midway-fatcms 0.0.1-beta.26 → 0.0.1-beta.28

package/src/models/userSession.ts

@@ -1,216 +0,0 @@
-import * as _ from 'lodash';
-import { KeysOfAuthType } from '../libs/crud-pro/models/keys';
-import { MixinUtils } from '../libs/crud-pro/utils/MixinUtils';
-import { CommonException, Exceptions } from '../libs/crud-pro/exceptions';
-import { parseStringTrimArray } from '../libs/utils/functions';
-
-const sessionCookieCfg = {
-  signed: true,
-  encrypt: true,
-  httpOnly: true,
-  maxAge: 1000 * 3600 * 24 * 365,
-};
-
-const SESSION_ID_KEY = 'fatcmssessionid';
-const SYS_ACCOUNT_TYPE = 'fatcms';
-
-interface ISessionInfo {
-  nickName: string;
-  avatar: string;
-  roleCodes: string[];
-  functionCodes: string[];
-  loginName: string;
-  sessionId: string;
-  accountId: string;
-  workbenchCode: string;
-  accountType: string;
-}
-
-interface IConsumerUserInfo {
-  workbenchCode: string;
-  accountType: string;
-  accountId: string;
-  nickName: string;
-  loginName: string;
-  avatar: string;
-}
-
-interface IBatchCheckProps {
-  permissionCodeList?: string[];
-  roleCodeList?: string[];
-}
-
-interface IBatchCheckRes {
-  permissionCodeResult: Record<string, boolean>;
-  roleCodeResult: Record<string, boolean>;
-}
-
-function createEmptySessionInfo(superAdmin: boolean): ISessionInfo {
-  return {
-    nickName: superAdmin ? 'SA' : '',
-    avatar: '',
-    roleCodes: [],
-    functionCodes: [],
-    loginName: '',
-    sessionId: '',
-    accountId: '',
-    workbenchCode: '',
-    accountType: '',
-  };
-}
-
-class UserSessionInfo {
-  private readonly sessionInfo: ISessionInfo;
-
-  // 是否是超级管理员；拥有一切权限。紧急情况下使用
-  private readonly superAdmin: boolean;
-  constructor(sessionInfo: ISessionInfo, superAdmin?: boolean) {
-    this.superAdmin = superAdmin === true;
-    if (sessionInfo) {
-      this.sessionInfo = sessionInfo;
-    } else {
-      this.sessionInfo = createEmptySessionInfo(superAdmin);
-    }
-  }
-
-  getSessionInfo(): ISessionInfo {
-    return this.sessionInfo;
-  }
-
-  getSessionValue(key: string): any {
-    return _.get(this.sessionInfo, key);
-  }
-
-  isSuperAdmin(): boolean {
-    return this.superAdmin;
-  }
-
-  /**
-   * 是否是我自己的账号
-   * @param accountId
-   */
-  isMySelf(accountId: string): boolean {
-    const s = this.sessionInfo;
-    return s && accountId && s.accountId === accountId;
-  }
-
-  isLogin(): boolean {
-    const s = this.sessionInfo;
-    return !!(s && s.sessionId && s.accountId && s.sessionId.length > 1);
-  }
-
-  hasAnyPermission(funcCodeList: string | string[]): boolean {
-    if (this.isSuperAdmin()) {
-      return true;
-    }
-    if (typeof funcCodeList === 'string') {
-      return this.hasPermission(funcCodeList);
-    }
-
-    if (Array.isArray(funcCodeList)) {
-      for (let i = 0; i < funcCodeList.length; i++) {
-        const funcCode = funcCodeList[i];
-        if (this.hasPermission(funcCode)) {
-          return true;
