@kne/fastify-account 1.0.0-alpha.0

package/libs/services/account.js

@@ -0,0 +1,200 @@
+const fp = require('fastify-plugin');
+const dayjs = require('dayjs');
+const bcrypt = require('bcryptjs');
+
+function generateRandom6DigitNumber() {
+  const randomNumber = Math.random() * 1000000;
+  return Math.floor(randomNumber).toString().padStart(6, '0');
+}
+
+function userNameIsEmail(username) {
+  return /^([a-zA-Z0-9_.-])+@(([a-zA-Z0-9-])+\.)+([a-zA-Z0-9]{2,4})+$/.test(username);
+}
+
+module.exports = fp(async (fastify, options) => {
+  const login = async ({ username, password, ip }) => {
+    const isEmail = userNameIsEmail(username);
+    const user = await fastify.account.models.user.findOne({
+      where: Object.assign(
+        {},
+        isEmail
+          ? {
+              email: username
+            }
+          : {
+              phone: username
+            },
+        {
+          status: {
+            [fastify.sequelize.Sequelize.Op.or]: [0, 1]
+          }
+        }
+      )
+    });
+
+    if (!user) {
+      throw new Error('用户名或密码错误');
+    }
+
+    await passwordAuthentication({ accountId: user.userAccountId, password });
+
+    await fastify.account.models.loginLog.create({
+      userId: user.id,
+      ip
+    });
+
+    return fastify.jwt.sign({ payload: { id: user.id } });
+  };
+
+  const passwordAuthentication = async ({ accountId, password }) => {
+    const userAccount = await fastify.account.models.userAccount.findByPk(accountId);
+    if (!userAccount) {
+      throw new Error('账号不存在');
+    }
+    const generatedHash = await bcrypt.hash(password + userAccount.salt, userAccount.salt);
+    if (userAccount.password !== generatedHash) {
+      throw new Error('用户名或密码错误');
+    }
+  };
+
+  const passwordEncryption = async password => {
+    const salt = await bcrypt.genSalt(10);
+    const combinedString = password + salt;
+    const hash = await bcrypt.hash(combinedString, salt);
+
+    return {
+      password: hash,
+      salt
+    };
+  };
+
+  const resetPassword = async ({ userId, password }) => {
+    const userInfo = await fastify.account.models.user.findByPk(userId);
+    if (!userInfo) {
+      throw new Error('用户不存在');
+    }
+    const account = await fastify.account.models.userAccount.create(
+      Object.assign({}, await passwordEncryption(password), {
+        belongToUserId: userId
+      })
+    );
+
+    await userInfo.update({ userAccountId: account.id });
+  };
+
+  const register = async ({ avatar, nickname, gender, birthday, description, phone, email, code, password, status, invitationCode }) => {
+    const type = phone ? 0 : 1;
+    const verificationCode = await fastify.account.models.verificationCode.findOne({
+      where: {
+        name: type === 0 ? phone : email,
+        type,
+        code,
+        status: 1
+      }
+    });
+    if (!verificationCode) {
+      throw new Error('验证码不正确或者已经过期');
+    }
+
+    verificationCode.status = 2;
+    await verificationCode.save();
+
+    return await fastify.account.services.user.addUser({
+      avatar,
+      nickname,
+      gender,
+      birthday,
+      description,
+      phone,
+      email,
+      password,
+      status
+    });
+  };
+
+  const sendEmailCode = async ({ email }) => {
+    const code = generateRandom6DigitNumber();
+
+    // 这里写发送逻辑
+
+    await fastify.account.models.verificationCode.update(
+      {
+        status: 2
+      },
+      {
+        where: {
+          name: email,
+          type: 1,
+          status: 0
+        }
+      }
+    );
+
+    await fastify.account.models.verificationCode.create({
+      name: email,
+      type: 1,
+      code
+    });
+
+    return code;
+  };
+
+  const verificationCodeValidate = async ({ name, type, code }) => {
+    const verificationCode = await fastify.account.models.verificationCode.findOne({
+      where: {
+        name,
+        type,
+        code,
+        status: {
+          [fastify.sequelize.Sequelize.Op.or]: [0, 1]
+        }
+      }
+    });
+    const isPass = !!(verificationCode && dayjs().isBefore(dayjs(verificationCode.createdAt).add(10, 'minute')));
+
+    if (verificationCode) {
+      verificationCode.status = isPass ? 1 : 2;
+      await verificationCode.save();
+    }
+
+    return isPass;
+  };
+
+  const sendSMSCode = async ({ phone }) => {
+    const code = generateRandom6DigitNumber();
+
+    // 这里写发送逻辑
+
+    await fastify.account.models.verificationCode.update(
+      {
+        status: 2
+      },
+      {
+        where: {
+          name: phone,
+          type: 0,
+          status: 0
+        }
+      }
+    );
+
+    await fastify.account.models.verificationCode.create({
+      name: phone,
+      type: 0,
+      code
+    });
+
+    return code;
+  };
+
+  fastify.account.services.account = {
+    login,
+    register,
+    sendEmailCode,
+    sendSMSCode,
+    verificationCodeValidate,
+    passwordEncryption,
+    passwordAuthentication,
+    resetPassword
+  };
+});

