Home Explore Help
Register Sign In
csx
/
XT_New
Watch 1
Star 0
Fork 0
Code Issues 8 Pull Requests 0 Releases 0 Wiki Activity
316 Commits
13 Branches
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
XT_New/service/verify_login_token_service.go

verify_login_token_service.go 13KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452 
  1. package service

  2. 

  3. import (

  4. 	"encoding/json"

  5. 	"github.com/jinzhu/gorm"

  6. 	"io/ioutil"

  7. 	"net/http"

  8. 	"net/url"

  9. 	"strconv"

  10. 	"time"

  11. 

  12. 	"XT_New/models"

  13. 	"XT_New/utils"

  14. 

  15. 	"fmt"

  16. 	"github.com/astaxie/beego"

  17. )

  18. 

  19. type AdminUserInfo struct {

  20. 	AdminUser    *models.AdminUser                    `json:"user"`

  21. 	CurrentOrgId int64                                `json:"current_org_id"`

  22. 	CurrentAppId int64                                `json:"current_app_id"`

  23. 	OrgIds       []int64                              `json:"org_ids"`

  24. 	Orgs         map[int64]*models.Org                `json:"orgs"`

  25. 	OrgAppIds    map[int64][]int64                    `json:"org_app_ids"`

  26. 	OrgApps      map[int64](map[int64]*models.OrgApp) `json:"org_apps"`

  27. 	App2OrgIds   map[int64]int64                      `json:"app_to_org_ids"`

  28. 	AppRoles     map[int64]*models.App_Role           `json:"app_roles"`

  29. 	AppPurviews  map[int64][]*models.Purview          `json:"app_purviews"`

  30. 	AppUrlfors   map[int64][]string                   `json:"app_urlfors"`

  31. 	Subscibes    map[int64]*models.ServeSubscibe      `json:"org_subscibes"`

  32. }

  33. 

  34. type verifyTokenError struct {

  35. 	Msg string

  36. }

  37. 

  38. func (e *verifyTokenError) Error() string {

  39. 	return e.Msg

  40. }

  41. 

  42. // 验证 token 成功后返回的管理员用户的所有信息,包括:基本用户信息,所属的所有机构,机构下的所有应用,应用的用户权限

  43. // map 的数据格式为

  44. /*

  45. "admin_user": { AdminUser's json },

  46. current_org_id: 1,

  47. current_app_id: 11,

  48. "org_ids": [1, 2, 3],

  49. "orgs": { (org_id: Org_Obj)

  50. 	1: { Org's json },

  51. 	2: { Org's json },

  52. },

  53. "org_app_ids": { (org_id: org_app_ids)

  54. 	1: [11, 12, 13],

  55. 	2: [21, 22, 23],

  56. },

  57. "org_apps": { (org_id: {app_id: OrgApp_Obj})

  58. 	1: {

  59. 		11: { OrgApp's json },

  60. 		12: { OrgApp's json },

  61. 	},

  62. 	2: {

  63. 		21: { OrgApp's json },

  64. 		22: { OrgApp's json },

  65. 	},

  66. },

  67. "app_to_org_ids": { (app_id: org_id)

  68. 	11: 1,

  69. 	12: 1,

  70. 	21: 2,

  71. 	22: 2,

  72. },

  73. "app_roles": { (app_id: App_Role Obj)

  74. 	11: {App_Role's json},

  75. 	12: {App_Role's json},

  76. 	21: {App_Role's json},

  77. },

  78. "purviews": { (app_id: [processed Purviews' json])

  79. 	11: [

  80. 		{Purview's json .childs[

  81. 			{Purview's json},

  82. 			{Purview's json},

  83. 		]},

  84. 		{Purview's json},

  85. 	],

  86. 	12: [

  87. 		{Purview's json},

  88. 		{Purview's json},

  89. 	],

  90. },

  91. "purview_urlfors": { (app_id: [url_for])

  92. 	11: [

  93. 		"Controller1.Action1",

  94. 		"Controller1.Action2",

  95. 		"Controller2.Action1",

  96. 		"Controller2.Action2",

  97. 	],

  98. }

  99. 应当注意的是,屈服于 Golang 令人恶心的类型机制,这里将所有数值型的 key 或 value 全部转成了 string

  100. */

  101. // 解析用户信息,并返回

  102. func VerifyToken(token string, ip string, sessionID string) (*AdminUserInfo, error, int) {

  103. 	// if len(sessionID) == 0 {

  104. 	// 	return nil, &verifyTokenError{"sessionID 为空"}

  105. 	// }

  106. 	ssoDomain := beego.AppConfig.String("sso_domain")

  107. 	api := ssoDomain + "/verifytoken"

  108. 	values := make(url.Values)

  109. 

