Home Explore Help
Register Sign In
eta_gn_server
/
eta_api
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: dm
Branches Tags
eta_api
/
services
/
user_login.go

user_login.go 14 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468 
  1. package services
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"errors"
    6. 

  6. 	"eta_gn/eta_api/models"
    7. 

  7. 	"eta_gn/eta_api/models/system"
    8. 

  8. 	"eta_gn/eta_api/utils"
    9. 

  9. 	"fmt"
    10. 

  10. 	"github.com/go-ldap/ldap"
    11. 

  11. 	"io"
    12. 

  12. 	"net/http"
    13. 

  13. 	"strconv"
    14. 

  14. 	"strings"
    15. 

  15. 	"time"
    16. 

  16. )
    17. 

  17. 

  18. // SendAdminMobileVerifyCode 发送用户手机验证码
    19. 

  19. func SendAdminMobileVerifyCode(source int, mobile, areaCode string) (ok bool, err error) {
    20. 

  20. 	defer func() {
    21. 

  21. 		if err != nil {
    22. 

  22. 			tips := fmt.Sprintf("SendAdminMobileVerifyCode ErrMsg: %s", err.Error())
    23. 

  23. 			utils.FileLog.Info(tips)
    24. 

  24. 			fmt.Println(tips)
    25. 

  25. 		}
    26. 

  26. 	}()
    27. 

  27. 	smsClient, e := NewSmsClient()
    28. 

  28. 	if e != nil {
    29. 

  29. 		err = fmt.Errorf("NewSmsClient err: %s", e.Error())
    30. 

  30. 		return
    31. 

  31. 	}
    32. 

  32. 

  33. 	verifyCode := utils.GetRandDigit(6)
    34. 

  34. 	record := new(system.AdminVerifyCodeRecord)
    35. 

  35. 	record.VerifyType = system.AdminVerifyCodeRecordTypeMobile
    36. 

  36. 	record.Mobile = mobile
    37. 

  37. 	record.Source = source
    38. 

  38. 	record.Code = verifyCode
    39. 

  39. 	record.ExpiredTime = time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute)
    40. 

  40. 	record.CreateTime = time.Now().Local()
    41. 

  41. 	record.ModifyTime = time.Now().Local()
    42. 

  42. 	if e := record.Create(); e != nil {
    43. 

  43. 		err = fmt.Errorf("新增验证码记录失败, Err: %s", e.Error())
    44. 

  44. 		return
    45. 

  45. 	}
    46. 

  46. 

  47. 	var smsReq UserLoginSmsCodeReq
    48. 

  48. 	smsReq.Mobile = mobile
    49. 

  49. 	smsReq.TelAreaCode = areaCode
    50. 

  50. 	smsReq.VerifyCode = verifyCode
    51. 

  51. 	smsResult, e := smsClient.SendUserLoginCode(smsReq)
    52. 

  52. 	if e != nil {
    53. 

  53. 		err = fmt.Errorf("SendUserLoginCode err: %s", e.Error())
    54. 

  54. 		return
    55. 

  55. 	}
    56. 

  56. 	ok = smsResult.Success
    57. 

  57. 

  58. 	record.SendStatus = system.AdminVerifyCodeRecordStatusSuccess
    59. 

  59. 	if !ok {
    60. 

  60. 		record.SendStatus = system.AdminVerifyCodeRecordStatusFail
    61. 

  61. 	}
    62. 

  62. 	record.RequestId = smsResult.RequestId
    63. 

  63. 	cols := []string{"SendStatus", "RequestId"}
    64. 

  64. 	if e := record.Update(cols); e != nil {
    65. 

  65. 		err = fmt.Errorf("更新验证码记录失败, Err: %s", e.Error())
    66. 

  66. 	}
    67. 

  67. 	return
    68. 

  68. }
    69. 

  69. 

  70. // SendAdminEmailVerifyCode 发送用户邮箱验证码
    71. 

  71. func SendAdminEmailVerifyCode(source int, email string) (ok bool, err error) {
    72. 

  72. 	defer func() {
    73. 

  73. 		if err != nil {
    74. 

  74. 			tips := fmt.Sprintf("SendAdminEmailVerifyCode ErrMsg: %s", err.Error())
    75. 

  75. 			utils.FileLog.Info(tips)
    76. 

  76. 			fmt.Println(tips)
    77. 

  77. 		}
    78. 

  78. 	}()
    79. 

  79. 	// 读取配置
    80. 