package/libs/services/admin.js

@@ -0,0 +1,183 @@
+const fp = require('fastify-plugin');
+
+const ROLE = {
+  SuperAdmin: 'SuperAdmin',
+  TenantAdmin: 'TenantAdmin'
+};
+
+module.exports = fp(async (fastify, options) => {
+  const initSuperAdmin = async user => {
+    if ((await fastify.account.models.adminRole.count()) > 0) {
+      throw new Error('系统已经初始化完成，不能执行该操作');
+    }
+    await fastify.account.models.adminRole.create({
+      userId: user.id,
+      role: ROLE['SuperAdmin']
+    });
+  };
+
+  const superAdminAuthenticate = async user => {
+    if (
+      (await fastify.account.models.adminRole.count({
+        where: {
+          userId: user.id,
+          role: ROLE['SuperAdmin']
+        }
+      })) === 0
+    ) {
+      throw new Error('不能执行该操作，需要超级管理员权限');
+    }
+  };
+
+  const addUser = async ({ avatar, nickname, phone, email, password, description }) => {
+    return await fastify.account.services.user.addUser({
+      avatar,
+      nickname,
+      phone,
+      email,
+      password,
+      description,
+      status: 1
+    });
+  };
+
+  const setSuperAdmin = async targetUser => {
+    const user = await fastify.account.services.user.getUserInfo(targetUser);
+    if (
+      (await fastify.account.models.adminRole.count({
+        where: {
+          userId: user.id,
+          role: ROLE['SuperAdmin']
+        }
+      })) > 0
+    ) {
+      throw new Error('当前用户已经是超级管理员');
+    }
+
+    await fastify.account.models.adminRole.create({
+      userId: user.id,
+      role: ROLE['SuperAdmin']
+    });
+  };
+
+  const getAllUserList = async ({ filter, perPage, currentPage }) => {
+    const { count, rows } = await fastify.account.models.user.findAndCountAll({
+      include: [
+        {
+          attributes: ['role'],
+          model: fastify.account.models.adminRole
+        },
+        {
+          model: fastify.account.models.tenant
+        }
+      ]
+    });
+    return {
+      pageData: rows,
+      totalCount: count
+    };
+  };
+
+  const getAllTenantList = async ({ filter, perPage, currentPage }) => {
+    const queryFilter = {};
+    if (filter?.name) {
+      queryFilter.name = {
+        [fastify.sequelize.Sequelize.Op.like]: `%${filter.name}%`
+      };
+    }
+
+    if (filter?.serviceStartTime) {
+      queryFilter.serviceStartTime = {
+        [fastify.sequelize.Sequelize.Op.gt]: filter.serviceStartTime
+      };
+    }
+
+    if (filter?.serviceEndTime) {
+      queryFilter.serviceEndTime = {
+        [fastify.sequelize.Sequelize.Op.lt]: filter.serviceEndTime
+      };
+    }
+
+    const { count, rows } = await fastify.account.models.tenant.findAndCountAll({
+      where: queryFilter,
+      offset: currentPage * (currentPage - 1),
+      limit: perPage
+    });
+
+    const res = await fastify.account.models.tenantUser.findAll({
+      attributes: ['tenantId', fastify.sequelize.instance.fn('count', fastify.sequelize.instance.col('tenantId'))],
+      where: {
+        tenantId: {
+          [fastify.sequelize.Sequelize.Op.in]: rows.map(({ id }) => id)
+        }
+      },
+      group: 'tenantId'
+    });
+
+    return {
+      pageData: rows,
+      totalCount: count
+    };
+  };
+
+  const addTenant = async tenant => {
+    if (await fastify.account.models.tenant.count({ where: { name: tenant.name } })) {
+      throw new Error('租户名称不能重复');
+    }
+
+    const t = await fastify.sequelize.instance.transaction();
+    try {
+      const currentTenant = await fastify.account.models.tenant.create(tenant);
+      await fastify.account.models.tenantRole.create(
+        {
+          name: '系统默认角色',
+          tenantId: currentTenant.id,
+          description: '创建租户时自动生成，可以设置权限，不可更改删除，所有租户用户默认拥有该角色',
+          type: 1
+        },
+        { transaction: t }
+      );
+      await fastify.account.models.tenantOrg.create(
+        {
+          name: '根组织',
+          tenantId: currentTenant.id
+        },
+        { transaction: t }
+      );
+      await t.commit();
+    } catch (e) {
+      await t.rollback();
+      throw e;
+    }
+  };
+
+  const saveTenant = async tenant => {
+    const currentTenant = await fastify.account.models.tenant.findByPk(tenant.id);
+    if (!currentTenant) {
+      throw new Error('租户不存在，请刷新以后重试');
+    }
+    await currentTenant.update(tenant);
+  };
+
+  const generateTenantAdminVerifyCode = async () => {};
+
+  const verifyTenantAdmin = async () => {};
+
+  const resetUserPassword = async ({ userId, password }) => {
+    await fastify.account.services.account.resetPassword({ userId, password });
+  };
+
+  fastify.account.services.admin = {
+    initSuperAdmin,
+    setSuperAdmin,
+    getAllUserList,
+    getAllTenantList,
+    addTenant,
+    saveTenant,
+    superAdminAuthenticate,
+    generateTenantAdminVerifyCode,
+    verifyTenantAdmin,
+    resetUserPassword,
+    addUser
+  };
+});