@pubinfo-nightly/module-auth 2025.11.14

package/dist/interface.d.ts

@@ -0,0 +1,51 @@
+import { RouteLocationRaw } from '../../../node_modules/.pnpm/vue-router@4.5.1_vue@3.5.17_typescript@5.8.3_/node_modules/vue-router';
+export type Recordable = Record<string, any>;
+export type Fn<T = any, K = any> = (params?: Recordable & T) => Promise<K> | K;
+export type FnApi<T = any> = (params: Recordable & T, baseURL: string) => Promise<any>;
+export interface AuthOptions {
+    /** 登录后默认重定向至 */
+    redirectTo?: RouteLocationRaw | Fn;
+    /** 页面配置 */
+    pages?: {
+        /** 默认登录页 */
+        signIn?: RouteLocationRaw;
+    };
+    /** 接口的baseURL */
+    baseURL: string;
+    providers?: ProviderOptions[];
+}
+export interface InternalContext {
+    /** 接口的baseURL */
+    baseURL: string;
+    providers?: ProviderOptions[];
+}
+/** 第三方类型 */
+export type ThirdParty = string;
+export type ProviderUserOptions = Partial<ProviderOptions>;
+export interface ProviderOptions {
+    /** 唯一值 */
+    id: string;
+    /** 名称 */
+    name: string;
+    /**
+     * 协议类型
+     * - `oauth` 第三方授权登录
+     * - `cas` 统一账号登录
+     * - `custom` 自定义
+     */
+    type: 'oauth' | 'cas' | 'custom';
+    /** 授权登录地址 */
+    signIn?: Authorization | Fn;
+    /** 授权登录接口 */
+    authenticate?: string | FnApi;
+    /** 初始化二维码 */
+    initQRCode?: (url: string, params: {
+        id: string;
+    } & Recordable) => Promise<void> | void;
+}
+export interface Authorization {
+    /** 授权登录地址 */
+    url: string;
+    /** 授权登录参数 */
+    params?: Recordable;
+}

package/dist/pages/auth.d.ts

@@ -0,0 +1,11 @@
+export declare const PageAuth: import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').DefineComponent<import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').ExtractPropTypes<{
+    type: StringConstructor;
+    redirectTo: FunctionConstructor;
+    authenticate: FunctionConstructor;
+}>, () => import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').VNode<import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').RendererNode, import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').RendererElement, {
+    [key: string]: any;
+}>, {}, {}, {}, import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').ComponentOptionsMixin, import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').ComponentOptionsMixin, {}, string, import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').PublicProps, Readonly<import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').ExtractPropTypes<{
+    type: StringConstructor;
+    redirectTo: FunctionConstructor;
+    authenticate: FunctionConstructor;
+}>> & Readonly<{}>, {}, {}, {}, {}, string, import('../../../../node_modules/.pnpm/vue@3.5.17_typescript@5.8.3/node_modules/vue').ComponentProvideOptions, true, {}, any>;

package/dist/providers/4A.d.ts

@@ -0,0 +1,15 @@
+import { ProviderOptions, ProviderUserOptions } from '../interface';
+export interface FourAOptions extends ProviderUserOptions {
+    /** `client_id` */
+    clientId?: string;
+    /** `redirect_uri` */
+    redirectUri?: string;
+}
+/**
+ * `4A 统一认证`
+ *
+ * - 携带 `client_id` 和 `redirect_uri`，前往 [4A认证中心](http://134.108.76.137:7001/index) 进行登录；
+ * - 成功登录后，4A认证中心会回调 `redirect_uri` 并携带参数；
+ * - 当前 `provider` 将获取参数值并调用 `/bs/loginBy4a` 完成登录认证。
+ */
+export default function FourA(options: FourAOptions): ProviderOptions;

package/dist/providers/4A.js

@@ -0,0 +1,21 @@
+function i(e) {
+  const { clientId: t, redirectUri: r } = e;
+  return {
+    id: "4A",
+    name: "4A登录",
+    type: "oauth",
+    signIn: {
+      url: "http://134.108.76.137:7001/index",
+      params: {
+        response_type: "code",
+        client_id: t,
+        redirect_uri: r
+      }
+    },
+    authenticate: "/bs/loginBy4a",
+    ...e
+  };
+}
+export {
+  i as default
+};