  80. 	confMap, e := models.GetBusinessConf()
    81. 

  81. 	if e != nil {
    82. 

  82. 		err = fmt.Errorf("GetBusinessConf err: %s", e.Error())
    83. 

  83. 		return
    84. 

  84. 	}
    85. 

  85. 	subjectConf := confMap[models.BusinessConfLoginEmailTemplateSubject]
    86. 

  86. 	contentConf := confMap[models.BusinessConfLoginEmailTemplateContent]
    87. 

  87. 	if subjectConf == "" {
    88. 

  88. 		err = fmt.Errorf("请先配置邮件模版主题")
    89. 

  89. 		return
    90. 

  90. 	}
    91. 

  91. 	if contentConf == "" {
    92. 

  92. 		err = fmt.Errorf("请先配置邮件模版内容")
    93. 

  93. 		return
    94. 

  94. 	}
    95. 

  95. 	verifyCode := utils.GetRandDigit(6)
    96. 

  96. 	t := time.Now().Format("2006年01月02日")
    97. 

  97. 	emailContent := contentConf
    98. 

  98. 	emailContent = strings.Replace(emailContent, "{{VERIFY_CODE}}", verifyCode, 1)
    99. 

  99. 	emailContent = strings.Replace(emailContent, "{{EXPIRED_MINUTE}}", strconv.Itoa(utils.VerifyCodeExpireMinute), 1)
    100. 

  100. 	emailContent = strings.Replace(emailContent, "{{DATE_TIME}}", t, 1)
    101. 

  101. 

  102. 	// 验证码记录
    103. 

  103. 	record := new(system.AdminVerifyCodeRecord)
    104. 

  104. 	record.VerifyType = system.AdminVerifyCodeRecordTypeEmail
    105. 

  105. 	record.Email = email
    106. 

  106. 	record.Source = source
    107. 

  107. 	record.Code = verifyCode
    108. 

  108. 	record.ExpiredTime = time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute)
    109. 

  109. 	record.CreateTime = time.Now().Local()
    110. 

  110. 	record.ModifyTime = time.Now().Local()
    111. 

  111. 	if e := record.Create(); e != nil {
    112. 

  112. 		err = fmt.Errorf("新增验证码记录失败, Err: %s", e.Error())
    113. 

  113. 		return
    114. 

  114. 	}
    115. 

  115. 

  116. 	var result string
    117. 

  117. 	// 普通邮箱
    118. 

  118. 	var emailReq SendEmailReq
    119. 

  119. 	emailReq.Title = subjectConf
    120. 

  120. 	emailReq.Content = emailContent
    121. 

  121. 	emailReq.ToUser = append(emailReq.ToUser, email)
    122. 

  122. 	ok, e = SendEmail(emailReq)
    123. 

  123. 	if e != nil {
    124. 

  124. 		err = fmt.Errorf("邮箱推送失败, Err: %s", e.Error())
    125. 

  125. 		return
    126. 

  126. 	}
    127. 

  127. 

  128. 	record.SendStatus = system.AdminVerifyCodeRecordStatusSuccess
    129. 

  129. 	if !ok {
    130. 

  130. 		record.SendStatus = system.AdminVerifyCodeRecordStatusFail
    131. 

  131. 	}
    132. 

  132. 	record.SendResult = result
    133. 

  133. 	cols := []string{"SendStatus", "SendResult"}
    134. 

  134. 	if e = record.Update(cols); e != nil {
    135. 

  135. 		err = fmt.Errorf("更新验证码记录失败, Err: %s", e.Error())
    136. 

  136. 	}
    137. 

  137. 	return
    138. 

  138. }
    139. 

  139. 

  140. // LdapUserCheck AD域用户校验
    141. 

  141. func LdapUserCheck(userName, password string) (pass bool, err error) {
    142. 

  142. 	defer func() {
    143. 

  143. 		if err != nil {
    144. 

  144. 			tips := fmt.Sprintf("LdapUserCheck ErrMsg: %s", err.Error())
    145. 

  145. 			utils.FileLog.Info(tips)
    146. 

  146. 			fmt.Println(tips)
    147. 

  147. 		}
    148. 

  148. 	}()
    149. 

  149. 	if userName == "" || password == "" {
    150. 

  150. 		err = fmt.Errorf("账号密码有误")
    151. 

  151. 		return
    152. 

  152. 	}
    153. 

  153. 	confMap, e := models.GetBusinessConf()
    154. 

  154. 	if e != nil {
    155. 

