add oauth loginlog & fix bugs

2024-09-19 10:44:49 +08:00
parent ebd1feb8d1
commit a4b413dadb
48 changed files with 3477 additions and 184 deletions
--- a/service/loginLog.go
+++ b/service/loginLog.go
@@ -0,0 +1,45 @@
+package service
+
+import (
+	"Gwen/global"
+	"Gwen/model"
+	"gorm.io/gorm"
+)
+
+type LoginLogService struct {
+}
+
+// InfoById 根据用户id取用户信息
+func (us *LoginLogService) InfoById(id uint) *model.LoginLog {
+	u := &model.LoginLog{}
+	global.DB.Where("id = ?", id).First(u)
+	return u
+}
+
+func (us *LoginLogService) List(page, pageSize uint, where func(tx *gorm.DB)) (res *model.LoginLogList) {
+	res = &model.LoginLogList{}
+	res.Page = int64(page)
+	res.PageSize = int64(pageSize)
+	tx := global.DB.Model(&model.LoginLog{})
+	if where != nil {
+		where(tx)
+	}
+	tx.Count(&res.Total)
+	tx.Scopes(Paginate(page, pageSize))
+	tx.Find(&res.LoginLogs)
+	return
+}
+
+// Create 创建
+func (us *LoginLogService) Create(u *model.LoginLog) error {
+	res := global.DB.Create(u).Error
+	return res
+}
+func (us *LoginLogService) Delete(u *model.LoginLog) error {
+	return global.DB.Delete(u).Error
+}
+
+// Update 更新
+func (us *LoginLogService) Update(u *model.LoginLog) error {
+	return global.DB.Model(u).Updates(u).Error
+}
--- a/service/oauth.go
+++ b/service/oauth.go
@@ -0,0 +1,256 @@
+package service
+
+import (
+	"Gwen/global"
+	"Gwen/model"
+	"Gwen/utils"
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"golang.org/x/oauth2"
+	"golang.org/x/oauth2/github"
+	"golang.org/x/oauth2/google"
+	"gorm.io/gorm"
+	"io"
+	"strconv"
+	"sync"
+	"time"
+)
+
+type OauthService struct {
+}
+
+type GithubUserdata struct {
+	AvatarUrl         string      `json:"avatar_url"`
+	Bio               string      `json:"bio"`
+	Blog              string      `json:"blog"`
+	Collaborators     int         `json:"collaborators"`
+	Company           interface{} `json:"company"`
+	CreatedAt         time.Time   `json:"created_at"`
+	DiskUsage         int         `json:"disk_usage"`
+	Email             interface{} `json:"email"`
+	EventsUrl         string      `json:"events_url"`
+	Followers         int         `json:"followers"`
+	FollowersUrl      string      `json:"followers_url"`
+	Following         int         `json:"following"`
+	FollowingUrl      string      `json:"following_url"`
+	GistsUrl          string      `json:"gists_url"`
+	GravatarId        string      `json:"gravatar_id"`
+	Hireable          interface{} `json:"hireable"`
+	HtmlUrl           string      `json:"html_url"`
+	Id                int         `json:"id"`
+	Location          interface{} `json:"location"`
+	Login             string      `json:"login"`
+	Name              string      `json:"name"`
+	NodeId            string      `json:"node_id"`
+	NotificationEmail interface{} `json:"notification_email"`
+	OrganizationsUrl  string      `json:"organizations_url"`
+	OwnedPrivateRepos int         `json:"owned_private_repos"`
+	Plan              struct {
+		Collaborators int    `json:"collaborators"`
+		Name          string `json:"name"`
+		PrivateRepos  int    `json:"private_repos"`
+		Space         int    `json:"space"`
+	} `json:"plan"`
+	PrivateGists      int    `json:"private_gists"`
+	PublicGists       int    `json:"public_gists"`
+	PublicRepos       int    `json:"public_repos"`
+	ReceivedEventsUrl string `json:"received_events_url"`
+	ReposUrl          string `json:"repos_url"`
+	SiteAdmin         bool   `json:"site_admin"`
+	StarredUrl        string `json:"starred_url"`
+	SubscriptionsUrl  string `json:"subscriptions_url"`
+	TotalPrivateRepos int    `json:"total_private_repos"`
+	//TwitterUsername         interface{} `json:"twitter_username"`
+	TwoFactorAuthentication bool      `json:"two_factor_authentication"`
+	Type                    string    `json:"type"`
+	UpdatedAt               time.Time `json:"updated_at"`
+	Url                     string    `json:"url"`
+}
+
+type OauthCacheItem struct {
+	UserId      uint   `json:"user_id"`
+	Id          string `json:"id"` //rustdesk的设备ID
+	Op          string `json:"op"`
+	Action      string `json:"action"`
+	Uuid        string `json:"uuid"`
+	DeviceName  string `json:"device_name"`
+	DeviceOs    string `json:"device_os"`
+	DeviceType  string `json:"device_type"`
+	ThirdOpenId string `json:"third_open_id"`
+	ThirdName   string `json:"third_name"`
+	ThirdEmail  string `json:"third_email"`
+}
+
+var OauthCache = &sync.Map{}
+
+const (
+	OauthActionTypeLogin = "login"
+	OauthActionTypeBind  = "bind"
+)
+
+func (os *OauthService) GetOauthCache(key string) *OauthCacheItem {
+	v, ok := OauthCache.Load(key)
+	if !ok {
+		return nil
+	}
+	return v.(*OauthCacheItem)
+}
+
+func (os *OauthService) SetOauthCache(key string, item *OauthCacheItem, expire uint) {
+	OauthCache.Store(key, item)
