private bool WXCallbackAction(HttpContext context) { ZentCloud.BLLJIMP.Model.Other.WxAutoLoginToken wxAutoLoginToken = new ZentCloud.BLLJIMP.Model.Other.WxAutoLoginToken() { IsUAuth = 0 }; ToLog("callback处理"); //接收微信授权返回参数 string code = context.Request["code"]; string appId = context.Request["appid"]; //授权给开放平台时返回此参数 默认授权无此参数 string state = context.Request["state"]; //state 原样返回 // state = HttpUtility.UrlDecode(state);//state ToLog(" into module /wxcallback.aspx code: " + code); string redirectUrl = state;//授权完成跳转的链接 ToLog(" state: " + state); try { redirectUrl = RedisHelper.RedisHelper.StringGet(state);//默认用Redis } catch (Exception) { redirectUrl = ZentCloud.Common.DataCache.GetCache(state).ToString();//通过state的cachekey读取链接 } ToLog(" redirectUrl: " + redirectUrl); //if (context.Session["redirectUrl"] != null) //{ // redirectUrl = context.Session["redirectUrl"].ToString();//默认授权用 //} //else //{ // ToLog("context.Session[redirectUrl] is null"); // return; //} //如果传入code为空,跳过处理 if (string.IsNullOrWhiteSpace(code)) { ToLog("context.Request[code] is null"); return(false); } string getAccessTokenUrl = ""; ToLog("appid:" + appId); if (!string.IsNullOrEmpty(appId)) { isAuthToOpen = true; } else { isAuthToOpen = false; currentWebsiteInfo = bllUser.GetWebsiteInfoModelFromDataBase(); //当前站点信息 currentWebsiteOwnerInfo = bllUser.GetCurrWebSiteUserInfo(); //当前站点所有者信息 ToLog("currentWebsiteOwnerInfo" + currentWebsiteOwnerInfo.UserID); weixinAppId = currentWebsiteOwnerInfo.WeixinAppId; ToLog("weixinAppId" + weixinAppId); weixinAppSecret = currentWebsiteOwnerInfo.WeixinAppSecret; ToLog("weixinAppSecret" + weixinAppSecret); } #region 默认授权 if (!isAuthToOpen)//默认授权 { getAccessTokenUrl = string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code", weixinAppId, weixinAppSecret, code); } #endregion #region 开放平台授权 else { //todo: currentWebsiteInfo = bllUser.Get <ZentCloud.BLLJIMP.Model.WebsiteInfo>(string.Format(" AuthorizerAppId='{0}'", appId)); currentWebsiteOwnerInfo = bllUser.GetUserInfo(currentWebsiteInfo.WebsiteOwner, currentWebsiteInfo.WebsiteOwner); //开放平台多两个参数 component_appid,component_access_token getAccessTokenUrl = string.Format("https://api.weixin.qq.com/sns/oauth2/component/access_token?appid={0}&code={1}&grant_type=authorization_code&component_appid={2}&component_access_token={3}", appId, code, bllWeixinOpen.ComponentAppId, bllWeixinOpen.GetComponentAccessToken()); } #endregion ToLog("tokenmodel:" + getAccessTokenUrl); //获取OpenID及Access_token string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getAccessTokenUrl); if (string.IsNullOrWhiteSpace(accessTokenSource)) { ToLog("ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl) is null"); context.Response.Redirect(redirectUrl); return(false); } ToLog("accessTokenSource:" + accessTokenSource); WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource); ToLog("start accessTokenSource process"); if (accessTokenModel == null) { ToLog("ZCJson.JsonConvert.DeserializeObject<WXOAuthAccessTokenEntity>(accessTokenSource) is null"); context.Response.Redirect(redirectUrl); return(false); } if (string.IsNullOrEmpty(accessTokenModel.OpenId)) { ToLog("accessTokenModel.OpenId is null"); context.Response.Redirect(redirectUrl); return(false); } else { context.Session["currWXOpenId"] = accessTokenModel.OpenId; ToLog("currWXOpenId:" + context.Session["currWXOpenId"].ToString()); } if (accessTokenModel.Scope.Contains("snsapi_userinfo")) { ToLog("获取用户头像昵称 start "); string wxUserInfoSourceJson = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}", accessTokenModel.AccessToken, accessTokenModel.OpenId )); ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo wxUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(wxUserInfoSourceJson); accessTokenModel.UnionId = wxUserInfo.UnionID; wxAutoLoginToken.IsUAuth = 1; } if (string.IsNullOrEmpty(appId))//默认授权 { currentUserInfo = bllUser.GetUserInfoByOpenId(accessTokenModel.OpenId); } else//开放平台 { //var websiteInfo = bllUser.Get<ZentCloud.BLLJIMP.Model.WebsiteInfo>(string.Format(" AuthorizerAppId='{0}'", appId)); currentUserInfo = bllUser.GetUserInfoByOpenId(accessTokenModel.OpenId, currentWebsiteInfo.WebsiteOwner); } if (currentUserInfo == null && !string.IsNullOrWhiteSpace(accessTokenModel.UnionId)) { currentUserInfo = bllUser.GetUserInfoByWXUnionID(accessTokenModel.UnionId); } if (currentUserInfo == null) { //判断当前站点是否不允许微信自动注册新用户 if (!CheckNotAutoRegNewWxUser(context, redirectUrl)) { ToLog("不自动注册:" + accessTokenModel.OpenId); //context.Response.Redirect(redirectUrl); //if (!isAuthToOpen)//默认授权 //{ //} //else//微信开放平台授权 //{ // string signKey = ZentCloud.Common.ConfigHelper.GetConfigString("WeixinOpenWebOAuthKey");// 开放平台网页授权Md5 Key // string sign = ZentCloud.Common.DEncrypt.GetMD5(currentUserInfo.WXOpenId + signKey);//签名 // //开放平台授权,跳到统一处理Handler context.Response.Redirect(string.Format("http://{0}/WeixinOpen/WebOAuthNotLogin.ashx?openid={1}&redirecturl={2}", ZentCloud.Common.MyRegex.GetDoMainByUrl(redirectUrl), accessTokenModel.OpenId, HttpUtility.UrlEncode(redirectUrl))); //} return(false); } else { ToLog("自动注册:" + accessTokenModel.OpenId); #region 注册用户 //注册用户 currentUserInfo = new ZentCloud.BLLJIMP.Model.UserInfo(); currentUserInfo.UserID = string.Format("WXUser{0}", Guid.NewGuid().ToString());//Guid currentUserInfo.Password = ZentCloud.Common.Rand.Str_char(12); currentUserInfo.UserType = 2; currentUserInfo.WebsiteOwner = currentWebsiteOwnerInfo.UserID; //if (isAuthToOpen)//开放平台授权 //{ // var websiteInfo = bllUser.Get<ZentCloud.BLLJIMP.Model.WebsiteInfo>(string.Format(" AuthorizerAppId='{0}'", appId)); // currentUserInfo.WebsiteOwner = websiteInfo.WebsiteOwner; //} currentUserInfo.Regtime = DateTime.Now; //currentUserInfo.WXAccessToken = accessTokenModel.AccessToken; //currentUserInfo.WXRefreshToken = accessTokenModel.RefreshToken; currentUserInfo.WXOpenId = accessTokenModel.OpenId; //currentUserInfo.WXScope = accessTokenModel.Scope; currentUserInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP(); currentUserInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP(); currentUserInfo.LastLoginDate = DateTime.Now; currentUserInfo.LoginTotalCount = 1; currentUserInfo.WXUnionID = accessTokenModel.UnionId; if (!new BLLCommRelation().ExistRelation(ZentCloud.BLLJIMP.Enums.CommRelationType.WebsiteIsNotAutoRegNewWxUser, currentUserInfo.WebsiteOwner, "")) { ToLog(string.Format("---自动注册,openid:{0},currentWebsiteInfo.WebsiteOwner:{1}", accessTokenModel.OpenId, currentUserInfo.WebsiteOwner)); bllUser.Add(currentUserInfo); } #endregion } } if (currentUserInfo != null) { if ((!string.IsNullOrEmpty(accessTokenModel.UnionId)) && (string.IsNullOrEmpty(currentUserInfo.WXUnionID)))//如果有 UnionId 则更新 { currentUserInfo.WXUnionID = accessTokenModel.UnionId; bllUser.Update(currentUserInfo, string.Format("WXUnionID='{0}'", currentUserInfo.WXUnionID), string.Format(" UserId='{0}' ", currentUserInfo.UserID)); } if ((!string.IsNullOrEmpty(accessTokenModel.OpenId)) && (string.IsNullOrEmpty(currentUserInfo.WXOpenId))) { currentUserInfo.WXOpenId = accessTokenModel.OpenId; bllUser.Update(currentUserInfo, string.Format("WXOpenId='{0}'", currentUserInfo.WXOpenId), string.Format(" UserId='{0}' ", currentUserInfo.UserID)); } } ToLog("用户名:" + currentUserInfo.UserID + "WebsiteOwner=" + currentWebsiteOwnerInfo.UserID); // if (!BLL.GetCheck()) return false; #region 获取用户头像昵称 if (accessTokenModel.Scope.Contains("snsapi_userinfo")) { ToLog("获取用户头像昵称 start "); string wxUserInfoSourceJson = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}", accessTokenModel.AccessToken, accessTokenModel.OpenId )); ToLog("wxUserInfoSourceJson:" + wxUserInfoSourceJson); if (!string.IsNullOrWhiteSpace(wxUserInfoSourceJson)) { ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo wxUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(wxUserInfoSourceJson); //context.Session["currWeixinUserInfo"] = wxUserInfo; if (currentUserInfo != null) { //ToLog("处理下,头像都取132的"); //if (wxUserInfo.HeadImgUrl.EndsWith("/0")) //{ // ToLog(wxUserInfo.HeadImgUrl); // wxUserInfo.HeadImgUrl = wxUserInfo.HeadImgUrl.Substring(0, wxUserInfo.HeadImgUrl.Length - 2); // ToLog(wxUserInfo.HeadImgUrl); // wxUserInfo.HeadImgUrl += "/132"; // ToLog(wxUserInfo.HeadImgUrl); //} if (string.IsNullOrWhiteSpace(wxUserInfo.NickName)) { //context.Response.Redirect(redirectUrl);//高级授权没拿到头像,重新授权 } //else //{ //} ToLog("开始更新用户微信信息"); //更新用户微信信息 currentUserInfo.WXCity = wxUserInfo.City; currentUserInfo.WXCountry = wxUserInfo.Country; currentUserInfo.WXHeadimgurl = wxUserInfo.HeadImgUrl; currentUserInfo.WXNickname = wxUserInfo.NickName; currentUserInfo.WXPrivilege = ZentCloud.Common.JSONHelper.ObjectToJson(wxUserInfo.Privilege); currentUserInfo.WXProvince = wxUserInfo.Province; currentUserInfo.WXSex = wxUserInfo.Sex; ToLog("数据库用户AutoId:" + currentUserInfo.AutoID); ToLog("数据库用户信息:" + JsonConvert.SerializeObject(currentUserInfo)); ToLog("微信头像 wxUserInfo.HeadImgUrl:" + wxUserInfo.HeadImgUrl); var updateResult = bllUser.Update(currentUserInfo, string.Format(" WXHeadimgurl='{0}',WXNickname='{1}',WXProvince='{2}',WXCity='{3}'", wxUserInfo.HeadImgUrl, wxUserInfo.NickName.Replace("'", ""), wxUserInfo.Province.Replace("'", ""), wxUserInfo.City.Replace("'", "")), string.Format(" UserId='{0}' ", currentUserInfo.UserID)); //currentUserInfo.Province ToLog("更新结果:" + updateResult.ToString()); } } else { ToLog("WxUserInfoSource is null"); } } #endregion ToLog("登陆成功,设置session和跳转"); ToLog("isAuthToOpen:" + isAuthToOpen); //ToLog("有无redirectUrl的session:" + (context.Session["redirectUrl"] != null)); //if (context.Session["redirectUrl"] != null) //{ // ToLog("redirectUrl:" + context.Session["redirectUrl"].ToString()); //} wxAutoLoginToken.Uid = currentUserInfo.UserID; wxAutoLoginToken.Oid = currentUserInfo.WXOpenId; wxAutoLoginToken.IsUAuth = string.IsNullOrWhiteSpace(currentUserInfo.WXNickname) ? 0 : 1; //创建key 存入redis var key = "ltk:" + ZentCloud.Common.DEncrypt.ZCEncrypt(currentUserInfo.UserID); //key 加上微信appid var wxAppidKey = bllWebSite.GetWebsiteWXAppIdKey(currentWebsiteInfo.WebsiteOwner); if (!string.IsNullOrWhiteSpace(wxAppidKey)) { key += wxAppidKey; } try { //过滤掉异常,防止redis缓存异常导致授权登陆失败 ToLog("开始设置自动登陆tiken到redis和cookie,key:" + key); HttpCookie cookie = new HttpCookie(ZentCloud.Common.SessionKey.LoginCookie); cookie.Value = key; cookie.Expires = DateTime.Now.AddDays(30); context.Response.Cookies.Add(cookie); ToLog("自动登陆cookie设置成功"); RedisHelper.RedisHelper.StringSetSerialize(key, wxAutoLoginToken, new TimeSpan(30, 0, 0, 0)); ToLog("自动登陆Redis设置成功"); } catch (Exception ex) { ToLog("设置自动登陆tiken到redis和cookie异常:" + ex.Message); } //redirectUrl 加上一个时间戳 #region 默认授权 if (!isAuthToOpen)//默认授权 { //设置用户会话ID context.Session[ZentCloud.Common.SessionKey.UserID] = currentUserInfo.UserID; context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 1; //设置登录状态 context.Session["currWXOpenId"] = accessTokenModel.OpenId; context.Response.Redirect(redirectUrl); return(false); } #endregion #region 微信开放平台授权 else { string signKey = ZentCloud.Common.ConfigHelper.GetConfigString("WeixinOpenWebOAuthKey"); // 开放平台网页授权Md5 Key string sign = ZentCloud.Common.DEncrypt.GetMD5(currentUserInfo.WXOpenId + signKey); //签名 //开放平台授权,跳到统一处理Handler context.Response.Redirect(string.Format("http://{0}/WeixinOpen/WebOAuth.ashx?openid={1}&redirecturl={2}&sign={3}&websiteowner={4}&autologinkey={5}", ZentCloud.Common.MyRegex.GetDoMainByUrl(redirectUrl), currentUserInfo.WXOpenId, HttpUtility.UrlEncode(redirectUrl), sign, currentUserInfo.WebsiteOwner, HttpUtility.UrlEncode(key))); //ZentCloud.BLLJIMP.Model.WeixinOpenOAuthTemp tokenRecord = bllUser.Get<ZentCloud.BLLJIMP.Model.WeixinOpenOAuthTemp>(string.Format(" Token='{0}'", state)); //if (tokenRecord != null) //{ // context.Response.Redirect(string.Format("http://{0}/WeixinOpen/WebOAuth.ashx?openid={1}&token={2}&sign={3}", ZentCloud.Common.MyRegex.GetDoMainByUrl(tokenRecord.Url), currentUserInfo.WXOpenId, state, sign)); //} //else //{ // ToLog("tokenRecord null"); //} return(false); } #endregion }
