Home Explore Help
Register Sign In
csx
/
XT_New
Watch 1
Star 0
Fork 0
Code Issues 9 Pull Requests 0 Releases 0 Wiki Activity
4 Commits
13 Branches
Tree: b049f24f0f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b049f24f0f'
${ noResults }
XT_New/service/verify_login_token_service.go

verify_login_token_service.go 11KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386 
  1. package service

  2. 

  3. import (

  4. 	"encoding/json"

  5. 	"io/ioutil"

  6. 	"net/http"

  7. 	"net/url"

  8. 	"strconv"

  9. 	"time"

  10. 

  11. 	"XT_New/models"

  12. 	"XT_New/utils"

  13. 

  14. 	"fmt"

  15. 	"github.com/astaxie/beego"

  16. )

  17. 

  18. type AdminUserInfo struct {

  19. 	AdminUser    *models.AdminUser                    `json:"user"`

  20. 	CurrentOrgId int64                                `json:"current_org_id"`

  21. 	CurrentAppId int64                                `json:"current_app_id"`

  22. 	OrgIds       []int64                              `json:"org_ids"`

  23. 	Orgs         map[int64]*models.Org                `json:"orgs"`

  24. 	OrgAppIds    map[int64][]int64                    `json:"org_app_ids"`

  25. 	OrgApps      map[int64](map[int64]*models.OrgApp) `json:"org_apps"`

  26. 	App2OrgIds   map[int64]int64                      `json:"app_to_org_ids"`

  27. 	AppRoles     map[int64]*models.App_Role           `json:"app_roles"`

  28. 	AppPurviews  map[int64][]*models.Purview          `json:"app_purviews"`

  29. 	AppUrlfors   map[int64][]string                   `json:"app_urlfors"`

  30. 	Subscibes    map[int64]*models.ServeSubscibe      `json:"org_subscibes"`

  31. }

  32. 

  33. type verifyTokenError struct {

  34. 	Msg string

  35. }

  36. 

  37. func (e *verifyTokenError) Error() string {

  38. 	return e.Msg

  39. }

  40. 

  41. // 验证 token 成功后返回的管理员用户的所有信息,包括:基本用户信息,所属的所有机构,机构下的所有应用,应用的用户权限

  42. // map 的数据格式为

  43. /*

  44. "admin_user": { AdminUser's json },

  45. current_org_id: 1,

  46. current_app_id: 11,

  47. "org_ids": [1, 2, 3],

  48. "orgs": { (org_id: Org_Obj)

  49. 	1: { Org's json },

  50. 	2: { Org's json },

  51. },

  52. "org_app_ids": { (org_id: org_app_ids)

  53. 	1: [11, 12, 13],

  54. 	2: [21, 22, 23],

  55. },

  56. "org_apps": { (org_id: {app_id: OrgApp_Obj})

  57. 	1: {

  58. 		11: { OrgApp's json },

  59. 		12: { OrgApp's json },

  60. 	},

  61. 	2: {

  62. 		21: { OrgApp's json },

  63. 		22: { OrgApp's json },

  64. 	},

  65. },

  66. "app_to_org_ids": { (app_id: org_id)

  67. 	11: 1,

  68. 	12: 1,

  69. 	21: 2,

  70. 	22: 2,

  71. },

  72. "app_roles": { (app_id: App_Role Obj)

  73. 	11: {App_Role's json},

  74. 	12: {App_Role's json},

  75. 	21: {App_Role's json},

  76. },

  77. "purviews": { (app_id: [processed Purviews' json])

  78. 	11: [

  79. 		{Purview's json .childs[

  80. 			{Purview's json},

  81. 			{Purview's json},

  82. 		]},

  83. 		{Purview's json},

  84. 	],

  85. 	12: [

  86. 		{Purview's json},

  87. 		{Purview's json},

  88. 	],

  89. },

  90. "purview_urlfors": { (app_id: [url_for])

  91. 	11: [

  92. 		"Controller1.Action1",

  93. 		"Controller1.Action2",

  94. 		"Controller2.Action1",

  95. 		"Controller2.Action2",

  96. 	],

  97. }

  98. 应当注意的是,屈服于 Golang 令人恶心的类型机制,这里将所有数值型的 key 或 value 全部转成了 string

  99. */

  100. // 解析用户信息,并返回

  101. func VerifyToken(token string, ip string, sessionID string) (*AdminUserInfo, error, int) {

  102. 	// if len(sessionID) == 0 {

  103. 	// 	return nil, &verifyTokenError{"sessionID 为空"}

  104. 	// }

  105. 	ssoDomain := beego.AppConfig.String("sso_domain")

  106. 	api := ssoDomain + "/verifytoken"

  107. 	values := make(url.Values)

  108. 

