bjquanjiang
/
DigitalScholl
1
0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
1535 コミット
27 ブランチ
925 MiB
 
 
 
 
 
 
ツリー: 9321485f93
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'9321485f93' から
${ noResults }
DigitalScholl/Learun.Framework.Ultimate V7/Learun.Application.WebApi/Modules/SSOApi.cs

325 行
13 KiB
Raw Blame 履歴 

  1. using Learun.Application.AppMagager;

  2. using Learun.Util;

  3. using Nancy;

  4. using System.Collections.Generic;

  5. using System.Linq;

  6. using Learun.Application.Base.SystemModule;

  7. using Learun.Application.TwoDevelopment.LR_Desktop;

  8. using System.Text;

  9. using System.Data;

  10. using Learun.Application.OA;

  11. using System.Configuration;

  12. using Learun.Application.TwoDevelopment.Permission;

  13. using System;

  14. using Learun.Cache.Base;

  15. using Learun.Cache.Factory;

  16. 

  17. namespace Learun.Application.WebApi.Modules

  18. {

  19. 

  20.     public class SSOApi : BaseApi

  21.     {

  22.         private Perm_FunctionIBLL perm_FunctionIBLL = new Perm_FunctionBLL();

  23.         private Perm_FunctionTypeIBLL perm_FunctionTypeIBLL = new Perm_FunctionTypeBLL();

  24.         Perm_UserPermissionIBLL permUserPermissionIbll = new Perm_UserPermissionBLL();

  25.         private Perm_FunctionVisitIBLL functionVisitIbll = new Perm_FunctionVisitBLL();

  26.         private ICache cache = CacheFactory.CaChe();

  27. 

  28.         public SSOApi()

  29.             : base("/quanjiang/sso")

  30.         {

  31.             Get["/list"] = GetList;

  32.             Get["/list20"] = GetList20;

  33.             Get["/goto"] = GoTo;

  34.             Get["/goto20"] = GoToApplication;

  35.             Get["first"] = First;

  36.             Post["first"] = FirstPost;

  37.             Get["authorize"] = Authorize;

  38.         }

  39. 

  40.         /// <summary>

  41.         /// 统一身份认证2.0

  42.         /// </summary>

  43.         /// <param name="_"></param>

  44.         /// <returns></returns>

  45.         public Response Authorize(dynamic _)

  46.         {

  47.             string appid = Request.Query["appid"];

  48.             string secret = Request.Query["secret"];

  49.             string appkey = Request.Query["appkey"];

  50.             if (string.IsNullOrEmpty(appid))

  51.             {

  52.                 return Fail("参数:appid不能为空");

  53.             }

  54.             if (string.IsNullOrEmpty(secret))

  55.             {

  56.                 return Fail("参数:secret不能为空");

  57.             }

  58.             if (string.IsNullOrEmpty(appkey))

  59.             {

  60.                 return Fail("参数:appkey不能为空");

  61.             }

  62.             var application = perm_FunctionIBLL.GetPerm_FunctionEntity(appid);

  63.             if (application != null)

  64.             {

  65.                 if (Util.DESEncrypt.Decrypt(application.FSecret,

  66.                     ConfigurationManager.AppSettings["SSOPublicSecret"]).Equals(secret))

  67.                 {

  68.                     try

  69.                     {

  70.                         var code = DESEncrypt.Decrypt(appkey, "bjqjsso");

  71. 

  72.                         if (!string.IsNullOrEmpty(cache.Read<string>(code)))

  73.                         {

  74.                             return Success(new { useraccount = cache.Read<string>(code) });

  75.                         }

  76.                         else

  77.                         {

  78.                             return Fail("appkey已过期");

  79.                         }

  80.                     }

  81.                     catch (Exception e)

  82.                     {

  83.                         return Fail("appkey错误");

  84.                     }

  85.                 }

  86.                 else

  87.                 {

  88.                     return Fail("secret错误");

  89.                 }

  90.             }

  91.             else

  92.                 return Fail("未授权的appid");

  93.         }

  94. 

  95.         private Response FirstPost(dynamic _)

  96.         {

  97.             string publickey = ConfigurationManager.AppSettings["SSOPublicSecret"];

  98.             var ssoparam = this.GetReqData<SSOParam>();

  99.             if (!string.IsNullOrEmpty(ssoparam.UPId))

  100.             {

  101.                 Perm_FunctionEntity up = new Perm_FunctionEntity();

  102.                 up.UPUserName = ssoparam.UPUserName;

  103.                 up.UPPass = ssoparam.UPPass;

  104.                 up.FId = ssoparam.FId;

  105.                 up.UserId = ssoparam.UserId;

  106.                 perm_FunctionIBLL.SaveEntityByUPId(ssoparam.UPId, up);

  107.                 return Success(new { FInterfaceUrl = "/SSO/GoTo?sysid=" + DESEncrypt.Encrypt(up.FId, publickey) + "&openid=" + DESEncrypt.Encrypt(up.UserId, publickey) });

  108.             }

  109.             else

  110.             {

  111.                 return Fail("参数错误");

  112.             }

  113.         }

  114. 

