| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215 |
- 'use strict';
- const assert = require('assert');
- const _ = require('lodash');
- const uuid = require('uuid');
- const urljoin = require('url-join');
- const stringRandom = require('string-random');
- const Controller = require('egg').Controller;
- /**
- * 微信认证,获得openid和用户信息,生成微信Jwt
- */
- class WeixinController extends Controller {
- /**
- * 认证流程
- * 1. 缓存原始请求地址,生成state和认证回调地址
- * 2. 通过wxapi认证,获得认证code
- * 3. 通过code获得openid,通过openid,查询绑定用户,创建jwt
- * 4. jwt写入redis,返回认证code
- * 5. 通过code获取jwt
- */
- // GET 请求认证
- // response_type:
- // code - url带上code参数重定向到原始地址
- // store - 默认,认证结果写入sessionStore,然后重定向回请求页面(要求请求页面和认证服务在同一域名下)
- // token - url带上token参数重定向到原始地址
- async auth() {
- const { redirect_uri, code, test, type, response_type = 'store', uid, qrcode, msgid, objid } = this.ctx.query;
- console.log(`code=${code}`);
- if (test) {
- return await this.authTest();
- }
- if (code) {
- return await this.authBack(this.ctx.query);
- }
- this.ctx.logger.debug(`[auth] reditect_uri - ${redirect_uri}`);
- // assert(redirect_uri, '回调地址不能为空');
- // TODO: 保存原始请求地址
- // const { config } = this.app;
- // console.log('ctx.host: ', this.ctx.host);
- // console.log('config.hostHeaders: ', config.hostHeaders);
- // TODO: 保存原始请求地址
- const state = uuid();
- const key = `visit:auth:state:${state}`;
- const val = JSON.stringify({ redirect_uri, type, uid, qrcode, msgid, objid });
- console.log(`key=>${key}`);
- await this.app.redis.set(key, val, 'EX', 600);
- // TODO: 生成回调地址
- const { wxapi, authUrl = this.ctx.path } = this.app.config;
- const backUrl = encodeURI(`${this.app.config.baseUrl}${this.config.authUrl}?state=${state}`);
- const to_uri = encodeURI(`${wxapi.baseUrl}/api/auth?appid=${wxapi.appid}&response_type=code&redirect_uri=${backUrl}#wechat`);
- // const backUrl = encodeURI(`${this.app.config.baseUrl}${this.config.authUrl}/`);
- // const to_uri = `https://open.weixin.qq.com/connect/oauth2/authorize?appid=${wxapi.appid}&response_type=code&scope=snsapi_base&redirect_uri=${backUrl}&state=${state}&connect_redirect=1#wechat_redirect`;
- console.log('url-->' + to_uri);
- this.ctx.redirect(to_uri);
- }
- // GET 认证回调
- async authBack({ code, state }) {
- // const { code, state, type, redirecturi } = this.ctx.query;
- console.log(this.ctx.query);
- this.ctx.logger.debug(`[auth-back] code - ${code}, state - ${state}`);
- assert(code, 'code不能为空');
- assert(state, 'state不能为空');
- console.log('code-->' + code);
- const { weixin } = this.ctx.service;
- const key = `visit:auth:state:${state}`;
- const val = await this.app.redis.get(key);
- console.log(key);
- console.log(val);
- let openid;
- try {
- ({ openid } = await weixin.fetch(code));
- } catch (err) {
- await this.ctx.render('error.njk', { title: err.message, message: err.details });
- return;
- }
- console.log('function in');
- console.log('openid--->' + openid);
- if (openid) {
- const { redirect_uri, type, uid, qrcode, msgid, objid } = JSON.parse(val);
- console.log('redirect_uri-->' + redirect_uri);
- const user = await this.ctx.service.user.findByOpenid(openid);
- console.log('type-->' + type);
- if (type === '0') {
- // 通过openid取得用户信息
- if (user) {
- const token = await this.ctx.service.login.createJwt(user);
- console.log('token-->' + token);
- console.log('user.type-->' + user.type);
- if (user.type === '4') {
- const to_uri = urljoin(redirect_uri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (user.type === '1') {
- const touri = `${this.app.config.baseUrl}/mobiledirtea`;
- const to_uri = urljoin(touri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (user.type === '3') {