  110. 	values.Set("token", token)

  111. 	values.Set("app_type", "3")

  112. 	values.Set("ip", ip)

  113. 	values.Set("session_id", sessionID)

  114. 

  115. 	resp, requestErr := http.PostForm(api, values)

  116. 	fmt.Println("resp", resp)

  117. 	if requestErr != nil {

  118. 		utils.ErrorLog("请求验证 sso token 接口失败: %v", requestErr)

  119. 		return nil, requestErr, 0

  120. 	}

  121. 	defer resp.Body.Close()

  122. 	body, ioErr := ioutil.ReadAll(resp.Body)

  123. 	if ioErr != nil {

  124. 		utils.ErrorLog("验证 sso token 接口返回数据读取失败: %v", ioErr)

  125. 		return nil, ioErr, 0

  126. 	}

  127. 	var respJSON map[string]interface{}

  128. 	utils.InfoLog(string(body))

  129. 	if err := json.Unmarshal([]byte(string(body)), &respJSON); err != nil {

  130. 		utils.ErrorLog("验证 sso token 接口返回数据解析JSON失败: %v", err)

  131. 		return nil, err, 0

  132. 	}

  133. 	fmt.Println(respJSON)

  134. 

  135. 	if respJSON["state"].(float64) != 1 {

  136. 		msg := respJSON["msg"].(string)

  137. 		utils.ErrorLog("验证 sso token 接口请求失败: %v", msg)

  138. 		return nil, &verifyTokenError{"验证 sso token 接口请求失败"}, int(respJSON["code"].(float64))

  139. 	} else {

  140. 		utils.SuccessLog("验证 sso token 成功")

  141. 		return processAdminUserInfo(respJSON["data"].(map[string]interface{})), nil, 0

  142. 	}

  143. }

  144. 

  145. func processAdminUserInfo(data map[string]interface{}) *AdminUserInfo {

  146. 	adminUser := processAdminUser(data)

  147. 	currentOrgId, currentAppId := processCurrentOrgIDAndAppID(data)

  148. 	orgIds := processOrgIds(data)

  149. 	orgs := processOrgs(data)

  150. 	orgAppIds := processOrgAppIds(data)

  151. 	orgApps := processOrgApps(data)

  152. 	//app2OrgIds := processApp2OrgIds(data)

  153. 	appRoles := processAppRoles(data)

  154. 	appPurviews := processPurviews(data)

  155. 	appUrlfors := processPurviewUrlfors(data)

  156. 	//orgSubscibes := processOrgSubscibes(data)

  157. 	sessionAdminUserInfo := &AdminUserInfo{

  158. 		AdminUser:    adminUser,

  159. 		CurrentOrgId: currentOrgId,

  160. 		CurrentAppId: currentAppId,

  161. 		OrgIds:       orgIds,

  162. 		Orgs:         orgs,

  163. 		OrgAppIds:    orgAppIds,

  164. 		OrgApps:      orgApps,

  165. 		//App2OrgIds:   app2OrgIds,

  166. 		AppRoles:    appRoles,

  167. 		AppPurviews: appPurviews,

  168. 		AppUrlfors:  appUrlfors,

  169. 		//Subscibes:    orgSubscibes,

  170. 	}

  171. 	return sessionAdminUserInfo

  172. }

  173. 

  174. // "admin_user": { AdminUser's json },

  175. func processAdminUser(data map[string]interface{}) *models.AdminUser {

  176. 	userJSONStr := data["admin_user"].(string)

  177. 	var adminUser models.AdminUser

  178. 	if err := json.Unmarshal([]byte(userJSONStr), &adminUser); err != nil {

  179. 		utils.ErrorLog("解析用户信息失败:%v", err)

  180. 		return nil

  181. 	} else {

  182. 		return &adminUser

  183. 	}

  184. }

  185. 

