EggPlanet
/
egg_admin
3
0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
蛋蛋星球 后台端
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
363 コミット
1 ブランチ
129 MiB
ツリー: b03bd8d749
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'b03bd8d749' から
${ noResults }
egg_admin/app/hdl/comm/hdl_comm.go

hdl_comm.go 11 KiB
Raw 通常表示 履歴

add 权限
1ヶ月前
add oss setting
1ヶ月前
update
1週間前
add 权限
1ヶ月前
update
1ヶ月前
update
2週間前
add oss setting
1ヶ月前
add 权限
1ヶ月前
update
2週間前
add 权限
1ヶ月前
update
1週間前
update
1週間前
update
1週間前
add 权限
1ヶ月前
update
1週間前
add 权限
1ヶ月前
update
1ヶ月前
updaste
3週間前
update
3週間前
updaste
3週間前
add oss setting
1ヶ月前
云打包
3週間前
add oss setting
1ヶ月前
update swag
3週間前
update
1ヶ月前
updaste
3週間前
云打包
3週間前
add oss setting
1ヶ月前
update
1週間前
add oss setting
1ヶ月前
updaste
3週間前
add oss setting
1ヶ月前
updaste
3週間前
add oss setting
1ヶ月前
updaste
3週間前
add oss setting
1ヶ月前
updaste
3週間前
add oss setting
1ヶ月前
updaste
3週間前
add oss setting
1ヶ月前
updaste
3週間前
update
3週間前
update
3週間前
add oss setting
1ヶ月前
update
1ヶ月前
add oss setting
1ヶ月前
update
1ヶ月前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
1週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
update
2週間前
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355 
  1. package comm

  2. 

  3. import (

  4. 	"applet/app/db"

  5. 	"applet/app/e"

  6. 	"applet/app/enum"

  7. 	"applet/app/md"

  8. 	"applet/app/svc"

  9. 	"applet/app/utils"

  10. 	"applet/app/utils/cache"

  11. 	"applet/app/utils/logx"

  12. 	"code.fnuoos.com/EggPlanet/egg_models.git/src/dao"

  13. 	"code.fnuoos.com/EggPlanet/egg_models.git/src/implement"

  14. 	enum2 "code.fnuoos.com/EggPlanet/egg_system_rules.git/enum"

  15. 	"fmt"

  16. 	sts20150401 "github.com/alibabacloud-go/sts-20150401/v2/client"

  17. 	"github.com/aliyun/aliyun-oss-go-sdk/oss"

  18. 	"github.com/gin-gonic/gin"

  19. 	"strings"

  20. )

  21. 

  22. // MenuList

  23. // @Summary      通用请求-权限列表-菜单栏列表(获取)

  24. // @Tags         权限列表

  25. // @Description  菜单栏列表(获取)

  26. // @Accept       json

  27. // @Produce      json

  28. // @param Authorization header string true "验证参数Bearer和token空格拼接"

  29. // @Success      200   {object}    map[string]interface{}	"具体路由"

  30. // @Failure      400   {object}   md.Response              	"具体错误"

  31. // @Router       /api/comm/getMenuList [POST]

  32. func MenuList(c *gin.Context) {

  33. 	engine := db.Db

  34. 	admin := svc.GetUser(c)

  35. 	qrcodeWithBatchRecordsDb := implement.NewPermissionGroupDb(engine)

  36. 	groupList, err := qrcodeWithBatchRecordsDb.FindPermissionGroup()

  37. 	if err != nil {

  38. 		e.OutErr(c, e.ERR_DB_ORM, err.Error())

  39. 		return

  40. 	}

  41. 

  42. 	// 1、查询出当前用户所有角色

  43. 	adminRoleDb := implement.NewAdminRoleDb(engine)

  44. 	roles, err := adminRoleDb.FindAdminRole(admin.AdmId)

  45. 	if err != nil {

  46. 		e.OutErr(c, e.ERR_DB_ORM, err.Error())

  47. 		return

  48. 	}

  49. 

  50. 	roleDb := implement.NewRoleDb(engine, 0)

  51. 	var adminHasPermissionGroupIds []string

  52. 	for _, v := range *roles {

  53. 		list, _, err1 := roleDb.FindPermissionGroupByRole(v.RoleId)

  54. 		if err1 != nil {

  55. 			e.OutErr(c, e.ERR_DB_ORM, err1.Error())

  56. 			return

  57. 		}

  58. 		for _, v1 := range list {

  59. 			adminHasPermissionGroupIds = append(adminHasPermissionGroupIds, utils.IntToStr(v1.PermissionGroup.Id))

  60. 		}

  61. 	}

  62. 

  63. 	var tempRespMap = map[string]*md.PermissionGroupListResp{}

  64. 	var tempRespMapKeys []string

  65. 	for _, v := range *groupList {

  66. 

