void context_AcquireRequestStateForOpenIdLogin(object sender, EventArgs e)
{
try
{
HttpApplication application = (HttpApplication)sender;
string currAbsolutePath = application.Request.Url.AbsolutePath == null ? "" : application.Request.Url.AbsolutePath.ToLower();
//只有手机才会进行授权处理
//if (application.Request.Browser.Platform == null ? false : application.Request.Browser.Platform.ToLower().StartsWith("win"))
////if (application.Request.Browser.IsMobileDevice)
//{
// return;
//}
//else
//{
// ToLog("手机进入");
//}
if (!HttpContext.Current.Request.UserAgent.ToLower().Contains("micromessenger"))
{
return;//非微信浏览器进入不执行授权
}
////临时
//if (currAbsolutePath.ToLower().Contains("vote"))
//{
// return;
//}
////临时
//string currAbsolutePath = application.Request.Url.AbsolutePath == null ? "" : application.Request.Url.AbsolutePath.ToLower();
//验证aspx、ashx页面
if (!ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("chtml") && !ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("ashx"))
{
return;
}
//ToLog("currAbsolutePath:" + currAbsolutePath);
ZentCloud.BLLJIMP.Model.UserInfo userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
BLL bll = new BLL();
ZentCloud.BLLJIMP.BLLUser userBll = new ZentCloud.BLLJIMP.BLLUser("");
SystemSet systemset = bll.Get <SystemSet>("");
string rawUrl = application.Request.RawUrl.ToLower();
string host = application.Request.Url.Host;
ZentCloud.BLLJIMP.Model.WebsiteInfo currWebsiteInfoModel = (ZentCloud.BLLJIMP.Model.WebsiteInfo)HttpContext.Current.Session["WebsiteInfoModel"];
ZentCloud.BLLJIMP.Model.UserInfo currWebsiteOwner = userBll.GetUserInfo(currWebsiteInfoModel.WebsiteOwner);
string WeixinAppId = currWebsiteOwner.WeixinAppId;
string WeixinAppSecret = currWebsiteOwner.WeixinAppSecret;
if (!currWebsiteOwner.WeixinIsAdvancedAuthenticate.Equals(1))//未开通微信高级认证的不处理
{
return;
}
#region CallBack处理阶段
//ToLog("判断是不是callback");
if (rawUrl.StartsWith("/wxcallback.aspx"))
{
//ToLog("正在处理callback");
//接收Code及state
string code = application.Request["code"];
string state = application.Session["state"].ToString(); //application.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了
WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity();
if (!string.IsNullOrWhiteSpace(state))
{
callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state));
}
else
{
return;
}
//ToLog("callback code:" + code);
//如果传入code为空,跳过处理
if (string.IsNullOrWhiteSpace(code))
{
return;
}
//构造授权API
//https://api.weixin.qq.com/sns/oauth2/access_token?appid=wxdc04ea5f3d005950&secret=543a9cb723620219961e4f96b1b2752d&code=00f4b7139f2784099fa33df653cc192e&grant_type=authorization_code
string getTokenUrl =
string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code",
WeixinAppId, //systemset.WeixinAppId,
WeixinAppSecret, //systemset.WeixinAppSecret,
code
);
//获取OpenID及Access_token
string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl);
if (string.IsNullOrWhiteSpace(accessTokenSource))
{
return;
}
//ToLog("CallBack accessTokenSource:" + accessTokenSource);
WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource);
if (accessTokenModel == null)
{
return;
}
//ToLog("callback accessTokenModel:" + accessTokenModel);
//存储当前accessTokenModel到Session
application.Session[systemset.WXOAuthAccessTokenEntityKey] = accessTokenModel;
//存储当前微信OpenID到Session,一旦存储有OpenID值和已登录标识,则不会再进行授权处理
application.Session[systemset.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId;
//获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(accessTokenModel.OpenId);
if (userInfo == null)
{
//ToLog("callback注册新用户");
//注册用户
userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
