@gingkoo/base-server 0.0.1-alpha.0 → 0.0.1-alpha.10

package/backend/common/sse/index.js

@@ -0,0 +1,81 @@
+const bgTaskEnum = {
+  taskProgressStatus: {
+    dataLoading: 'DataLoading',
+    importIntoData: 'ImportIntoData',
+
+    exportOutData: 'ExportOutData',
+    fileBuilding: 'FileBuilding',
+
+    taskComplete: 'TaskComplete',
+    taskError: 'TaskError',
+  },
+
+  eventType: {
+    addTask: 'AddTask',
+    changeTaskStatus: 'ChangeTaskStatus',
+    overTask: 'OverTask',
+  },
+};
+
+class Sse {
+  users = {};
+
+  constructor() {}
+
+  addUser(userId, client) {
+    this.users[userId] = {
+      client,
+      cancelTasks: [],
+    };
+  }
+
+  removeUser(userId) {
+    Reflect.deleteProperty(this.users, userId);
+  }
+
+  getUser(userId) {
+    return this.users[userId]?.client || null;
+  }
+
+  // 发送通知
+  connectEs(tasks, userId) {
+    let cancelTasks = this.users[userId]?.cancelTasks || [];
+    if (cancelTasks?.includes?.(tasks?.tasks?.TASK_ID)) return false;
+    let client = this.getUser(userId);
+    if (client) {
+      client.write(`data: ${JSON.stringify(tasks)}\n\n`);
+    }
+  }
+
+  // 添加后台任务
+  addBgTasks(tasks, userId) {
+    if (!tasks || !userId) return false;
+    this.connectEs({ tasks, type: bgTaskEnum.eventType.addTask }, userId);
+  }
+
+  // 修改后台任务状态
+  changeBgTaskSatus(tasks, userId) {
+    if (!tasks || !userId) return false;
+    this.connectEs({ tasks, type: bgTaskEnum.eventType.changeTaskStatus }, userId);
+  }
+
+  // 结束后台任务
+  overBgTaskStatus(tasks, userId) {
+    if (!tasks || !userId) return false;
+    this.connectEs({ tasks, type: bgTaskEnum.eventType.overTask }, userId);
+  }
+
+  // 取消后台任务 不再通知前端
+  cancelBgTaskStatus(taskId, userId) {
+    if (Array.isArray(this.users[userId]?.cancelTasks)) {
+      this.users[userId].cancelTasks.push(taskId);
+    }
+  }
+}
+
+const sse = new Sse();
+
+module.exports = {
+  sse,
+  bgTaskEnum,
+};

package/backend/common/sse/router.js

@@ -0,0 +1,30 @@
+var express = require('express');
+var router = express.Router();
+// var express_ws = require('express-ws');
+const { checkLogin } = require('../middleware/auth');
+const { sse } = require('./index');
+
+// express_ws(router);
+
+// 任务消息eventsource
+router.get('/es', [checkLogin], async function (req, res) {
+  const userId = req.get('X-UserId');
+  res.writeHead(200, { 'Content-Type': 'text/event-stream' });
+  req.connection.on('end', function () {
+    if (userId) {
+      console.log(`⭐️ ~ ${userId} res退出`);
+      sse.removeUser(userId);
+      res.end();
+    }
+  });
+  res.USER_ID = userId;
+  sse.addUser(userId, res);
+
+  try {
+    res.write('data: ' + userId + '连接成功\n\n');
+  } catch (error) {
+    console.log('🚀 ~ wtite error', error);
+  }
+});
+
+module.exports = router;