  67. 		var isCheck bool

  68. 		if admin.IsSuperAdministrator == enum.IsSuperAdministratorTure {

  69. 			isCheck = true

  70. 		} else {

  71. 			isCheck = false

  72. 		}

  73. 

  74. 		if utils.InArr(utils.IntToStr(v.Id), adminHasPermissionGroupIds) {

  75. 			isCheck = true

  76. 		}

  77. 

  78. 		if v.State == enum.PermissionGroupStateForDiscard {

  79. 			isCheck = false

  80. 		}

  81. 

  82. 		tempRespMap[utils.IntToStr(v.Id)] = &md.PermissionGroupListResp{

  83. 			Id:       v.Id,

  84. 			Name:     v.Name,

  85. 			Key:      v.Key,

  86. 			State:    v.State,

  87. 			ParentId: v.ParentId,

  88. 			CreateAt: v.CreateAt,

  89. 			UpdateAt: v.UpdateAt,

  90. 			IsCheck:  isCheck,

  91. 		}

  92. 		tempRespMapKeys = append(tempRespMapKeys, utils.IntToStr(v.Id))

  93. 	}

  94. 	for _, v := range tempRespMap {

  95. 		if v.ParentId != 0 && tempRespMap[utils.IntToStr(v.ParentId)].ParentId != 0 {

  96. 			tempRespMap[utils.IntToStr(v.ParentId)].SubPermissionGroupList = append(tempRespMap[utils.IntToStr(v.ParentId)].SubPermissionGroupList, *v)

  97. 		}

  98. 	}

  99. 	for _, v := range tempRespMap {

  100. 		if v.ParentId != 0 && tempRespMap[utils.IntToStr(v.ParentId)].ParentId == 0 {

  101. 			tempRespMap[utils.IntToStr(v.ParentId)].SubPermissionGroupList = append(tempRespMap[utils.IntToStr(v.ParentId)].SubPermissionGroupList, *v)

  102. 		}

  103. 	}

  104. 

  105. 	var resp []*md.PermissionGroupListResp

  106. 	for _, v := range tempRespMapKeys {

  107. 		if tempRespMap[v].ParentId == 0 {

  108. 			resp = append(resp, tempRespMap[v])

  109. 		}

  110. 	}

  111. 

  112. 	e.OutSuc(c, map[string]interface{}{

  113. 		"list": resp,

  114. 		"state": []map[string]interface{}{

  115. 			{

  116. 				"name":  enum.PermissionGroupState(enum.PermissionGroupStateForNormal).String(),

  117. 				"value": enum.PermissionGroupStateForNormal,

  118. 			},

  119. 			{

  120. 				"name":  enum.PermissionGroupState(enum.PermissionGroupStateForDiscard).String(),

  121. 				"value": enum.PermissionGroupStateForDiscard,

  122. 			},

  123. 		},

  124. 	}, nil)

  125. 	return

  126. }

  127. 

  128. type ImgReqUploadReq struct {

  129. 	FileName    string `json:"file_name" binding:"required" example:"文件名"`

  130. 	ContentType string `json:"content_type,required" binding:"required" example:"image/jpeg"`

  131. }

  132. type ImgReqUploadResp struct {

  133. 	SignUrl string `json:"sign_url" example:"签名上传url"`

  134. }

  135. 

  136. // GetOssUrl

  137. // @Summary      通用请求-对象存储-上传许可链接(获取)

  138. // @Tags         对象存储

  139. // @Description  上传许可链接(获取)

  140. // @Accept       json

  141. // @Produce      json

  142. // @param Authorization header string true "验证参数Bearer和token空格拼接"

  143. // @Param    req    body	comm.ImgReqUploadReq 	true  "签名上传url"

  144. // @Success      200   {string}  	"许可链接"

  145. // @Failure      400   {object}   md.Response              	"具体错误"

  146. // @Router       /api/comm/getOssUrl [POST]

  147. func GetOssUrl(c *gin.Context) {

  148. 	var args ImgReqUploadReq

  149. 	err := c.ShouldBindJSON(&args)

  150. 	if err != nil {

  151. 		err = svc.HandleValidateErr(err)

  152. 		err1 := err.(e.E)

  153. 		e.OutErr(c, err1.Code, err1.Error())

  154. 		return

  155. 	}

  156. 	CommOss(c, args)

  157. }

  158. func CommOss(c *gin.Context, args ImgReqUploadReq) {

  159. 	redisConn := cache.GetPool().Get()

  160. 	sysCfgDb := implement.NewSysCfgDb(db.Db, redisConn)

  161. 	defer func(sysCfgDb dao.SysCfgDao) {

  162. 		err := sysCfgDb.Close()

  163. 		if err != nil {

  164. 			logx.Error("redis close err:" + err.Error()) // 记录错误信息

  165. 		}

  166. 	}(sysCfgDb)

  167. 

