ewide/number_zj
22
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

init commit

Browse Source
This commit is contained in:
路 范
2022-03-30 17:54:33 +08:00
parent df01841625
commit 904bdd16cd
500 changed files with 217251 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

358
20220330_Vote/Ewide.Core/Service/Auth/AuthService.cs Normal file
View File

@@ -0,0 +1,358 @@
using Ewide.Core.Attributes;
using Ewide.Core.Util;
using Furion;
using Furion.DatabaseAccessor;
using Furion.DatabaseAccessor.Extensions;
using Furion.DataEncryption;
using Furion.DependencyInjection;
using Furion.DynamicApiController;
using Furion.FriendlyException;
using Mapster;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using System;
using System.Collections.Generic;
using System.ComponentModel.DataAnnotations;
using System.Linq;
using System.Text.RegularExpressions;
using System.Threading.Tasks;
using UAParser;
namespace Ewide.Core.Service
{
/// <summary>
/// 登录授权相关服务
/// </summary>
[ApiDescriptionSettings(Name = "Auth", Order = 160)]
public class AuthService : IAuthService, IDynamicApiController, ITransient
{
private readonly IRepository<SysUser> _sysUserRep; // 用户表仓储
private readonly IHttpContextAccessor _httpContextAccessor;
private readonly IUserManager _userManager; // 用户管理
private readonly ISysUserService _sysUserService; // 系统用户服务
private readonly ISysEmpService _sysEmpService; // 系统员工服务
private readonly ISysRoleService _sysRoleService; // 系统角色服务
private readonly ISysMenuService _sysMenuService; // 系统菜单服务
private readonly ISysAppService _sysAppService; // 系统应用服务
private readonly IClickWordCaptcha _captchaHandle;// 验证码服务
private readonly ISysConfigService _sysConfigService; // 验证码服务
public AuthService(IRepository<SysUser> sysUserRep,
IHttpContextAccessor httpContextAccessor,
IUserManager userManager,
ISysUserService sysUserService,
ISysEmpService sysEmpService,
ISysRoleService sysRoleService,
ISysMenuService sysMenuService,
ISysAppService sysAppService,
IClickWordCaptcha captchaHandle,
ISysConfigService sysConfigService)
{
_sysUserRep = sysUserRep;
_httpContextAccessor = httpContextAccessor;
_userManager = userManager;
_sysUserService = sysUserService;
_sysEmpService = sysEmpService;
_sysRoleService = sysRoleService;
_sysMenuService = sysMenuService;
_sysAppService = sysAppService;
_captchaHandle = captchaHandle;
_sysConfigService = sysConfigService;
}
/// <summary>
/// 用户登录
/// </summary>
/// <param name="input"></param>
/// <remarks>默认用户名/密码admin/admin</remarks>
/// <returns></returns>
[HttpPost("/loginswagger")]
[AllowAnonymous]
[Op(LogOpType.GRANT)]
public async Task<LoginOutput> LoginSwaggerAsync([Required] LoginInput input)
{
input.Password = RSAHandler.RSAEncrypt(input.Password);
return await LoginAsync(input);
}
/// <summary>
/// 用户登录
/// </summary>
/// <param name="input"></param>
/// <remarks>默认用户名/密码admin/admin</remarks>
/// <returns></returns>
[HttpPost("/login")]
[AllowAnonymous]
[Op(LogOpType.GRANT)]
public async Task<LoginOutput> LoginAsync([Required] LoginInput input)
{
#if !DEBUG
var password = RSAHandler.RSADecrypt(input.Password);
#endif
var user = await GetUser(input);
#if !DEBUG
// 验证密码强度
var pattern = App.Configuration.GetSection("SimplePassword:Pattern").Value;
if (!Regex.Match(password, pattern).Success)
{
return new LoginOutput
{
Passed = false,
Pattern = pattern,
Descriptions = App.Configuration.GetSection("SimplePassword:Descriptions").Value
};
}
#endif
return new LoginOutput
{
Passed = true,
Token = await HandlerLoginAsync(user)
};
}
[HttpPost("/loginPass")]
[AllowAnonymous]
public async Task<LoginOutput> LoginPassAsync([Required] LoginPassInput input)
{
var user = await GetUser(input);
var newPassword = RSAHandler.RSADecrypt(input.NewPassword);
// 验证新密码强度
var pattern = App.Configuration.GetSection("SimplePassword:Pattern").Value;
if (!Regex.Match(newPassword, pattern).Success)
{
throw Oops.Oh("新密码强度不符合规则");
}
newPassword = MD5Encryption.Encrypt(newPassword);
if (newPassword.Equals(user.Password))
throw Oops.Oh(ErrorCode.D10041);
user.Password = newPassword;
return new LoginOutput
{
Passed = true,
Token = await HandlerLoginAsync(user)
};
}
private async Task<SysUser> GetUser(LoginInput input)
{
#if !DEBUG
var password = RSAHandler.RSADecrypt(input.Password);
// 获取加密后的密码
var encryptPasswod = MD5Encryption.Encrypt(password);
#endif
#if DEBUG
var user = await _sysUserRep.FirstOrDefaultAsync(u => u.Account.Equals(input.Account) || u.Phone.Equals(input.Account) || u.Email.Equals(input.Account));
#else
// 判断用户名和密码是否正确
var user = await _sysUserRep.FirstOrDefaultAsync(u => (u.Account.Equals(input.Account) || u.Phone.Equals(input.Account) || u.Email.Equals(input.Account)) && u.Password.Equals(encryptPasswod));
_ = user ?? throw Oops.Oh(ErrorCode.D1000);
#endif
// 验证账号是否被冻结
if (user.Status == CommonStatus.DISABLE)
throw Oops.Oh(ErrorCode.D1017);
return user;
}
private async Task<string> HandlerLoginAsync(SysUser user)
{
// 生成Token令牌
//var accessToken = await _jwtBearerManager.CreateTokenAdmin(user);
var accessToken = JWTEncryption.Encrypt(new Dictionary<string, object>
{
{ ClaimConst.CLAINM_USERID, user.Id },
{ ClaimConst.CLAINM_ACCOUNT, user.Account },
{ ClaimConst.CLAINM_NAME, user.Name },
{ ClaimConst.CLAINM_SUPERADMIN, user.AdminType },
});
