// -------------------------------------------------------
// 登录帐号
// -------------------------------------------------------
#region 函数:Auth(XmlDocument doc)
/// <summary>验证</summary>
public string Auth(XmlDocument doc)
{
// -------------------------------------------------------
// 验证码 验证
// -------------------------------------------------------
// 帐号信息
IAccountInfo account = null;
// 用户信息
IMemberInfo member = null;
string loginName = XmlHelper.Fetch("loginName", doc);
string password = XmlHelper.Fetch("password", doc);
switch (KernelConfigurationView.Instance.AuthenticationManagementType)
{
// Http 方式验证 (生产环境)
case "X3Platform.Membership.Authentication.HttpAuthenticationManagement,X3Platform.Membership":
string serverValidateCode = (HttpContext.Current.Session["ServerValidateCode"] == null ? string.Empty : HttpContext.Current.Session["AdminCheckCode"].ToString());
string clientValidateCode = XmlHelper.Fetch("validatecode", doc);
if (string.IsNullOrEmpty(clientValidateCode))
{
// -*- 不设置验证码 -*-
// 3.验证码失效.
// return "{\"message\":{\"returnCode\":3,\"value\":\"验证码失效。\"}}";
}
else if (clientValidateCode != serverValidateCode.ToUpper())
{
// 2.验证码不匹配.
return("{\"message\":{\"returnCode\":2,\"value\":\"验证码不匹配。\"}}");
}
account = MembershipManagement.Instance.AccountService.LoginCheck(loginName, password);
break;
// Http 方式验证 (测试环境)
case "X3Platform.Membership.Authentication.MockAuthenticationManagement,X3Platform.Membership":
if (password == MembershipConfigurationView.Instance.MockAuthenticationPassword)
{
account = MembershipManagement.Instance.AccountService.FindOneByLoginName(loginName);
}
else
{
return("{\"message\":{\"returnCode\":1,\"value\":\"密码错误, 系统当前的验证方式是模拟测试验证, 请从联系管理员获取测试密码。\"}}");
}
break;
case "X3Platform.Membership.Authentication.NLMAuthenticationManagement,X3Platform.Membership":
return("{\"message\":{\"returnCode\":1,\"value\":\"系统当前的验证方式是Windows集成验证, 请使用Windows验证方式登录。\"}}");
case "X3Platform.Membership.Authentication.SSOAuthenticationManagement,X3Platform.Membership":
return("{\"message\":{\"returnCode\":1,\"value\":\"系统当前的验证方式是单点登录验证, 请从门户登录。\"}}");
default:
return("{\"message\":{\"returnCode\":1,\"value\":\"系统未设置任何登录方式, 请从联系管理员。\"}}");
}
if (account == null)
{
// 1.用户名和密码不正确.
return("{\"message\":{\"returnCode\":1,\"value\":\"用户名和密码不正确。\"}}");
}
else
{
if (account.Status == 0)
{
// 2.用户名和密码不正确.
return("{\"message\":{\"returnCode\":1,\"value\":\"此帐号被禁用,如有问题请联系提供管理员。\"}}");
}
MembershipManagement.Instance.AccountService.SetIPAndLoginDate(account.Id, IPQueryContext.GetClientIP(), DateTime.Now);
member = this.service.FindOne(account.Id);
// 4.此帐号无此权限,请联系管理员。
if (member == null)
{
return("{\"message\":{\"returnCode\":4,\"value\":\"此帐号无此权限,请联系管理员。\"}}");
}
// 设置帐号在线状态信息
member.Account.LoginName = loginName;
member.Account.IP = IPQueryContext.GetClientIP();
string accountIdentity = string.Format("{0}-{1}", account.Id, DigitalNumberContext.Generate("Key_Session"));
KernelContext.Current.AuthenticationManagement.AddSession(string.Empty, accountIdentity, account);
HttpAuthenticationCookieSetter.SetUserCookies(accountIdentity);
// 设置本地登录帐号
HttpContext.Current.Response.Cookies.Add(new HttpCookie("session-local-account", "{\"id\":\"" + account.Id + "\",\"name\":\"" + HttpUtility.UrlEncode(account.Name) + "\",\"loginName\":\"" + account.LoginName + "\"}"));
// 设置本地服务器状态
HttpContext.Current.Response.Cookies.Add(new HttpCookie("session-local-status", "1"));
MembershipManagement.Instance.AccountLogService.Log(account.Id, "membership.member.quit", string.Format("【{0}】在 {1} 登录了系统。【IP:{2}】", ((IAuthorizationObject)member.Account).Name, DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), member.Account.IP));
FormsAuthentication.SetAuthCookie(loginName, false);
