package com.ruoyi.web.controller.api;
import com.alibaba.fastjson2.JSONArray;
import com.alibaba.fastjson2.JSONObject;
import com.baomidou.mybatisplus.core.toolkit.Wrappers;
import com.ruoyi.common.constant.Constants;
import com.ruoyi.common.core.domain.AjaxResult;
import com.ruoyi.common.core.domain.R;
import com.ruoyi.common.core.domain.entity.SysMenu;
import com.ruoyi.common.core.domain.entity.SysRole;
import com.ruoyi.common.core.domain.entity.TTenantResp;
import com.ruoyi.common.core.domain.model.LoginBody;
import com.ruoyi.common.core.domain.model.LoginUser;
import com.ruoyi.common.core.domain.model.LoginUserApplet;
import com.ruoyi.common.core.utils.HttpUtils;
import com.ruoyi.common.redis.service.RedisService;
import com.ruoyi.common.utils.SecurityUtils;
import com.ruoyi.framework.web.service.SysLoginService;
import com.ruoyi.framework.web.service.TokenService;
import com.ruoyi.system.model.TTenant;
import com.ruoyi.system.service.TTenantService;
import com.ruoyi.system.utils.wx.body.resp.Code2SessionRespBody;
import com.ruoyi.system.utils.wx.body.resq.Code2SessionResqBody;
import com.ruoyi.system.utils.wx.model.WeixinProperties;
import com.ruoyi.system.utils.wx.pojo.AppletUserDecodeData;
import com.ruoyi.system.utils.wx.pojo.AppletUserEncrypteData;
import com.ruoyi.system.utils.wx.tools.WxAppletTools;
import com.ruoyi.system.utils.wx.tools.WxUtils;
import io.swagger.annotations.ApiOperation;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.BeanUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.util.CollectionUtils;
import org.springframework.util.StringUtils;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.client.RestTemplate;
import javax.annotation.Resource;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
/**
*
* 微信小程序登录 前端控制器
*
*
* @author xiaochen
* @since 2024-08-06
*/
@Slf4j
@RestController
@RequestMapping("/wxLogin")
public class WxLoginController {
@Autowired
private WeixinProperties wxConfig;
@Autowired
private RestTemplate wxRestTemplate;
@Resource
private RedisService redisService;
@Resource
private TTenantService tTenantService;
/**
* 上传文件存储在本地的根路径
*/
// @Value("${file.upload.location}")
// private String localFilePath;
@Resource
private TokenService tokenService;
@Autowired
private SysLoginService loginService;
/**
* 账号密码登录
*
* @param loginBody 登录信息
* @return 结果
*/
@ApiOperation(value = "账号密码登录",notes = "管理员账号密码登录")
@PostMapping("/login")
public AjaxResult login(@RequestBody LoginBody loginBody)
{
AjaxResult ajax = AjaxResult.success();
// 生成令牌
LoginUser loginUser = loginService.login(loginBody.getUsername(), loginBody.getPassword(), loginBody.getCode(),
loginBody.getUuid());
ajax.put(Constants.TOKEN, tokenService.createToken(loginUser));
List roles = loginUser.getUser().getRoles();
if(CollectionUtils.isEmpty(roles)){
return AjaxResult.error("请关联角色!");
}
if(roles.get(0).getStatus() == 1){
return AjaxResult.error("该账号角色已被禁用!");
}
return ajax;
}
@ApiOperation(value = "通过code获得openid,获取用户信息",tags = {"微信小程序登录"})
@PostMapping("/openIdByJsCode")
public R> openIdByJsCode(@RequestBody AppletUserEncrypteData data) {
log.info("<<<<<<<<换取openid开始<<<<<<<<:{}", data.getCode());
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
Code2SessionRespBody body = appletTools.getOpenIdByJscode2session(new Code2SessionResqBody().build(data.getCode()));
String openid = body.getOpenid();
String sessionKey = body.getSessionKey();
// 用户信息解密 数据验签
// if (StringUtils.isNotBlank(data.getSignature())) {
// WxUtils.verifySignature(data.getRawData(), sessionKey, data.getSignature());
// }
if(StringUtils.isEmpty(data.getEncryptedData()) || StringUtils.isEmpty(data.getIv())){
return R.fail("已拒绝授权");
}
AppletUserDecodeData appletUserDecodeData = WxUtils.encryptedData(data.getEncryptedData(), sessionKey, data.getIv());
appletUserDecodeData.setOpenId(openid);
// 先使用openId和当前手机号进行查询
TTenant tenant = tTenantService.getOne(Wrappers.lambdaQuery(TTenant.class)
.and(e->e.eq(TTenant::getOpenId, appletUserDecodeData.getOpenId()).or()
.eq(TTenant::getPhone, appletUserDecodeData.getPhoneNumber())));
if (tenant==null){
// appUser.setTenantAttributes();
// appUser.setTenantType();
tenant = new TTenant();
tenant.setPhone(appletUserDecodeData.getPhoneNumber());
tenant.setAccount(appletUserDecodeData.getPhoneNumber());
tenant.setPassword(SecurityUtils.encryptPassword(appletUserDecodeData.getPhoneNumber().substring(5)));
tenant.setOpenId(appletUserDecodeData.getOpenId());