package/backend/common/task.js

@@ -0,0 +1,75 @@
+const isPlainObject = require('lodash/isPlainObject');
+
+class TaskFactory {
+  /**
+   * type Task = {
+   *    getTaskName: (params: any) => string;
+   *    begin: (useid: string; taskid: string; params: any) => void;
+   * }
+   *
+   * interface Tasks {
+   *  [module: string]: {
+   *    [task: string]: Task
+   *  }
+   * }
+   */
+  tasks = {};
+
+  register(module, moduleTasks) {
+    if (typeof module !== 'string') return console.log('TaskFactory register 缺少参数 module');
+
+    this.tasks[module] = moduleTasks ?? {};
+  }
+
+  getTask(module) {
+    return this.tasks[module];
+  }
+
+  /**
+   * get a taskname for the specified module and task.
+   * @param {string} module - task module
+   * @param {string} event - event name
+   * @param {string} rest - optional
+   * @param {string} defaultTaskName -
+   *
+   * @returns {string} - task name
+   */
+  async getTaskName(module, event, rest, defaultTaskName = '') {
+    let taskName = '';
+    let moduleTask = this.getTask(module);
+
+    /**
+     * @type {Record<string, Task>}
+     */
+    if (isPlainObject(moduleTask)) {
+      if (event in moduleTask && typeof moduleTask[event]['getTaskName'] === 'function') {
+        taskName = await moduleTask[event].getTaskName(rest);
+      }
+    }
+
+    return taskName ?? defaultTaskName;
+  }
+
+  /**
+   * Runs a task for the specified module and task.
+   *
+   * @param {string} module - The module for which the task is registered.
+   * @param {string} event - The forward direction of the task.
+   * @param {string} USER_ID - The unique identifier of the user.
+   * @param {string} taskid - The unique identifier of the task.
+   * @param {any} params - The parameters required for the task.
+   *
+   * @returns {void} - This method does not return any value.
+   */
+  async run(module, event, USER_ID, taskid, params) {
+    let moduleTask = this.getTask(module);
+
+    if (isPlainObject(moduleTask)) {
+      if (event in moduleTask && typeof moduleTask[event]['begin'] === 'function') {
+        moduleTask[event]['begin'](USER_ID, taskid, params);
+      }
+    }
+  }
+}
+
+module.exports = new TaskFactory();

package/backend/common/wechat/index.js

@@ -0,0 +1,9 @@
+'use strict';
+var express = require('express');
+const auth = require('./routers/auth');
+
+var router = express.Router();
+
+router.use('/auth', auth);
+
+module.exports = router;