  186. // current_org_id: 1,

  187. // current_app_id: 11,

  188. func processCurrentOrgIDAndAppID(data map[string]interface{}) (int64, int64) {

  189. 	orgIDStr := data["current_org_id"].(string)

  190. 	appIDStr := data["current_app_id"].(string)

  191. 	orgID, _ := strconv.Atoi(orgIDStr)

  192. 	appID, _ := strconv.Atoi(appIDStr)

  193. 	return int64(orgID), int64(appID)

  194. }

  195. 

  196. // "org_ids": [1, 2, 3],

  197. func processOrgIds(data map[string]interface{}) []int64 {

  198. 	orgIdStrs := data["org_ids"].([]interface{})

  199. 	orgIds := make([]int64, 0, len(orgIdStrs))

  200. 	for _, idstr := range orgIdStrs {

  201. 		id, _ := strconv.Atoi(idstr.(string))

  202. 		orgIds = append(orgIds, int64(id))

  203. 	}

  204. 	return orgIds

  205. }

  206. 

  207. // "orgs": { (org_id: Org_Obj)

  208. // 	1: { Org's json },

  209. // 	2: { Org's json },

  210. // },

  211. func processOrgs(data map[string]interface{}) map[int64]*models.Org {

  212. 	orgJSONs := data["orgs"].(map[string]interface{})

  213. 	orgs := make(map[int64]*models.Org)

  214. 	for orgIdStr, orgJSON := range orgJSONs {

  215. 		orgId, _ := strconv.Atoi(orgIdStr)

  216. 		var org models.Org

  217. 		json.Unmarshal([]byte(orgJSON.(string)), &org)

  218. 		orgs[int64(orgId)] = &org

  219. 	}

  220. 	return orgs

  221. }

  222. 

  223. // "org_app_ids": { (org_id: org_app_ids)

  224. // 	1: [11, 12, 13],

  225. // 	2: [21, 22, 23],

  226. // },

  227. func processOrgAppIds(data map[string]interface{}) map[int64][]int64 {

  228. 	orgAppIdStrs := data["org_app_ids"].(map[string]interface{})

  229. 	orgAppIds := make(map[int64][]int64)

  230. 	for orgIdStr, appIdStrs := range orgAppIdStrs {

  231. 		orgId, _ := strconv.Atoi(orgIdStr)

  232. 		appIds := make([]int64, 0, len(appIdStrs.([]interface{})))

  233. 		for _, appIdStr := range appIdStrs.([]interface{}) {

  234. 			appId, _ := strconv.Atoi(appIdStr.(string))

  235. 			appIds = append(appIds, int64(appId))

  236. 		}

  237. 		orgAppIds[int64(orgId)] = appIds

  238. 	}

  239. 	return orgAppIds

  240. }

  241. 

  242. // "org_apps": { (org_id: {app_id: OrgApp_Obj})

  243. // 	1: {

  244. // 		11: { OrgApp's json },

  245. // 		12: { OrgApp's json },

  246. // 	},

  247. // 	2: {

  248. // 		21: { OrgApp's json },

  249. // 		22: { OrgApp's json },

  250. // 	},

  251. // },

  252. func processOrgApps(data map[string]interface{}) map[int64]map[int64]*models.OrgApp {

  253. 	orgAppJSONs := data["org_apps"].(map[string]interface{})

  254. 	orgApps := make(map[int64]map[int64]*models.OrgApp)

  255. 	for orgIdStr, appJSONStrMap := range orgAppJSONs {

  256. 		orgId, _ := strconv.Atoi(orgIdStr)

  257. 

  258. 		apps := make(map[int64]*models.OrgApp)

  259. 		for appIdStr, appJSONStr := range appJSONStrMap.(map[string]interface{}) {

  260. 			appId, _ := strconv.Atoi(appIdStr)

  261. 

  262. 			var app models.OrgApp

  263. 			json.Unmarshal([]byte(appJSONStr.(string)), &app)

  264. 			apps[int64(appId)] = &app

  265. 		}

  266. 

  267. 		orgApps[int64(orgId)] = apps

  268. 	}

  269. 	return orgApps

  270. }

  271. 