/// <summary> /// 授权作用于平台用户登录(openId直接为平台登录用户) /// </summary> /// <param name="sender"></param> /// <param name="e"></param> void context_AcquireRequestStateForOpenIdLogin(object sender, EventArgs e) { try { HttpContext context = HttpContext.Current; ZentCloud.BLLJIMP.BLLUser userBll = new ZentCloud.BLLJIMP.BLLUser(""); SystemSet systemSet = userBll.Get <SystemSet>(""); ZentCloud.BLLJIMP.Model.WebsiteInfo currWebsiteInfoModel = (ZentCloud.BLLJIMP.Model.WebsiteInfo)context.Session["WebsiteInfoModel"]; ZentCloud.BLLJIMP.Model.UserInfo currWebsiteOwner = userBll.GetUserInfo(currWebsiteInfoModel.WebsiteOwner); string currPath = context.Request.Path.ToLower(); if (!context.Request.UserAgent.ToLower().Contains("micromessenger")) { return;//非微信浏览器进入不执行授权 } //验证aspx、ashx、chtml页面 if (!ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("chtml") && !ZentCloud.Common.IOHelper.GetExtraName(currPath).Equals("ashx")) { return; } ZentCloud.BLLJIMP.Model.UserInfo userInfo = new ZentCloud.BLLJIMP.Model.UserInfo(); string WeixinAppId = currWebsiteOwner.WeixinAppId; string WeixinAppSecret = currWebsiteOwner.WeixinAppSecret; if (!currWebsiteOwner.WeixinIsAdvancedAuthenticate.Equals(1))//未开通微信高级认证的不处理 { return; } #region CallBack处理阶段 //ToLog("判断是不是callback"); if (currPath.StartsWith("/wxcallback.aspx")) { //ToLog("正在处理callback"); //接收Code及state string code = context.Request["code"]; string state = context.Session["state"].ToString(); //context.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了 WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity(); if (!string.IsNullOrWhiteSpace(state)) { callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state)); } else { ToLog("context.Session[state] is null"); return; } //如果传入code为空,跳过处理 if (string.IsNullOrWhiteSpace(code)) { ToLog("context.Request[code] is null"); return; } string getTokenUrl = string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code", WeixinAppId, //systemset.WeixinAppId, WeixinAppSecret, //systemset.WeixinAppSecret, code); //获取OpenID及Access_token string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl); if (string.IsNullOrWhiteSpace(accessTokenSource)) { ToLog("ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl) is null"); return; } //ToLog("CallBack accessTokenSource:" + accessTokenSource); WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource); if (accessTokenModel == null) { ToLog("ZCJson.JsonConvert.DeserializeObject<WXOAuthAccessTokenEntity>(accessTokenSource) is null"); return; } //ToLog("callback accessTokenModel:" + accessTokenModel); //存储当前accessTokenModel到Session context.Session[systemSet.WXOAuthAccessTokenEntityKey] = accessTokenModel; //存储当前微信OpenID到Session,一旦存储有OpenID值和已登录标识,则不会再进行授权处理 context.Session[systemSet.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId; //获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册 userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(accessTokenModel.OpenId); if (userInfo == null) { //ToLog("callback注册新用户"); //注册用户 userInfo = new ZentCloud.BLLJIMP.Model.UserInfo(); userInfo.UserID = string.Format("WXUser{0}{1}", ZentCloud.Common.StringHelper.GetDateTimeNum(), ZentCloud.Common.Rand.Str(5));//WXUser+时间字符串+随机5位数字 userInfo.Password = ZentCloud.Common.Rand.Str_char(12); userInfo.UserType = 2; userInfo.WebsiteOwner = currWebsiteOwner.UserID; userInfo.Regtime = DateTime.Now; userInfo.WXAccessToken = accessTokenModel.AccessToken; userInfo.WXRefreshToken = accessTokenModel.RefreshToken; userInfo.WXOpenId = accessTokenModel.OpenId; userInfo.WXScope = accessTokenModel.Scope; userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP(); userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP(); userInfo.LastLoginDate = DateTime.Now; userInfo.LoginTotalCount = 1; userBll.Add(userInfo); //List<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo> userPmsGroupList = new List<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>() { // new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为基本用户组 // { // UserID = userInfo.UserID, // GroupID = 110578 // }, // new ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo()//分配用户组为教育普通用户组 // { // UserID = userInfo.UserID, // GroupID = 130334 // } //}; //userBll.AddList<ZentCloud.BLLPermission.Model.UserPmsGroupRelationInfo>(userPmsGroupList); //userInfo.HFPmsGroupStr = userInfo.HFUserPmsGroup; //userBll.Update(userInfo); } else { //ToLog("老用户登录"); //更新用户信息 //userInfo.WXAccessToken = accessTokenModel.AccessToken; //userInfo.WXRefreshToken = accessTokenModel.RefreshToken; //userInfo.WXOpenId = accessTokenModel.OpenId; //userInfo.WXScope = accessTokenModel.Scope; //userInfo.LastLoginIP = ZentCloud.Common.MySpider.GetClientIP(); //userInfo.LastLoginDate = DateTime.Now; //userInfo.LoginTotalCount++; //userBll.Update(userInfo); } try { //如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用 if (accessTokenModel.Scope.Contains("snsapi_userinfo")) { //ToLog("Callback正在拉取信息"); string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}", accessTokenModel.AccessToken, accessTokenModel.OpenId )); if (!string.IsNullOrWhiteSpace(userInfoSource)) { ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource); context.Session[systemSet.WXCurrOpenerUserInfoKey] = weixinUserInfo; //更新用户微信信息 userInfo.WXCity = weixinUserInfo.City; userInfo.WXCountry = weixinUserInfo.Country; userInfo.WXHeadimgurl = weixinUserInfo.HeadImgUrl; ////当用户是从无昵称变为有昵称,则认为是注册用户,且当前为正式注册时间 //if (string.IsNullOrWhiteSpace(userInfo.WXNickname) && !string.IsNullOrWhiteSpace(weixinUserInfo.NickName)) //{ // // userInfo.RegIP = ZentCloud.Common.MySpider.GetClientIP(); // //userInfo.Regtime = DateTime.Now; //} userInfo.WXNickname = weixinUserInfo.NickName; userInfo.WXPrivilege = ZentCloud.Common.JSONHelper.ObjectToJson(weixinUserInfo.Privilege); userInfo.WXProvince = weixinUserInfo.Province; userInfo.WXSex = weixinUserInfo.Sex; userBll.Update(userInfo); } } } catch (Exception ex) { //ToLog("更新userInfo异常:" + ex.Message); //如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取) } /* * -- 2014.1.7 * 1.添加授权判断,如果没有昵称则返回重新用userInfo授权; * 2.只有页面类型是userInfo授权类型的才执行该操作,本身是Base的不处理; * 3.如果是userInfo页面类型,新用户也必须重新执行userInfo授权; * * 进入场景 * 1.新用户访问base页面; * 2.新用户访问userinfo页面; * 3.老用户访问base页面; * 4.老用户访问userinfo页面; * * 首次进入都是base授权, * * userinfo页面下,判断是不是有微信昵称,没有微信昵称则需要进行userinfo授权 * 由base页面进入userinfo页面,再次进行base授权,然后由该阶段进行判断是否是需要重定向到userinfo授权 * * * */ if (context.Session["weixinscope"] == null) { context.Session["weixinscope"] = ""; } //context.Session["PageMatchModel"] //ToLog("开始进行正式用户判断"); if (context.Session["PageMatchModel"] != null) { ModuleFilterInfo pageMatchModel = (ModuleFilterInfo)context.Session["PageMatchModel"]; if (pageMatchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname) && context.Session["weixinscope"].ToString() != "snsapi_userinfo") { //ToLog("不是正式用户"); context.Session[systemSet.WXCurrOpenerOpenIDKey] = ""; context.Session["weixinscope"] = "snsapi_userinfo"; context.Session["isRedoOath"] = "1"; //再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权) context.Response.Redirect(callBackStateInfo.Path); return; } //ToLog("是正式用户"); } //设置用户ID context.Session[ZentCloud.Common.SessionKey.UserID] = userInfo.UserID; //修改登录标识 context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 1; context.Response.Redirect(callBackStateInfo.Path); return; } #endregion #region 判断阶段及开始授权处理阶段 List <ModuleFilterInfo> FilterList = userBll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' "); currOpenIDSession = context.Session[systemSet.WXCurrOpenerOpenIDKey] == null ? "" : context.Session[systemSet.WXCurrOpenerOpenIDKey].ToString(); if (context.Session[ZentCloud.Common.SessionKey.LoginStatu] == null) { context.Session[ZentCloud.Common.SessionKey.LoginStatu] = 0; } ModuleFilterInfo matchModel = new ModuleFilterInfo(); //判断是否是返回重新进行userInfo 授权 string isRedoOath = context.Session["isRedoOath"] == null ? "" : context.Session["isRedoOath"].ToString(); //检查如果已登录且openId也存在,则跳过授权处理,扫一扫登录也需要重新验证 if (context.Session[ZentCloud.Common.SessionKey.LoginStatu].ToString().Equals("1") && !string.IsNullOrWhiteSpace(currOpenIDSession)) { //增加判断,如果是在base授权区进入到UserInfo授权区,则需要重新授权,否则跳过-2013.12.26 //添加逻辑:并且用户没有昵称的时候才会去授权 if (context.Session["weixinscope"] != null) { string