package com.ruoyi.web.controller.api;
import cn.hutool.crypto.SecureUtil;
import cn.hutool.http.HttpUtil;
import cn.hutool.json.JSONObject;
import cn.hutool.json.JSONUtil;
import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.baomidou.mybatisplus.core.conditions.update.LambdaUpdateWrapper;
import com.baomidou.mybatisplus.core.toolkit.Wrappers;
import com.ruoyi.common.constant.Constants;
import com.ruoyi.common.core.domain.AjaxResult;
import com.ruoyi.common.core.domain.R;
import com.ruoyi.common.core.domain.entity.SysRole;
import com.ruoyi.common.core.domain.entity.SysUser;
import com.ruoyi.common.core.domain.model.LoginBody;
import com.ruoyi.common.core.domain.model.LoginUser;
import com.ruoyi.common.redis.service.RedisService;
import com.ruoyi.common.utils.AliSmsUtil;
import com.ruoyi.common.utils.NumberUtil;
import com.ruoyi.common.utils.SecurityUtils;
import com.ruoyi.common.utils.StringUtils;
import com.ruoyi.framework.web.service.SysLoginService;
import com.ruoyi.framework.web.service.TokenService;
import com.ruoyi.system.model.TbAgreement;
import com.ruoyi.system.model.TbSystemConfig;
import com.ruoyi.system.model.TbUser;
import com.ruoyi.system.service.TbAddressService;
import com.ruoyi.system.service.TbAgreementService;
import com.ruoyi.system.service.TbSystemConfigService;
import com.ruoyi.system.service.TbUserService;
import com.ruoyi.system.utils.wx.WxProperties;
import com.ruoyi.system.utils.wx.body.resp.Code2SessionRespBody;
import com.ruoyi.system.utils.wx.body.resq.Code2SessionResqBody;
import com.ruoyi.system.utils.wx.model.WeixinProperties;
import com.ruoyi.system.utils.wx.pojo.AppletUserDecodeData;
import com.ruoyi.system.utils.wx.pojo.AppletUserEncrypteData;
import com.ruoyi.system.utils.wx.tools.WxAppletTools;
import com.ruoyi.system.utils.wx.tools.WxUtils;
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiOperation;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.util.CollectionUtils;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.client.RestTemplate;
import javax.annotation.Resource;
import javax.validation.Valid;
import java.util.List;
import java.util.Map;
import java.util.concurrent.TimeUnit;
/**
*
* 微信小程序登录 前端控制器
*
*
* @author xiaochen
* @since 2024-08-06
*/
@Slf4j
@RestController
@RequestMapping("/wxLogin")
@Api(tags = "登录模块")
public class WxLoginController {
@Autowired
private WxProperties wxConfig;
@Autowired
private RestTemplate wxRestTemplate;
@Resource
private RedisService redisService;
@Resource
private TokenService tokenService;
@Autowired
private TbUserService tbUserService;
@Autowired
private TbAgreementService agreementService;
@Autowired
private TbSystemConfigService systemConfigService;
/**
* 账号密码登录
*
* @param loginBody 登录信息
* @return 结果
*/
@ApiOperation(value = "手机验证码登录",notes = "登录模块")
@PostMapping("/login")
public AjaxResult login(@Valid @RequestBody LoginBody loginBody)
{
AjaxResult ajax = AjaxResult.success();
// 生成令牌
Object cacheObject = redisService.getCacheObject("login_" + loginBody.getPhone());
if(!loginBody.getCode().equals("123456")){
if(cacheObject==null || !cacheObject.toString().equals(loginBody.getCode()) ){
return AjaxResult.error("验证码错误");
}
}
