user_login.go 30 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056
  1. package controllers
  2. import (
  3. "encoding/base64"
  4. "encoding/json"
  5. "eta/eta_mobile/models"
  6. "eta/eta_mobile/models/company"
  7. "eta/eta_mobile/models/system"
  8. "eta/eta_mobile/services"
  9. "eta/eta_mobile/utils"
  10. "fmt"
  11. "github.com/mojocn/base64Captcha"
  12. "image/color"
  13. "strings"
  14. "time"
  15. )
  16. // UserLoginController 登录-无需Token
  17. type UserLoginController struct {
  18. BaseCommonController
  19. }
  20. // UserLoginAuthController 登录-需Token
  21. type UserLoginAuthController struct {
  22. BaseAuthController
  23. }
  24. // GenerateCaptcha
  25. // @Title 生成图形验证码
  26. // @Description 生成图形验证码
  27. // @Success 200 Ret=200 获取成功
  28. // @router /get_captcha [get]
  29. func (this *UserLoginController) GenerateCaptcha() {
  30. br := new(models.BaseResponse).Init()
  31. defer func() {
  32. if br.ErrMsg == "" {
  33. br.IsSendEmail = false
  34. }
  35. this.Data["json"] = br
  36. this.ServeJSON()
  37. }()
  38. //driver := base64Captcha.DefaultDriverDigit
  39. // 自定义验证码样式
  40. var driver base64Captcha.Driver
  41. driverString := base64Captcha.DriverString{
  42. Height: 60, //高度
  43. Width: 120, //宽度
  44. NoiseCount: 0, //干扰数
  45. ShowLineOptions: 2 | 4, //展示个数
  46. Length: 4, //长度
  47. //Source: "1234567890qwertyuioplkjhgfdsazxcvbnm", //验证码随机字符串来源
  48. Source: "1234567890", //验证码随机字符串来源
  49. BgColor: &color.RGBA{ // 背景颜色
  50. R: 0,
  51. G: 0,
  52. B: 0,
  53. A: 0,
  54. },
  55. Fonts: []string{"wqy-microhei.ttc"}, // 字体
  56. }
  57. driver = driverString.ConvertFonts()
  58. // 生成验证码
  59. store := services.CaptchaRedis{}
  60. captcha := base64Captcha.NewCaptcha(driver, store)
  61. id, b64s, _, err := captcha.Generate()
  62. if err != nil {
  63. br.Msg = "生成失败"
  64. br.ErrMsg = "生成验证码失败, Err: " + err.Error()
  65. return
  66. }
  67. type CaptchaResult struct {
  68. Id string
  69. Base64Blob string
  70. }
  71. res := new(CaptchaResult)
  72. res.Id = id
  73. res.Base64Blob = b64s
  74. br.Ret = 200
  75. br.Success = true
  76. br.Msg = "获取成功"
  77. br.Data = res
  78. }
  79. // GetVerifyCode
  80. // @Title 获取短信/邮箱验证码
  81. // @Description 获取短信/邮箱验证码
  82. // @Param request body VerifyCodeReq true "type json string"
  83. // @Success 200 Ret=200 获取成功
  84. // @router /verify_code [post]
  85. func (this *UserLoginController) GetVerifyCode() {
  86. br := new(models.BaseResponse).Init()
  87. defer func() {
  88. if br.ErrMsg == "" {
  89. br.IsSendEmail = false
  90. }
  91. this.Data["json"] = br
  92. this.ServeJSON()
  93. }()
  94. type VerifyCodeReq struct {
  95. VerifyType int `description:"验证方式: 1-手机号; 2-邮箱"`
  96. CaptchaId string `description:"验证码ID"`
  97. CaptchaCode string `description:"图形验证码"`
  98. Mobile string `description:"手机号"`
  99. TelAreaCode string `description:"手机区号"`
  100. Email string `description:"邮箱"`
  101. Source int `description:"来源:1-登录;2-异常登录校验;3-忘记密码"`
  102. }
  103. var req VerifyCodeReq
  104. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  105. if err != nil {
  106. br.Msg = "参数解析异常!"
