物业系统支持单点登录功能

service-api/src/main/java/com/java110/api/configuration/ServiceConfiguration.java

@@ -105,6 +105,9 @@ public class ServiceConfiguration {
         exclusions.append("/app/equipments/*,");// 叮叮充电桩通知放开
         exclusions.append("/app/charge/*,");// 通用充电桩通知放开
         exclusions.append("/app/login.pcUserLogin,");// 放开接口登录
+        exclusions.append("/app/login.accessTokenLogin,");// 放开接口登录
+        exclusions.append("/app/login.getAccessToken,");// 放开接口登录
+
 
         exclusions.append("/app/reportInfoAnswer/queryReportInfoAnswerByOpenId");
 

service-api/src/main/java/com/java110/api/controller/app/AppController.java

@@ -94,6 +94,8 @@ public class AppController extends BaseController {
             IPageData pd = (IPageData) request.getAttribute(CommonConstant.CONTEXT_PAGE_DATA);
             privilegeSMOImpl.hasPrivilege(restTemplate, pd, "/app/" + service);
             responseEntity = apiSMOImpl.doApi(postInfo, headers,request);
+            //todo 写入 token
+            wirteToken(request,pd,service,responseEntity);
         } catch (Throwable e) {
             logger.error("请求post 方法[" + service + "]失败：" + postInfo, e);
             responseEntity = ResultVo.error("请求发生异常，" + e.getMessage(),HttpStatus.INTERNAL_SERVER_ERROR);
@@ -103,6 +105,40 @@ public class AppController extends BaseController {
         return responseEntity;
     }
 
+    /**
+     * 写入 token
+     * @param request
+     * @param pd
+     * @param service
+     * @param responseEntity
+     */
+    private void wirteToken(HttpServletRequest request, IPageData pd, String service, ResponseEntity<String> responseEntity) {
+        String[] services = new String[]{
+                "login.accessTokenLogin"
+        };
+
+        if(responseEntity.getStatusCode() != HttpStatus.OK){
+            return;
+        }
+        boolean flag = false;
+        for(String tmpService : services){
+            if(tmpService.equals(service)){
+                flag =true;
+            }
+        }
+
+        if(!flag){
+            return;
+        }
+
+        JSONObject paramOut = JSONObject.parseObject(responseEntity.getBody());
+        if(!"0".equals(paramOut.getString("code"))){
+            return;
+        }
+        String token = paramOut.getJSONObject("data").getString("token");
+        pd.setToken(token);
+    }
+
     /**
      * 资源请求 get方式
      *
@@ -203,7 +239,7 @@ public class AppController extends BaseController {
             IPageData pd = (IPageData) request.getAttribute(CommonConstant.CONTEXT_PAGE_DATA);
             privilegeSMOImpl.hasPrivilege(restTemplate, pd, "/app/" + resource + "/" + action);
             responseEntity = apiSMOImpl.doApi(postInfo, headers, request);
-            //responseEntity = apiServiceSMOImpl.service(JSONObject.toJSONString(getParameterStringMap(request)), headers);
+
         } catch (Throwable e) {
             logger.error("请求post 方法[" + action + "]失败：" + postInfo, e);
             responseEntity = ResultVo.error("请求发生异常，" + e.getMessage(),HttpStatus.INTERNAL_SERVER_ERROR);

