You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
172 lines
6.5 KiB
172 lines
6.5 KiB
5 months ago
|
// 大名科技(天津)有限公司版权所有 电话:18020030720 QQ:515096995
|
||
|
//
|
||
|
// 此源代码遵循位于源代码树根目录中的 LICENSE 文件的许可证
|
||
|
|
||
|
using System.Security.Claims;
|
||
|
|
||
|
namespace Admin.NET.Core.Service;
|
||
|
|
||
|
/// <summary>
|
||
|
/// 开放接口身份服务
|
||
|
/// </summary>
|
||
|
[ApiDescriptionSettings(Order = 244)]
|
||
|
public class SysOpenAccessService : IDynamicApiController, ITransient
|
||
|
{
|
||
|
private readonly SqlSugarRepository<SysOpenAccess> _sysOpenAccessRep;
|
||
|
private readonly SysCacheService _sysCacheService;
|
||
|
|
||
|
/// <summary>
|
||
|
/// 开放接口身份服务构造函数
|
||
|
/// </summary>
|
||
|
public SysOpenAccessService(SqlSugarRepository<SysOpenAccess> sysOpenAccessRep,
|
||
|
SysCacheService sysCacheService)
|
||
|
{
|
||
|
_sysOpenAccessRep = sysOpenAccessRep;
|
||
|
_sysCacheService = sysCacheService;
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 获取开放接口身份分页列表
|
||
|
/// </summary>
|
||
|
/// <param name="input"></param>
|
||
|
/// <returns></returns>
|
||
|
[DisplayName("获取开放接口身份分页列表")]
|
||
|
public async Task<SqlSugarPagedList<OpenAccessOutput>> Page(OpenAccessInput input)
|
||
|
{
|
||
|
return await _sysOpenAccessRep.AsQueryable()
|
||
|
.LeftJoin<SysUser>((u, a) => u.BindUserId == a.Id)
|
||
|
.LeftJoin<SysTenant>((u, a, b) => u.BindTenantId == b.Id)
|
||
|
.LeftJoin<SysOrg>((u, a, b, c) => b.OrgId == c.Id)
|
||
|
.WhereIF(!string.IsNullOrWhiteSpace(input.AccessKey?.Trim()), (u, a, b, c) => u.AccessKey.Contains(input.AccessKey))
|
||
|
.Select((u, a, b, c) => new OpenAccessOutput
|
||
|
{
|
||
|
BindUserAccount = a.Account,
|
||
|
BindTenantName = c.Name,
|
||
|
}, true)
|
||
|
.ToPagedListAsync(input.Page, input.PageSize);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 增加开放接口身份
|
||
|
/// </summary>
|
||
|
/// <param name="input"></param>
|
||
|
/// <returns></returns>
|
||
|
[ApiDescriptionSettings(Name = "Add"), HttpPost]
|
||
|
[DisplayName("增加开放接口身份")]
|
||
|
public async Task AddOpenAccess(AddOpenAccessInput input)
|
||
|
{
|
||
|
if (await _sysOpenAccessRep.AsQueryable().AnyAsync(u => u.AccessKey == input.AccessKey && u.Id != input.Id))
|
||
|
throw Oops.Oh(ErrorCodeEnum.O1000);
|
||
|
|
||
|
var openAccess = input.Adapt<SysOpenAccess>();
|
||
|
await _sysOpenAccessRep.InsertAsync(openAccess);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 更新开放接口身份
|
||
|
/// </summary>
|
||
|
/// <param name="input"></param>
|
||
|
/// <returns></returns>
|
||
|
[ApiDescriptionSettings(Name = "Update"), HttpPost]
|
||
|
[DisplayName("更新开放接口身份")]
|
||
|
public async Task UpdateOpenAccess(UpdateOpenAccessInput input)
|
||
|
{
|
||
|
if (await _sysOpenAccessRep.AsQueryable().AnyAsync(u => u.AccessKey == input.AccessKey && u.Id != input.Id))
|
||
|
throw Oops.Oh(ErrorCodeEnum.O1000);
|
||
|
|
||
|
var openAccess = input.Adapt<SysOpenAccess>();
|
||
|
_sysCacheService.Remove(CacheConst.KeyOpenAccess + openAccess.AccessKey);
|
||
|
|
||
|
await _sysOpenAccessRep.UpdateAsync(openAccess);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 删除开放接口身份
|
||
|
/// </summary>
|
||
|
/// <param name="input"></param>
|
||