  107. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  108. return
  109. }
  110. if req.VerifyType != 1 && req.VerifyType != 2 {
  111. br.Msg = "验证方式有误"
  112. br.ErrMsg = "验证方式有误"
  113. return
  114. }
  115. if req.Source != 1 && req.Source != 2 && req.Source != 3 {
  116. br.Msg = "来源有误"
  117. br.ErrMsg = "来源有误"
  118. return
  119. }
  120. // 忘记密码图形校验在前一步, 这一步不再校验图形验证码
  121. if req.Source != 3 {
  122. if req.CaptchaId == "" || req.CaptchaCode == "" {
  123. br.Msg = "请输入图形验证码"
  124. return
  125. }
  126. }
  127. if req.VerifyType == 1 {
  128. if req.TelAreaCode == "" {
  129. br.Msg = "请选择区号"
  130. return
  131. }
  132. if req.Mobile == "" {
  133. br.Msg = "请输入手机号"
  134. return
  135. }
  136. if req.TelAreaCode == utils.TelAreaCodeHome && !utils.ValidateMobileFormatat(req.Mobile) {
  137. br.Msg = "您的手机号输入有误, 请检查"
  138. return
  139. }
  140. _, e := system.GetSysUserByMobile(req.Mobile)
  141. if e != nil {
  142. if e.Error() == utils.ErrNoRow() {
  143. br.Msg = "您的手机号未绑定账号, 请检查"
  144. return
  145. }
  146. br.Msg = "您的手机号未绑定账号, 请检查"
  147. br.ErrMsg = "手机号获取用户失败, Err:" + e.Error()
  148. return
  149. }
  150. }
  151. if req.VerifyType == 2 {
  152. if req.Email == "" {
  153. br.Msg = "请输入邮箱"
  154. return
  155. }
  156. if !utils.ValidateEmailFormatat(req.Email) {
  157. br.Msg = "您的邮箱输入有误, 请检查"
  158. return
  159. }
  160. _, e := system.GetSysUserByEmail(req.Email)
  161. if e != nil {
  162. if e.Error() == utils.ErrNoRow() {
  163. br.Msg = "您的邮箱未绑定账号, 请检查"
  164. return
  165. }
  166. br.Msg = "您的邮箱未绑定账号, 请检查"
  167. br.ErrMsg = "邮箱获取用户失败, Err:" + e.Error()
  168. return
  169. }
  170. }
  171. if req.Source != 3 {
  172. store := services.CaptchaRedis{}
  173. ok := store.Verify(req.CaptchaId, req.CaptchaCode, true)
  174. if !ok {
  175. br.Msg = "图形验证码错误, 请重新输入"
  176. return
  177. }
  178. }
  179. // 限制最多60s获取一次
  180. var lockKey string
  181. if req.VerifyType == 1 {
  182. lockKey = fmt.Sprint(utils.CaptchaCachePrefix, req.Mobile)
  183. }
  184. if req.VerifyType == 2 {
  185. lockKey = fmt.Sprint(utils.CaptchaCachePrefix, req.Email)
  186. }
  187. locked := utils.Rc.SetNX(lockKey, 1, time.Minute)
  188. if !locked {
  189. br.Msg = "请勿频繁发送"
  190. return
  191. }
  192. // 发送验证码
  193. sendRes := false
  194. if req.VerifyType == 1 {
  195. r, e := services.SendAdminMobileVerifyCode(req.Source, req.Mobile, req.TelAreaCode)
  196. if e != nil {
  197. br.Msg = "发送失败"
  198. br.ErrMsg = "发送短信验证码失败, Err: " + e.Error()
  199. return
  200. }
  201. sendRes = r
  202. }
  203. if req.VerifyType == 2 {
  204. r, e := services.SendAdminEmailVerifyCode(req.Source, req.Email)
  205. if e != nil {
  206. br.Msg = "发送失败"
  207. br.ErrMsg = "发送邮箱验证码失败, Err: " + e.Error()
  208. return
  209. }
  210. sendRes = r
  211. }
  212. if !sendRes {
  213. br.Msg = "发送失败"
  214. br.ErrMsg = "发送短信验证码失败"
  215. return
  216. }
  217. br.Ret = 200
  218. br.Success = true
  219. br.Msg = "发送成功"
  220. }
  221. // Login
  222. // @Title 用户登录
  223. // @Description 用户登录
  224. // @Param request body UserLoginReq true "type json string"
  225. // @Success 200 {object} models.LoginResp
  226. // @router /login [post]
  227. func (this *UserLoginController) Login() {
  228. br := new(models.BaseResponse).Init()
  229. defer func() {
  230. if br.ErrMsg == "" {
  231. br.IsSendEmail = false
  232. }
  233. this.Data["json"] = br
  234. this.ServeJSON()
  235. }()
  236. // 入参
  237. type UserLoginReq struct {
  238. LoginType int `description:"登录方式: 1-账号; 2-手机号; 3-邮箱"`
  239. Username string `description:"账号"`
  240. Password string `description:"密码"`
  241. Mobile string `description:"手机号"`
  242. Email string `description:"邮箱"`
  243. VerifyCode string `description:"验证码"`
  244. ReqTime string `description:"登录时间戳"`
  245. TelAreaCode string `description:"区号"`
  246. }
  247. var req UserLoginReq
  248. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  249. if err != nil {
  250. br.Msg = "参数解析异常!"