  155. 		err = fmt.Errorf("GetBusinessConf err: %s", e.Error())
    156. 

  156. 		return
    157. 

  157. 	}
    158. 

  158. 	if confMap[models.BusinessConfLdapHost] == "" || confMap[models.BusinessConfLdapBase] == "" {
    159. 

  159. 		err = fmt.Errorf("AD域配置有误")
    160. 

  160. 		return
    161. 

  161. 	}
    162. 

  162. 	ldapPort, _ := strconv.Atoi(confMap[models.BusinessConfLdapPort])
    163. 

  163. 	if ldapPort <= 0 {
    164. 

  164. 		err = fmt.Errorf("AD域端口号有误, Port: %d", ldapPort)
    165. 

  165. 		return
    166. 

  166. 	}
    167. 

  167. 

  168. 	// 连接ldap
    169. 

  169. 	addr := fmt.Sprintf("%s:%d", confMap[models.BusinessConfLdapHost], ldapPort)
    170. 

  170. 	conn, e := ldap.Dial("tcp", addr)
    171. 

  171. 	if e != nil {
    172. 

  172. 		err = fmt.Errorf("ldap Dial err: %s", e.Error())
    173. 

  173. 		return
    174. 

  174. 	}
    175. 

  175. 	defer conn.Close()
    176. 

  176. 

  177. 	// 绑定用户
    178. 

  178. 	bindUserName := fmt.Sprintf("%s%s", userName, confMap[models.BusinessConfLdapBindUserSuffix])
    179. 

  179. 	if e = conn.Bind(bindUserName, password); e != nil {
    180. 

  180. 		err = fmt.Errorf("ldap Bind err: %s", e.Error())
    181. 

  181. 		return
    182. 

  182. 	}
    183. 

  183. 

  184. 	// 鉴权操作
    185. 

  185. 	searchRequest := ldap.NewSearchRequest(
    186. 

  186. 		confMap[models.BusinessConfLdapBase],
    187. 

  187. 		ldap.ScopeWholeSubtree, ldap.NeverDerefAliases, 0, 0, false,
    188. 

  188. 		fmt.Sprintf(confMap[models.BusinessConfLdapUserFilter], userName),
    189. 

  189. 		[]string{"dn"},
    190. 

  190. 		nil,
    191. 

  191. 	)
    192. 

  192. 	//b, _ := json.Marshal(searchRequest)
    193. 

  193. 	//fmt.Println("searchRequest: ", string(b))
    194. 

  194. 

  195. 	sr, e := conn.Search(searchRequest)
    196. 

  196. 	if e != nil {
    197. 

  197. 		err = fmt.Errorf("ldap Search err: %s", e.Error())
    198. 

  198. 		return
    199. 

  199. 	}
    200. 

  200. 

  201. 	// 验证结果
    202. 

  202. 	if len(sr.Entries) != 1 {
    203. 

  203. 		utils.FileLog.Info("ldap check fail: user does not exist or too many entries returned")
    204. 

  204. 		return
    205. 

  205. 	}
    206. 

  206. 	pass = true
    207. 

  207. 	return
    208. 

  208. }
    209. 

  209. 

  210. // ThirdLogin
    211. 

  211. // @Description: 第三方登录(换取token)
    212. 

  212. // @author: Roc
    213. 

  213. // @datetime 2024-01-30 16:09:18
    214. 

  214. // @param req map[string]interface{}
    215. 

  215. // @return data GetCrmTokenData
    216. 

  216. // @return err error
    217. 

  217. // @return errMsg string
    218. 

  218. func ThirdLogin(req map[string]interface{}) (data GetCrmTokenData, err error, errMsg string) {
    219. 

  219. 	// 普通的第三方
    220. 

  220. 	data, err, errMsg = ThirdCodeLoginFromMiddleServer(req)
    221. 

  221. 

  222. 	return
    223. 

  223. }
    224. 

  224. 

  225. // ThirdCodeLoginFromMiddleServer
    226. 

  226. // @Description:  第三方登录(向桥接服务换取token)
    227. 

  227. // @author: Roc
    228. 

  228. // @datetime 2024-01-30 16:09:35
    229. 

  229. // @param param map[string]interface{}
    230. 

  230. // @return tokenResp GetCrmTokenData
    231. 

  231. // @return err error
    232. 

  232. func ThirdCodeLoginFromMiddleServer(param map[string]interface{}) (tokenResp GetCrmTokenData, err error, errMsg string) {
    233. 