  109. 	values.Set("token", token)

  110. 	values.Set("app_type", "3")

  111. 	values.Set("ip", ip)

  112. 	values.Set("session_id", sessionID)

  113. 

  114. 	resp, requestErr := http.PostForm(api, values)

  115. 	fmt.Println("resp", resp)

  116. 	if requestErr != nil {

  117. 		utils.ErrorLog("请求验证 sso token 接口失败: %v", requestErr)

  118. 		return nil, requestErr, 0

  119. 	}

  120. 	defer resp.Body.Close()

  121. 	body, ioErr := ioutil.ReadAll(resp.Body)

  122. 	if ioErr != nil {

  123. 		utils.ErrorLog("验证 sso token 接口返回数据读取失败: %v", ioErr)

  124. 		return nil, ioErr, 0

  125. 	}

  126. 	var respJSON map[string]interface{}

  127. 	utils.InfoLog(string(body))

  128. 	if err := json.Unmarshal([]byte(string(body)), &respJSON); err != nil {

  129. 		utils.ErrorLog("验证 sso token 接口返回数据解析JSON失败: %v", err)

  130. 		return nil, err, 0

  131. 	}

  132. 	fmt.Println(respJSON)

  133. 

  134. 	if respJSON["state"].(float64) != 1 {

  135. 		msg := respJSON["msg"].(string)

  136. 		utils.ErrorLog("验证 sso token 接口请求失败: %v", msg)

  137. 		return nil, &verifyTokenError{"验证 sso token 接口请求失败"}, int(respJSON["code"].(float64))

  138. 	} else {

  139. 		utils.SuccessLog("验证 sso token 成功")

  140. 		return processAdminUserInfo(respJSON["data"].(map[string]interface{})), nil, 0

  141. 	}

  142. }

  143. 

  144. func processAdminUserInfo(data map[string]interface{}) *AdminUserInfo {

  145. 	adminUser := processAdminUser(data)

  146. 	currentOrgId, currentAppId := processCurrentOrgIDAndAppID(data)

  147. 	orgIds := processOrgIds(data)

  148. 	orgs := processOrgs(data)

  149. 	orgAppIds := processOrgAppIds(data)

  150. 	orgApps := processOrgApps(data)

  151. 	app2OrgIds := processApp2OrgIds(data)

  152. 	appRoles := processAppRoles(data)

  153. 	appPurviews := processPurviews(data)

  154. 	appUrlfors := processPurviewUrlfors(data)

  155. 	orgSubscibes := processOrgSubscibes(data)

  156. 	sessionAdminUserInfo := &AdminUserInfo{

  157. 		AdminUser:    adminUser,

  158. 		CurrentOrgId: currentOrgId,

  159. 		CurrentAppId: currentAppId,

  160. 		OrgIds:       orgIds,

  161. 		Orgs:         orgs,

  162. 		OrgAppIds:    orgAppIds,

  163. 		OrgApps:      orgApps,

  164. 		App2OrgIds:   app2OrgIds,

  165. 		AppRoles:     appRoles,

  166. 		AppPurviews:  appPurviews,

  167. 		AppUrlfors:   appUrlfors,

  168. 		Subscibes:    orgSubscibes,

  169. 	}

  170. 	return sessionAdminUserInfo

  171. }

  172. 

  173. // "admin_user": { AdminUser's json },

  174. func processAdminUser(data map[string]interface{}) *models.AdminUser {

  175. 	userJSONStr := data["admin_user"].(string)

  176. 	var adminUser models.AdminUser

  177. 	if err := json.Unmarshal([]byte(userJSONStr), &adminUser); err != nil {

  178. 		utils.ErrorLog("解析用户信息失败:%v", err)

  179. 		return nil

  180. 	} else {

  181. 		return &adminUser

  182. 	}

  183. }

  184. 

  185. // current_org_id: 1,

  186. // current_app_id: 11,

  187. func processCurrentOrgIDAndAppID(data map[string]interface{}) (int64, int64) {

  188. 	orgIDStr := data["current_org_id"].(string)

  189. 	appIDStr := data["current_app_id"].(string)

  190. 	orgID, _ := strconv.Atoi(orgIDStr)

  191. 	appID, _ := strconv.Atoi(appIDStr)

  192. 	return int64(orgID), int64(appID)

  193. }

  194. 

