/// <summary>
/// 修改
/// </summary>
public static string Edit(HttpContext context)
{
try
{
var pagePath = context.Request["PagePath"];
var filterDescription = context.Request["FilterDescription"];
var filterType = context.Request["FilterType"];
var oldPagePath = context.Request["OldPagePath"];
var oldFilterType = context.Request["OldFilterType"];
var matchType = context.Request["MatchType"];
var ex1 = context.Request["Ex1"];
var model = new ModuleFilterInfo();
model.PagePath = pagePath;
model.FilterDescription = filterDescription;
model.FilterType = filterType;
if (bll.Update(model, string.Format("PagePath='{0}',FilterType='{1}',FilterDescription='{2}',MatchType='{3}',Ex1='{4}'", pagePath, filterType, filterDescription, matchType, ex1), string.Format(" PagePath='{0}' and FilterType='{1}'", oldPagePath, oldFilterType)) > 0)
{
UpdateRedis();
return("true");
}
else
{
return("false");
}
}
catch (Exception ex)
{
return(ex.Message);
}
}
/// <summary>
/// 添加
/// </summary>
private static string Add(HttpContext context)
{
try
{
var pagePath = context.Request["PagePath"];
var filterDescription = context.Request["FilterDescription"];
var filterType = context.Request["FilterType"];
var matchType = context.Request["MatchType"];
var ex1 = context.Request["Ex1"];
var model = new ModuleFilterInfo();
model.PagePath = pagePath;
model.FilterDescription = filterDescription;
model.FilterType = filterType;
model.MatchType = matchType;
model.Ex1 = ex1;
if (bll.Add(model))
{
UpdateRedis();
return("true");
}
return("false");
//return bll.Add(model).ToString().ToLower();
}
catch (Exception ex)
{
return(ex.Message);
}
//return "false";
}
private bool CheckIsToWXOAuth(string pushContent, out ModuleFilterInfo matchModel)
{
List <ModuleFilterInfo> keywordList = new BLL().GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
if (keywordList.Count > 0)
{
//先进行全文匹配
var searchResult = keywordList.Where(p => p.PagePath.Equals(pushContent, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("all")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//开头匹配
searchResult = keywordList.Where(p => pushContent.StartsWith(p.PagePath, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("start")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//结尾匹配
searchResult = keywordList.Where(p => pushContent.EndsWith(p.PagePath, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("end")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//包含匹配
searchResult = keywordList.Where(p => pushContent.ToLower().Contains(p.PagePath.ToLower()) && p.MatchType.Equals("contains")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
}
matchModel = null;
return(false);
}
/// <summary>
/// 授权作用于平台用户登录(openId直接为平台登录用户)
/// </summary>
/// <param name="sender"></param>
/// <param name="e"></param>
void context_AcquireRequestStateForOpenIdLogin(object sender, EventArgs e)
{
try
{
HttpContext context = HttpContext.Current;
ZentCloud.BLLJIMP.BLLUser userBll = new ZentCloud.BLLJIMP.BLLUser("");
SystemSet systemSet = userBll.Get <SystemSet>("");
ZentCloud.BLLJIMP.Model.WebsiteInfo currWebsiteInfoModel = (ZentCloud.BLLJIMP.Model.WebsiteInfo)context.Session["WebsiteInfoModel"];
ZentCloud.BLLJIMP.Model.UserInfo currWebsiteOwner = userBll.GetUserInfo(currWebsiteInfoModel.WebsiteOwner);
string currPath = context.Request.Path.ToLower();
if (!context.Request.UserAgent.ToLower().Contains("micromessenger"))
{
return;//非微信浏览器进入不执行授权
}
//验证aspx、ashx、chtml页面