userInfo.UserID = string.Format("WXUser{0}{1}", ZentCloud.Common.StringHelper.GetDateTimeNum(), ZentCloud.Common.Rand.Str(5));//WXUser+时间字符串+随机5位数字
userInfo.Password = ZentCloud.Common.Rand.Str_char(12);
userInfo.UserType = 2;
userInfo.WebsiteOwner = currWebsiteOwner.UserID; //ZentCloud.Common.ConfigHelper.GetConfigString("WebsiteOwner");
userInfo.Regtime = DateTime.Now;
userInfo.WXAccessToken = accessTokenModel.AccessToken;
userInfo.WXRefreshToken = accessTokenModel.RefreshToken;
userInfo.WXOpenId = accessTokenModel.OpenId;
userInfo.WXScope = accessTokenModel.Scope;
userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.LastLoginDate = DateTime.Now;
userInfo.LoginTotalCount = 1;
bll.Add(userInfo);
//分配用户组为鸿风普通用户组、系统基本用户组
//
List <ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo> userPmsGroupList = new List <ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>()
{
new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为基本用户组
{
UserID = userInfo.UserID,
GroupID = 110578
},
new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为教育普通用户组
{
UserID = userInfo.UserID,
GroupID = 130334
}
};
bll.AddList <ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>(userPmsGroupList);
userInfo.HFPmsGroupStr = userInfo.HFUserPmsGroup;
bll.Update(userInfo);
}
else
{
//ToLog("老用户登录");
//更新用户信息
userInfo.WXAccessToken = accessTokenModel.AccessToken;
userInfo.WXRefreshToken = accessTokenModel.RefreshToken;
userInfo.WXOpenId = accessTokenModel.OpenId;
userInfo.WXScope = accessTokenModel.Scope;
userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.LastLoginDate = DateTime.Now;
userInfo.LoginTotalCount++;
bll.Update(userInfo);
}
try
{
//如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用
if (accessTokenModel.Scope.Contains("snsapi_userinfo"))
{
//ToLog("Callback正在拉取信息");
string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}",
accessTokenModel.AccessToken,
accessTokenModel.OpenId
));
if (!string.IsNullOrWhiteSpace(userInfoSource))
{
ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource);
application.Session[systemset.WXCurrOpenerUserInfoKey] = weixinUserInfo;
//更新用户微信信息
userInfo.WXCity = weixinUserInfo.City;
userInfo.WXCountry = weixinUserInfo.Country;
userInfo.WXHeadimgurl = weixinUserInfo.HeadImgUrl;
//当用户是从无昵称变为有昵称,则认为是注册用户,且当前为正式注册时间
if (string.IsNullOrWhiteSpace(userInfo.WXNickname) && !string.IsNullOrWhiteSpace(weixinUserInfo.NickName))
{
userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP();
userInfo.Regtime = DateTime.Now;
}
userInfo.WXNickname = weixinUserInfo.NickName;
userInfo.WXPrivilege = ZentCloud.Common.JSONHelper.ObjectToJson(weixinUserInfo.Privilege);
userInfo.WXProvince = weixinUserInfo.Province;
userInfo.WXSex = weixinUserInfo.Sex;
bll.Update(userInfo);
//ToLog(ZentCloud.Common.JSONHelper.ObjectToJson(weixinUserInfo));
//ToLog(string.Format("更新信息返回:{0}", bll.Update(userInfo)));
}
}
}
catch (Exception ex)
{
//ToLog("更新userInfo异常:" + ex.Message);
//如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取)
}
/*
* -- 2014.1.7
* 1.添加授权判断,如果没有昵称则返回重新用userInfo授权;
* 2.只有页面类型是userInfo授权类型的才执行该操作,本身是Base的不处理;
* 3.如果是userInfo页面类型,新用户也必须重新执行userInfo授权;
*
* 进入场景
* 1.新用户访问base页面;
* 2.新用户访问userinfo页面;
* 3.老用户访问base页面;
* 4.老用户访问userinfo页面;
*
* 首次进入都是base授权,
*
* userinfo页面下,判断是不是有微信昵称,没有微信昵称则需要进行userinfo授权
* 由base页面进入userinfo页面,再次进行base授权,然后由该阶段进行判断是否是需要重定向到userinfo授权
*
*
*
*/
if (application.Session["weixinscope"] == null)
{
application.Session["weixinscope"] = "";
}
//application.Session["PageMatchModel"]
//ToLog("开始进行正式用户判断");
if (application.Session["PageMatchModel"] != null)
{
