yunqueai/ai_wht_wechat
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
15b579d64a2edc12624a6a17852e2f3cb9d8f52a
ai_wht_wechat/go_backend/service/auth_service.go
sjk 15b579d64a 完善文案的状态流转
2025-12-20 01:05:46 +08:00

279 lines
8.6 KiB
Go
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

package service
import (
"ai_xhs/config"
"ai_xhs/database"
"ai_xhs/models"
"ai_xhs/utils"
"bytes"
"encoding/json"
"errors"
"fmt"
"io"
"log"
"net/http"
"gorm.io/gorm"
)
type AuthService struct{}
func NewAuthService() *AuthService {
return &AuthService{}
}
// 微信手机号响应
type WxPhoneResponse struct {
PhoneInfo struct {
PhoneNumber string `json:"phoneNumber"`
PurePhoneNumber string `json:"purePhoneNumber"`
CountryCode string `json:"countryCode"`
} `json:"phone_info"`
ErrCode int `json:"errcode"`
ErrMsg string `json:"errmsg"`
}
// 微信登录响应
type WxLoginResponse struct {
OpenID string `json:"openid"`
SessionKey string `json:"session_key"`
UnionID string `json:"unionid"`
ErrCode int `json:"errcode"`
ErrMsg string `json:"errmsg"`
}
// WechatLogin 微信小程序登录
func (s *AuthService) WechatLogin(code string, phone string, phoneCode string) (string, *models.User, error) {
// 1. 调用微信API验证code
// 注意需要在配置文件中添加小程序的AppID和AppSecret
appID := config.AppConfig.Wechat.AppID
appSecret := config.AppConfig.Wechat.AppSecret
// 调试日志:打印配置信息
log.Printf("[微信登录] AppID: %s, AppSecret: %s (长度:%d)", appID, appSecret, len(appSecret))
// 如果没有配置微信AppID使用手机号登录逻辑
if appID == "" || appSecret == "" {
if phone == "" {
// 没有配置微信且没有手机号使用默认员工ID=1
return s.loginByEmployeeID(1)
}
// 使用手机号登录
return s.PhoneLogin(phone)
}
// 调用微信API
url := fmt.Sprintf(
"https://api.weixin.qq.com/sns/jscode2session?appid=%s&secret=%s&js_code=%s&grant_type=authorization_code",
appID, appSecret, code,
)
// 调试日志打印请求URL隐藏密钥
log.Printf("[微信登录] 请求URL: https://api.weixin.qq.com/sns/jscode2session?appid=%s&secret=***&js_code=%s&grant_type=authorization_code", appID, code)
resp, err := http.Get(url)
if err != nil {
return "", nil, fmt.Errorf("调用微信API失败: %v", err)
}
defer resp.Body.Close()
body, err := io.ReadAll(resp.Body)
if err != nil {
return "", nil, fmt.Errorf("读取响应失败: %v", err)
}
// 调试日志:打印微信返回的原始响应
log.Printf("[微信登录] 微信API响应: %s", string(body))
var wxResp WxLoginResponse
if err := json.Unmarshal(body, &wxResp); err != nil {
return "", nil, fmt.Errorf("解析响应失败: %v", err)
}
if wxResp.ErrCode != 0 {
return "", nil, fmt.Errorf("微信登录失败: %s", wxResp.ErrMsg)
}
// 1.5 如果有 phoneCode调用微信API获取手机号
if phoneCode != "" {
accessTokenURL := fmt.Sprintf(
"https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid=%s&secret=%s",
appID, appSecret,
)
// 获取 access_token
accessTokenResp, err := http.Get(accessTokenURL)
if err != nil {
log.Printf("获取access_token失败: %v", err)
} else {
defer accessTokenResp.Body.Close()
accessTokenBody, _ := io.ReadAll(accessTokenResp.Body)
var tokenResult struct {
AccessToken string `json:"access_token"`
ErrCode int `json:"errcode"`
ErrMsg string `json:"errmsg"`
}
if err := json.Unmarshal(accessTokenBody, &tokenResult); err == nil && tokenResult.AccessToken != "" {
// 获取手机号
phoneURL := fmt.Sprintf(
"https://api.weixin.qq.com/wxa/business/getuserphonenumber?access_token=%s",
tokenResult.AccessToken,
)
phoneReqBody := map[string]string{"code": phoneCode}
phoneReqJSON, _ := json.Marshal(phoneReqBody)
phoneResp, err := http.Post(phoneURL, "application/json", bytes.NewBuffer(phoneReqJSON))
if err == nil {
defer phoneResp.Body.Close()
phoneBody, _ := io.ReadAll(phoneResp.Body)
var phoneResult WxPhoneResponse
if err := json.Unmarshal(phoneBody, &phoneResult); err == nil && phoneResult.ErrCode == 0 {