-        }
-      }
-      return false;
-    }
-  }
-
-  hasPermission(funcCode: string): boolean {
-    if (this.isSuperAdmin()) {
-      return true;
-    }
-    const ss = this.sessionInfo.functionCodes || [];
-    return ss.includes(funcCode);
-  }
-
-  hasAnyRole(roleCodeList: string | string[]): boolean {
-    if (this.isSuperAdmin()) {
-      return true;
-    }
-    if (typeof roleCodeList === 'string') {
-      return this.hasRole(roleCodeList);
-    }
-
-    if (Array.isArray(roleCodeList)) {
-      for (let i = 0; i < roleCodeList.length; i++) {
-        const funcCode = roleCodeList[i];
-        if (this.hasRole(funcCode)) {
-          return true;
-        }
-      }
-      return false;
-    }
-  }
-
-  hasRole(roleCode: string): boolean {
-    if (this.isSuperAdmin()) {
-      return true;
-    }
-    const ss = this.sessionInfo.roleCodes || [];
-    return ss.includes(roleCode);
-  }
-
-  isAuthPass(authType: KeysOfAuthType, authConfig: string | string[]): boolean {
-    if (authType === KeysOfAuthType.free || !authType) {
-      return true; // 无需校验
-    }
-    if (!this.isLogin()) {
-      return false;
-    }
-    if (this.isSuperAdmin()) {
-      return true;
-    }
-
-    if (authType === KeysOfAuthType.byFuncCode) {
-      const funcCodes = parseStringTrimArray(authConfig);
-      if (MixinUtils.isEmpty(funcCodes)) {
-        throw new CommonException(Exceptions.CFG_AUTH_CODE_EMPTY, '缺少权限编码配置');
-      }
-      return this.hasAnyPermission(funcCodes);
-    }
-
-    if (authType === KeysOfAuthType.byRoleCode) {
-      const roleCodes = parseStringTrimArray(authConfig);
-      if (MixinUtils.isEmpty(roleCodes)) {
-        throw new CommonException(Exceptions.CFG_AUTH_CODE_EMPTY, '缺少角色编码配置');
-      }
-      return this.hasAnyRole(roleCodes);
-    }
-
-    return true;
-  }
-
-  /**
-   * 批量检查权限
-   * @param params
-   */
-  batchCheckPermission(params: IBatchCheckProps): IBatchCheckRes {
-    const { permissionCodeList, roleCodeList } = params;
-    const permissionCodeResult: Record<string, boolean> = {};
-    const roleCodeResult: Record<string, boolean> = {};
-
-    if (Array.isArray(permissionCodeList)) {
-      for (let i = 0; i < permissionCodeList.length; i++) {
-        const permissionCode = permissionCodeList[i];
-        if (permissionCode && typeof permissionCode === 'string') {
-          permissionCodeResult[permissionCode] = this.hasPermission(permissionCode);
-        }
-      }
-    }
-
-    if (Array.isArray(roleCodeList)) {
-      for (let i = 0; i < roleCodeList.length; i++) {
-        const roleCode = roleCodeList[i];
-        if (roleCode && typeof roleCode === 'string') {
-          roleCodeResult[roleCode] = this.hasRole(roleCode);
-        }
-      }
-    }
-    return { permissionCodeResult, roleCodeResult };
-  }
-}
-
-export { ISessionInfo, UserSessionInfo, SESSION_ID_KEY, SYS_ACCOUNT_TYPE, IConsumerUserInfo, sessionCookieCfg };

