npm - mm_os - Versions diffs - 2.8.0 → 2.8.2 - Mend

mm_os 2.8.0 → 2.8.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (286) hide show

package/demo/app/user/plugin/main/api_user_client/sign_in/index.js ADDED Viewed

@@ -0,0 +1,275 @@
+/**
+ * 账户缓存
+ */
+async function state_cache(ctx, db, user) {
+	if (!user) {
+		return $.ret.error(10000, '账号不存在');
+	}
+	var login_ip = ctx.ip.replace('::ffff:', '');
+	var user_id = user.user_id;
+	// 记录当前登录所用的IP地址
+	await db.set({
+		user_id
+	}, {
+		login_ip
+	});
+	ctx.session.user = user;
+	var token = ctx.session.uuid;
+	db.table = "user_state";
+	db.key = "user_id";
+	var obj = await db.getObj({
+		user_id
+	});
+	if (obj) {
+		obj.token = token;
+	} else {
+		await db.add({
+			user_id,
+			token
+		});
+	}
+	user.token = token;
+	var u = Object.assign({}, user);
+	u.password_pay = u.password_pay ? "******" : "";
+	u.password = u.password ? "******" : "";
+	delete u.salt;
+	delete u.time_create;
+	// 7200秒 = 2小时 ； 604800秒 = 7天
+	$.cache.set("ofName_" + user.nickname, token, 604800);
+	$.cache.set("ofToken_" + token, user.nickname, 604800);
+	// 自动生成的uuid是通过IP和浏览器信息加密而成，如果需要解密确认其身份，可再加上user_id加密，自行生成uuid
+	var body = $.ret.body(user);
+	return body
+}
+/**
+ * 账户登录
+ */
+async function account_sign_in(ctx, db, account, password) {
+	// 如果登陆方式为1，则使用第三方社交账号和本站密码进行登录
+	if (!password) {
+		return $.ret.error(30002, "密码(password)不能为空");
+	}
+	db.table = "user_account";
+	db.key = "user_id";
+	// 使用用户名登录
+	var users = await db.getSql(`phone='${account}' || username='${account}' || email='${account}'`);
+	if (users.length <= 0) {
+		return $.ret.error(60001, "用户不存在");
+	}
+	var user = users[0];
+	var pass = (password + user.salt).md5();
+	if (pass !== user.password) {
+		return $.ret.error(30003, "密码(password)错误");
+	}
+	return await state_cache(ctx, db, user);
+}
+/**
+ * 快捷注册并登录
+ */
+async function fast_sign_in(db, params, user) {
+	var info = params.info;
+	if (info) {
+		var json_info = JSON.parse(info);
+		user.nickname = json_info.nickName;
+		user.avatar = json_info.avatarUrl;
+		$.bind_account(db, params, user);
+	}
+}
+/**
+ * 手机号码登录
+ */
+async function phone_sign_in() {
+	// 使用手机号+验证码登录
+	db.table = "user_account";
+	db.key = "user_id";
+	var code = params['code']
+	var phone = account;
+	if (!code) {
+		return $.ret.error(10000, "验证码(code)不能为空！");
+	}
+	// 短信验证码判断
+	var key = "code_sign_" + phone;
+	var value = await $.cache.get(key);
+	if (!value) {
+		return $.ret.error(10000, '请先发送验证码！');
+	}
+	var json = value.toJson();
+	if (code !== json.code) {
+		return $.ret.error(30000, '验证码不正确！');
+	}
+	var user = await db.getObj({
+		phone
+	});
+	if (!user) {
+		var username = phone;
+		//没有账号，去注册
+		var invite_code = await $.getCode(db, username, password);
+		var index = await db.add({
+			username,
+			phone,
+			invite_code
+		});
+		if (index > 0) {
+			var user = await db.getObj({
+				username
+			});
+			if (user) {
+				var user_id = user.user_id;
+				db.table = "user_count";
+				await db.add({
+					user_id
+				});
+			}
+		}
+	}
+	return await state_cache(ctx, db, user);
+}
+/**
+ * 社交账号登录
+ */
+async function sns_sign_in() {
+	// 如果登陆方式为1，则使用第三方社交账号和本站密码进行登录
+	if (!password) {
+		return $.ret.error(30002, "密码(password)不能为空");
+	}
+	db.table = "user_sns";
+	var mm = params["mm"];
+	var arr = [];
+	if (mm) {
+		// 使用超级美眉账号登录
+		arr = await db.get({
+			mm
+		});
+	} else {
+		var qq = params["qq"];
+		if (qq) {
+			// 使用QQ账号登录
+			arr = await db.get({
+				qq
+			});
+		} else {
+			var baidu = params["baidu"];
+			if (baidu) {
+				// 使用百度账号登录
+				arr = await db.get({
+					baidu
+				});
+			} else {
+				var taotao = params["taotao"];
+				if (taotao) {
+					// 使用淘宝账号登录
+					arr = await db.get({
+						taotao
+					});
+				} else {
+					var wechat = params["wechat"];
+					if (wechat) {
+						// 使用微信账号登录
+						arr = await db.get({
+							wechat
+						});
+					} else {
+						return $.ret.error(30000, '不支持的SNS账号');
+					}
+				}
+			}
+		}
+	}
+	if (arr.length > 0) {
+		var o = arr[0];
+		db.table = "user_sns";
+		user = await db.getObj({
+			user_id: o.user_id
+		});
+	}
+	return await state_cache(ctx, db, user);
+}
+/**
+ * 关联创建
+ */
+async function sns_sign_in() {
+}
+$.bind_account = async function(db, body, user) {
+	var open_id = body.open_id;
+	var user_id = user.user_id;
+	if (open_id) {
+		var way = body.way || "wechat";
+		db.table = way + "_info";
+		var info = await db.getObj({
+			open_id
+		});
+		if (info) {
+			var obj = {
+				user_id,
+				open_id,
+				info: body.info
+			}
+			db.set({
+				open_id
+			}, obj);
+		} else {
+			db.add({
+				user_id,
+				open_id,
+				info: body.info
+			});
+		}
+		return user;
+	}
+}
+/**
+ * 获取用户登录态
+ * @param {String} token 临时访问牌
+ * @retrun {Object} 返回临时访问牌
+ */
+$.user_state = async function(token) {
+	return await $.cache.get($.dict.session_id + '_' + token);
+}
+/**
+ * @description 接口主函数
+ * @param {Object} ctx HTTP上下文
+ * @param {Object} db 数据管理器,如: { next: async function{}, ret: {} }
+ * @return {Object} 执行结果
+ */
+async function main(ctx, db) {
+	var params = {};
+	if (ctx.method === "POST") {
+		params = ctx.request.body;
+	} else {
+		params = ctx.request.query;
+	}
+	if (ctx.session.user) {
+		ctx.session.user = null;
+	}
+	var password = params['password'];
+	var account = params["account"];
+	var user;
+	// 获取登录方式
+	var method = params["method"];
+	// $.log.debug('登录方式', method);
+	if (!method) {
+		return await account_sign_in(ctx, db, account, password);
+	} else if (method === 'phone') {
+		return await phone_sign_in(ctx, db, account, password);
+	} else if (method === "sns") {
+		return await sns_sign_in(ctx, db, account, password);
+	}
+};
+exports.main = main;