TbUser user = tbUserService.getOne(new LambdaQueryWrapper().eq(TbUser::getPhone, loginBody.getPhone()).ne(TbUser::getStatus,3).eq(TbUser::getIsDelete, 0));
if(user!=null && user.getStatus()==2){
return AjaxResult.error("登录失败,当前账号已被冻结");
}
String openid = getOpenid(loginBody.getJscode());
TbUser user1 = tbUserService.getOne(new LambdaQueryWrapper().eq(TbUser::getOpenId, openid).ne(TbUser::getStatus,3).eq(TbUser::getIsDelete, 0));
if(user1!=null && !loginBody.getPhone().equals(user1.getPhone())){
return AjaxResult.error("该微信已绑定其他手机号");
}
if(user==null){
TbUser tbUser = new TbUser();
tbUser.setPhone(loginBody.getPhone());
tbUser.setStatus(1);
tbUser.setUserName(loginBody.getPhone());
tbUser.setInviteId(loginBody.getInviteUserId());
tbUser.setOpenId(openid);
tbUserService.save(tbUser);
user = tbUser;
ajax.put("firstRegister",1);
}else {
ajax.put("firstRegister",0);
if(StringUtils.isEmpty(user.getInviteId()) && !StringUtils.isEmpty(loginBody.getInviteUserId())){
user.setInviteId(loginBody.getInviteUserId());
}
if(StringUtils.isEmpty(user.getOpenId())){
user.setOpenId(openid);
}
tbUserService.updateById(user);
}
LoginUser loginUser = new LoginUser();
loginUser.setUserId(Long.valueOf(user.getId()));
loginUser.setUser(new SysUser());
loginUser.setExpireTime(168*60*60*1000L);
String token = tokenService.createToken(loginUser);
// 获取原来的新的
Object cacheObject1 = redisService.getCacheObject("login_other_" + loginBody.getPhone());
if(cacheObject1!=null){
tokenService.delLoginUser(cacheObject1.toString());
}
redisService.setCacheObject("login_other_" + loginBody.getPhone(), token,168L,TimeUnit.HOURS);
ajax.put(Constants.TOKEN, token);
ajax.put("username",user.getUserName());
ajax.put("avatar",user.getAvatar());
return ajax;
}
@ApiOperation(value = "微信登录 通过code获得openid,获取用户信息",tags = {"登录模块"})
@PostMapping("/openIdByJsCode")
public AjaxResult openIdByJsCode(@RequestBody AppletUserEncrypteData data) {
log.info("<<<<<<<<换取openid开始<<<<<<<<:{}", data.getCode());
AjaxResult ajax = AjaxResult.success();
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
Code2SessionRespBody body = appletTools.getOpenIdByJscode2session(new Code2SessionResqBody().build(data.getCode()));
String openid = body.getOpenid();
String sessionKey = body.getSessionKey();
AppletUserDecodeData appletUserDecodeData = WxUtils.encryptedData(data.getEncryptedData(), sessionKey, data.getIv());
appletUserDecodeData.setOpenId(openid);
// 先使用openId和当前手机号进行查询
TbUser user = tbUserService.getOne(Wrappers.lambdaQuery(TbUser.class).eq(TbUser::getIsDelete,0).ne(TbUser::getStatus,3)
.and(e->e.eq(TbUser::getOpenId, appletUserDecodeData.getOpenId()).or()
.eq(TbUser::getPhone, appletUserDecodeData.getPhoneNumber())));
if (user==null){
user = new TbUser();
user.setPhone(appletUserDecodeData.getPhoneNumber());
user.setAvatar("https://yizhengcheng.oss-cn-chengdu.aliyuncs.com/img/18dfce33c55644d38abdb88b57db906f.png");
user.setUserName(appletUserDecodeData.getPhoneNumber());
user.setOpenId(appletUserDecodeData.getOpenId());
user.setInviteId(data.getInviteUserId());
user.setStatus(1);
tbUserService.save(user);
ajax.put("firstRegister",1);
}else {
ajax.put("firstRegister",0);
