public FapOnlineUser AddOnlineUser(FapOnlineUser onlineUser)
{
//开启了事务,所以原始操作要有事务
//更新之前的在线用户状态
//_dbContext.Execute($"update FapOnlineUser set OnlineState='{FapOnlineUser.CONST_LOGOUT}' where UserUid=@UserUid", new DynamicParameters(new { UserUid = onlineUser.UserUid }) { });
//insert 新在线用户
_dbContext.Insert <FapOnlineUser>(onlineUser);
return(onlineUser);
}
/// <summary>
/// 一个在线用户登出
/// </summary>
/// <param name="userID"></param>
/// <returns></returns>
public void LogoutOnlineUser(string onlineUserUid)
{
FapOnlineUser onlineUser = _dbContext.Get <FapOnlineUser>(onlineUserUid);
if (onlineUser != null)
{
onlineUser.OnlineState = FapOnlineUser.CONST_LOGOUT;
onlineUser.LogoutTime = DateTimeUtils.CurrentDateTimeStr;
_dbContext.Update <FapOnlineUser>(onlineUser);
}
}
public bool UpdateOnlineUser(string onlineUserUid, string roleUid)
{
FapOnlineUser onlineUser = _dbContext.Get <FapOnlineUser>(onlineUserUid);
if (onlineUser != null)
{
onlineUser.OnlineState = FapOnlineUser.CONST_LOGON;
onlineUser.RoleUid = roleUid;
_dbContext.Update <FapOnlineUser>(onlineUser);
}
return(true);
}
public FapOnlineUser OnlineUser(FapOnlineUser onlineUser)
{
var ou = _dbContext.QueryFirstOrDefaultWhere <FapOnlineUser>($"{nameof(FapOnlineUser.UserUid)}=@UserUid and {nameof(FapOnlineUser.RoleUid)}=@RoleUid and {nameof(FapOnlineUser.OnlineState)}='{FapOnlineUser.CONST_ONLINE}' and {nameof(FapOnlineUser.ClientIP)}=@ClientIP",
new DynamicParameters(new{ onlineUser.UserUid, onlineUser.RoleUid, onlineUser.ClientIP }));
if (ou != null)
{
_dbContext.Execute($"update {nameof(FapOnlineUser)} set {nameof(FapOnlineUser.ConnectionId)}=@ConnectionId where {nameof(FapOnlineUser.UserUid)}=@UserUid and {nameof(FapOnlineUser.RoleUid)}=@RoleUid and {nameof(FapOnlineUser.OnlineState)}='{FapOnlineUser.CONST_ONLINE}' and {nameof(FapOnlineUser.ClientIP)}=@ClientIP",
new DynamicParameters(new { onlineUser.ConnectionId, onlineUser.UserUid, onlineUser.RoleUid, onlineUser.ClientIP }));
}
else
{
_dbContext.Insert(onlineUser);
}
return(onlineUser);
}
private void RegistryOnlineUser()
{
FapOnlineUser onlineUser = new FapOnlineUser()
{
UserUid = _applicationContext.UserUid,
ClientIP = _applicationContext.ClientIpAddress,
DeptUid = _applicationContext.DeptUid,
EmpUid = _applicationContext.EmpUid,
RoleUid = _applicationContext.CurrentRoleUid,
ConnectionId = Context.ConnectionId,
LoginName = _applicationContext.UserName,
LoginTime = DateTimeUtils.CurrentDateTimeStr,
OnlineState = FapOnlineUser.CONST_ONLINE
};
_onlineUserService.OnlineUser(onlineUser);
}
public async Task <IActionResult> Logon(string username, string userpwd, string language, string returnUrl)
{
string errorMsg = string.Empty;
string currLanguage = language.IsMissing() ? "ZhCn" : language;
//管理员账号
var developer = FapPlatformConstants.Administrator;
//获取用户
FapUser loginUser = _loginService.Login(username);
Employee emp = null;
LocalRedirectResult errorResult = CheckUser();
if (errorResult != null)
{
return(errorResult);
}
var onlineUser = LoginLogging();
var claimsPrincipal = CreateClaimsPrincipal();
var authenticationProperties = CreateAuthenticationProperties();
//设置当前角色为普通员工
//_applicationContext.CurrentRoleUid =FapPlatformConstants.CommonUserRoleFid;
await HttpContext.SignInAsync(
CookieAuthenticationDefaults.AuthenticationScheme,
claimsPrincipal, authenticationProperties);
return(Redirect());
LocalRedirectResult CheckUser()
{
PasswordHasher passwordHasher = new PasswordHasher();
if (loginUser == null)
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_no_exist_user", "不存在此用户");
}
else if (loginUser.EnableState == 0)
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_forbidden_user", "该账户已被禁用");
}
else if (loginUser.IsLocked == 1)
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_lock_user", "该账户暂被锁定");
}
else if (!passwordHasher.VerifyHashedPassword(loginUser.UserPassword, userpwd))
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_password_error", "密码不正确");