if (!ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("chtml") && !ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("ashx"))
{
return;
}
ZentCloud.BLLJIMP.Model.UserInfo userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
string WeixinAppId = currWebsiteOwner.WeixinAppId;
string WeixinAppSecret = currWebsiteOwner.WeixinAppSecret;
if (!currWebsiteOwner.WeixinIsAdvancedAuthenticate.Equals(1))//未开通微信高级认证的不处理
{
return;
}
#region CallBack处理阶段
//ToLog("判断是不是callback");
if (currPath.StartsWith("/wxcallback.aspx"))
{
//ToLog("正在处理callback");
//接收Code及state
string code = context.Request["code"];
string state = context.Session["state"].ToString(); //context.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了
WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity();
if (!string.IsNullOrWhiteSpace(state))
{
callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state));
}
else
{
ToLog("context.Session[state] is null");
return;
}
//如果传入code为空,跳过处理
if (string.IsNullOrWhiteSpace(code))
{
ToLog("context.Request[code] is null");
return;
}
string getTokenUrl =
string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code",
WeixinAppId, //systemset.WeixinAppId,
WeixinAppSecret, //systemset.WeixinAppSecret,
code);
//获取OpenID及Access_token
string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl);
if (string.IsNullOrWhiteSpace(accessTokenSource))
{
ToLog("ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl) is null");
return;
}
//ToLog("CallBack accessTokenSource:" + accessTokenSource);
WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource);
if (accessTokenModel == null)
{
ToLog("ZCJson.JsonConvert.DeserializeObject<WXOAuthAccessTokenEntity>(accessTokenSource) is null");
return;
}
//ToLog("callback accessTokenModel:" + accessTokenModel);
//存储当前accessTokenModel到Session
context.Session[systemSet.WXOAuthAccessTokenEntityKey] = accessTokenModel;
//存储当前微信OpenID到Session,一旦存储有OpenID值和已登录标识,则不会再进行授权处理
context.Session[systemSet.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId;
//获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(accessTokenModel.OpenId);
if (userInfo == null)
{
//ToLog("callback注册新用户");
//注册用户
userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
userInfo.UserID = string.Format("WXUser{0}{1}", ZentCloud.Common.StringHelper.GetDateTimeNum(), ZentCloud.Common.Rand.Str(5));//WXUser+时间字符串+随机5位数字
userInfo.Password = ZentCloud.Common.Rand.Str_char(12);
userInfo.UserType = 2;
userInfo.WebsiteOwner = currWebsiteOwner.UserID;
userInfo.Regtime = DateTime.Now;
userInfo.WXAccessToken = accessTokenModel.AccessToken;
userInfo.WXRefreshToken = accessTokenModel.RefreshToken;
userInfo.WXOpenId = accessTokenModel.OpenId;
userInfo.WXScope = accessTokenModel.Scope;
userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.LastLoginDate = DateTime.Now;
userInfo.LoginTotalCount = 1;
userBll.Add(userInfo);
//List<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo> userPmsGroupList = new List<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>() {
// new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为基本用户组
// {
// UserID = userInfo.UserID,
// GroupID = 110578
// },
// new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为教育普通用户组
// {
// UserID = userInfo.UserID,
// GroupID = 130334
// }
//};
//userBll.AddList<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>(userPmsGroupList);
//userInfo.HFPmsGroupStr = userInfo.HFUserPmsGroup;
