1Panel/backend/app/api/v1/auth.go

174 lines
4.8 KiB
Go
Raw Normal View History

2022-09-08 18:47:15 +08:00
package v1
import (
"encoding/base64"
"github.com/1Panel-dev/1Panel/backend/app/api/v1/helper"
"github.com/1Panel-dev/1Panel/backend/app/dto"
2022-11-15 17:20:57 +08:00
"github.com/1Panel-dev/1Panel/backend/app/model"
"github.com/1Panel-dev/1Panel/backend/constant"
"github.com/1Panel-dev/1Panel/backend/global"
"github.com/1Panel-dev/1Panel/backend/utils/captcha"
2022-11-21 15:20:04 +08:00
"github.com/1Panel-dev/1Panel/backend/utils/qqwry"
2022-09-08 18:47:15 +08:00
"github.com/gin-gonic/gin"
)
type BaseApi struct{}
2023-01-04 22:31:51 +08:00
// @Tags Auth
// @Summary User login
// @Description 用户登录
// @Accept json
2023-09-18 14:06:18 +08:00
// @Param EntranceCode header string true "安全入口 base64 加密串"
2023-01-04 22:31:51 +08:00
// @Param request body dto.Login true "request"
// @Success 200 {object} dto.UserLoginInfo
// @Router /auth/login [post]
2022-09-08 18:47:15 +08:00
func (b *BaseApi) Login(c *gin.Context) {
var req dto.Login
2023-10-27 14:19:26 +08:00
if err := helper.CheckBindAndValidate(&req, c); err != nil {
2022-09-08 18:47:15 +08:00
return
}
2023-10-27 14:19:26 +08:00
if req.AuthMethod != "jwt" && !req.IgnoreCaptcha {
if err := captcha.VerifyCode(req.CaptchaID, req.Captcha); err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
2022-09-08 18:47:15 +08:00
}
entranceItem := c.Request.Header.Get("EntranceCode")
var entrance []byte
if len(entranceItem) != 0 {
entrance, _ = base64.StdEncoding.DecodeString(entranceItem)
}
2022-09-08 18:47:15 +08:00
user, err := authService.Login(c, req, string(entrance))
2022-11-15 17:20:57 +08:00
go saveLoginLogs(c, err)
2022-09-08 18:47:15 +08:00
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, user)
}
2023-01-04 22:31:51 +08:00
// @Tags Auth
// @Summary User login with mfa
// @Description 用户 mfa 登录
// @Accept json
// @Param request body dto.MFALogin true "request"
// @Success 200 {object} dto.UserLoginInfo
// @Router /auth/mfalogin [post]
// @Header 200 {string} EntranceCode "安全入口"
2022-09-15 18:43:41 +08:00
func (b *BaseApi) MFALogin(c *gin.Context) {
var req dto.MFALogin
2023-10-27 14:19:26 +08:00
if err := helper.CheckBindAndValidate(&req, c); err != nil {
2022-09-15 18:43:41 +08:00
return
}
2023-10-27 14:19:26 +08:00
entranceItem := c.Request.Header.Get("EntranceCode")
var entrance []byte
if len(entranceItem) != 0 {
entrance, _ = base64.StdEncoding.DecodeString(entranceItem)
}
2022-09-15 18:43:41 +08:00
user, err := authService.MFALogin(c, req, string(entrance))
2022-09-15 18:43:41 +08:00
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, user)
}
2023-01-04 22:31:51 +08:00
// @Tags Auth
// @Summary User logout
// @Description 用户登出
// @Success 200
// @Security ApiKeyAuth
// @Router /auth/logout [post]
2022-09-08 18:47:15 +08:00
func (b *BaseApi) LogOut(c *gin.Context) {
if err := authService.LogOut(c); err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, nil)
}
2023-01-04 22:31:51 +08:00
// @Tags Auth
// @Summary Load captcha
// @Description 加载验证码
// @Success 200 {object} dto.CaptchaResponse
// @Router /auth/captcha [get]
2022-09-08 18:47:15 +08:00
func (b *BaseApi) Captcha(c *gin.Context) {
captcha, err := captcha.CreateCaptcha()
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
2022-09-15 17:15:03 +08:00
return
2022-09-08 18:47:15 +08:00
}
helper.SuccessWithData(c, captcha)
}
2022-09-15 17:15:03 +08:00
2023-01-04 22:31:51 +08:00
// @Tags Auth
// @Summary Load safety status
// @Description 获取系统安全登录状态
// @Success 200
2023-04-14 18:54:34 +08:00
// @Router /auth/issafety [get]
func (b *BaseApi) CheckIsSafety(c *gin.Context) {
code := c.DefaultQuery("code", "")
status, err := authService.CheckIsSafety(code)
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, status)
2022-09-15 17:15:03 +08:00
}
2022-11-15 17:20:57 +08:00
func (b *BaseApi) GetResponsePage(c *gin.Context) {
pageCode, err := authService.GetResponsePage()
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, pageCode)
}
// @Tags Auth
// @Summary Check System isDemo
// @Description 判断是否为demo环境
// @Success 200
// @Router /auth/demo [get]
func (b *BaseApi) CheckIsDemo(c *gin.Context) {
helper.SuccessWithData(c, global.CONF.System.IsDemo)
}
// @Tags Auth
// @Summary Load System Language
// @Description 获取系统语言设置
// @Success 200
// @Router /auth/language [get]
func (b *BaseApi) GetLanguage(c *gin.Context) {
settingInfo, err := settingService.GetSettingInfo()
if err != nil {
helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
return
}
helper.SuccessWithData(c, settingInfo.Language)
}
2022-11-15 17:20:57 +08:00
func saveLoginLogs(c *gin.Context, err error) {
var logs model.LoginLog
if err != nil {
logs.Status = constant.StatusFailed
logs.Message = err.Error()
} else {
logs.Status = constant.StatusSuccess
}
logs.IP = c.ClientIP()
2022-11-21 15:20:04 +08:00
qqWry, err := qqwry.NewQQwry()
if err != nil {
global.LOG.Errorf("load qqwry datas failed: %s", err)
}
res := qqWry.Find(logs.IP)
logs.Agent = c.GetHeader("User-Agent")
logs.Address = res.Area
_ = logService.CreateLoginLog(logs)
2022-11-15 17:20:57 +08:00
}