UserController.py 150 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008300930103011301230133014301530163017301830193020302130223023302430253026302730283029303030313032303330343035303630373038303930403041304230433044304530463047304830493050305130523053305430553056305730583059306030613062306330643065306630673068306930703071307230733074307530763077307830793080308130823083308430853086308730883089309030913092309330943095309630973098309931003101310231033104310531063107310831093110311131123113311431153116311731183119312031213122312331243125312631273128312931303131313231333134313531363137313831393140314131423143314431453146314731483149315031513152315331543155315631573158315931603161316231633164316531663167316831693170317131723173317431753176317731783179318031813182318331843185318631873188318931903191319231933194319531963197319831993200320132023203320432053206320732083209321032113212321332143215321632173218321932203221322232233224322532263227322832293230323132323233323432353236323732383239324032413242324332443245324632473248324932503251325232533254325532563257325832593260326132623263326432653266326732683269327032713272327332743275327632773278327932803281328232833284328532863287328832893290329132923293329432953296329732983299330033013302330333043305330633073308330933103311331233133314331533163317331833193320332133223323332433253326332733283329333033313332333333343335333633373338333933403341334233433344334533463347334833493350335133523353335433553356335733583359336033613362336333643365336633673368336933703371337233733374337533763377337833793380338133823383338433853386338733883389339033913392339333943395339633973398339934003401340234033404340534063407340834093410341134123413341434153416341734183419342034213422342334243425342634273428342934303431343234333434343534363437343834393440344134423443344434453446344734483449345034513452345334543455345634573458345934603461346234633464346534663467346834693470347134723473347434753476347734783479348034813482348334843485348634873488348934903491349234933494349534963497349834993500350135023503350435053506350735083509351035113512351335143515351635173518351935203521352235233524352535263527352835293530353135323533353435353536353735383539354035413542354335443545354635473548354935503551355235533554355535563557355835593560356135623563356435653566356735683569357035713572357335743575
  1. #!/usr/bin/env python3
  2. # -*- coding: utf-8 -*-
  3. """
  4. @Copyright (C) ansjer cop Video Technology Co.,Ltd.All rights reserved.
  5. @AUTHOR: ASJRD018
  6. @NAME: AnsjerFormal
  7. @software: PyCharm
  8. @DATE: 2018/9/11 15:08
  9. @Version: python3.6
  10. @MODIFY DECORD:ansjer dev
  11. @file: UserController.py
  12. @Contact: chanjunkai@163.com
  13. """
  14. import datetime
  15. import traceback
  16. import time
  17. import jwt
  18. import simplejson
  19. import simplejson as json
  20. import requests
  21. from django.contrib.auth.hashers import make_password, check_password # 对密码加密模块
  22. from django.db.models import Q
  23. from django.http import HttpResponseRedirect
  24. from django.utils.decorators import method_decorator
  25. from django.utils.timezone import utc
  26. from django.views.decorators.csrf import csrf_exempt
  27. from django.views.generic import TemplateView
  28. from jwt.algorithms import RSAAlgorithm
  29. from ratelimit.decorators import ratelimit
  30. from Ansjer.config import AuthCode_Expire, SERVER_DOMAIN, APNS_CONFIG, JPUSH_CONFIG, FCM_CONFIG, TUTK_PUSH_DOMAIN
  31. from Controller.CheckUserData import DataValid, date_handler, RandomStr
  32. from Model.models import Device_User, Role, UidPushModel, UserOauth2Model, UserExModel, Device_Info, UidSetModel, \
  33. UserAppFrequencyModel
  34. from Object.AWS.SesClassObject import SesClassObject
  35. from Object.AliSmsObject import AliSmsObject
  36. from Object.RedisObject import RedisObject
  37. from Object.ResponseObject import ResponseObject
  38. from Object.TokenObject import TokenObject
  39. from Service.CommonService import CommonService
  40. from Service.ModelService import ModelService
  41. from Service.TemplateService import TemplateService
  42. from django.views.generic import View
  43. import base64
  44. import random
  45. from io import BytesIO
  46. from PIL import Image, ImageDraw, ImageFont
  47. from django.shortcuts import HttpResponse
  48. from Ansjer.config import BASE_DIR
  49. # 获取验证码
  50. class authCodeView(TemplateView):
  51. @method_decorator(csrf_exempt)
  52. def dispatch(self, *args, **kwargs):
  53. # testtest11111111111111
  54. return super(authCodeView, self).dispatch(*args, **kwargs)
  55. @ratelimit(key='ip', rate='2/m')
  56. def post(self, request, *args, **kwargs):
  57. request.encoding = 'utf-8'
  58. lang = request.POST.get('language', None)
  59. response = ResponseObject(lang)