package/backend/common/wechat/routers/auth.js

@@ -0,0 +1,238 @@
+'use strict';
+const fs = require('fs');
+const path = require('path');
+const express = require('express');
+const config = require('../../../config/index');
+
+const authServices = require('../services/auth');
+const ginfoServices = require('../../ginfo/index');
+const userService = require('../../services/user');
+const deptService = require('../../services/dept');
+const generalConfigService = require('../../services/generalConfig');
+
+var router = express.Router();
+
+router.get('/', async function (req, res) {
+  let redirect_uri = req.query['redirect_uri'] || config.app.redirect_uri;
+
+  res.cookie('AUTH-Redirect', redirect_uri).redirect('/wechat/auth/oauth/qywx');
+});
+
+router.get('/deptUsers', async function (req, res) {
+  let token = await authServices.getAccessToken();
+  if (!token) return res.sendErr('获取token失败');
+  let depts = await authServices.getIdmList(token);
+  if (!depts) return res.sendErr('获取部门列表失败');
+  let memberList = [];
+  let deptInfo = [];
+  if (Array.isArray(depts)) {
+    deptInfo = await Promise.all(
+      depts.map(async (dept) => {
+        let list = await authServices.getIdmUser(token, dept.id + '');
+        memberList = memberList.concat(list);
+        let leader = dept?.['department_leader']?.[0] || list?.[0]?.['userid'];
+        let leaderInfo = await ginfoServices.getUserInfo(leader);
+        let deptNo = leaderInfo?.['GROUP_ID'] || null;
+        return {
+          ...dept,
+          LEADER_USER_ID: dept?.['department_leader']?.[0] ? leaderInfo?.['USER_NAME'] : null,
+          LEADER_USER_NAME: dept?.['department_leader']?.[0] ? leaderInfo?.['STAFF_NAME'] : null,
+          DEPT_NO: deptNo,
+        };
+      }),
+    );
+  }
+  memberList = await Promise.all(
+    memberList
+      .filter((user) => user)
+      .map(async (user) => {
+        let userinfo = await ginfoServices.getUserInfo(user.userid);
+        return {
+          ...user,
+          USER_ID: userinfo['USER_NAME'],
+          USER_NAME: userinfo['STAFF_NAME'],
+          DEPT_NO: userinfo['GROUP_ID'],
+        };
+      }),
+  );
+
+  if (memberList.length != 204) {
+    return res.sendErr('查询错误：' + memberList.length);
+  }
+
+  let teamUsers = await userService.getUsers({ USER_STATUS: 'normal' });
+  let teamDepts = await userService.getDeptData();
+  if (!Array.isArray(teamUsers)) {
+    return res.sendErr('查询失败');
+  }
+  let teamUserIds = teamUsers.map((user) => user.USER_ID);
+  teamDepts = teamDepts?.map((dept) => dept.DEPT_NO) || [];
+  let addDepts = deptInfo.reduce((mo, dept) => {
+    if (dept.DEPT_NO && !teamDepts.includes(dept.DEPT_NO)) {
+      mo.push({
+        DEPT_NO: dept.DEPT_NO,
+        DEPT_NAME: dept.name,
+        DEPT_LEADER: dept.LEADER_USER_ID,
+        ORG_ID: global.orgid,
+      });
+    }
+    return mo;
+  }, []);
+  let addUsers = memberList.reduce((mo, user) => {
+    if (user?.USER_ID && !teamUserIds.includes(user.USER_ID)) {
+      mo.push({
+        ORG_ID: global.orgid,
+        USER_ID: user.USER_ID,
+        USER_NAME: user.USER_NAME,
+        DEPT_NO: user['DEPT_NO'],
+        STATUS: '00',
+        USER_STATUS: 'normal',
+      });
+    }
+    return mo;
+  }, []);
+
+  let orgUserObj = memberList.reduce((mo, user) => {
+    mo[user.USER_ID] = user.DEPT_NO;
+    return mo;
+  }, {});
+  let delUsers = teamUserIds
+    .filter((v) => !orgUserObj[v])
+    .map((v) => {
+      return {
+        USER_ID: v,
