Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
csx
/
XT_Admin_Api
Obserwuj 1
Gwiazdka 0
Forkuj 0
Kod Problemy 0 Pull Requests 0 Wydania 0 Wiki Aktywność
55 Commity
1 Gałęzie
Drzewo: e07317abef
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z 'e07317abef'
${ noResults }
XT_Admin_Api/service/verify_login_token_service.go

verify_login_token_service.go 11KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383 
  1. package service

  2. 

  3. import (

  4. 	"encoding/json"

  5. 	"io/ioutil"

  6. 	"net/http"

  7. 	"net/url"

  8. 	"strconv"

  9. 	"time"

  10. 

  11. 	"XT_Admin_Api/models"

  12. 	"XT_Admin_Api/utils"

  13. 

  14. 	"github.com/astaxie/beego"

  15. )

  16. 

  17. type AdminUserInfo struct {

  18. 	AdminUser    *models.AdminUser                    `json:"user"`

  19. 	CurrentOrgId int64                                `json:"current_org_id"`

  20. 	CurrentAppId int64                                `json:"current_app_id"`

  21. 	OrgIds       []int64                              `json:"org_ids"`

  22. 	Orgs         map[int64]*models.Org                `json:"orgs"`

  23. 	OrgAppIds    map[int64][]int64                    `json:"org_app_ids"`

  24. 	OrgApps      map[int64](map[int64]*models.OrgApp) `json:"org_apps"`

  25. 	App2OrgIds   map[int64]int64                      `json:"app_to_org_ids"`

  26. 	AppRoles     map[int64]*models.App_Role           `json:"app_roles"`

  27. 	AppPurviews  map[int64][]*models.Purview          `json:"app_purviews"`

  28. 	AppUrlfors   map[int64][]string                   `json:"app_urlfors"`

  29. 	Subscibes    map[int64]*models.ServeSubscibe      `json:"org_subscibes"`

  30. 

  31. }

  32. 

  33. type verifyTokenError struct {

  34. 	Msg string

  35. }

  36. 

  37. func (e *verifyTokenError) Error() string {

  38. 	return e.Msg

  39. }

  40. 

  41. // 验证 token 成功后返回的管理员用户的所有信息,包括:基本用户信息,所属的所有机构,机构下的所有应用,应用的用户权限

  42. // map 的数据格式为

  43. /*

  44. "admin_user": { AdminUser's json },

  45. current_org_id: 1,

  46. current_app_id: 11,

  47. "org_ids": [1, 2, 3],

  48. "orgs": { (org_id: Org_Obj)

  49. 	1: { Org's json },

  50. 	2: { Org's json },

  51. },

  52. "org_app_ids": { (org_id: org_app_ids)

  53. 	1: [11, 12, 13],

  54. 	2: [21, 22, 23],

  55. },

  56. "org_apps": { (org_id: {app_id: OrgApp_Obj})

  57. 	1: {

  58. 		11: { OrgApp's json },

  59. 		12: { OrgApp's json },

  60. 	},

  61. 	2: {

  62. 		21: { OrgApp's json },

  63. 		22: { OrgApp's json },

  64. 	},

  65. },

  66. "app_to_org_ids": { (app_id: org_id)

  67. 	11: 1,

  68. 	12: 1,

  69. 	21: 2,

  70. 	22: 2,

  71. },

  72. "app_roles": { (app_id: App_Role Obj)

  73. 	11: {App_Role's json},

  74. 	12: {App_Role's json},

  75. 	21: {App_Role's json},

  76. },

  77. "purviews": { (app_id: [processed Purviews' json])

  78. 	11: [

  79. 		{Purview's json .childs[

  80. 			{Purview's json},

  81. 			{Purview's json},

  82. 		]},

  83. 		{Purview's json},

  84. 	],

  85. 	12: [

  86. 		{Purview's json},

  87. 		{Purview's json},

  88. 	],

  89. },

  90. "purview_urlfors": { (app_id: [url_for])

  91. 	11: [

  92. 		"Controller1.Action1",

  93. 		"Controller1.Action2",

  94. 		"Controller2.Action1",

  95. 		"Controller2.Action2",

  96. 	],

  97. }

  98. 应当注意的是,屈服于 Golang 令人恶心的类型机制,这里将所有数值型的 key 或 value 全部转成了 string

  99. */

  100. // 解析用户信息,并返回

  101. func VerifyToken(token string, ip string, sessionID string) (*AdminUserInfo, error, int) {

  102. 	// if len(sessionID) == 0 {

  103. 	// 	return nil, &verifyTokenError{"sessionID 为空"}

  104. 	// }

  105. 	ssoDomain := beego.AppConfig.String("sso_domain")

  106. 	api := ssoDomain + "/verifytoken"

  107. 	values := make(url.Values)

  108. 	values.Set("token", token)

  109. 	values.Set("app_type", "3")

  110. 	values.Set("ip", ip)

  111. 	values.Set("session_id", sessionID)

  112. 	resp, requestErr := http.PostForm(api, values)

  113. 