package/demo/app/user/plugin/main/api_user_client/sign_in/param.json ADDED Viewed

@@ -0,0 +1,125 @@
+{
+	"title": "用户登录验证模型",
+	"name": "user_sign_in",
+	"filter": true,
+	"file": "",
+	"get": {
+		"query": ["account", "qq", "wechat", "mm", "baidu", "taobao", "code"],
+		"query_required": []
+	},
+	"post": {
+		"body": ["account", "qq", "wechat", "mm", "baidu", "taobao", "code"],
+		"body_required": []
+	},
+	"list": [
+		{
+			"name": "phone",
+			"title": "手机号码",
+			"type": "string",
+			// 字符串类型时设置
+			"string": {
+				"format": "phone",
+				// 传值范围，字符串时为限制字符长度
+				"range": [11, 11]
+			}
+		},
+		{
+			"name": "code",
+			"title": "短信验证码",
+			"type": "string"
+		},
+		{
+			"name": "method",
+			"title": "登录方式",
+			"description": "如果为sns则表示使用社交账号登录",
+			"type": "string"
+		}, {
+			"name": "account",
+			"title": "账号",
+			"type": "string",
+			"string": {
+				"min": 5,
+				"max": 16,
+				"format": "username"
+			}
+		},
+		{
+			"name": "password",
+			"title": "密码",
+			"description": "由注册密码进行md5加密后获得",
+			"type": "string",
+			"string": {
+				"min": 32,
+				"max": 32,
+				"format": "password",
+				"different": "username"
+			}
+		},
+		{
+			"name": "qq",
+			"title": "QQ号",
+			"description": "",
+			"type": "string",
+			"dataType": "varchar",
+			"string": {
+				"range": [
+					5,
+					12
+				]
+			}
+		},
+		{
+			"name": "wechat",
+			"title": "微信号",
+			"description": "",
+			"type": "string",
+			"dataType": "varchar",
+			"string": {
+				"range": [
+					5,
+					16
+				]
+			}
+		},
+		{
+			"name": "mm",
+			"title": "MM号",
+			"description": "",
+			"type": "string",
+			"dataType": "varchar",
+			"string": {
+				"range": [
+					5,
+					16
+				]
+			}
+		},
+		{
+			"name": "baidu",
+			"title": "百度账号",
+			"description": "",
+			"type": "string",
+			"dataType": "varchar",
+			"string": {
+				"range": [
+					5,
+					14
+				]
+			}
+		},
+		{
+			"name": "taobao",
+			"title": "淘宝账号",
+			"description": "",
+			"type": "string",
+			"dataType": "varchar",
+			"string": {
+				"range": [
+					5,
+					10
+				]
+			}
+		}
+	]
+}