package/src/schedule/anonymousContext.ts

@@ -1,73 +0,0 @@
-import * as koa from '@midwayjs/koa';
-import { ContextLogger } from '@/models/contextLogger';
-import { Transaction } from '@/libs/crud-pro/models/Transaction';
-import { ISessionInfo, SYS_ACCOUNT_TYPE, UserSessionInfo } from '@/models/userSession';
-import { IWorkbenchEntity } from '@/models/SystemEntities';
-
-const anonymousUserInfo: ISessionInfo = {
-  nickName: 'anonymous_user',
-  avatar: '',
-  roleCodes: [],
-  functionCodes: [],
-  loginName: 'anonymous_user',
-  sessionId: '',
-  accountId: '',
-  workbenchCode: '',
-  accountType: SYS_ACCOUNT_TYPE,
-};
-
-const anonymousWorkbenchInfo: IWorkbenchEntity = {
-  id: 0,
-  workbench_code: 'anonymous_workbench',
-  workbench_name: 'anonymous_workbench',
-  workbench_domain: 'anonymous_workbench',
-  workbench_desc: 'anonymous_workbench',
-  html_content: 'anonymous_workbench',
-  status: 1,
-  workbench_type: 0,
-};
-
-export type RunServiceAtAnonymousContextRunner = (ctx: koa.IMidwayKoaContext) => any;
-export interface RunServiceAtAnonymousContextRes {
-  result: any;
-  error: any;
-}
-
-class AnonymousContext {
-  private app: koa.Application;
-
-  setApp(app: koa.Application) {
-    this.app = app;
-  }
-
-  getApp() {
-    return this.app;
-  }
-
-  async runServiceAtAnonymousContext(runner: RunServiceAtAnonymousContextRunner): Promise<RunServiceAtAnonymousContextRes> {
-    const app = this.app;
-    const ctx: koa.IMidwayKoaContext = app.createAnonymousContext();
-
-    ctx.app = app;
-    ctx.contextLogger = new ContextLogger(ctx as any);
-    ctx.transaction = new Transaction();
-    ctx.userSession = new UserSessionInfo(anonymousUserInfo, true);
-    ctx.workbenchInfo = anonymousWorkbenchInfo;
-
-    let result: any = null;
-    let error: any = null;
-    try {
-      result = await runner(ctx);
-    } catch (e) {
-      error = e;
-      ctx.logger.error('runServiceAtAnonymousContext error ', e);
-    } finally {
-      await ctx.transaction.releaseTx();
-    }
-    return { result: result, error: error };
-  }
-}
-
-const ANONYMOUS_CONTEXT = new AnonymousContext();
-
-export { ANONYMOUS_CONTEXT };

package/src/schedule/index.ts

@@ -1,12 +0,0 @@
-import {SCHEDULE_QUEUE, runScheduleTaskOnce} from './runSchedule'
-import {ANONYMOUS_CONTEXT} from './anonymousContext'
-import {
-  INNER_SCHEDULE_INTERVAL
-} from './scheduleNames'
-
-export {
-  INNER_SCHEDULE_INTERVAL,
-  ANONYMOUS_CONTEXT,
-  SCHEDULE_QUEUE,
-  runScheduleTaskOnce
-}