//userBll.Update(userInfo);
}
else
{
//ToLog("老用户登录");
//更新用户信息
//userInfo.WXAccessToken = accessTokenModel.AccessToken;
//userInfo.WXRefreshToken = accessTokenModel.RefreshToken;
//userInfo.WXOpenId = accessTokenModel.OpenId;
//userInfo.WXScope = accessTokenModel.Scope;
//userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP();
//userInfo.LastLoginDate = DateTime.Now;
//userInfo.LoginTotalCount++;
//userBll.Update(userInfo);
}
try
{
//如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用
if (accessTokenModel.Scope.Contains("snsapi_userinfo"))
{
//ToLog("Callback正在拉取信息");
string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}",
accessTokenModel.AccessToken,
accessTokenModel.OpenId
));
if (!string.IsNullOrWhiteSpace(userInfoSource))
{
ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource);
context.Session[systemSet.WXCurrOpenerUserInfoKey] = weixinUserInfo;
//更新用户微信信息
userInfo.WXCity = weixinUserInfo.City;
userInfo.WXCountry = weixinUserInfo.Country;
userInfo.WXHeadimgurl = weixinUserInfo.HeadImgUrl;
////当用户是从无昵称变为有昵称,则认为是注册用户,且当前为正式注册时间
//if (string.IsNullOrWhiteSpace(userInfo.WXNickname) && !string.IsNullOrWhiteSpace(weixinUserInfo.NickName))
//{
// // userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP();
// //userInfo.Regtime = DateTime.Now;
//}
userInfo.WXNickname = weixinUserInfo.NickName;
userInfo.WXPrivilege = ZentCloud.Common.JSONHelper.ObjectToJson(weixinUserInfo.Privilege);
userInfo.WXProvince = weixinUserInfo.Province;
userInfo.WXSex = weixinUserInfo.Sex;
userBll.Update(userInfo);
}
}
}
catch (Exception ex)
{
//ToLog("更新userInfo异常:" + ex.Message);
//如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取)
}
/*
* -- 2014.1.7
* 1.添加授权判断,如果没有昵称则返回重新用userInfo授权;
* 2.只有页面类型是userInfo授权类型的才执行该操作,本身是Base的不处理;
* 3.如果是userInfo页面类型,新用户也必须重新执行userInfo授权;
*
* 进入场景
* 1.新用户访问base页面;
* 2.新用户访问userinfo页面;
* 3.老用户访问base页面;
* 4.老用户访问userinfo页面;
*
* 首次进入都是base授权,
*
* userinfo页面下,判断是不是有微信昵称,没有微信昵称则需要进行userinfo授权
* 由base页面进入userinfo页面,再次进行base授权,然后由该阶段进行判断是否是需要重定向到userinfo授权
*
*
*
*/
if (context.Session["weixinscope"] == null)
{
context.Session["weixinscope"] = "";
}
//context.Session["PageMatchModel"]
//ToLog("开始进行正式用户判断");
if (context.Session["PageMatchModel"] != null)
{
ModuleFilterInfo pageMatchModel = (ModuleFilterInfo)context.Session["PageMatchModel"];
if (pageMatchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname) && context.Session["weixinscope"].ToString() != "snsapi_userinfo")
{
//ToLog("不是正式用户");
context.Session[systemSet.WXCurrOpenerOpenIDKey] = "";
context.Session["weixinscope"] = "snsapi_userinfo";
context.Session["isRedoOath"] = "1";
//再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权)
context.Response.Redirect(callBackStateInfo.Path);
return;
}
//ToLog("是正式用户");
}
//设置用户ID
context.Session[ZentCloud.Common.SessionKey.UserID] = userInfo.UserID;
//修改登录标识
context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 1;
context.Response.Redirect(callBackStateInfo.Path);
return;
}
#endregion
#region 判断阶段及开始授权处理阶段
List <ModuleFilterInfo> FilterList = userBll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
currOpenIDSession = context.Session[systemSet.WXCurrOpenerOpenIDKey] == null ? "" : context.Session[systemSet.WXCurrOpenerOpenIDKey].ToString();
if (context.Session[ZentCloud.Common.SessionKey.LoginStatu] == null)
{
context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 0;
}
ModuleFilterInfo matchModel = new ModuleFilterInfo();