ModuleFilterInfo pageMatchModel = (ModuleFilterInfo)application.Session["PageMatchModel"];
//ToLog("PageMatchModel:" + ZentCloud.Common.JSONHelper.ObjectToJson(pageMatchModel));
if (pageMatchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname) && application.Session["weixinscope"].ToString() != "snsapi_userinfo")
{
//ToLog("不是正式用户");
application.Session[systemset.WXCurrOpenerOpenIDKey] = "";
application.Session["weixinscope"] = "snsapi_userinfo";
application.Session["isRedoOath"] = "1";
//再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
//ToLog("是正式用户");
}
//设置用户ID
application.Session[ZentCloud.Common.SessionKey.UserID] = userInfo.UserID;
//修改登录标识
application.Session[ZentCloud.Common.SessionKey.LoginStatu] = 1;
//记录登录详情日志
userBll.AddLoginLogs(userInfo.UserID);
//ToLog("访问目标链接:" + callBackStateInfo.Path);
//访问最终目标链接(已取到CurrOpenID)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
#endregion
#region 判断阶段及开始授权处理阶段
List <ModuleFilterInfo> FilterList = bll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
currOpenIDSession = application.Session[systemset.WXCurrOpenerOpenIDKey] == null ? "" : application.Session[systemset.WXCurrOpenerOpenIDKey].ToString();
if (application.Session[ZentCloud.Common.SessionKey.LoginStatu] == null)
{
application.Session[ZentCloud.Common.SessionKey.LoginStatu] = 0;
}
//bool isQrcodeLoginChange = false;
//if (currAbsolutePath.Contains("/qrlogin.ashx"))
//{
// //判断二维码登录两次是不是同一地址。如果地址不同重新授权登录
// string preUrl = application.Session["qrcodeloginurl"] != null ? "" : application.Session["qrcodeloginurl"].ToString();
// if (currAbsolutePath != preUrl)
// isQrcodeLoginChange = true;
//}
ModuleFilterInfo matchModel = new ModuleFilterInfo();
//判断是否是返回重新进行userInfo 授权
string isRedoOath = application.Session["isRedoOath"] == null ? "" : application.Session["isRedoOath"].ToString();
//检查如果已登录且openId也存在,则跳过授权处理,扫一扫登录也需要重新验证
if (application.Session[ZentCloud.Common.SessionKey.LoginStatu].ToString().Equals("1") &&
!string.IsNullOrWhiteSpace(currOpenIDSession)
//&& !isQrcodeLoginChange //&& !currAbsolutePath.Contains("/qrlogin.ashx")
)
{
//ToLog(" status:" + application.Session[ZentCloud.Common.SessionKey.LoginStatu].ToString());
//ToLog(" currOpenIDSession:" + currOpenIDSession);
//ToLog(" userID:" + application.Session[ZentCloud.Common.SessionKey.UserID].ToString());
//ToLog(currAbsolutePath);
//ToLog("跳过授权处理");
//return;
//增加判断,如果是在base授权区进入到UserInfo授权区,则需要重新授权,否则跳过-2013.12.26
//添加逻辑:并且用户没有昵称的时候才会去授权
if (application.Session["weixinscope"] != null)
{
string tmpscope = application.Session["weixinscope"].ToString();
if (tmpscope == "snsapi_base")
{
if (CheckIsToWXOAuth(rawUrl, out matchModel))
{
//ToLog("matchModel.Ex1:" + matchModel.Ex1);
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(application.Session[systemset.WXCurrOpenerOpenIDKey] == null ? "" : application.Session[systemset.WXCurrOpenerOpenIDKey].ToString());
if (userInfo == null)
{
userInfo = new ZentCloud.BLLJIMP.Model.UserInfo();
}
if (matchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname))
{
//不跳出而进行重新授权
//ToLog("不跳出而进行重新授权-tmpscope:" + tmpscope + " path:" + currAbsolutePath);
}
else
{
return;
}
}
else
{
return;
}
}
else
{
return;
}
}
else
{
return;
}
}
//ToLog("开始进行授权处理");
//ToLog("isRedoOath:" + isRedoOath);
if (isRedoOath == "1")
{
application.Session["weixinscope"] = "snsapi_userinfo";
application.Session["isRedoOath"] = "0";
}
else
{
application.Session["weixinscope"] = "snsapi_base";
}
//ToLog("Session-weixinscope:" + application.Session["weixinscope"] == null ? "null" : application.Session["weixinscope"].ToString());
string scope = "snsapi_base";
