FZCZTB.git - Gitblit

			@@ -1,10 +1,23 @@
			using Furion.DynamicApiController;
			using Admin.NET.Core;
			using Admin.NET.Core.Service;
			using cylsg.utility.Extend;
			using Furion;
			using Furion.DataEncryption;
			using Furion.DynamicApiController;
			using Furion.EventBus;
			using Furion.FriendlyException;
			using FZCTB.NET.API.Application.Auth.DTO;
			using FZCZTB.NET.MD.CutomerMd;
			using FZCZTB.NET.MD.CutomerMd.Extend;
			using FZCZTB.NET.SYSService.MSM;
			using Lazy.Captcha.Core;
			using Microsoft.AspNetCore.Authorization;
			using Microsoft.AspNetCore.Http;
			using Microsoft.AspNetCore.Mvc;
			using System;
			using System.Collections.Generic;
			using System.Linq;
			using System.Text;
			using System.Threading.Tasks;
			using Microsoft.Extensions.Options;
			using NewLife;
			using System.ComponentModel;
			using System.ComponentModel.DataAnnotations;

			namespace FZCTB.NET.API.Application.Auth
			{
			@@ -12,7 +25,252 @@
			/// 鉴权服务
			/// </summary>
			[ApiDescriptionSettings("FZCAPISYS", Order = 149)]
			public class AuthService: IDynamicApiController
			public class AuthService : IDynamicApiController
			{
			private readonly ICaptcha _captcha;
			private readonly IEventPublisher _eventPublisher;
			private readonly IHttpContextAccessor _httpContextAccessor;
			private readonly SMSConfigOptions _smsOptions;
			private readonly SysCacheService _sysCacheService;
			private readonly SysConfigService _sysConfigService;
			private readonly SqlSugarRepository<FBS_ExRole> _sysExRol;
			private readonly SysLdapService _sysLdapService;
			private readonly SysMenuService _sysMenuService;
			private readonly SysOnlineUserService _sysOnlineUserService;
			private readonly ZCSMSService _sysSmsService;
			private readonly SqlSugarRepository<FBS_CoutomerExRole> _sysUserExRol;
			private readonly SqlSugarRepository<FBS_CustormerUsers> _sysUserRep;
			private readonly SysUserService _sysUserService;
			public AuthService(
			SqlSugarRepository<FBS_CustormerUsers> sysUserRep,
			SqlSugarRepository<FBS_CoutomerExRole> sysUserExRol,
			IHttpContextAccessor httpContextAccessor,
			SysOnlineUserService sysOnlineUserService,
			SysConfigService sysConfigService,
			SysLdapService sysLdapService,
			IEventPublisher eventPublisher,
			ZCSMSService sysSmsService,
			SysCacheService sysCacheService,
			SysMenuService sysMenuService,
			SysUserService sysUserService,
			IOptions<SMSConfigOptions> smsConfigOptions,
			SqlSugarRepository<FBS_ExRole> exrel,

			ICaptcha captcha

			)
			{
			_captcha = captcha;
			_sysUserRep = sysUserRep;

			_sysSmsService = sysSmsService;
			_eventPublisher = eventPublisher;
			_sysUserService = sysUserService;
			_sysMenuService = sysMenuService;
			_sysCacheService = sysCacheService;
			_sysConfigService = sysConfigService;
			_httpContextAccessor = httpContextAccessor;
			_sysOnlineUserService = sysOnlineUserService;
			_sysLdapService = sysLdapService;
			_smsOptions = smsConfigOptions.Value;
			_sysExRol = exrel;
			_sysUserExRol = sysUserExRol;
			}

			/// <summary>
			/// 切换角色已登录进去角色或者切换角色是调用，需要替换Token,相当于登录
			/// </summary>
			[DisplayName("切换角色")]
			public async Task<CustomerLoginOutput> ChangeLogoInExRule(string RuleCode)
			{
			var id = App.User.FindFirst(ClaimConst.UserId)?.Value.ToLong() ?? 0;
			if (id == 0)
			{
			throw Oops.Oh("用户凭证错误");
			}
			var rols = await _sysExRol.GetFirstAsync(x => x.Code == RuleCode && x.Status == StatusEnum.Enable);
			if (rols == null)
			throw Oops.Oh("角色已经下线");