  195. // "org_ids": [1, 2, 3],

  196. func processOrgIds(data map[string]interface{}) []int64 {

  197. 	orgIdStrs := data["org_ids"].([]interface{})

  198. 	orgIds := make([]int64, 0, len(orgIdStrs))

  199. 	for _, idstr := range orgIdStrs {

  200. 		id, _ := strconv.Atoi(idstr.(string))

  201. 		orgIds = append(orgIds, int64(id))

  202. 	}

  203. 	return orgIds

  204. }

  205. 

  206. // "orgs": { (org_id: Org_Obj)

  207. // 	1: { Org's json },

  208. // 	2: { Org's json },

  209. // },

  210. func processOrgs(data map[string]interface{}) map[int64]*models.Org {

  211. 	orgJSONs := data["orgs"].(map[string]interface{})

  212. 	orgs := make(map[int64]*models.Org)

  213. 	for orgIdStr, orgJSON := range orgJSONs {

  214. 		orgId, _ := strconv.Atoi(orgIdStr)

  215. 		var org models.Org

  216. 		json.Unmarshal([]byte(orgJSON.(string)), &org)

  217. 		orgs[int64(orgId)] = &org

  218. 	}

  219. 	return orgs

  220. }

  221. 

  222. // "org_app_ids": { (org_id: org_app_ids)

  223. // 	1: [11, 12, 13],

  224. // 	2: [21, 22, 23],

  225. // },

  226. func processOrgAppIds(data map[string]interface{}) map[int64][]int64 {

  227. 	orgAppIdStrs := data["org_app_ids"].(map[string]interface{})

  228. 	orgAppIds := make(map[int64][]int64)

  229. 	for orgIdStr, appIdStrs := range orgAppIdStrs {

  230. 		orgId, _ := strconv.Atoi(orgIdStr)

  231. 		appIds := make([]int64, 0, len(appIdStrs.([]interface{})))

  232. 		for _, appIdStr := range appIdStrs.([]interface{}) {

  233. 			appId, _ := strconv.Atoi(appIdStr.(string))

  234. 			appIds = append(appIds, int64(appId))

  235. 		}

  236. 		orgAppIds[int64(orgId)] = appIds

  237. 	}

  238. 	return orgAppIds

  239. }

  240. 

  241. // "org_apps": { (org_id: {app_id: OrgApp_Obj})

  242. // 	1: {

  243. // 		11: { OrgApp's json },

  244. // 		12: { OrgApp's json },

  245. // 	},

  246. // 	2: {

  247. // 		21: { OrgApp's json },

  248. // 		22: { OrgApp's json },

  249. // 	},

  250. // },

  251. func processOrgApps(data map[string]interface{}) map[int64]map[int64]*models.OrgApp {

  252. 	orgAppJSONs := data["org_apps"].(map[string]interface{})

  253. 	orgApps := make(map[int64]map[int64]*models.OrgApp)

  254. 	for orgIdStr, appJSONStrMap := range orgAppJSONs {

  255. 		orgId, _ := strconv.Atoi(orgIdStr)

  256. 

  257. 		apps := make(map[int64]*models.OrgApp)

  258. 		for appIdStr, appJSONStr := range appJSONStrMap.(map[string]interface{}) {

  259. 			appId, _ := strconv.Atoi(appIdStr)

  260. 

  261. 			var app models.OrgApp

  262. 			json.Unmarshal([]byte(appJSONStr.(string)), &app)

  263. 			apps[int64(appId)] = &app

  264. 		}

  265. 

  266. 		orgApps[int64(orgId)] = apps

  267. 	}

  268. 	return orgApps

  269. }

  270. 

  271. // "app_to_org_ids": { (app_id: org_id)

  272. // 	11: 1,

  273. // 	12: 1,

  274. // 	21: 2,

  275. // 	22: 2,

  276. // },

  277. func processApp2OrgIds(data map[string]interface{}) map[int64]int64 {

  278. 	app2OrgIdStrs := data["app_to_org_ids"].(map[string]interface{})

  279. 	app2OrgIds := make(map[int64]int64)

  280. 	for appIdStr, orgIdStr := range app2OrgIdStrs {

  281. 		orgId, _ := strconv.Atoi(orgIdStr.(string))

  282. 		appId, _ := strconv.Atoi(appIdStr)

  283. 		app2OrgIds[int64(appId)] = int64(orgId)

  284. 	}

  285. 	return app2OrgIds

  286. }

  287. 

