首頁 探索 說明
註冊 登入
wenhongquan
/
FileManager
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: 0ec6fbd34c
分支列表 標籤列表
FileManager
/
ruoyi-admin
/
src
/
main
/
java
/
com
/
ruoyi
/
web
/
service
/
SysLoginService.java

SysLoginService.java 15 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346 
  1. package com.ruoyi.web.service;
    2. 

  2. 

  3. import cn.dev33.satoken.exception.NotLoginException;
    4. 

  4. import cn.dev33.satoken.secure.BCrypt;
    5. 

  5. import cn.dev33.satoken.stp.StpUtil;
    6. 

  6. import cn.hutool.core.bean.BeanUtil;
    7. 

  7. import cn.hutool.core.util.ObjectUtil;
    8. 

  8. import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
    9. 

  9. import com.ruoyi.common.core.constant.Constants;
    10. 

  10. import com.ruoyi.common.core.constant.GlobalConstants;
    11. 

  11. import com.ruoyi.common.core.constant.TenantConstants;
    12. 

  12. import com.ruoyi.common.core.domain.dto.RoleDTO;
    13. 

  13. import com.ruoyi.common.core.domain.model.LoginUser;
    14. 

  14. import com.ruoyi.common.core.domain.model.XcxLoginUser;
    15. 

  15. import com.ruoyi.common.core.enums.DeviceType;
    16. 

  16. import com.ruoyi.common.core.enums.LoginType;
    17. 

  17. import com.ruoyi.common.core.enums.TenantStatus;
    18. 

  18. import com.ruoyi.common.core.enums.UserStatus;
    19. 

  19. import com.ruoyi.common.core.exception.user.CaptchaException;
    20. 

  20. import com.ruoyi.common.core.exception.user.CaptchaExpireException;
    21. 

  21. import com.ruoyi.common.core.exception.user.UserException;
    22. 

  22. import com.ruoyi.common.core.utils.*;
    23. 

  23. import com.ruoyi.common.log.event.LogininforEvent;
    24. 

  24. import com.ruoyi.common.redis.utils.RedisUtils;
    25. 

  25. import com.ruoyi.common.satoken.utils.LoginHelper;
    26. 

  26. import com.ruoyi.common.tenant.exception.TenantException;
    27. 

  27. import com.ruoyi.common.tenant.helper.TenantHelper;
    28. 

  28. import com.ruoyi.common.web.config.properties.CaptchaProperties;
    29. 

  29. import com.ruoyi.system.domain.SysUser;
    30. 

  30. import com.ruoyi.system.domain.vo.SysTenantVo;
    31. 

  31. import com.ruoyi.system.domain.vo.SysUserVo;
    32. 

  32. import com.ruoyi.system.mapper.SysUserMapper;
    33. 

  33. import com.ruoyi.system.service.ISysPermissionService;
    34. 

  34. import com.ruoyi.system.service.ISysTenantService;
    35. 

  35. import jakarta.servlet.http.HttpServletRequest;
    36. 

  36. import lombok.RequiredArgsConstructor;
    37. 

  37. import lombok.extern.slf4j.Slf4j;
    38. 

  38. import org.springframework.beans.factory.annotation.Value;
    39. 

  39. import org.springframework.stereotype.Service;
    40. 

  40. 

  41. import java.time.Duration;
    42. 

  42. import java.util.Date;
    43. 

  43. import java.util.List;
    44. 

  44. import java.util.function.Supplier;
    45. 

  45. 

  46. /**
    47. 

  47.  * 登录校验方法
    48. 

  48.  *
    49. 

  49.  * @author Lion Li
    50. 

  50.  */
    51. 

  51. @RequiredArgsConstructor
    52. 

  52. @Slf4j
    53. 

  53. @Service
    54. 

  54. public class SysLoginService {
    55. 

  55. 

  56.     private final SysUserMapper userMapper;
    57. 

  57.     private final CaptchaProperties captchaProperties;
    58. 

  58.     private final ISysPermissionService permissionService;
    59. 

  59.     private final ISysTenantService tenantService;
    60. 

  60. 

  61.     @Value("${user.password.maxRetryCount}")
    62. 

  62.     private Integer maxRetryCount;
    63. 

  63. 

  64.     @Value("${user.password.lockTime}")
    65. 

  65.     private Integer lockTime;
    66. 

  66. 

  67.     /**
    68. 

  68.      * 登录验证
    69. 

  69.      *
    70. 

  70.      * @param username 用户名
    71. 