  272. // "app_to_org_ids": { (app_id: org_id)

  273. // 	11: 1,

  274. // 	12: 1,

  275. // 	21: 2,

  276. // 	22: 2,

  277. // },

  278. func processApp2OrgIds(data map[string]interface{}) map[int64]int64 {

  279. 	app2OrgIdStrs := data["app_to_org_ids"].(map[string]interface{})

  280. 	app2OrgIds := make(map[int64]int64)

  281. 	for appIdStr, orgIdStr := range app2OrgIdStrs {

  282. 		orgId, _ := strconv.Atoi(orgIdStr.(string))

  283. 		appId, _ := strconv.Atoi(appIdStr)

  284. 		app2OrgIds[int64(appId)] = int64(orgId)

  285. 	}

  286. 	return app2OrgIds

  287. }

  288. 

  289. // "app_roles": { (app_id: App_Role Obj)

  290. // 	11: {App_Role's json},

  291. // 	12: {App_Role's json},

  292. // 	21: {App_Role's json},

  293. // },

  294. func processAppRoles(data map[string]interface{}) map[int64]*models.App_Role {

  295. 	appRoleJSONs := data["app_roles"].(map[string]interface{})

  296. 	appRoles := make(map[int64]*models.App_Role)

  297. 	for appIDStr, appRoleJSON := range appRoleJSONs {

  298. 		appID, _ := strconv.Atoi(appIDStr)

  299. 		var appRole models.App_Role

  300. 		json.Unmarshal([]byte(appRoleJSON.(string)), &appRole)

  301. 		appRoles[int64(appID)] = &appRole

  302. 	}

  303. 	return appRoles

  304. }

  305. 

  306. // "purviews": { (app_id: [processed Purviews' json])

  307. // 	11: [

  308. // 		{Purview's json .childs[

  309. // 			{Purview's json},

  310. // 			{Purview's json},

  311. // 		]},

  312. // 		{Purview's json},

  313. // 	],

  314. // 	12: [

  315. // 		{Purview's json},

  316. // 		{Purview's json},

  317. // 	],

  318. // },

  319. func processPurviews(data map[string]interface{}) map[int64][]*models.Purview {

  320. 	appPurviewJSONsStrs := data["purviews"].(map[string]interface{})

  321. 	appPurviews := make(map[int64][]*models.Purview)

  322. 	for appIdStr, purviewJSONsStr := range appPurviewJSONsStrs {

  323. 		appId, _ := strconv.Atoi(appIdStr)

  324. 		var purviews []*models.Purview

  325. 		json.Unmarshal([]byte(purviewJSONsStr.(string)), &purviews)

  326. 		// setLinkForPurviews(purviews)

  327. 		appPurviews[int64(appId)] = purviews

  328. 	}

  329. 	return appPurviews

  330. }

  331. 

  332. // func setLinkForPurviews(purviews []*models.Purview) {

  333. // 	for _, purview := range purviews {

  334. // 		if len(purview.Urlfor) == 0 {

  335. // 			purview.Link = ""

  336. // 		} else {

  337. // 			purview.Link = beego.URLFor(purview.Urlfor)

  338. // 		}

  339. // 		if purview.Childs == nil {

  340. // 			purview.Childs = make([]*models.Purview, 0)

  341. // 		} else {

  342. // 			setLinkForPurviews(purview.Childs)

  343. // 		}

  344. // 		// utils.TraceLog("%+v", purview)

  345. // 	}

  346. // }

  347. 

  348. // "purview_urlfors": { (app_id: [url_for])

  349. // 	11: [

  350. // 		"Controller1.Action1",

  351. // 		"Controller1.Action2",

  352. // 		"Controller2.Action1",

  353. // 		"Controller2.Action2",

  354. // 	],

  355. // }

  356. func processPurviewUrlfors(data map[string]interface{}) map[int64][]string {

  357. 	appUrlforsStrs := data["purview_urlfors"].(map[string]interface{})

  358. 	appUrlfors := make(map[int64][]string)

  359. 	for appIdStr, urlforsStr := range appUrlforsStrs {

  360. 		appId, _ := strconv.Atoi(appIdStr)

  361. 		var urlfors []string

  362. 		json.Unmarshal([]byte(urlforsStr.(string)), &urlfors)

  363. 		appUrlfors[int64(appId)] = urlfors

  364. 	}

  365. 	return appUrlfors

  366. }

  367. 

