wangpeng
/
integrated_traffic
forked from integrated_whb/integrated_whb
1
0
Fork 0
Code Pull Requests Activity
integrated_traffic/src/main/java/com/zcloud/controller/system/LoginController.java

505 lines
21 KiB
Java
Raw Normal View History

整合home
2024-01-03 09:48:43 +08:00
package com.zcloud.controller.system;
import com.zcloud.controller.base.BaseController;
import com.zcloud.entity.PageData;
import com.zcloud.entity.system.User;
import com.zcloud.logs.LogAnno;
import com.zcloud.service.notice.NoticeService;
import com.zcloud.service.prevention.CorpInfoService;
import com.zcloud.service.prevention.OffDutyService;
import com.zcloud.service.small.CorpStopService;
import com.zcloud.service.small.SmallCorpInfoService;
import com.zcloud.service.system.DepartmentService;
import com.zcloud.service.system.FHlogService;
import com.zcloud.service.system.RoleService;
import com.zcloud.service.system.UsersService;
import net.sf.json.JSONObject;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.*;
import org.apache.shiro.crypto.hash.SimpleHash;
import org.apache.shiro.session.Session;
import org.apache.shiro.subject.Subject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.ResponseBody;
import javax.servlet.http.HttpServletRequest;
import java.util.Date;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
/**
* luoxiaobao www.qdkjchina.com
*/
@Controller
@RequestMapping("/admin")
public class LoginController extends BaseController {
@Autowired
private UsersService usersService;
@Autowired
private RoleService roleService;
@Autowired
private FHlogService FHLOG;
@Autowired
private DepartmentService departmentService;
@Autowired
private CorpInfoService corpinfoService;
@Autowired
private SmallCorpInfoService smallcorpinfoService;
@Autowired
private CorpStopService corpStopService;
@Autowired
private OffDutyService offdutyService;
@Autowired
private NoticeService noticeService;
/**
*
*
* @return
* @throws Exception
*/
@RequestMapping(value = "/check", produces = "application/json;charset=UTF-8")
@ResponseBody
@LogAnno(menuType= "首页",menuServer= "首页",instructionsOperate = "登录",instructionsType = "请求登录验证用户接口")
public Object check() throws Exception {
// 获取IP
HttpServletRequest request = this.getRequest();
String ip = "";
if (request.getHeader("x-forwarded-for") == null) {
ip = request.getRemoteAddr();
} else {
ip = request.getHeader("x-forwarded-for");
}
Boolean isLogin = true; // 当subject.login
// 验证不通过时用于跳过后续操作有时会出现subject.login验证不通过但是subject.isAuthenticated为true的情况
Map<String, Object> map = new HashMap<String, Object>();
// if(!BasicInfoUtil.checkValid()) {
// String errInfo = "invalid";
// map.put("result", errInfo);
// return map;
// }
PageData pd = new PageData();
pd = this.getPageData();
String source = pd.getString("SOURCE");
String errInfo = "success";
String loginData = pd.getString("KEYDATA");
if(loginData.indexOf("zcloudchina")==-1){
loginData = RSAUtils.decryptDataOnJava(loginData, RSAUtils.getPrivateKey());
}
String KEYDATA[] = loginData.replaceAll("zcloudchina", "").split(",zy,");
if (null != KEYDATA && KEYDATA.length == 2) {
String USERNAME = KEYDATA[0]; // 登录过来的用户名
String PASSWORD = KEYDATA[1]; // 登录过来的密码
UsernamePasswordToken token;
if (null != pd.get("isLogin")) {
token = new UsernamePasswordToken(USERNAME, PASSWORD);
} else {
token = new UsernamePasswordToken(USERNAME, new SimpleHash("SHA-1", USERNAME, PASSWORD).toString());
}
Subject subject = SecurityUtils.getSubject();
try {
subject.login(token); // 这一步在调用login(token)方法时,它会走到MyRealm.doGetAuthenticationInfo()方法中
