package com.ruoyi.web.controller.api;
|
|
import com.alibaba.fastjson2.JSONArray;
|
import com.alibaba.fastjson2.JSONObject;
|
|
import com.baomidou.mybatisplus.core.toolkit.Wrappers;
|
import com.ruoyi.common.constant.Constants;
|
import com.ruoyi.common.core.domain.AjaxResult;
|
import com.ruoyi.common.core.domain.R;
|
|
import com.ruoyi.common.core.domain.entity.SysMenu;
|
import com.ruoyi.common.core.domain.entity.SysRole;
|
import com.ruoyi.common.core.domain.entity.TTenantResp;
|
import com.ruoyi.common.core.domain.model.LoginBody;
|
import com.ruoyi.common.core.domain.model.LoginUser;
|
import com.ruoyi.common.core.domain.model.LoginUserApplet;
|
import com.ruoyi.common.core.utils.HttpUtils;
|
import com.ruoyi.common.redis.service.RedisService;
|
import com.ruoyi.common.utils.SecurityUtils;
|
import com.ruoyi.framework.web.service.SysLoginService;
|
import com.ruoyi.framework.web.service.TokenService;
|
import com.ruoyi.system.model.TTenant;
|
import com.ruoyi.system.service.TTenantService;
|
import com.ruoyi.system.utils.wx.body.resp.Code2SessionRespBody;
|
import com.ruoyi.system.utils.wx.body.resq.Code2SessionResqBody;
|
import com.ruoyi.system.utils.wx.model.WeixinProperties;
|
import com.ruoyi.system.utils.wx.pojo.AppletUserDecodeData;
|
import com.ruoyi.system.utils.wx.pojo.AppletUserEncrypteData;
|
import com.ruoyi.system.utils.wx.tools.WxAppletTools;
|
import com.ruoyi.system.utils.wx.tools.WxUtils;
|
import io.swagger.annotations.ApiOperation;
|
import lombok.extern.slf4j.Slf4j;
|
import org.springframework.beans.BeanUtils;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.util.CollectionUtils;
|
import org.springframework.util.StringUtils;
|
import org.springframework.web.bind.annotation.*;
|
import org.springframework.web.client.RestTemplate;
|
|
import javax.annotation.Resource;
|
import java.util.HashMap;
|
import java.util.List;
|
import java.util.Map;
|
|
/**
|
* <p>
|
* 微信小程序登录 前端控制器
|
* </p>
|
*
|
* @author xiaochen
|
* @since 2024-08-06
|
*/
|
@Slf4j
|
@RestController
|
@RequestMapping("/wxLogin")
|
public class WxLoginController {
|
|
@Autowired
|
private WeixinProperties wxConfig;
|
@Autowired
|
private RestTemplate wxRestTemplate;
|
@Resource
|
private RedisService redisService;
|
@Resource
|
private TTenantService tTenantService;
|
|
/**
|
* 上传文件存储在本地的根路径
|
*/
|
// @Value("${file.upload.location}")
|
// private String localFilePath;
|
|
@Resource
|
private TokenService tokenService;
|
@Autowired
|
private SysLoginService loginService;
|
/**
|
* 账号密码登录
|
*
|
* @param loginBody 登录信息
|
* @return 结果
|
*/
|
@ApiOperation(value = "账号密码登录",notes = "管理员账号密码登录")
|
@PostMapping("/login")
|
public AjaxResult login(@RequestBody LoginBody loginBody)
|
{
|
AjaxResult ajax = AjaxResult.success();
|
// 生成令牌
|
LoginUser loginUser = loginService.login(loginBody.getUsername(), loginBody.getPassword(), loginBody.getCode(),
|
loginBody.getUuid());
|
ajax.put(Constants.TOKEN, tokenService.createToken(loginUser));
|
List<SysRole> roles = loginUser.getUser().getRoles();
|
if(CollectionUtils.isEmpty(roles)){
|
return AjaxResult.error("请关联角色!");
|
}
|
if(roles.get(0).getStatus() == 1){
|
return AjaxResult.error("该账号角色已被禁用!");