//判断是否是返回重新进行userInfo 授权
string isRedoOath = context.Session["isRedoOath"] == null ? "" : context.Session["isRedoOath"].ToString();
//检查如果已登录且openId也存在,则跳过授权处理,扫一扫登录也需要重新验证
if (context.Session[ZentCloud.Common.SessionKey.LoginStatu].ToString().Equals("1") && !string.IsNullOrWhiteSpace(currOpenIDSession))
{
//增加判断,如果是在base授权区进入到UserInfo授权区,则需要重新授权,否则跳过-2013.12.26
//添加逻辑:并且用户没有昵称的时候才会去授权
if (context.Session["weixinscope"] != null)
{
string tmpscope = context.Session["weixinscope"].ToString();
if (tmpscope == "snsapi_base")
{
if (CheckIsToWXOAuth(currPath, out matchModel))
{
//ToLog("matchModel.Ex1:" + matchModel.Ex1);
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(context.Session[systemSet.WXCurrOpenerOpenIDKey] == null ? "" : context.Session[systemSet.WXCurrOpenerOpenIDKey].ToString());
if (userInfo == null)
{
userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
}
if (matchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname))
{
//不跳出而进行重新授权
}
else
{
return;
}
}
else
{
return;
}
}
else
{
return;
}
}
else
{
return;
}
}
if (isRedoOath == "1")
{
context.Session["weixinscope"] = "snsapi_userinfo";
context.Session["isRedoOath"] = "0";
}
else
{
context.Session["weixinscope"] = "snsapi_base";
}
string scope = "snsapi_base";
if (context.Session["weixinscope"] != null)
{
scope = context.Session["weixinscope"].ToString();
}
if (string.IsNullOrWhiteSpace(scope))
{
context.Session["weixinscope"] = "snsapi_base";
scope = "snsapi_base";
}
//查询不在授权区则跳出处理
if (!CheckIsToWXOAuth(currPath, out matchModel))
{
//ToLog("不在授权区");
return;
}
//ToLog("在授权区");
//保存当前页面匹配实体
context.Session["PageMatchModel"] = matchModel;
//构造callBackUrl
string callBackUrl = string.Format("http://{0}/wxcallback.aspx", context.Request.Url.Host);
//构造返回参数
WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity()
{
Path = context.Request.Url.AbsoluteUri
};
string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}#wechat_redirect",
WeixinAppId,
callBackUrl,
scope,
"STATE"
);
//防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系
context.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo));
//访问授权链接
context.Response.Redirect(oauthUrl);
#endregion
/*
* 判断阶段:
*
* (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了)
* 获取用户名,获取Session中存储的CurrOpenID及UserID
* 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权
* 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID
* (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样)
*
* 判断是否符合拦截条件
*
* 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID
*
* --------------------------------------
*
* 开始授权处理阶段:
*
* 获取配置的高级接口参数
* 构造CallBackUrl
* 构造返回参数:目前传递Path(当前路径),UserID
* 构造授权链接
* 访问授权链接
*
* ---------------------------------------
* CallBack处理阶段:
* 接收参数 code,Path,UserId,CurrOpenId
* 构造授权API
* 获取OpenID
* 构造目标链接:Path + UserID
* 存储当前微信OpenID到Session
* 访问最终目标链接(已取到CurrOpenID)
*
* 2013.12.06修改逻辑:自动判断授权模式
* callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式
* 注册会员那边自动添加拉取到的微信会员信息
*
*
* 2013.12.19
* 更改后的方法升级:1.直接授权后登录;2.不是会员的则会自动注册会员;3.openId直接是登录凭据;
*
* 判断是否授权依据是登录标识为登出,登出状态才进行授权登录,openId为空也进行登录
*
* 获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册
*
* 登录标识标为已登录,并获取openId及其他信息
*
*
*
*/
}
catch (Exception ex)
{
//ToLog(ex.Message);
}
}
/// <summary>
/// 检查是否需要授权
/// </summary>
/// <param name="path"></param>
/// <param name="matchModel"></param>
/// <returns></returns>
private bool CheckIsToWXOAuth(string path, out ModuleFilterInfo matchModel)
{
ToLog("进入检查是否需要授权");
