首頁 探索 說明
註冊 登入
packages
/
light-apiengine-feature
0
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 3105aab519
分支列表 標籤列表
light-apieng...
/
utils
/
auth
/
light_auth.go

light_auth.go 4.7 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153 
  1. package auth
    2. 

  2. 

  3. import (
    4. 

  4. 	"fmt"
    5. 

  5. 	"git.qianqiusoft.com/qianqiusoft/light-apiengine/entitys"
    6. 

  6. 	sysmodel "git.qianqiusoft.com/qianqiusoft/light-apiengine/models"
    7. 

  7. 	sysutils "git.qianqiusoft.com/qianqiusoft/light-apiengine/utils"
    8. 

  8. 	"github.com/xormplus/xorm"
    9. 

  9. 	"net"
    10. 

  10. 	"net/http"
    11. 

  11. 	"strings"
    12. 

  12. )
    13. 

  13. 

  14. type LightAuth struct {
    15. 

  15. }
    16. 

  16. 

  17. var session *xorm.Engine
    18. 

  18. 

  19. func init() {
    20. 

  20. 	lightAuth := &LightAuth{}
    21. 

  21. 	RegisterAuth("qianqiusoft.com", lightAuth)
    22. 

  22. }
    23. 

  23. 

  24. func (la *LightAuth) Init() {
    25. 

  25. 

  26. }
    27. 

  27. 

  28. func (la *LightAuth) Login(c *entitys.CtrlContext) {
    29. 

  29. 	var logininfo sysmodel.LoginInfo
    30. 

  30. 	c.Ctx.BindJSON(&logininfo)
    31. 

  31. 	//fmt.Println(logininfo)
    32. 

  32. 	var user sysmodel.SysUser
    33. 

  33. 	ret, err := c.PlatformDbEngine.SQL(sysmodel.SqlUserLogin, logininfo.Account).Get(&user)
    34. 

  34. 	if ret && err == nil {
    35. 

  35. 		//TODO check password
    36. 

  36. 		md5Pwd := sysutils.HashPassword(logininfo.Password, "")
    37. 

  37. 		//密码错误
    38. 

  38. 		if !strings.EqualFold(user.Password, md5Pwd) {
    39. 

  39. 			c.Ctx.JSON(200, sysmodel.SysReturn{400, "password incorrect!", nil})
    40. 

  40. 			return
    41. 

  41. 		}
    42. 

  42. 

  43. 		//token := &entitys.Token{}
    44. 

  44. 		//timestamp_str := strconv.FormatUint(timestamp, 10)
    45. 

  45. 		//sec_tooken := sysutils.GenerateToken(logininfo.Account + timestamp_str)
    46. 

  46. 		//if v := sysutils.GetGlobalTokenStore().Get(sec_tooken); v == nil {
    47. 

  47. 		//	token.AccessToken = sec_tooken
    48. 

  48. 		//	token.RefreshToken = sec_tooken
    49. 

  49. 		//	token.LoginID = logininfo.Account
    50. 

  50. 		//	token.UserId = user.Id
    51. 

  51. 		//	token.Result = 200
    52. 

  52. 		//	//token.Password = pwd
    53. 

  53. 		//	token.ServerIp = ""
    54. 

  54. 		//	token.Domain = user.Domain
    55. 

  55. 		//	sysutils.GetGlobalTokenStore().Set(sec_tooken, token)
    56. 

  56. 		//	//sysutils.GetGlobalTokenStore().Set(token.LoginID+user.Domain, token)
    57. 

  57. 		//} else {
    58. 

  58. 		//	token = v
    59. 

  59. 		//}
    60. 

  60. 		//// 查找Business对应的用户信息
    61. 

  61. 		//var businessUser sysmodel.SysUser
    62. 

  62. 		//_, err = c.App.GetBusinessDb(user.Domain).Table(new(sysmodel.SysUser)).ID(user.Id).Get(&businessUser)
    63. 

  63. 		//if err != nil {
    64. 

  64. 		//	c.Ctx.JSON(200, sysmodel.SysReturn{400, "business db con't found user!", nil})
    65. 

  65. 		//	return
    66. 

  66. 		//}
    67. 

  67. 		//
    68. 

  68. 		//data := sysmodel.LoginReturnInfo{}
    69. 

  69. 		//data.Id = user.Id
    70. 

  70. 		//data.LoginId = user.LoginId
    71. 

  71. 		//data.Token = token.AccessToken
    72. 

  72. 		//data.Type = user.Type
    73. 

  73. 		//data.Domain = user.Domain
    74. 

  74. 		//data.OrgId = businessUser.OrgId
    75. 

  75. 		//data.Name = businessUser.Name
    76. 

  76. 		//data.Mobile = businessUser.Mobile
    77. 

  77. 		//data.Email = businessUser.Email
    78. 

  78. 		//
    79. 

  79. 		//// 查找用户对应角色
    80. 

