usky-oa-v6.0
/
jnpf-common-v6x


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286
							package jnpf.granter;

import cn.dev33.satoken.context.SaHolder;
import cn.dev33.satoken.stp.StpUtil;
import cn.dev33.satoken.stp.parameter.SaLoginParameter;
import jnpf.base.ActionResult;
import jnpf.base.UserInfo;
import jnpf.config.ConfigValueUtil;
import jnpf.constant.MsgCode;
import jnpf.consts.AuthConsts;
import jnpf.consts.DeviceType;
import jnpf.consts.LoginTicketStatus;
import jnpf.exception.LoginException;
import jnpf.exception.TenantDatabaseException;
import jnpf.model.BaseSystemInfo;
import jnpf.model.LoginTicketModel;
import jnpf.model.logout.LogoutResultModel;
import jnpf.model.tenant.TenantVO;
import jnpf.service.LoginService;
import jnpf.util.RedisUtil;
import jnpf.util.TenantProvider;
import jnpf.util.TicketUtil;
import jnpf.util.UserProvider;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.core.Ordered;
import org.springframework.util.AntPathMatcher;
import org.springframework.util.PathMatcher;

import java.util.HashMap;
import java.util.Map;

import static jnpf.consts.AuthConsts.DEF_TENANT_DB;
import static jnpf.consts.AuthConsts.DEF_TENANT_ID;


/**
 *
 * @author JNPF开发平台组
 * @copyright 引迈信息技术有限公司
 */
public abstract class AbstractTokenGranter implements TokenGranter, Ordered {


    @Autowired(required = false)
    protected LoginService loginService;
    @Autowired
    protected ConfigValueUtil configValueUtil;
    @Autowired
    protected RedisUtil redisUtil;

    protected static PathMatcher pathMatcher = new AntPathMatcher();

    private String authenticationUrl;


    public AbstractTokenGranter(String authenticationUrl){
        this.authenticationUrl = authenticationUrl;
    }


    /**
     * 最终登录用户
     * @param userInfo 包含账户名, 登录方式
     * @return
     */
    protected String loginAccount(UserInfo userInfo, BaseSystemInfo baseSystemInfo) throws LoginException {
        try{
            //获取用户实现类接口名称
            userInfo.setUserDetailKey(getUserDetailKey());
            //获取登录信息
            userInfo = getUserInfo(userInfo, baseSystemInfo);
            //预登陆
            preLogin(userInfo, baseSystemInfo);
            //登录
            login(userInfo, baseSystemInfo);
        }catch(Exception e){
            try {
                loginFailure(userInfo, baseSystemInfo, e);
            }catch (Exception e1){
                throw e1;
            }
            throw e;
        }
        loginSuccess(userInfo, baseSystemInfo);
        //返回token信息
        return userInfo.getToken();
    }

    /**
     * 切换多租户
     * @param userInfo
     * @return userAccount, tenantId, tenandDb
     * @throws LoginException
     */
    protected UserInfo switchTenant(UserInfo userInfo) throws LoginException {
        if (configValueUtil.isMultiTenancy()) {
            userInfo = loginService.getTenantAccount(userInfo);
            return userInfo;

        }
        userInfo.setTenantId(DEF_TENANT_ID);
        userInfo.setTenantDbConnectionString(DEF_TENANT_DB);
        userInfo.setTenantDbType(TenantVO.NONE);
        return userInfo;
    }

    /**
     * 获取系统配置
     * @param userInfo
     * @return
     */
    protected BaseSystemInfo getSysconfig(UserInfo userInfo) throws LoginException {
        BaseSystemInfo baseSystemInfo = loginService.getBaseSystemConfig(userInfo.getTenantId());
        if(baseSystemInfo != null && baseSystemInfo.getSingleLogin() != null){
            TenantProvider.setBaseSystemInfo(baseSystemInfo);
        }else{
            throw new TenantDatabaseException().setLogMsg(MsgCode.LOG110.get());
        }
        return baseSystemInfo;
    }

    /**
     * 获取登录设备
     * @return
     */
    protected DeviceType getDeviceType(){
        return UserProvider.getDeviceForAgent();
    }


    /**
     * 生成登录用户信息
     * @param userInfo
     * @return
     */
    protected UserInfo getUserInfo(UserInfo userInfo, BaseSystemInfo sysConfigInfo) throws LoginException {
        userInfo.setGrantType(getGrantType());
        userInfo = loginService.userInfo(userInfo, sysConfigInfo);
        return userInfo;
    }


    /**
     * 登录前执行
     * @param userInfo
     * @param baseSystemInfo
     */
    protected void preLogin(UserInfo userInfo, BaseSystemInfo baseSystemInfo) throws LoginException {