if (application.Session["weixinscope"] != null)
{
scope = application.Session["weixinscope"].ToString();
}
if (string.IsNullOrWhiteSpace(scope))
{
application.Session["weixinscope"] = "snsapi_base";
scope = "snsapi_base";
}
//ToLog("授权类型:" + scope);
//查询不在授权区则跳出处理
if (!CheckIsToWXOAuth(rawUrl, out matchModel))
{
//ToLog("不在授权区");
return;
}
//ToLog("在授权区");
//保存当前页面匹配实体
application.Session["PageMatchModel"] = matchModel;
//添加用户是否是会员授权判断逻辑后,以下代码遗弃 -- 2014.1.7
//if (!string.IsNullOrWhiteSpace(matchModel.Ex1))
//{
// scope = matchModel.Ex1;
// application.Session["weixinscope"] = matchModel.Ex1;
//}
//构造callBackUrl
string callBackUrl = string.Format("http://{0}/wxcallback.aspx", host);
//构造返回参数
WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity()
{
Path = application.Request.Url.ToString()
};
#region 旧的
////构造授权链接
//string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&scope={2}&response_type=code&state={3}#wechat_redirect",
// WeixinAppId,//systemset.WeixinAppId,
// callBackUrl,
// scope,
// ""
// );
#endregion
string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}#wechat_redirect",
WeixinAppId,
callBackUrl,
scope,
"STATE"
);
//防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系
application.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo));
//ToLog("转到微信授权页面:" + oauthUrl);
//访问授权链接
application.Response.Redirect(oauthUrl);
application.Response.End();
#endregion
/*
* 判断阶段:
*
* (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了)
* 获取用户名,获取Session中存储的CurrOpenID及UserID
* 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权
* 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID
* (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样)
*
* 判断是否符合拦截条件
*
* 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID
*
* --------------------------------------
*
* 开始授权处理阶段:
*
* 获取配置的高级接口参数
* 构造CallBackUrl
* 构造返回参数:目前传递Path(当前路径),UserID
* 构造授权链接
* 访问授权链接
*
* ---------------------------------------
* CallBack处理阶段:
* 接收参数 code,Path,UserId,CurrOpenId
* 构造授权API
* 获取OpenID
* 构造目标链接:Path + UserID
* 存储当前微信OpenID到Session
* 访问最终目标链接(已取到CurrOpenID)
*
* 2013.12.06修改逻辑:自动判断授权模式
* callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式
* 注册会员那边自动添加拉取到的微信会员信息
*
*
* 2013.12.19
* 更改后的方法升级:1.直接授权后登录;2.不是会员的则会自动注册会员;3.openId直接是登录凭据;
*
* 判断是否授权依据是登录标识为登出,登出状态才进行授权登录,openId为空也进行登录
*
* 获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册
*
* 登录标识标为已登录,并获取openId及其他信息
*
*
*
*/
}
catch (Exception ex)
{
//ToLog(ex.Message);
}
}
void context_AcquireRequestState(object sender, EventArgs e)
{
HttpApplication application = (HttpApplication)sender;
//只有手机才会进行授权处理
if (application.Request.Browser.Platform == null ? false : application.Request.Browser.Platform.ToLower().StartsWith("win"))
{
return;
}
//if (HttpContext.Current.Request.UserAgent.ToLower().Contains("micromessenger"))
//{
//}
//else
//{
// return;
//}
string currAbsolutePath = application.Request.Url.AbsolutePath == null ? "" : application.Request.Url.AbsolutePath.ToLower();
//application.Response.Write("原始链接:" + rawUrl + ",host:" + host + ",port:" + port.ToString());
//验证aspx、ashx页面
if (!ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("chtml"))
{
return;
}
ZentCloud.BLLJIMP.Model.UserInfo userInfo;
BLL bll = new BLL();
SystemSet systemset = bll.Get <SystemSet>("");
string rawUrl = application.Request.RawUrl.ToLower();
string host = application.Request.Url.Host;
//string port = application.Request.Url.Port.ToString();
#region CallBack处理阶段
if (rawUrl.StartsWith("/wxcallback.aspx"))
{
//application.Response.Redirect("/index.aspx?msg=" + application.Request["msg"].ToString());