  71.      * @param password 密码
    72. 

  72.      * @param code     验证码
    73. 

  73.      * @param uuid     唯一标识
    74. 

  74.      * @return 结果
    75. 

  75.      */
    76. 

  76.     public String login(String tenantId, String username, String password, String code, String uuid) {
    77. 

  77.         HttpServletRequest request = ServletUtils.getRequest();
    78. 

  78.         boolean captchaEnabled = captchaProperties.getEnable();
    79. 

  79.         // 验证码开关
    80. 

  80.         if (captchaEnabled) {
    81. 

  81.             validateCaptcha(tenantId, username, code, uuid, request);
    82. 

  82.         }
    83. 

  83.         // 校验租户
    84. 

  84.         checkTenant(tenantId);
    85. 

  85. 

  86.         SysUserVo user = loadUserByUsername(tenantId, username);
    87. 

  87.         checkLogin(LoginType.PASSWORD, tenantId, username, () -> !BCrypt.checkpw(password, user.getPassword()));
    88. 

  88.         // 此处可根据登录用户的数据不同 自行创建 loginUser
    89. 

  89.         LoginUser loginUser = buildLoginUser(user);
    90. 

  90.         // 生成token
    91. 

  91.         LoginHelper.loginByDevice(loginUser, DeviceType.PC);
    92. 

  92. 

  93.         recordLogininfor(loginUser.getTenantId(), username, Constants.LOGIN_SUCCESS, MessageUtils.message("user.login.success"));
    94. 

  94.         recordLoginInfo(user.getUserId());
    95. 

  95.         return StpUtil.getTokenValue();
    96. 

  96.     }
    97. 

  97. 

  98.     public String smsLogin(String tenantId, String phonenumber, String smsCode) {
    99. 

  99.         // 校验租户
    100. 

  100.         checkTenant(tenantId);
    101. 

  101.         // 通过手机号查找用户
    102. 

  102.         SysUserVo user = loadUserByPhonenumber(tenantId, phonenumber);
    103. 

  103. 

  104.         checkLogin(LoginType.SMS, tenantId, user.getUserName(), () -> !validateSmsCode(tenantId, phonenumber, smsCode));
    105. 

  105.         // 此处可根据登录用户的数据不同 自行创建 loginUser
    106. 

  106.         LoginUser loginUser = buildLoginUser(user);
    107. 

  107.         // 生成token
    108. 

  108.         LoginHelper.loginByDevice(loginUser, DeviceType.APP);
    109. 

  109. 

  110.         recordLogininfor(loginUser.getTenantId(), user.getUserName(), Constants.LOGIN_SUCCESS, MessageUtils.message("user.login.success"));
    111. 

  111.         recordLoginInfo(user.getUserId());
    112. 

  112.         return StpUtil.getTokenValue();
    113. 

  113.     }
    114. 

  114. 

  115. 

  116.     public String xcxLogin(String xcxCode) {
    117. 

  117.         // xcxCode 为 小程序调用 wx.login 授权后获取
    118. 

  118.         // todo 以下自行实现
    119. 

  119.         // 校验 appid + appsrcret + xcxCode 调用登录凭证校验接口 获取 session_key 与 openid
    120. 

  120.         String openid = "";
    121. 

  121.         SysUserVo user = loadUserByOpenid(openid);
    122. 

  122.         // 校验租户
    123. 

  123.         checkTenant(user.getTenantId());
    124. 

  124. 

  125.         // 此处可根据登录用户的数据不同 自行创建 loginUser
    126. 

  126.         XcxLoginUser loginUser = new XcxLoginUser();
    127. 

  127.         loginUser.setTenantId(user.getTenantId());
    128. 

  128.         loginUser.setUserId(user.getUserId());
    129. 

  129.         loginUser.setUsername(user.getUserName());
    130. 

  130.         loginUser.setUserType(user.getUserType());
    131. 

  131.         loginUser.setOpenid(openid);
    132. 

  132.         // 生成token
    133. 

  133.         LoginHelper.loginByDevice(loginUser, DeviceType.XCX);
    134. 

  134. 

  135.         recordLogininfor(loginUser.getTenantId(), user.getUserName(), Constants.LOGIN_SUCCESS, MessageUtils.message("user.login.success"));
    136. 

  136.         recordLoginInfo(user.getUserId());
    137. 

  137.         return StpUtil.getTokenValue();
    138. 

  138.     }
    139. 

  139. 

  140.     /**
    141. 