  233. 	if utils.EtaBridgeUrl == `` || utils.EtaBridgeLoginUrl == "" {
    234. 

  234. 		errMsg = `未配置第三方登录的桥接服务地址`
    235. 

  235. 		err = errors.New(errMsg)
    236. 

  236. 		return
    237. 

  237. 	}
    238. 

  238. 	data, e := json.Marshal(param)
    239. 

  239. 	if e != nil {
    240. 

  240. 		err = fmt.Errorf("data json marshal err: %s", e.Error())
    241. 

  241. 		return
    242. 

  242. 	}
    243. 

  243. 

  244. 	body := io.NopCloser(strings.NewReader(string(data)))
    245. 

  245. 	client := &http.Client{}
    246. 

  246. 	req, e := http.NewRequest("POST", utils.EtaBridgeUrl+utils.EtaBridgeLoginUrl, body)
    247. 

  247. 	if e != nil {
    248. 

  248. 		err = fmt.Errorf("http create request err: %s", e.Error())
    249. 

  249. 		return
    250. 

  250. 	}
    251. 

  251. 

  252. 	contentType := "application/json;charset=utf-8"
    253. 

  253. 	req.Header.Set("Content-Type", contentType)
    254. 

  254. 

  255. 	checkToken := utils.MD5(utils.EtaBridgeAppNameEn + utils.EtaBridgeMd5Key)
    256. 

  256. 	req.Header.Set("Authorization", checkToken)
    257. 

  257. 	resp, e := client.Do(req)
    258. 

  258. 	if e != nil {
    259. 

  259. 		err = fmt.Errorf("http client do err: %s", e.Error())
    260. 

  260. 		return
    261. 

  261. 	}
    262. 

  262. 	defer func() {
    263. 

  263. 		_ = resp.Body.Close()
    264. 

  264. 	}()
    265. 

  265. 	b, e := io.ReadAll(resp.Body)
    266. 

  266. 	if e != nil {
    267. 

  267. 		err = fmt.Errorf("resp body read err: %s", e.Error())
    268. 

  268. 		return
    269. 

  269. 	}
    270. 

  270. 	if len(b) == 0 {
    271. 

  271. 		err = fmt.Errorf("resp body is empty")
    272. 

  272. 		return
    273. 

  273. 	}
    274. 

  274. 	// 生产环境解密, 注意有个坑前后的双引号
    275. 

  275. 	if utils.RunMode == "release" {
    276. 

  276. 		str := string(b)
    277. 

  277. 		str = strings.Trim(str, `"`)
    278. 

  278. 		b = utils.DesBase64Decrypt([]byte(str), utils.EtaBridgeDesKey)
    279. 

  279. 	}
    280. 

  280. 

  281. 	result := new(GetCrmTokenDataResp)
    282. 

  282. 	if e = json.Unmarshal(b, &result); e != nil {
    283. 

  283. 		err = fmt.Errorf("result unmarshal err: %s\nresult: %s", e.Error(), string(b))
    284. 

  284. 		utils.FileLog.Info("第三方登录(向桥接服务换取token):\n" + string(b))
    285. 

  285. 		return
    286. 

  286. 	}
    287. 

  287. 	if result.Code != 200 {
    288. 

  288. 		errMsg = result.Msg
    289. 

  289. 		err = fmt.Errorf("result: %s", string(b))
    290. 

  290. 		return
    291. 

  291. 	}
    292. 

  292. 	tokenResp = result.Data
    293. 

  293. 

  294. 	return
    295. 

  295. }
    296. 

  296. 

  297. // ThirdLogout
    298. 

  298. // @Description: 第三方登出
    299. 

  299. // @author: Roc
    300. 

  300. // @datetime 2024-01-30 16:09:18
    301. 

  301. // @param req map[string]interface{}
    302. 

  302. // @return data GetCrmTokenData
    303. 

  303. // @return err error
    304. 

  304. func ThirdLogout(accessToken string) (err error) {
    305. 

  305. 	if utils.EtaBridgeUrl == "" || utils.EtaBridgeLogoutUrl == "" {
    306. 

  306. 		// 未配置第三方登出的桥接服务地址
    307. 

  307. 		return
    308. 

  308. 	}
    309. 

  309. 	params := map[string]interface{}{
    310. 

  310. 		"access_token": accessToken,
    311. 

  311. 	}
    312. 

  312. 	data, e := json.Marshal(params)
    313. 

  313. 	if e != nil {
    314. 