//增加尝试次数,超过5次冻结
_loginService.AddTryTimes(loginUser);
}
else if (loginUser.UserIdentity.IsMissing() && loginUser.UserName != developer)
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_no_mapping_employee", "此用户没有关联人员信息");
}
else
{
if (loginUser.UserIdentity.IsMissing())
{
if (loginUser.UserName.Equals(developer))
{
emp = new Employee {
Fid = "00000000000000000000", EmpCode = "Administrator", EmpName = "Administrator"
};
}
else
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_no_find_mapping_employee", "用户关联的人员不存在");
}
}
else
{
emp = _dbContext.Get <Employee>(loginUser.UserIdentity, true);
if (emp == null)
{
errorMsg = GetOrAddPageMultiLanguageContent("login_page_no_find_mapping_employee", "用户关联的人员不存在");;
}
}
}
if (errorMsg.IsPresent())
{
string loginUrl = _configService.GetSysParamValue(LoginUrl);// FapPlatformConfig.PlatformLoginUrl;
if (loginUrl.IsMissing())
{
loginUrl = "~/";
}
return(LocalRedirect(loginUrl + "?msg=" + System.Net.WebUtility.UrlEncode(errorMsg)));
}
return(null);
}
FapOnlineUser LoginLogging()
{
//更新最近登录时间
loginUser.LastLoginTime = DateTimeUtils.CurrentDateTimeStr;
loginUser.PasswordTryTimes = 0;
_loginService.UpdateLastLoginTime(loginUser);
//添加在线用户日志
FapOnlineUser onlineUser = new FapOnlineUser()
{
Fid = UUIDUtils.Fid,
UserUid = loginUser.Fid,
ClientIP = _applicationContext.ClientIpAddress,
DeptUid = emp.DeptUid,
EmpUid = emp.Fid,
//RoleUid = currRole.Fid,
LoginName = loginUser.UserName,
LoginTime = loginUser.LastLoginTime,
OnlineState = FapOnlineUser.CONST_LOGON
};
_onlineUserService.AddOnlineUser(onlineUser);
return(onlineUser);
}
ClaimsPrincipal CreateClaimsPrincipal()
{
//初始化身份卡片
var claims = new List <Claim>
{
new Claim(ClaimTypes.Name, loginUser.UserName), //用户名
new Claim(ClaimTypes.NameIdentifier, loginUser.Fid), //用户Fid
new Claim(ClaimTypes.UserData, loginUser.UserIdentity), //员工Fid
new Claim(ClaimTypes.Surname, emp.EmpName), //员工姓名
new Claim(ClaimTypes.PrimarySid, emp.DeptUid ?? "-"), //员工部门
new Claim(ClaimTypes.PrimaryGroupSid, emp.DeptCode ?? ""), //部门编码
new Claim(ClaimTypes.System, emp.DeptUidMC ?? ""), //部门名称
new Claim(ClaimTypes.DenyOnlyPrimaryGroupSid, emp.GroupUid ?? ""), //集团
new Claim(ClaimTypes.DenyOnlyPrimarySid, emp.OrgUid ?? ""), //组织
new Claim(ClaimTypes.Sid, currLanguage), //语言
new Claim(ClaimTypes.Actor, emp.EmpPhoto), //用户图像
new Claim(ClaimTypes.Role, FapPlatformConstants.CommonUserRoleFid) //角色普通用户
};
//var userRoles = _loginService.GetUserRoles(loginUser.Fid);
//foreach (var role in userRoles)
//{
// claims.Add(new Claim(ClaimTypes.Role, role.Fid));
//}
//组装身份
var claimsIdentity = new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);
return(new ClaimsPrincipal(claimsIdentity));
}
AuthenticationProperties CreateAuthenticationProperties()
{
return(new AuthenticationProperties
{
//AllowRefresh = <bool>,
// Refreshing the authentication session should be allowed.
//ExpiresUtc = DateTimeOffset.UtcNow.AddMinutes(1),
// The time at which the authentication ticket expires. A
// value set here overrides the ExpireTimeSpan option of
// CookieAuthenticationOptions set with AddCookie.
IsPersistent = true,
// Whether the authentication session is persisted across
// multiple requests. Required when setting the
// ExpireTimeSpan option of CookieAuthenticationOptions
// set with AddCookie. Also required when setting
// ExpiresUtc.
//IssuedUtc = <DateTimeOffset>,
// The time at which the authentication ticket was issued.
//RedirectUri = <string>
// The full path or absolute URI to be used as an http
// redirect response value.
});
}
LocalRedirectResult Redirect()
{
if (returnUrl.IsMissing())
{
if (userpwd == _configService.GetSysParamValue("employee.user.password"))
{
//等于默认密码需要跳转到修改密码页
return(LocalRedirect("~/Home/MainFrame#Home/ResetPassword/1"));
}
else
{
return(LocalRedirect(_configService.GetSysParamValue(HomeUrl)));
}
}
else
{
return(LocalRedirect(returnUrl));
}
}
}