} catch (UnknownAccountException uae) {
errInfo = "usererror";
isLogin = false;
} catch (IncorrectCredentialsException ice) {
errInfo = "usererror";
isLogin = false;
} catch (LockedAccountException lae) {
errInfo = "usererror";
isLogin = false;
} catch (ExcessiveAttemptsException eae) {
errInfo = "usererror";
isLogin = false;
} catch (DisabledAccountException sae) {
errInfo = "usererror";
isLogin = false;
} catch (AuthenticationException ae) {
errInfo = "usererror";
isLogin = false;
}
System.out.println(PASSWORD);
try {
if (subject.isAuthenticated() && isLogin) { // 验证是否登录成功
removeSession(USERNAME);
Session session = Jurisdiction.getSession();
pd.put("USERNAME", USERNAME);
pd = usersService.findByUsername(pd);
PageData cpd = corpinfoService.findById(pd);
if (Tools.notEmpty(pd.getString("CORPINFO_ID"))){
PageData maintainDeactivate = corpinfoService.checkMaintainDeactivate(pd);
if (maintainDeactivate != null) {
errInfo = "maintainDeactivateError";
map.put("result",errInfo);
map.put("msg","企业处于维护停用阶段,暂时无法登录");
return map;
}
}
// System.out.println(Integer.parseInt(cpd.get("TRIALDAY").toString()) );
System.out.println(cpd.get("TRIALDAY"));
if (Integer.parseInt(cpd.get("HAS_LIVE").toString()) >0 || cpd.getString("ISDELIVER").equals("0") ) {
if (cpd.get("TRIALDAY")== null || Integer.parseInt(cpd.get("TRIALDAY").toString()) >= 0 ) {
System.out.println(cpd.get("TRIALDAY"));
System.out.println(cpd.getString("ISSTOP") == null);
System.out.println("1".equals(cpd.getString("ISSTOP")));
System.out.println("0".equals(cpd.getString("ISSTOP")));
System.out.println(cpd.getString("ISSTOP"));
// if (pd != null && pd.get("RIGHTS") != null && Tools.notEmpty(pd.get("RIGHTS").toString())
// && "788664966448".equals(pd.get("RIGHTS").toString())) {
if ("1".equals(cpd.getString("ISSTOP")) || cpd.getString("ISSTOP") == null) {
map.put("USERNAME", USERNAME);
map.put("USER_ID", pd.getString("USER_ID"));
map.put("NAME", pd.getString("NAME"));
map.put("ISMAIN", pd.getString("ISMAIN"));
map.put("IS_SAFETY", pd.get("IS_SAFETY"));
map.put("ISHEAD", pd.getString("ISHEAD"));
map.put("ISLEADER", pd.getString("ISLEADER"));
map.put("DEPARTMENT_ID", pd.getString("DEPARTMENT_ID"));
map.put("CORPINFO_ID", pd.getString("CORPINFO_ID"));
map.put("CORP_NAME", cpd.getString("CORP_NAME"));
map.put("PROVINCE", cpd.getString("PROVINCE"));
// PageData dpd = new PageData();
// dpd.put("DEPARTMENT_ID", pd.getString("DEPARTMENT_ID"));
// dpd=departmentService.findById(dpd);
// map.put("DEPARTMENT_NAME", dpd.getString("NAME"));
// map.put("PARENT_NAME", dpd.getString("PARENT_NAME"));
PageData rpd = roleService.findById(pd);
map.put("ROLEID", rpd.getString("ROLE_ID"));
map.put("ROLE_NAME", rpd.getString("ROLE_NAME"));
map.put("USERBZ", pd.getString("BZ"));
PageData dpd = new PageData();
dpd.put("DEPARTMENT_ID", pd.getString("DEPARTMENT_ID"));
dpd = departmentService.findById(dpd);
map.put("DEPARTMENT_NAME", dpd.getString("NAME"));
map.put("DEPARTMENT_LEVEL", dpd.getString("LEVEL"));
map.put("ISSUPERVISE", dpd.getString("ISSUPERVISE"));
User user = new User();
user.setUSER_ID(pd.getString("USER_ID"));
user.setUSERNAME(pd.getString("USERNAME"));
user.setPASSWORD(pd.getString("PASSWORD"));
user.setNAME(pd.getString("NAME"));
user.setROLE_ID(pd.getString("ROLE_ID"));
user.setLAST_LOGIN(pd.getString("LAST_LOGIN"));
user.setIP(pd.getString("IP"));
user.setSTATUS(pd.getString("STATUS"));
if (Tools.notEmpty(pd.getString("WORKSTATUS")) && "2".equals(pd.getString("WORKSTATUS"))) {// 查看用户是否处于周期性休班中
// 休班(周期性)
map.put("ISREST", "1");
} else {
// 查看用户是否在休假中