+        USER_STATUS: 'leave',
+      };
+    });
+
+  let updUsers = teamUsers
+    .filter((user) => user.DEPT_NO !== orgUserObj[user.USER_ID])
+    .map((user) => {
+      return {
+        DEPT_NO: orgUserObj[user.USER_ID],
+        USER_ID: user.USER_ID,
+      };
+    });
+
+  await Promise.all(
+    addDepts.map(async (dept) => {
+      return await deptService.createDept(dept);
+    }),
+  );
+  await Promise.all(
+    addUsers.map(async (user) => {
+      return await userService.syncUserInfo(user.USER_ID, user); //添加
+      // return userService.operTeamMember(user.USER_ID, user); //修改
+    }),
+  );
+
+  await Promise.all(
+    delUsers.map(async (user) => {
+      return userService.operTeamMember(user.USER_ID, user); //修改
+    }),
+  );
+
+  await Promise.all(
+    updUsers.map(async (user) => {
+      return userService.operTeamMember(user.USER_ID, user); //修改
+    }),
+  );
+
+  return res.sendOk({
+    message: '更新成功',
+    addDepts: addDepts.length,
+    addUsers: addUsers.length,
+    delUsers: delUsers.length,
+    updUsers,
+  });
+});
+
+router.get('/oauth/qywx', async (req, res) => {
+  let userAgent = req.get('User-Agent');
+  let qywxUrl = await authServices.getRedirectUrl(userAgent);
+  res.redirect(qywxUrl);
+});
+
+router.get('/oauth/qywx/callback', async function (req, res) {
+  let code = req.query['code'];
+  if (!code) {
+    res.sendErr('认证失败');
+    return;
+  }
+
+  let [err, result] = await authServices.code2token(code);
+  if (err) {
+    return res.sendErr(err?.message || '');
+  }
+  let { token, userinfo, qywxuserid } = result;
+  let params = {
+    USER_ID: userinfo['USER_NAME'],
+    USER_NAME: userinfo['STAFF_NAME'],
+    DEPT_NO: userinfo['GROUP_ID'],
+    STATUS: 'normal',
+  };
+  let oauth = {
+    USER_ID: userinfo['USER_NAME'],
+    OAUTH_VENDOR: 'workwx',
+    VENDOR_USER_ID: qywxuserid,
+  };
+
+  await userService.syncUserInfo(params.USER_ID, params);
+  await userService.syncUserOAuth(params.USER_ID, oauth);
+
+  let redirect_uri = req?.cookies?.['AUTH-Redirect'] || config.app.redirect_uri;
+
+  let expires = new Date();
+  expires.setDate(expires.getDate() + 3);
+
+  res.cookie('X-Token', token, { expires }).redirect(301, redirect_uri);
+});
+
+router.get('/gettoken', async function (req, res) {
+  let code = req.query['code'];
+
+  let [err, result] = await authServices.code2token(code);
+  if (err) {
+    res.type('text/html; charset=UTF-8');
+    return res.send(err?.message || '');
+  }
+  let { token, userinfo, qywxuserid } = result;
+
+  let params = {
+    USER_ID: userinfo['USER_NAME'],
+    USER_NAME: userinfo['STAFF_NAME'],
+    DEPT_NO: userinfo['GROUP_ID'],
+    STATUS: 'normal',
+  };
+  let oauth = {
+    USER_ID: userinfo['USER_NAME'],
+    OAUTH_VENDOR: 'workwx',
+    VENDOR_USER_ID: qywxuserid,
+  };
+
+  await userService.syncUserInfo(params.USER_ID, params);
+  await userService.syncUserOAuth(params.USER_ID, oauth);
+
+  let htmlContent = fs.readFileSync(path.join(__dirname, `./index.html`), 'utf8');
+
+  htmlContent = htmlContent.replace('{{token}}', token);
+
+  res.type('text/html; charset=UTF-8');
+
+  res.send(htmlContent);
+});
+
+router.get('/config', async function (req, res) {
+  let data = await generalConfigService.getFromConfig({ GROUP_ID: 'qywx' });
+
+  if (!data) {
+    return res.sendErr('获取配置失败');
+  }
+  res.sendOk({
+    appid: data.qywx_APPID,
+    agentid: data.qywx_AgentID,
+    redirect_uri: data.qywx_REDIRECT,
+  });
+});
+
+module.exports = router;