  115.         private Response First(dynamic _)

  116.         {

  117.             string publickey = ConfigurationManager.AppSettings["SSOPublicSecret"];

  118.             var ssoparam = this.GetReqData<SSOParam>();

  119.             string sysid = ssoparam.sysid;

  120.             string strsysid = DESEncrypt.Decrypt(sysid, publickey);

  121.             string openid = ssoparam.openid;

  122.             string userid = DESEncrypt.Decrypt(openid, publickey);

  123.             var uplist = permUserPermissionIbll.GetPerm_UserPermissionEntityByFIdAndUid(strsysid, userid);

  124.             if (uplist == null)

  125.             {

  126.                 return Fail("用户未授权。");

  127.             }

  128.             var perfun = perm_FunctionIBLL.GetPerm_FunctionEntityByUPId(uplist.UPId);

  129.             return Success(perfun);

  130.         }

  131. 

  132.         public class SSOParam

  133.         {

  134.             public string sysid { get; set; }

  135.             public string openid { get; set; }

  136.             public string UPId { get; set; }

  137.             public string FId { get; set; }

  138.             public string UserId { get; set; }

  139.             public string UPUserName { get; set; }

  140.             public string UPPass { get; set; }

  141.             public string appid { get; set; }

  142.         }

  143. 

  144.         public Response GoToApplication(dynamic _)

  145.         {

  146.             var userinfo = userInfo;

  147.             var ssoparam = this.GetReqData<SSOParam>();

  148.             if (userinfo != null)

  149.             {

  150.                 var perm_application = perm_FunctionIBLL.GetPerm_FunctionEntity(ssoparam.appid);

  151.                 if (perm_application != null)

  152.                 {

  153.                     //写入当前请求所登录的用户

  154.                     var code = Util.CommonHelper.RndNum(9);

  155.                     cache.Write(code, userinfo.account, TimeSpan.FromMinutes(10));

  156.                     var url = perm_application.FInterfaceUrl;

  157.                     if (url.Contains("?"))

  158.                     {

  159.                         url += "&appkey=" + DESEncrypt.Encrypt(code, "bjqjsso");

  160.                     }

  161.                     else

  162.                     {

  163.                         url += "?appkey=" + DESEncrypt.Encrypt(code, "bjqjsso");

  164.                     }

  165.                     return Success(new{ FInterfaceUrl=url });

  166.                 }

  167.                 else

  168.                     return Fail("appid解析失败,请确认。");

  169.             }

  170.             else

  171.             {

  172.                 return Fail("用户信息解析失败,请确认。");

  173.             }

  174.         }

  175. 

  176.         public Response GoTo(dynamic _)

  177.         {

  178.             try

  179.             {

  180.                 var ssoparam = this.GetReqData<SSOParam>();

  181.                 string publickey = ConfigurationManager.AppSettings["SSOPublicSecret"];

  182.                 string sysid = ssoparam.sysid;

  183.                 string strsysid = DESEncrypt.Decrypt(sysid, publickey);

  184.                 string openid = ssoparam.openid;

  185.                 string userid = DESEncrypt.Decrypt(openid, publickey);

  186.                 var uplist = permUserPermissionIbll.GetPerm_UserPermissionEntityByFIdAndUid(strsysid, userid);

  187.                 Perm_FunctionVisitEntity functionVisitEntity = new Perm_FunctionVisitEntity();

  188.                 functionVisitEntity.Create();

  189.                 functionVisitEntity.Fid = strsysid;

  190.                 functionVisitEntity.PDate = DateTime.Now;

  191.                 functionVisitEntity.PUId = userid;

  192.                 var userinfo = userInfo;

  193.                 functionVisitEntity.PUName = userinfo.realName;

  194.                 if (uplist == null)

  195.                 {

  196.                     functionVisitEntity.PIsLoginSuccess = false;

  197.                     functionVisitEntity.PContent = "用户未授权";

  198.                     functionVisitIbll.SaveEntity(null, functionVisitEntity);

  199.                     return Fail("用户未授权。");

  200.                 }

  201. 

  202.                 var perfun = perm_FunctionIBLL.GetPerm_FunctionEntityByUPId(uplist.UPId);

  203.                 string secretkey = DESEncrypt.Decrypt(perfun.FSecret, publickey);

  204.                 if (perfun.FIsManagePage == true)

  205.                 {

  206.                     if (!string.IsNullOrEmpty(perfun.FInterfaceUrl))

  207.                     {

  208.                         if (!string.IsNullOrEmpty(perfun.UPUserName) && !string.IsNullOrEmpty(perfun.UPPass))

  209.                         {

  210.                             functionVisitEntity.PIsLoginSuccess = true;

  211.                             functionVisitEntity.PContent = "成功转到统一认证网站:" + perfun.FUrl;

  212.                             functionVisitIbll.SaveEntity(null, functionVisitEntity);