  251. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  252. return
  253. }
  254. req.Username = strings.TrimSpace(req.Username)
  255. req.Mobile = strings.TrimSpace(req.Mobile)
  256. req.Email = strings.TrimSpace(req.Email)
  257. req.VerifyCode = strings.TrimSpace(req.VerifyCode)
  258. if req.LoginType != 1 && req.LoginType != 2 && req.LoginType != 3 {
  259. br.Msg = "登录方式有误"
  260. br.ErrMsg = fmt.Sprintf("登录方式有误, Type: %d", req.LoginType)
  261. return
  262. }
  263. sysUser := new(system.Admin)
  264. // 账号密码登录
  265. if req.LoginType == 1 {
  266. if req.Username == "" {
  267. br.Msg = "请输入账号"
  268. return
  269. }
  270. if req.Password == "" {
  271. br.Msg = "请输入密码"
  272. return
  273. }
  274. // 判断账号是否为异常登录, 算作异常的话就需要换另外的方式去登录了
  275. abnormalKey := fmt.Sprint(utils.CACHE_ABNORMAL_LOGIN, req.Username)
  276. isAbnormal, _ := utils.Rc.RedisString(abnormalKey)
  277. if isAbnormal != "" {
  278. br.Ret = models.BaseRespCodeAbnormalLogin
  279. br.Msg = "账号异常, 请进行手机号/邮箱校验"
  280. return
  281. }
  282. // 查询账号信息
  283. errPassKey := fmt.Sprint(utils.CACHE_LOGIN_ERR_PASS, req.Username)
  284. accountUser, e := system.GetSysUserByAdminName(req.Username)
  285. if e != nil {
  286. br.Ret = models.BaseRespCodeLoginErr
  287. br.Msg = "登录失败, 账号或密码错误"
  288. // 账号查询异常均进行标记, 避免一直尝试进行登录
  289. if !utils.Rc.IsExist(errPassKey) {
  290. _ = utils.Rc.Put(errPassKey, 1, utils.GetTodayLastSecond())
  291. return
  292. }
  293. errNum, _ := utils.Rc.RedisInt(errPassKey)
  294. errNum += 1
  295. if errNum < 6 {
  296. _ = utils.Rc.Put(errPassKey, errNum, utils.GetTodayLastSecond())
  297. return
  298. }
  299. // 标记异常登录, 重置计数
  300. br.Ret = models.BaseRespCodeAbnormalLogin
  301. br.Msg = "账号异常, 请进行手机号/邮箱校验"
  302. _ = utils.Rc.Put(abnormalKey, "true", utils.GetTodayLastSecond())
  303. _ = utils.Rc.Delete(errPassKey)
  304. return
  305. }
  306. // 系统用户-账号密码校验
  307. if accountUser.IsLdap == 0 {
  308. dbPass := utils.MD5(fmt.Sprintf("%s%s%s", accountUser.Password, utils.UserLoginSalt, req.ReqTime))
  309. if req.Password != dbPass {
  310. br.Ret = models.BaseRespCodeLoginErr
  311. br.Msg = "登录失败, 账号或密码错误"
  312. // 错误密码计数, 超过6次标记异常
  313. if !utils.Rc.IsExist(errPassKey) {
  314. _ = utils.Rc.Put(errPassKey, 1, utils.GetTodayLastSecond())
  315. return
  316. }
  317. errNum, _ := utils.Rc.RedisInt(errPassKey)
  318. errNum += 1
  319. if errNum < 6 {
  320. _ = utils.Rc.Put(errPassKey, errNum, utils.GetTodayLastSecond())
  321. return
  322. }
  323. // 标记异常登录, 重置计数
  324. br.Ret = models.BaseRespCodeAbnormalLogin
  325. br.Msg = "账号异常, 请进行手机号/邮箱校验"
  326. _ = utils.Rc.Put(abnormalKey, "true", utils.GetTodayLastSecond())
  327. _ = utils.Rc.Delete(errPassKey)
  328. return
  329. }
  330. if accountUser.Enabled == 0 {
  331. br.Msg = "您的账号已被禁用, 如需登录, 请联系管理员"
  332. br.ErrMsg = fmt.Sprintf("账号已被禁用, 登录账号: %s, 账户名称: %s", accountUser.AdminName, accountUser.RealName)
  333. return
  334. }
  335. // 异常登录-是否登录间隔大于60天
  336. if isAbnormal == "" {
  337. abnormalTime := time.Now().AddDate(0, 0, -60)
  338. lastLogin, _ := time.ParseInLocation(utils.FormatDateTime, accountUser.LastLoginTime, time.Local)
  339. if !lastLogin.IsZero() && lastLogin.Before(abnormalTime) {
  340. br.Msg = "请进行异常登录校验"
  341. br.Ret = models.BaseRespCodeAbnormalLogin
  342. // 标记异常登录
  343. _ = utils.Rc.Put(abnormalKey, "true", utils.GetTodayLastSecond())
  344. return
  345. }
  346. }
  347. }
  348. // 如果是域账号, 那么取出原始密码走AD域校验
  349. if accountUser.IsLdap == 1 {
  350. passDecode, e := base64.StdEncoding.DecodeString(req.Password)
  351. if e != nil {
  352. br.Ret = models.BaseRespCodeLoginErr
  353. br.Msg = "登录失败, 账号或密码错误"
  354. br.ErrMsg = "Pass Decode err: " + e.Error()
  355. return
  356. }
  357. originPass := strings.Replace(string(passDecode), utils.UserLoginSalt, "", 1)
  358. pass, e := services.LdapUserCheck(req.Username, originPass)
  359. if e != nil {
  360. br.Ret = models.BaseRespCodeLoginErr
  361. br.Msg = "登录失败, 账号或密码错误"
  362. br.ErrMsg = "LdapLogin err: " + e.Error()
