From 7c811247ecf143e08c576986a884bedadc57dd66 Mon Sep 17 00:00:00 2001
From: liuxiaolong <liuxiaolong@aiotlink.com>
Date: 星期五, 05 六月 2020 18:29:41 +0800
Subject: [PATCH] add refresh token to resp

---
 controllers/user.go |   96 +++++++++++++++++++++++++++++++++++++++---------
 1 files changed, 78 insertions(+), 18 deletions(-)

diff --git a/controllers/user.go b/controllers/user.go
index aae3cbd..9dbdb68 100644
--- a/controllers/user.go
+++ b/controllers/user.go
@@ -2,7 +2,6 @@
 
 import (
 	"basic.com/dbapi.git"
-	"basic.com/valib/logger.git"
 	"github.com/gin-gonic/gin"
 	"net/http"
 	"time"
@@ -22,7 +21,7 @@
 
 // @Summary 鐢ㄦ埛鐧诲綍
 // @Description 鐢ㄦ埛鐧诲綍
-// @Accept json
+// @Accept x-www-form-urlencoded
 // @Produce json
 // @Tags 鐢ㄦ埛
 // @Param username formData string true "鐢ㄦ埛鍚�"
@@ -46,20 +45,57 @@
 		tokenM["id"] = loginedM["id"]
 		tokenM["username"] = loginedM["username"]
 		tokenM["permissions"] = loginedM["permissions"]
-		tokenStr := (*authDriver).Login(c.Request, c.Writer, tokenM)
-		c.JSON(200,map[string]interface{}{
-			"userInfo":loginedM,
-			"access_token":tokenStr,
-			"refresh_token":tokenStr,
-			"scope":"app",
-			"token_type":"Bearer",
-			"expires_in":time.Now().Add(time.Hour * 8).Unix(),
-		})
+		b,tokenStr,refreshTokenStr := (*authDriver).Login(c.Request, c.Writer, tokenM)
+		if b {
+			userId := loginedM["id"].(string)
+			auth.RemoveOutUser(userId)
+
+			c.JSON(200,map[string]interface{}{
+				"userInfo":loginedM,
+				"access_token": tokenStr,
+				"refresh_token": refreshTokenStr,
+				"scope":"app",
+				"token_type":"Bearer",
+				"expires_in":time.Now().Add(time.Hour * 8).Unix(),
+			})
+		} else {
+			c.JSON(500,"鐢ㄦ埛鍚嶆垨瀵嗙爜閿欒")
+		}
 	} else {
 		c.JSON(500,"鐢ㄦ埛鍚嶆垨瀵嗙爜閿欒")
 	}
 }
 
+// @Security ApiKeyAuth
+// @Summary 淇敼褰撳墠鐧诲綍鐢ㄦ埛鐨勫瘑鐮�
+// @Description 淇敼褰撳墠鐧诲綍鐢ㄦ埛鐨勫瘑鐮�
+// @Accept x-www-form-urlencoded
+// @Produce json
+// @Tags 鐢ㄦ埛
+// @Param oldPwd formData string true "鏃у瘑鐮�"
+// @Param newPwd formData string true "鏂板瘑鐮�"
+// @Success 200 {string} json "{"code":200, success:true, msg:"", data:""}"
+// @Failure 500 {string} json "{"code":500, success:false, msg:"", data:""}"
+// @Router /data/api-u/users/updatePwd [post]
+func (uc UserController) UpdatePwd(c *gin.Context) {
+	oldPwd := c.PostForm("oldPwd")
+	newPwd := c.PostForm("newPwd")
+	if oldPwd == "" || newPwd == "" {
+		util.ResponseFormat(c,code.RequestParamError,"鍙傛暟鏈夎")
+		return
+	}
+	authDriver := auth.GenerateAuthDriver()
+	userM := (*authDriver).User(c)
+	userId := userM["id"].(string)
+	var userApi dbapi.UserApi
+	if b,_ :=userApi.UpdatePwd(userId, oldPwd, newPwd);b {
+		util.ResponseFormat(c,code.UpdateSuccess,"鏇存柊鎴愬姛")
+	} else {
+		util.ResponseFormat(c,code.AccountPassUnmatch,"瀵嗙爜鏈夎")
+	}
+}
+
+// @Security ApiKeyAuth
 // @Summary 鑾峰彇褰撳墠鐢ㄦ埛淇℃伅
 // @Description 鑾峰彇褰撳墠鐢ㄦ埛淇℃伅
 // @Accept json
@@ -77,9 +113,31 @@
 		c.JSON(http.StatusUnauthorized,"")
 	}
 }
+
+// @Summary token杩囨湡鍚庡埛鏂皌oken
+// @Description token杩囨湡鍚庡埛鏂皌oken
+// @Accept x-www-form-urlencoded
+// @Produce json
+// @Tags 鐢ㄦ埛
+// @Param refresh_token formData string true "涓婃鑾峰彇token鏃惰繑鍥炵殑refresh_token鍊�"
+// @Success 200 {string} json "{"code":200, success:true, msg:"", data:""}"
+// @Failure 500 {string} json "{"code":500, success:false, msg:"", data:""}"
 // @Router /data/api-u/sys/refresh_token [post]
 func (uc UserController) RefreshToken(c *gin.Context){
-
+	refreshToken := c.PostForm("refresh_token")
+	if refreshToken == "" {
+		util.ResponseFormat(c,code.TokenNotFound,"鏈壘鍒皉efresh_token")
+		return
+	}
+	authDriver := auth.GenerateAuthDriver()
+	if b,newToken,newRefreshToken := (*authDriver).RefreshToken(refreshToken);b {
+		util.ResponseFormat(c,code.Success,map[string]string{
+			"token": newToken,
+			"refresh_token": newRefreshToken,
+		})
+	} else {
+		util.ResponseFormat(c,code.NotLogin,"璇烽噸鏂扮櫥褰�")
+	}
 }
 
