SysController.java 15 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326
  1. package com.qmth.distributed.print.api;
  2. import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
  3. import com.qmth.boot.api.annotation.Aac;
  4. import com.qmth.boot.api.annotation.BOOL;
  5. import com.qmth.boot.api.constant.ApiConstant;
  6. import com.qmth.boot.api.exception.ApiException;
  7. import com.qmth.boot.core.enums.Platform;
  8. import com.qmth.boot.tools.signature.SignatureType;
  9. import com.qmth.distributed.print.business.bean.auth.AuthBean;
  10. import com.qmth.distributed.print.business.bean.auth.ExpireTimeBean;
  11. import com.qmth.distributed.print.business.bean.query.LoginParam;
  12. import com.qmth.distributed.print.business.bean.result.EditResult;
  13. import com.qmth.distributed.print.business.bean.result.LoginResult;
  14. import com.qmth.distributed.print.business.config.DictionaryConfig;
  15. import com.qmth.distributed.print.business.entity.*;
  16. import com.qmth.distributed.print.business.enums.DownloadFileEnum;
  17. import com.qmth.distributed.print.business.enums.RoleTypeEnum;
  18. import com.qmth.distributed.print.business.enums.UploadFileEnum;
  19. import com.qmth.distributed.print.business.service.*;
  20. import com.qmth.distributed.print.business.util.AuthUtil;
  21. import com.qmth.distributed.print.business.util.RedisUtil;
  22. import com.qmth.distributed.print.business.util.ServletUtil;
  23. import com.qmth.distributed.print.business.util.security.Md5Utils;
  24. import com.qmth.distributed.print.common.SignatureEntityTest;
  25. import com.qmth.distributed.print.common.contant.SystemConstant;
  26. import com.qmth.distributed.print.common.enums.ExceptionResultEnum;
  27. import com.qmth.distributed.print.common.util.Result;
  28. import com.qmth.distributed.print.common.util.ResultUtil;
  29. import com.qmth.distributed.print.common.util.SessionUtil;
  30. import io.swagger.annotations.*;
  31. import org.slf4j.Logger;
  32. import org.slf4j.LoggerFactory;
  33. import org.springframework.beans.factory.annotation.Autowired;
  34. import org.springframework.transaction.annotation.Transactional;
  35. import org.springframework.validation.BindingResult;
  36. import org.springframework.web.bind.annotation.*;
  37. import org.springframework.web.multipart.MultipartFile;
  38. import javax.annotation.Resource;
  39. import javax.validation.Valid;
  40. import java.security.NoSuchAlgorithmException;
  41. import java.util.Collections;
  42. import java.util.List;
  43. import java.util.Objects;
  44. import java.util.Set;
  45. import java.util.stream.Collectors;
  46. /**
  47. * @Date: 2021/3/30.
  48. */
  49. @Api(tags = "系统Controller")
  50. @RestController
  51. @RequestMapping(ApiConstant.DEFAULT_URI_PREFIX + "/${prefix.url.common}")
  52. @Aac(strict = BOOL.TRUE, platform = Platform.WEB)
  53. public class SysController {
  54. private final static Logger log = LoggerFactory.getLogger(SysController.class);
  55. @Autowired
  56. private SysUserService sysUserService;
  57. @Autowired
  58. private BasicVerifyCodeService basicVerifyCodeService;
  59. @Autowired
  60. private SysConfigService sysConfigService;
  61. @Autowired
  62. private DictionaryConfig dictionaryConfig;
  63. @Resource
  64. CacheService cacheService;
  65. @Resource
  66. TBSessionService tbSessionService;
  67. @Resource
  68. RedisUtil redisUtil;
  69. @Resource
  70. CommonService commonService;
  71. @Resource
  72. TBTaskService tbTaskService;
  73. @Resource
  74. BasicAttachmentService basicAttachmentService;
  75. /**
  76. * 登录
  77. *
  78. * @param login
  79. * @return
  80. */
  81. @ApiOperation(value = "登录")