// 获取手机号成功,覆盖 phone 参数
phone = phoneResult.PhoneInfo.PurePhoneNumber
log.Printf("[微信登录] 获取手机号成功: %s", phone)
} else {
log.Printf("[微信登录] 获取手机号失败: %s", string(phoneBody))
}
}
}
}
}
// 2. 根据手机号查找用户(手机号必填)
if phone == "" {
return "", nil, errors.New("请提供手机号")
}
var employee models.User
// 通过手机号查找员工
result := database.DB.Where("phone = ? AND status = ?", phone, "active").First(&employee)
if result.Error != nil {
// 手机号不存在,不允许登录
return "", nil, errors.New("手机号不存在,请联系管理员添加")
}
// 3. 检查微信绑定信息
// 如果该用户已绑定微信信息,必须与当前登录的微信信息一致(单设备登录)
if employee.WechatOpenID != nil && *employee.WechatOpenID != "" {
// 已绑定微信,检查是否一致
if *employee.WechatOpenID != wxResp.OpenID {
return "", nil, errors.New("该账号已在其他设备登录,请使用原设备登录或联系管理员")
}
// 如果有UnionID也需要检查一致性
if employee.WechatUnionID != nil && *employee.WechatUnionID != "" && wxResp.UnionID != "" {
if *employee.WechatUnionID != wxResp.UnionID {
return "", nil, errors.New("微信账号信息不匹配,请使用原设备登录")
}
}
log.Printf("[微信登录] 用户 %s (ID:%d) 微信验证通过", employee.Phone, employee.ID)
} else {
// 微信信息为空,说明是新用户首次登录,保存微信信息
log.Printf("[微信登录] 新用户首次登录,绑定微信信息: OpenID=%s, UnionID=%s", wxResp.OpenID, wxResp.UnionID)
employee.WechatOpenID = &wxResp.OpenID
if wxResp.UnionID != "" {
employee.WechatUnionID = &wxResp.UnionID
}
// 使用事务保存微信绑定信息并创建作者记录
err := database.DB.Transaction(func(tx *gorm.DB) error {
// 1. 保存微信绑定信息
if err := tx.Save(&employee).Error; err != nil {
return fmt.Errorf("保存微信绑定信息失败: %v", err)
}
// 2. 检查是否已存在作者记录通过手机号和企业ID
var existingAuthor models.Author
result := tx.Where("phone = ? AND enterprise_id = ?", employee.Phone, employee.EnterpriseID).First(&existingAuthor)
if errors.Is(result.Error, gorm.ErrRecordNotFound) {
// 作者记录不存在,创建新记录
author := models.Author{
EnterpriseID: employee.EnterpriseID,
CreatedUserID: employee.ID,
Phone: employee.Phone,
AuthorName: employee.RealName,
Department: employee.Department,
Status: "active",
Channel: 3, // 3=weixin (微信小程序)
}
// 如果真实姓名为空,使用用户名
if author.AuthorName == "" {
author.AuthorName = employee.Username
}
if err := tx.Create(&author).Error; err != nil {
return fmt.Errorf("创建作者记录失败: %v", err)
}
log.Printf("[微信登录] 创建作者记录成功: ID=%d, Name=%s", author.ID, author.AuthorName)
} else if result.Error != nil {
// 其他数据库错误
return fmt.Errorf("检查作者记录失败: %v", result.Error)
} else {
log.Printf("[微信登录] 作者记录已存在: ID=%d", existingAuthor.ID)
}
return nil
})
if err != nil {
return "", nil, err
}
log.Printf("[微信登录] 用户 %s (ID:%d) 微信绑定成功", employee.Phone, employee.ID)
}
// 4. 生成JWT token
token, err := utils.GenerateToken(employee.ID)
if err != nil {
return "", nil, fmt.Errorf("生成token失败: %v", err)
}
return token, &employee, nil
}
// PhoneLogin 手机号登录(用于测试或无微信配置时)
func (s *AuthService) PhoneLogin(phone string) (string, *models.User, error) {
var employee models.User
// 查找员工
result := database.DB.Where("phone = ? AND status = ?", phone, "active").First(&employee)
if result.Error != nil {
return "", nil, errors.New("员工不存在或已被禁用")
}
// 生成token
token, err := utils.GenerateToken(employee.ID)
if err != nil {
return "", nil, fmt.Errorf("生成token失败: %v", err)
}
return token, &employee, nil
}
// loginByEmployeeID 通过员工ID登录内部方法
func (s *AuthService) loginByEmployeeID(employeeID int) (string, *models.User, error) {
var employee models.User
result := database.DB.Where("id = ? AND status = ?", employeeID, "active").First(&employee)
if result.Error != nil {
return "", nil, errors.New("员工不存在或已被禁用")
}
// 生成token
token, err := utils.GenerateToken(employee.ID)
if err != nil {
return "", nil, fmt.Errorf("生成token失败: %v", err)
}
return token, &employee, nil
}
Reference in New Issue View Git Blame Copy Permalink