package/demo/app/user/plugin/main/api_user_client/sign_in/state.js ADDED Viewed

@@ -0,0 +1,37 @@
+/**
+ * @description 接口主函数
+ * @param {Object} ctx HTTP上下文
+ * @param {Object} db 数据管理器,如: { next: async function{}, ret: {} }
+ * @return {Object} 执行结果
+ */
+async function main(ctx, db) {
+	// 获取请求参数
+	if (ctx.session.user) {
+		var user = Object.assign({}, ctx.session.user);
+		// delete user.user_id;
+		return $.ret.body(user);
+	} else {
+		var token = ctx.headers[$.dict.token];
+		if (token) {
+			var u = await $.cache.get($.dict.session_id + '_' + token);
+			if (u) {
+				var type = typeof(u);
+				if (type === "string") {
+					var o = u.toJson();
+					// delete o.user.user_id;
+					return $.ret.body(o.user);
+				} else if (type === "object") {
+					if (Object.keys(u).length > 0) {
+						var o = Object.assign({}, u);
+						// delete o.user.user_id;
+						return $.ret.body(o.user);
+					}
+				}
+			}
+			return $.ret.error(50000, '非法访问');
+		}
+		return $.ret.error(40000, '用户未登录');
+	}
+};
+exports.main = main;

package/demo/app/user/plugin/main/api_user_client/sign_up/api.json ADDED Viewed

@@ -0,0 +1,12 @@
+{
+	"path": "/api/user/sign_up",
+	"type": "api",
+	"name": "user_sign_up",
+	"title": "账户注册",
+	"description": "用来注册账户",
+	"func_file": "./index.js",
+	"method": "POST",
+	"cache": 0,
+	"client_cache": false,
+	"param_path": "./param.json"
+}

package/demo/app/user/plugin/main/api_user_client/sign_up/index.js ADDED Viewed

@@ -0,0 +1,110 @@
+/**
+ * 新建邀请码
+ * @param {Object} 数据库管理器
+ * @param {String} username
+ * @param {String} password
+ */
+$.newInviteCode = async function(db, username, password) {
+	var date = new Date();
+	var str = (date.toISOString() + username + password).md5();
+	var code = "";
+	for (var i = 0; i < 20; i++) {
+		var invite_code = str.substring(0, 8);
+		var count = await db.count({
+			invite_code
+		});
+		if (count === 0) {
+			code = invite_code;
+			break;
+		}
+	}
+	return code.toLocaleLowerCase();
+};
+/**
+ * @description 接口主函数
+ * @param {Object} ctx HTTP上下文
+ * @param {Object} db 数据管理器,如: { next: async function{}, ret: {} }
+ * @return {Object} 执行结果
+ */
+async function main(ctx, db) {
+	var by = ctx.request.body;
+	var {
+		account,
+		password,
+		nickname,
+		code,
+		invite_code
+	} = by;
+	var phone = account;
+	var username = account;
+	// 判断用户是否已存在
+	db.table = "user_account";
+	var count = await db.count({
+		phone
+	});
+	if (count > 0) {
+		return $.ret.error(10007, '注册失败，用户名已存在！');
+	}
+	var code_check = await $.getCode("sign_up", phone);
+	if (!code_check) {
+		return $.ret.error(30001, '请先获取验证码！');
+	}
+	if (code !== code_check) {
+		return $.ret.error(30007, '验证码错误！');
+	}
+	// 添加邀请码
+	var referee_id = 0;
+	if (invite_code) {
+		var inviter = await db.getObj({
+			invite_code
+		});
+		if (inviter) {
+			referee_id = inviter.user_id;
+		} else {
+			return $.ret.bl(false, '邀请人不存在！');
+		}
+	}
+	var salt = password.substring(0, 6);
+	var pass = (password + salt).md5();
+	// 生成邀请码
+	var icode = await $.newInviteCode(db, username, pass);
+	var index = await db.add({
+		username,
+		salt,
+		phone,
+		nickname,
+		referee_id,
+		password: pass,
+		invite_code: icode
+	});
+	if (index > 0) {
+		var user = await db.getObj({
+			phone
+		});
+		if (user) {
+			var user_id = user.user_id;
+			db.table = "user_count";
+			await db.add({
+				user_id
+			});
+		}
+		return $.ret.bl(true, '注册成功');
+	} else {
+		return $.ret.error(10000, '数据库业务逻辑错误。 ' + JSON.stringify(db.error, true));
+	}
+};
+exports.main = main;