			// 获取登录租户和用户
			// 获取登录租户和用户
			var user = await _sysUserRep.AsQueryable().Where(x => x.Id == id).FirstAsync();
			if (user == null)
			{
			throw Oops.Oh("该用户没有注册");
			}
			if (user.IsEn == false)
			{
			throw Oops.Oh("用异常");
			}
			var exr = await _sysUserExRol.GetFirstAsync(x => x.CusExtendId == user.CusExtendId && x.ExRoleId == rols.Id);
			if (exr == null)
			throw Oops.Oh("没有申请该角色");

			return await CreateToken(user, RuleCode);
			}

			/// <summary>
			/// 手机号登录 🔖
			/// </summary>
			/// <param name="input"></param>
			/// <returns></returns>
			[AllowAnonymous]
			[DisplayName("手机号登录")]
			public virtual async Task<CustomerLoginOutput> LoginPhone([Required] CustomerLoginPhoneInput input)
			{
			if (input.Id > 0)
			{
			//最后一次确认登陆状态
			var verifyCode = _sysCacheService.Get<string>($"{CacheConst.KeyPhoneVerCode}{input.Phone}");
			if (string.IsNullOrWhiteSpace(verifyCode)) throw Oops.Oh("验证码不存在或已失效，请重新获取！");

			_sysCacheService.Remove($"{CacheConst.KeyPhoneVerCode}{input.Phone}");
			if (verifyCode != input.Code)
			throw Oops.Oh("登录码失效");
			var user = await _sysUserRep.AsQueryable().Where(x => x.Id == input.Id && x.IsEn == true).FirstAsync();
			if (user == null)
			throw Oops.Oh("没有找到该手机用户");
			return await CreateToken(user, input.ExRuleCode ?? "");
			}
			if (input.Code != "TEST")
			// 校验短信验证码
			_sysSmsService.VerifyCode(new SmsVerifyCodeInput { Phone = input.Phone, Code = input.Code });

			// 获取登录租户和用户
			// 获取登录租户和用户
			var userList = await _sysUserRep.AsQueryable().Where(x => x.PhoneNumber == input.Phone && x.IsEn == true).Includes(x => x.CusExtend).ToListAsync();
			if (userList == null)
			{
			throw Oops.Oh("没有找到该手机用户");
			}
			if (userList.Count > 1)
			{
			// 生成随机验证码
			var random = new Random();
			var verifyCode = random.Next(100000, 999999);
			//需要二次登陆
			var aRet = new CustomerLoginOutput
			{
			TheLastLogo = false,
			CustomerExs = new List<CustomerExVm>(),
			Code = verifyCode.ToString(),
			};
			_sysCacheService.Set($"{CacheConst.KeyPhoneVerCode}{input.Phone}", verifyCode.ToString(), TimeSpan.FromSeconds(_smsOptions.lingKai.VerifyTimeOut.ToInt()));
			foreach (var item in userList)
			{
			aRet.CustomerExs.Add(new CustomerExVm
			{
			CustomerUserID = item.Id,
			EnterpriseName = item.CusExtend.EnterpriseName,
			UnifiedSocialCreditCode = item.CusExtend.UnifiedSocialCreditCode.MaskMiddle(),
			IsManger = item.IsManager




			});
			}
			return aRet;
			}

			return await CreateToken(userList[0], input.ExRuleCode ?? "");
			}
			/// <summary>
			/// 手机号登录 🔖
			/// </summary>
			/// <param name="input"></param>
			/// <returns></returns>
			[AllowAnonymous]
			[DisplayName("微信扫码登录")]
			public virtual async Task<CustomerLoginOutput> WeiXinLoginPhone([Required] CustomerLoginPhoneInput input)
			{
			throw Oops.Oh("暂时不支持微信扫码登录");
			// 校验短信验证码
			//_sysSmsService.VerifyCode(new SmsVerifyCodeInput { Phone = input.Phone, Code = input.Code });