package/dist/providers/credentials.d.ts

@@ -0,0 +1,7 @@
+import { ProviderOptions, ProviderUserOptions } from '../interface';
+export interface CredentialsOptions extends ProviderUserOptions {
+}
+/**
+ * 凭证登录
+ */
+export default function Credentials(options?: CredentialsOptions): ProviderOptions;

package/dist/providers/credentials.js

@@ -0,0 +1,11 @@
+function t(e) {
+  return {
+    id: "credentials",
+    name: "凭证登录",
+    type: "custom",
+    ...e
+  };
+}
+export {
+  t as default
+};

package/dist/providers/ding-zj.d.ts

@@ -0,0 +1,17 @@
+import { ProviderOptions, ProviderUserOptions } from '../interface';
+export interface DingZJOptions extends ProviderUserOptions {
+    /**
+     * 登录方式
+     * - `redirect` 跳转浙政钉的扫码页面
+     * - `embed` 内嵌浙政钉的登录二维码
+     */
+    mode: 'redirect' | 'embed';
+    /** `client_id` */
+    clientId?: string;
+    /** `redirect_uri` */
+    redirectUri?: string;
+}
+/**
+ * 浙政钉扫码登录
+ */
+export default function DingZJ(options: DingZJOptions): ProviderOptions;

package/dist/providers/ding-zj.js

@@ -0,0 +1,49 @@
+function g(e) {
+  const { clientId: i, redirectUri: n } = e, a = {
+    /** 跳转外部页面 */
+    redirect: {
+      url: "https://openplatform-pro.ding.zj.gov.cn/oauth2/auth.htm",
+      params: {
+        response_type: "code",
+        client_id: i,
+        redirect_uri: n,
+        scope: "get_user_info",
+        authType: "QRCODE"
+      }
+    },
+    /** 内嵌二维码 */
+    embed: {
+      url: "https://login-pro.ding.zj.gov.cn/oauth2/auth.htm",
+      params: {
+        response_type: "code",
+        client_id: i,
+        redirect_uri: n,
+        scope: "get_user_info",
+        authType: "QRCODE",
+        embedMode: "true"
+      }
+    }
+  }, o = (c, t) => {
+    if (!document.getElementById(t.id))
+      throw new Error(`未找到id为${t.id}的DOM元素`);
+    const r = document.createElement("iframe");
+    r.src = c, r.width = "200", r.height = "200", document.appendChild(r), window.addEventListener("message", (s) => {
+      if (t.redirectUri) {
+        const d = new URL(t.redirectUri);
+        d.search = new URLSearchParams(s.data).toString(), window.location.href = d.toString();
+      }
+    });
+  };
+  return {
+    id: "ding-zj",
+    name: "浙政钉登录",
+    type: "oauth",
+    signIn: a[e.mode],
+    authenticate: "/bs/loginByDingZJ",
+    initQRCode: e.mode === "embed" ? o : void 0,
+    ...e
+  };
+}
+export {
+  g as default
+};

package/dist/providers/sso.d.ts

@@ -0,0 +1,19 @@
+import { ProviderOptions, ProviderUserOptions } from '../interface';
+export interface SsoOptions extends ProviderUserOptions {
+    /**
+     * 登录类型，根据调用 `/app/oauth/generateCode` 接口时传递的 `grantType` 参数值判断：
+     *
+     * - `OAUTH2` -> `defaultOauth2`
+     * - `SIMPLE_ENCRYPT` -> `encrypt`
+     *
+     * @default `defaultOauth2`
+     */
+    loginType?: 'defaultOauth2' | 'encrypt';
+}
+/**
+ * `SSO 统一账号登录`
+ *
+ * - 主系统调用 `/app/oauth/generateCode?appKey=xxx` 获取 `code`，并作为参数跳转至子系统；
+ * - 当前 `provider` 将获取 `code` 并调用 `/auth/ssoLogin` 完成登录认证。
+ */
+export default function Sso(options?: SsoOptions): ProviderOptions;