package/demo/app/user/plugin/main/api_user_client/sign_up/param.json ADDED Viewed

@@ -0,0 +1,65 @@
+{
+	"title": "用户注册验证模型",
+	"name": "user_sign_up",
+	"filter": true,
+	"file": "",
+	"post": {
+		"body": ["invite_code"],
+		"body_required": ["account", "password", "nickname", "confirm_password", "code"]
+	},
+	"list": [
+		{
+			"name": "account",
+			"title": "账号",
+			"type": "string",
+			"string": {
+				"min": 5,
+				"max": 16,
+				"format": "username"
+			}
+		},
+		// {
+		// 	"name": "nickname",
+		// 	"title": "账户昵称",
+		// 	"type": "string",
+		// 	"string": {
+		// 		"min": 5,
+		// 		"max": 16
+		// 	}
+		// },
+		{
+			"name": "password",
+			"title": "密码",
+			"type": "string",
+			"string": {
+				"min": 32,
+				"max": 32,
+				"format": "password",
+				"different": "username"
+			}
+		},
+		{
+			"name": "confirm_password",
+			"title": "确认密码",
+			"type": "string",
+			"string": {
+				"format": "password",
+				"identical": "password"
+			}
+		},
+		{
+			"name": "code",
+			"title": "短信验证码",
+			"type": "string",
+			"string": {
+				"min": 4,
+				"max": 8
+			}
+		},
+		{
+			"name": "invite_code",
+			"title": "邀请码",
+			"type": "string"
+		}
+	]
+}

package/demo/app/user/plugin/main/api_user_client/sign_up_in/api.json ADDED Viewed

@@ -0,0 +1,37 @@
+{
+	// 路由路径
+	"path": "/api/user/sign_up_in",
+	// 名称, 用于动态增删改API配置
+	"name": "user_sign_up_in",
+	// 标题, 用于开发文档显示
+	"title": "注册并登录",
+	// 描述, 用于介绍该路由的作用
+	"description": "用于注册和登录",
+	// 函数文件, 用于驱动脚本, 实现业务
+	"func_file": "./index.js",
+	// 请求方法, 选填 GET, POST, ALL。 ALL指同时支持GET/POST
+	"method": "ALL",
+	// 开放域, 如果域未开放, 则只有特定的协议头才能访问该API, 同时API文档不接见
+	"scope": true,
+	// 缓存时长, 单位: 分钟。使用缓存后, 二次访问API直接从缓存读取, 不重复执行业务脚本
+	"cache": 0,
+	// 是否客户端缓存, 使用客户端则不再访问服务器, 直接从浏览器中拿; 使用服务端缓存则会访问服务器
+	"client_cache": false,
+	// 参数配置路径, 用于校验API请求参数是否正确, 同时显示在API文档中
+	"param_path": "./param.json",
+	/* 授权协议 */
+	"oauth": {
+		// 是否需要登录, true表示需要登录才能访问该接口
+		"signIn": false,
+		// 会员权限级别, 如果小于该值, 则无法访问, 0为不限制
+		"vip": 0,
+		// 管理员权限级别, 如果小于该值, 则无法访问, 0为不限制
+		"gm": 0,
+		// 商户/第三方权限级别, 如果小于该值, 则无法访问, 0为不限制
+		"mc": 0,
+		// 用户组, 允许访问该接口的普通用户群体, 传ID数组，例如: [1,5]
+		"user_group": [],
+		// 管理组, 允许访问该接口的管理员群体, 传ID数组，例如: [1,5]
+		"user_admin": []
+	}
+}