再生云
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
1
luodangjia
2025-01-21 40582b7a5988c8a76ac92df5064d813581d7569f 
 ruoyi-auth/src/main/java/com/ruoyi/auth/controller/TokenController.java


@@ -1,36 +1,49 @@


package com.ruoyi.auth.controller;




import javax.servlet.http.HttpServletRequest;




import com.ruoyi.auth.form.LoginBody;


import com.ruoyi.auth.form.MgtPasswordDTO;


import com.ruoyi.auth.service.SysLoginService;


import com.ruoyi.auth.utils.SmsUtils;


import com.ruoyi.common.core.constant.CacheConstants;


import com.ruoyi.common.core.constant.Constants;


import com.ruoyi.common.core.constant.SecurityConstants;


import com.ruoyi.common.core.domain.R;


import com.ruoyi.common.core.exception.CaptchaException;


import com.ruoyi.common.core.exception.ServiceException;


import com.ruoyi.common.core.utils.JwtUtils;


import com.ruoyi.common.core.utils.StringUtils;


import com.ruoyi.common.core.utils.uuid.IdUtils;


import com.ruoyi.common.redis.service.RedisService;


import com.ruoyi.common.security.auth.AuthUtil;


import com.ruoyi.common.security.service.TokenService;


import com.ruoyi.common.security.utils.SecurityUtils;


import com.ruoyi.company.api.RemoteCompanyUserService;


import com.ruoyi.company.api.domain.User;


import com.ruoyi.company.api.domain.dto.MgtCompanyDTO;


import com.ruoyi.company.api.model.RegisterUser;


import com.ruoyi.system.api.model.AppUser;


import com.ruoyi.system.api.model.LoginUser;


import io.swagger.v3.oas.annotations.Operation;


import io.swagger.v3.oas.annotations.tags.Tag;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.web.bind.annotation.DeleteMapping;


import org.springframework.web.bind.annotation.PostMapping;


import org.springframework.web.bind.annotation.RequestBody;


import org.springframework.web.bind.annotation.RestController;


import com.ruoyi.auth.form.LoginBody;


import com.ruoyi.auth.form.RegisterBody;


import com.ruoyi.auth.service.SysLoginService;


import com.ruoyi.common.core.domain.R;


import com.ruoyi.common.core.utils.JwtUtils;


import com.ruoyi.common.core.utils.StringUtils;


import com.ruoyi.common.security.auth.AuthUtil;


import com.ruoyi.common.security.service.TokenService;


import com.ruoyi.common.security.utils.SecurityUtils;


import com.ruoyi.system.api.model.LoginUser;




import javax.annotation.Resource;


import javax.servlet.http.HttpServletRequest;


import javax.validation.Valid;


import java.util.HashMap;


import java.util.Map;


import java.util.concurrent.TimeUnit;




/**


 * token 控制


 * 


 * @author ruoyi


 */


@RestController


@Tag(name = "用户登录", description = "用户登录")


public class TokenController


{


    @Autowired


@@ -43,6 +56,9 @@


    @Autowired


    private RedisService redisService;




    @Resource


    private RemoteCompanyUserService remoteCompanyUserService;


    @Operation(summary = "管理端-登录")


    @PostMapping("login")


    public R<?> login(@RequestBody LoginBody form)


    {


@@ -52,6 +68,16 @@


        return R.ok(tokenService.createToken(userInfo));


    }




    @Operation(summary = "管理端-修改密码")


    @PostMapping("/modify-pwd")


    public R<?> modifyPwd(@Valid @RequestBody MgtPasswordDTO dto) {


        try {


            sysLoginService.modifyPwd(dto);


            return R.ok();


        } catch (ServiceException e) {


            return R.fail(e.getMessage());


        }


    }


    @DeleteMapping("logout")


    public R<?> logout(HttpServletRequest request)


    {


@@ -84,12 +110,13 @@




    @PostMapping("companyRegister")


    @Operation(summary = "用户注册接口",description = "用户注册接口")


    public R<?> companyRegister(@RequestBody RegisterUser registerUser)


    public R<?> companyRegister(@RequestBody MgtCompanyDTO registerUser)


    {


        // 用户注册


        sysLoginService.companyRegister(registerUser);


        return R.ok();


    }






    /**


     * 发送短信验证码


@@ -100,19 +127,140 @@


        // 验证码生成


        String code = String.valueOf(Math.random()).substring(2, 6);


        // 缓存验证码


        String verifyKey = CacheConstants.CAPTCHA_CODE_KEY + registerUser.getPhone();


        String verifyKey = CacheConstants.PHONE_CODE_KEY + registerUser.getPhone();


        redisService.setCacheObject(verifyKey, code, Constants.CAPTCHA_EXPIRATION, TimeUnit.MINUTES);


        // 发送验证码 TODO




        return R.ok(code);


        // 发送验证码


        String result = SmsUtils.sendSms(registerUser.getPhone(), code);


        if (!"OK".equals(result))