package/dist/providers/sso.js

@@ -0,0 +1,23 @@
+function o(t = {}) {
+  const { loginType: e = "defaultOauth2" } = t;
+  return {
+    id: "sso",
+    name: "SSO统一账号登录",
+    type: "custom",
+    authenticate: async (a, n) => await (await fetch(
+      `${n}/auth/ssoLogin`,
+      {
+        headers: { "Content-Type": "application/json" },
+        method: "POST",
+        body: JSON.stringify({
+          ...a,
+          loginType: e
+        })
+      }
+    )).json(),
+    ...t
+  };
+}
+export {
+  o as default
+};

package/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "@pubinfo-nightly/module-auth",
+  "type": "module",
+  "version": "2025.11.14",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    },
+    "./providers/*": {
+      "types": "./dist/providers/*.d.ts",
+      "default": "./dist/providers/*.js"
+    }
+  },
+  "main": "./dist/index.js",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist",
+    "src"
+  ],
+  "engines": {
+    "node": "^20.19.0 || >=22.12.0"
+  },
+  "peerDependencies": {
+    "pubinfo-nightly": "2025.11.14"
+  },
+  "devDependencies": {
+    "pubinfo-nightly": "2025.11.14"
+  },
+  "scripts": {
+    "dev": "pubinfo build --watch",
+    "build": "pubinfo build",
+    "generate": "pubinfo generate"
+  }
+}

package/src/components/LoginWithFourA/index.ts

@@ -0,0 +1,16 @@
+import { defineComponent, h } from 'vue';
+import FourAPNG from '@/assets/images/4A.png';
+import { RedirectLogin } from '../RedirectLogin';
+
+export const LoginWithFourA = defineComponent({
+  name: 'LoginWithFourA',
+  props: {
+    color: {
+      type: String,
+      default: '#1677FF',
+    },
+  },
+  setup(props) {
+    return () => h(RedirectLogin, { id: '4A', src: FourAPNG, color: props.color });
+  },
+});

package/src/components/RedirectLogin/index.ts

@@ -0,0 +1,43 @@
+import { defineComponent, h } from 'vue';
+import { signIn } from '@/core';
+import { getProvider } from '@/helper';
+
+export const RedirectLogin = defineComponent({
+  name: 'RedirectLogin',
+  props: {
+    id: String,
+    src: String,
+    color: String,
+  },
+  setup(props) {
+    const provider = getProvider(props.id);
+    return () => {
+      return h('div', [
+        h(
+          'div',
+          { style: { padding: '3rem' } },
+          h('img', { src: props.src, class: 'w-full' }),
+        ),
+        h(
+          'button',
+          {
+            style: {
+              width: '100%',
+              color: '#ffffff',
+              cursor: 'pointer',
+              border: '0',
+              borderRadius: '0.25rem',
+              padding: '0.75rem 1.25rem',
+              fontSize: '0.875rem',
+              lineHeight: '1.25rem',
+              letterSpacing: '0.1em',
+              backgroundColor: props.color,
+            },
+            onClick: () => signIn(provider.id),
+          },
+          `前往${provider.name}`,
+        ),
+      ]);
+    };
+  },
+});

package/src/context.ts

@@ -0,0 +1,4 @@
+import type { InternalContext } from './interface';
+import { createContext } from 'pubinfo-nightly';
+
+export const ctx = createContext<InternalContext>('auth');