  82. @RequestMapping(value = "/login", method = RequestMethod.POST)
  83. @ApiResponses({@ApiResponse(code = 200, message = "用户信息", response = LoginResult.class)})
  84. @Aac(auth = BOOL.FALSE)
  85. public Result login(@ApiParam(value = "用户信息", required = true) @Valid @RequestBody LoginParam login, BindingResult bindingResult) throws NoSuchAlgorithmException {
  86. if (bindingResult.hasErrors()) {
  87. return ResultUtil.error(bindingResult.getAllErrors().get(0).getDefaultMessage());
  88. }
  89. BasicSchool basicSchool = null;
  90. if (!Objects.equals(login.getSchoolCode().toUpperCase(), RoleTypeEnum.ADMIN.name())) {
  91. basicSchool = cacheService.schoolCache(login.getSchoolCode());
  92. if (Objects.isNull(basicSchool)) {
  93. throw ExceptionResultEnum.SCHOOL_NO_DATA.exception();
  94. }
  95. if (Objects.nonNull(basicSchool.getEnable()) && !basicSchool.getEnable()) {
  96. throw ExceptionResultEnum.SCHOOL_ENABLE.exception();
  97. }
  98. }
  99. QueryWrapper<SysUser> wrapper = new QueryWrapper<>();
  100. wrapper.lambda().eq(SysUser::getLoginName, login.getLoginName());
  101. if (!Objects.equals(login.getSchoolCode().toUpperCase(), RoleTypeEnum.ADMIN.name())) {
  102. wrapper.lambda().eq(SysUser::getSchoolId, basicSchool.getId());
  103. }
  104. List<SysUser> userList = sysUserService.list(wrapper);
  105. //用户不存在
  106. if (Objects.isNull(userList) || userList.size() == 0) {
  107. throw ExceptionResultEnum.USER_NO_DATA.exception();
  108. }
  109. if (Objects.equals(login.getSchoolCode().toUpperCase(), RoleTypeEnum.ADMIN.name())) {
  110. userList.forEach(o -> {
  111. AuthBean authBean = commonService.getUserAuth(o.getId());
  112. if (Objects.nonNull(authBean) && Objects.nonNull(authBean.getRoleList()) && authBean.getRoleList().size() > 0) {
  113. Set<RoleTypeEnum> roleType = authBean.getRoleList().stream().map(s -> s.getType()).collect(Collectors.toSet());
  114. if (!roleType.contains(RoleTypeEnum.ADMIN)) {
  115. throw ExceptionResultEnum.ERROR.exception("学校代码为admin只允许超级管理员登录");
  116. }
  117. }
  118. });
  119. }
  120. if (userList.size() > 1) {
  121. throw ExceptionResultEnum.ERROR.exception("查询的用户有多条");
  122. }
  123. SysUser sysUser = userList.get(0);
  124. if (Objects.nonNull(sysUser.getSchoolId()) && sysUser.getSchoolId().longValue() != basicSchool.getId().longValue()) {
  125. throw ExceptionResultEnum.ERROR.exception("用户学校不匹配");
  126. }
  127. //密码不正确
  128. if (!Objects.equals(login.getPassword(), sysUser.getPassword())) {
  129. throw ExceptionResultEnum.PASSWORD_ERROR.exception();
  130. }
  131. //停用
  132. if (!sysUser.getEnable()) {
  133. throw ExceptionResultEnum.USER_ENABLE.exception();
  134. }
  135. //校验验证码
  136. // String value = sysConfigService.getByKey("sys.code.enable");
  137. // if (Objects.nonNull(value) && value.equals("true")) {
  138. // String code = login.getCode();
  139. // if (Objects.isNull(code)) {
  140. // throw ExceptionResultEnum.ERROR.exception("验证码为空");
  141. // }
  142. // if (!dictionaryConfig.smsDomain().getSmsNormalCode().equals(code)) {
  143. // QueryWrapper<BasicVerifyCode> codeWrapper = new QueryWrapper<>();
  144. // codeWrapper.lambda().eq(BasicVerifyCode::getMobileNumber, sysUser.getMobileNumber()).eq(BasicVerifyCode::getUserId, sysUser.getId());
  145. // BasicVerifyCode accessControl = basicVerifyCodeService.getOne(codeWrapper);
  146. // if (accessControl == null || (accessControl != null && !accessControl.getVerifyCode().equals(code))) {
  147. // throw ExceptionResultEnum.ERROR.exception("短信验证码错误,请仔细核对后再次输入");
  148. // }
  149. //
  150. // if (new Date(accessControl.getExpireTime()).before(new Date())) {