//接收Code及state
string code = application.Request["code"];
string state = application.Session["state"].ToString(); //application.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了
//application.Response.Write("code:" + code + "<br />");
//application.Response.Write("state:" + state + "<br />");
WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity();
if (!string.IsNullOrWhiteSpace(state))
{
callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state));
}
else
{
return;
}
//如果传入code为空,跳过处理
if (string.IsNullOrWhiteSpace(code))
{
return;
}
//获取用户信息
userAutoIDHexUrlParm = callBackStateInfo.UserAutoIDHex;
userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString();
//application.Response.Write("userAutoIDHexUrlParm:" + userAutoIDHexUrlParm + "<br />");
//application.Response.Write("userAutoIDHexSession:" + userAutoIDHexSession + "<br />");
//判断如果传入用户跟当前用户不一致,直接跳过处理(或者直接跳转到目的链接,稍后考虑)
if (userAutoIDHexSession != userAutoIDHexUrlParm)
{
return;
}
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//用户存在,再次存入Session,方便调试及其他可能作用
//application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm;
//构造授权API
//https://api.weixin.qq.com/sns/oauth2/access_token?appid=wxdc04ea5f3d005950&secret=543a9cb723620219961e4f96b1b2752d&code=00f4b7139f2784099fa33df653cc192e&grant_type=authorization_code
string getTokenUrl =
string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code",
userInfo.WeixinAppId,
userInfo.WeixinAppSecret,
code
);
//application.Response.Write("getTokenUrl:" + getTokenUrl + "<br />");
//获取OpenID及Access_token
string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl);
//application.Response.Write("accessTokenSource:" + accessTokenSource + "<br />");
if (string.IsNullOrWhiteSpace(accessTokenSource))
{
return;
}
WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource);
if (accessTokenModel == null)
{
return;
}
if (false)//该逻辑不用判断,暂时先这样跳过,后面需要或者确实不需要再处理
{
//根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式,注意该阶段前不要存储OpenID值,而且授权方式限制为不是snsapi_userinfo才会去重新授权,否则会出现死循环
if (!new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, accessTokenModel.OpenId) && application.Session["weixinscope"].ToString() != "snsapi_userinfo")
{
application.Session[systemset.WXCurrOpenerOpenIDKey] = "";
application.Session["weixinscope"] = "snsapi_userinfo";
//再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
}
//存储当前accessTokenModel到Session
application.Session[systemset.WXOAuthAccessTokenEntityKey] = accessTokenModel;
//存储当前微信OpenID到Session,一旦存储有OpenID值,则不会再进行授权处理
application.Session[systemset.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId;
try
{
//如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用
if (accessTokenModel.Scope.Contains("snsapi_userinfo"))
{
string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}",
accessTokenModel.AccessToken,
accessTokenModel.OpenId
));
if (!string.IsNullOrWhiteSpace(userInfoSource))
{
ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource);
application.Session[systemset.WXCurrOpenerUserInfoKey] = weixinUserInfo;
//application.Response.Write("userInfoSource:" + userInfoSource + "<br />");
//application.Response.Write("weixinUserInfo:" + weixinUserInfo.OpenId + " " + weixinUserInfo.NickName + " " + weixinUserInfo.Sex + " " + weixinUserInfo.Country + " ");
}
}
}
catch
{
//如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取)
}
//访问最终目标链接(已取到CurrOpenID)
application.Response.Redirect(callBackStateInfo.Path);
return;
}
#endregion
#region 判断阶段及开始授权处理阶段
List <ModuleFilterInfo> FilterList = bll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' ");