// 设置Swagger自动登录
_httpContextAccessor.HttpContext.SigninToSwagger(accessToken);
// 生成刷新Token令牌
var refreshToken = JWTEncryption.GenerateRefreshToken(accessToken, 30);
// 设置刷新Token令牌
_httpContextAccessor.HttpContext.Response.Headers["x-access-token"] = refreshToken;
// 增加登录日志
var loginUserOutput = user.Adapt<LoginUserOutput>();
var clent = Parser.GetDefault().Parse(App.GetService<IHttpContextAccessor>().HttpContext.Request.Headers["User-Agent"]);
loginUserOutput.LastLoginBrowser = clent.UA.Family + clent.UA.Major;
loginUserOutput.LastLoginOs = clent.OS.Family + clent.OS.Major;
await new SysLogVis
{
Name = "登录",
Success = true,
Message = "登录成功",
Ip = loginUserOutput.LastLoginIp,
Browser = loginUserOutput.LastLoginBrowser,
Os = loginUserOutput.LastLoginOs,
VisType = 1,
VisTime = loginUserOutput.LastLoginTime,
Account = loginUserOutput.Account
}.InsertAsync();
return accessToken;
}
/// <summary>
/// 获取当前登录用户信息
/// </summary>
/// <returns></returns>
[HttpGet("/getLoginUser")]
public async Task<LoginUserOutput> GetLoginUserAsync()
{
var user = _userManager.User;
var userId = user.Id;
var httpContext = App.GetService<IHttpContextAccessor>().HttpContext;
var loginOutput = user.Adapt<LoginUserOutput>();
// 隐藏手机号/邮箱中间几位
loginOutput.Phone = String.IsNullOrEmpty(loginOutput.Phone) ? loginOutput.Phone
: loginOutput.Phone.Substring(0, 3) + "****" + loginOutput.Phone.Substring(7, 4);
loginOutput.Email = String.IsNullOrEmpty(loginOutput.Email) ? loginOutput.Email
: String.Join("@", loginOutput.Email.Split('@').Select((p, i) =>
{
return i == 0 ? (p.Length > 3 ? p.Substring(0, 3).PadRight(p.Length, '*') : "".PadRight(3, '*')) : p;
}));
loginOutput.LastLoginTime = user.LastLoginTime = DateTime.Now;
var ip = httpContext.Request.Headers["X-Real-IP"].FirstOrDefault();
loginOutput.LastLoginIp = user.LastLoginIp = string.IsNullOrEmpty(user.LastLoginIp) ? httpContext.GetRemoteIpAddressToIPv4() : ip;
///如果真实ip为空的话就获取客户端主机IPv4地址
if (string.IsNullOrEmpty(ip))
{
loginOutput.LastLoginIp = httpContext.GetRemoteIpAddressToIPv4();
}
//var ipInfo = IpTool.Search(loginOutput.LastLoginIp);
//loginOutput.LastLoginAddress = ipInfo.Country + ipInfo.Province + ipInfo.City + "[" + ipInfo.NetworkOperator + "][" + ipInfo.Latitude + ipInfo.Longitude + "]";
var clent = Parser.GetDefault().Parse(httpContext.Request.Headers["User-Agent"]);
loginOutput.LastLoginBrowser = clent.UA.Family + clent.UA.Major;
loginOutput.LastLoginOs = clent.OS.Family + clent.OS.Major;
// 员工信息
loginOutput.LoginEmpInfo = await _sysEmpService.GetEmpInfo(userId);
// 角色信息
loginOutput.Roles = await _sysRoleService.GetUserRoleList(userId);
// 权限信息
loginOutput.Permissions = await _sysMenuService.GetLoginPermissionList(userId);
// 数据范围信息(机构Id集合)
loginOutput.DataScopes = await _userManager.GetUserAllDataScopeList();
// 具备应用信息(多系统,默认激活一个,可根据系统切换菜单),返回的结果中第一个为激活的系统
loginOutput.Apps = await _sysAppService.GetLoginApps(userId);
// 菜单信息
if (loginOutput.Apps.Count > 0)
{
//var defaultActiveAppCode = loginOutput.Apps.FirstOrDefault(u => u.Active == true).Code; // loginOutput.Apps[0].Code;
//loginOutput.Menus = await _sysMenuService.GetLoginMenusAntDesign(userId, defaultActiveAppCode);
foreach (var app in loginOutput.Apps)
{
loginOutput.Menus.AddRange(await _sysMenuService.GetLoginMenusAntDesign(userId, app.Code));
}
}
return loginOutput;
}
/// <summary>
/// 退出
/// </summary>
/// <returns></returns>
[HttpPost("/logout")]
public async Task LogoutAsync()
{
_httpContextAccessor.HttpContext.SignoutToSwagger();
//_httpContextAccessor.HttpContext.Response.Headers["access-token"] = "invalid token";
var user = _userManager.User;
var userId = user.Id;
var httpContext = App.GetService<IHttpContextAccessor>().HttpContext;
var loginOutput = user.Adapt<LoginUserOutput>();
var ip = httpContext.Request.Headers["X-Real-IP"];
var LastLoginIp = user.LastLoginIp = string.IsNullOrEmpty(user.LastLoginIp) ? httpContext.GetRemoteIpAddressToIPv4() : ip;
var clent = Parser.GetDefault().Parse(httpContext.Request.Headers["User-Agent"]);
loginOutput.LastLoginBrowser = clent.UA.Family + clent.UA.Major;
///如果真实ip为空的话就获取客户端主机IPv4地址
if (string.IsNullOrEmpty(ip))
{
LastLoginIp = httpContext.GetRemoteIpAddressToIPv4();
}
// 增加退出日志
await new SysLogVis
{
Name = "退出",
VisTime = DateTime.Now,
Success = true,
Message = "退出成功",
VisType = 2,
Browser = loginOutput.LastLoginBrowser,
Os = loginOutput.LastLoginOs,
Ip = LastLoginIp,
Account = loginOutput.Account
}.InsertAsync();
await Task.CompletedTask;
}
/// <summary>
/// 获取验证码开关
/// </summary>
/// <returns></returns>
[HttpGet("/getCaptchaOpen")]
[AllowAnonymous]
public async Task<bool> GetCaptchaOpen()
{
return await _sysConfigService.GetCaptchaOpenFlag();
}
/// <summary>
/// 获取验证码(默认点选模式)
/// </summary>
/// <returns></returns>
[HttpPost("/captcha/get")]
[AllowAnonymous]
[NonUnify]
public async Task<dynamic> GetCaptcha()
{
// 图片大小要与前端保持一致(坐标范围)
return await Task.FromResult(_captchaHandle.CreateCaptchaImage(_captchaHandle.RandomCode(6), 310, 155));
}
/// <summary>
/// 校验验证码
/// </summary>
/// <param name="input"></param>
/// <returns></returns>
[HttpPost("/captcha/check")]
[AllowAnonymous]
[NonUnify]
public async Task<dynamic> VerificationCode(ClickWordCaptchaInput input)
{
return await Task.FromResult(_captchaHandle.CheckCode(input));
}
}
}