PageData isRest = this.getPageData();
isRest.put("ISREST", "1");
isRest.put("USER_ID", pd.getString("USER_ID"));
isRest.put("CORPINFO_ID", pd.getString("CORPINFO_ID"));
List<PageData> restList = offdutyService.listAll(isRest);
if (restList != null && restList.size() > 0) {
// 休假中
map.put("ISREST", "1");
} else {
// 正常工作
map.put("ISREST", "0");
}
}
map.put("deptList", departmentService.listAll(cpd));
map.put("userList", usersService.listAllUser(cpd));
map.put("CORP_TRAINTYPE",
Tools.isEmpty(cpd.getString("TRAINTYPE")) ? "" : cpd.getString("TRAINTYPE"));// 用户所属企业的培训行业类型到
session.setAttribute(Const.SESSION_USER, user); // 把当前用户放入session
session.setAttribute(Const.DEPARTMENT_ID, pd.getString("DEPARTMENT_ID")); // 把当前用户放入session
session.setAttribute(Const.ISSUPERVISE, dpd.getString("ISSUPERVISE")); // 把当前用户放入session
session.setAttribute(Const.VIPLEVEL, cpd.getString("VIPLEVEL")); // 把当前用户放入session
System.out.println(session.getAttribute(Const.VIPLEVEL));
session.setAttribute(Const.CORPINFO_ID, pd.getString("CORPINFO_ID")); // 把当前用户企业放入session
session.setAttribute(Const.POST_ID,
pd.getString("POST_ID") == null ? "" : pd.getString("POST_ID")); // 把当前用户岗位放入session
session.setAttribute(Const.USER_ID, pd.getString("USER_ID")); // 把当前用户企业放入session
session.setAttribute(Const.SESSION_USERNAME, USERNAME); // 放入用户名到session
session.setAttribute(Const.SESSION_U_NAME, user.getNAME()); // 放入用户姓名到session
session.setAttribute(Const.IS_MAIN, pd.get("ISMAIN")); // 是否主账号
session.setAttribute(Const.CORP_TRAINTYPE,
Tools.isEmpty(cpd.getString("TRAINTYPE")) ? "" : cpd.getString("TRAINTYPE")); // 放入当前用户所属企业的培训行业类型到session
// 记录日志
PageData log = new PageData();
log.put("USERNAME", USERNAME);
log.put("CONTENT", "成功登录系统");
log.put("FHLOG_ID", UuidUtil.get32UUID());
log.put("IP", ip);
log.put("CZTIME", DateUtil.date2Str(new Date()));
log.put("SOURCE", source);
log.put("USER_ID", pd.getString("USER_ID"));
log.put("CORPINFO_ID", pd.getString("CORPINFO_ID"));
log.put("TYPE", "1");
log.put("NAME", pd.getString("NAME"));
log.put("DEPARTMENT", dpd.getString("NAME"));
log.put("DEPARTMENT_ID", dpd.getString("DEPARTMENT_ID"));
FHLOG.save(log);
} else {
errInfo = "usercorperror";
}
} else {
errInfo = "userUSEerror";
}
}else {
errInfo = "userUSEerror";
}
} else {
token.clear();
errInfo = "usererror";
}
}catch (Exception e){
e.printStackTrace();
map.put("msg", "用户名或密码有误");
return map;
}
if (!"success".equals(errInfo))
FHLOG.save(USERNAME, "尝试登录系统失败,用户名密码错误,无权限", ip);
} else {
errInfo = "error"; // 缺少参数
}
map.put("result", errInfo);
if ("usererror".equals(errInfo)) {
map.put("msg", "用户名或密码有误");
} else if ("error".equals(errInfo)) {
map.put("msg", "缺少参数");
} else if ("userUSEerror".equals(errInfo)) {
map.put("msg", "尊敬的一体化数字平台客户您的平台服务已过期如需恢复平台使用功能请联系我们客户服务人员客服热线13303358557");
}
else if ("usercorperror".equals(errInfo)) {
map.put("msg", "尊敬的一体化数字平台客户,您好, 您的平台服务已暂停使用如需恢复使用请联系我们客户服务人员客服热线13313350564");
}
return map;
}
public static void main(String[] args) {
System.out.println(RSAUtils.encryptedDataOnJava("zcloudchina唐山永发达商贸有限公司曹妃甸区青林公路西加气站,zy,f18c1055e629c37fedd8cc059dfc2d7889dd3d1a", RSAUtils.getPrivateKey()));
// System.out.println(RSAUtils.decryptDataOnJava("zjXAwStb7s23FUAL/u9b8j8ZOFsBUYb3nCDgkGmx2iZsxRr7UQZIXR/VGIdp1IR9BxHA2lmqS11nAXEVPMtmksFthzfuU1pvaS7Cz9GwfrMNidpL1QHXfuzD56qCeR90Ne6n1ugOdY6MMq5DotATqIBILIxidAqwYPYeTf55E4A=", RSAUtils.getPrivateKey()));
}
/**
* @return
* @throws Exception
*/
@RequestMapping(value="/small/check", produces="application/json;charset=UTF-8")
@ResponseBody
public Object smallCheck()throws Exception{