  114. 	if requestErr != nil {

  115. 		utils.ErrorLog("请求验证 sso token 接口失败: %v", requestErr)

  116. 		return nil, requestErr, 0

  117. 	}

  118. 	defer resp.Body.Close()

  119. 	body, ioErr := ioutil.ReadAll(resp.Body)

  120. 	if ioErr != nil {

  121. 		utils.ErrorLog("验证 sso token 接口返回数据读取失败: %v", ioErr)

  122. 		return nil, ioErr, 0

  123. 	}

  124. 	var respJSON map[string]interface{}

  125. 	utils.InfoLog(string(body))

  126. 	if err := json.Unmarshal([]byte(string(body)), &respJSON); err != nil {

  127. 		utils.ErrorLog("验证 sso token 接口返回数据解析JSON失败: %v", err)

  128. 		return nil, err, 0

  129. 	}

  130. 

  131. 	if respJSON["state"].(float64) != 1 {

  132. 		msg := respJSON["msg"].(string)

  133. 		utils.ErrorLog("验证 sso token 接口请求失败: %v", msg)

  134. 		return nil, &verifyTokenError{"验证 sso token 接口请求失败"}, int(respJSON["code"].(float64))

  135. 	} else {

  136. 		utils.SuccessLog("验证 sso token 成功")

  137. 		return processAdminUserInfo(respJSON["data"].(map[string]interface{})), nil, 0

  138. 	}

  139. }

  140. 

  141. func processAdminUserInfo(data map[string]interface{}) *AdminUserInfo {

  142. 	adminUser := processAdminUser(data)

  143. 	currentOrgId, currentAppId := processCurrentOrgIDAndAppID(data)

  144. 	orgIds := processOrgIds(data)

  145. 	orgs := processOrgs(data)

  146. 	orgAppIds := processOrgAppIds(data)

  147. 	orgApps := processOrgApps(data)

  148. 	app2OrgIds := processApp2OrgIds(data)

  149. 	appRoles := processAppRoles(data)

  150. 	appPurviews := processPurviews(data)

  151. 	appUrlfors := processPurviewUrlfors(data)

  152. 	orgSubscibes := processOrgSubscibes(data)

  153. 	sessionAdminUserInfo := &AdminUserInfo{

  154. 		AdminUser:    adminUser,

  155. 		CurrentOrgId: currentOrgId,

  156. 		CurrentAppId: currentAppId,

  157. 		OrgIds:       orgIds,

  158. 		Orgs:         orgs,

  159. 		OrgAppIds:    orgAppIds,

  160. 		OrgApps:      orgApps,

  161. 		App2OrgIds:   app2OrgIds,

  162. 		AppRoles:     appRoles,

  163. 		AppPurviews:  appPurviews,

  164. 		AppUrlfors:   appUrlfors,

  165. 		Subscibes:    orgSubscibes,

  166. 	}

  167. 	return sessionAdminUserInfo

  168. }

  169. 

  170. // "admin_user": { AdminUser's json },

  171. func processAdminUser(data map[string]interface{}) *models.AdminUser {

  172. 	userJSONStr := data["admin_user"].(string)

  173. 	var adminUser models.AdminUser

  174. 	if err := json.Unmarshal([]byte(userJSONStr), &adminUser); err != nil {

  175. 		utils.ErrorLog("解析用户信息失败:%v", err)

  176. 		return nil

  177. 	} else {

  178. 		return &adminUser

  179. 	}

  180. }

  181. 

  182. // current_org_id: 1,

  183. // current_app_id: 11,

  184. func processCurrentOrgIDAndAppID(data map[string]interface{}) (int64, int64) {

  185. 	orgIDStr := data["current_org_id"].(string)

  186. 	appIDStr := data["current_app_id"].(string)

  187. 	orgID, _ := strconv.Atoi(orgIDStr)

  188. 	appID, _ := strconv.Atoi(appIDStr)

  189. 	return int64(orgID), int64(appID)

  190. }

  191. 