  151. // throw ExceptionResultEnum.ERROR.exception("短信验证码已过期");
  152. // }
  153. // }
  154. // }
  155. Platform platform = ServletUtil.getRequestPlatform();
  156. String deviceId = ServletUtil.getRequestDeviceId();
  157. //添加用户鉴权缓存
  158. AuthBean authBean = cacheService.userAuthCache(sysUser.getId());
  159. if (Objects.isNull(authBean)) {
  160. throw ExceptionResultEnum.ROLE_ENABLE_AUTHORIZATION.exception();
  161. }
  162. //生成token
  163. String token = SystemConstant.getUuid();
  164. cacheService.userCache(sysUser.getId());
  165. //添加用户会话缓存
  166. Set<RoleTypeEnum> roleType = authBean.getRoleList().stream().map(s -> s.getType()).collect(Collectors.toSet());
  167. String sessionId = SessionUtil.digest(sysUser.getId(), Math.abs(roleType.toString().hashCode()), platform.name());
  168. //TODO 测试用
  169. String test = SignatureEntityTest.build(SignatureType.TOKEN, sessionId, token);
  170. ExpireTimeBean expireTime = AuthUtil.getExpireTime(platform);
  171. TBSession tbSession = new TBSession(sessionId, String.valueOf(sysUser.getId()), roleType.toString(),
  172. platform.name(), platform.name(), deviceId, ServletUtil.getRequest().getLocalAddr(), token,
  173. expireTime.getDate().getTime());
  174. tbSessionService.saveOrUpdate(tbSession);
  175. redisUtil.setUserSession(sessionId, tbSession, expireTime.getExpireSeconds());
  176. LoginResult loginResult = new LoginResult(sysUser, sessionId, test, roleType);
  177. loginResult.setSchoolInfo(Objects.nonNull(authBean.getSchool()) ? loginResult.new SchoolNativeBean(authBean.getSchool()) : null);
  178. loginResult.setOrgInfo(Objects.nonNull(authBean.getOrg()) ? loginResult.new OrgNativeBean(authBean.getOrg()) : null);
  179. return ResultUtil.ok(loginResult);
  180. }
  181. /**
  182. * 登出
  183. *
  184. * @return
  185. */
  186. @ApiOperation(value = "登出")
  187. @RequestMapping(value = "/logout", method = RequestMethod.POST)
  188. @ApiResponses({@ApiResponse(code = 200, message = "返回信息", response = EditResult.class)})
  189. public Result logout() {
  190. SysUser sysUser = (SysUser) ServletUtil.getRequestUser();
  191. TBSession tbSession = (TBSession) ServletUtil.getRequestSession();
  192. AuthBean authBean = cacheService.userAuthCache(sysUser.getId());
  193. if (Objects.isNull(authBean)) {
  194. throw ExceptionResultEnum.NOT_LOGIN.exception();
  195. }
  196. tbSessionService.removeById(tbSession.getId());
  197. redisUtil.deleteUserSession(tbSession.getId());
  198. cacheService.removeUserCache(sysUser.getId());
  199. cacheService.removeUserAuthCache(sysUser.getId());
  200. return ResultUtil.ok(new EditResult(sysUser.getId()));
  201. }
  202. /**
  203. * 发送验证码
  204. *
  205. * @param loginParam
  206. * @return
  207. */
  208. @ApiOperation(value = "发送验证码")
  209. @RequestMapping(value = "/getVerifyCode", method = RequestMethod.POST)
  210. public Object getverifyCode(@RequestBody LoginParam loginParam) {
  211. String loginName = loginParam.getLoginName();
  212. QueryWrapper<SysUser> wrapper = new QueryWrapper<>();
  213. wrapper.lambda().eq(SysUser::getLoginName, loginName);
  214. SysUser user = sysUserService.getOne(wrapper);
  215. //用户不存在
  216. if (Objects.isNull(user)) {
  217. throw ExceptionResultEnum.ERROR.exception("用户不存在");
  218. }
  219. String password = Md5Utils.toMd5Hex(loginParam.getPassword());
  220. if (password.equals(user.getPassword())) {
  221. throw ExceptionResultEnum.ERROR.exception("密码错误");
  222. }
  223. String mobileNumber = user.getMobileNumber();
  224. if (Objects.isNull(mobileNumber)) {
  225. throw ExceptionResultEnum.ERROR.exception("用户未绑定手机号码");
  226. }
  227. basicVerifyCodeService.sendVeirfyCode(mobileNumber, user.getId());