Map<String,Object> map = new HashMap<String,Object>();
// if(!BasicInfoUtil.checkValid()) {
// String errInfo = "invalid";
// map.put("result", errInfo);
// return map;
// }
PageData pd = new PageData();
pd = this.getPageData();
String errInfo = "success";
String KEYDATA[] = pd.getString("KEYDATA").replaceAll("zcloudchina", "").split(",zy,");
System.out.println(KEYDATA);
if(null != KEYDATA && KEYDATA.length == 2){
String USERNAME = KEYDATA[0]; //登录过来的用户名
String PASSWORD = KEYDATA[1]; //登录过来的密码
UsernamePasswordToken token= new UsernamePasswordToken(USERNAME, new SimpleHash("SHA-1", USERNAME, PASSWORD).toString());
Subject subject = SecurityUtils.getSubject();
try {
subject.login(token); //这一步在调用login(token)方法时,它会走到MyRealm.doGetAuthenticationInfo()方法中
}catch(UnknownAccountException uae){
errInfo = "usererror";
}catch(IncorrectCredentialsException ice){
errInfo = "usererror";
}catch(LockedAccountException lae){
errInfo = "usererror";
}catch(ExcessiveAttemptsException eae){
errInfo = "usererror4";
}catch (DisabledAccountException sae){
errInfo = "usererror";
}catch(AuthenticationException ae){
errInfo = "usererror";
}
if(subject.isAuthenticated()){ //验证是否登录成功
removeSession(USERNAME);
Session session = Jurisdiction.getSession();
pd.put("USERNAME", USERNAME);
pd = usersService.findByUsername(pd);
map.put("USERNAME", USERNAME);
map.put("USER_ID", pd.getString("USER_ID"));
map.put("NAME", pd.getString("NAME"));
map.put("DEPARTMENT_ID", pd.getString("DEPARTMENT_ID"));
map.put("CORPINFO_ID", pd.getString("CORPINFO_ID"));
PageData cpd = new PageData();
cpd.put("CORPINFO_ID", pd.getString("CORPINFO_ID"));
cpd=smallcorpinfoService.findById(cpd);
List<PageData> stoplist = corpStopService.findStopByCorpId(cpd);
if(stoplist.size()>0 && stoplist.get(0).getString("TYPE").equals("0")){ //已停用
map.put("CORPINFO_ID",stoplist.get(0).getString("CORPINFO_ID"));
map.put("ISSTOP","1");
map.put("STOPUSE_ID",stoplist.get(0).getString("STOPUSE_ID"));
}
List<PageData> list = corpStopService.findByStopId(cpd);
if(list.size()>0 && list.get(0).getString("ISHANDLE").equals("0")){
map.put("message","1"); //还有未处理的启用申请
} else if(list.size()>0 && list.get(0).getString("ISHANDLE").equals("-1")) {
map.put("message","2"); //打回启用申请
map.put("REASON",list.get(0).getString("REASON"));
}
// PageData dpd = new PageData();
// dpd.put("DEPARTMENT_ID", pd.getString("DEPARTMENT_ID"));
// dpd=departmentService.findById(dpd);
// map.put("DEPARTMENT_NAME", dpd.getString("NAME"));
// map.put("PARENT_NAME", dpd.getString("PARENT_NAME"));
// PageData rpd=roleService.findById(pd);
// map.put("ROLEID", rpd.getString("ROLE_ID"));
// map.put("ROLE_NAME", rpd.getString("ROLE_NAME"));
// map.put("USERBZ", pd.getString("BZ"));
User user = new User();
user.setUSER_ID(pd.getString("USER_ID"));
user.setUSERNAME(pd.getString("USERNAME"));
user.setPASSWORD(pd.getString("PASSWORD"));
user.setNAME(pd.getString("NAME"));
user.setROLE_ID(pd.getString("ROLE_ID"));
user.setLAST_LOGIN(pd.getString("LAST_LOGIN"));
user.setIP(pd.getString("IP"));
user.setSTATUS(pd.getString("STATUS"));
session.setAttribute(Const.SESSION_USER, user); //把当前用户放入session
session.setAttribute(Const.DEPARTMENT_ID, pd.getString("DEPARTMENT_ID")); //把当前用户放入session
session.setAttribute(Const.CORPINFO_ID, pd.getString("CORPINFO_ID")); //把当前用户企业放入session
session.setAttribute(Const.POST_ID, pd.getString("POST_ID")==null?"":pd.getString("POST_ID")); //把当前用户岗位放入session
session.setAttribute(Const.USER_ID, pd.getString("USER_ID")); //把当前用户企业放入session
session.setAttribute(Const.SESSION_USERNAME, USERNAME); //放入用户名到session