package/src/core.ts

@@ -0,0 +1,75 @@
+import type { Recordable, ThirdParty } from './interface';
+import { ctx } from './context';
+import { createUrl, createUrlByProvider, getProvider } from './helper';
+
+/**
+ * 前往登录
+ * @param id 唯一值
+ * @param options 登录时需要传递的参数
+ */
+export async function signIn(id: ThirdParty, options?: Recordable) {
+  const provider = getProvider(id);
+
+  if (typeof provider.signIn === 'function') {
+    return await provider.signIn(options);
+  }
+
+  if (['oauth', 'custom'].includes(provider.type)) {
+    const url = createUrlByProvider(provider);
+    window.location.replace(url);
+  }
+}
+
+/**
+ * 生成二维码
+ * @param id 第三方的唯一值
+ * @param options 生成二维码需要传递的参数
+ * @param options.id `getElementById`中指定的`id`
+ */
+export function renderQRCode(id: ThirdParty, options: { id: string } & Recordable) {
+  const provider = getProvider(id);
+
+  if (['oauth', 'custom'].includes(provider.type)) {
+    const url = createUrlByProvider(provider);
+    provider.initQRCode?.(url, options);
+  }
+}
+
+/**
+ * 认证
+ * @param id 第三方的唯一值
+ */
+export async function authenticate(id: ThirdParty) {
+  const provider = getProvider(id);
+  const { baseURL } = ctx.use();
+
+  // TODO 处理hash路由中的#
+  // 获取URL上的参数
+  const qs = window.location.href.split('?')?.[1] ?? '';
+  const params = new URLSearchParams(qs);
+  const paramsObject = Object.fromEntries(params.entries());
+
+  if (typeof provider.authenticate === 'function') {
+    return await provider.authenticate(paramsObject, baseURL);
+  }
+
+  if (['oauth', 'cas', 'custom'].includes(provider.type)) {
+    const url = createUrl(`${baseURL}${provider.authenticate}`, paramsObject);
+    const response = await fetch(url);
+    return await response.json();
+  }
+}
+
+/**
+ * 重定向至统一登录页
+ */
+export function redirect() {
+  const { providers } = ctx.use();
+  const provider = providers?.find(provider => provider.type === 'cas');
+  if (!provider) {
+    return;
+  }
+
+  const url = createUrlByProvider(provider);
+  window.location.replace(url);
+}

package/src/helper.ts

@@ -0,0 +1,77 @@
+import type { ProviderUserOptions, Recordable, ThirdParty } from './interface';
+import { ctx } from './context';
+
+/**
+ * 获取指定的 `Provider`
+ * @param id
+ */
+export function getProvider(id?: ThirdParty) {
+  const { providers } = ctx.use();
+  const provider = id ? providers?.find(provider => provider.id === id) : providers?.[0];
+  if (!provider) {
+    throw new Error(`Provider '${id}' is not found.`);
+  }
+  return provider;
+}
+
+/**
+ * 构建第三方授权登录地址
+ * @param provider
+ */
+export function createUrlByProvider(provider: ProviderUserOptions) {
+  const { signIn } = provider;
+
+  if (typeof signIn === 'function') {
+    return '';
+  }
+
+  return createUrl(signIn?.url, signIn?.params);
+}
+
+/**
+ * 构建携带 `params` 的 URL
+ * @param url
+ * @param params
+ */
+export function createUrl(url: string = '', params: Recordable = {}) {
+  const _url = new URL(url);
+  const _params = new URLSearchParams(_url.search);
+
+  // 合并参数
+  for (const [key, value] of Object.entries(params)) {
+    _params.set(key, value);
+  }
+
+  _url.search = _params.toString();
+
+  return _url.toString();
+}
+
+/**
+ * 读取 `URL` 上的 `params` 参数
+ * @param url
+ */
+export function readUrlParams(url?: string): URLSearchParams {
+  const { href, search, hash } = url ? new URL(url) : window.location;
+
+  // 1.优先从 search（history 模式）拿
+  if (search) {
+    return new URLSearchParams(search);
+  };
+
+  // 2.再尝试从 hash（hash 模式）里拿
+  // 可能是 /#/callback?code=xxx
+  const hashIndex = hash.indexOf('?');
+  if (hashIndex !== -1) {
+    return new URLSearchParams(hash.slice(hashIndex));
+  }
+
+  // 3.fallback：尝试整个 URL
+  const qsIndex = href.indexOf('?');
+  if (qsIndex !== -1) {
+    return new URLSearchParams(href.slice(qsIndex));
+  }
+
+  // 4.否则返回空
+  return new URLSearchParams();
+}

