.password)){
			/*
			如果前端进行了base64加密
			po.password = new String(Base64.getDecoder().decode(po.password)) ;
			*/
			vo.password = MD5.encrypt(vo.password) ;
			}
			userPo = this.sv.loginWithMapperXml(uuid, vo.phone, vo.password);
			} catch (Exception e) {
			log.error("用户登录异常", e);
			return BaseResponseUtils.buildException(e.getMessage()) ;
			@@ -142,7 +219,7 @@
			uVo.token = uuid ;
			return BaseResponseUtils.buildSuccess(uVo);
			}else{
			return BaseResponseUtils.buildFail("登录失败");
			return BaseResponseUtils.buildErrorMsg("登录失败");
			}
			}

			@@ -167,7 +244,7 @@
			this.sv.logout(token) ;
			return BaseResponseUtils.buildSuccess(true);
			}else{
			return BaseResponseUtils.buildFail("未从header中得到token");
			return BaseResponseUtils.buildErrorMsg("未从header中得到token");
			}
			}

			@@ -183,7 +260,27 @@
			BaUser userPo = this.sv.getByUuid(token) ;
			return userPo == null ? null : userPo.id ;
			}

			/**
			* 此方法供子模块系统调用，所以不公开在API接口中
			* 方法功能：验证是否已经登录
			* @param token 登录用户token
			* @return SsoVo
			*/
			@Hidden
			@GetMapping(path = "ssoCheck")
			public SsoVo ssoCheck(String token){
			BaUser userPo = this.sv.getByUuid(token) ;
			SsoVo vo = new SsoVo();
			if(userPo != null){
			vo.dataSourceName = userPo.orgTag ;
			vo.logined = true ;
			vo.hasPower = true ;//默认有权限。2023-12-21 经商议，由前端鉴权
			}else{
			vo.logined = false ;
			vo.hasPower = true ;//默认有权限。2023-12-21 经商议，由前端鉴权
			}
			return vo ;
			}
			/**
			* 此方法供子模块系统调用，所以不公开在API接口中
			* 方法功能：验证是否已经登录，如果登录了，再验证权限
			@@ -194,67 +291,32 @@
			* @return SsoVo
			*/
			@Hidden
			@GetMapping(path = "ssoCheck")
			public SsoVo ssoCheck(String token, String privilege, String[] allPrivilege, String[] anyPrivilege){
			@GetMapping(path = "ssoPowerCheck")
			public SsoVo ssoPowerCheck(String token, String privilege, String[] allPrivilege, String[] anyPrivilege){
			BaUser userPo = this.sv.getByUuid(token) ;
			SsoVo vo = new SsoVo();
			if(userPo != null){
			vo.dataSourceName = userPo.orgTag ;
			vo.logined = true ;
			vo.hasPower = false ;//默认是无权限
			if(userPo.supperAdmin != null && userPo.supperAdmin == 1){
			vo.hasPower = true ;
			}else{
			if(userPo.privileges != null && userPo.privileges.size() > 0){
			if(privilege != null && !privilege.trim().equals("")){
			int intPri = Integer.parseInt(privilege) ;
			for(Integer pri : userPo.privileges){
			if(pri == intPri){
			vo.hasPower = true ;
			break ;
			}
			}
			}else{
			if(allPrivilege != null && allPrivilege.length > 0){
			int intPri ;
			boolean ok = false ;
			boolean allOk = true ;
			for(String strPri : allPrivilege){
			intPri = Integer.parseInt(strPri) ;
			for(Integer pri : userPo.privileges){
			if(pri == intPri){
			ok = true ;
			break ;
			}
			}
			if(!ok){
			allOk = false ;
			break ;
			}
			}
			if(allOk){
			vo.hasPower = true ;
			}
			}else{
			int intPri ;
			if(anyPrivilege != null && anyPrivilege.length > 0){
			for(String strPri : anyPrivilege){
			intPri = Integer.parseInt(strPri) ;
			for(Integer pri : userPo.privileges){
			if(pri == intPri){
			vo.hasPower = true ;
			break ;
			}
			}
			if(vo.hasPower){
			break ;
			}
			}
			if(privilege.equals("-1")){
			//无需权限验证
			vo.hasPower = true ;
			}else{
			if(userPo.privileges != null && userPo.privileges.size() > 0){
			vo.hasPower = this.hasOnePrivilege(privilege, userPo) ;
			if(!vo.hasPower){
			vo.hasPower = this.hasAllPrivilege(allPrivilege, userPo) ;
			if(!vo.hasPower){
			vo.hasPower = this.hasAnyPrivilege(anyPrivilege, userPo) ;
			}
			}
			}
			}
			}
			vo.dataSourceName = userPo.getOrgTag() ;
			}else{
			vo.logined = false ;
			vo.hasPower = false ;
			@@ -262,5 +324,100 @@
			return vo ;
			}

			/**
			* 获得当前登录用户
			* @param token 登录用户token
			* @return SsoVo
			*/
			@Hidden
			@GetMapping(path = "ssoCurUser")
			public CurUserVo ssoCurUser(String token){
			BaUser userPo = this.sv.getByUuid(token) ;
			CurUserVo vo = new CurUserVo();
			if(userPo != null){
			vo.id = userPo.id ;
			vo.name = userPo.userName;
			}
			return vo ;
			}
			/////////////////////////////////////////////////////////////////
			//
			// 以下私有方法
			//
			/////////////////////////////////////////////////////////////////
			/**
			* 判断登录用户是否拥有指定的一个权限
			* @param privilege 指定的一个权限
			* @param userPo 当前登录用户
			* @return 是否有权限
			*/
			private boolean hasOnePrivilege(String privilege, BaUser userPo){
			boolean hasPrivilege = false ;
			if (privilege != null && !privilege.trim().equals("")) {
			int intPri = Integer.parseInt(privilege);
			for (Integer pri : userPo.privileges) {
			if (pri == intPri) {
			hasPrivilege = true;
			break;
			}
			}
			}
			return hasPrivilege ;
			}

			/**
			* 判断登录用户是否拥有指定的多个权限
			* @param allPrivilege 指定的多个权限
			* @param userPo 当前登录用户
			* @return 是否有权限
			*/
			private boolean hasAllPrivilege(String[] allPrivilege, BaUser userPo){
			boolean hasPrivilege = false ;
			if(allPrivilege != null && allPrivilege.length > 0){
			int intPri ;
			int count = 0 ;
			for(String strPri : allPrivilege){
			intPri = Integer.parseInt(strPri) ;
			for(Integer pri : userPo.privileges){
			if(pri == intPri){
			count++ ;
			break ;
			}
			}
			}
			if(count == allPrivilege.length){
			hasPrivilege = true ;
			}
			}
			return hasPrivilege ;
			}


			/**
			* 判断登录用户是否拥有指定的某个权限
			* @param anyPrivilege 指定的多个权限
			* @param userPo 当前登录用户
			* @return 是否有权限
			*/
			private boolean hasAnyPrivilege(String[] anyPrivilege, BaUser userPo){
			boolean hasPrivilege = false ;
			int intPri ;
			if(anyPrivilege != null && anyPrivilege.length > 0){
			for(String strPri : anyPrivilege){
			intPri = Integer.parseInt(strPri) ;
			for(Integer pri : userPo.privileges){
			if(pri == intPri){
			hasPrivilege = true ;
			break ;
			}
			}
			if(hasPrivilege){
			break ;
			}
			}
			}
			return hasPrivilege ;
			}


			}