|
/// <returns></returns>
|
||
|
[ApiDescriptionSettings(Name = "Delete"), HttpPost]
|
||
|
[DisplayName("删除开放接口身份")]
|
||
|
public async Task DeleteOpenAccess(DeleteOpenAccessInput input)
|
||
|
{
|
||
|
var openAccess = await _sysOpenAccessRep.GetFirstAsync(u => u.Id == input.Id);
|
||
|
if (openAccess != null)
|
||
|
_sysCacheService.Remove(CacheConst.KeyOpenAccess + openAccess.AccessKey);
|
||
|
|
||
|
await _sysOpenAccessRep.DeleteAsync(u => u.Id == input.Id);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 创建密钥
|
||
|
/// </summary>
|
||
|
/// <returns></returns>
|
||
|
[DisplayName("创建密钥")]
|
||
|
public Task<string> CreateSecret()
|
||
|
{
|
||
|
return Task.FromResult(Convert.ToBase64String(Guid.NewGuid().ToByteArray())[..^2]);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// 根据 Key 获取对象
|
||
|
/// </summary>
|
||
|
/// <param name="accessKey"></param>
|
||
|
/// <returns></returns>
|
||
|
[NonAction]
|
||
|
public Task<SysOpenAccess> GetByKey(string accessKey)
|
||
|
{
|
||
|
return Task.FromResult(
|
||
|
_sysCacheService.GetOrAdd(CacheConst.KeyOpenAccess + accessKey, _ =>
|
||
|
{
|
||
|
return _sysOpenAccessRep.AsQueryable()
|
||
|
.Includes(u => u.BindUser)
|
||
|
.Includes(u => u.BindUser, p => p.SysOrg)
|
||
|
.First(u => u.AccessKey == accessKey);
|
||
|
})
|
||
|
);
|
||
|
}
|
||
|
|
||
|
/// <summary>
|
||
|
/// Signature 身份验证事件默认实现
|
||
|
/// </summary>
|
||
|
[NonAction]
|
||
|
public static SignatureAuthenticationEvent GetSignatureAuthenticationEventImpl()
|
||
|
{
|
||
|
return new SignatureAuthenticationEvent
|
||
|
{
|
||
|
OnGetAccessSecret = context =>
|
||
|
{
|
||
|
var logger = context.HttpContext.RequestServices.GetService<ILogger<SysOpenAccessService>>();
|
||
|
try
|
||
|
{
|
||
|
var openAccessService = context.HttpContext.RequestServices.GetService<SysOpenAccessService>();
|
||
|
var openAccess = openAccessService.GetByKey(context.AccessKey).GetAwaiter().GetResult();
|
||
|
return Task.FromResult(openAccess == null ? "" : openAccess.AccessSecret);
|
||
|
}
|
||
|
catch (Exception ex)
|
||
|
{
|
||
|
logger.LogError(ex, ex.Message);
|
||
|
return Task.FromResult("");
|
||
|
}
|
||
|
},
|
||
|
OnValidated = context =>
|
||
|
{
|
||
|
var openAccessService = context.HttpContext.RequestServices.GetService<SysOpenAccessService>();
|
||
|
var openAccess = openAccessService.GetByKey(context.AccessKey).GetAwaiter().GetResult();
|
||
|
var identity = ((ClaimsIdentity)context.Principal!.Identity!);
|
||
|
|
||
|
identity.AddClaims(new[]
|
||
|
{
|
||
|
new Claim(ClaimConst.UserId, openAccess.BindUserId + ""),
|
||
|
new Claim(ClaimConst.TenantId, openAccess.BindTenantId + ""),
|
||
|
new Claim(ClaimConst.Account, openAccess.BindUser.Account + ""),
|
||
|
new Claim(ClaimConst.RealName, openAccess.BindUser.RealName),
|
||
|
new Claim(ClaimConst.AccountType, ((int)openAccess.BindUser.AccountType).ToString()),
|
||
|
new Claim(ClaimConst.OrgId, openAccess.BindUser.OrgId + ""),
|
||
|
new Claim(ClaimConst.OrgName, openAccess.BindUser.SysOrg?.Name + ""),
|
||
|
new Claim(ClaimConst.OrgType, openAccess.BindUser.SysOrg?.Type + ""),
|
||
|
});
|
||
|
return Task.CompletedTask;
|
||
|
}
|
||
|
};
|
||
|
}
|
||
|
}
|