			//// 获取登录租户和用户
			//var user = await _sysUserRep.AsQueryable().Where(x=>x.Account==input.Phone).Includes(x => x.CoutomerExRols, y => y.ExRole).FirstAsync();
			//if(user==null)
			//{
			//}

			//return await CreateToken(user, input.ExRuleCode );
			}

			/// <summary>
			/// 生成Token令牌 🔖
			/// </summary>
			/// <param name="user"></param>\
			/// <param name="sysUserEventTypeEnum"></param>\
			/// <returns></returns>
			[NonAction]
			internal async Task<CustomerLoginOutput> CreateToken(FBS_CustormerUsers user, string ExRuleCode, SysUserEventTypeEnum sysUserEventTypeEnum = SysUserEventTypeEnum.Login)
			{
			// 单用户登录
			await _sysOnlineUserService.SingleLogin(user.Id);

			// 生成Token令牌
			var tokenExpire = await _sysConfigService.GetTokenExpire();
			var accessToken = JWTEncryption.Encrypt(new Dictionary<string, object>
			{
			{ ClaimConst.UserId, user.Id },
			{ ClaimConst.TenantId, user.CusExtendId },
			{ ClaimConst.Account, user.PhoneNumber.PrivacyStr() },
			{ ClaimConst.RealName, user.Nickname??user.Name },

			{ ClaimConst.UserType, "Customer" },
			{ ClaimConst.CustomerExId, user.CusExtendId },
			{ ClaimConst.CustomerLogoinType, ExRuleCode },
			}, tokenExpire);

			// 生成刷新Token令牌
			var refreshTokenExpire = await _sysConfigService.GetRefreshTokenExpire();
			var refreshToken = JWTEncryption.GenerateRefreshToken(accessToken, refreshTokenExpire);

			// 设置响应报文头
			_httpContextAccessor.HttpContext.SetTokensOfResponseHeaders(accessToken, refreshToken);

			// Swagger Knife4UI-AfterScript登录脚本
			// ke.global.setAllHeader('Authorization', 'Bearer ' + ke.response.headers['access-token']);

			// 更新用户登录信息
			user.LastLoginIp = _httpContextAccessor.HttpContext.GetRemoteIpAddressToIPv4(true);
			(user.LastLoginAddress, double? longitude, double? latitude) = CommonUtil.GetIpAddress(user.LastLoginIp);
			user.LastLoginTime = DateTime.Now;
			user.LastLoginDevice = CommonUtil.GetClientDeviceInfo(_httpContextAccessor.HttpContext?.Request?.Headers?.UserAgent);
			await _sysUserRep.AsUpdateable(user).UpdateColumns(u => new
			{
			u.LastLoginIp,
			u.LastLoginAddress,
			u.LastLoginTime,
			u.LastLoginDevice,
			}).ExecuteCommandAsync();

			var payload = new
			{
			Entity = user,
			Output = new CustomerLoginOutput
			{
			AccessToken = accessToken,
			RefreshToken = refreshToken,
			TheLastLogo = true,
			IsManager = user.IsManager
			}
			};
			payload.Output.ExRoles = new List<CustomerExRoleVm>();

			payload.Output.ExRoles = await _sysUserExRol.AsQueryable().Where(x => x.CusExtendId == user.CusExtendId).Includes(x => x.ExRole).Select(x => new CustomerExRoleVm
			{
			Code = x.ExRole.Code,
			HasFlsh = x.steps == CusExtendStep.Pass,
			Name = x.ExRole.Name
			}).ToListAsync();

			//暂时不出用户事件
			// 发布系统用户操作事件
			//await _eventPublisher.PublishAsync(sysUserEventTypeEnum, payload);
			return payload.Output;
			}
			}
			}
			}