|
}
|
return ajax;
|
}
|
|
@ApiOperation(value = "通过code获得openid,获取用户信息",tags = {"微信小程序登录"})
|
@PostMapping("/openIdByJsCode")
|
public R<Map<String, Object>> openIdByJsCode(@RequestBody AppletUserEncrypteData data) {
|
log.info("<<<<<<<<换取openid开始<<<<<<<<:{}", data.getCode());
|
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
|
Code2SessionRespBody body = appletTools.getOpenIdByJscode2session(new Code2SessionResqBody().build(data.getCode()));
|
String openid = body.getOpenid();
|
String sessionKey = body.getSessionKey();
|
// 用户信息解密 数据验签
|
// if (StringUtils.isNotBlank(data.getSignature())) {
|
// WxUtils.verifySignature(data.getRawData(), sessionKey, data.getSignature());
|
// }
|
if(StringUtils.isEmpty(data.getEncryptedData()) || StringUtils.isEmpty(data.getIv())){
|
return R.fail("已拒绝授权");
|
}
|
AppletUserDecodeData appletUserDecodeData = WxUtils.encryptedData(data.getEncryptedData(), sessionKey, data.getIv());
|
appletUserDecodeData.setOpenId(openid);
|
// 先使用openId和当前手机号进行查询
|
TTenant tenant = tTenantService.getOne(Wrappers.lambdaQuery(TTenant.class)
|
.and(e->e.eq(TTenant::getOpenId, appletUserDecodeData.getOpenId()).or()
|
.eq(TTenant::getPhone, appletUserDecodeData.getPhoneNumber())));
|
if (tenant==null){
|
// appUser.setTenantAttributes();
|
// appUser.setTenantType();
|
tenant = new TTenant();
|
tenant.setPhone(appletUserDecodeData.getPhoneNumber());
|
tenant.setAccount(appletUserDecodeData.getPhoneNumber());
|
tenant.setPassword(SecurityUtils.encryptPassword(appletUserDecodeData.getPhoneNumber().substring(5)));
|
tenant.setOpenId(appletUserDecodeData.getOpenId());
|
// 手机号中间四位替换为*
|
tenant.setResidentName(appletUserDecodeData.getPhoneNumber().replaceAll("(\\d{3})\\d{4}(\\d{4})", "$1****$2"));
|
tTenantService.save(tenant);
|
}
|
LoginUserApplet loginUserApplet = new LoginUserApplet();
|
TTenantResp tTenantResp = new TTenantResp();
|
BeanUtils.copyProperties(tenant, tTenantResp);
|
tTenantResp.setResidentName(appletUserDecodeData.getPhoneNumber());
|
loginUserApplet.setUser(tTenantResp);
|
loginUserApplet.setUserId(tenant.getId());
|
Map<String, Object> tokenInfos = new HashMap<>();
|
tokenInfos.put("token",tokenService.createTokenApplet(loginUserApplet));
|
tokenInfos.put("info",loginUserApplet);
|
return R.ok(tokenInfos);
|
}
|
|
|
|
|
|
// @ApiOperation(value = "获取微信小程序二维码",tags = {"获取微信小程序二维码"})
|
// @PostMapping("/getQRCode")
|
// public AjaxResult getQRCode() {
|
// InputStream inputStream = null;
|
// OutputStream outputStream = null;
|
// WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
|
// String accessToken = appletTools.getAccessToken("");
|
// try {
|
// String url = "https://api.weixin.qq.com/wxa/getwxacodeunlimit?access_token=" + accessToken;
|
// Map<String, Object> param = new HashMap<>();
|
//// param.put("page", "pageA/houseDetail");
|
// param.put("check_path", false);
|
// param.put("env_version", "trial");
|
// param.put("width", 200); //二维码尺寸
|
// param.put("is_hyaline", true); // 是否需要透明底色, is_hyaline 为true时,生成透明底色的小程序码 参数仅对小程序码生效
|
// param.put("auto_color", true); // 自动配置线条颜色,如果颜色依然是黑色,则说明不建议配置主色调 参数仅对小程序码生效
|
// Map<String, Object> line_color = new HashMap<>();
|
// line_color.put("r", 0);