  141.      * 退出登录
    142. 

  142.      */
    143. 

  143.     public void logout() {
    144. 

  144.         try {
    145. 

  145.             LoginUser loginUser = LoginHelper.getLoginUser();
    146. 

  146.             if (TenantHelper.isEnable() && LoginHelper.isSuperAdmin()) {
    147. 

  147.                 // 超级管理员 登出清除动态租户
    148. 

  148.                 TenantHelper.clearDynamic();
    149. 

  149.             }
    150. 

  150.             StpUtil.logout();
    151. 

  151.             recordLogininfor(loginUser.getTenantId(), loginUser.getUsername(), Constants.LOGOUT, MessageUtils.message("user.logout.success"));
    152. 

  152.         } catch (NotLoginException ignored) {
    153. 

  153.         }
    154. 

  154.     }
    155. 

  155. 

  156.     /**
    157. 

  157.      * 记录登录信息
    158. 

  158.      *
    159. 

  159.      * @param tenantId 租户ID
    160. 

  160.      * @param username 用户名
    161. 

  161.      * @param status   状态
    162. 

  162.      * @param message  消息内容
    163. 

  163.      * @return
    164. 

  164.      */
    165. 

  165.     private void recordLogininfor(String tenantId, String username, String status, String message) {
    166. 

  166.         LogininforEvent logininforEvent = new LogininforEvent();
    167. 

  167.         logininforEvent.setTenantId(tenantId);
    168. 

  168.         logininforEvent.setUsername(username);
    169. 

  169.         logininforEvent.setStatus(status);
    170. 

  170.         logininforEvent.setMessage(message);
    171. 

  171.         logininforEvent.setRequest(ServletUtils.getRequest());
    172. 

  172.         SpringUtils.context().publishEvent(logininforEvent);
    173. 

  173.     }
    174. 

  174. 

  175.     /**
    176. 

  176.      * 校验短信验证码
    177. 

  177.      */
    178. 

  178.     private boolean validateSmsCode(String tenantId, String phonenumber, String smsCode) {
    179. 

  179.         String code = RedisUtils.getCacheObject(GlobalConstants.CAPTCHA_CODE_KEY + phonenumber);
    180. 

  180.         if (StringUtils.isBlank(code)) {
    181. 

  181.             recordLogininfor(tenantId, phonenumber, Constants.LOGIN_FAIL, MessageUtils.message("user.jcaptcha.expire"));
    182. 

  182.             throw new CaptchaExpireException();
    183. 

  183.         }
    184. 

  184.         return code.equals(smsCode);
    185. 

  185.     }
    186. 

  186. 

  187.     /**
    188. 

  188.      * 校验验证码
    189. 

  189.      *
    190. 

  190.      * @param username 用户名
    191. 

  191.      * @param code     验证码
    192. 

  192.      * @param uuid     唯一标识
    193. 

  193.      */
    194. 

  194.     public void validateCaptcha(String tenantId, String username, String code, String uuid, HttpServletRequest request) {
    195. 

  195.         String verifyKey = GlobalConstants.CAPTCHA_CODE_KEY + StringUtils.defaultString(uuid, "");
    196. 

  196.         String captcha = RedisUtils.getCacheObject(verifyKey);
    197. 

  197.         RedisUtils.deleteObject(verifyKey);
    198. 

  198.         if (captcha == null) {
    199. 

  199.             recordLogininfor(tenantId, username, Constants.LOGIN_FAIL, MessageUtils.message("user.jcaptcha.expire"));
    200. 

  200.             throw new CaptchaExpireException();
    201. 

  201.         }
    202. 

  202.         if (!code.equalsIgnoreCase(captcha)) {
    203. 

  203.             recordLogininfor(tenantId, username, Constants.LOGIN_FAIL, MessageUtils.message("user.jcaptcha.error"));
    204. 

  204.             throw new CaptchaException();
    205. 

  205.         }
    206. 

  206.     }
    207. 

  207. 

  208.     private SysUserVo loadUserByUsername(String tenantId, String username) {
    209. 

  209.         SysUser user = userMapper.selectOne(new LambdaQueryWrapper<SysUser>()
    210. 

  210.                 .select(SysUser::getUserName, SysUser::getStatus)
    211. 

  211.                 .eq(TenantHelper.isEnable(), SysUser::getTenantId, tenantId)
    212. 

  212.                 .eq(SysUser::getUserName, username));
    213. 

  213.         if (ObjectUtil.isNull(user)) {
    214. 