package/src/index.ts

@@ -0,0 +1,78 @@
+import type { ModuleOptions } from 'pubinfo-nightly';
+import type { RouteRecordRaw } from 'vue-router';
+import type { AuthOptions } from './interface';
+import { cleanup } from 'pubinfo-nightly';
+import { ctx } from './context';
+import { authenticate, redirect } from './core';
+import { PageAuth } from './pages/auth';
+
+export function auth(options: AuthOptions): ModuleOptions {
+  const {
+    redirectTo = '/',
+    pages = {},
+    baseURL,
+    providers,
+  } = options;
+  const { signIn = '/login' } = pages;
+
+  ctx.set({ baseURL, providers });
+
+  return {
+    name: 'pubinfo-nightly:auth',
+    enforce: 'pre',
+    setup(ctx) {
+      const { router } = ctx;
+
+      const ROUTE_AUTH: RouteRecordRaw = {
+        path: '/auth/:type',
+        name: 'Auth',
+        component: PageAuth,
+        meta: {
+          whiteList: true,
+          title: '授权登录',
+        },
+        props: route => ({
+          type: route.params.type,
+          authenticate,
+          redirectTo() {
+            if (typeof redirectTo === 'function') {
+              redirectTo();
+              return;
+            }
+
+            router.push(redirectTo);
+          },
+        }),
+      };
+
+      router.beforeEach((to) => {
+        // 注册静态页面
+        if (!router.hasRoute(ROUTE_AUTH.name!)) {
+          router.addRoute(ROUTE_AUTH);
+          return to.fullPath;
+        }
+
+        // 前往单点登录前，清空登录状态
+        if (to.name === ROUTE_AUTH.name) {
+          cleanup();
+        }
+
+        // 前往登录前，重定向至统一登录页（若有）
+        if (to.path === signIn) {
+          redirect();
+        }
+      });
+    },
+  };
+}
+
+export { LoginWithFourA } from './components/LoginWithFourA';
+
+export {
+  authenticate,
+  redirect,
+  renderQRCode,
+  signIn,
+} from './core';
+
+export * from './interface';

package/src/interface.ts

@@ -0,0 +1,65 @@
+import type { RouteLocationRaw } from 'vue-router';
+
+export type Recordable = Record<string, any>;
+export type Fn<T = any, K = any> = (params?: Recordable & T) => Promise<K> | K;
+export type FnApi<T = any> = (params: Recordable & T, baseURL: string) => Promise<any>;
+
+export interface AuthOptions {
+  /** 登录后默认重定向至 */
+  redirectTo?: RouteLocationRaw | Fn
+
+  /** 页面配置 */
+  pages?: {
+    /** 默认登录页 */
+    signIn?: RouteLocationRaw
+  }
+
+  /** 接口的baseURL */
+  baseURL: string
+
+  providers?: ProviderOptions[]
+}
+
+export interface InternalContext {
+  /** 接口的baseURL */
+  baseURL: string
+
+  providers?: ProviderOptions[]
+}
+
+/** 第三方类型 */
+export type ThirdParty = string;
+export type ProviderUserOptions = Partial<ProviderOptions>;
+
+export interface ProviderOptions {
+  /** 唯一值 */
+  id: string
+
+  /** 名称 */
+  name: string
+
+  /**
+   * 协议类型
+   * - `oauth` 第三方授权登录
+   * - `cas` 统一账号登录
+   * - `custom` 自定义
+   */
+  type: 'oauth' | 'cas' | 'custom'
+
+  /** 授权登录地址 */
+  signIn?: Authorization | Fn
+
+  /** 授权登录接口 */
+  authenticate?: string | FnApi
+
+  /** 初始化二维码 */
+  initQRCode?: (url: string, params: { id: string } & Recordable) => Promise<void> | void
+}
+
+export interface Authorization {
+  /** 授权登录地址 */
+  url: string
+
+  /** 授权登录参数 */
+  params?: Recordable
+}