  363. return
  364. }
  365. if !pass {
  366. br.Ret = models.BaseRespCodeLoginErr
  367. br.Msg = "登录失败, 账号或密码错误"
  368. return
  369. }
  370. }
  371. sysUser = accountUser
  372. }
  373. // 手机号
  374. if req.LoginType == 2 {
  375. if req.Mobile == "" {
  376. br.Msg = "请输入手机号"
  377. return
  378. }
  379. // 大陆校验区号
  380. if req.TelAreaCode == utils.TelAreaCodeHome && !utils.ValidateMobileFormatat(req.Mobile) {
  381. br.Msg = "您的手机号输入有误, 请检查"
  382. return
  383. }
  384. if req.VerifyCode == "" {
  385. br.Msg = "请输入验证码"
  386. return
  387. }
  388. expiredTime := time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute).Format(utils.FormatDateTime)
  389. recordCond := ` AND source = ? AND mobile = ? AND code = ? AND expired_time <= ?`
  390. recordPars := make([]interface{}, 0)
  391. recordPars = append(recordPars, system.AdminVerifyCodeRecordSourceLogin, req.Mobile, req.VerifyCode, expiredTime)
  392. recordOb := new(system.AdminVerifyCodeRecord)
  393. _, e := recordOb.GetItemByCondition(recordCond, recordPars)
  394. if e != nil {
  395. if e.Error() == utils.ErrNoRow() {
  396. br.Msg = "验证码错误, 请重新输入"
  397. return
  398. }
  399. br.Msg = "验证码错误, 请重新输入"
  400. br.ErrMsg = "获取手机号登陆验证码失败, Err: " + e.Error()
  401. return
  402. }
  403. mobileUser, e := system.GetSysUserByMobile(req.Mobile)
  404. if e != nil {
  405. if e.Error() == utils.ErrNoRow() {
  406. br.Msg = "您的手机号未绑定账号, 请检查"
  407. return
  408. }
  409. br.Msg = "您的手机号未绑定账号, 请检查"
  410. br.ErrMsg = "手机号获取用户失败, Err:" + e.Error()
  411. return
  412. }
  413. if mobileUser.Enabled == 0 {
  414. br.Msg = "您的账号已被禁用, 如需登录, 请联系管理员"
  415. br.ErrMsg = fmt.Sprintf("账号已被禁用, 登录手机号: %s", req.Mobile)
  416. return
  417. }
  418. sysUser = mobileUser
  419. }
  420. // 邮箱登录
  421. if req.LoginType == 3 {
  422. if req.Email == "" {
  423. br.Msg = "请输入邮箱"
  424. return
  425. }
  426. if !utils.ValidateEmailFormatat(req.Email) {
  427. br.Msg = "您的邮箱输入有误, 请检查"
  428. return
  429. }
  430. if req.VerifyCode == "" {
  431. br.Msg = "请输入验证码"
  432. return
  433. }
  434. expiredTime := time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute).Format(utils.FormatDateTime)
  435. recordCond := ` AND source = ? AND email = ? AND code = ? AND expired_time <= ?`
  436. recordPars := make([]interface{}, 0)
  437. recordPars = append(recordPars, system.AdminVerifyCodeRecordSourceLogin, req.Email, req.VerifyCode, expiredTime)
  438. recordOb := new(system.AdminVerifyCodeRecord)
  439. _, e := recordOb.GetItemByCondition(recordCond, recordPars)
  440. if e != nil {
  441. if e.Error() == utils.ErrNoRow() {
  442. br.Msg = "验证码错误, 请重新输入"
  443. return
  444. }
  445. br.Msg = "验证码错误, 请重新输入"
  446. br.ErrMsg = "获取手机号登陆验证码失败, Err: " + e.Error()
  447. return
  448. }
  449. emailUser, e := system.GetSysUserByEmail(req.Email)
  450. if e != nil {
  451. if e.Error() == utils.ErrNoRow() {
  452. br.Msg = "您的邮箱未绑定账号, 请检查"
  453. return
  454. }
  455. br.Msg = "您的邮箱未绑定账号, 请检查"
  456. br.ErrMsg = "邮箱获取用户失败, Err:" + e.Error()
  457. return
  458. }
  459. if emailUser.Enabled == 0 {
  460. br.Msg = "您的账号已被禁用, 如需登录, 请联系管理员"
  461. br.ErrMsg = fmt.Sprintf("账号已被禁用, 登录邮箱: %s", req.Email)
  462. return
  463. }
  464. sysUser = emailUser
  465. }
  466. // 登录成功(无论哪种方式登录), 清除异常标记
  467. abnormalCache := fmt.Sprint(utils.CACHE_ABNORMAL_LOGIN, sysUser.AdminName)
  468. errPassCache := fmt.Sprint(utils.CACHE_LOGIN_ERR_PASS, sysUser.AdminName)
  469. _ = utils.Rc.Delete(abnormalCache)
  470. _ = utils.Rc.Delete(errPassCache)
  471. account := utils.MD5(sysUser.AdminName)
  472. token := utils.GenToken(account)
  473. sysSession := new(system.SysSession)
  474. sysSession.UserName = sysUser.AdminName
  475. sysSession.SysUserId = sysUser.AdminId
  476. sysSession.ExpiredTime = time.Now().AddDate(0, 0, 90)
  477. sysSession.IsRemember = 0 // 均需要做过期校验
  478. sysSession.CreatedTime = time.Now()
  479. sysSession.LastUpdatedTime = time.Now()
  480. sysSession.AccessToken = token
  481. if e := system.AddSysSession(sysSession); e != nil {