  214.             log.info("登录用户:{} 不存在.", username);
    215. 

  215.             throw new UserException("user.not.exists", username);
    216. 

  216.         } else if (UserStatus.DISABLE.getCode().equals(user.getStatus())) {
    217. 

  217.             log.info("登录用户:{} 已被停用.", username);
    218. 

  218.             throw new UserException("user.blocked", username);
    219. 

  219.         }
    220. 

  220.         if (TenantHelper.isEnable()) {
    221. 

  221.             return userMapper.selectTenantUserByUserName(username, tenantId);
    222. 

  222.         }
    223. 

  223.         return userMapper.selectUserByUserName(username);
    224. 

  224.     }
    225. 

  225. 

  226.     private SysUserVo loadUserByPhonenumber(String tenantId, String phonenumber) {
    227. 

  227.         SysUser user = userMapper.selectOne(new LambdaQueryWrapper<SysUser>()
    228. 

  228.                 .select(SysUser::getPhonenumber, SysUser::getStatus)
    229. 

  229.                 .eq(TenantHelper.isEnable(), SysUser::getTenantId, tenantId)
    230. 

  230.                 .eq(SysUser::getPhonenumber, phonenumber));
    231. 

  231.         if (ObjectUtil.isNull(user)) {
    232. 

  232.             log.info("登录用户:{} 不存在.", phonenumber);
    233. 

  233.             throw new UserException("user.not.exists", phonenumber);
    234. 

  234.         } else if (UserStatus.DISABLE.getCode().equals(user.getStatus())) {
    235. 

  235.             log.info("登录用户:{} 已被停用.", phonenumber);
    236. 

  236.             throw new UserException("user.blocked", phonenumber);
    237. 

  237.         }
    238. 

  238.         if (TenantHelper.isEnable()) {
    239. 

  239.             return userMapper.selectTenantUserByPhonenumber(phonenumber, tenantId);
    240. 

  240.         }
    241. 

  241.         return userMapper.selectUserByPhonenumber(phonenumber);
    242. 

  242.     }
    243. 

  243. 

  244.     private SysUserVo loadUserByOpenid(String openid) {
    245. 

  245.         // 使用 openid 查询绑定用户 如未绑定用户 则根据业务自行处理 例如 创建默认用户
    246. 

  246.         // todo 自行实现 userService.selectUserByOpenid(openid);
    247. 

  247.         SysUserVo user = new SysUserVo();
    248. 

  248.         if (ObjectUtil.isNull(user)) {
    249. 

  249.             log.info("登录用户:{} 不存在.", openid);
    250. 

  250.             // todo 用户不存在 业务逻辑自行实现
    251. 

  251.         } else if (UserStatus.DISABLE.getCode().equals(user.getStatus())) {
    252. 

  252.             log.info("登录用户:{} 已被停用.", openid);
    253. 

  253.             // todo 用户已被停用 业务逻辑自行实现
    254. 

  254.         }
    255. 

  255.         return user;
    256. 

  256.     }
    257. 

  257. 

  258.     /**
    259. 

  259.      * 构建登录用户
    260. 

  260.      */
    261. 

  261.     private LoginUser buildLoginUser(SysUserVo user) {
    262. 

  262.         LoginUser loginUser = new LoginUser();
    263. 

  263.         loginUser.setTenantId(user.getTenantId());
    264. 

  264.         loginUser.setUserId(user.getUserId());
    265. 

  265.         loginUser.setDeptId(user.getDeptId());
    266. 

  266.         loginUser.setUsername(user.getUserName());
    267. 

  267.         loginUser.setUserType(user.getUserType());
    268. 

  268.         loginUser.setMenuPermission(permissionService.getMenuPermission(user.getUserId()));
    269. 

  269.         loginUser.setRolePermission(permissionService.getRolePermission(user.getUserId()));
    270. 

  270.         loginUser.setDeptName(ObjectUtil.isNull(user.getDept()) ? "" : user.getDept().getDeptName());
    271. 

  271.         List<RoleDTO> roles = BeanUtil.copyToList(user.getRoles(), RoleDTO.class);
    272. 

  272.         loginUser.setRoles(roles);
    273. 

  273.         return loginUser;
    274. 

  274.     }
    275. 

  275. 

  276.     /**
    277. 

  277.      * 记录登录信息
    278. 

  278.      *
    279. 

  279.      * @param userId 用户ID
    280. 

  280.      */
    281. 