 // @Router /data/api-u/sys/logout [get]
@@ -87,6 +145,7 @@
 	c.JSON(http.StatusOK,"閫�鍑烘垚鍔�")
 }
 
+// @Security ApiKeyAuth
 // @Summary 鏌ユ壘鎵�鏈夌敤鎴�
 // @Description 鏌ユ壘鎵�鏈夌敤鎴�
 // @Accept json
@@ -97,10 +156,8 @@
 // @Router /data/api-u/users/findAllUser [get]
 func (uc UserController) FindAllUser(c *gin.Context) {
 	authDriver := auth.GenerateAuthDriver()
-	user := (*authDriver).User(c)
-	logger.Debug("cur userInfo:",user)
-	loginM := user.(map[string]interface{})
-	userId := loginM["id"].(string)
+	userM := (*authDriver).User(c)
+	userId := userM["id"].(string)
 	var api dbapi.UserApi
 	b,d := api.FindAllUser(userId)
 	if b {
@@ -117,9 +174,10 @@
 	MenuIds []string `json:"menuIds"`
 }
 
+// @Security ApiKeyAuth
 // @Summary 缂栬緫姝ょ敤鎴凤紝杩斿洖姝ょ敤鎴风殑鏉冮檺鑿滃崟
 // @Description 缂栬緫姝ょ敤鎴凤紝杩斿洖姝ょ敤鎴风殑鏉冮檺鑿滃崟
-// @Accept json
+// @Accept x-www-form-urlencoded
 // @Produce json
 // @Tags 鐢ㄦ埛
 // @Param userId formData string true "鐢ㄦ埛id"
@@ -141,6 +199,7 @@
 	}
 }
 
+// @Security ApiKeyAuth
 // @Summary 鏇存柊鐢ㄦ埛鍚嶏紝瀵嗙爜鍜岃彍鍗曟潈闄�
 // @Description 鏇存柊鐢ㄦ埛鍚嶏紝瀵嗙爜鍜岃彍鍗曟潈闄�
 // @Accept json
@@ -149,7 +208,7 @@
 // @Param userVo body controllers.UserEditVo true "鐢ㄦ埛鍙婃潈闄愪俊鎭�"
 // @Success 200 {string} json "{"code":200, success:true, msg:"", data:""}"
 // @Failure 500 {string} json "{"code":500, success:false, msg:"",data:""}"
-// @Router /data/api-v/user/saveAuth [post]
+// @Router /data/api-v/users/saveAuth [post]
 func (uc UserController) SaveAuth(c *gin.Context) {
 	var userEditVo UserEditVo
 	err := c.BindJSON(&userEditVo)
@@ -161,6 +220,7 @@
 	var api dbapi.UserApi
 	b, d := api.SaveAuth(paramBody)
 	if b {
+		auth.SetOutUser(userEditVo.Id)
 		util.ResponseFormat(c,code.UpdateSuccess,d)
 	} else {
 		util.ResponseFormat(c,code.UpdateFail,"淇濆瓨澶辫触")

--
Gitblit v1.8.0