Почетна Преглед Помоћ
Пријавите се
ZZYDOP
/
AiDOPWarehouse
5
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: 4047a46572
Гране Ознаке
AiDOPWarehouse
/
Admin.NET
/
Admin.NET.Core
/
Service
/
OAuth
/
SysOAuthService.cs

SysOAuthService.cs 4.8 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115 
  1. // 大名科技(天津)有限公司版权所有  电话:18020030720  QQ:515096995
    2. 

  2. //
    3. 

  3. // 此源代码遵循位于源代码树根目录中的 LICENSE 文件的许可证
    4. 

  4. 

  5. using Microsoft.AspNetCore.Authentication;
    6. 

  6. using System.Security.Claims;
    7. 

  7. 

  8. namespace Admin.NET.Core.Service;
    9. 

  9. 

  10. /// <summary>
    11. 

  11. /// 系统OAuth服务
    12. 

  12. /// </summary>
    13. 

  13. [AllowAnonymous]
    14. 

  14. [ApiDescriptionSettings(Order = 495)]
    15. 

  15. public class SysOAuthService : IDynamicApiController, ITransient
    16. 

  16. {
    17. 

  17.     private readonly IHttpContextAccessor _httpContextAccessor;
    18. 

  18.     private readonly SqlSugarRepository<SysWechatUser> _sysWechatUserRep;
    19. 

  19. 

  20.     public SysOAuthService(IHttpContextAccessor httpContextAccessor,
    21. 

  21.         SqlSugarRepository<SysWechatUser> sysWechatUserRep)
    22. 

  22.     {
    23. 

  23.         _httpContextAccessor = httpContextAccessor;
    24. 

  24.         _sysWechatUserRep = sysWechatUserRep;
    25. 

  25.     }
    26. 

  26. 

  27.     /// <summary>
    28. 

  28.     /// 第三方登录
    29. 

  29.     /// </summary>
    30. 

  30.     /// <param name="provider"></param>
    31. 

  31.     /// <param name="redirectUrl"></param>
    32. 

  32.     /// <returns></returns>
    33. 

  33.     [ApiDescriptionSettings(Name = "SignIn"), HttpGet]
    34. 

  34.     [DisplayName("第三方登录")]
    35. 

  35.     public async Task<IActionResult> SignIn([FromQuery] string provider, [FromQuery] string redirectUrl)
    36. 

  36.     {
    37. 

  37.         if (string.IsNullOrWhiteSpace(provider) || !await _httpContextAccessor.HttpContext.IsProviderSupportedAsync(provider))
    38. 

  38.             throw Oops.Oh("不支持的OAuth类型");
    39. 

  39. 

  40.         var request = _httpContextAccessor.HttpContext.Request;
    41. 

  41.         var url = $"{request.Scheme}://{request.Host}{request.PathBase}{request.Path}Callback?provider={provider}&redirectUrl={redirectUrl}";
    42. 

  42.         var properties = new AuthenticationProperties { RedirectUri = url };
    43. 

  43.         properties.Items["LoginProvider"] = provider;
    44. 

  44.         return await Task.FromResult(new ChallengeResult(provider, properties));
    45. 

  45.     }
    46. 

  46. 

  47.     /// <summary>
    48. 

  48.     /// 授权回调
    49. 

  49.     /// </summary>
    50. 

  50.     /// <param name="provider"></param>
    51. 

  51.     /// <param name="redirectUrl"></param>
    52. 

  52.     /// <returns></returns>
    53. 

  53.     [ApiDescriptionSettings(Name = "SignInCallback"), HttpGet]
    54. 

  54.     [DisplayName("授权回调")]
    55. 

  55.     public async Task<IActionResult> SignInCallback([FromQuery] string provider = null, [FromQuery] string redirectUrl = "")
    56. 

  56.     {
    57. 

