package com.iotechn.unimall.admin.api.admin;
|
|
import cn.hutool.crypto.SecureUtil;
|
import com.alibaba.fastjson.JSONObject;
|
import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
|
import com.iotechn.unimall.data.constant.CacheConst;
|
import com.iotechn.unimall.data.domain.AdminDO;
|
import com.iotechn.unimall.data.domain.RoleDO;
|
import com.iotechn.unimall.data.domain.RolePermissionDO;
|
import com.iotechn.unimall.data.dto.AdminDTO;
|
import com.iotechn.unimall.data.dto.UserDTO;
|
import com.iotechn.unimall.data.enums.AdminStatusType;
|
import com.iotechn.unimall.data.enums.RoleStatusType;
|
import com.iotechn.unimall.data.exception.ExceptionDefinition;
|
import com.iotechn.unimall.data.mapper.AdminMapper;
|
import com.iotechn.unimall.data.mapper.RoleMapper;
|
import com.iotechn.unimall.data.mapper.RolePermissionMapper;
|
import com.dobbinsoft.fw.core.Const;
|
import com.dobbinsoft.fw.core.exception.AdminServiceException;
|
import com.dobbinsoft.fw.core.exception.CoreExceptionDefinition;
|
import com.dobbinsoft.fw.core.exception.ServiceException;
|
import com.dobbinsoft.fw.core.exception.ThirdPartServiceException;
|
import com.dobbinsoft.fw.core.util.GeneratorUtil;
|
import com.dobbinsoft.fw.support.annotation.Query;
|
import com.dobbinsoft.fw.support.annotation.QueryCondition;
|
import com.dobbinsoft.fw.support.annotation.enums.Conditions;
|
import com.dobbinsoft.fw.support.component.CacheComponent;
|
import com.dobbinsoft.fw.support.model.Page;
|
import com.dobbinsoft.fw.support.properties.FwAdminNotifyProperties;
|
import com.dobbinsoft.fw.support.properties.FwSystemProperties;
|
import com.dobbinsoft.fw.support.service.BaseService;
|
import com.dobbinsoft.fw.support.sms.SMSClient;
|
import com.dobbinsoft.fw.support.sms.SMSResult;
|
import okhttp3.OkHttpClient;
|
import okhttp3.Request;
|
import org.slf4j.Logger;
|
import org.slf4j.LoggerFactory;
|
import org.springframework.beans.BeanUtils;
|
import org.springframework.beans.factory.annotation.Autowired;
|
import org.springframework.data.redis.core.StringRedisTemplate;
|
import org.springframework.stereotype.Service;
|
import org.springframework.transaction.annotation.Transactional;
|
import org.springframework.util.CollectionUtils;
|
import org.springframework.util.StringUtils;
|
|
import java.io.IOException;
|
import java.net.URLEncoder;
|
import java.util.*;
|
import java.util.concurrent.TimeUnit;
|
import java.util.stream.Collectors;
|
|
/**
|
* Created by rize on 2019/4/8.
|
*/
|
@Service
|
public class AdminServiceImpl extends BaseService<UserDTO, AdminDTO> implements AdminService {
|
|
@Autowired
|
private StringRedisTemplate userRedisTemplate;
|
|
@Autowired
|
private AdminMapper adminMapper;
|
|
@Autowired
|
private RoleMapper roleMapper;
|
|
@Autowired
|
private RolePermissionMapper rolePermissionMapper;
|
|
@Autowired
|
private CacheComponent cacheComponent;
|
|
@Autowired
|
private SMSClient smsClient;
|
|
@Autowired
|
private FwAdminNotifyProperties unimallAdminNotifyProperties;
|
|
@Autowired
|
private FwSystemProperties unimallSystemProperties;
|
|
|
private static final Logger logger = LoggerFactory.getLogger(AdminServiceImpl.class);
|
|
@Override
|
public String login(String username, String password, String verifyCode) throws ServiceException {
|
String accessToken = generateAccessToken();
|
//数据库查管理员
|
List<AdminDO> adminDOS = adminMapper.selectList(
|
new QueryWrapper<AdminDO>()
|
.eq("username", username));
|
if (CollectionUtils.isEmpty(adminDOS)) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_NOT_EXIST);
|
}
|
AdminDO adminDO = adminDOS.get(0);
|
//短信验证码
|
String code = cacheComponent.getRaw(CacheConst.ADMIN_MSG_CODE + adminDO.getPhone());
|
boolean isGuest = "guest".equals(username) && "true".equals(unimallSystemProperties.getGuest());
|
if (!isGuest && (code == null || verifyCode == null || !code.equals(verifyCode))) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_VERIFYCODE_ERROR);