}
return("{\"message\":{\"returnCode\":0,\"value\":\"登录成功。\"}}");
}
// -------------------------------------------------------
// 接口地址:/api/connect.auth.authorize.aspx
// -------------------------------------------------------
#region 函数:GetAuthorizeCode(XmlDocument doc)
/// <summary>获取详细信息</summary>
/// <param name="doc">Xml 文档对象</param>
/// <returns>返回操作结果</returns>
public string GetAuthorizeCode(XmlDocument doc)
{
StringBuilder outString = new StringBuilder();
string clientId = XmlHelper.Fetch("clientId", doc);
string redirectUri = XmlHelper.Fetch("redirectUri", doc);
string responseType = XmlHelper.Fetch("responseType", doc);
string scope = XmlHelper.Fetch("scope", doc);
string style = XmlHelper.Fetch("style", doc);
string loginName = XmlHelper.Fetch("loginName", doc);
string password = XmlHelper.Fetch("password", doc);
if (string.IsNullOrEmpty(loginName) || string.IsNullOrEmpty(password))
{
HttpContentTypeHelper.SetValue("html");
return(CreateLoginPage(clientId, redirectUri, responseType, scope));
}
else
{
// 当前用户信息
IAccountInfo account = MembershipManagement.Instance.AccountService.LoginCheck(loginName, password);
if (account == null)
{
if (string.IsNullOrEmpty(responseType))
{
outString.Append("{\"message\":{\"returnCode\":1,\"value\":\"帐号或者密码错误。\"}}");
return(outString.ToString());
}
else
{
// 输出登录页面
// 设置输出的内容类型,默认为 html 格式。
HttpContentTypeHelper.SetValue("html");
return(CreateLoginPage(clientId, redirectUri, responseType, scope));
}
}
else
{
// 检验是否有授权码
if (!ConnectContext.Instance.ConnectAuthorizationCodeService.IsExist(clientId, account.Id))
{
ConnectAuthorizationCodeInfo authorizationCode = new ConnectAuthorizationCodeInfo();
authorizationCode.Id = DigitalNumberContext.Generate("Key_32DigitGuid");
authorizationCode.AppKey = clientId;
authorizationCode.AccountId = account.Id;
authorizationCode.AuthorizationScope = string.IsNullOrEmpty(scope) ? "public" : scope;
ConnectContext.Instance.ConnectAuthorizationCodeService.Save(authorizationCode);
}
// 设置访问令牌
ConnectContext.Instance.ConnectAccessTokenService.Write(clientId, account.Id);
// 设置会话信息
ConnectAccessTokenInfo token = ConnectContext.Instance.ConnectAccessTokenService.FindOneByAccountId(clientId, account.Id);
// 记录日志
string ip = IPQueryContext.GetClientIP();
MembershipManagement.Instance.AccountService.SetIPAndLoginDate(account.Id, ip, DateTime.Now);
MembershipManagement.Instance.AccountLogService.Log(account.Id, "connect.auth.authorize", string.Format("【{0}】在 {1} 登录了系统。【IP:{2}】", account.Name, DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), ip));
string sessionId = token.AccountId + "-" + token.Id;
KernelContext.Current.AuthenticationManagement.AddSession(clientId, sessionId, account);
HttpAuthenticationCookieSetter.SetUserCookies(sessionId);
string code = ConnectContext.Instance.ConnectAuthorizationCodeService.GetAuthorizationCode(clientId, account);
// responseType == null 则输出令牌信息
if (string.IsNullOrEmpty(responseType))
{
outString.Append("{\"data\":" + AjaxUtil.Parse <ConnectAccessTokenInfo>(token) + ",");
outString.Append("\"message\":{\"returnCode\":0,\"value\":\"验证成功。\"}}");
string callback = XmlHelper.Fetch("callback", doc);
return(string.IsNullOrEmpty(callback)
? outString.ToString()
: callback + "(" + outString.ToString() + ")");
}
else if (responseType == "code")
{
HttpContext.Current.Response.Redirect(CombineUrlAndAuthorizationCode(redirectUri, code));
}
else if (responseType == "token")
{
HttpContext.Current.Response.Redirect(CombineUrlAndAccessToken(redirectUri, token));
}
else
{
HttpContext.Current.Response.Redirect(CombineUrlAndAuthorizationCode(redirectUri, code));
}
}
}
outString.Append("{\"message\":{\"returnCode\":0,\"value\":\"执行成功。\"}}");