tmpscope = context.Session["weixinscope"].ToString(); if (tmpscope == "snsapi_base") { if (CheckIsToWXOAuth(currPath, out matchModel)) { //ToLog("matchModel.Ex1:" + matchModel.Ex1); userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByOpenId(context.Session[systemSet.WXCurrOpenerOpenIDKey] == null ? "" : context.Session[systemSet.WXCurrOpenerOpenIDKey].ToString()); if (userInfo == null) { userInfo = new ZentCloud.BLLJIMP.Model.UserInfo(); } if (matchModel.Ex1 == "snsapi_userinfo" && string.IsNullOrWhiteSpace(userInfo.WXNickname)) { //不跳出而进行重新授权 } else { return; } } else { return; } } else { return; } } else { return; } } if (isRedoOath == "1") { context.Session["weixinscope"] = "snsapi_userinfo"; context.Session["isRedoOath"] = "0"; } else { context.Session["weixinscope"] = "snsapi_base"; } string scope = "snsapi_base"; if (context.Session["weixinscope"] != null) { scope = context.Session["weixinscope"].ToString(); } if (string.IsNullOrWhiteSpace(scope)) { context.Session["weixinscope"] = "snsapi_base"; scope = "snsapi_base"; } //查询不在授权区则跳出处理 if (!CheckIsToWXOAuth(currPath, out matchModel)) { //ToLog("不在授权区"); return; } //ToLog("在授权区"); //保存当前页面匹配实体 context.Session["PageMatchModel"] = matchModel; //构造callBackUrl string callBackUrl = string.Format("http://{0}/wxcallback.aspx", context.Request.Url.Host); //构造返回参数 WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity() { Path = context.Request.Url.AbsoluteUri }; string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&response_type=code&scope={2}&state={3}#wechat_redirect", WeixinAppId, callBackUrl, scope, "STATE" ); //防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系 context.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo)); //访问授权链接 context.Response.Redirect(oauthUrl); #endregion /* * 判断阶段: * * (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了) * 获取用户名,获取Session中存储的CurrOpenID及UserID * 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权 * 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID * (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样) * * 判断是否符合拦截条件 * * 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID * * -------------------------------------- * * 开始授权处理阶段: * * 获取配置的高级接口参数 * 构造CallBackUrl * 构造返回参数:目前传递Path(当前路径),UserID * 构造授权链接 * 访问授权链接 * * --------------------------------------- * CallBack处理阶段: * 接收参数 code,Path,UserId,CurrOpenId * 构造授权API * 获取OpenID * 构造目标链接:Path + UserID * 存储当前微信OpenID到Session * 访问最终目标链接(已取到CurrOpenID) * * 2013.12.06修改逻辑:自动判断授权模式 * callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式 * 注册会员那边自动添加拉取到的微信会员信息 * * * 2013.12.19 * 更改后的方法升级:1.直接授权后登录;2.不是会员的则会自动注册会员;3.openId直接是登录凭据; * * 判断是否授权依据是登录标识为登出,登出状态才进行授权登录,openId为空也进行登录 * * 获取用户当前的openid-判断用户是否已注册-如果未注册则自动生成一个随机userId进行注册 * * 登录标识标为已登录,并获取openId及其他信息 * * * */ } catch (Exception ex) { //ToLog(ex.Message); } }
void context_AcquireRequestState(object sender, EventArgs e) { HttpApplication application = (HttpApplication)sender; //只有手机才会进行授权处理 if (application.Request.Browser.Platform == null ? false : application.Request.Browser.Platform.ToLower().StartsWith("win")) { return; } //if (HttpContext.Current.Request.UserAgent.ToLower().Contains("micromessenger")) //{ //} //else //{ // return; //} string currAbsolutePath = application.Request.Url.AbsolutePath == null ? "" : application.Request.Url.AbsolutePath.ToLower(); //application.Response.Write("原始链接:" + rawUrl + ",host:" + host + ",port:" + port.ToString()); //验证aspx、ashx页面 if (!ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("aspx") && !ZentCloud.Common.IOHelper.GetExtraName(currAbsolutePath).Equals("chtml")) { return; } ZentCloud.BLLJIMP.Model.UserInfo userInfo; BLL bll = new BLL(); SystemSet systemset = bll.Get <SystemSet>(""); string rawUrl = application.Request.RawUrl.ToLower(); string host = application.Request.Url.Host; //string port = application.Request.Url.Port.ToString(); #region CallBack处理阶段 if (rawUrl.StartsWith("/wxcallback.aspx")) { //application.Response.Redirect("/index.aspx?msg=" + application.Request["msg"].ToString()); //接收Code及state string code = application.Request["code"]; string state = application.Session["state"].ToString(); //application.Request["state"];//如果state太长微信的userInfo会报错,解决方案为将改字段放到session里可以了 //application.Response.Write("code:" + code + "<br />"); //application.Response.Write("state:" + state + "<br />"); WXOAuthCallBackStateEntity callBackStateInfo = new WXOAuthCallBackStateEntity(); if (!string.IsNullOrWhiteSpace(state)) { callBackStateInfo = ZentCloud.Common.JSONHelper.JsonToModel <WXOAuthCallBackStateEntity>(ZentCloud.Common.Base64Change.DecodeBase64ByUTF8(state)); } else { return; } //如果传入code为空,跳过处理 if (string.IsNullOrWhiteSpace(code)) { return; } //获取用户信息 userAutoIDHexUrlParm = callBackStateInfo.UserAutoIDHex; userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString(); //application.Response.Write("userAutoIDHexUrlParm:" + userAutoIDHexUrlParm + "<br />"); //application.Response.Write("userAutoIDHexSession:" + userAutoIDHexSession + "<br />"); //判断如果传入用户跟当前用户不一致,直接跳过处理(或者直接跳转到目的链接,稍后考虑) if (userAutoIDHexSession != userAutoIDHexUrlParm) { return; } //判断用户是否存在,不存在也直接跳过处理 userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm); if (userInfo == null) { return; } //用户存在,再次存入Session,方便调试及其他可能作用 //application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm; //构造授权API //https://api.weixin.qq.com/sns/oauth2/access_token?appid=wxdc04ea5f3d005950&secret=543a9cb723620219961e4f96b1b2752d&code=00f4b7139f2784099fa33df653cc192e&grant_type=authorization_code string getTokenUrl = string.Format("https://api.weixin.qq.com/sns/oauth2/access_token?appid={0}&secret={1}&code={2}&grant_type=authorization_code", userInfo.WeixinAppId, userInfo.WeixinAppSecret, code ); //application.Response.Write("getTokenUrl:" + getTokenUrl + "<br />"); //获取OpenID及Access_token string accessTokenSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(getTokenUrl); //application.Response.Write("accessTokenSource:" + accessTokenSource + "<br />"); if (string.IsNullOrWhiteSpace(accessTokenSource)) { return; } WXOAuthAccessTokenEntity accessTokenModel = ZCJson.JsonConvert.DeserializeObject <WXOAuthAccessTokenEntity>(accessTokenSource); if (accessTokenModel == null) { return; } if (false)//该逻辑不用判断,暂时先这样跳过,后面需要或者确实不需要再处理 { //根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式,注意该阶段前不要存储OpenID值,而且授权方式限制为不是snsapi_userinfo才会去重新授权,否则会出现死循环 if (!new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, accessTokenModel.OpenId) && application.Session["weixinscope"].ToString() != "snsapi_userinfo") { application.Session[systemset.WXCurrOpenerOpenIDKey] = ""; application.Session["weixinscope"] = "snsapi_userinfo"; //再次访问目标链接(未取到CurrOpenID,会重新进行UserInfo授权) application.Response.Redirect(callBackStateInfo.Path); return; } } //存储当前accessTokenModel到Session application.Session[systemset.WXOAuthAccessTokenEntityKey] = accessTokenModel; //存储当前微信OpenID到Session,一旦存储有OpenID值,则不会再进行授权处理 application.Session[systemset.WXCurrOpenerOpenIDKey] = accessTokenModel.OpenId; try { //如果是UserInfo方式,拉区微信用户信息并存储到会话,待后续页面使用 if (accessTokenModel.Scope.Contains("snsapi_userinfo")) { string userInfoSource = ZentCloud.Common.MySpider.GetPageSourceForUTF8(string.Format("https://api.weixin.qq.com/sns/userinfo?access_token={0}&openid={1}", accessTokenModel.AccessToken, accessTokenModel.OpenId )); if (!string.IsNullOrWhiteSpace(userInfoSource)) { ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo weixinUserInfo = ZCJson.JsonConvert.DeserializeObject <ZentCloud.BLLJIMP.Model.Weixin.WeixinUserInfo>(userInfoSource); application.Session[systemset.WXCurrOpenerUserInfoKey] = weixinUserInfo; //application.Response.Write("userInfoSource:" + userInfoSource + "<br />"); //application.Response.Write("weixinUserInfo:" + weixinUserInfo.OpenId + " " + weixinUserInfo.NickName + " " + weixinUserInfo.Sex + " " + weixinUserInfo.Country + " "); } } } catch { //如果拉区信息异常,则后续网页自行判断处理(可以自行根据accessToken拉取) } //访问最终目标链接(已取到CurrOpenID) application.Response.Redirect(callBackStateInfo.Path); return; } #endregion #region 判断阶段及开始授权处理阶段 List <ModuleFilterInfo> FilterList = bll.GetList <ModuleFilterInfo>(" FilterType = 'WXOAuth' "); userAutoIDHexUrlParm = application.Request[systemset.UserAutoIDHexKey] == null ? "" : application.Request[systemset.UserAutoIDHexKey].ToString(); userAutoIDHexSession = application.Session[systemset.UserAutoIDHexKey] == null ? "" : application.Session[systemset.UserAutoIDHexKey].ToString(); currOpenIDSession = application.Session[systemset.WXCurrOpenerOpenIDKey] == null ? "" : application.Session[systemset.WXCurrOpenerOpenIDKey].ToString(); //如果链接没传输用户名则不进行授权处理 if (string.IsNullOrWhiteSpace(userAutoIDHexUrlParm)) { return; } //判断用户是否存在,不存在也直接跳过处理 userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm); if (userInfo == null) { return; } //判断用户是否进行微信认证,没有认证的不进行网页授权处理 if (userInfo.IsWeixinVerify != 1) { return; } //bool isWxMember = !new ZentCloud.BLLJIMP.BLLWeixin(userInfo.UserID).CheckIsWXMember(userInfo.UserID, currOpenIDSession); //bool isChangeOlbUrl = application.Session["PreUrl"] == null ? false : application.Request.Url.ToString().Equals(application.Session["PreUrl"].ToString());//是否当前访问的链接跟上一次访问的链接一致 //如果已存在CurrOpenID并且链接的UserID跟存储的UserID对等,并且当前访问的链接跟上一次访问的链接一致,则直接跳出处理 if ((!string.IsNullOrWhiteSpace(currOpenIDSession) && userAutoIDHexSession == userAutoIDHexUrlParm)) { return; } application.Session["PreUrl"] = application.Request.Url.ToString(); ModuleFilterInfo matchModel = new ModuleFilterInfo(); string scope = "snsapi_base"; if (application.Session["weixinscope"] != null) { scope = application.Session["weixinscope"].ToString(); } else { application.Session["weixinscope"] = "snsapi_base"; } //查询不在授权区则跳出处理 if (!CheckIsToWXOAuth(rawUrl, out matchModel)) { return; } if (!string.IsNullOrWhiteSpace(matchModel.Ex1)) { scope = matchModel.Ex1; application.Session["weixinscope"] = matchModel.Ex1; } //保存用户16进制ID(保存链接上的) application.Session[systemset.UserAutoIDHexKey] = userAutoIDHexUrlParm; //判断用户是否存在,不存在也直接跳过处理 userInfo = new ZentCloud.BLLJIMP.BLLUser("").GetUserInfoByAutoIDHex(userAutoIDHexUrlParm); if (userInfo == null) { return; } //构造callBackUrl string callBackUrl = string.Format("http://{0}/wxcallback.aspx", host); //构造返回参数 WXOAuthCallBackStateEntity stateInfo = new WXOAuthCallBackStateEntity() { Path = application.Request.Url.ToString(), UserAutoIDHex = application.Session[systemset.UserAutoIDHexKey].ToString() }; //构造授权链接 //https://open.weixin.qq.com/connect/oauth2/authorize?appid=wxdc04ea5f3d005950&redirect_uri=http://m.jubit.cn/Default.htm&scope=snsapi_base&state=dsdsdah string oauthUrl = string.Format("https://open.weixin.qq.com/connect/oauth2/authorize?appid={0}&redirect_uri={1}&scope={2}&response_type=code&state={3}#wechat_redirect", userInfo.WeixinAppId, callBackUrl, scope, ""//ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo)) ); //防止state过长微信的userInfo类型会报错,将该字段目前存session,后面有必要可以再改为其他映射关系 application.Session["state"] = ZentCloud.Common.Base64Change.EncodeBase64ByUTF8(ZentCloud.Common.JSONHelper.ObjectToJson(stateInfo)); //using (StreamWriter sw = new StreamWriter(@"D:\debug.txt", true, Encoding.UTF8)) //{ // sw.WriteLine(string.Format("{0} oauthUrl:{1}", DateTime.Now.ToString(), oauthUrl)); //} //访问授权链接 application.Response.Redirect(oauthUrl); #endregion /* * 判断阶段: * * (判断是否需拦截(CallBack回来,结尾带上标签#WxCallBack)----该方式不成立,如果转发分享这个链接到朋友圈之类的就不行了) * 获取用户名,获取Session中存储的CurrOpenID及UserID * 判断当前用户是否已进行微信认证,只有微信认证过的用户才允许使用网页授权 * 判断Session,是否已有CurrOpenID,判断新的用户名是否等于旧的用户名:如果已有CurrOpenID但是新的用户名跟旧的用户名不一致,则重新授权获取当前的OpenID * (这样判断解决问题:比如有两张页面,第一张页面是张三发的报名,第二张页面是李四发的报名,而openID在张三和李四这边都不一样) * * 判断是否符合拦截条件 * * 最后不管符合不符合拦截条件,如果UserID存在有并是数据库用户,都存储用户ID * * -------------------------------------- * * 开始授权处理阶段: * * 获取配置的高级接口参数 * 构造CallBackUrl * 构造返回参数:目前传递Path(当前路径),UserID * 构造授权链接 * 访问授权链接 * * --------------------------------------- * CallBack处理阶段: * 接收参数 code,Path,UserId,CurrOpenId * 构造授权API * 获取OpenID * 构造目标链接:Path + UserID * 存储当前微信OpenID到Session * 访问最终目标链接(已取到CurrOpenID) * * 2013.12.06修改逻辑:自动判断授权模式 * callback回来后,根据openId查询获取是不是会员,如果不是会员,则重新返回授权用userInfo方式 * 注册会员那边自动添加拉取到的微信会员信息 * */ }