  314. 		err = fmt.Errorf("data json marshal err: %s", e.Error())
    315. 

  315. 		return
    316. 

  316. 	}
    317. 

  317. 

  318. 	body := io.NopCloser(strings.NewReader(string(data)))
    319. 

  319. 	client := &http.Client{}
    320. 

  320. 	req, e := http.NewRequest("POST", utils.EtaBridgeUrl+utils.EtaBridgeLogoutUrl, body)
    321. 

  321. 	if e != nil {
    322. 

  322. 		err = fmt.Errorf("http create request err: %s", e.Error())
    323. 

  323. 		return
    324. 

  324. 	}
    325. 

  325. 

  326. 	contentType := "application/json;charset=utf-8"
    327. 

  327. 	req.Header.Set("Content-Type", contentType)
    328. 

  328. 	checkToken := utils.MD5(utils.EtaBridgeAppNameEn + utils.EtaBridgeMd5Key)
    329. 

  329. 	req.Header.Set("Authorization", checkToken)
    330. 

  330. 	resp, e := client.Do(req)
    331. 

  331. 	if e != nil {
    332. 

  332. 		err = fmt.Errorf("http client do err: %s", e.Error())
    333. 

  333. 		return
    334. 

  334. 	}
    335. 

  335. 	defer func() {
    336. 

  336. 		_ = resp.Body.Close()
    337. 

  337. 	}()
    338. 

  338. 	b, e := io.ReadAll(resp.Body)
    339. 

  339. 	if e != nil {
    340. 

  340. 		err = fmt.Errorf("resp body read err: %s", e.Error())
    341. 

  341. 		return
    342. 

  342. 	}
    343. 

  343. 	if len(b) == 0 {
    344. 

  344. 		err = fmt.Errorf("resp body is empty")
    345. 

  345. 		return
    346. 

  346. 	}
    347. 

  347. 	// 生产环境解密, 注意有个坑前后的双引号
    348. 

  348. 	if utils.RunMode == "release" {
    349. 

  349. 		str := string(b)
    350. 

  350. 		str = strings.Trim(str, `"`)
    351. 

  351. 		b = utils.DesBase64Decrypt([]byte(str), utils.EtaBridgeDesKey)
    352. 

  352. 	}
    353. 

  353. 

  354. 	result := new(GetCrmTokenDataResp)
    355. 

  355. 	if e = json.Unmarshal(b, &result); e != nil {
    356. 

  356. 		err = fmt.Errorf("result unmarshal err: %s\nresult: %s", e.Error(), string(b))
    357. 

  357. 		return
    358. 

  358. 	}
    359. 

  359. 	if result.Code != 200 {
    360. 

  360. 		err = fmt.Errorf("result: %s", string(b))
    361. 

  361. 		return
    362. 

  362. 	}
    363. 

  363. 

  364. 	return
    365. 

  365. }
    366. 

  366. 

  367. // UserLoginChange 切换用户
    368. 

  368. func UserLoginChange(adminName string) (resp *system.LoginResp, err error) {
    369. 

  369. 	sysUser, e := system.GetSysUserByAdminName(adminName)
    370. 

  370. 	if e != nil {
    371. 

  371. 		if utils.IsErrNoRow(e) {
    372. 

  372. 			err = fmt.Errorf("用户不存在: %s", adminName)
    373. 

  373. 			return
    374. 

  374. 		}
    375. 

  375. 		err = fmt.Errorf("获取用户失败, %v", e)
    376. 

  376. 		return
    377. 

  377. 	}
    378. 

  378. 

  379. 	// 生成token
    380. 

  380. 	account := utils.MD5(sysUser.AdminName)
    381. 

  381. 	token := utils.GenToken(account)
    382. 

  382. 	sysSession := new(system.SysSession)
    383. 

  383. 	sysSession.UserName = sysUser.AdminName
    384. 

  384. 	sysSession.SysUserId = sysUser.AdminId
    385. 

  385. 	sysSession.ExpiredTime = time.Now().AddDate(0, 0, 90)
    386. 

  386. 	sysSession.IsRemember = 0 // 均需要做过期校验
    387. 

  387. 	sysSession.CreatedTime = time.Now()
    388. 

  388. 	sysSession.LastUpdatedTime = time.Now()
    389. 

  389. 	sysSession.AccessToken = token
    390. 

  390. 	if e := system.AddSysSession(sysSession); e != nil {
    391. 

  391. 		err = fmt.Errorf("新增session失败, %v", e)
    392. 

  392. 		return
    393. 