  281.     public void recordLoginInfo(Long userId) {
    282. 

  282.         SysUser sysUser = new SysUser();
    283. 

  283.         sysUser.setUserId(userId);
    284. 

  284.         sysUser.setLoginIp(ServletUtils.getClientIP());
    285. 

  285.         sysUser.setLoginDate(DateUtils.getNowDate());
    286. 

  286.         sysUser.setUpdateBy(userId);
    287. 

  287.         userMapper.updateById(sysUser);
    288. 

  288.     }
    289. 

  289. 

  290.     /**
    291. 

  291.      * 登录校验
    292. 

  292.      */
    293. 

  293.     private void checkLogin(LoginType loginType, String tenantId, String username, Supplier<Boolean> supplier) {
    294. 

  294.         String errorKey = GlobalConstants.PWD_ERR_CNT_KEY + username;
    295. 

  295.         String loginFail = Constants.LOGIN_FAIL;
    296. 

  296. 

  297.         // 获取用户登录错误次数(可自定义限制策略 例如: key + username + ip)
    298. 

  298.         Integer errorNumber = RedisUtils.getCacheObject(errorKey);
    299. 

  299.         // 锁定时间内登录 则踢出
    300. 

  300.         if (ObjectUtil.isNotNull(errorNumber) && errorNumber.equals(maxRetryCount)) {
    301. 

  301.             recordLogininfor(tenantId, username, loginFail, MessageUtils.message(loginType.getRetryLimitExceed(), maxRetryCount, lockTime));
    302. 

  302.             throw new UserException(loginType.getRetryLimitExceed(), maxRetryCount, lockTime);
    303. 

  303.         }
    304. 

  304. 

  305.         if (supplier.get()) {
    306. 

  306.             // 是否第一次
    307. 

  307.             errorNumber = ObjectUtil.isNull(errorNumber) ? 1 : errorNumber + 1;
    308. 

  308.             // 达到规定错误次数 则锁定登录
    309. 

  309.             if (errorNumber.equals(maxRetryCount)) {
    310. 

  310.                 RedisUtils.setCacheObject(errorKey, errorNumber, Duration.ofMinutes(lockTime));
    311. 

  311.                 recordLogininfor(tenantId, username, loginFail, MessageUtils.message(loginType.getRetryLimitExceed(), maxRetryCount, lockTime));
    312. 

  312.                 throw new UserException(loginType.getRetryLimitExceed(), maxRetryCount, lockTime);
    313. 

  313.             } else {
    314. 

  314.                 // 未达到规定错误次数 则递增
    315. 

  315.                 RedisUtils.setCacheObject(errorKey, errorNumber);
    316. 

  316.                 recordLogininfor(tenantId, username, loginFail, MessageUtils.message(loginType.getRetryLimitCount(), errorNumber));
    317. 

  317.                 throw new UserException(loginType.getRetryLimitCount(), errorNumber);
    318. 

  318.             }
    319. 

  319.         }
    320. 

  320. 

  321.         // 登录成功 清空错误次数
    322. 

  322.         RedisUtils.deleteObject(errorKey);
    323. 

  323.     }
    324. 

  324. 

  325.     private void checkTenant(String tenantId) {
    326. 

  326.         if (!TenantHelper.isEnable()) {
    327. 

  327.             return;
    328. 

  328.         }
    329. 

  329.         if (TenantConstants.DEFAULT_TENANT_ID.equals(tenantId)) {
    330. 

  330.             return;
    331. 

  331.         }
    332. 

  332.         SysTenantVo tenant = tenantService.queryByTenantId(tenantId);
    333. 

  333.         if (ObjectUtil.isNull(tenant)) {
    334. 

  334.             log.info("登录租户:{} 不存在.", tenantId);
    335. 

  335.             throw new TenantException("tenant.not.exists");
    336. 

  336.         } else if (TenantStatus.DISABLE.getCode().equals(tenant.getStatus())) {
    337. 

  337.             log.info("登录租户:{} 已被停用.", tenantId);
    338. 

  338.             throw new TenantException("tenant.blocked");
    339. 

  339.         } else if (ObjectUtil.isNotNull(tenant.getExpireTime())
    340. 

  340.                 && new Date().after(tenant.getExpireTime())) {
    341. 

  341.             log.info("登录租户:{} 已超过有效期.", tenantId);
    342. 

  342.             throw new TenantException("tenant.expired");
    343. 

  343.         }
    344. 

  344.     }
    345. 

  345. 

  346. }
    347.