// 手机号中间四位替换为*
tenant.setResidentName(appletUserDecodeData.getPhoneNumber().replaceAll("(\\d{3})\\d{4}(\\d{4})", "$1****$2"));
tTenantService.save(tenant);
}
LoginUserApplet loginUserApplet = new LoginUserApplet();
TTenantResp tTenantResp = new TTenantResp();
BeanUtils.copyProperties(tenant, tTenantResp);
tTenantResp.setResidentName(appletUserDecodeData.getPhoneNumber());
loginUserApplet.setUser(tTenantResp);
loginUserApplet.setUserId(tenant.getId());
Map tokenInfos = new HashMap<>();
tokenInfos.put("token",tokenService.createTokenApplet(loginUserApplet));
tokenInfos.put("info",loginUserApplet);
return R.ok(tokenInfos);
}
// @ApiOperation(value = "获取微信小程序二维码",tags = {"获取微信小程序二维码"})
// @PostMapping("/getQRCode")
// public AjaxResult getQRCode() {
// InputStream inputStream = null;
// OutputStream outputStream = null;
// WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
// String accessToken = appletTools.getAccessToken("");
// try {
// String url = "https://api.weixin.qq.com/wxa/getwxacodeunlimit?access_token=" + accessToken;
// Map param = new HashMap<>();
//// param.put("page", "pageA/houseDetail");
// param.put("check_path", false);
// param.put("env_version", "trial");
// param.put("width", 200); //二维码尺寸
// param.put("is_hyaline", true); // 是否需要透明底色, is_hyaline 为true时,生成透明底色的小程序码 参数仅对小程序码生效
// param.put("auto_color", true); // 自动配置线条颜色,如果颜色依然是黑色,则说明不建议配置主色调 参数仅对小程序码生效
// Map line_color = new HashMap<>();
// line_color.put("r", 0);
// line_color.put("g", 0);
// line_color.put("b", 0);
// param.put("line_color", line_color);
// System.err.println("调用生成微信URL接口传参:" + param);
// MultiValueMap headers = new LinkedMultiValueMap<>();
// HttpEntity requestEntity = new HttpEntity(param, headers);
// ResponseEntity entity = wxRestTemplate.exchange(url, HttpMethod.POST, requestEntity, byte[].class, new Object[0]);
// System.err.println("调用小程序生成微信永久小程序码URL接口返回结果:" + entity.getBody());
// byte[] result = entity.getBody();
// System.err.println(Base64.encodeBase64String(result));
// inputStream = new ByteArrayInputStream(result);
// String finalFileName = System.currentTimeMillis() + "" + new SecureRandom().nextInt(0x0400) + ".jpeg";
//// MultipartFile multipartFile = convertInputStreamToMultipartFile(inputStream, finalFileName, "image/jpeg");
//// String name = FileUploadUtils.upload(localFilePath, multipartFile);
//// System.err.println(name);
// return AjaxResult.success(null);
// } catch (Exception e) {
// System.err.println("调用小程序生成微信永久小程序码URL接口异常" + e);
// } finally {
// if (inputStream != null) {
// try {
// inputStream.close();
// } catch (IOException e) {
// e.printStackTrace();
// }
// }
// if (outputStream != null) {
// try {
// outputStream.close();
// } catch (IOException e) {
// e.printStackTrace();
// }
// }
// }
// return AjaxResult.success();
// }
/**
* 获取微信token
* @return
*/
@PostMapping("/getWXToken")
public R getWXToken(){
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
String accessToken = appletTools.getAccessToken("");
return R.ok(accessToken);
}
/**
* 敏感词检测
* @param content
* @param openid
* @return
*/
@PostMapping("/sensitiveWordDetection")
public R sensitiveWordDetection (@RequestParam("content") String content, @RequestParam("openid") String openid){
WxAppletTools appletTools = new WxAppletTools(wxRestTemplate, wxConfig, redisService);
String accessToken = appletTools.getAccessToken("");
JSONObject jsonObject = new JSONObject();
jsonObject.put("content", content);
jsonObject.put("version", 2);
jsonObject.put("scene", 2);
jsonObject.put("openid", openid);
String post = HttpUtils.post("https://api.weixin.qq.com/wxa/msg_sec_check?access_token=" + accessToken, jsonObject.toString());
JSONObject object = JSONObject.parseObject(post);
Integer errcode = object.getInteger("errcode");
if(0 != errcode){
throw new RuntimeException(object.getString("errmsg"));
}
JSONArray detail = object.getJSONArray("detail");
for (int i = 0; i < detail.size(); i++) {
JSONObject jsonObject1 = detail.getJSONObject(i);
Integer errcode1 = jsonObject1.getInteger("errcode");
if(0 == errcode1){
String suggest = jsonObject1.getString("suggest");
Integer label = jsonObject1.getInteger("label");
String keyword = jsonObject1.getString("keyword");
Integer prob = jsonObject1.getInteger("prob");
if(("risky".equals(suggest) || "review".equals(suggest)) && 100 != label && com.ruoyi.common.utils.StringUtils.isNotEmpty(keyword) && 80 <= prob){
return R.ok(true);
}
}
}
return R.ok(false);
}
}