service-user/src/main/java/com/java110/user/cmd/login/AccessTokenLoginCmd.java

@@ -0,0 +1,177 @@
+package com.java110.user.cmd.login;
+
+
+import com.alibaba.fastjson.JSONObject;
+import com.java110.core.annotation.Java110Cmd;
+import com.java110.core.context.ICmdDataFlowContext;
+import com.java110.core.event.cmd.Cmd;
+import com.java110.core.event.cmd.CmdEvent;
+import com.java110.core.factory.AuthenticationFactory;
+import com.java110.core.factory.GenerateCodeFactory;
+import com.java110.core.log.LoggerFactory;
+import com.java110.doc.annotation.*;
+import com.java110.dto.store.StoreUserDto;
+import com.java110.dto.user.UserDto;
+import com.java110.dto.userLogin.UserLoginDto;
+import com.java110.intf.store.IStoreInnerServiceSMO;
+import com.java110.intf.user.IUserInnerServiceSMO;
+import com.java110.intf.user.IUserLoginInnerServiceSMO;
+import com.java110.po.userLogin.UserLoginPo;
+import com.java110.utils.cache.CommonCache;
+import com.java110.utils.cache.MappingCache;
+import com.java110.utils.constant.CommonConstant;
+import com.java110.utils.constant.MappingConstant;
+import com.java110.utils.constant.ResponseConstant;
+import com.java110.utils.exception.CmdException;
+import com.java110.utils.exception.SMOException;
+import com.java110.utils.util.*;
+import org.slf4j.Logger;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+
+import java.io.IOException;
+import java.text.ParseException;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+
+@Java110CmdDoc(title = "单点登录accessToken自登陆（自用）",
+        description = "1、通过接口/app/login.getAccessToken 获取到accessToken,<br/>" +
+                "2、三方系统通过302 跳转的方式调转到物业系统 http://wuye.xx.com/sso.html?hcAccessToken={accessToken}&targetUrl=您要跳转的页面<br/>" +
+                "3、物业系统即可完成自登陆功能<br/> " ,
+        httpMethod = "post",
+        url = "http://{ip}:{port}/app/login.accessTokenLogin",
+        resource = "userDoc",
+        author = "吴学文",
+        serviceCode = "login.accessTokenLogin",
+        seq = 1
+)
+
+@Java110ParamsDoc(
+        headers = {
+                @Java110HeaderDoc(name="APP-ID",defaultValue = "通过dev账户分配应用",description = "应用APP-ID"),
+                @Java110HeaderDoc(name="TRANSACTION-ID",defaultValue = "uuid",description = "交易流水号"),
+                @Java110HeaderDoc(name="REQ-TIME",defaultValue = "20220917120915",description = "请求时间 YYYYMMDDhhmmss"),
+                @Java110HeaderDoc(name="JAVA110-LANG",defaultValue = "zh-cn",description = "语言中文"),
+                @Java110HeaderDoc(name="USER-ID",defaultValue = "-1",description = "调用用户ID 一般写-1"),
+        },
+        params = {
+                @Java110ParamDoc(name = "hcAccessToken", length = 30, remark = "token 通过服务端调用 接口方式获取到"),
+        })
+
+@Java110ResponseDoc(
+        params = {
+                @Java110ParamDoc(name = "code", type = "int", length = 11, defaultValue = "0", remark = "返回编号，0 成功 其他失败"),
+                @Java110ParamDoc(name = "msg", type = "String", length = 250, defaultValue = "成功", remark = "描述"),
+                @Java110ParamDoc(name = "data", type = "Object", remark = "有效数据"),
+                @Java110ParamDoc(parentNodeName = "data",name = "userId", type = "String", remark = "用户ID"),
+                @Java110ParamDoc(parentNodeName = "data",name = "token", type = "String", remark = "临时票据"),
+        }
+)
+
+@Java110ExampleDoc(
+        reqBody="{'hcAccessToken':'112sdfsdfsdfsdfsdf'}",
+        resBody="{'code':0,'msg':'成功','data':{'userId':'123123','token':'123213'}}"
+)
+
+@Java110Cmd(serviceCode = "login.accessTokenLogin")
+public class AccessTokenLoginCmd extends Cmd {
+    private final static Logger logger = LoggerFactory.getLogger(AccessTokenLoginCmd.class);
+
+    @Autowired
+    private IUserLoginInnerServiceSMO userLoginInnerServiceSMOImpl;
+
+    @Autowired
+    private IStoreInnerServiceSMO storeInnerServiceSMOImpl;
+
+    @Autowired
+    private IUserInnerServiceSMO userInnerServiceSMOImpl;
+
+    @Override