  57.         if (string.IsNullOrWhiteSpace(provider) || !await _httpContextAccessor.HttpContext.IsProviderSupportedAsync(provider))
    58. 

  58.             throw Oops.Oh("不支持的OAuth类型");
    59. 

  59. 

  60.         var authenticateResult = await _httpContextAccessor.HttpContext.AuthenticateAsync(provider);
    61. 

  61.         if (!authenticateResult.Succeeded)
    62. 

  62.             throw Oops.Oh("授权失败");
    63. 

  63. 

  64.         var openIdClaim = authenticateResult.Principal.FindFirst(ClaimTypes.NameIdentifier);
    65. 

  65.         if (openIdClaim == null || string.IsNullOrWhiteSpace(openIdClaim.Value))
    66. 

  66.             throw Oops.Oh("授权失败");
    67. 

  67. 

  68.         var name = authenticateResult.Principal.FindFirst(ClaimTypes.Name)?.Value;
    69. 

  69.         var email = authenticateResult.Principal.FindFirst(ClaimTypes.Email)?.Value;
    70. 

  70.         var mobilePhone = authenticateResult.Principal.FindFirst(ClaimTypes.MobilePhone)?.Value;
    71. 

  71.         var dateOfBirth = authenticateResult.Principal.FindFirst(ClaimTypes.DateOfBirth)?.Value;
    72. 

  72.         var gender = authenticateResult.Principal.FindFirst(ClaimTypes.Gender)?.Value;
    73. 

  73.         var avatarUrl = "";
    74. 

  74. 

  75.         var platformType = PlatformTypeEnum.微信公众号;
    76. 

  76.         if (provider == "Gitee")
    77. 

  77.         {
    78. 

  78.             platformType = PlatformTypeEnum.Gitee;
    79. 

  79.             avatarUrl = authenticateResult.Principal.FindFirst(OAuthClaim.GiteeAvatarUrl)?.Value;
    80. 

  80.         }
    81. 

  81. 

  82.         // 若账号不存在则新建
    83. 

  83.         var wechatUser = await _sysWechatUserRep.AsQueryable().Includes(u => u.SysUser).ClearFilter().FirstAsync(u => u.OpenId == openIdClaim.Value);
    84. 

  84.         if (wechatUser == null)
    85. 

  85.         {
    86. 

  86.             var userId = await App.GetRequiredService<SysUserService>().AddUser(new AddUserInput()
    87. 

  87.             {
    88. 

  88.                 Account = name,
    89. 

  89.                 RealName = name,
    90. 

  90.                 NickName = name,
    91. 

  91.                 Email = email,
    92. 

  92.                 Avatar = avatarUrl,
    93. 

  93.                 Phone = mobilePhone,
    94. 

  94.                 OrgId = 1300000000101, // 根组织架构
    95. 

  95.                 RoleIdList = new List<long> { 1300000000104 } // 仅本人数据角色
    96. 

  96.             });
    97. 

  97. 

  98.             await _sysWechatUserRep.InsertAsync(new SysWechatUser()
    99. 

  99.             {
    100. 

  100.                 UserId = userId,
    101. 

  101.                 OpenId = openIdClaim.Value,
    102. 

  102.                 Avatar = avatarUrl,
    103. 

  103.                 NickName = name,
    104. 

  104.                 PlatformType = platformType
    105. 

  105.             });
    106. 

  106. 

  107.             wechatUser = await _sysWechatUserRep.AsQueryable().Includes(u => u.SysUser).ClearFilter().FirstAsync(u => u.OpenId == openIdClaim.Value);
    108. 

  108.         }
    109. 

  109. 

  110.         // 构建Token令牌
    111. 

  111.         var token = await App.GetRequiredService<SysAuthService>().CreateToken(wechatUser.SysUser);
    112. 

  112. 

  113.         return new RedirectResult($"{redirectUrl}/#/login?token={token.AccessToken}");
    114. 

  114.     }
    115. 

  115. }
    116.