  192. // "org_ids": [1, 2, 3],

  193. func processOrgIds(data map[string]interface{}) []int64 {

  194. 	orgIdStrs := data["org_ids"].([]interface{})

  195. 	orgIds := make([]int64, 0, len(orgIdStrs))

  196. 	for _, idstr := range orgIdStrs {

  197. 		id, _ := strconv.Atoi(idstr.(string))

  198. 		orgIds = append(orgIds, int64(id))

  199. 	}

  200. 	return orgIds

  201. }

  202. 

  203. // "orgs": { (org_id: Org_Obj)

  204. // 	1: { Org's json },

  205. // 	2: { Org's json },

  206. // },

  207. func processOrgs(data map[string]interface{}) map[int64]*models.Org {

  208. 	orgJSONs := data["orgs"].(map[string]interface{})

  209. 	orgs := make(map[int64]*models.Org)

  210. 	for orgIdStr, orgJSON := range orgJSONs {

  211. 		orgId, _ := strconv.Atoi(orgIdStr)

  212. 		var org models.Org

  213. 		json.Unmarshal([]byte(orgJSON.(string)), &org)

  214. 		orgs[int64(orgId)] = &org

  215. 	}

  216. 	return orgs

  217. }

  218. 

  219. // "org_app_ids": { (org_id: org_app_ids)

  220. // 	1: [11, 12, 13],

  221. // 	2: [21, 22, 23],

  222. // },

  223. func processOrgAppIds(data map[string]interface{}) map[int64][]int64 {

  224. 	orgAppIdStrs := data["org_app_ids"].(map[string]interface{})

  225. 	orgAppIds := make(map[int64][]int64)

  226. 	for orgIdStr, appIdStrs := range orgAppIdStrs {

  227. 		orgId, _ := strconv.Atoi(orgIdStr)

  228. 		appIds := make([]int64, 0, len(appIdStrs.([]interface{})))

  229. 		for _, appIdStr := range appIdStrs.([]interface{}) {

  230. 			appId, _ := strconv.Atoi(appIdStr.(string))

  231. 			appIds = append(appIds, int64(appId))

  232. 		}

  233. 		orgAppIds[int64(orgId)] = appIds

  234. 	}

  235. 	return orgAppIds

  236. }

  237. 

  238. // "org_apps": { (org_id: {app_id: OrgApp_Obj})

  239. // 	1: {

  240. // 		11: { OrgApp's json },

  241. // 		12: { OrgApp's json },

  242. // 	},

  243. // 	2: {

  244. // 		21: { OrgApp's json },

  245. // 		22: { OrgApp's json },

  246. // 	},

  247. // },

  248. func processOrgApps(data map[string]interface{}) map[int64]map[int64]*models.OrgApp {

  249. 	orgAppJSONs := data["org_apps"].(map[string]interface{})

  250. 	orgApps := make(map[int64]map[int64]*models.OrgApp)

  251. 	for orgIdStr, appJSONStrMap := range orgAppJSONs {

  252. 		orgId, _ := strconv.Atoi(orgIdStr)

  253. 

  254. 		apps := make(map[int64]*models.OrgApp)

  255. 		for appIdStr, appJSONStr := range appJSONStrMap.(map[string]interface{}) {

  256. 			appId, _ := strconv.Atoi(appIdStr)

  257. 

  258. 			var app models.OrgApp

  259. 			json.Unmarshal([]byte(appJSONStr.(string)), &app)

  260. 			apps[int64(appId)] = &app

  261. 		}

  262. 

  263. 		orgApps[int64(orgId)] = apps

  264. 	}

  265. 	return orgApps

  266. }

  267. 

  268. // "app_to_org_ids": { (app_id: org_id)

  269. // 	11: 1,

  270. // 	12: 1,

  271. // 	21: 2,

  272. // 	22: 2,

  273. // },

  274. func processApp2OrgIds(data map[string]interface{}) map[int64]int64 {

  275. 	app2OrgIdStrs := data["app_to_org_ids"].(map[string]interface{})

  276. 	app2OrgIds := make(map[int64]int64)

  277. 	for appIdStr, orgIdStr := range app2OrgIdStrs {

  278. 		orgId, _ := strconv.Atoi(orgIdStr.(string))

  279. 		appId, _ := strconv.Atoi(appIdStr)

  280. 		app2OrgIds[int64(appId)] = int64(orgId)

  281. 	}

  282. 	return app2OrgIds

  283. }

  284. 