+    public void validate(CmdEvent event, ICmdDataFlowContext context, JSONObject reqJson) throws CmdException, ParseException {
+
+        Assert.hasKeyAndValue(reqJson, "hcAccessToken", "未包含token信息");
+
+        // 判断系统是否开启了 单点登录的功能
+        String ssoSwitch = MappingCache.getValue(MappingConstant.DOMAIN_SYSTEM_SWITCH, "SSO_SWITCH");
+
+        if (!"ON".equals(ssoSwitch)) {
+            throw new CmdException("系统未开启单点登录功能请联系开发者");
+        }
+
+    }
+
+    @Override
+    public void doCmd(CmdEvent event, ICmdDataFlowContext context, JSONObject reqJson) throws CmdException, ParseException {
+        UserDto userDto = null;
+
+        ResponseEntity<String> responseEntity = null;
+        // todo 尝试根据 token 去缓存中获取
+
+        String userInfo = CommonCache.getAndRemoveValue(reqJson.getString("hcAccessToken") + "_sso");
+        if (!StringUtil.isEmpty(userInfo)) {
+            JSONObject userJson = JSONObject.parseObject(userInfo);
+            userDto = BeanConvertUtil.covertBean(userJson, UserDto.class);
+        }
+
+        //todo 尝试 解码token 拿到用户名密码 登录
+        // 这部分逻辑建议 删除，这个是某客户 对方厂商偷懒直接 浏览器跳转带 用户名密码登录的方式，不安全
+        if (userDto == null) {
+            try {
+                userInfo = new String(Base64Convert.base64ToByte(reqJson.getString("hcAccessToken")), "UTF-8");
+                JSONObject userJson = JSONObject.parseObject(userInfo);
+                userDto = new UserDto();
+                userDto.setTel(userJson.getString("tel"));
+                userDto.setPassword(AuthenticationFactory.passwdMd5(userJson.getString("passwd")));
+                userDto.setLevelCds(new String[]{UserDto.LEVEL_CD_ADMIN, UserDto.LEVEL_CD_STAFF});
+                List<UserDto> userDtos = userInnerServiceSMOImpl.getUsers(userDto);
+
+                Assert.listOnlyOne(userDtos, "用户不存在");
+                userDto = userDtos.get(0);
+            } catch (IOException e) {
+                throw new CmdException("登录失败");
+            }
+        }
+        // todo 到这里
+
+        //检查商户状态
+        StoreUserDto storeUserDto = new StoreUserDto();
+        storeUserDto.setUserId(userDto.getUserId());
+        List<StoreUserDto> storeUserDtos = storeInnerServiceSMOImpl.getStoreUserInfo(storeUserDto);
+
+        if (storeUserDtos != null && storeUserDtos.size() > 0) {
+            String state = storeUserDtos.get(0).getState();
+            if ("48002".equals(state)) {
+                responseEntity = new ResponseEntity<String>("当前商户限制登录，请联系管理员", HttpStatus.UNAUTHORIZED);
+                context.setResponseEntity(responseEntity);
+                return;
+            }
+        }
+        try {
+            Map userMap = new HashMap();
+            userMap.put(CommonConstant.LOGIN_USER_ID, userDto.getUserId());
+            userMap.put(CommonConstant.LOGIN_USER_NAME, userDto.getUserName());
+            String token = AuthenticationFactory.createAndSaveToken(userMap);
+            JSONObject user = BeanConvertUtil.beanCovertJson(userDto);
+            user.remove("userPwd");
+            user.put("token", token);
+            //记录登录日志
+            UserLoginPo userLoginPo = new UserLoginPo();
+            userLoginPo.setLoginId(GenerateCodeFactory.getGeneratorId(GenerateCodeFactory.CODE_PREFIX_loginId));
+            userLoginPo.setLoginTime(DateUtil.getNow(DateUtil.DATE_FORMATE_STRING_A));
+            userLoginPo.setPassword(userDto.getPassword());
+            userLoginPo.setSource(UserLoginDto.SOURCE_WEB);
+            userLoginPo.setToken(token);
+            userLoginPo.setUserId(userDto.getUserId());
+            userLoginPo.setUserName(userDto.getUserName());
+            userLoginInnerServiceSMOImpl.saveUserLogin(userLoginPo);
+            responseEntity = new ResponseEntity<String>(user.toJSONString(), HttpStatus.OK);
+            context.setResponseEntity(responseEntity);
+        } catch (Exception e) {
+            logger.error("登录异常：", e);
+            throw new SMOException(ResponseConstant.RESULT_CODE_INNER_ERROR, "系统内部错误，请联系管理员");
+        }
+    }
+}