List <ModuleFilterInfo> pathList = new List <ModuleFilterInfo>();
var sourcePathList = bllRedis.GetModuleFilterInfoList().Where(p => p.FilterType == "WXOAuth");
foreach (var item in sourcePathList)
{
pathList.Add(new ModuleFilterInfo()
{
FilterType = item.FilterType,
PagePath = item.PagePath,
FilterDescription = item.FilterDescription,
MatchType = item.MatchType,
Ex1 = item.Ex1
});
}
//try
//{
// ToLog("开始从redis获取授权列表");
// //从redis读取数据,在修改的时候记得更新redis key
// pathList = RedisHelper.RedisHelper.Get<List<ModuleFilterInfo>>("WXModuleFilter");
// if (pathList == null) pathList = new List<ModuleFilterInfo>();
// ToLog("从redis读取授权数据:" + (pathList == null ? "null" : JsonConvert.SerializeObject(pathList)));
//}
//catch (Exception ex)
//{
// ToLog(ex.ToString());
//}
//if (pathList.Count == 0)
//{
// pathList = new BLL().GetList<ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
// try
// {
// RedisHelper.RedisHelper.Set("WXModuleFilter", pathList);
// }
// catch (Exception ex)
// {
// ToLog(ex.ToString());
// }
//}
//ZentCloud.Common.DataCache.
if (pathList.Count > 0)
{
//先进行全文匹配
List <ModuleFilterInfo> searchResult = pathList.Where(p => p.PagePath.Equals(path, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("all")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//开头匹配
searchResult = pathList.Where(p => path.StartsWith(p.PagePath, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("start")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//结尾匹配
searchResult = pathList.Where(p => path.EndsWith(p.PagePath, StringComparison.OrdinalIgnoreCase) && p.MatchType.Equals("end")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
//包含匹配
searchResult = pathList.Where(p => path.ToLower().Contains(p.PagePath.ToLower()) && p.MatchType.Equals("contains")).ToList();
if (searchResult.Count > 0)
{
matchModel = searchResult[0];
return(true);
}
}
matchModel = null;
return(false);
}
/// <summary>
/// 判断阶段及开始授权处理阶段
/// </summary>
/// <param name="context"></param>
/// <returns></returns>
private bool ToOAuth(HttpContext context, ZentCloud.BLLJIMP.Model.Other.WxAutoLoginToken wxAutoLoginToken)
{
ModuleFilterInfo matchModel = new ModuleFilterInfo();
string scope = "snsapi_base";
ToLog("检查路径是否需要微信授权:" + currentPath);
//TODO:判断微信授权路径也存到redis
//查询不在授权区则跳出处理
if (!CheckIsToWXOAuth(currentPath, out matchModel))
{
ToLog(currentPath + "不在授权区");
return(false);
}
else
{
ToLog(currentPath + "在授权区");
scope = matchModel.Ex1;
}
ToLog(currentPath + "开始检查授权 scope");
scope = CheckCompentPage(context, scope, currentUrl);
if (context.Session["scope"] != null)//用session 中的scope授权
{
scope = context.Session["scope"].ToString();
}
ToLog(currentPath + "检查授权scope 结束,scope:" + scope);
if (wxAutoLoginToken != null)
{
if (scope == "snsapi_base" && !string.IsNullOrWhiteSpace(wxAutoLoginToken.Uid))
{
context.Session[ZentCloud.Common.SessionKey.UserID] = wxAutoLoginToken.Uid;
context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 1; //设置登录状态
context.Session["currWXOpenId"] = wxAutoLoginToken.Oid;
ToLog("通过 wxAutoLoginToken 自动登陆");
return(false);
}
}
//context.Session["wxscope"] = scope;
//构造callBackUrl
string callBackUrl = HttpUtility.UrlEncode(string.Format("http://{0}/wxcallback.aspx", context.Request.Url.Host));
if (isAuthToOpen)//开放平台授权 callback到指定域名
{
callBackUrl = HttpUtility.UrlEncode(string.Format("http://{0}/wxcallback.aspx", authOpenDoMain));
}
string oauthUrl = "";