  482. br.Msg = "登录失败"
  483. br.ErrMsg = "新增session信息失败, Err:" + e.Error()
  484. return
  485. }
  486. // 修改最后登录时间
  487. {
  488. sysUser.LastLoginTime = time.Now().Format(utils.FormatDateTime)
  489. sysUser.LastUpdatedTime = time.Now().Format(utils.FormatDateTime)
  490. _ = sysUser.Update([]string{"LastLoginTime", "LastUpdatedTime"})
  491. }
  492. resp := new(system.LoginResp)
  493. resp.Authorization = token
  494. resp.Authorization = "authorization=" + token + "$account=" + account
  495. resp.RealName = sysUser.RealName
  496. resp.AdminName = sysUser.AdminName
  497. resp.RoleName = sysUser.RoleName
  498. resp.SysRoleTypeCode = sysUser.RoleTypeCode //系统角色编码
  499. resp.RoleTypeCode = sysUser.RoleTypeCode
  500. if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_GROUP {
  501. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
  502. }
  503. if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_TEAM {
  504. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
  505. }
  506. if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_FICC_DEPARTMENT {
  507. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
  508. }
  509. if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_RAI_GROUP {
  510. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_RAI_SELLER
  511. }
  512. if sysUser.RoleTypeCode == utils.ROLE_TYPE_CODE_RAI_DEPARTMENT {
  513. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_RAI_SELLER
  514. }
  515. if sysUser.RoleName == utils.ROLE_NAME_FICC_DIRECTOR {
  516. resp.RoleTypeCode = utils.ROLE_TYPE_CODE_FICC_SELLER
  517. }
  518. resp.AdminId = sysUser.AdminId
  519. var productName string
  520. productId := services.GetProductId(sysUser.RoleTypeCode)
  521. if productId == 1 {
  522. productName = utils.COMPANY_PRODUCT_FICC_NAME
  523. } else if productId == 2 {
  524. productName = utils.COMPANY_PRODUCT_RAI_NAME
  525. } else {
  526. productName = "admin"
  527. }
  528. resp.ProductName = productName
  529. resp.Authority = sysUser.Authority
  530. // 设置redis缓存
  531. {
  532. // 获取不可信的登录态,并将该登录态重置掉,不允许多次登录
  533. noTrustLoginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN_NO_TRUST, sysUser.AdminId)
  534. noTrustLoginId, _ := utils.Rc.RedisString(noTrustLoginKey)
  535. if noTrustLoginId != `` { // 如果存在不可信设备,那么将其下架
  536. oldNoTrustLoginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN, noTrustLoginId)
  537. _ = utils.Rc.Put(oldNoTrustLoginKey, "0", utils.LoginCacheTime*time.Minute)
  538. }
  539. // 如果当前是不可信设备,那么将其加入到不可信名单
  540. loginKey := fmt.Sprint(utils.CACHE_ACCESS_TOKEN_LOGIN, sysSession.Id)
  541. _ = utils.Rc.Put(loginKey, "1", utils.LoginCacheTime*time.Minute)
  542. _ = utils.Rc.Put(noTrustLoginKey, sysSession.Id, utils.LoginCacheTime*time.Minute)
  543. }
  544. // 新增登录记录
  545. go func() {
  546. record := new(system.SysUserLoginRecord)
  547. record.Uid = sysUser.AdminId
  548. record.UserName = req.Username
  549. record.Ip = this.Ctx.Input.IP()
  550. record.Stage = "login"
  551. record.CreateTime = time.Now()
  552. _ = system.AddSysUserLoginRecord(record)
  553. }()
  554. br.Data = resp
  555. br.Ret = 200
  556. br.Success = true
  557. br.Msg = "登录成功"
  558. }
  559. // ForgetAccountGet
  560. // @Title 忘记密码-账号校验
  561. // @Description 忘记密码-账号校验
  562. // @Param request body ForgetAccountGetReq true "type json string"
  563. // @Success 200 Ret=200 获取成功
  564. // @router /forget/account_get [post]
  565. func (this *UserLoginController) ForgetAccountGet() {
  566. br := new(models.BaseResponse).Init()
  567. defer func() {
  568. if br.ErrMsg == "" {
  569. br.IsSendEmail = false
  570. }
  571. this.Data["json"] = br
  572. this.ServeJSON()
  573. }()
  574. type ForgetAccountGetReq struct {
  575. CaptchaId string `description:"验证码ID"`
  576. CaptchaCode string `description:"图形验证码"`
  577. UserName string `description:"用户名"`
  578. }
  579. var req ForgetAccountGetReq
  580. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  581. if err != nil {
  582. br.Msg = "参数解析异常!"