service-user/src/main/java/com/java110/user/cmd/login/GetAccessTokenCmd.java

@@ -0,0 +1,142 @@
+package com.java110.user.cmd.login;
+
+
+import com.alibaba.fastjson.JSONObject;
+import com.java110.core.annotation.Java110Cmd;
+import com.java110.core.context.ICmdDataFlowContext;
+import com.java110.core.event.cmd.Cmd;
+import com.java110.core.event.cmd.CmdEvent;
+import com.java110.core.factory.AuthenticationFactory;
+import com.java110.core.factory.GenerateCodeFactory;
+import com.java110.core.log.LoggerFactory;
+import com.java110.doc.annotation.*;
+import com.java110.dto.store.StoreUserDto;
+import com.java110.dto.user.UserDto;
+import com.java110.dto.userLogin.UserLoginDto;
+import com.java110.intf.store.IStoreInnerServiceSMO;
+import com.java110.intf.user.IUserInnerServiceSMO;
+import com.java110.intf.user.IUserLoginInnerServiceSMO;
+import com.java110.po.userLogin.UserLoginPo;
+import com.java110.utils.cache.CommonCache;
+import com.java110.utils.cache.MappingCache;
+import com.java110.utils.constant.CommonConstant;
+import com.java110.utils.constant.MappingConstant;
+import com.java110.utils.constant.ResponseConstant;
+import com.java110.utils.exception.CmdException;
+import com.java110.utils.exception.SMOException;
+import com.java110.utils.util.*;
+import com.java110.vo.ResultVo;
+import org.slf4j.Logger;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+
+import java.io.IOException;
+import java.text.ParseException;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+
+@Java110CmdDoc(title = "单点登录获取accessToken",
+        description = "主要用于其他系统单点登录到物业系统,<br/>" +
+                "1、三方系统通过物业员工的 手机号 和 员工的密码 通过此接口获取accessToken,注意默认有效期为5分钟，<br/>" +
+                "2、三方系统通过302 跳转的方式调转到物业系统 http://wuye.xx.com/sso.html?hcAccessToken={accessToken}&targetUrl=您要跳转的页面<br/> " +
+                "3、物业系统即可完成自登陆功能</br>",
+        httpMethod = "post",
+        url = "http://{ip}:{port}/app/login.getAccessToken",
+        resource = "userDoc",
+        author = "吴学文",
+        serviceCode = "login.getAccessToken",
+        seq = 1
+)
+
+@Java110ParamsDoc(
+        headers = {
+                @Java110HeaderDoc(name = "APP-ID", defaultValue = "通过dev账户分配应用", description = "应用APP-ID"),
+                @Java110HeaderDoc(name = "TRANSACTION-ID", defaultValue = "uuid", description = "交易流水号"),
+                @Java110HeaderDoc(name = "REQ-TIME", defaultValue = "20220917120915", description = "请求时间 YYYYMMDDhhmmss"),
+                @Java110HeaderDoc(name = "JAVA110-LANG", defaultValue = "zh-cn", description = "语言中文"),
+                @Java110HeaderDoc(name = "USER-ID", defaultValue = "-1", description = "调用用户ID 一般写-1"),
+        },
+        params = {
+                @Java110ParamDoc(name = "tel", length = 30, remark = "用户名，物业系统分配"),
+                @Java110ParamDoc(name = "passwd", length = 30, remark = "密码，物业系统分配"),        })
+
+@Java110ResponseDoc(
+        params = {
+                @Java110ParamDoc(name = "code", type = "int", length = 11, defaultValue = "0", remark = "返回编号，0 成功 其他失败"),
+                @Java110ParamDoc(name = "msg", type = "String", length = 250, defaultValue = "成功", remark = "描述"),
+                @Java110ParamDoc(name = "data", type = "Object", remark = "有效数据"),
+                @Java110ParamDoc(parentNodeName = "data", name = "accessToken", type = "String", remark = "临时票据"),