ToLog(currentPath + "开始构造oauthUrl,isAuthToOpen:" + isAuthToOpen + currentUrl);
#region 默认授权
if (!isAuthToOpen)//默认授权
{
ToLog(currentPath + "开始构造默认授权 oauthUrl");
oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}#wechat_redirect",
weixinAppId,
callBackUrl,
scope,
redirectUrlCacheKey
);
ToLog(currentPath + "结束构造默认授权 oauthUrl:" + oauthUrl);
}
#endregion
#region 开放平台授权
else//授权给开放平台 多一个参数component_appid
{
ToLog(currentPath + "开始构开放平台授权 oauthUrl");
if (currentWebsiteInfo == null)
{
ToLog(currentPath + " currentWebsiteInfo == null");
}
else
{
ToLog(currentPath + " currentWebsiteInfo:" + JsonConvert.SerializeObject(currentWebsiteInfo));
}
if (string.IsNullOrEmpty(currentWebsiteInfo.AuthorizerAppId))
{
ToLog(currentPath + " return false; bllWeixinOpen.ComponentAppId:" + bllWeixinOpen.ComponentAppId);
return(false);
}
ToLog(currentPath + " bllWeixinOpen.ComponentAppId:" + bllWeixinOpen.ComponentAppId);
oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}&component_appid={4}#wechat_redirect",
currentWebsiteInfo.AuthorizerAppId,
callBackUrl,
scope,
redirectUrlCacheKey,
bllWeixinOpen.ComponentAppId
);
ToLog(currentPath + "结束构造开放平台授权 oauthUrl:" + oauthUrl);
// ZentCloud.BLLJIMP.Model.WeixinOpenOAuthTemp tokenTemp = new ZentCloud.BLLJIMP.Model.WeixinOpenOAuthTemp();
// tokenTemp.Token = Guid.NewGuid().ToString();
// tokenTemp.Url = currentUrl;
// bllUser.Add(tokenTemp);
// oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}&component_appid={4}#wechat_redirect",
//currentWebsiteInfo.AuthorizerAppId,
//callBackUrl,
//scope,
//tokenTemp.Token,
//bllWeixinOpen.ComponentAppId
//);
}
#endregion
ToLog("记录redirectUrl的Session:" + currentUrl);
//context.Session["redirectUrl"] = currentUrl; //授权完成跳转页面
try
{
RedisHelper.RedisHelper.StringSet(redirectUrlCacheKey, currentUrl, new TimeSpan(0, 0, 30));
}
catch (Exception)
{
ZentCloud.Common.DataCache.SetCache(redirectUrlCacheKey, currentUrl, DateTime.Now.AddSeconds(30));//记录当前连接cache过期时间30秒
}
ToLog(" redirectUrlCacheKey: " + redirectUrlCacheKey);
ToLog(" currentUrl: " + currentUrl);
//访问授权链接
context.Response.Redirect(oauthUrl);
return(true);
}
void context_AcquireRequestState(object sender, EventArgs e)
{
HttpApplication application = (HttpApplication)sender;
//只有手机才会进行授权处理
if (application.Request.Browser.Platform == null ? false : application.Request.Browser.Platform.ToLower().StartsWith("win"))
{
return;
}
//if (HttpContext.Current.Request.UserAgent.ToLower().Contains("micromessenger"))
//{
//}
//else
//{
// return;
//}
string currAbsolutePath = application.Request.Url.AbsolutePath == null ? "" : application.Request.Url.AbsolutePath.ToLower();
//application.Response.Write("原始链接:" + rawUrl + ",host:" + host + ",port:" + port.ToString());
//验证aspx、ashx页面
if (!ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("chtml"))
{
return;
}
ZentCloud.BLLJIMP.Model.UserInfo userInfo;
BLL bll = new BLL();
SystemSet systemset = bll.Get <SystemSet>("");
string rawUrl = application.Request.RawUrl.ToLower();
string host = application.Request.Url.Host;
//string port = application.Request.Url.Port.ToString();
#region CallBack处理阶段
if (rawUrl.StartsWith("/wxcallback.aspx"))
{
//application.Response.Redirect("/index.aspx?msg=" + application.Request["msg"].ToString());
//接收Code及state
string code = application.Request["code"];
string state = application.Session["state"].ToString(); //application.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了
//application.Response.Write("code:" + code + "<br />");