package/src/schedule/runSchedule.ts

@@ -1,82 +0,0 @@
-import * as koa from '@midwayjs/koa';
-import {IScheduleService} from '@/interface';
-import {ANONYMOUS_CONTEXT} from "./anonymousContext";
-
-
-// 上次执行时间
-const lastExecuteTimeMap = {};
-
-const DEFAULT_SCHEDULE_INTERVAL = 2 * 60 * 1000;
-
-
-async function runScheduleTaskOnce(serviceName: string) {
-  return await ANONYMOUS_CONTEXT.runServiceAtAnonymousContext(async (ctx: koa.IMidwayKoaContext) => {
-    const serviceObject: IScheduleService = await ctx.requestContext.getAsync(serviceName);
-    if (serviceObject && serviceObject.runBySchedule) {
-      await serviceObject.runBySchedule();
-    } else {
-      ctx.logger.error(`runSchedule error , serviceName = ${serviceName}, 没有找到服务`);
-    }
-  });
-}
-
-
-class ScheduleQueue {
-  private scheduleIntervalMap: Map<string, number> = new Map();
-
-  public setScheduleTask(serviceName: string, intervalTime: number) {
-    this.scheduleIntervalMap.set(serviceName, intervalTime);
-  }
-
-  public removeScheduleTask(serviceName: string) {
-    this.scheduleIntervalMap.delete(serviceName);
-  }
-
-  private isAlreadyTimeToExecute(serviceName: string): boolean {
-    if (!lastExecuteTimeMap[serviceName]) {
-      return true; // 可以执行
-    }
-    const intervalTime1 = this.scheduleIntervalMap.get(serviceName);
-    const intervalTime = intervalTime1 || DEFAULT_SCHEDULE_INTERVAL; // 时间间隔
-    const lastExecuteTime = lastExecuteTimeMap[serviceName];
-    return (Date.now() - lastExecuteTime) >= intervalTime;
-  }
-
-
-  private async runScheduleTaskOnceCheckTime(serviceName: string) {
-    // 还没有到可以执行时间
-    if (!this.isAlreadyTimeToExecute(serviceName)) {
-      return;
-    }
-    lastExecuteTimeMap[serviceName] = Date.now();
-    await runScheduleTaskOnce(serviceName);
-  }
-
-  private async runScheduleServiceList() {
-    const serviceListKeys = this.scheduleIntervalMap.keys();
-    const serviceList = [...serviceListKeys];
-    for (let i = 0; i < serviceList.length; i++) {
-      const serviceName = serviceList[i];
-      try {
-        await this.runScheduleTaskOnceCheckTime(serviceName);
-      } catch (e) {
-        ANONYMOUS_CONTEXT.getApp().getCoreLogger().error(`runSchedule error , serviceName = ${serviceName}`, e);
-      }
-    }
-  }
-
-
-  public async startScheduleLoop() {
-    await this.runScheduleServiceList();
-    setInterval(() => {
-      this.runScheduleServiceList();
-    }, 1000); // 最少1秒执行一次
-  }
-
-
-}
-
-
-const SCHEDULE_QUEUE = new ScheduleQueue();
-
-export {SCHEDULE_QUEUE, runScheduleTaskOnce};

package/src/schedule/scheduleNames.ts

@@ -1,21 +0,0 @@
-
-const INNER_SCHEDULE_INTERVAL = {
-  proxyApiLoadService: 2 * 60 * 1000, // 2分钟重新加载一次,
-  workbenchService: 60 * 1000, // 1分钟重新加载一次,
-  visitStatService: 10 * 60 * 1000, // 10分钟重新加载一次,
-  asyncTaskRunnerService: 1000, // 1s可以执行
-}
-
-const INNER_SCHEDULE_NAMES = {
-  proxyApiLoadService: 'proxyApiLoadService',
-  workbenchService: 'workbenchService',
-  visitStatService: "visitStatService",
-  asyncTaskRunnerService: "asyncTaskRunnerService",
-}
-
-
-
-export {
-  INNER_SCHEDULE_INTERVAL,
-  INNER_SCHEDULE_NAMES
-}