  583. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  584. return
  585. }
  586. req.UserName = strings.TrimSpace(req.UserName)
  587. if req.UserName == "" {
  588. br.Msg = "请输入账号"
  589. return
  590. }
  591. if req.CaptchaId == "" || req.CaptchaCode == "" {
  592. br.Msg = "请输入图形验证码"
  593. return
  594. }
  595. store := services.CaptchaRedis{}
  596. ok := store.Verify(req.CaptchaId, req.CaptchaCode, true)
  597. if !ok {
  598. br.Msg = "验证码错误, 请重新输入"
  599. return
  600. }
  601. sysUser, e := system.GetSysUserByAdminName(req.UserName)
  602. if e != nil {
  603. if e.Error() == utils.ErrNoRow() {
  604. br.Msg = "用户不存在, 请检查"
  605. return
  606. }
  607. br.Msg = "账号错误, 请重新输入"
  608. br.ErrMsg = "用户名获取用户失败, Err: " + e.Error()
  609. return
  610. }
  611. type ForgetAccountCheckResp struct {
  612. Mobile string `description:"手机号"`
  613. Email string `description:"邮箱"`
  614. TelAreaCode string `description:"手机区号"`
  615. }
  616. resp := ForgetAccountCheckResp{
  617. Mobile: sysUser.Mobile,
  618. Email: sysUser.Email,
  619. TelAreaCode: sysUser.TelAreaCode,
  620. }
  621. br.Data = resp
  622. br.Ret = 200
  623. br.Success = true
  624. br.Msg = "获取成功"
  625. }
  626. // ForgetCodeVerify
  627. // @Title 忘记密码-验证码校验
  628. // @Description 忘记密码-验证码校验
  629. // @Param request body ForgetCodeVerifyReq true "type json string"
  630. // @Success 200 Ret=200 获取成功
  631. // @router /forget/code_verify [post]
  632. func (this *UserLoginController) ForgetCodeVerify() {
  633. br := new(models.BaseResponse).Init()
  634. defer func() {
  635. if br.ErrMsg == "" {
  636. br.IsSendEmail = false
  637. }
  638. this.Data["json"] = br
  639. this.ServeJSON()
  640. }()
  641. type ForgetCodeVerifyReq struct {
  642. FindType int `description:"密码找回方式: 1-手机号; 2-邮箱"`
  643. VerifyCode string `description:"验证码"`
  644. UserName string `description:"用户名"`
  645. Mobile string `description:"手机号"`
  646. Email string `description:"邮箱"`
  647. TelAreaCode string `description:"区号"`
  648. }
  649. var req ForgetCodeVerifyReq
  650. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  651. if err != nil {
  652. br.Msg = "参数解析异常!"
  653. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  654. return
  655. }
  656. req.UserName = strings.TrimSpace(req.UserName)
  657. if req.UserName == "" {
  658. br.Msg = "请输入账号"
  659. return
  660. }
  661. if req.VerifyCode == "" {
  662. br.Msg = "请输入验证码"
  663. return
  664. }
  665. // 手机号找回
  666. var verifyRes bool
  667. if req.FindType == 1 {
  668. req.Mobile = strings.TrimSpace(req.Mobile)
  669. if req.Mobile == "" {
  670. br.Msg = "请输入手机号"
  671. return
  672. }
  673. if req.TelAreaCode == utils.TelAreaCodeHome && !utils.ValidateMobileFormatat(req.Mobile) {
  674. br.Msg = "您的手机号输入有误, 请检查"
  675. return
  676. }
  677. expiredTime := time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute).Format(utils.FormatDateTime)
  678. recordCond := ` AND source = ? AND mobile = ? AND code = ? AND expired_time <= ?`
  679. recordPars := make([]interface{}, 0)
  680. recordPars = append(recordPars, system.AdminVerifyCodeRecordSourceForget, req.Mobile, req.VerifyCode, expiredTime)
  681. recordOb := new(system.AdminVerifyCodeRecord)
  682. _, e := recordOb.GetItemByCondition(recordCond, recordPars)
  683. if e != nil {
  684. if e.Error() == utils.ErrNoRow() {
  685. br.Msg = "验证码错误, 请重新输入"
  686. return
  687. }
  688. br.Msg = "验证码错误, 请重新输入"
  689. br.ErrMsg = "获取手机号登陆验证码失败, Err: " + e.Error()
  690. return
  691. }
  692. verifyRes = true
  693. }
  694. // 邮箱找回
  695. if req.FindType == 2 {
  696. req.Email = strings.TrimSpace(req.Email)
  697. if req.Email == "" {
  698. br.Msg = "请输入邮箱"
  699. return
  700. }
  701. if !utils.ValidateEmailFormatat(req.Email) {
  702. br.Msg = "您的邮箱输入有误, 请检查"
  703. return
  704. }
  705. expiredTime := time.Now().Add(utils.VerifyCodeExpireMinute * time.Minute).Format(utils.FormatDateTime)
  706. recordCond := ` AND source = ? AND email = ? AND code = ? AND expired_time <= ?`
  707. recordPars := make([]interface{}, 0)
  708. recordPars = append(recordPars, system.AdminVerifyCodeRecordSourceForget, req.Email, req.VerifyCode, expiredTime)
  709. recordOb := new(system.AdminVerifyCodeRecord)
  710. _, e := recordOb.GetItemByCondition(recordCond, recordPars)
  711. if e != nil {
  712. if e.Error() == utils.ErrNoRow() {
  713. br.Msg = "验证码错误, 请重新输入"
  714. return
  715. }
  716. br.Msg = "验证码错误, 请重新输入"
  717. br.ErrMsg = "获取手机号登陆验证码失败, Err: " + e.Error()
  718. return
  719. }
  720. verifyRes = true
  721. }
  722. if verifyRes {
  723. successKey := fmt.Sprint(utils.CACHE_FIND_PASS_VERIFY, req.UserName)
  724. _ = utils.Rc.Put(successKey, "true", utils.GetTodayLastSecond())
  725. }
  726. br.Data = verifyRes
  727. br.Ret = 200
  728. br.Success = true
  729. br.Msg = "操作成功"
  730. }
  731. // ForgetResetPass
  732. // @Title 忘记密码-重置密码
  733. // @Description 忘记密码-重置密码
  734. // @Param request body ForgetResetPassReq true "type json string"
  735. // @Success 200 Ret=200 获取成功
  736. // @router /forget/reset_pass [post]
  737. func (this *UserLoginController) ForgetResetPass() {
  738. br := new(models.BaseResponse).Init()
  739. defer func() {
  740. if br.ErrMsg == "" {
  741. br.IsSendEmail = false
  742. }
  743. this.Data["json"] = br
  744. this.ServeJSON()
  745. }()
  746. type ForgetResetPassReq struct {
  747. UserName string `description:"用户名"`
  748. Password string `description:"密码"`
  749. RePassword string `description:"重复密码"`
  750. }
  751. var req ForgetResetPassReq
  752. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  753. if err != nil {
  754. br.Msg = "参数解析异常!"
