@pubinfo-nightly/module-auth 2025.11.14

package/src/pages/auth.ts

@@ -0,0 +1,53 @@
+import { useUserStore } from 'pubinfo-nightly';
+import { defineComponent, h, onMounted, ref } from 'vue';
+
+export const PageAuth = defineComponent({
+  props: {
+    type: String,
+    redirectTo: Function,
+    authenticate: Function,
+  },
+  setup(props) {
+    const userStore = useUserStore();
+    const route = useRoute();
+    const router = useRouter();
+
+    const message = ref('授权登录中...');
+
+    onMounted(async () => {
+      const res = await props.authenticate?.(props.type);
+      if (res?.success) {
+        userStore.setToken(res?.data?.accessToken, res?.data?.refreshToken);
+
+        // 读取路由上的 redirect 参数
+        const redirect = route.query.redirect?.toString();
+        if (redirect) {
+          router.push(redirect);
+          return;
+        }
+
+        // 默认的重定向地址
+        props?.redirectTo?.();
+      }
+      else {
+        message.value = res?.msg ?? res?.message;
+      }
+    });
+
+    return () => {
+      return h(
+        'div',
+        {
+          style: {
+            display: 'flex',
+            justifyContent: 'center',
+            alignItems: 'center',
+            width: '100vw',
+            height: '100vh',
+          },
+        },
+        message.value,
+      );
+    };
+  },
+});

package/src/providers/4A.ts

@@ -0,0 +1,36 @@
+import type { ProviderOptions, ProviderUserOptions } from '../interface';
+
+export interface FourAOptions extends ProviderUserOptions {
+  /** `client_id` */
+  clientId?: string
+
+  /** `redirect_uri` */
+  redirectUri?: string
+}
+
+/**
+ * `4A 统一认证`
+ *
+ * - 携带 `client_id` 和 `redirect_uri`，前往 [4A认证中心](http://134.108.76.137:7001/index) 进行登录；
+ * - 成功登录后，4A认证中心会回调 `redirect_uri` 并携带参数；
+ * - 当前 `provider` 将获取参数值并调用 `/bs/loginBy4a` 完成登录认证。
+ */
+export default function FourA(options: FourAOptions): ProviderOptions {
+  const { clientId, redirectUri } = options;
+
+  return {
+    id: '4A',
+    name: '4A登录',
+    type: 'oauth',
+    signIn: {
+      url: 'http://134.108.76.137:7001/index',
+      params: {
+        response_type: 'code',
+        client_id: clientId,
+        redirect_uri: redirectUri,
+      },
+    },
+    authenticate: '/bs/loginBy4a',
+    ...options,
+  };
+}

package/src/providers/credentials.ts

@@ -0,0 +1,15 @@
+import type { ProviderOptions, ProviderUserOptions } from '../interface';
+
+export interface CredentialsOptions extends ProviderUserOptions {}
+
+/**
+ * 凭证登录
+ */
+export default function Credentials(options?: CredentialsOptions): ProviderOptions {
+  return {
+    id: 'credentials',
+    name: '凭证登录',
+    type: 'custom',
+    ...options,
+  };
+}

package/src/providers/ding-zj.ts

@@ -0,0 +1,82 @@
+import type { Authorization, ProviderOptions, ProviderUserOptions } from '../interface';
+
+export interface DingZJOptions extends ProviderUserOptions {
+  /**
+   * 登录方式
+   * - `redirect` 跳转浙政钉的扫码页面
+   * - `embed` 内嵌浙政钉的登录二维码
+   */
+  mode: 'redirect' | 'embed'
+
+  /** `client_id` */
+  clientId?: string
+
+  /** `redirect_uri` */
+  redirectUri?: string
+}
+
+/**
+ * 浙政钉扫码登录
+ */
+export default function DingZJ(options: DingZJOptions): ProviderOptions {
+  const { clientId, redirectUri } = options;
+
+  const signIn: Record<string, Authorization> = {
+    /** 跳转外部页面 */
+    redirect: {
+      url: 'https://openplatform-pro.ding.zj.gov.cn/oauth2/auth.htm',
+      params: {
+        response_type: 'code',
+        client_id: clientId,
+        redirect_uri: redirectUri,
+        scope: 'get_user_info',
+        authType: 'QRCODE',
+      },
+    },
+
+    /** 内嵌二维码 */
+    embed: {
+      url: 'https://login-pro.ding.zj.gov.cn/oauth2/auth.htm',
+      params: {
+        response_type: 'code',
+        client_id: clientId,
+        redirect_uri: redirectUri,
+        scope: 'get_user_info',
+        authType: 'QRCODE',
+        embedMode: 'true',
+      },
+    },
+  };
+
+  const initQRCode: ProviderOptions['initQRCode'] = (url, options) => {
+    const target = document.getElementById(options.id);
+
+    if (!target) {
+      throw new Error(`未找到id为${options.id}的DOM元素`);
+    }
+
+    const iframe = document.createElement('iframe');
+    iframe.src = url;
+    iframe.width = '200';
+    iframe.height = '200';
+    document.appendChild(iframe);
+
+    window.addEventListener('message', (e) => {
+      if (options.redirectUri) {
+        const url = new URL(options.redirectUri);
+        url.search = new URLSearchParams(e.data).toString();
+        window.location.href = url.toString();
+      }
+    });
+  };
+
+  return {
+    id: 'ding-zj',
+    name: '浙政钉登录',
+    type: 'oauth',
+    signIn: signIn[options.mode],
+    authenticate: '/bs/loginByDingZJ',
+    initQRCode: options.mode === 'embed' ? initQRCode : undefined,
+    ...options,
+  };
+}

package/src/providers/sso.ts

@@ -0,0 +1,44 @@
+import type { ProviderOptions, ProviderUserOptions } from '@/interface';
+
+export interface SsoOptions extends ProviderUserOptions {
+  /**
+   * 登录类型，根据调用 `/app/oauth/generateCode` 接口时传递的 `grantType` 参数值判断：
+   *
+   * - `OAUTH2` -> `defaultOauth2`
+   * - `SIMPLE_ENCRYPT` -> `encrypt`
+   *
+   * @default `defaultOauth2`
+   */
+  loginType?: 'defaultOauth2' | 'encrypt'
+}
+
+/**
+ * `SSO 统一账号登录`
+ *
+ * - 主系统调用 `/app/oauth/generateCode?appKey=xxx` 获取 `code`，并作为参数跳转至子系统；
+ * - 当前 `provider` 将获取 `code` 并调用 `/auth/ssoLogin` 完成登录认证。
+ */
+export default function Sso(options: SsoOptions = {}): ProviderOptions {
+  const { loginType = 'defaultOauth2' } = options;
+
+  return {
+    id: 'sso',
+    name: 'SSO统一账号登录',
+    type: 'custom',
+    authenticate: async (params, baseURL) => {
+      const res = await fetch(
+        `${baseURL}/auth/ssoLogin`,
+        {
+          headers: { 'Content-Type': 'application/json' },
+          method: 'POST',
+          body: JSON.stringify({
+            ...params,
+            loginType,
+          }),
+        },
+      );
+      return await res.json();
+    },
+    ...options,
+  };
+}