base_auth_xy.go 4.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147
  1. package xy
  2. import (
  3. "encoding/json"
  4. "eta/eta_hub/models/system"
  5. "eta/eta_hub/models/xy"
  6. "eta/eta_hub/utils"
  7. "fmt"
  8. "github.com/beego/beego/v2/server/web"
  9. "net/http"
  10. "net/url"
  11. )
  12. type BaseAuthXyController struct {
  13. web.Controller
  14. SysUser *system.Admin
  15. }
  16. func (this *BaseAuthXyController) Prepare() {
  17. fmt.Println("enter prepare")
  18. method := this.Ctx.Input.Method()
  19. uri := this.Ctx.Input.URI()
  20. fmt.Println("Url:", uri)
  21. if method != "HEAD" {
  22. //校验签名
  23. nonce := this.Ctx.Input.Header("nonce")
  24. timestamp := this.Ctx.Input.Header("timestamp")
  25. appid := this.Ctx.Input.Header("appid")
  26. signature := this.Ctx.Input.Header("signature")
  27. if nonce == "" {
  28. errMsg := "随机字符串不能为空"
  29. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "", ErrMsg: errMsg}, false, false)
  30. this.StopRun()
  31. return
  32. }
  33. if timestamp == "" {
  34. errMsg := "时间戳不能为空"
  35. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "", ErrMsg: errMsg}, false, false)
  36. this.StopRun()
  37. return
  38. }
  39. if appid != utils.AppId {
  40. errMsg := "商家AppId错误,请核查"
  41. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "", ErrMsg: errMsg}, false, false)
  42. this.StopRun()
  43. return
  44. }
  45. checkSign := utils.GetSign(nonce, timestamp)
  46. if signature != checkSign {
  47. fmt.Printf("用户提交签名:%s;\n系统生成签名:%s\n", signature, checkSign)
  48. errMsg := "签名错误"
  49. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "", ErrMsg: errMsg}, false, false)
  50. this.StopRun()
  51. return
  52. }
  53. if method != "GET" && method != "POST" {
  54. errMsg := "无效的请求方式"
  55. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "", ErrMsg: errMsg}, false, false)
  56. this.StopRun()
  57. return
  58. }
  59. } else {
  60. this.JSON(xy.BaseResponse{ReturnCode: "E", Status: "E", Msg: "系统异常,请联系客服!", ErrMsg: "method:" + method}, false, false)
  61. this.StopRun()
  62. return
  63. }
  64. }
  65. func (c *BaseAuthXyController) ServeJSON(encoding ...bool) {
  66. var (
  67. hasIndent = false
  68. hasEncoding = false
  69. )
  70. if web.BConfig.RunMode == web.PROD {
  71. hasIndent = false
  72. }
  73. if len(encoding) > 0 && encoding[0] == true {
  74. hasEncoding = true
  75. }
  76. if c.Data["json"] == nil {
  77. //go utils.SendEmail("异常提醒:", "接口:"+"URI:"+c.Ctx.Input.URI()+";无返回值", utils.EmailSendToUsers)
  78. //body := "接口:" + "URI:" + c.Ctx.Input.URI() + ";无返回值"
  79. //go alarm_msg.SendAlarmMsg(body, 1)
  80. return
  81. }
  82. //baseRes := c.Data["json"].(*xy.BaseResponse)
  83. //if baseRes != nil {
  84. // body, _ := json.Marshal(baseRes)
  85. // var requestBody string
  86. // method := c.Ctx.Input.Method()
  87. // if method == "GET" {
  88. // requestBody = c.Ctx.Request.RequestURI
  89. // } else {
  90. // requestBody, _ = url.QueryUnescape(string(c.Ctx.Input.RequestBody))
  91. // }
  92. // //记录错误日志, 并清掉错误信息避免暴露给外部
  93. // if baseRes.ErrMsg != "" {
  94. // utils.FileLog.Info(baseRes.ErrMsg)
  95. // baseRes.ErrMsg = ""
  96. // }
  97. //}
  98. c.JSON(c.Data["json"], hasIndent, hasEncoding)
  99. }
  100. func (c *BaseAuthXyController) JSON(data interface{}, hasIndent bool, coding bool) error {
  101. c.Ctx.Output.Header("Content-Type", "application/json; charset=utf-8")
  102. var content []byte
  103. var err error
  104. if hasIndent {
  105. content, err = json.MarshalIndent(data, "", " ")
  106. } else {
  107. content, err = json.Marshal(data)
  108. }
  109. if err != nil {
  110. http.Error(c.Ctx.Output.Context.ResponseWriter, err.Error(), http.StatusInternalServerError)
  111. return err
  112. }
  113. ip := c.Ctx.Input.IP()
  114. requestBody, err := url.QueryUnescape(string(c.Ctx.Input.RequestBody))
  115. if err != nil {
  116. requestBody = string(c.Ctx.Input.RequestBody)
  117. }
  118. if requestBody == "" {
  119. requestBody = c.Ctx.Input.URI()
  120. }
  121. c.logUri(content, requestBody, ip)
  122. if coding {
  123. content = []byte(utils.StringsToJSON(string(content)))
  124. }
  125. return c.Ctx.Output.Body(content)
  126. }
  127. func (c *BaseAuthXyController) logUri(respContent []byte, requestBody, ip string) {
  128. var reqData interface{}
  129. err := json.Unmarshal([]byte(requestBody), &reqData)
  130. if err != nil {
  131. utils.ApiLog.Info("uri:%s, requestBody:%s, ip:%s", c.Ctx.Input.URI(), requestBody, ip)
  132. } else {
  133. utils.ApiLog.Info("uri:%s, requestBody:%s, ip:%s", c.Ctx.Input.URI(), requestBody, ip)
  134. }
  135. return
  136. }