package/src/service/AuthService.ts

@@ -1,272 +0,0 @@
-import { Inject, Provide, Config } from '@midwayjs/core';
-import { Context } from '@midwayjs/koa';
-import { KeysOfSimpleSQL } from '@/libs/crud-pro/models/keys';
-import { CurdMixService } from './curd/CurdMixService';
-import * as md5 from 'md5';
-import { UserAccountService } from './UserAccountService';
-import { createUniqueId } from '@/libs/utils/functions';
-import { IConsumerUserInfo, ISessionInfo, SYS_ACCOUNT_TYPE } from '@/models/userSession';
-import { SystemTables } from '@/models/SystemTables';
-import { UserSessionService } from './UserSessionService';
-import { CommonResult } from '@/libs/utils/common-dto';
-import { isEnableSuperAdmin } from '@/libs/utils/fatcms-request';
-import { CommonException } from '@/libs/crud-pro/exceptions';
-import { GLOBAL_STATIC_CONFIG } from '@/libs/global-config/global-config';
-
-@Provide()
-export class AuthService {
-  @Inject()
-  private ctx: Context;
-
-  @Config('superAdminList')
-  private superAdminList: any[];
-
-  @Inject()
-  private curdMixService: CurdMixService;
-
-  @Inject()
-  private userService: UserAccountService;
-
-  @Inject()
-  private userSessionService: UserSessionService;
-
-  /**
-   * 明文密码转unsaltedPwd密码
-   * @param plainPwd
-   * @param loginName
-   */
-  public toUnsaltedPwd(plainPwd: string, loginName: string) {
-    const pw2 = md5(md5(plainPwd) + '_' + loginName);
-    return pw2;
-  }
-
-  /**
-   * front: pw1 = md5(md5(input_pw) + "_" + loginName)
-   * db: pw2 = md5(pwd_salt + pw1)
-   * 检查用户名密码是否正确
-   * @param loginName
-   * @param unsaltedPwd
-   */
-  public async checkLoginPassword(loginName: string, unsaltedPwd: string): Promise<CommonResult> {
-    const message = '用户名或密码错误';
-    const errorCode = 'USERNAME_OR_PASSWORD_IS_INCORRECT';
-
-    if (!loginName) {
-      return CommonResult.errorRes(message, errorCode, '!loginName');
-    }
-
-    if (!unsaltedPwd) {
-      return CommonResult.errorRes(message, errorCode, '!unsaltedPwd');
-    }
-
-    const userAccount = await this.queryUserAccountByLoginName(loginName);
-    if (!userAccount) {
-      return CommonResult.errorRes(message, errorCode, '!userAccount');
-    }
-
-    if (userAccount.status !== 1) {
-      return CommonResult.errorRes(message, errorCode, 'userAccount.status !== 1');
-    }
-
-    if (!userAccount.pwd_md5) {
-      return CommonResult.errorRes(message, errorCode, '!userAccount.pwd_md5');
-    }
-
-    const pwd_salt = userAccount.pwd_salt;
-    const pwd_md5 = md5(unsaltedPwd + pwd_salt);
-
-    if (userAccount['pwd_md5'] !== pwd_md5) {
-      return CommonResult.errorRes(message, errorCode, "userAccount['pwd_md5'] !== pwd_md5");
-    }
-
-    return CommonResult.successRes();
-  }
-
-  /**
-   * 创建一个toC端的UserSession
-   * @param consumerUserInfo
-   */
-  public async createUserSessionForConsumer(consumerUserInfo: IConsumerUserInfo) {
-    const sessionId = createUniqueId();
-
-    const sessionInfo: ISessionInfo = {
-      nickName: consumerUserInfo.nickName,
-      avatar: consumerUserInfo.avatar,
-      roleCodes: [],
-      functionCodes: [],
-      loginName: consumerUserInfo.loginName,
-      sessionId,
-      accountId: consumerUserInfo.accountId,
-      workbenchCode: consumerUserInfo.workbenchCode,
-      accountType: consumerUserInfo.accountType,
-    };
-
-    await this.userSessionService.saveUserSession(sessionInfo);
-
-    return {
-      sessionId,
-      loginName: sessionInfo.loginName,
-      accountId: sessionInfo.accountId,
-      nickName: sessionInfo.nickName,
-      avatar: sessionInfo.avatar,
-      workbenchCode: sessionInfo.workbenchCode,
-      accountType: sessionInfo.accountType,
-    };
-  }
-
-  /**
-   * 创建一个Session
-   * @param loginName
-   * @param workbenchCode
-   */
-  public async createUserSession(loginName: string, workbenchCode: string) {
-    const userAccount = await this.queryUserAccountByLoginName(loginName);
-
-    if (!userAccount) {
-      throw new CommonException('USER_ACCOUNT_NOT_EXIST', '用户账号不存在');
-    }
-
-    const accountId = userAccount.account_id;
