| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176 |
- package auth
- import (
- "git.sxidc.com/go-framework/baize/convenient/domain/auth/permission"
- "git.sxidc.com/go-framework/baize/convenient/domain/auth/permission_group"
- "git.sxidc.com/go-framework/baize/convenient/domain/auth/relations"
- "git.sxidc.com/go-framework/baize/convenient/domain/auth/role"
- "git.sxidc.com/go-framework/baize/convenient/domain/auth/user"
- "git.sxidc.com/go-framework/baize/framework/binding"
- "git.sxidc.com/go-framework/baize/framework/core/api"
- "git.sxidc.com/go-framework/baize/framework/core/api/request"
- "git.sxidc.com/go-framework/baize/framework/core/api/response"
- "git.sxidc.com/go-framework/baize/framework/core/domain"
- "git.sxidc.com/go-framework/baize/framework/core/domain/entity"
- "git.sxidc.com/go-framework/baize/framework/core/infrastructure"
- "git.sxidc.com/go-framework/baize/framework/core/infrastructure/database"
- "git.sxidc.com/go-framework/baize/framework/core/infrastructure/database/sql"
- "git.sxidc.com/go-tools/utils/encoding"
- "github.com/pkg/errors"
- )
- // Simple Bind参数
- type Simple struct {
- // schema
- Schema string
- // AES加密用到的Key
- AESKey string
- // JWT的Key
- JWTSecretKey string
- // JWT到期时间
- JWTExpiredSec int64
- }
- func (simple *Simple) bind(binder *binding.Binder) {
- (&permission.Simple{Schema: simple.Schema}).Bind(binder)
- (&permission_group.Simple{Schema: simple.Schema}).Bind(binder)
- (&role.Simple{Schema: simple.Schema}).Bind(binder)
- (&user.Simple{Schema: simple.Schema, AESKey: simple.AESKey}).Bind(binder)
- (&relations.Simple{Schema: simple.Schema}).Bind(binder)
- // 登录
- binding.PostBind(binder, &binding.SimpleBindItem[map[string]any]{
- Path: "/login",
- SendResponseFunc: response.SendMapResponse,
- RequestParams: &LoginJsonBody{},
- ServiceFunc: func(c *api.Context, params request.Params, objects []domain.Object, i *infrastructure.Infrastructure) (map[string]any, error) {
- errResponse := map[string]any{
- "token": "",
- }
- jsonBody, err := request.ToConcrete[*LoginJsonBody](params)
- if err != nil {
- return errResponse, err
- }
- encryptedPassword, err := encoding.AESEncrypt(jsonBody.Password, simple.AESKey)
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- userTableName := domain.TableName(simple.Schema, &user.Entity{})
- dbExecutor := i.DBExecutor()
- result, err := database.QueryOne(dbExecutor, &sql.QueryOneExecuteParams{
- TableName: userTableName,
- Conditions: sql.NewConditions().
- Equal(user.ColumnUserName, jsonBody.UserName).
- Equal(user.ColumnPassword, encryptedPassword),
- })
- if err != nil {
- if database.IsErrorDBRecordNotExist(err) {
- return errResponse, errors.New("用户名或密码错误")
- }
- return errResponse, errors.New(err.Error())
- }
- existUser := new(user.Entity)
- err = sql.ParseSqlResult(result, existUser)
- if err != nil {
- return errResponse, err
- }
- token, err := newJWT(simple.JWTSecretKey, existUser.ID, simple.JWTExpiredSec)
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- err = database.Update(dbExecutor, &sql.UpdateExecuteParams{
- TableName: userTableName,
- TableRow: sql.NewTableRow().Add(user.ColumnToken, token),
- Conditions: sql.NewConditions().Equal(entity.ColumnID, existUser.ID),
- })
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- return map[string]any{
- "token": token,
- }, nil
- },
- }, Authentication())
- // 注销
- binding.PostBind(binder, &binding.SimpleBindItem[any]{
- Path: "/logout",
- SendResponseFunc: response.SendMsgResponse,
- ServiceFunc: func(c *api.Context, params request.Params, objects []domain.Object, i *infrastructure.Infrastructure) (any, error) {
- errResponse := map[string]any{
- "token": "",
- }
- jsonBody, err := request.ToConcrete[*LoginJsonBody](params)
- if err != nil {
- return errResponse, err
- }
- encryptedPassword, err := encoding.AESEncrypt(jsonBody.Password, simple.AESKey)
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- userTableName := domain.TableName(simple.Schema, &user.Entity{})
- dbExecutor := i.DBExecutor()
- result, err := database.QueryOne(dbExecutor, &sql.QueryOneExecuteParams{
- TableName: userTableName,
- Conditions: sql.NewConditions().
- Equal(user.ColumnUserName, jsonBody.UserName).
- Equal(user.ColumnPassword, encryptedPassword),
- })
- if err != nil {
- if database.IsErrorDBRecordNotExist(err) {
- return errResponse, errors.New("用户名或密码错误")
- }
- return errResponse, errors.New(err.Error())
- }
- existUser := new(user.Entity)
- err = sql.ParseSqlResult(result, existUser)
- if err != nil {
- return errResponse, err
- }
- token, err := newJWT(simple.JWTSecretKey, existUser.ID, simple.JWTExpiredSec)
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- err = database.Update(dbExecutor, &sql.UpdateExecuteParams{
- TableName: userTableName,
- TableRow: sql.NewTableRow().Add(user.ColumnToken, token),
- Conditions: sql.NewConditions().Equal(entity.ColumnID, existUser.ID),
- })
- if err != nil {
- return errResponse, errors.New(err.Error())
- }
- return map[string]any{
- "token": token,
- }, nil
- },
- })
- // TODO Challenge
- }
- func BindAuth(binder *binding.Binder, simple *Simple) {
- simple.bind(binder)
- }
|