43
20220330_Vote/Ewide.Core/Service/Auth/Dto/LoginInput.cs Normal file
View File

@@ -0,0 +1,43 @@
using Furion;
using Furion.DependencyInjection;
using System.ComponentModel.DataAnnotations;
namespace Ewide.Core.Service
{
/// <summary>
/// 登录输入参数
/// </summary>
[SuppressSniffer]
public class LoginInput
{
/// <summary>
/// 用户名
/// </summary>
/// <example>superAdmin</example>
[Required(ErrorMessage = "用户名不能为空"), MinLength(3, ErrorMessage = "用户名不能少于3位字符")]
public virtual string Account { get; set; }
/// <summary>
/// 密码
/// </summary>
/// <example>1234567</example>
[Required(ErrorMessage = "密码不能为空"), MinLength(5, ErrorMessage = "密码不能少于5位字符")]
public virtual string Password { get; set; }
}
[SuppressSniffer]
public class LoginPassInput : LoginInput
{
/// <summary>
/// 新密码
/// </summary>
[Required(ErrorMessage = "新密码不能为空")]
public string NewPassword { get; set; }
/// <summary>
/// 确认密码
/// </summary>
[Required(ErrorMessage = "确认密码不能为空"), Compare(nameof(NewPassword), ErrorMessage = "两次密码不一致")]
public string Confirm { get; set; }
}
}