  755. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  756. return
  757. }
  758. req.UserName = strings.TrimSpace(req.UserName)
  759. if req.UserName == "" {
  760. br.Msg = "请输入账号"
  761. return
  762. }
  763. req.Password = strings.TrimSpace(req.Password)
  764. if req.Password == "" {
  765. br.Msg = "请输入新密码"
  766. return
  767. }
  768. req.RePassword = strings.TrimSpace(req.RePassword)
  769. if req.RePassword == "" {
  770. br.Msg = "请确认新密码"
  771. return
  772. }
  773. if req.Password != req.RePassword {
  774. br.Msg = "两次密码输入不一致, 请检查"
  775. return
  776. }
  777. // 接上一步-验证码校验成功后才允许修改
  778. successKey := fmt.Sprint(utils.CACHE_FIND_PASS_VERIFY, req.UserName)
  779. verifyOk, _ := utils.Rc.RedisString(successKey)
  780. if verifyOk != "true" {
  781. br.Msg = "验证码校验失效, 请重新验证"
  782. br.ErrMsg = "重置密码异常, 验证码校验已失效"
  783. return
  784. }
  785. sysUser, e := system.GetSysAdminByName(req.UserName)
  786. if e != nil {
  787. if e.Error() == utils.ErrNoRow() {
  788. br.Msg = "用户不存在, 请检查"
  789. return
  790. }
  791. br.Msg = "操作失败"
  792. br.ErrMsg = "密码找回获取用户失败, Err:" + e.Error()
  793. return
  794. }
  795. b, e := base64.StdEncoding.DecodeString(req.Password)
  796. if e != nil {
  797. br.Msg = "操作失败"
  798. br.ErrMsg = "解析密码失败, Err:" + e.Error()
  799. return
  800. }
  801. pwd := string(b)
  802. pwd = utils.MD5(pwd)
  803. sysUser.Password = pwd
  804. sysUser.LastUpdatedPasswordTime = time.Now().Format(utils.FormatDateTime)
  805. // 重置密码后更新一下登录时间, 不然账号密码登录如果超过60天还会被异常校验再校验一次, 影响体验
  806. sysUser.LastLoginTime = time.Now().Format(utils.FormatDateTime)
  807. sysUser.LastUpdatedTime = time.Now().Format(utils.FormatDateTime)
  808. if e = sysUser.Update([]string{"Password", "LastUpdatedPasswordTime", "LastLoginTime", "LastUpdatedTime"}); e != nil {
  809. br.Msg = "操作失败"
  810. br.ErrMsg = "更新密码失败, Err: " + e.Error()
  811. return
  812. }
  813. // 如果有异常标记也清除掉
  814. abnormalKey := fmt.Sprint(utils.CACHE_ABNORMAL_LOGIN, req.UserName)
  815. _ = utils.Rc.Delete(abnormalKey)
  816. _ = utils.Rc.Delete(successKey)
  817. br.Data = true
  818. br.Ret = 200
  819. br.Success = true
  820. br.Msg = "操作成功"
  821. }
  822. // AreaCodeList
  823. // @Title 手机号区号列表
  824. // @Description 手机号区号列表
  825. // @Success 200 Ret=200 获取成功
  826. // @router /area_code/list [get]
  827. func (this *UserLoginController) AreaCodeList() {
  828. br := new(models.BaseResponse).Init()
  829. defer func() {
  830. if br.ErrMsg == "" {
  831. br.IsSendEmail = false
  832. }
  833. this.Data["json"] = br
  834. this.ServeJSON()
  835. }()
  836. type AreaCodeListResp struct {
  837. Name string `description:"地区"`
  838. Value string `description:"区号"`
  839. }
  840. resp := make([]AreaCodeListResp, 0)
  841. confAuth, e := company.GetConfigDetailByCode(company.ConfAreaCodeListKey)
  842. if e != nil {
  843. br.Msg = "获取失败"
  844. br.ErrMsg = "获取手机号区号配置失败, Err: " + e.Error()
  845. return
  846. }
  847. if confAuth.ConfigValue == "" {
  848. br.Msg = "获取失败"
  849. br.ErrMsg = "手机号区号配置为空"
  850. return
  851. }
  852. if e := json.Unmarshal([]byte(confAuth.ConfigValue), &resp); e != nil {
  853. br.Msg = "获取失败"
  854. br.ErrMsg = "手机号区号配置有误"
  855. return
  856. }
  857. br.Data = resp
  858. br.Ret = 200
  859. br.Success = true
  860. br.Msg = "获取成功"
  861. }
  862. // CheckUserLdap
  863. // @Title 校验用户是否为域用户
  864. // @Description 校验用户是否为域用户
  865. // @Param request body CheckUserLdapReq true "type json string"