  80. 		//var roles []sysmodel.SysRole
    81. 

  81. 		//c.App.GetBusinessDb(user.Domain).SQL("select sys_role.* from sys_user_role, sys_role where sys_user_role.role_id = sys_role.id and sys_role.del_flag = 0 and sys_user_role.user_id = ? order by sys_role.priority asc", user.Id).Find(&roles)
    82. 

  82. 		//data.Roles = roles
    83. 

  83. 

  84. 		data, err := AddToGlobalTokenStore(c, &user)
    85. 

  85. 		if err != nil {
    86. 

  86. 			c.Ctx.JSON(200, sysmodel.SysReturn{400, err.Error(), nil})
    87. 

  87. 			return
    88. 

  88. 		}
    89. 

  89. 		//登录日志
    90. 

  90. 		if session != nil {
    91. 

  91. 			ip := RemoteIp(c.Ctx.Request)
    92. 

  92. 			sql := "insert into log_sys_login (user_id,account,ip_addr,login_time,del_flag,login_type,user_name) values (?, ?,?,?,?,?,?)"
    93. 

  93. 			_, err = session.Exec(sql, user.Id, user.LoginId, ip, sysmodel.NowLocal().Value(), 0, 0, user.Name)
    94. 

  94. 			if err != nil {
    95. 

  95. 				c.Ctx.JSON(200, sysmodel.SysReturn{400, err.Error(), nil})
    96. 

  96. 				return
    97. 

  97. 			}
    98. 

  98. 

  99. 		}
    100. 

  100. 		//
    101. 

  101. 		c.Ctx.JSON(200, sysmodel.SysReturn{200, "", data})
    102. 

  102. 	} else {
    103. 

  103. 		//fmt.Println(err.Error())
    104. 

  104. 		c.Ctx.JSON(200, sysmodel.SysReturn{400, "username or password incorrect!", nil})
    105. 

  105. 	}
    106. 

  106. }
    107. 

  107. 

  108. func (la *LightAuth) Logout(c *entitys.CtrlContext) {
    109. 

  109. 	token := c.Ctx.GetHeader("token")
    110. 

  110. 	fmt.Println("delete token: ", token)
    111. 

  111. 	sysutils.GetGlobalTokenStore().Remove(token)
    112. 

  112. 	//登录日志
    113. 

  113. 	tokenStore := sysutils.GetGlobalTokenStore()
    114. 

  114. 	tokenInfo := tokenStore.Get(token)
    115. 

  115. 	user := new(sysmodel.SysUser)
    116. 

  116. 	if session != nil && tokenInfo != nil {
    117. 

  117. 		_, err := c.PlatformDbEngine.Table(user.TableName()).Where("login_id = ?", tokenInfo.LoginID).Get(user)
    118. 

  118. 		if err != nil {
    119. 

  119. 			c.Ctx.JSON(200, sysmodel.SysReturn{400, err.Error(), nil})
    120. 

  120. 			return
    121. 

  121. 		}
    122. 

  122. 		ip := RemoteIp(c.Ctx.Request)
    123. 

  123. 		sql := "insert into log_sys_login (user_id,account,ip_addr,login_time,del_flag,login_type,user_name) values (?, ?,?,?,?,?,?)"
    124. 

  124. 		_, err = session.Exec(sql, user.Id, user.LoginId, ip, sysmodel.NowLocal().Value(), 0, 1, user.Name)
    125. 

  125. 		if err != nil {
    126. 

  126. 			c.Ctx.JSON(200, sysmodel.SysReturn{400, err.Error(), nil})
    127. 

  127. 			return
    128. 

  128. 		}
    129. 

  129. 	}
    130. 

  130. 	//
    131. 

  131. 	c.Ctx.JSON(200, sysmodel.SysReturn{200, "", nil})
    132. 

  132. }
    133. 

  133. 

  134. const (
    135. 

  135. 	XForwardedFor = "X-Forwarded-For"
    136. 

  136. 	XRealIP       = "X-Real-IP"
    137. 

  137. )
    138. 

  138. 

  139. // RemoteIp 返回远程客户端的 IP,如 192.168.1.1
    140. 

  140. func RemoteIp(req *http.Request) string {
    141. 

  141. 	remoteAddr := req.RemoteAddr
    142. 

  142. 	if ip := req.Header.Get(XRealIP); ip != "" {
    143. 

  143. 		remoteAddr = ip
    144. 

  144. 	} else if ip = req.Header.Get(XForwardedFor); ip != "" {
    145. 

  145. 		remoteAddr = ip
    146. 

  146. 	} else {
    147. 

  147. 		remoteAddr, _, _ = net.SplitHostPort(remoteAddr)
    148. 

  148. 	}
    149. 

  149. 	if remoteAddr == "::1" {
    150. 

  150. 		remoteAddr = "127.0.0.1"
    151. 

  151. 	}
    152. 

  152. 	return remoteAddr
    153. 

  153. }
    154.