+	if expire > 0 {
+		go func() {
+			time.Sleep(time.Duration(expire) * time.Second)
+			os.DeleteOauthCache(key)
+		}()
+	}
+}
+
+func (os *OauthService) DeleteOauthCache(key string) {
+	OauthCache.Delete(key)
+}
+
+func (os *OauthService) BeginAuth(op string) (error error, code, url string) {
+	code = utils.RandomString(10) + strconv.FormatInt(time.Now().Unix(), 10)
+
+	if op == model.OauthTypeWebauth {
+		url = global.Config.Rustdesk.ApiServer + "/_admin/#/oauth/" + code
+		//url = "http://localhost:8888/_admin/#/oauth/" + code
+		return nil, code, url
+	}
+	err, conf := os.GetOauthConfig(op)
+	if err == nil {
+		return err, code, conf.AuthCodeURL(code)
+	}
+
+	return errors.New("op错误"), code, ""
+}
+
+// GetOauthConfig 获取配置
+func (os *OauthService) GetOauthConfig(op string) (error, *oauth2.Config) {
+	if op == model.OauthTypeGithub {
+		g := os.InfoByOp(model.OauthTypeGithub)
+		if g.Id == 0 || g.ClientId == "" || g.ClientSecret == "" || g.RedirectUrl == "" {
+			return errors.New("配置不存在"), nil
+		}
+		return nil, &oauth2.Config{
+			ClientID:     g.ClientId,
+			ClientSecret: g.ClientSecret,
+			RedirectURL:  g.RedirectUrl,
+			Endpoint:     github.Endpoint,
+			Scopes:       []string{"read:user", "user:email"},
+		}
+	}
+	if op == model.OauthTypeGoogle {
+		g := os.InfoByOp(model.OauthTypeGoogle)
+		if g.Id == 0 || g.ClientId == "" || g.ClientSecret == "" || g.RedirectUrl == "" {
+			return errors.New("配置不存在"), nil
+		}
+		return nil, &oauth2.Config{
+			ClientID:     g.ClientId,
+			ClientSecret: g.ClientSecret,
+			RedirectURL:  g.RedirectUrl,
+			Endpoint:     google.Endpoint,
+			Scopes:       []string{"https://www.googleapis.com/auth/userinfo.profile", "https://www.googleapis.com/auth/userinfo.email"},
+		}
+	}
+	return errors.New("op错误"), nil
+}
+
+func (os *OauthService) GithubCallback(code string) (error error, userData *GithubUserdata) {
+	err, oauthConfig := os.GetOauthConfig(model.OauthTypeGithub)
+	if err != nil {
+		return err, nil
+	}
+	token, err := oauthConfig.Exchange(context.Background(), code)
+	if err != nil {
+		global.Logger.Warn(fmt.Printf("oauthConfig.Exchange() failed: %s\n", err))
+		error = errors.New("获取token失败")
+		return
+	}
+
+	// 创建一个 HTTP 客户端，并将 access_token 添加到 Authorization 头中
+	client := oauthConfig.Client(context.Background(), token)
+	resp, err := client.Get("https://api.github.com/user")
+	if err != nil {
+		global.Logger.Warn("failed getting user info: %s\n", err)
+		error = errors.New("获取user info失败")
+		return
+	}
+	defer func(Body io.ReadCloser) {
+		err := Body.Close()
+		if err != nil {
+			global.Logger.Warn("failed closing response body: %s\n", err)
+		}
+	}(resp.Body)
+
+	// 在这里处理 GitHub 用户信息
+	if err := json.NewDecoder(resp.Body).Decode(&userData); err != nil {
+		global.Logger.Warn("failed decoding user info: %s\n", err)
+		error = errors.New("解析user info失败")
+		return
+	}
+	return
+}
+
+func (os *OauthService) UserThirdInfo(op, openid string) *model.UserThird {
+	ut := &model.UserThird{}
+	global.DB.Where("open_id = ? and third_type = ?", openid, op).First(ut)
+	return ut
+}
+
+func (os *OauthService) BindGithubUser(openid, username string, userId uint) error {
+	utr := &model.UserThird{
+		OpenId:    openid,
+		ThirdType: model.OauthTypeGithub,
+		ThirdName: username,
+		UserId:    userId,
+	}
+	return global.DB.Create(utr).Error
+}
+func (os *OauthService) UnBindGithubUser(userid uint) error {
+	return global.DB.Where("user_id = ? and third_type = ?", userid, model.OauthTypeGithub).Delete(&model.UserThird{}).Error
+}
+
+// InfoById 根据id取用户信息
+func (os *OauthService) InfoById(id uint) *model.Oauth {
+	u := &model.Oauth{}
+	global.DB.Where("id = ?", id).First(u)
+	return u
+}
+
+// InfoByOp 根据op取用户信息
+func (os *OauthService) InfoByOp(op string) *model.Oauth {
+	u := &model.Oauth{}
+	global.DB.Where("op = ?", op).First(u)
+	return u
+}
+func (os *OauthService) List(page, pageSize uint, where func(tx *gorm.DB)) (res *model.OauthList) {
+	res = &model.OauthList{}
+	res.Page = int64(page)
+	res.PageSize = int64(pageSize)
+	tx := global.DB.Model(&model.Oauth{})
+	if where != nil {
+		where(tx)
+	}
+	tx.Count(&res.Total)
+	tx.Scopes(Paginate(page, pageSize))
+	tx.Find(&res.Oauths)
+	return
+}
+
+// Create 创建
+func (os *OauthService) Create(u *model.Oauth) error {
+	res := global.DB.Create(u).Error
+	return res
+}
+func (os *OauthService) Delete(u *model.Oauth) error {
+	return global.DB.Delete(u).Error
+}
+
+// Update 更新
+func (os *OauthService) Update(u *model.Oauth) error {
+	return global.DB.Model(u).Updates(u).Error
+}
--- a/service/service.go
+++ b/service/service.go
@@ -13,6 +13,8 @@ type Service struct {
 	*TagService
 	*PeerService
 	*GroupService
+	*OauthService
+	*LoginLogService
 }