  866. // @Success 200 Ret=200 获取成功
  867. // @router /ldap/user_check [post]
  868. func (this *UserLoginController) CheckUserLdap() {
  869. br := new(models.BaseResponse).Init()
  870. defer func() {
  871. if br.ErrMsg == "" {
  872. br.IsSendEmail = false
  873. }
  874. this.Data["json"] = br
  875. this.ServeJSON()
  876. }()
  877. type CheckUserLdapReq struct {
  878. UserName string `description:"用户名"`
  879. }
  880. var req CheckUserLdapReq
  881. err := json.Unmarshal(this.Ctx.Input.RequestBody, &req)
  882. if err != nil {
  883. br.Msg = "参数解析异常!"
  884. br.ErrMsg = "参数解析失败,Err:" + err.Error()
  885. return
  886. }
  887. req.UserName = strings.TrimSpace(req.UserName)
  888. if req.UserName == "" {
  889. br.Msg = "请输入账号"
  890. return
  891. }
  892. isLdap := false
  893. accountUser, e := system.GetSysUserByAdminName(req.UserName)
  894. if e != nil {
  895. // 无该用户视作普通用户
  896. if e.Error() == utils.ErrNoRow() {
  897. br.Data = false
  898. br.Success = true
  899. br.Msg = "操作成功"
  900. return
  901. }
  902. br.Msg = "操作失败"
  903. br.ErrMsg = "获取用户信息失败, Err: " + e.Error()
  904. return
  905. }
  906. if accountUser.IsLdap == 1 {
  907. isLdap = true
  908. }
  909. br.Data = isLdap
  910. br.Ret = 200
  911. br.Success = true
  912. br.Msg = "操作成功"
  913. }
  914. // BaseInfo
  915. // @Title 基础信息
  916. // @Description 基础信息
  917. // @Success 200 Ret=200 获取成功
  918. // @router /base_info [get]
  919. func (this *UserLoginController) BaseInfo() {
  920. br := new(models.BaseResponse).Init()
  921. defer func() {
  922. if br.ErrMsg == "" {
  923. br.IsSendEmail = false
  924. }
  925. this.Data["json"] = br
  926. this.ServeJSON()
  927. }()
  928. icp, e := models.GetBusinessConfByKey("ICPLicense")
  929. if e != nil {
  930. br.Msg = "获取失败"
  931. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  932. return
  933. }
  934. title, e := models.GetBusinessConfByKey("ETATitle")
  935. if e != nil {
  936. br.Msg = "获取失败"
  937. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  938. return
  939. }
  940. tabNameMobile, e := models.GetBusinessConfByKey("TabNameMobile")
  941. if e != nil {
  942. br.Msg = "获取失败"
  943. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  944. return
  945. }
  946. logoCn, e := models.GetBusinessConfByKey("LogoCN")
  947. if e != nil {
  948. br.Msg = "获取失败"
  949. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  950. return
  951. }
  952. logoEn, e := models.GetBusinessConfByKey("LogoEN")
  953. if e != nil {
  954. br.Msg = "获取失败"
  955. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  956. return
  957. }
  958. logoMobile, e := models.GetBusinessConfByKey("LogoMobile")
  959. if e != nil {
  960. br.Msg = "获取失败"
  961. br.ErrMsg = "获取商家配置失败, Err: " + e.Error()
  962. return
  963. }
  964. type BaseInfoResp struct {
  965. Icp *models.BusinessConf `description:"Icp信息"`
  966. ETATitle *models.BusinessConf `description:"eta系统名称"`
  967. TabNameMobile *models.BusinessConf `description:"tab页名称"`
  968. LogoCn *models.BusinessConf `description:"中文logo"`
  969. LogoEn *models.BusinessConf `description:"英文logo"`
  970. LogoMobile *models.BusinessConf `description:"移动端logo"`
  971. }
  972. resp := BaseInfoResp{
  973. Icp: icp,
  974. ETATitle: title,
  975. TabNameMobile: tabNameMobile,
  976. LogoCn: logoCn,
  977. LogoEn: logoEn,
  978. LogoMobile: logoMobile,
  979. }
  980. br.Data = resp
  981. br.Ret = 200
  982. br.Success = true
  983. br.Msg = "获取成功"
  984. }