- const touri = `${this.app.config.baseUrl}/mobiledirtea`;
- const to_uri = urljoin(touri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- }
- } else {
- console.log('rrr0000--->' + redirect_uri);
- // const resunionid = await weixin.fetchUnionID(openid);
- const touri = `${this.app.config.baseUrl}/student/bind`;
- const to_uri = urljoin(touri, `?openid=${openid}`); // &unionid=${resunionid.unionid}
- // TODO: 重定性页面
- this.ctx.redirect(to_uri);
- }
- } else if (type === '1') {
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&uid=${uid}&type=${type}&qrcode=${qrcode}`);
- // TODO: 重定性页面
- console.log('1111---?' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (type === '2') {
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&type=${type}&qrcode=${qrcode}`);
- // TODO: 重定性页面
- console.log('22222---?' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (type === '9') {
- // const token = await this.ctx.service.login.createJwt(user);
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&type=${type}&msgid=${msgid}&objid=${objid}`);
- // TODO: 重定性页面
- console.log('99999---?' + to_uri);
- this.ctx.redirect(to_uri);
- }
- }
- }
- // GET 用户授权内部测试接口
- async authTest() {
- const { redirect_uri, type, uid, qrcode, openid, msgid, objid } = this.ctx.query;
- // const openid = stringRandom();
- this.ctx.logger.debug(`[auth-test] reditect_uri - ${redirect_uri}, openid - ${openid}`);
- assert(redirect_uri, '回调地址不能为空');
- assert(openid, 'openid不能为空');
- const user = await this.ctx.service.user.findByOpenid(openid);
- if (type === '0') {
- // 通过openid取得用户信息
- if (user) {
- const token = await this.ctx.service.login.createJwt(user);
- console.log('token-->' + token);
- console.log('user.type-->' + user.type);
- if (user.type === '4') {
- const to_uri = urljoin(redirect_uri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (user.type === '1') {
- const touri = `${this.app.config.baseUrl}/mobiledirtea`;
- const to_uri = urljoin(touri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (user.type === '3') {
- const touri = `${this.app.config.baseUrl}/mobiledirtea`;
- const to_uri = urljoin(touri, `?token=${token}`);
- // TODO: 重定性页面
- console.log('to_uri000-->' + to_uri);
- this.ctx.redirect(to_uri);
- }
- } else {
- console.log('rrr0000--->' + redirect_uri);
- const resunionid = await weixin.fetchUnionID(openid);
- const touri = `${this.app.config.baseUrl}/student/bind`;
- const to_uri = urljoin(touri, `?openid=${openid}&unionid=${resunionid.unionid}`);
- // TODO: 重定性页面
- this.ctx.redirect(to_uri);
- }
- } else if (type === '1') {
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&uid=${uid}&type=${type}&qrcode=${qrcode}`);
- // TODO: 重定性页面
- console.log('1111---?' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (type === '2') {
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&type=${type}&qrcode=${qrcode}`);
- // TODO: 重定性页面
- console.log('22222---?' + to_uri);
- this.ctx.redirect(to_uri);
- } else if (type === '9') {
- // const token = await this.ctx.service.login.createJwt(user);
- const to_uri = urljoin(redirect_uri, `?openid=${openid}&type=${type}&msgid=${msgid}&objid=${objid}`);
- // TODO: 重定性页面
- console.log('99999---?' + to_uri);
- this.ctx.redirect(to_uri);
- }
- }
- // GET 签到小程序请求用户
- async appAuth() {
- console.warn('in appAuth');
- const { js_code, login = true } = this.ctx.query;
- const appopenid = await this.ctx.service.weixin.appAuth(js_code);
- if (!login) this.ctx.ok(appopenid);
- console.warn(`openid=>${appopenid}`);
- const res = await this.ctx.service.user.findByAppOpenid(appopenid);
- this.ctx.ok(res);
- }
- }
- module.exports = WeixinController;
|