|
// line_color.put("g", 0);
|
// line_color.put("b", 0);
|
// param.put("line_color", line_color);
|
// System.err.println("调用生成微信URL接口传参:" + param);
|
// MultiValueMap<String, String> headers = new LinkedMultiValueMap<>();
|
// HttpEntity requestEntity = new HttpEntity(param, headers);
|
// ResponseEntity<byte[]> entity = wxRestTemplate.exchange(url, HttpMethod.POST, requestEntity, byte[].class, new Object[0]);
|
// System.err.println("调用小程序生成微信永久小程序码URL接口返回结果:" + entity.getBody());
|
// byte[] result = entity.getBody();
|
// System.err.println(Base64.encodeBase64String(result));
|
// inputStream = new ByteArrayInputStream(result);
|
// String finalFileName = System.currentTimeMillis() + "" + new SecureRandom().nextInt(0x0400) + ".jpeg";
|
//// MultipartFile multipartFile = convertInputStreamToMultipartFile(inputStream, finalFileName, "image/jpeg");
|
//// String name = FileUploadUtils.upload(localFilePath, multipartFile);
|
//// System.err.println(name);
|
// return AjaxResult.success(null);
|
// } catch (Exception e) {
|
// System.err.println("调用小程序生成微信永久小程序码URL接口异常" + e);
|
// } finally {
|
// if (inputStream != null) {
|
// try {
|
// inputStream.close();
|
// } catch (IOException e) {
|
// e.printStackTrace();
|
// }
|
// }
|
// if (outputStream != null) {
|
// try {
|
// outputStream.close();
|
// } catch (IOException e) {
|
// e.printStackTrace();
|
// }
|
// }
|
// }
|
// return AjaxResult.success();
|
// }
|
|
|
/**
|
* 获取微信token
|
* @return
|
*/
|
@PostMapping("/getWXToken")
|
public R<String> getWXToken(){
|
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
|
String accessToken = appletTools.getAccessToken("");
|
return R.ok(accessToken);
|
}
|
|
|
/**
|
* 敏感词检测
|
* @param content
|
* @param openid
|
* @return
|
*/
|
@PostMapping("/sensitiveWordDetection")
|
public R<Boolean> sensitiveWordDetection (@RequestParam("content") String content, @RequestParam("openid") String openid){
|
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
|
String accessToken = appletTools.getAccessToken("");
|
JSONObject jsonObject = new JSONObject();
|
jsonObject.put("content", content);
|
jsonObject.put("version", 2);
|
jsonObject.put("scene", 2);
|
jsonObject.put("openid", openid);
|
String post = HttpUtils.post("https://api.weixin.qq.com/wxa/msg_sec_check?access_token=" + accessToken, jsonObject.toString());
|
JSONObject object = JSONObject.parseObject(post);
|
Integer errcode = object.getInteger("errcode");
|
if(0 != errcode){
|
throw new RuntimeException(object.getString("errmsg"));
|
}
|
JSONArray detail = object.getJSONArray("detail");
|
for (int i = 0; i < detail.size(); i++) {
|
JSONObject jsonObject1 = detail.getJSONObject(i);
|
Integer errcode1 = jsonObject1.getInteger("errcode");
|
if(0 == errcode1){
|
String suggest = jsonObject1.getString("suggest");
|
Integer label = jsonObject1.getInteger("label");
|
String keyword = jsonObject1.getString("keyword");
|
Integer prob = jsonObject1.getInteger("prob");
|
if(("risky".equals(suggest) || "review".equals(suggest)) && 100 != label && com.ruoyi.common.utils.StringUtils.isNotEmpty(keyword) && 80 <= prob){
|
return R.ok(true);
|
}
|
}
|
}
|
return R.ok(false);
|
}
|
}
|