package/{modules/user/frontend → backend/common/wechat/routers}/index.html

@@ -1,20 +1,27 @@
-<!doctype html>
-<html lang="zh">
+<!DOCTYPE html>
+<html>
   <head>
     <meta charset="UTF-8" />
+    <title></title>
     <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1" />
     <meta name="renderer" content="webkit" />
     <meta name="force-rendering" content="webkit" />
     <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" />
-    <title>金丘科技 - 团队协作平台</title>
-    <link rel="shortcut icon" type="images/x-icon" href="/static/favicon.ico" />
-    <link rel="stylesheet" type="text/css" href="/static/css/index.css" />
   </head>
 
   <body>
-    <div id="root" class="app-wrapper">你好</div>
+    <div></div>
 
-    <script src="./index.js"></script>
+    <script>
+      window.parent.postMessage(
+        {
+          msgType: 'login',
+          action: 'setToken',
+          data: '{{token}}',
+        },
+        '*',
+      );
+    </script>
   </body>
 </html>

package/backend/common/wechat/services/auth.js

@@ -0,0 +1,209 @@
+var httpclient = require('node-httpclient');
+var util = require('../../../utils/util');
+const jwt = require('../../../utils/jwt');
+const { logger } = require('../../logger');
+const userService = require('../../services/user');
+const configService = require('../../services/generalConfig');
+const ginfoServices = require('../../ginfo/index');
+
+/**
+ * 获取企业微信登录方式
+ * 方式一、企业微信内部自动登录
+ * 方式二、企业微信外部扫码登录
+ * @param {string} userAgent 当前登录用户设备信息 （包含wxwork 代表是 企业微信内部）
+ * @returns auth_redirect_url as string
+ */
+const getRedirectUrl = async (userAgent) => {
+  let auth_redirect_url = '';
+  let data = await configService.getFromConfig({ GROUP_ID: 'qywx' });
+  let { qywx_AgentID, qywx_APPID, qywx_REDIRECT } = data;
+  // qywx_REDIRECT = http://gingkoo.com/teams
+  let redirect_uri = `${qywx_REDIRECT}/wechat/auth/oauth/qywx/callback`;
+
+  if (userAgent.indexOf('wxwork/') > -1) {
+    params = {
+      appid: qywx_APPID,
+      redirect_uri,
+      response_type: 'code',
+      scope: 'snsapi_base',
+      state: Date.now(),
+    };
+    auth_redirect_url =
+      'https://open.weixin.qq.com/connect/oauth2/authorize?' +
+      util.urlencodeObject(params) +
+      '#wechat_redirect';
+  } else {
+    params = {
+      appid: qywx_APPID,
+      agentid: qywx_AgentID,
+      redirect_uri,
+      state: Date.now(),
+    };
+    auth_redirect_url =
+      'https://open.work.weixin.qq.com/wwopen/sso/qrConnect?' + util.urlencodeObject(params);
+  }
+
+  return auth_redirect_url;
+};
+
+/**
+ * 登录code 换 useId
+ * @param {string} code 企业微信登录code
+ * @returns
+ */
+const getUserId = async (code) => {
+  let accessToken = await getAccessToken();
+  let url = 'https://qyapi.weixin.qq.com/cgi-bin/user/getuserinfo?access_token={0}&code={1}'.format(
+    accessToken,
+    code,
+  );
+  logger.info(url);
+  resp = await httpclient.get(url);
+  json_data = resp.data;
+  console.dir(json_data);
+  if (json_data['errcode'] != 0) {
+    logger.info('error:{0}'.format(json_data['errmsg']));
+    return null;
+  }
+
+  if (json_data['UserId']) {
+    return json_data['UserId'];
+  }
+
+  logger.info('error:{0}'.format(json_data['errmsg']));
+  return null;
+};
+
+/**
+ * 获取企业微信 token
+ * @returns accessToken as string
+ */
+const getAccessToken = async (corpsecret = '') => {
+  let data = await configService.getFromConfig({ GROUP_ID: 'qywx' });
+  let { qywx_APPID, qywx_APPKEY } = data;
+
+  params = {
+    corp_id: qywx_APPID,
+    corpsecret: corpsecret || qywx_APPKEY,
+  };
+
+  url =
+    'https://qyapi.weixin.qq.com/cgi-bin/gettoken?corpid={corp_id}&corpsecret={corpsecret}'.format(
+      params,
+    );
+
+  console.log(url);
+  resp = await httpclient.get(url);
+  console.dir(resp.data);
+  json_data = resp.data;
+
+  if (json_data['errcode'] != 0) {
+    console.log('error:{0}'.format(json_data['errmsg']));
+    return null;
+  }
+
+  accessToken = json_data['access_token'];
+
+  return accessToken;
+};
+
+const updateUser = async () => {
+  let wxworkUser = [];
+  let wxWorkUserid = [];
+  let accessToken = await getAccessToken();
+  let department = await getIdmList(accessToken);
+  if (!department) return null;
+
+  for (let i = 0; i < department.length; i++) {
+    const { id } = department[i];
+    let data = await getIdmUser(accessToken, id);
+    if (data) {
+      wxworkUser = wxworkUser.concat(data);
+    }
+  }
+  // 获取第三方认证用户
+  let data = await userService.getIdmUserOauth();
+  if (!data) return;
+  data.map((v) => {
+    const { VENDOR_USER_ID, USER_ID } = v;
+    let filter = wxworkUser.find((v) => v.userid == VENDOR_USER_ID);
+    if (!filter) {
+      wxWorkUserid.push(USER_ID);
+    }
+  });
+  await userService.updateUser(wxWorkUserid);
+};
+// 根据部门id获取部门成员
+const getIdmUser = async (access_token, department_id) => {
+  let url =
+    'https://qyapi.weixin.qq.com/cgi-bin/user/simplelist?access_token={0}&department_id={1}'.format(
+      access_token,
+      department_id,
+    );
+  let resp = await httpclient.get(url);
+  let json_data = resp.data;
+  if (json_data['errcode'] !== 0) {
+    return null;
+  }
+  if (json_data['userlist']) {
+    return json_data['userlist'];
+  }
+  return null;
+};
+
+// 获取部门列表
+async function getIdmList(access_token) {
+  let url = 'https://qyapi.weixin.qq.com/cgi-bin/department/list?access_token={0}'.format(
+    access_token,
+  );
+  let resp = await httpclient.get(url);
+  let json_data = resp.data;
+  if (json_data['errcode'] !== 0) {
+    return null;
+  }
+  if (json_data['department']) {
+    return json_data['department'];
+  }
+  return null;
+}
+
+const code2token = async (code) => {
+  if (!code) {
+    return [{ message: '认证失败' }];
+  }
+  logger.info('企业微信授权登录 code:', code);
+
+  let qywxuserid = await getUserId(code);
+  if (qywxuserid == null) {
+    return [{ message: '获取企业微信认证信息失败' }];
+  }
+
+  let userinfo = await ginfoServices.getUserInfo(qywxuserid);
+  if (userinfo == null) {
+    return [{ message: '获取用户认证信息失败' }];
+  }
+
+  let userid = userinfo['USER_NAME'];
+  let token = jwt.generateToken({
+    userid: userid,
+  });
+
+  return [
+    false,
+    {
+      token,
+      userinfo,
+      qywxuserid,
+    },
+  ];
+};
+
+module.exports = {
+  getAccessToken,
+  getUserId,
+  getRedirectUrl,
+  updateUser,
+  getIdmList,
+  getIdmUser,
+  code2token,
+};