  168. 	sysCfgs, err := sysCfgDb.SysCfgGetAll()

  169. 	if err != nil {

  170. 		e.OutErr(c, e.ERR_DB_ORM, err.Error())

  171. 		return

  172. 	}

  173. 	if sysCfgs == nil {

  174. 		e.OutErr(c, e.ERR_CFG_CACHE, nil)

  175. 		return

  176. 	}

  177. 

  178. 	cfgMap := make(map[string]string, len(*sysCfgs))

  179. 	for _, cfg := range *sysCfgs {

  180. 		cfgMap[cfg.Key] = cfg.Val

  181. 	}

  182. 	endpoint := cfgMap[enum2.AliyunOssEndpoint]

  183. 	bucketName := cfgMap[enum2.AliyunOssBucketName]

  184. 	ossBucketScheme := cfgMap[enum2.AliyunOssBucketScheme]

  185. 	accessKeyID := cfgMap[enum2.AliyunOssAccessKeyID]

  186. 	accessKeySecret := cfgMap[enum2.AliyunOssAccessKeySecret]

  187. 

  188. 	// 创建OSSClient实例。

  189. 	client, err := oss.New(ossBucketScheme+"://"+endpoint, accessKeyID, accessKeySecret)

  190. 	if err != nil {

  191. 		e.OutErr(c, e.ERR, err.Error())

  192. 		return

  193. 	}

  194. 

  195. 	// 获取存储空间。

  196. 	bucket, err := client.Bucket(bucketName)

  197. 	if err != nil {

  198. 		e.OutErr(c, e.ERR, err.Error())

  199. 		return

  200. 	}

  201. 

  202. 	options := []oss.Option{

  203. 		oss.ContentType(args.ContentType),

  204. 	}

  205. 

  206. 	signedURL, err := bucket.SignURL(args.FileName, oss.HTTPPut, 60*5, options...)

  207. 	if err != nil {

  208. 		e.OutErr(c, e.ERR_AES_ENCODE, err.Error())

  209. 		return

  210. 	}

  211. 

  212. 	e.OutSuc(c, signedURL, nil)

  213. }

  214. 

  215. const STSVoucherRedisKey = "STS_Voucher_Cache_Key"

  216. 

  217. type GetSTSVoucherResp struct {

  218. 	STSToken sts20150401.AssumeRoleResponseBodyCredentials `json:"sts_token"` // STS 凭证

  219. 	Bucket   string                                        `json:"bucket"`    // oss 桶名称

  220. 	Region   string                                        `json:"region"`    // 所在地域

  221. }

  222. 

  223. // GetSTSVoucher

  224. // @Summary      通用请求-打包机使用-STS临时访问凭证(获取)

  225. // @Tags         打包机使用

  226. // @Description  STS临时访问凭证(获取)

  227. // @Accept       json

  228. // @Produce      json

  229. // @param Authorization header string true "验证参数Bearer和token空格拼接"

  230. // @Success      200   {object}  comm.GetSTSVoucherResp  "凭证及其他信息"

  231. // @Failure      400   {object}   md.Response              	"具体错误"

  232. // @Router       /api/getSTSVoucher [GET]

  233. func GetSTSVoucher(c *gin.Context) {

  234. 	redisConn := cache.GetPool().Get()

  235. 	sysCfgDb := implement.NewSysCfgDb(db.Db, redisConn)

  236. 	defer func(sysCfgDb dao.SysCfgDao) {

  237. 		err := sysCfgDb.Close()

  238. 		if err != nil {

  239. 			logx.Error("redis close err:" + err.Error()) // 记录错误信息

  240. 		}

  241. 	}(sysCfgDb)

  242. 

  243. 	sysCfgs, err := sysCfgDb.SysCfgGetAll()

  244. 	if err != nil {

  245. 		e.OutErr(c, e.ERR_DB_ORM, err.Error())

  246. 		return

  247. 	}

  248. 	if sysCfgs == nil {

  249. 		e.OutErr(c, e.ERR_CFG_CACHE, nil)

  250. 		return

  251. 	}

  252. 	cfgMap := make(map[string]string, len(*sysCfgs))

  253. 	for _, cfg := range *sysCfgs {

  254. 		cfgMap[cfg.Key] = cfg.Val

  255. 	}

  256. 	endpoint := cfgMap[enum2.AliyunOssEndpoint]

  257. 

  258. 	redisKey := STSVoucherRedisKey

  259. 	redisValue, err := cache.GetString(redisKey)

  260. 	if err != nil {

  261. 		if err.Error() == "redigo: nil returned" {

  262. 