  213.                             return Success(new

  214.                             {

  215.                                 FInterfaceUrl = perfun.FInterfaceUrl + "?u=" +

  216.                                             DESEncrypt.Encrypt(DESEncrypt.Encrypt(perfun.UPUserName, secretkey),

  217.                                                 publickey) + "&p=" +

  218.                                             DESEncrypt.Encrypt(DESEncrypt.Encrypt(perfun.UPPass, secretkey),

  219.                                                 publickey) + "&t=" +

  220.                                             DESEncrypt.Encrypt(

  221.                                                 DESEncrypt.Encrypt(DateTime.Now.ToString("yyyyMMddHHmmss"), secretkey),

  222.                                                 publickey) + "&ip=" +

  223.                                             DESEncrypt.Encrypt(DESEncrypt.Encrypt(GetIP(), secretkey), publickey)

  224.                             });

  225.                         }

  226.                         else

  227.                         {

  228.                             functionVisitEntity.PIsLoginSuccess = false;

  229.                             functionVisitEntity.PContent = "用户未配置转到用户名密码配置页面";

  230.                             functionVisitIbll.SaveEntity(null, functionVisitEntity);

  231.                             //用户未配置转到用户名密码配置页面

  232.                             return Success(new { FInterfaceUrl = "/SSO/FirstLogin?sysid=" + sysid + "&openid=" + openid });

  233.                         }

  234.                     }

  235.                     else

  236.                     {

  237.                         functionVisitEntity.PIsLoginSuccess = false;

  238.                         functionVisitEntity.PContent = "未配置登录接口地址";

  239.                         functionVisitIbll.SaveEntity(null, functionVisitEntity);

  240.                         return Fail("未配置登录接口地址。");

  241.                     }

  242.                 }

  243.                 else

  244.                 {

  245.                     if (!string.IsNullOrEmpty(perfun.FUrl))

  246.                     {

  247.                         functionVisitEntity.PIsLoginSuccess = true;

  248.                         functionVisitEntity.PContent = "成功转到统一认证网站:" + perfun.FUrl;

  249.                         functionVisitIbll.SaveEntity(null, functionVisitEntity);

  250.                         return Success(new { FInterfaceUrl = perfun.FUrl });

  251.                     }

  252.                     else

  253.                     {

  254.                         functionVisitEntity.PIsLoginSuccess = false;

  255.                         functionVisitEntity.PContent = "未配置地址";

  256.                         functionVisitIbll.SaveEntity(null, functionVisitEntity);

  257.                         return Fail("未配置地址。");

  258.                     }

  259.                 }

  260.             }

  261.             catch (Exception e)

  262.             {

  263.                 return Fail("参数错误。");

  264.             }

  265.         }

  266. 

  267.         public Response GetList20(dynamic _)

  268.         {

  269.             var userinfo = userInfo;

  270.             var functionlist = perm_FunctionIBLL.GetListByUserId(userinfo.userId).Where(m=>m.FIsH5==true).Select(m=>

  271.             new

  272.             {

  273.                 m.FName,

  274.                 m.FId,

  275.             });

  276.             return Success(functionlist);

  277.         }

  278. 

  279. 

  280.         /// <summary> 

  281.         /// 获取页面显示列表数据 

  282.         /// <summary> 

  283.         /// <param name="_"></param> 

  284.         /// <returns></returns> 

  285.         public Response GetList(dynamic _)

  286.         {

  287.             string publickey = ConfigurationManager.AppSettings["SSOPublicSecret"];

  288.             var logininfo = userInfo;

  289.             var datatype = perm_FunctionTypeIBLL.GetListByUserId(userInfo.userId);

  290.             foreach (var typeEntity in datatype)

  291.             {

  292.                 var datafunction = perm_FunctionIBLL.GetListByFTId(typeEntity.FTId, userInfo.userId).Where(m=>m.FIsH5==true);

  293.                 foreach (var item in datafunction)

  294.                 {

  295.                     if (item.FIsManagePage == true)

  296.                     {

  297.                         item.FInterfaceUrl = "/SSO/GoTo?sysid=" + DESEncrypt.Encrypt(item.FId, publickey) + "&openid=" + DESEncrypt.Encrypt(logininfo.userId, publickey);

  298.                     }

  299.                     else

  300.                     {

  301.                         item.FInterfaceUrl = item.FUrl;

  302.                     }

  303.                     item.FUrl = null;

  304.                 }

  305.                 typeEntity.PermFunction = datafunction.ToList();

  306.             }

  307.             return Success(datatype);

  308.         }

  309.         /// <summary>

  310.         /// 获取IP

  311.         /// </summary>

  312.         /// <returns></returns>

  313.         private string GetIP()

  314.         {

  315.             string ip = string.Empty;

  316.             if (!string.IsNullOrEmpty(System.Web.HttpContext.Current.Request.ServerVariables["HTTP_VIA"]))

  317.                 ip = Convert.ToString(System.Web.HttpContext.Current.Request.ServerVariables["HTTP_X_FORWARDED_FOR"]);

  318.             if (string.IsNullOrEmpty(ip))

  319.                 ip = Convert.ToString(System.Web.HttpContext.Current.Request.ServerVariables["REMOTE_ADDR"]);

  320.             return ip;

  321.         }

  322.     }

  323. 

  324. 

  325. }