-    const sessionId = createUniqueId();
-    const roleCodes = await this.queryUserRoleCodeList(accountId);
-    const functionCodes = await this.queryFunctionCodeList(roleCodes);
-
-    const sessionInfo: ISessionInfo = {
-      nickName: userAccount.nick_name,
-      avatar: userAccount.avatar,
-      roleCodes,
-      functionCodes,
-      loginName,
-      sessionId,
-      accountId,
-      workbenchCode,
-      accountType: SYS_ACCOUNT_TYPE,
-    };
-
-    await this.userSessionService.saveUserSession(sessionInfo);
-
-    return {
-      sessionId,
-      loginName,
-      accountId,
-      nickName: userAccount.nick_name,
-      avatar: userAccount.avatar,
-      workbenchCode: sessionInfo.workbenchCode,
-      accountType: sessionInfo.accountType,
-    };
-  }
-
-  /**
-   * 获取用户
-   * @param loginName
-   * @private
-   */
-  private async queryUserAccountByLoginName(loginName: string) {
-    const superAdminList = this.superAdminList;
-    const findFromSuperAdmin = () => {
-      if (!isEnableSuperAdmin(this.ctx)) {
-        return null;
-      }
-
-      if (!Array.isArray(superAdminList)) {
-        return null;
-      }
-
-      for (let i = 0; i < superAdminList.length; i++) {
-        const element = superAdminList[i];
-        if (element && element.login_name === loginName) {
-          const nick_name = 'SA' + i;
-          return {
-            nick_name: element.nick_name || nick_name,
-            avatar: '',
-            account_id: nick_name,
-            status: 1,
-            login_name: element.login_name,
-            pwd_salt: element.pwd_salt,
-            pwd_md5: element.pwd_md5,
-          };
-        }
-      }
-    };
-    const superAdmin = findFromSuperAdmin();
-    if (superAdmin) {
-      return superAdmin;
-    }
-    return this.userService.queryUserAccountByLoginName(loginName);
-  }
-
-  /**
-   * 查询此accountId下关联的角色code列表
-   * @param accountId
-   * @private
-   */
-  private async queryUserRoleCodeList(accountId: string): Promise<string[]> {
-    const { SystemDbName, SystemDbType } = GLOBAL_STATIC_CONFIG.getConfig();
-
-    const res = await this.curdMixService.executeCrudByCfg(
-      {
-        condition: { account_id: accountId },
-        limit: 10000,
-      },
-      {
-        sqlTable: SystemTables.sys_perm_user_role,
-        sqlSimpleName: KeysOfSimpleSQL.SIMPLE_QUERY,
-        sqlDatabase: SystemDbName,
-        sqlDbType: SystemDbType,
-      }
-    );
-    const rows = res.getResModel().rows || [];
-    const roleCodes: string[] = rows.map(({ role_code }) => {
-      return role_code as string;
-    });
-    return [...new Set(roleCodes)];
-  }
-
-  /**
-   * 查询此roleCodeList下面关联的所有功能点列表
-   * @param roleCodeList
-   * @private
-   */
-  private async queryFunctionCodeList(roleCodeList: string[]): Promise<string[]> {
-    if (!roleCodeList || roleCodeList.length === 0) {
-      return [];
-    }
-
-    const { SystemDbName, SystemDbType } = GLOBAL_STATIC_CONFIG.getConfig();
-
-    const res = await this.curdMixService.executeCrudByCfg(
-      {
-        condition: { role_code: { $in: roleCodeList } },
-        limit: 10000,
-      },
-      {
-        sqlTable: SystemTables.sys_perm_role_func,
-        sqlSimpleName: KeysOfSimpleSQL.SIMPLE_QUERY,
-        sqlDatabase: SystemDbName,
-        sqlDbType: SystemDbType,
-      }
-    );
-    const rows = res.getResModel().rows || [];
-    const funcCodes: string[] = rows.map(({ func_code }) => {
-      return func_code;
-    });
-    return [...new Set(funcCodes)];
-  }
-
-  async removeUserSession(sessionId: string) {
-    return this.userSessionService.removeUserSession(sessionId);
-  }
-
-  async refreshSession(sessionInfo: ISessionInfo): Promise<ISessionInfo> {
-    const oldSessionId = sessionInfo.sessionId;
-
-    const sessionId = createUniqueId();
-    const newSessionInfo: ISessionInfo = { ...sessionInfo, sessionId };
-
-    await this.userSessionService.saveUserSession(newSessionInfo);
-
-    await this.removeUserSession(oldSessionId);
-
-    return newSessionInfo;
-  }
-}