  393. 	}
    394. 

  394. 

  395. 	// 修改最后登录时间
    396. 

  396. 	{
    397. 

  397. 		sysUser.LastLoginTime = time.Now().Format(utils.FormatDateTime)
    398. 

  398. 		sysUser.LastUpdatedTime = time.Now().Format(utils.FormatDateTime)
    399. 

  399. 		_ = sysUser.Update([]string{"LastLoginTime", "LastUpdatedTime"})
    400. 

  400. 	}
    401. 

  401. 

  402. 	resp = new(system.LoginResp)
    403. 

  403. 	resp.Authorization = token
    404. 

  404. 	resp.Authorization = "authorization=" + token
    405. 

  405. 	resp.RealName = sysUser.RealName
    406. 

  406. 	resp.AdminName = sysUser.AdminName
    407. 

  407. 	resp.RoleName = sysUser.RoleName
    408. 

  408. 	resp.SysRoleTypeCode = sysUser.RoleTypeCode //系统角色编码
    409. 

  409. 	resp.RoleTypeCode = sysUser.RoleTypeCode
    410. 

  410. 	if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_GROUP {
    411. 

  411. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
    412. 

  412. 	}
    413. 

  413. 	if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_TEAM {
    414. 

  414. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
    415. 

  415. 	}
    416. 

  416. 	if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_DEPARTMENT {
    417. 

  417. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
    418. 

  418. 	}
    419. 

  419. 	if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_RAI_GROUP {
    420. 

  420. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_RAI_SELLER
    421. 

  421. 	}
    422. 

  422. 	if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_RAI_DEPARTMENT {
    423. 

  423. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_RAI_SELLER
    424. 

  424. 	}
    425. 

  425. 	if sysUser.RoleName == utils.ROLE_NAME_FICC_DIRECTOR {
    426. 

  426. 		resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
    427. 

  427. 	}
    428. 

  428. 	resp.AdminId = sysUser.AdminId
    429. 

  429. 	var productName string
    430. 

  430. 	productId := GetProductId(sysUser.RoleTypeCode)
    431. 

  431. 	if productId == 1 {
    432. 

  432. 		productName = utils.COMPANY_PRODUCT_FICC_NAME
    433. 

  433. 	} else if productId == 2 {
    434. 

  434. 		productName = utils.COMPANY_PRODUCT_RAI_NAME
    435. 

  435. 	} else {
    436. 

  436. 		productName = "admin"
    437. 

  437. 	}
    438. 

  438. 	resp.ProductName = productName
    439. 

  439. 	resp.Authority = sysUser.Authority
    440. 

  440. 

  441. 	// 设置redis缓存
    442. 

  442. 	{
    443. 

  443. 		// 获取不可信的登录态,并将该登录态重置掉,不允许多次登录
    444. 

  444. 		noTrustLoginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN_NO_TRUST, sysUser.AdminId)
    445. 

  445. 		noTrustLoginId, _ := utils.Rc.RedisString(noTrustLoginKey)
    446. 

  446. 		if noTrustLoginId != `` { // 如果存在不可信设备,那么将其下架
    447. 

  447. 			oldNoTrustLoginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN, noTrustLoginId)
    448. 

  448. 			_ = utils.Rc.Put(oldNoTrustLoginKey, "0", utils.LoginCacheTime*time.Minute)
    449. 

  449. 		}
    450. 

  450. 

  451. 		// 如果当前是不可信设备,那么将其加入到不可信名单
    452. 

  452. 		loginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN, sysSession.Id)
    453. 

  453. 		_ = utils.Rc.Put(loginKey, "1", utils.LoginCacheTime*time.Minute)
    454. 

  454. 		_ = utils.Rc.Put(noTrustLoginKey, sysSession.Id, utils.LoginCacheTime*time.Minute)
    455. 

  455. 	}
    456. 

  456. 

  457. 	// 新增登录记录
    458. 

  458. 	go func() {
    459. 

  459. 		record := new(system.SysUserLoginRecord)
    460. 

  460. 		record.Uid = sysUser.AdminId
    461. 

  461. 		record.UserName = adminName
    462. 

  462. 		//record.Ip = this.Ctx.Input.IP()
    463. 

  463. 		record.Stage = "login"
    464. 

  464. 		record.CreateTime = time.Now()
    465. 

  465. 		_ = system.AddSysUserLoginRecord(record)
    466. 

  466. 	}()
    467. 

  467. 	return
    468. 

  468. }
    469.