|
}
|
if (!SecureUtil.md5(password + username).equalsIgnoreCase(adminDO.getPassword())) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_PASSWORD_ERROR);
|
}
|
List<Long> ids = JSONObject.parseArray(adminDO.getRoleIds(), Long.class);
|
if (CollectionUtils.isEmpty(ids)) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_ROLE_IS_EMPTY);
|
}
|
List<RoleDO> roleDOList = roleMapper.selectList(
|
new QueryWrapper<RoleDO>()
|
.in("id", ids)
|
.eq("status", RoleStatusType.ACTIVE.getCode()));
|
List<String> roleNames = new LinkedList<>();
|
roleDOList.forEach(item -> {
|
roleNames.add(item.getName());
|
});
|
AdminDTO adminDTO = new AdminDTO();
|
adminDTO.setRoles(roleNames);
|
BeanUtils.copyProperties(adminDO, adminDTO);
|
adminDTO.setRoleIds(JSONObject.parseArray(adminDO.getRoleIds(), Long.class));
|
adminDTO.setPassword(null);
|
List<RolePermissionDO> rolePermissionDOList = rolePermissionMapper.selectList(
|
new QueryWrapper<RolePermissionDO>()
|
.in("role_id", ids)
|
.eq("deleted", 0));
|
List<String> permissionNames = new LinkedList<>();
|
rolePermissionDOList.forEach(item -> {
|
permissionNames.add(item.getPermission());
|
});
|
adminDTO.setPerms(permissionNames);
|
userRedisTemplate.opsForValue().set(Const.ADMIN_REDIS_PREFIX + accessToken, JSONObject.toJSONString(adminDTO), 30, TimeUnit.MINUTES);
|
return accessToken;
|
}
|
|
@Override
|
public String logout(String accessToken, Long adminId) throws ServiceException {
|
userRedisTemplate.delete(Const.ADMIN_REDIS_PREFIX + accessToken);
|
return "ok";
|
}
|
|
@Override
|
public AdminDTO info(Long adminId) throws ServiceException {
|
return sessionUtil.getAdmin();
|
}
|
|
@Query(isAsc = false)
|
@Override
|
public Page<AdminDTO> list(@QueryCondition(condition = Conditions.LIKE) String username, Integer page, Integer limit, Long adminId) throws ServiceException {
|
// QueryWrapper<AdminDO> wrapper = new QueryWrapper<AdminDO>();
|
// if (!StringUtils.isEmpty(name)) {
|
// wrapper.like("username", name);
|
// }
|
// wrapper.orderByDesc("id");
|
// Page<AdminDO> selectPage = adminMapper.selectPage(Page.div(page, limit, AdminDO.class), wrapper);
|
Page<AdminDO> selectPage = adminMapper.selectPage(Page.div(page, limit, AdminDO.class));
|
return selectPage.trans(item -> {
|
AdminDTO adminDTO = new AdminDTO();
|
BeanUtils.copyProperties(item, adminDTO);
|
adminDTO.setRoleIds(JSONObject.parseArray(item.getRoleIds(), Long.class));
|
adminDTO.setPassword(null);
|
return adminDTO;
|
});
|
}
|
|
@Override
|
@Transactional(rollbackFor = Exception.class)
|
public AdminDTO create(AdminDTO adminDTO, String ip, Long adminId) throws ServiceException {
|
AdminDO adminDO = new AdminDO();
|
Integer count = adminMapper.selectCount(
|
new QueryWrapper<AdminDO>()
|
.eq("username", adminDTO.getUsername()));
|
if (count > 0) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_USER_NAME_REPEAT);
|
}
|
BeanUtils.copyProperties(adminDTO, adminDO);
|
adminDO.setPassword(SecureUtil.md5(adminDO.getPassword() + adminDO.getUsername()));
|
adminDO.setRoleIds(JSONObject.toJSONString(adminDTO.getRoleIds()));
|
adminDO.setGmtUpdate(new Date());
|
adminDO.setGmtCreate(adminDO.getGmtUpdate());
|
adminDO.setStatus(AdminStatusType.ACTIVE.getCode());
|
adminDO.setLastLoginIp(ip);
|
adminDO.setGmtLastLogin(new Date());
|
if (adminMapper.insert(adminDO) > 0) {
|
adminDTO.setId(adminDO.getId());
|
return adminDTO;
|
}
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
|
@Override
|
@Transactional(rollbackFor = Exception.class)
|
public String edit(AdminDTO adminDTO, Long adminId) throws ServiceException {
|
Long id = adminDTO.getId();
|
if (id == null) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
AdminDO adminDO = new AdminDO();
|
BeanUtils.copyProperties(adminDTO, adminDO);
|
adminDO.setGmtUpdate(new Date());
|
AdminDO adminDOExist = adminMapper.selectById(id);
|