return(outString.ToString());
}
// -------------------------------------------------------
// 注册帐号
// -------------------------------------------------------
#region 函数:Register(XmlDocument doc)
/// <summary>注册帐号</summary>
/// <param name="doc">Xml 文档对象</param>
/// <returns></returns>
public string Register(XmlDocument doc)
{
IAccountInfo param = new AccountInfo();
// Registration 注册类型: email | mobile | default
string registration = XmlHelper.Fetch("registration", doc);
// 登陆名
string loginName = XmlHelper.Fetch("loginName", doc);
// 姓名
string name = XmlHelper.Fetch("name", doc);
// 手机号码
string mobile = XmlHelper.Fetch("mobile", doc);
// 邮箱
string email = XmlHelper.Fetch("email", doc);
// 密码
string password = XmlHelper.Fetch("password", doc);
string code = XmlHelper.Fetch("code", doc);
if (registration == "mail")
{
if (string.IsNullOrEmpty(email))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"必须填写电子邮箱。\"}}");
}
if (MembershipManagement.Instance.AccountService.IsExistCertifiedEmail(email))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此邮箱已经存在。\"}}");
}
if (!VerificationCodeContext.Instance.VerificationCodeService.Validate("Mail", email, "用户注册", code))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"邮件验证码错误。\"}}");
}
param.LoginName = email;
param.DisplayName = ((AccountInfo)param).Name = ((AccountInfo)param).GlobalName = email;
param.CertifiedEmail = email;
if (MembershipManagement.Instance.AccountService.IsExistLoginName(param.LoginName))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此登录名已经存在。\"}}");
}
}
else if (registration == "mobile")
{
if (string.IsNullOrEmpty(mobile))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"必须填写手机号码。\"}}");
}
if (MembershipManagement.Instance.AccountService.IsExistCertifiedMobile(mobile))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此手机号码已经存在。\"}}");
}
if (!VerificationCodeContext.Instance.VerificationCodeService.Validate("Mobile", mobile, "用户注册", code))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"短信验证码错误。\"}}");
}
param.LoginName = mobile;
param.DisplayName = ((AccountInfo)param).Name = mobile;
param.CertifiedMobile = mobile;
if (MembershipManagement.Instance.AccountService.IsExistLoginName(param.LoginName))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此登录名已经存在。\"}}");
}
}
else
{
if (string.IsNullOrEmpty(loginName) || string.IsNullOrEmpty(name))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"必须填写登录名和全局名称。\"}}");
}
if (MembershipManagement.Instance.AccountService.IsExistLoginNameAndGlobalName(loginName, name))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此登录名已经存在。\"}}");
}
param.LoginName = loginName;
((AccountInfo)param).GlobalName = name;
if (MembershipManagement.Instance.AccountService.IsExistLoginNameAndGlobalName(param.LoginName, param.GlobalName))
{
return("{\"message\":{\"returnCode\":1,\"value\":\"此登录名已经存在。\"}}");
}
}
param.Id = DigitalNumberContext.Generate("Key_Guid");
param.LoginDate = new DateTime(1970, 1, 1);
param.Status = 1;
param.IP = IPQueryContext.GetClientIP();
param = MembershipManagement.Instance.AccountService.Save(param);
if (param != null)
{
MembershipManagement.Instance.AccountService.SetPassword(param.Id, password);
var result = this.service.Save(new MemberInfo()
{
Id = param.Id, AccountId = param.Id, Mobile = mobile
});
if (result != null)
{
// 设置帐号在线状态信息
string accountIdentity = DigitalNumberContext.Generate("Key_Guid");
SessionContext.Instance.Write(KernelContext.Current.AuthenticationManagement.GetAccountStorageStrategy(), accountIdentity, param);
HttpAuthenticationCookieSetter.SetUserCookies(accountIdentity);
}
}
// this.RegisterMember(param.Id, doc);
return("{\"message\":{\"returnCode\":0,\"value\":\"帐号注册成功。\"}}");
}