userAutoIDHexUrlParm = application.Request[systemset.UserAutoIDHexKey] == null ? "" : application.Request[systemset.UserAutoIDHexKey].ToString();
userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString();
currOpenIDSession = application.Session[systemset.WXCurrOpenerOpenIDKey] == null ? "" : application.Session[systemset.WXCurrOpenerOpenIDKey].ToString();
//如果链接没传输用户名则不进行授权处理
if (string.IsNullOrWhiteSpace(userAutoIDHexUrlParm))
{
return;
}
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//判断用户是否进行微信认证,没有认证的不进行网页授权处理
if (userInfo.IsWeixinVerify != 1)
{
return;
}
//bool isWxMember = !new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, currOpenIDSession);
//bool isChangeOlbUrl = application.Session["PreUrl"] == null ? false : application.Request.Url.ToString().Equals(application.Session["PreUrl"].ToString());//是否当前访问的链接跟上一次访问的链接一致
//如果已存在CurrOpenID并且链接的UserID跟存储的UserID对等,并且当前访问的链接跟上一次访问的链接一致,则直接跳出处理
if ((!string.IsNullOrWhiteSpace(currOpenIDSession) && userAutoIDHexSession == userAutoIDHexUrlParm))
{
return;
}
application.Session["PreUrl"] = application.Request.Url.ToString();
ModuleFilterInfo matchModel = new ModuleFilterInfo();
string scope = "snsapi_base";
if (application.Session["weixinscope"] != null)
{
scope = application.Session["weixinscope"].ToString();
}
else
{
application.Session["weixinscope"] = "snsapi_base";
}
//查询不在授权区则跳出处理
if (!CheckIsToWXOAuth(rawUrl, out matchModel))
{
return;
}
if (!string.IsNullOrWhiteSpace(matchModel.Ex1))
{
scope = matchModel.Ex1;
application.Session["weixinscope"] = matchModel.Ex1;
}
//保存用户16进制ID(保存链接上的)
application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm;
//判断用户是否存在,不存在也直接跳过处理
userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm);
if (userInfo == null)
{
return;
}
//构造callBackUrl
string callBackUrl = string.Format("http://{0}/wxcallback.aspx", host);
//构造返回参数
WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity()
{
Path = application.Request.Url.ToString(),
UserAutoIDHex = application.Session[systemset.UserAutoIDHexKey].ToString()
};
//构造授权链接
//https://open.weixin.qq.com/connect/oauth2/authorize?appid=wxdc04ea5f3d005950&redirect_uri=http://m.jubit.cn/Default.htm&scope=snsapi_base&state=dsdsdah
string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&scope={2}&response_type=code&state={3}#wechat_redirect",
userInfo.WeixinAppId,
callBackUrl,
scope,
""//ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo))
);
//防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系
application.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo));
//using (StreamWriter sw = new StreamWriter(@"D:\debug.txt", true, Encoding.UTF8))
//{
// sw.WriteLine(string.Format("{0} oauthUrl:{1}", DateTime.Now.ToString(), oauthUrl));
//}
//访问授权链接
application.Response.Redirect(oauthUrl);
#endregion
/*
* 判断阶段:
*
* (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了)
* 获取用户名,获取Session中存储的CurrOpenID及UserID
* 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权
* 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID
* (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样)
*
* 判断是否符合拦截条件
*
* 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID
*
* --------------------------------------
*
* 开始授权处理阶段:
*
* 获取配置的高级接口参数
* 构造CallBackUrl
* 构造返回参数:目前传递Path(当前路径),UserID
* 构造授权链接
* 访问授权链接
*
* ---------------------------------------
* CallBack处理阶段:
* 接收参数 code,Path,UserId,CurrOpenId
* 构造授权API
* 获取OpenID
* 构造目标链接:Path + UserID
* 存储当前微信OpenID到Session
* 访问最终目标链接(已取到CurrOpenID)
*
* 2013.12.06修改逻辑:自动判断授权模式
* callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式
* 注册会员那边自动添加拉取到的微信会员信息
*
*/
}