  263. 			assumeRoleAccessKeyID := cfgMap[enum2.AliyunOssAssumeRoleAccessKeyID]

  264. 			assumeRoleAccessKeySecret := cfgMap[enum2.AliyunOssAssumeRoleAccessKeySecret]

  265. 			assumeRoleARN := cfgMap[enum2.AliyunOssAssumeRoleARN]

  266. 			roleSessionName := "STSRam"

  267. 

  268. 			endpointList := strings.Split(endpoint, "-")

  269. 			stsEndPoint := fmt.Sprintf("sts.%s-%s", endpointList[1], endpointList[2])

  270. 

  271. 			client, err := svc.CreateSTSClient(&assumeRoleAccessKeyID, &assumeRoleAccessKeySecret, &stsEndPoint)

  272. 			if err != nil {

  273. 				e.OutErr(c, e.ERR, err.Error())

  274. 				return

  275. 			}

  276. 

  277. 			roleArn := assumeRoleARN

  278. 			durationSeconds := 3600

  279. 

  280. 			assumeRoleResponse, err := svc.AssumeRole(client, &roleArn, &roleSessionName, int64(durationSeconds))

  281. 			if err != nil {

  282. 				e.OutErr(c, e.ERR, err.Error())

  283. 				return

  284. 			}

  285. 

  286. 			CredentialsStr := utils.SerializeStr(assumeRoleResponse.Body.Credentials)

  287. 			// 提早 60s 释放,避免能拿到令牌但无法上传

  288. 			cache.SetEx(redisKey, CredentialsStr, durationSeconds-60)

  289. 			credentials := sts20150401.AssumeRoleResponseBodyCredentials{

  290. 				AccessKeyId:     assumeRoleResponse.Body.Credentials.AccessKeyId,

  291. 				AccessKeySecret: assumeRoleResponse.Body.Credentials.AccessKeySecret,

  292. 				Expiration:      assumeRoleResponse.Body.Credentials.Expiration,

  293. 				SecurityToken:   assumeRoleResponse.Body.Credentials.SecurityToken,

  294. 			}

  295. 

  296. 			bucket := cfgMap[enum2.AliyunOssBucketName]

  297. 			region := strings.Split(endpoint, ".")[0]

  298. 

  299. 			resp := GetSTSVoucherResp{

  300. 				STSToken: credentials,

  301. 				Bucket:   bucket,

  302. 				Region:   region,

  303. 			}

  304. 			e.OutSuc(c, resp, nil)

  305. 			return

  306. 		} else {

  307. 			e.OutErr(c, e.ERR, nil)

  308. 			return

  309. 		}

  310. 	}

  311. 

  312. 	var credentials sts20150401.AssumeRoleResponseBodyCredentials

  313. 	utils.Unserialize([]byte(redisValue), &credentials)

  314. 	bucket := cfgMap[enum2.AliyunOssBucketName]

  315. 	region := strings.Split(endpoint, ".")[0]

  316. 

  317. 	resp := GetSTSVoucherResp{

  318. 		STSToken: credentials,

  319. 		Bucket:   bucket,

  320. 		Region:   region,

  321. 	}

  322. 	e.OutSuc(c, resp, nil)

  323. 	return

  324. 

  325. }

  326. 

  327. type GetAdminInfoResp struct {

  328. 	AdmId                int    `json:"adm_id"`                 // 管理员id

  329. 	Username             string `json:"username"`               // 用户名

  330. 	State                int    `json:"state"`                  // 状态(1:正常 2:冻结)

  331. 	IsSuperAdministrator int    `json:"is_super_administrator"` // 是否为超级管理员(0:否 1:是)

  332. 	Memo                 string `json:"memo"`                   // 备注信息

  333. }

  334. 

  335. // GetAdminInfo

  336. // @Summary      通用请求-获取管理员信息

  337. // @Tags         通用请求

  338. // @Description  获取管理员信息

  339. // @Accept       json

  340. // @Produce      json

  341. // @param Authorization header string true "验证参数Bearer和token空格拼接"

  342. // @Success      200   {object}  GetAdminInfoResp  	"管理员信息"

  343. // @Failure      400   {object}   md.Response              	"具体错误"

  344. // @Router       /api/comm/adminInfo [POST]

  345. func GetAdminInfo(c *gin.Context) {

  346. 	admin := svc.GetUser(c)

  347. 	resp := GetAdminInfoResp{

  348. 		AdmId:                admin.AdmId,

  349. 		Username:             admin.Username,

  350. 		State:                admin.State,

  351. 		IsSuperAdministrator: admin.IsSuperAdministrator,

  352. 		Memo:                 admin.Memo,

  353. 	}

  354. 	e.OutSuc(c, resp, nil)

  355. }