177
20220330_Vote/Ewide.Core/Service/Auth/Dto/LoginOutput.cs Normal file
View File

@@ -0,0 +1,177 @@
using Furion.DependencyInjection;
using System;
using System.Collections.Generic;
namespace Ewide.Core.Service
{
[SuppressSniffer]
public class LoginOutput
{
public bool Passed { get; set; }
public string Pattern { get; set; }
public string Descriptions { get; set; }
public string Token { get; set; }
}
/// <summary>
/// 用户登录输出参数
/// </summary>
[SuppressSniffer]
public class LoginUserOutput
{
/// <summary>
/// 主键
/// </summary>
public string Id { get; set; }
/// <summary>
/// 账号
/// </summary>
public string Account { get; set; }
/// <summary>
/// 密码安全级别
/// </summary>
public int SecurityLevel { get; set; }
/// <summary>
/// 昵称
/// </summary>
public string NickName { get; set; }
/// <summary>
/// 姓名
/// </summary>
public string Name { get; set; }
/// <summary>
/// 头像
/// </summary>
public string Avatar { get; set; }
/// <summary>
/// 生日
/// </summary>
public DateTime? Birthday { get; set; }
/// <summary>
/// 性别(字典 1男 2女)
/// </summary>
public int Sex { get; set; }
/// <summary>
/// 邮箱
/// </summary>
public String Email { get; set; }
/// <summary>
/// 手机
/// </summary>
public String Phone { get; set; }
/// <summary>
/// 电话
/// </summary>
public String Tel { get; set; }
/// <summary>
/// 管理员类型0超级管理员 1非管理员
/// </summary>
public int AdminType { get; set; }
/// <summary>
/// 最后登陆IP
/// </summary>
public string LastLoginIp { get; set; }
/// <summary>
/// 最后登陆时间
/// </summary>
public DateTime LastLoginTime { get; set; }
/// <summary>
/// 最后登陆地址
/// </summary>
public string LastLoginAddress { get; set; }
/// <summary>
/// 最后登陆所用浏览器
/// </summary>
public string LastLoginBrowser { get; set; }
/// <summary>
/// 最后登陆所用系统
/// </summary>
public string LastLoginOs { get; set; }
/// <summary>
/// 员工信息
/// </summary>
public EmpOutput LoginEmpInfo { get; set; } = new EmpOutput();
/// <summary>
/// 具备应用信息
/// </summary>
public List<AppOutput> Apps { get; set; } = new List<AppOutput>();
/// <summary>
/// 角色信息
/// </summary>
public List<RoleOutput> Roles { get; set; } = new List<RoleOutput>();
/// <summary>
/// 权限信息
/// </summary>
public List<string> Permissions { get; set; } = new List<string>();
/// <summary>
/// 登录菜单信息---AntDesign版本菜单
/// </summary>
public List<AntDesignTreeNode> Menus { get; set; } = new List<AntDesignTreeNode>();
/// <summary>
/// 数据范围(机构)信息
/// </summary>
public List<string> DataScopes { get; set; } = new List<string>();
///// <summary>
///// 租户信息
///// </summary>
//public List<long> Tenants { get; set; }
///// <summary>
///// 密码
///// </summary>
//public string Password { get; set; }
///// <summary>
///// 账户过期
///// </summary>
//public string AccountNonExpired { get; set; }
///// <summary>
///// 凭证过期
///// </summary>
//public string CredentialsNonExpired { get; set; }
///// <summary>
///// 账户锁定
///// </summary>
//public bool AccountNonLocked { get; set; }
///// <summary>
///// 用户名称
///// </summary>
//public string UserName { get; set; }
///// <summary>
///// 权限
///// </summary>
//public List<long> Authorities { get; set; } = new List<long>();
///// <summary>
///// 是否启动
///// </summary>
//public bool Enabled { get; set; }
}
}

15
20220330_Vote/Ewide.Core/Service/Auth/IAuthService.cs Normal file
View File

@@ -0,0 +1,15 @@
using System.ComponentModel.DataAnnotations;
using System.Threading.Tasks;
namespace Ewide.Core.Service
{
public interface IAuthService
{
Task<dynamic> GetCaptcha();
Task<bool> GetCaptchaOpen();
Task<LoginUserOutput> GetLoginUserAsync();
Task<LoginOutput> LoginAsync([Required] LoginInput input);
Task LogoutAsync();
Task<dynamic> VerificationCode(ClickWordCaptchaInput input);
}
}