fix

3ffb0f37 · qwmqiuwenmin · d6ccd374 · 3ffb0f37
Commit 3ffb0f37 authored Jun 04, 2020 by qwmqiuwenmin
Hide whitespace changes
Inline Side-by-side

Showing with 42 additions and 0 deletions

LoginController.java ...com/gic/haoban/manage/web/controller/LoginController.java +42 -0

No files found.
--- a/haoban-manage3-web/src/main/java/com/gic/haoban/manage/web/controller/LoginController.java
+++ b/haoban-manage3-web/src/main/java/com/gic/haoban/manage/web/controller/LoginController.java
@@ -4,13 +4,16 @@ import cn.hutool.crypto.SecureUtil;
 import cn.hutool.crypto.symmetric.AES;
 import com.alibaba.dubbo.common.URL;
 import com.alibaba.fastjson.JSON;
+import com.alibaba.fastjson.JSONArray;
 import com.alibaba.fastjson.JSONObject;
 import com.gic.commons.util.ToolUtil;
 import com.gic.haoban.common.utils.HaobanResponse;
 import com.gic.haoban.manage.api.dto.EnterpriseDetailDTO;
 import com.gic.haoban.manage.api.dto.StaffDTO;
+import com.gic.haoban.manage.api.dto.WxApplicationDTO;
 import com.gic.haoban.manage.api.dto.WxEnterpriseDTO;
 import com.gic.haoban.manage.api.service.StaffApiService;
+import com.gic.haoban.manage.api.service.WxApplicationApiService;
 import com.gic.haoban.manage.api.service.WxEnterpriseApiService;
 import com.gic.haoban.manage.api.service.WxEnterpriseRelatedApiService;
 import com.gic.haoban.manage.web.anno.IgnoreLogin;
@@ -21,6 +24,8 @@ import com.gic.haoban.manage.web.vo.LoginVO;
 import com.gic.redis.data.util.RedisUtil;
 import com.gic.wechat.api.dto.qywx.UserDTO;
 import com.gic.wechat.api.service.qywx.QywxCorpApiService;
+import com.gic.wechat.api.service.qywx.QywxSuiteApiService;
+
 import org.apache.commons.lang3.StringUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -35,6 +40,8 @@ import javax.servlet.http.HttpServletResponse;
 import java.io.IOException;
 import java.io.UnsupportedEncodingException;
 import java.net.URLEncoder;
+import java.util.ArrayList;
+import java.util.List;


 @RestController
@@ -56,6 +63,12 @@ public class LoginController extends WebBaseController{
 	@Autowired
 	private WxEnterpriseRelatedApiService wxEnterpriseRelatedApiService;
 	
+	@Autowired
+	private QywxSuiteApiService qywxSuiteApiService;
+	
+	@Autowired
+	private WxApplicationApiService wxApplicationApiService;
+	
 	
 	@Autowired
 	private Config config;
@@ -201,6 +214,35 @@ public class LoginController extends WebBaseController{
 			ModelAndView model = new ModelAndView(new RedirectView("/haoban-3/#/gic-error", false,false));
 			return model;
 		}
+		String wxEnterpriseId = detailDTO.getWxEnterpriseId();
+		WxApplicationDTO application = wxApplicationApiService.selectByWxEnterpriseIdAndApplicationType(wxEnterpriseId, 2);
+		if (null == application) {
+			logger.info("登录企业应用 没授权!{}");
+			ModelAndView model = new ModelAndView(new RedirectView("/haoban-3/#/gic-error", false,false));
+			return model;
+		}
+		WxEnterpriseDTO enterprise = wxEnterpriseApiService.getOne(wxEnterpriseId);
+		if (null == enterprise) {
+			logger.info("登录失败，不存在对应企业:{}",o);
+			ModelAndView model = new ModelAndView(new RedirectView("/haoban-3/#/gic-error", false,false));
+			return model;
+		}
+		//获取管理员列表
+		String adminList = qywxSuiteApiService.getAdminList(enterprise.getCorpid(), application.getSiteId(), Integer.parseInt(application.getAgentId()));
+		List<String> userIds = new ArrayList<String>();
+		if(StringUtils.isNotBlank(adminList)){
+			JSONArray jsonArr = JSON.parseArray(adminList);
+			for (Object object : jsonArr) {
+				JSONObject json = JSON.parseObject(JSON.toJSONString(object));
+				userIds.add(json.getString("userid"));
+			}
+		}
+		
+		if(!userIds.contains(staff.getWxUserId())){
+			logger.info("登录失败，当前用户不是管理员:{}",JSON.toJSONString(userIds));
+			ModelAndView model = new ModelAndView(new RedirectView("/haoban-3/#/gic-error", false,false));
+			return model;
+		}
 //		StaffDTO staff = staffApiService.selectById("1");
 		LoginVO loginVO = new LoginVO();
 		loginVO.setWxEnterpriseId(detailDTO.getWxEnterpriseId());