  368. // "org_subscibes": { (org_id: ServeSubscibe)

  369. //  11: {ServeSubscibe's json}

  370. // },

  371. func processOrgSubscibes(data map[string]interface{}) map[int64]*models.ServeSubscibe {

  372. 	subscibeJSONs := data["org_subscibes"].(map[string]interface{})

  373. 	subscibes := make(map[int64]*models.ServeSubscibe)

  374. 	for orgIDStr, subscibeJSON := range subscibeJSONs {

  375. 		orgID, _ := strconv.Atoi(orgIDStr)

  376. 		var subscibe models.ServeSubscibe

  377. 		json.Unmarshal([]byte(subscibeJSON.(string)), &subscibe)

  378. 		subscibes[int64(orgID)] = &subscibe

  379. 	}

  380. 	return subscibes

  381. }

  382. 

  383. func ModifyPassword(adminID int64, password string) error {

  384. 	err := writeUserDb.Model(&models.AdminUser{}).Where("id = ? AND status = 1", adminID).Updates(map[string]interface{}{"password": password, "mtime": time.Now().Unix()}).Error

  385. 	return err

  386. }

  387. 

  388. func GetPurviewById(ids string) ([]*models.Purview, error) {

  389. 	var originPurviews []*models.Purview

  390. 	getPurviewErr := readUserDb.Model(&models.Purview{}).Where(fmt.Sprintf("id in (%v) and status = 1", ids)).Order("listorder asc").Order("id asc").Find(&originPurviews).Error

  391. 	return originPurviews, getPurviewErr

  392. }

  393. 

  394. func FindAdminUserIDA(id int64) (role models.App_Role, err error) {

  395. 	err = readUserDb.Model(&models.App_Role{}).Where("id = ?", id).First(&role).Error

  396. 	return

  397. }

  398. 

  399. func GetSuperAdminUsersPurviewTreeAndUrlfors(appType int) ([]string, []*models.Purview, error) {

  400. 	originPurviews, getPurviewErr := getAllOriginPurviews(appType)

  401. 	if getPurviewErr != nil {

  402. 		return nil, nil, getPurviewErr

  403. 	}

  404. 	urlfors, processedPurviews := getUrlforsAndProcessPurviews2Tree(originPurviews)

  405. 	return urlfors, processedPurviews, nil

  406. }

  407. 

  408. // 加工这些规则:树形化;以及从中取出不为空的 urlfor

  409. // 正确结果的前提是 originPurviews 以 parentid asc 排好序了的

  410. func getUrlforsAndProcessPurviews2Tree(originPurviews []*models.Purview) ([]string, []*models.Purview) {

  411. 	processedPurviews := make([]*models.Purview, 0)

  412. 	pid_childs := make(map[int][]*models.Purview)

  413. 	urlfors := make([]string, 0, len(originPurviews))

  414. 	for _, purview := range originPurviews {

  415. 		if len(purview.Urlfor) != 0 {

  416. 			urlfors = append(urlfors, purview.Urlfor)

  417. 		}

  418. 

  419. 		// warning:下面这个算法只适用最多两层树形结构的菜单,对于两层以上的会丢失掉第三层及其以下的节点

  420. 		// 因为取出 originPurviews 的时候已经排过序了,所以顶级节点肯定最先处理,不需要担心子节点比父节点先处理

  421. 		if purview.Parentid == 0 {

  422. 			processedPurviews = append(processedPurviews, purview)

  423. 		} else {

  424. 			childs := pid_childs[int(purview.Parentid)]

  425. 			if pid_childs[int(purview.Parentid)] == nil {

  426. 				childs = make([]*models.Purview, 0)

  427. 			}

  428. 			childs = append(childs, purview)

  429. 			pid_childs[int(purview.Parentid)] = childs

  430. 		}

  431. 	}

  432. 

  433. 	for _, proPurview := range processedPurviews {

  434. 		proPurview.Childs = pid_childs[int(proPurview.Id)]

  435. 	}

  436. 

  437. 	return urlfors, processedPurviews

  438. }

  439. 

  440. func getAllOriginPurviews(appType int) ([]*models.Purview, error) {

  441. 	var purviews []*models.Purview

  442. 	getPurviewErr := readUserDb.Model(models.Purview{}).Where("module = ? AND status = 1", appType).Order("listorder asc").Order("id asc").Find(&purviews).Error

  443. 	if getPurviewErr != nil {

  444. 		if getPurviewErr == gorm.ErrRecordNotFound {

  445. 			return nil, nil

  446. 		} else {

  447. 			return nil, getPurviewErr

  448. 		}

  449. 	}

  450. 	return purviews, nil

  451. }