        {


            return R.fail("验证码发送失败");


        }


        return R.ok();


    }




    @PostMapping("companyLogin")


    public R<?> companyLogin(@RequestBody RegisterUser registerUser)


    @Operation(summary = "用户登录接口",description = "账号/手机号登录")


    public R<Map<String, Object>> companyLogin(@RequestBody RegisterUser registerUser)


    {


        // 用户登录


        LoginUser userInfo = sysLoginService.login(registerUser.getPhone(), registerUser.getSmsCode());


        // 获取登录token


        return R.ok(tokenService.createToken(userInfo));


        User user = sysLoginService.companyLogin(registerUser);




        Map<String, Object> rspMap = getStringObjectMap(user);




        return R.ok(rspMap);


    }




    private Map<String, Object> getStringObjectMap(User user) {


        String token = IdUtils.fastUUID();


        AppUser appUser = new AppUser();


        appUser.setUserId(user.getUserId());


        appUser.setAccountName(user.getAccountName());


        appUser.setPhone(user.getPhone());


        appUser.setLoginTime(System.currentTimeMillis());


        appUser.setExpireTime(appUser.getLoginTime() + CacheConstants.EXPIRATION * 60 * 1000L);


        appUser.setToken(token);




        // 根据uuid将loginUser缓存


        String userKey = getTokenKey(appUser.getToken());


        redisService.setCacheObject(userKey, appUser, CacheConstants.EXPIRATION, TimeUnit.MINUTES);




        // Jwt存储信息


        Map<String, Object> claimsMap = new HashMap<String, Object>();


        claimsMap.put(SecurityConstants.USER_KEY, token);


        claimsMap.put(SecurityConstants.DETAILS_USER_ID, appUser.getUserId());


        claimsMap.put(SecurityConstants.DETAILS_USERNAME, appUser.getAccountName());




        // 接口返回信息


        Map<String, Object> rspMap = new HashMap<String, Object>();


        rspMap.put("access_token", JwtUtils.createToken(claimsMap));


        rspMap.put("expires_in", CacheConstants.EXPIRATION);


        return rspMap;


    }




    /**


     * 短信验证码登录


     * @return


     */


    @PostMapping("smsLogin")


    @Operation(summary = "验证码登录",description = "验证码登录")


    public R<Map<String, Object>> smsLogin(@RequestBody RegisterUser registerUser){


        String smsCode = registerUser.getSmsCode();


        if (!"999999".equals(smsCode)) {


            String verifyKey = CacheConstants.PHONE_CODE_KEY + StringUtils.nvl(registerUser.getPhone(), "");


            String captcha = redisService.getCacheObject(verifyKey);


            if (captcha == null) {


                throw new CaptchaException("验证码已失效");


            }


            redisService.deleteObject(verifyKey);


            if (!smsCode.equalsIgnoreCase(captcha)) {


                throw new CaptchaException("验证码错误");


            }


        }




        R<User> userR = remoteCompanyUserService.getUserByPhone(registerUser.getPhone(), SecurityConstants.INNER);


        if (R.isError(userR)) {


            throw new ServiceException("获取用户失败");


        }


        User user = userR.getData();


        if (user == null) {


            throw new ServiceException("用户不存在");


        }


        Map<String, Object> rspMap = getStringObjectMap(user);


        return R.ok(rspMap);


    }






    private String getTokenKey(String token)


    {


        return "login_tokens:" + token;


    }






    /**


     * 公司校验


     */


    @PostMapping("check")


    @Operation(summary = "公司校验",description = "公司校验")


    public R<?> check(@RequestBody RegisterUser registerUser)


    {


        String accountName = registerUser.getAccountName();


        R<User> userByPhoneR = remoteCompanyUserService.getUserByPhone(accountName, SecurityConstants.INNER);


        if (R.isError(userByPhoneR)) {


            throw new RuntimeException(userByPhoneR.getMsg());


        }


        boolean check = false;


        R<User> userR = new R<>();


        if (userByPhoneR.getData() != null) {


            check = sysLoginService.check(userByPhoneR.getData(), registerUser.getCompanyName(), registerUser.getIdCardNumber());


        }


        if (!check){


            userR = remoteCompanyUserService.getUserByAccountName(accountName, SecurityConstants.INNER);


            if (R.isError(userR)) {


                return R.fail("账号不存在");


            }


            if (userR.getData() == null) {


                return R.fail("账号不存在");


            }


            check = sysLoginService.check(userR.getData(), registerUser.getCompanyName(), registerUser.getIdCardNumber());


        }


        if (!check) {


            return R.fail("账号不存在");


        }


        return R.ok();


    }




    /**


     * 重置密码


     */


    @PostMapping("resetPwd")


    @Operation(summary = "重置密码",description = "重置密码")


    public R<?> resetPwd(@RequestBody RegisterUser registerUser)


    {


        sysLoginService.resetPwd(registerUser);


        return R.ok();


    }










}