+                @Java110ParamDoc(parentNodeName = "data", name = "expiresIn", type = "String", remark = "票据过期时间单位秒"),
+        }
+)
+
+@Java110ExampleDoc(
+        reqBody = "{'username':'wuxw','passwd':'admin'}",
+        resBody = "{'code':0,'msg':'成功','data':{'accessToken':'ssss333333','expiresIn':'300'}}"
+)
+
+@Java110Cmd(serviceCode = "login.getAccessToken")
+public class GetAccessTokenCmd extends Cmd {
+    private final static Logger logger = LoggerFactory.getLogger(GetAccessTokenCmd.class);
+
+    @Autowired
+    private IUserLoginInnerServiceSMO userLoginInnerServiceSMOImpl;
+
+    @Autowired
+    private IStoreInnerServiceSMO storeInnerServiceSMOImpl;
+
+    @Autowired
+    private IUserInnerServiceSMO userInnerServiceSMOImpl;
+
+    @Override
+    public void validate(CmdEvent event, ICmdDataFlowContext context, JSONObject reqJson) throws CmdException, ParseException {
+
+        Assert.jsonObjectHaveKey(reqJson, "tel", "用户登录，未包含username节点，请检查" + reqJson);
+        Assert.jsonObjectHaveKey(reqJson, "passwd", "用户登录，未包含passwd节点，请检查" + reqJson);
+
+        // 判断系统是否开启了 单点登录的功能
+        String ssoSwitch = MappingCache.getValue(MappingConstant.DOMAIN_SYSTEM_SWITCH, "SSO_SWITCH");
+
+        if (!"ON".equals(ssoSwitch)) {
+            throw new CmdException("系统未开启单点登录功能请联系开发者");
+        }
+
+    }
+
+    @Override
+    public void doCmd(CmdEvent event, ICmdDataFlowContext context, JSONObject reqJson) throws CmdException, ParseException {
+        //根据AppId 查询 是否有登录的服务，查询登录地址调用
+        UserDto userDto = new UserDto();
+        userDto.setTel(reqJson.getString("tel"));
+        userDto.setPassword(reqJson.getString("passwd"));
+        userDto.setLevelCds(new String[]{UserDto.LEVEL_CD_ADMIN, UserDto.LEVEL_CD_STAFF});
+        List<UserDto> userDtos = userInnerServiceSMOImpl.getUsers(userDto);
+
+        if (userDtos == null || userDtos.size() < 1) {
+            throw new CmdException("用户名密码错误");
+        }
+
+        //检查商户状态
+        StoreUserDto storeUserDto = new StoreUserDto();
+        storeUserDto.setUserId(userDtos.get(0).getUserId());
+        List<StoreUserDto> storeUserDtos = storeInnerServiceSMOImpl.getStoreUserInfo(storeUserDto);
+
+        if (storeUserDtos != null && storeUserDtos.size() > 0) {
+            String state = storeUserDtos.get(0).getState();
+            if ("48002".equals(state)) {
+                throw new CmdException("当前商户限制登录，请联系管理员");
+            }
+        }
+        String userInfo = JSONObject.toJSONString(userDtos.get(0));
+        String accessToken  = GenerateCodeFactory.getUUID();
+        CommonCache.setValue(accessToken + "_sso",userInfo,CommonCache.defaultExpireTime);
+
+        JSONObject data = new JSONObject();
+        data.put("accessToken",accessToken);
+        data.put("expiresIn",CommonCache.defaultExpireTime);
+        context.setResponseEntity(ResultVo.createResponseEntity(data));
+    }
+}

springboot/src/main/java/com/java110/boot/configuration/ServiceConfiguration.java

@@ -104,8 +104,8 @@ public class ServiceConfiguration {
         exclusions.append("/app/equipments/*,");// 叮叮充电桩通知放开
         exclusions.append("/app/charge/*,");// 通用充电桩通知放开
         exclusions.append("/app/login.pcUserLogin,");// 放开接口登录
-
-
+        exclusions.append("/app/login.accessTokenLogin,");// 放开接口登录
+        exclusions.append("/app/login.getAccessToken,");// 放开接口登录
 
         exclusions.append("/app/reportInfoAnswer/queryReportInfoAnswerByOpenId");