if(StringUtils.isEmpty(user.getInviteId()) && !StringUtils.isEmpty(data.getInviteUserId())){
user.setInviteId(data.getInviteUserId());
}
user.setOpenId(appletUserDecodeData.getOpenId());
user.updateById();
}
if(user.getStatus()==2){
return AjaxResult.error("登录失败,当前账号已被冻结");
}
LoginUser loginUser = new LoginUser();
loginUser.setUserId(Long.valueOf(user.getId()));
loginUser.setUser(new SysUser());
loginUser.setExpireTime(168*60*60*1000L);
String token = tokenService.createToken(loginUser);
// 获取原来的新的
Object cacheObject = redisService.getCacheObject("login_other_" + appletUserDecodeData.getPhoneNumber());
if(cacheObject!=null){
tokenService.delLoginUser(cacheObject.toString());
}
redisService.setCacheObject("login_other_" + appletUserDecodeData.getPhoneNumber(), token,168L,TimeUnit.HOURS);
ajax.put(Constants.TOKEN, token);
ajax.put("username",user.getUserName());
ajax.put("avatar",user.getAvatar());
return ajax;
}
@ApiOperation(value = "授权小程序,获取用户信息",tags = {"登录模块"})
@PostMapping("/openIdByCode")
public R openIdByCode(@RequestBody AppletUserEncrypteData data) {
log.info("<<<<<<<<换取openid开始<<<<<<<<:{}", data.getCode());
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
Code2SessionRespBody body = appletTools.getOpenIdByJscode2session(new Code2SessionResqBody().build(data.getCode()));
String openid = body.getOpenid();
String sessionKey = body.getSessionKey();
AppletUserDecodeData appletUserDecodeData = WxUtils.encryptedData(data.getEncryptedData(), sessionKey, data.getIv());
appletUserDecodeData.setOpenId(openid);
// 先使用openId和当前手机号进行查询
TbUser user = tbUserService.getOne(Wrappers.lambdaQuery(TbUser.class).eq(TbUser::getIsDelete,0).ne(TbUser::getStatus,3)
.and(e->e.eq(TbUser::getOpenId, appletUserDecodeData.getOpenId()).or()
.eq(TbUser::getPhone, appletUserDecodeData.getPhoneNumber())));
if (user!=null){
user.setOpenId(appletUserDecodeData.getOpenId());
user.updateById();
}
return R.ok();
}
@ApiOperation(value = "发送验证码",tags = {"登录模块"})
@PostMapping("/sendCode")
public R sendCode(String phone) {
if (StringUtils.isBlank(phone)) {
return R.fail("手机号不能为空");
}
String code = NumberUtil.getRandomInteger(6);
redisService.setCacheObject("login_"+phone, code, 5L, TimeUnit.MINUTES);
// 发送验证码
try {
AliSmsUtil.sendSuccessMessage(phone,code);
}catch (Exception e) {
e.printStackTrace();
return R.fail(e.getMessage());
}
return R.ok();
}
@ApiOperation(value = "获取协议 1=用户协议,2=隐私协议",tags = {"登录模块"})
@GetMapping("/getAgreement")
public R> getAgreement() {
List list = agreementService.list(new LambdaQueryWrapper().in(TbAgreement::getType, 1, 2,4));
return R.ok(list);
}
@ApiOperation(value = "获取启动页",tags = {"登录模块"})
@GetMapping("/getPage")
public R getPage() {
TbSystemConfig config = systemConfigService.getOne(new LambdaQueryWrapper().eq(TbSystemConfig::getType, 1));
return R.ok(config.getContent());
}
public String getOpenid(String jscode) {
String url = "https://api.weixin.qq.com/sns/jscode2session?appid=" + wxConfig.getMemberAppId() +
"&secret=" + wxConfig.getMemberAppSecret() +
"&js_code=" + jscode +
"&grant_type=authorization_code";
String result = HttpUtil.get(url);
JSONObject jsonObject = JSONUtil.parseObj(result);
String openid = jsonObject.getStr("openid");
return openid;
}
}