  288. // "app_roles": { (app_id: App_Role Obj)

  289. // 	11: {App_Role's json},

  290. // 	12: {App_Role's json},

  291. // 	21: {App_Role's json},

  292. // },

  293. func processAppRoles(data map[string]interface{}) map[int64]*models.App_Role {

  294. 	appRoleJSONs := data["app_roles"].(map[string]interface{})

  295. 	appRoles := make(map[int64]*models.App_Role)

  296. 	for appIDStr, appRoleJSON := range appRoleJSONs {

  297. 		appID, _ := strconv.Atoi(appIDStr)

  298. 		var appRole models.App_Role

  299. 		json.Unmarshal([]byte(appRoleJSON.(string)), &appRole)

  300. 		appRoles[int64(appID)] = &appRole

  301. 	}

  302. 	return appRoles

  303. }

  304. 

  305. // "purviews": { (app_id: [processed Purviews' json])

  306. // 	11: [

  307. // 		{Purview's json .childs[

  308. // 			{Purview's json},

  309. // 			{Purview's json},

  310. // 		]},

  311. // 		{Purview's json},

  312. // 	],

  313. // 	12: [

  314. // 		{Purview's json},

  315. // 		{Purview's json},

  316. // 	],

  317. // },

  318. func processPurviews(data map[string]interface{}) map[int64][]*models.Purview {

  319. 	appPurviewJSONsStrs := data["purviews"].(map[string]interface{})

  320. 	appPurviews := make(map[int64][]*models.Purview)

  321. 	for appIdStr, purviewJSONsStr := range appPurviewJSONsStrs {

  322. 		appId, _ := strconv.Atoi(appIdStr)

  323. 		var purviews []*models.Purview

  324. 		json.Unmarshal([]byte(purviewJSONsStr.(string)), &purviews)

  325. 		// setLinkForPurviews(purviews)

  326. 		appPurviews[int64(appId)] = purviews

  327. 	}

  328. 	return appPurviews

  329. }

  330. 

  331. // func setLinkForPurviews(purviews []*models.Purview) {

  332. // 	for _, purview := range purviews {

  333. // 		if len(purview.Urlfor) == 0 {

  334. // 			purview.Link = ""

  335. // 		} else {

  336. // 			purview.Link = beego.URLFor(purview.Urlfor)

  337. // 		}

  338. // 		if purview.Childs == nil {

  339. // 			purview.Childs = make([]*models.Purview, 0)

  340. // 		} else {

  341. // 			setLinkForPurviews(purview.Childs)

  342. // 		}

  343. // 		// utils.TraceLog("%+v", purview)

  344. // 	}

  345. // }

  346. 

  347. // "purview_urlfors": { (app_id: [url_for])

  348. // 	11: [

  349. // 		"Controller1.Action1",

  350. // 		"Controller1.Action2",

  351. // 		"Controller2.Action1",

  352. // 		"Controller2.Action2",

  353. // 	],

  354. // }

  355. func processPurviewUrlfors(data map[string]interface{}) map[int64][]string {

  356. 	appUrlforsStrs := data["purview_urlfors"].(map[string]interface{})

  357. 	appUrlfors := make(map[int64][]string)

  358. 	for appIdStr, urlforsStr := range appUrlforsStrs {

  359. 		appId, _ := strconv.Atoi(appIdStr)

  360. 		var urlfors []string

  361. 		json.Unmarshal([]byte(urlforsStr.(string)), &urlfors)

  362. 		appUrlfors[int64(appId)] = urlfors

  363. 	}

  364. 	return appUrlfors

  365. }

  366. 

  367. // "org_subscibes": { (org_id: ServeSubscibe)

  368. //  11: {ServeSubscibe's json}

  369. // },

  370. func processOrgSubscibes(data map[string]interface{}) map[int64]*models.ServeSubscibe {

  371. 	subscibeJSONs := data["org_subscibes"].(map[string]interface{})

  372. 	subscibes := make(map[int64]*models.ServeSubscibe)

  373. 	for orgIDStr, subscibeJSON := range subscibeJSONs {

  374. 		orgID, _ := strconv.Atoi(orgIDStr)

  375. 		var subscibe models.ServeSubscibe

  376. 		json.Unmarshal([]byte(subscibeJSON.(string)), &subscibe)

  377. 		subscibes[int64(orgID)] = &subscibe

  378. 	}

  379. 	return subscibes

  380. }

  381. 

  382. func ModifyPassword(adminID int64, password string) error {

  383. 	err := writeUserDb.Model(&models.AdminUser{}).Where("id = ? AND status = 1", adminID).Updates(map[string]interface{}{"password": password, "mtime": time.Now().Unix()}).Error

  384. 	return err

  385. }