com.ecfront.ez.framework.service.auth.manage.AccountService.scala Maven / Gradle / Ivy
package com.ecfront.ez.framework.service.auth.manage
import java.util.UUID
import com.ecfront.common.Resp
import com.ecfront.ez.framework.core.EZContext
import com.ecfront.ez.framework.core.helper.FileType
import com.ecfront.ez.framework.service.auth.AuthService._
import com.ecfront.ez.framework.service.auth.CacheManager._
import com.ecfront.ez.framework.service.auth._
import com.ecfront.ez.framework.service.auth.model.{EZ_Account, EZ_Role}
import com.ecfront.ez.framework.service.email.EmailProcessor
import com.ecfront.ez.framework.service.rpc.foundation._
import com.ecfront.ez.framework.service.rpc.http.HTTP
import com.ecfront.ez.framework.service.rpc.http.scaffold.SimpleHTTPService
import com.ecfront.ez.framework.service.storage.foundation.{BaseStorage, Page}
/**
* 账号管理
*/
@RPC("/auth/manage/account/")
@HTTP
object AccountService extends SimpleHTTPService[EZ_Account, EZAuthContext] {
override protected val storageObj: BaseStorage[EZ_Account] = EZ_Account
// 只能上传图片类型
override protected def allowUploadTypes = List(FileType.TYPE_IMAGE)
/**
* 注册账号,需要激活
*
* @param parameter 请求参数
* @param body 账号VO
* @param context PRC上下文
* @return 是否成功
*/
@POST("/public/register/")
def register(parameter: Map[String, String], body: Account_VO, context: EZAuthContext): Resp[Void] = {
if (ServiceAdapter.allowRegister) {
val account = EZ_Account()
account.login_id = body.login_id
account.name = body.name
account.email = body.email
account.password = body.new_password
account.image = body.image
account.enable = false
// 用户自助注册只能到默认组织下
account.organization_code = ServiceAdapter.defaultOrganizationCode
// 用户自助注册的角色默认是 user
account.role_codes = List(EZ_Role.assembleCode(ServiceAdapter.defaultRoleFlag, account.organization_code))
val saveR = EZ_Account.save(account, context)
if (saveR) {
if (ServiceAdapter.selfActive) {
val encryption = UUID.randomUUID().toString + System.nanoTime()
CacheManager.addActiveAccount(encryption, saveR.body.code)
val activeUrl = com.ecfront.ez.framework.service.rpc.http.ServiceAdapter.publicUrl +
s"public/active/account/$encryption/"
EmailProcessor.send(body.email, s"${EZContext.app} activate your account",
s"""Please visit this link to activate your account:
|
| $activeUrl""".stripMargin)
} else {
EmailProcessor.send(body.email, s"${EZContext.app} waiting audit",
s"""Waiting audit to activate your account.""".stripMargin)
}
Resp.success(null)
} else {
saveR
}
} else {
logger.warn("Register NOT allow")
Resp.notImplemented("Register NOT allow")
}
}
/**
* 激活账号
*
* @param parameter 请求参数
* @param context PRC上下文
* @return 是否成功,成功后跳转到登录url,带 `action=active` 参数
*/
@GET("/public/active/account/:encryption/")
def activeNewAccount(parameter: Map[String, String], context: EZAuthContext): Resp[RespRedirect] = {
val encryption = parameter("encryption")
val code = CacheManager.getAndRemoveActiveAccount(encryption)
if (code != null) {
val accountR = EZ_Account.getByCode(code)
if (accountR && accountR.body != null) {
accountR.body.exchange_pwd = accountR.body.password
accountR.body.enable = true
EZ_Account.update(accountR.body, context)
Resp.success(RespRedirect(ServiceAdapter.loginUrl + "?action=active"))
} else {
logger.warn(s"Link illegal : ${context.method}:${context.realUri}")
Resp.notFound("Link illegal")
}
} else {
logger.warn(s"Link illegal : ${context.method}:${context.realUri}")
Resp.notFound("Link illegal")
}
}
/**
* 获取登录账号的信息
*
* @param parameter 请求参数
* @param context PRC上下文
* @return 登录账号的信息
*/
@GET("bylogin/")
def getAccountByLoginId(parameter: Map[String, String], context: EZAuthContext): Resp[Account_VO] = {
if (context.token.isDefined && context.loginInfo.isDefined) {
val accountR = EZ_Account.getByLoginId(context.loginInfo.get.login_id, context.loginInfo.get.organization_code)
if (accountR) {
if (accountR.body != null && accountR.body.enable) {
val account = accountR.body
val vo = Account_VO()
vo.id = account.id
vo.login_id = account.login_id
vo.name = account.name
vo.email = account.email
vo.image = account.image
vo.ext_id = account.ext_id
vo.ext_info = account.ext_info
Resp.success(vo)
} else {
Resp.unAuthorized("")
}
} else {
accountR
}
} else {
Resp.unAuthorized("")
}
}
/**
* 更新登录账号的信息
*
* @param parameter 请求参数
* @param body 账号VO
* @param context PRC上下文
* @return 是否成功
*/
@PUT("bylogin/")
def updateAccountByLoginId(parameter: Map[String, String], body: Account_VO, context: EZAuthContext): Resp[Void] = {