    }

    /**
     * 登录操作
     * @param userInfo
     * @param baseSystemInfo
     */
    protected void login(UserInfo userInfo, BaseSystemInfo baseSystemInfo) throws LoginException {
        UserProvider.login(userInfo, getLoginModel(userInfo, baseSystemInfo));
    }

    /**
     * 登录成功触发
     * @param userInfo
     * @param baseSystemInfo
     */
    protected void loginSuccess(UserInfo userInfo, BaseSystemInfo baseSystemInfo){

    }

    /**
     * 登录失败触发
     * @param baseSystemInfo
     */
    protected void loginFailure(UserInfo userInfo, BaseSystemInfo baseSystemInfo, Exception e){

    }

    protected abstract String getUserDetailKey();

    protected String createToken(UserInfo userInfo, BaseSystemInfo baseSystemInfo){
        //登录
        UserProvider.login(userInfo, getLoginModel(userInfo, baseSystemInfo));
        return StpUtil.getTokenValueNotCut();
    }

    /**
     * 更新轮询结果为成功
     */
    protected void updateTicketSuccess(UserInfo userInfo){
        String ticket = getJnpfTicket();
        if(!ticket.isEmpty()) {
            LoginTicketModel loginTicketModel = new LoginTicketModel()
                            .setStatus(LoginTicketStatus.Success.getStatus())
                            .setValue(StpUtil.getTokenValueNotCut())
                            .setTheme(userInfo.getTheme());
            TicketUtil.updateTicket(ticket, loginTicketModel, null);
        }
    }

    /**
     * 更新轮询结果为失败
     */
    protected void updateTicketError(String msg){
        String ticket = getJnpfTicket();
        if(!ticket.isEmpty()) {
            LoginTicketModel loginTicketModel = new LoginTicketModel()
                            .setStatus(LoginTicketStatus.ErrLogin.getStatus())
                            .setValue(msg);
            TicketUtil.updateTicket(ticket, loginTicketModel, null);
        }
    }


    /**
     * 获取轮询ticket
     * @return
     */
    protected String getJnpfTicket(){
        return SaHolder.getRequest().getParam(AuthConsts.PARAMS_JNPF_TICKET, "");
    }

    protected boolean isValidJnpfTicket(){
        String jnpfTicket = getJnpfTicket();
        if(!jnpfTicket.isEmpty()){
            LoginTicketModel loginTicketModel = TicketUtil.parseTicket(jnpfTicket);
            if(loginTicketModel == null){
                return false;
            }
        }
        return true;
    }

    /**
     * 获取登录参数
     * @param userInfo
     * @param baseSystemInfo
     * @return
     */
    protected SaLoginParameter getLoginModel(UserInfo userInfo, BaseSystemInfo baseSystemInfo){
        SaLoginParameter loginModel = new SaLoginParameter();
        loginModel.setTimeout(userInfo.getTokenTimeout() * 60L);
        loginModel.setExtraData(getTokenExtraData(userInfo, baseSystemInfo));
        if(userInfo.getLoginDevice() == null) {
            loginModel.setDevice(getDeviceType().getDevice());
            userInfo.setLoginDevice(loginModel.getDeviceType());
        }else{
            loginModel.setDevice(userInfo.getLoginDevice());
        }
        return loginModel;
    }

    /**
     * 获取额外的JWT内容
     * @param userInfo
     * @param baseSystemInfo
     * @return
     */
    protected Map<String, Object> getTokenExtraData(UserInfo userInfo, BaseSystemInfo baseSystemInfo){
        Map<String, Object> tokenInfo = new HashMap<>();
//        tokenInfo.put("token", StpUtil.getTokenValue());
        tokenInfo.put("singleLogin", baseSystemInfo == null ? null : baseSystemInfo.getSingleLogin());
        tokenInfo.put("user_name", userInfo.getUserAccount());
        tokenInfo.put("user_id", userInfo.getUserId());
        tokenInfo.put("exp", userInfo.getOverdueTime().getTime());
        tokenInfo.put("token", userInfo.getId());
        return tokenInfo;
    }

    @Override
    public ActionResult<LogoutResultModel> logout() {
        UserProvider.logout();
        return ActionResult.success();
    }

    protected abstract String getGrantType();


    @Override
    public boolean requiresAuthentication() {
        String path = SaHolder.getRequest().getRequestPath();
        if(path != null && path.startsWith("/api/oauth")){
            path = path.replace("/api/oauth", "");
        }
        return pathMatcher.match(authenticationUrl, path);
    }
}