package com.vincent.rsf.server.system.controller; import com.vincent.rsf.common.utils.Utils; import com.vincent.rsf.framework.common.Cools; import com.vincent.rsf.framework.common.R; import com.vincent.rsf.server.common.annotation.OperationLog; import com.vincent.rsf.server.common.config.ConfigProperties; import com.vincent.rsf.server.common.security.JwtSubject; import com.vincent.rsf.server.common.utils.JwtUtil; import com.vincent.rsf.server.system.controller.param.LoginParam; import com.vincent.rsf.server.system.controller.param.UpdatePasswordParam; import com.vincent.rsf.server.system.controller.result.LoginResult; import com.vincent.rsf.server.system.controller.result.MenuVo; import com.vincent.rsf.server.system.entity.Menu; import com.vincent.rsf.server.system.entity.Tenant; import com.vincent.rsf.server.system.entity.User; import com.vincent.rsf.server.system.entity.UserLogin; import com.vincent.rsf.server.system.enums.StatusType; import com.vincent.rsf.server.system.service.RoleMenuService; import com.vincent.rsf.server.system.service.TenantService; import com.vincent.rsf.server.system.service.UserLoginService; import com.vincent.rsf.server.system.service.UserService; import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.PostMapping; import org.springframework.web.bind.annotation.RequestBody; import org.springframework.web.bind.annotation.RestController; import javax.annotation.Resource; import javax.servlet.http.HttpServletRequest; import java.util.List; import java.util.stream.Collectors; /** * 认证控制器 * * Created by vincent on 1/30/2024 */ @RestController public class AuthController extends BaseController { @Resource private ConfigProperties configProperties; @Resource private UserService userService; @Resource private UserLoginService userLoginService; @Resource private RoleMenuService roleMenuService; @Resource private TenantService tenantService; @PostMapping("/login") public R login(@RequestBody LoginParam param, HttpServletRequest request) { // System.out.println(userService.encodePassword("123456")); String username = param.getUsername(); Long tenantId = param.getTenantId(); User user = userService.getByUsername(username, tenantId); if (user == null) { return R.error("Username Does Not Exist"); } if (!user.getStatus().equals(StatusType.ENABLE.val)) { return R.error("Account Frozen"); } if (!userService.comparePassword(user.getPassword(), param.getPassword())) { return R.error("Invalid Password"); } String accessToken = JwtUtil.buildToken(new JwtSubject(username, user.getTenantId()), configProperties.getTokenExpireTime(), configProperties.getTokenKey()); userLoginService.saveAsync(user.getId(), accessToken, UserLogin.TYPE_LOGIN, tenantId, null, request); Tenant tenant = tenantService.getById(user.getTenantId()); return R.ok("Sign In Success").add(new LoginResult(accessToken, user, tenant.getName())); } @GetMapping("/tenant/list") public R tenantList() { return R.ok().add(tenantService.list()); } @GetMapping("/auth/user") public R userInfo() { User user = userService.getById(getLoginUserId()); return R.ok(userService.setUserAuthInfo(user)); } @GetMapping("/auth/menu") public R userMenu() { List menus = roleMenuService.listMenuByUserId(getLoginUserId(), Menu.TYPE_MENU); List voList = menus.stream().map(this::convertToVo).collect(Collectors.toList()); // exclude tenant if (!configProperties.getSuperUserList().contains(getLoginUser().getUsername())) { voList = voList.stream().filter(vo -> !vo.getName().equals("menu.tenant") && !vo.getName().equals("menu.menu") ).collect(Collectors.toList()); } return R.ok().add(Utils.toTreeData(voList, 0L, MenuVo::getParentId, MenuVo::getId, MenuVo::setChildren)); } @OperationLog("Update UserInfo") @PostMapping("/auth/user") public R updateInfo(@RequestBody User user) { user.setId(getLoginUserId()); // 不能修改的字段 user.setUsername(null); user.setPassword(null); user.setEmailVerified(null); user.setTenantId(null); user.setStatus(null); if (userService.updateById(user)) { return R.ok("Save Success").add(userService.getById(user.getId())); } return R.error("Save Fail"); } @OperationLog("Reset Password") @PostMapping("/auth/reset/password") public R resetPassword(@RequestBody UpdatePasswordParam param) { if (Cools.isEmpty(param.getOldPassword(), param.getNewPassword())) { return R.error("Parameters Cannot Be Empty"); } Long userId = getLoginUserId(); if (userId == null) { return R.error("Please Login First"); } if (!userService.comparePassword(userService.getById(userId).getPassword(), param.getOldPassword())) { return R.parse("408-The Current Password Was Incorrect"); } User user = new User(); user.setId(userId); user.setPassword(userService.encodePassword(param.getNewPassword())); if (userService.updateById(user)) { return R.ok("Reset Password Success"); } return R.error("Reset Password Fail"); } // ---------------------------------------------------- private MenuVo convertToVo(Menu menu) { if (menu == null) { return null; } MenuVo vo = new MenuVo(); vo.setId(menu.getId()); vo.setName(menu.getName()); vo.setParentId(menu.getParentId()); // vo.setParentName(menu.getParentName()); vo.setPath(menu.getPath()); // vo.setPathName(menu.getPathName()); vo.setRoute(menu.getRoute()); vo.setComponent(menu.getComponent()); vo.setType(menu.getType()); vo.setIcon(menu.getIcon()); vo.setSort(menu.getSort()); if (menu.getChildren() != null && !menu.getChildren().isEmpty()) { List childDTOs = menu.getChildren().stream() .map(this::convertToVo) .collect(Collectors.toList()); vo.setChildren(childDTOs); } return vo; } }