if (context.token.isDefined && context.loginInfo.isDefined) {
val accountR = EZ_Account.getByLoginId(context.loginInfo.get.login_id, context.loginInfo.get.organization_code)
if (accountR) {
if (accountR.body != null) {
val account = accountR.body
// 验证密码
if (EZ_Account.packageEncryptPwd(account.login_id, body.current_password) == account.password) {
if (body.new_password != null && body.new_password.nonEmpty) {
account.password = body.new_password
} else {
account.exchange_pwd = account.password
}
account.name = body.name
account.email = body.email
account.image = body.image
EZ_Account.update(account, context)
} else {
logger.warn(s"Old Password Error by id:${context.loginInfo.get.login_id} from ${context.remoteIP}")
Resp.conflict("Old Password Error")
}
} else {
Resp.unAuthorized("")
}
} else {
accountR
}
} else {
logger.warn("Login Info not found")
Resp.unAuthorized("Login Info not found")
}
}
/**
* 找回密码,需求确认
*
* @param parameter 请求参数
* @param body 包含 newPassword 参数,表示新的密码
* @param context PRC上下文
* @return 是否成功
*/
@PUT("/public/findpassword/:email/")
def findPassword(parameter: Map[String, String], body: Map[String, String], context: EZAuthContext): Resp[Void] = {
val email = parameter("email")
val newPassword = body("new_password")
// 找回密码只针对默认组织
val accountR = EZ_Account.getByEmail(email, ServiceAdapter.defaultOrganizationCode)
if (accountR && accountR.body != null) {
val encryption = UUID.randomUUID().toString + System.nanoTime()
CacheManager.addActiveNewPassword(encryption, accountR.body.code, newPassword)
val activeUrl = com.ecfront.ez.framework.service.rpc.http.ServiceAdapter.publicUrl +
s"public/active/password/$encryption/"
EmailProcessor.send(email, s"${EZContext.app} Activate new password",
s"""
| Please visit this link to activate your new password:
|
| $activeUrl
""".stripMargin)
} else {
logger.warn(s"Not found this email : ${context.method}:${context.realUri}")
Resp.notFound("Not found this email")
}
}
/**
* 激活(确认)新密码
*
* @param parameter 请求参数
* @param context PRC上下文
* @return 是否成功,成功后跳转到登录url,带 `action=findpassword` 参数
*/
@GET("/public/active/password/:encryption/")
def activeNewPassword(parameter: Map[String, String], context: EZAuthContext): Resp[RespRedirect] = {
val encryption = parameter("encryption")
val newPasswordR = CacheManager.getAndRemoveNewPassword(encryption)
if (newPasswordR && newPasswordR.body != null) {
val accountR = EZ_Account.getByCode(newPasswordR.body._1)
if (accountR && accountR.body != null) {
accountR.body.password = newPasswordR.body._2
EZ_Account.update(accountR.body, context)
Resp.success(RespRedirect(ServiceAdapter.loginUrl + "?action=findpassword"))
} else {
logger.warn(s"Link illegal : ${context.method}:${context.realUri}")
Resp.notFound("Link illegal")
}
} else {
logger.warn(s"Link illegal : ${context.method}:${context.realUri}")
Resp.notFound("Link illegal")
}
}
@POST("")
override def rpcSave(parameter: Map[String, String], body: String, context: EZAuthContext): Resp[EZ_Account] = {
val resp = super.rpcSave(parameter, body, context)
if (resp && resp.body != null) {
resp.body.password = null
}
resp
}
@PUT(":id/")
override def rpcUpdate(parameter: Map[String, String], body: String, context: EZAuthContext): Resp[EZ_Account] = {
val resp = super.rpcUpdate(parameter, body, context)
if (resp && resp.body != null) {
resp.body.password = null
}
resp
}
@GET("enable/")
override def rpcFindEnable(parameter: Map[String, String], context: EZAuthContext): Resp[List[EZ_Account]] = {
val resp = super.rpcFindEnable(parameter, context)
if (resp && resp.body.nonEmpty) {
resp.body.foreach {
_.password = null
}
}
resp
}
@GET("")
override def rpcFind(parameter: Map[String, String], context: EZAuthContext): Resp[List[EZ_Account]] = {
val resp = super.rpcFind(parameter, context)
if (resp && resp.body.nonEmpty) {
resp.body.foreach {
_.password = null
}
}
resp
}
@GET("page/:pageNumber/:pageSize/")
override def rpcPage(parameter: Map[String, String], context: EZAuthContext): Resp[Page[EZ_Account]] = {
val resp = super.rpcPage(parameter, context)
if (resp && resp.body.objects.nonEmpty) {
resp.body.objects.foreach {
_.password = null
}
}
resp
}
@GET(":id/")
override def rpcGet(parameter: Map[String, String], context: EZAuthContext): Resp[EZ_Account] = {
val resp = super.rpcGet(parameter, context)
if (resp && resp.body != null) {
resp.body.password = null
}
resp
}
}© 2015 - 2025 Weber Informatics LLC | Privacy Policy