if (!StringUtils.isEmpty(adminDO.getPassword()) && !StringUtils.isEmpty(adminDOExist.getUsername())) {
|
adminDO.setPassword(SecureUtil.md5(adminDO.getPassword() + adminDOExist.getUsername()));
|
}
|
adminDO.setUsername(null);
|
if (!CollectionUtils.isEmpty(adminDTO.getRoleIds())) {
|
adminDO.setRoleIds(JSONObject.toJSONString(adminDTO.getRoleIds()));
|
}
|
if (adminMapper.updateById(adminDO) > 0) {
|
return "ok";
|
}
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
|
@Override
|
@Transactional(rollbackFor = Exception.class)
|
public String delete(Long id, Long adminId) throws ServiceException {
|
if (adminMapper.deleteById(id) > 0) {
|
return "ok";
|
}
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
|
@Override
|
@Transactional(rollbackFor = Exception.class)
|
public String newPassword(String accessToken, String oldPassword, String newPassword, Long adminId) throws ServiceException {
|
AdminDO adminDOExist = adminMapper.selectById(adminId);
|
if (!SecureUtil.md5(oldPassword + adminDOExist.getUsername()).equals(adminDOExist.getPassword())) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_PASSWORD_ERROR);
|
}
|
AdminDO adminDO = new AdminDO();
|
adminDO.setId(adminId);
|
adminDO.setPassword(SecureUtil.md5(newPassword + adminDOExist.getUsername()));
|
if (adminMapper.updateById(adminDO) > 0) {
|
return "ok";
|
}
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
|
@Override
|
public Boolean sendLoginMsg(String username, String password) throws ServiceException {
|
if ("guest".equals(username)) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_GUEST_NOT_NEED_VERIFY_CODE);
|
}
|
AdminDO admin = adminMapper.selectOne(
|
new QueryWrapper<AdminDO>()
|
.eq("username", username)
|
.eq("password", SecureUtil.md5(password + username)));
|
if (admin == null) {
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_USER_NOT_EXIST);
|
}
|
String code = GeneratorUtil.genSixVerifyCode();
|
cacheComponent.putRaw(CacheConst.ADMIN_MSG_CODE + admin.getPhone(), code, 300);
|
SMSResult smsResult = smsClient.sendAdminLoginVerify(admin.getPhone(), code);
|
if (!smsResult.isSucc()) {
|
throw new ThirdPartServiceException(smsResult.getMsg(), ExceptionDefinition.ADMIN_VERIFY_CODE_SEND_FAIL.getCode());
|
}
|
return true;
|
}
|
|
@Override
|
public String bindUniNotify(Long adminId) throws ServiceException {
|
try {
|
OkHttpClient okHttpClient = new OkHttpClient();
|
TreeSet<String> set = new TreeSet<>();
|
set.add("getRegisterUrl");
|
long timestamp = System.currentTimeMillis();
|
set.add(timestamp + "");
|
set.add("developer");
|
set.add(sessionUtil.getAdmin().getUsername());
|
set.add(this.unimallAdminNotifyProperties.getUniNotifyAppSecret());
|
set.add(this.unimallAdminNotifyProperties.getUniNotifyAppId());
|
String json = okHttpClient
|
.newCall(new Request.Builder()
|
.get()
|
.url(this.unimallAdminNotifyProperties.getUniNotifyUrl() + "?_gp=developer&_mt=getRegisterUrl&userId=" + this.sessionUtil.getAdmin().getUsername()
|
+ "&appId=" + this.unimallAdminNotifyProperties.getUniNotifyAppId() + "×tamp=" + timestamp + "&sign=" + SecureUtil.sha256(URLEncoder.encode(set.stream().collect(Collectors.joining()), "utf-8")))
|
.build()).execute().body().string();
|
JSONObject jsonObject = JSONObject.parseObject(json);
|
Integer errcode = jsonObject.getInteger("errno");
|
if (errcode == 200) {
|
return jsonObject.getString("data");
|
}
|
throw new ThirdPartServiceException(jsonObject.getString("errmsg"), CoreExceptionDefinition.THIRD_PART_SERVICE_EXCEPTION.getCode());
|
} catch (ServiceException e) {
|
throw e;
|
} catch (IOException e) {
|
throw new ThirdPartServiceException(CoreExceptionDefinition.THIRD_PART_IO_EXCEPTION);
|
} catch (Exception e) {
|
logger.error("[绑定通知] 异常", e);
|
throw new AdminServiceException(ExceptionDefinition.ADMIN_UNKNOWN_EXCEPTION);
|
}
|
}
|
|
private String generateAccessToken() {
|
return (UUID.randomUUID().toString().replace("-", ""));
|
}
|
|
|
}
|