  285. // "app_roles": { (app_id: App_Role Obj)

  286. // 	11: {App_Role's json},

  287. // 	12: {App_Role's json},

  288. // 	21: {App_Role's json},

  289. // },

  290. func processAppRoles(data map[string]interface{}) map[int64]*models.App_Role {

  291. 	appRoleJSONs := data["app_roles"].(map[string]interface{})

  292. 	appRoles := make(map[int64]*models.App_Role)

  293. 	for appIDStr, appRoleJSON := range appRoleJSONs {

  294. 		appID, _ := strconv.Atoi(appIDStr)

  295. 		var appRole models.App_Role

  296. 		json.Unmarshal([]byte(appRoleJSON.(string)), &appRole)

  297. 		appRoles[int64(appID)] = &appRole

  298. 	}

  299. 	return appRoles

  300. }

  301. 

  302. // "purviews": { (app_id: [processed Purviews' json])

  303. // 	11: [

  304. // 		{Purview's json .childs[

  305. // 			{Purview's json},

  306. // 			{Purview's json},

  307. // 		]},

  308. // 		{Purview's json},

  309. // 	],

  310. // 	12: [

  311. // 		{Purview's json},

  312. // 		{Purview's json},

  313. // 	],

  314. // },

  315. func processPurviews(data map[string]interface{}) map[int64][]*models.Purview {

  316. 	appPurviewJSONsStrs := data["purviews"].(map[string]interface{})

  317. 	appPurviews := make(map[int64][]*models.Purview)

  318. 	for appIdStr, purviewJSONsStr := range appPurviewJSONsStrs {

  319. 		appId, _ := strconv.Atoi(appIdStr)

  320. 		var purviews []*models.Purview

  321. 		json.Unmarshal([]byte(purviewJSONsStr.(string)), &purviews)

  322. 		// setLinkForPurviews(purviews)

  323. 		appPurviews[int64(appId)] = purviews

  324. 	}

  325. 	return appPurviews

  326. }

  327. 

  328. // func setLinkForPurviews(purviews []*models.Purview) {

  329. // 	for _, purview := range purviews {

  330. // 		if len(purview.Urlfor) == 0 {

  331. // 			purview.Link = ""

  332. // 		} else {

  333. // 			purview.Link = beego.URLFor(purview.Urlfor)

  334. // 		}

  335. // 		if purview.Childs == nil {

  336. // 			purview.Childs = make([]*models.Purview, 0)

  337. // 		} else {

  338. // 			setLinkForPurviews(purview.Childs)

  339. // 		}

  340. // 		// utils.TraceLog("%+v", purview)

  341. // 	}

  342. // }

  343. 

  344. // "purview_urlfors": { (app_id: [url_for])

  345. // 	11: [

  346. // 		"Controller1.Action1",

  347. // 		"Controller1.Action2",

  348. // 		"Controller2.Action1",

  349. // 		"Controller2.Action2",

  350. // 	],

  351. // }

  352. func processPurviewUrlfors(data map[string]interface{}) map[int64][]string {

  353. 	appUrlforsStrs := data["purview_urlfors"].(map[string]interface{})

  354. 	appUrlfors := make(map[int64][]string)

  355. 	for appIdStr, urlforsStr := range appUrlforsStrs {

  356. 		appId, _ := strconv.Atoi(appIdStr)

  357. 		var urlfors []string

  358. 		json.Unmarshal([]byte(urlforsStr.(string)), &urlfors)

  359. 		appUrlfors[int64(appId)] = urlfors

  360. 	}

  361. 	return appUrlfors

  362. }

  363. 

  364. // "org_subscibes": { (org_id: ServeSubscibe)

  365. //  11: {ServeSubscibe's json}

  366. // },

  367. func processOrgSubscibes(data map[string]interface{}) map[int64]*models.ServeSubscibe {

  368. 	subscibeJSONs := data["org_subscibes"].(map[string]interface{})

  369. 	subscibes := make(map[int64]*models.ServeSubscibe)

  370. 	for orgIDStr, subscibeJSON := range subscibeJSONs {

  371. 		orgID, _ := strconv.Atoi(orgIDStr)

  372. 		var subscibe models.ServeSubscibe

  373. 		json.Unmarshal([]byte(subscibeJSON.(string)), &subscibe)

  374. 		subscibes[int64(orgID)] = &subscibe

  375. 	}

  376. 	return subscibes

  377. }

  378. 

  379. func ModifyPassword(adminID int64, password string) error {

  380. 	err := writeUserDb.Model(&models.AdminUser{}).Where("id = ? AND status = 1", adminID).Updates(map[string]interface{}{"password": password, "mtime": time.Now().Unix()}).Error

  381. 	return err

  382. }