 func New() *Service {
--- a/service/user.go
+++ b/service/user.go
@@ -7,6 +7,8 @@ import (
 	"Gwen/utils"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
+	"math/rand"
+	"strconv"
 	"time"
 )

@@ -51,11 +53,11 @@ func (us *UserService) InfoByAccessToken(token string) *model.User {

 // GenerateToken 生成token
 func (us *UserService) GenerateToken(u *model.User) string {
-	return utils.Md5(u.Username + u.Password + time.Now().String())
+	return utils.Md5(u.Username + time.Now().String())
 }

 // Login 登录
-func (us *UserService) Login(u *model.User) *model.UserToken {
+func (us *UserService) Login(u *model.User, llog *model.LoginLog) *model.UserToken {
 	token := us.GenerateToken(u)
 	ut := &model.UserToken{
 		UserId:    u.Id,
@@ -63,6 +65,7 @@ func (us *UserService) Login(u *model.User) *model.UserToken {
 		ExpiredAt: time.Now().Add(time.Hour * 24 * 7).Unix(),
 	}
 	global.DB.Create(ut)
+	global.DB.Create(llog)
 	return ut
 }

@@ -169,3 +172,70 @@ func (us *UserService) RouteNames(u *model.User) []string {
 	}
 	return adResp.UserRouteNames
 }
+
+// InfoByGithubId 根据githubid取用户信息
+func (us *UserService) InfoByGithubId(githubId string) *model.User {
+	ut := AllService.OauthService.UserThirdInfo(model.OauthTypeGithub, githubId)
+	if ut.Id == 0 {
+		return nil
+	}
+	u := us.InfoById(ut.UserId)
+	if u.Id == 0 {
+		return nil
+	}
+	return u
+}
+
+// RegisterByGithub 注册
+func (us *UserService) RegisterByGithub(githubName string, githubId int64) *model.User {
+	tx := global.DB.Begin()
+	ut := &model.UserThird{
+		OpenId:    strconv.FormatInt(githubId, 10),
+		ThirdName: githubName,
+		ThirdType: model.OauthTypeGithub,
+	}
+	//global.DB.Where("open_id = ?", githubId).First(ut)
+	//这种情况不应该出现，如果出现说明有bug
+	//if ut.Id != 0 {
+	//	u := &model.User{}
+	//	global.DB.Where("id = ?", ut.UserId).First(u)
+	//	tx.Commit()
+	//	return u
+	//}
+
+	username := us.GenerateUsernameByOauth(githubName)
+	u := &model.User{
+		Username: username,
+		GroupId:  1,
+	}
+	global.DB.Create(u)
+
+	ut.UserId = u.Id
+	global.DB.Create(ut)
+
+	tx.Commit()
+	return u
+}
+
+// GenerateUsernameByOauth 生成用户名
+func (us *UserService) GenerateUsernameByOauth(name string) string {
+	u := &model.User{}
+	global.DB.Where("username = ?", name).First(u)
+	if u.Id == 0 {
+		return name
+	}
+	name = name + strconv.FormatInt(rand.Int63n(10), 10)
+	return us.GenerateUsernameByOauth(name)
+}
+
+// UserThirdsByUserId
+func (us *UserService) UserThirdsByUserId(userId uint) (res []*model.UserThird) {
+	global.DB.Where("user_id = ?", userId).Find(&res)
+	return res
+}
+
+func (us *UserService) UserThirdInfo(userId uint, op string) *model.UserThird {
+	ut := &model.UserThird{}
+	global.DB.Where("user_id = ? and third_type = ?", userId, op).First(ut)
+	return ut
+}