  228. return ResultUtil.ok(true);
  229. }
  230. @ApiOperation(value = "根据机构代码查询机构信息接口")
  231. @RequestMapping(value = "/school/query_by_school_code", method = RequestMethod.POST)
  232. @ApiResponses({@ApiResponse(code = 200, message = "学校信息", response = EditResult.class)})
  233. @Aac(auth = BOOL.FALSE)
  234. public Result queryBySchoolCode(@ApiParam(value = "机构code", required = true) @RequestParam String code) {
  235. if (!Objects.equals(code.toUpperCase(), RoleTypeEnum.ADMIN.name())) {
  236. BasicSchool basicSchool = cacheService.schoolCache(code);
  237. if (Objects.isNull(basicSchool)) {
  238. throw ExceptionResultEnum.SCHOOL_NO_DATA.exception();
  239. }
  240. return ResultUtil.ok(Collections.singletonMap(SystemConstant.LOGO, basicSchool.getLogo()));
  241. } else {
  242. return ResultUtil.ok(Collections.singletonMap(SystemConstant.LOGO, dictionaryConfig.sysDomain().getAdminLogoUrl()));
  243. }
  244. }
  245. @ApiOperation(value = "文件上传接口")
  246. @RequestMapping(value = "/file/upload", method = RequestMethod.POST)
  247. @Transactional
  248. @ApiResponses({@ApiResponse(code = 200, message = "返回信息", response = EditResult.class)})
  249. public Result fileUpload(@ApiParam(value = "上传文件", required = true) @RequestParam MultipartFile file,
  250. @ApiParam(value = "上传文件类型", required = true) @RequestParam UploadFileEnum type) {
  251. BasicAttachment basicAttachment = null;
  252. try {
  253. basicAttachment = basicAttachmentService.saveAttachment(file, ServletUtil.getRequestMd5(), type);
  254. if (Objects.isNull(basicAttachment)) {
  255. throw ExceptionResultEnum.ATTACHMENT_ERROR.exception();
  256. }
  257. } catch (Exception e) {
  258. log.error("请求出错", e);
  259. if (Objects.nonNull(basicAttachment)) {
  260. basicAttachmentService.deleteAttachment(basicAttachment);
  261. }
  262. if (e instanceof ApiException) {
  263. ResultUtil.error((ApiException) e, e.getMessage());
  264. } else {
  265. ResultUtil.error(e.getMessage());
  266. }
  267. }
  268. return ResultUtil.ok(new EditResult(basicAttachment.getId(), commonService.filePreview(basicAttachment.getPath())));
  269. }
  270. @ApiOperation(value = "文件下载接口")
  271. @RequestMapping(value = "/file/download", method = RequestMethod.POST)
  272. @ApiResponses({@ApiResponse(code = 200, message = "返回信息", response = EditResult.class)})
  273. public Result fileDownload(@ApiParam(value = "任务id", required = true) @RequestParam String id,
  274. @ApiParam(value = "下载文件类型", required = true) @RequestParam DownloadFileEnum type) {
  275. TBTask tbTask = tbTaskService.getById(Long.parseLong(id));
  276. if (Objects.isNull(tbTask)) {
  277. throw ExceptionResultEnum.TASK_NO_DATA.exception();
  278. }
  279. String path = null;
  280. switch (type.ordinal()) {
  281. case 0:
  282. path = tbTask.getImportFilePath();
  283. break;
  284. case 1:
  285. path = tbTask.getReportFilePath();
  286. break;
  287. default:
  288. path = tbTask.getResultFilePath();
  289. break;
  290. }
  291. if (Objects.isNull(path)) {
  292. throw ExceptionResultEnum.PATH_NO_DATA.exception();
  293. }
  294. return ResultUtil.ok(new EditResult(commonService.filePreview(path)));
  295. }
  296. @ApiOperation(value = "文件预览接口")
  297. @RequestMapping(value = "/file/preview", method = RequestMethod.POST)
  298. @ApiResponses({@ApiResponse(code = 200, message = "返回信息", response = EditResult.class)})
  299. public Result filePreview(@ApiParam(value = "附件id", required = true) @RequestParam String id) {
  300. BasicAttachment basicAttachment = basicAttachmentService.getById(Long.parseLong(id));
  301. return ResultUtil.ok(new EditResult(commonService.filePreview(basicAttachment.getPath())));
  302. }
  303. }