| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 |
- package pub
- import (
- "context"
- "time"
- "perms-system-server/internal/consts"
- authHelper "perms-system-server/internal/logic/auth"
- "perms-system-server/internal/model/user"
- "perms-system-server/internal/response"
- "perms-system-server/internal/svc"
- "perms-system-server/internal/types"
- "github.com/zeromicro/go-zero/core/logx"
- "golang.org/x/crypto/bcrypt"
- )
- type LoginLogic struct {
- logx.Logger
- ctx context.Context
- svcCtx *svc.ServiceContext
- }
- func NewLoginLogic(ctx context.Context, svcCtx *svc.ServiceContext) *LoginLogic {
- return &LoginLogic{
- Logger: logx.WithContext(ctx),
- ctx: ctx,
- svcCtx: svcCtx,
- }
- }
- func (l *LoginLogic) Login(req *types.LoginReq) (resp *types.LoginResp, err error) {
- u, err := l.svcCtx.SysUserModel.FindOneByUsername(l.ctx, req.Username)
- if err != nil {
- if err == user.ErrNotFound {
- return nil, response.ErrUnauthorized("用户名或密码错误")
- }
- return nil, err
- }
- if u.Status != consts.StatusEnabled {
- return nil, response.ErrForbidden("账号已被冻结")
- }
- if err := bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(req.Password)); err != nil {
- return nil, response.ErrUnauthorized("用户名或密码错误")
- }
- if u.IsSuperAdmin == consts.IsSuperAdminYes {
- return nil, response.ErrForbidden("超级管理员不允许通过产品端登录,请使用管理后台")
- }
- product, err := l.svcCtx.SysProductModel.FindOneByCode(l.ctx, req.ProductCode)
- if err != nil {
- return nil, response.ErrBadRequest("产品不存在")
- }
- if product.Status != consts.StatusEnabled {
- return nil, response.ErrForbidden("该产品已被禁用")
- }
- if _, memberErr := l.svcCtx.SysProductMemberModel.FindOneByProductCodeUserId(l.ctx, req.ProductCode, u.Id); memberErr != nil {
- return nil, response.ErrForbidden("您不是该产品的成员")
- }
- ud := l.svcCtx.UserDetailsLoader.Load(l.ctx, u.Id, req.ProductCode)
- accessToken, err := authHelper.GenerateAccessToken(
- l.svcCtx.Config.Auth.AccessSecret,
- l.svcCtx.Config.Auth.AccessExpire,
- ud.UserId, ud.Username, ud.ProductCode, ud.MemberType, ud.Perms,
- )
- if err != nil {
- return nil, err
- }
- refreshToken, err := authHelper.GenerateRefreshToken(
- l.svcCtx.Config.Auth.RefreshSecret,
- l.svcCtx.Config.Auth.RefreshExpire,
- ud.UserId, ud.ProductCode,
- )
- if err != nil {
- return nil, err
- }
- return &types.LoginResp{
- AccessToken: accessToken,
- RefreshToken: refreshToken,
- Expires: time.Now().Unix() + l.svcCtx.Config.Auth.AccessExpire,
- UserInfo: types.UserInfo{
- UserId: ud.UserId,
- Username: ud.Username,
- Nickname: ud.Nickname,
- Avatar: ud.Avatar,
- Email: ud.Email,
- Phone: ud.Phone,
- IsSuperAdmin: ud.IsSuperAdminRaw,
- MustChangePassword: ud.MustChangePwdRaw,
- MemberType: ud.MemberType,
- Perms: ud.Perms,
- },
- }, nil
- }
|
