server/src/main/java/com/qmth/exam/reserve/service/impl/AuthServiceImpl.java

package com.qmth.exam.reserve.service.impl;

import com.qmth.boot.core.exception.StatusException;
import com.qmth.boot.core.security.annotation.AuthorizationComponent;
import com.qmth.boot.core.security.service.AuthorizationService;
import com.qmth.boot.tools.signature.SignatureType;
import com.qmth.boot.tools.uuid.FastUUID;
import com.qmth.exam.reserve.bean.login.LoginReq;
import com.qmth.exam.reserve.bean.login.LoginUser;
import com.qmth.exam.reserve.bean.login.WechatLoginReq;
import com.qmth.exam.reserve.cache.CacheConstants;
import com.qmth.exam.reserve.cache.LoginSessionManager;
import com.qmth.exam.reserve.entity.StudentEntity;
import com.qmth.exam.reserve.entity.UserEntity;
import com.qmth.exam.reserve.enums.Role;
import com.qmth.exam.reserve.service.AuthService;
import com.qmth.exam.reserve.service.StudentService;
import com.qmth.exam.reserve.service.UserService;
import org.apache.commons.codec.digest.DigestUtils;
import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;

@Service
@AuthorizationComponent
public class AuthServiceImpl implements AuthorizationService<LoginUser>, AuthService {

    private final static Logger log = LoggerFactory.getLogger(AuthServiceImpl.class);

    @Autowired
    private LoginSessionManager loginSessionManager;

    @Autowired
    private UserService userService;

    @Autowired
    private StudentService studentService;

    @Override
    public LoginUser userLogin(LoginReq req) {
        if (StringUtils.isBlank(req.getAccount())) {
            throw new StatusException("登录账号不能为空");
        }

        if (StringUtils.isBlank(req.getPassword())) {
            throw new StatusException("登录密码不能为空");
        }

        log.debug("[USER_LOGIN] verifying, account:{}", req.getAccount());
        UserEntity user = userService.findUserByLoginName(req.getOrgId(), req.getAccount());
        if (user == null) {
            throw new StatusException("登录用户不存在");
        }

        String encodePassword = DigestUtils.sha256Hex(req.getPassword()).toUpperCase();
        if (!encodePassword.equals(user.getPassword())) {
            throw new StatusException("登录账号或密码错误");
        }

        LoginUser loginUser = new LoginUser();
        loginUser.setId(user.getId());
        loginUser.setOrgId(user.getOrgId());
        loginUser.setCategoryId(user.getCategoryId());
        loginUser.setAccount(user.getLoginName());
        loginUser.setName(user.getName());
        loginUser.setRole(user.getRole());

        loginUser.setSessionId(CacheConstants.CACHE_USER_LOGIN + user.getId());
        loginUser.setToken(FastUUID.get());
        loginSessionManager.addLoginSession(loginUser);

        log.info("[USER_LOGIN] success! account:{} {} {}", loginUser.getAccount(), loginUser.getName(), loginUser.getRole());
        return loginUser;
    }

    @Override
    public LoginUser studentLogin(LoginReq req) {
        if (StringUtils.isBlank(req.getAccount())) {
            throw new StatusException("登录账号不能为空");
        }

        if (StringUtils.isBlank(req.getPassword())) {
            throw new StatusException("登录密码不能为空");
        }

        log.debug("[STUDENT_LOGIN] verifying, account:{}", req.getAccount());
        StudentEntity student = studentService.findByStudentCode(req.getOrgId(), req.getAccount());
        if (student == null) {
            throw new StatusException("登录用户不存在");
        }

        String encodePassword = DigestUtils.sha256Hex(req.getPassword()).toUpperCase();
        if (!encodePassword.equals(student.getPassword())) {
            throw new StatusException("登录账号或密码错误");
        }

        LoginUser loginUser = new LoginUser();
        loginUser.setId(student.getId());
        loginUser.setOrgId(student.getOrgId());
        loginUser.setCategoryId(student.getCategoryId());
        loginUser.setAccount(student.getStudentCode());
        loginUser.setName(student.getName());
        loginUser.setRole(Role.STUDENT);
        loginUser.setOpenId(student.getOpenId());

        loginUser.setSessionId(CacheConstants.CACHE_STUDENT_LOGIN + student.getId());
        loginUser.setToken(FastUUID.get());
        loginSessionManager.addLoginSession(loginUser);

        log.info("[STUDENT_LOGIN] success! account:{} {}", loginUser.getAccount(), loginUser.getName());
        return loginUser;
    }

    @Override
    public LoginUser wechatLogin(WechatLoginReq req) {
        if (StringUtils.isBlank(req.getOpenId())) {
            throw new StatusException("微信OID不能为空");
        }

        log.debug("[WECHAT_LOGIN] verifying, openId:{} uid:{}", req.getOpenId(), req.getUid());
        StudentEntity student = studentService.findByOpenIdAndUid(req.getOpenId(), req.getUid());
        if (student == null) {
            throw new StatusException("登录用户不存在");
        }

        LoginUser loginUser = new LoginUser();
        loginUser.setId(student.getId());
        loginUser.setOrgId(student.getOrgId());
        loginUser.setCategoryId(student.getCategoryId());
        loginUser.setAccount(student.getStudentCode());
        loginUser.setName(student.getName());
        loginUser.setRole(Role.STUDENT);
        loginUser.setOpenId(student.getOpenId());

        loginUser.setSessionId(CacheConstants.CACHE_STUDENT_LOGIN + student.getId());
        loginUser.setToken(FastUUID.get());
        loginSessionManager.addLoginSession(loginUser);

        log.info("[WECHAT_LOGIN] success! account:{} {}", loginUser.getAccount(), loginUser.getName());
        return loginUser;
    }

    @Override
    public void logout(LoginUser loginUser) {
        loginSessionManager.removeLoginSession(loginUser.getSessionId());
        log.warn("[LOGOUT] account:{} {}", loginUser.getAccount(), loginUser.getName());
    }

    @Override
    public LoginUser findByIdentity(String identity, SignatureType type, String path) {
        return loginSessionManager.getLoginSession(identity);
    }

}