//application.Response.Write("state:" + state + "<br />");
WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity();
if (!string.IsNullOrWhiteSpace(state))
{
callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state));
}
else
{
return;
}
//如果传入code为空,跳过处理
if (string.IsNullOrWhiteSpace(code))
{
return;
}
//获取用户信息
userAutoIDHexUrlParm = callBackStateInfo.UserAutoIDHex;
userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString();
//application.Response.Write("userAutoIDHexUrlParm:" + userAutoIDHexUrlParm + "<br />");
//application.Response.Write("userAutoIDHexSession:" + userAutoIDHexSession + "<br />");
//判断如果传入用户跟当前用户不一致,直接跳过处理(或者直接跳转到目的链接,稍后考虑)
if (userAutoIDHexSession != userAutoIDHexUrlParm)
{
return;
}
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//用户存在,再次存入Session,方便调试及其他可能作用
//application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm;
//构造授权API
//https://api.weixin.qq.com/sns/oauth2/access_token?appid=wxdc04ea5f3d005950&secret=543a9cb723620219961e4f96b1b2752d&code=00f4b7139f2784099fa33df653cc192e&grant_type=authorization_code
string getTokenUrl =
string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code",
userInfo.WeixinAppId,
userInfo.WeixinAppSecret,
code
);
//application.Response.Write("getTokenUrl:" + getTokenUrl + "<br />");
//获取OpenID及Access_token
string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl);
//application.Response.Write("accessTokenSource:" + accessTokenSource + "<br />");
if (string.IsNullOrWhiteSpace(accessTokenSource))
{
return;
}
WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource);
if (accessTokenModel == null)
{
return;
}
if (false)//该逻辑不用判断,暂时先这样跳过,后面需要或者确实不需要再处理
{
//根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式,注意该阶段前不要存储OpenID值,而且授权方式限制为不是snsapi_userinfo才会去重新授权,否则会出现死循环
if (!new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, accessTokenModel.OpenId) && application.Session["weixinscope"].ToString() != "snsapi_userinfo")
{
application.Session[systemset.WXCurrOpenerOpenIDKey] = "";
application.Session["weixinscope"] = "snsapi_userinfo";
//再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
}
//存储当前accessTokenModel到Session
application.Session[systemset.WXOAuthAccessTokenEntityKey] = accessTokenModel;
//存储当前微信OpenID到Session,一旦存储有OpenID值,则不会再进行授权处理
application.Session[systemset.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId;
try
{
//如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用
if (accessTokenModel.Scope.Contains("snsapi_userinfo"))
{
string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}",
accessTokenModel.AccessToken,
accessTokenModel.OpenId
));
if (!string.IsNullOrWhiteSpace(userInfoSource))
{
ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource);
application.Session[systemset.WXCurrOpenerUserInfoKey] = weixinUserInfo;
//application.Response.Write("userInfoSource:" + userInfoSource + "<br />");
//application.Response.Write("weixinUserInfo:" + weixinUserInfo.OpenId + " " + weixinUserInfo.NickName + " " + weixinUserInfo.Sex + " " + weixinUserInfo.Country + " ");
}
}
}
catch
{
//如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取)
}
//访问最终目标链接(已取到CurrOpenID)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
#endregion
#region 判断阶段及开始授权处理阶段
List <ModuleFilterInfo> FilterList = bll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
userAutoIDHexUrlParm = application.Request[systemset.UserAutoIDHexKey] == null ? "" : application.Request[systemset.UserAutoIDHexKey].ToString();
userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString();
currOpenIDSession = application.Session[systemset.WXCurrOpenerOpenIDKey] == null ? "" : application.Session[systemset.WXCurrOpenerOpenIDKey].ToString();
//如果链接没传输用户名则不进行授权处理
if (string.IsNullOrWhiteSpace(userAutoIDHexUrlParm))
{
return;
}
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//判断用户是否进行微信认证,没有认证的不进行网页授权处理
if (userInfo.IsWeixinVerify != 1)
{
return;
}
//bool isWxMember = !new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, currOpenIDSession);
//bool isChangeOlbUrl = application.Session["PreUrl"] == null ? false : application.Request.Url.ToString().Equals(application.Session["PreUrl"].ToString());//是否当前访问的链接跟上一次访问的链接一致
//如果已存在CurrOpenID并且链接的UserID跟存储的UserID对等,并且当前访问的链接跟上一次访问的链接一致,则直接跳出处理
if ((!string.IsNullOrWhiteSpace(currOpenIDSession) && userAutoIDHexSession == userAutoIDHexUrlParm))
{
return;
}
application.Session["PreUrl"] = application.Request.Url.ToString();
ModuleFilterInfo matchModel = new ModuleFilterInfo();
string scope = "snsapi_base";
if (application.Session["weixinscope"] != null)
{
scope = application.Session["weixinscope"].ToString();
}
else
{
application.Session["weixinscope"] = "snsapi_base";
}
//查询不在授权区则跳出处理
if (!CheckIsToWXOAuth(rawUrl, out matchModel))
{
return;
}
if (!string.IsNullOrWhiteSpace(matchModel.Ex1))
{
scope = matchModel.Ex1;
application.Session["weixinscope"] = matchModel.Ex1;
}
//保存用户16进制ID(保存链接上的)
application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm;
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//构造callBackUrl
string callBackUrl = string.Format("http://{0}/wxcallback.aspx", host);
//构造返回参数
WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity()
{
Path = application.Request.Url.ToString(),
UserAutoIDHex = application.Session[systemset.UserAutoIDHexKey].ToString()
};
//构造授权链接
//https://open.weixin.qq.com/connect/oauth2/authorize?appid=wxdc04ea5f3d005950&redirect_uri=http://m.jubit.cn/Default.htm&scope=snsapi_base&state=dsdsdah
string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&scope={2}&response_type=code&state={3}#wechat_redirect",
userInfo.WeixinAppId,
callBackUrl,
scope,
""//ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo))
);
//防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系
application.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo));
//using (StreamWriter sw = new StreamWriter(@"D:\debug.txt", true, Encoding.UTF8))
//{
// sw.WriteLine(string.Format("{0} oauthUrl:{1}", DateTime.Now.ToString(), oauthUrl));
//}
//访问授权链接
application.Response.Redirect(oauthUrl);
#endregion
/*
* 判断阶段:
*
* (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了)
* 获取用户名,获取Session中存储的CurrOpenID及UserID
* 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权
* 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID
* (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样)
*
* 判断是否符合拦截条件
*
* 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID
*
* --------------------------------------
*
* 开始授权处理阶段:
*
* 获取配置的高级接口参数
* 构造CallBackUrl
* 构造返回参数:目前传递Path(当前路径),UserID
* 构造授权链接
* 访问授权链接
*
* ---------------------------------------
* CallBack处理阶段:
* 接收参数 code,Path,UserId,CurrOpenId
* 构造授权API
* 获取OpenID
* 构造目标链接:Path + UserID
* 存储当前微信OpenID到Session
* 访问最终目标链接(已取到CurrOpenID)
*
* 2013.12.06修改逻辑:自动判断授权模式
* callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式
* 注册会员那边自动添加拉取到的微信会员信息
*
*/
}