session.setAttribute(Const.SESSION_U_NAME, user.getNAME()); //放入用户姓名到session
System.out.println(cpd.getString("ISSMALL"));
if(cpd.getString("ISSMALL").equals("1")) {
PageData noreadpd = new PageData();
noreadpd.put("RELATION_ID", pd.getString("CORPINFO_ID"));
noreadpd.put("START", "0");
List<PageData> varList = noticeService.listAll(noreadpd);//列出Notice列表
noreadpd.put("noRead", varList.size());
if(pd!=null) {
if(cpd.getString("AUDITSTATUS").equals("-1")) {
map.put("verification", "-1");
}else if(cpd.getString("AUDITSTATUS").equals("0")){
map.put("verification", "0");
}else if(cpd.getString("AUDITSTATUS").equals("1")){
map.put("verification", "1");
}else if(cpd.getString("AUDITSTATUS").equals("2")){
map.put("verification", "2");
}else if(cpd.getString("AUDITSTATUS").equals("3")){
map.put("verification", "3");
}else if(cpd.getString("AUDITSTATUS").equals("-3")){
map.put("verification", "-3");
}
}else {
map.put("verification", "6");
}
map.put("noreadpd", noreadpd);
}
FHLOG.save(USERNAME, "成功登录系统"); //记录日志
}else{
token.clear();
errInfo = "usererror";
}
if(!"success".equals(errInfo))FHLOG.save(USERNAME, "尝试登录系统失败,用户名密码错误,无权限");
}else{
errInfo = "error"; //缺少参数
}
map.put("result", errInfo);
return map;
}
/**
*
*
* @return
* @throws Exception
*/
@RequestMapping(value = "/register", produces = "application/json;charset=UTF-8")
@ResponseBody
public Object register(@RequestParam("callback") String callback) throws Exception {
Map<String, Object> map = new HashMap<String, Object>();
PageData pd = new PageData();
pd = this.getPageData();
String result = "00";
if (Tools.checkKey("USERNAME", pd.getString("FKEY"))) { // 检验请求key值是否合法
pd.put("USER_ID", this.get32UUID()); // ID 主键
pd.put("ROLE_ID", "fhadminzhuche"); // 角色ID fhadminzhuche 为注册用户
pd.put("NUMBER", ""); // 编号
pd.put("PHONE", ""); // 手机号
pd.put("BZ", "注册用户"); // 备注
pd.put("LAST_LOGIN", ""); // 最后登录时间
pd.put("IP", ""); // IP
pd.put("STATUS", "0"); // 状态
pd.put("SKIN",
"pcoded-navbar navbar-image-3,navbar pcoded-header navbar-expand-lg navbar-light header-dark,"); // 用户默认皮肤
pd.put("EMAIL", "");
pd.put("ROLE_IDS", "");
pd.put("PASSWORD", new SimpleHash("SHA-1", pd.getString("USERNAME"), pd.getString("PASSWORD")).toString()); // 密码加密
if (null == usersService.findByUsername(pd)) { // 判断用户名是否存在
usersService.saveUser(pd); // 执行保存
FHLOG.save(pd.getString("USERNAME"), "新注册");
} else {
result = "01"; // 用户名已存在
}
} else {
result = "05"; // 不合法的注册
}
map.put("result", result);
JSONObject sresult = JSONObject.fromObject(map);
;
return callback + "(" + sresult.toString() + ")";
}
/**
*
*
* @return
* @throws Exception
*/
@RequestMapping(value = "/islogin")
@ResponseBody
public Object islogin() throws Exception {
Map<String, String> map = new HashMap<String, String>();
String errInfo = "success";
Session session = Jurisdiction.getSession();
if (null == session.getAttribute(Const.SESSION_USERNAME)) {
errInfo = "errer";
}
map.put("result", errInfo);
return map;
}
/**
* session
*/
public void removeSession(String USERNAME) {
Session session = Jurisdiction.getSession(); // 以下清除session缓存
session.removeAttribute(Const.SESSION_USER);
session.removeAttribute(USERNAME + Const.SESSION_ROLE_RIGHTS);
session.removeAttribute(USERNAME + Const.SESSION_ALLMENU);
session.removeAttribute(USERNAME + Const.SHIROSET);
session.removeAttribute(Const.SESSION_USERNAME);
session.removeAttribute(Const.SESSION_U_NAME);
session.removeAttribute(Const.SESSION_USERROL);
session.removeAttribute(Const.SESSION_RNUMBERS);
session.removeAttribute(Const.SKIN);
}
}