  60. was_limited = getattr(request, 'limited', False)
  61. if was_limited is True:
  62. return response.json(5)
  63. username = request.POST.get('userName', None)
  64. useremail = request.POST.get('userEmail', None)
  65. return self.ValidationError(username, useremail, response)
  66. # @ratelimit(key='ip', rate='2/m')
  67. def get(self, request, *args, **kwargs):
  68. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  69. request.encoding = 'utf-8'
  70. lang = request.GET.get('language', None)
  71. response = ResponseObject(lang)
  72. was_limited = getattr(request, 'limited', False)
  73. if was_limited is True:
  74. return response.json(5)
  75. username = request.GET.get('userName', None)
  76. email = request.GET.get('userEmail', None)
  77. return self.ValidationError(username, email, response)
  78. def ValidationError(self, username, email, response):
  79. if username:
  80. username = username.strip()
  81. return self.phoneCode(username, response)
  82. elif email:
  83. email = email.strip()
  84. return self.emailCode(email, response)
  85. else:
  86. return response.json(800)
  87. def phoneCode(self, phone, response):
  88. dataValid = DataValid()
  89. if dataValid.mobile_validate(phone):
  90. reds = RedisObject()
  91. identifyingCode = reds.get_data(key=phone + '_identifyingCode')
  92. if identifyingCode is False:
  93. user_qs = Device_User.objects.filter(username=phone)
  94. if user_qs.exists():
  95. return response.json(101)
  96. else:
  97. identifyingCode = RandomStr(6, True)
  98. if reds.set_data(key=phone + '_identifyingCode', val=identifyingCode, expire=600):
  99. return response.json(0, {'identifyingCode': identifyingCode})
  100. else:
  101. return response.json(10, '生成缓存系统错误')
  102. else:
  103. return response.json(0, {'identifyingCode': identifyingCode})
  104. else:
  105. return response.json(107)
  106. def emailCode(self, email, response):
  107. dataValid = DataValid()
  108. if dataValid.email_validate(email):
  109. reds = RedisObject()
  110. identifyingCode = reds.get_data(key=email + '_identifyingCode')
  111. if identifyingCode is False:
  112. user_qs = Device_User.objects.filter(username=email)
  113. email_qs = Device_User.objects.filter(userEmail=email)
  114. if user_qs.exists():
  115. return response.json(103)
  116. elif email_qs.exists():
  117. return response.json(103)
  118. else:
  119. identifyingCode = RandomStr(6, True)
  120. if reds.set_data(key=email + '_identifyingCode', val=identifyingCode, expire=AuthCode_Expire):
  121. send_data = TemplateService.email_message(type='register_code', language=response.lang)
  122. ses = SesClassObject()
  123. send_res = ses.send_email(
  124. send_address_list=[email],
  125. subject=send_data['title'],
  126. body=send_data['body'].replace("{username}", email).replace("{captcha}",
  127. str(identifyingCode))
  128. )
  129. if send_res:
  130. return response.json(0, {'identifyingCode': identifyingCode})
  131. else:
  132. reds.del_data(key=email + '_identifyingCode')
  133. return response.json(44)
  134. else:
  135. return response.json(10, '生成缓存系统错误')
  136. else:
  137. return response.json(89, {'identifyingCode': identifyingCode})
  138. else:
  139. return response.json(107)
  140. # 验证码注册
  141. class registerView(TemplateView):
  142. @method_decorator(csrf_exempt)
  143. def dispatch(self, *args, **kwargs):
  144. return super(registerView, self).dispatch(*args, **kwargs)
  145. def post(self, request, *args, **kwargs):
  146. request.encoding = 'utf-8'
  147. request_dict = request.POST
  148. return self.validates(request_dict)
  149. def get(self, request, *args, **kwargs):
  150. request.encoding = 'utf-8'
  151. request_dict = request.GET
  152. return self.validates(request_dict)
  153. def validates(self, request_dict):
  154. username = request_dict.get('userName', None)
  155. userEmail = request_dict.get('userEmail', None)
  156. password = request_dict.get('userPwd', None)
  157. authCode = request_dict.get('identifyingCode', None)
  158. language = request_dict.get('language', None)
  159. unique = request_dict.get('unique', None)
  160. self.delete_local_account(unique)
  161. response = ResponseObject(language)
  162. if username and password and authCode:
  163. # 过滤空格
  164. username = username.strip()
  165. if userEmail:
  166. userEmail = userEmail.strip()
  167. return self.register(username, userEmail, password, authCode, response)
  168. else:
  169. return response.json(800)
  170. def register(self, username, userEmail, password, authCode, response):
  171. dataValid = DataValid()
  172. reds = RedisObject()
  173. identifyingCode = reds.get_data(key=username + '_identifyingCode')
  174. if identifyingCode is False:
  175. if userEmail:
  176. identifyingCode = reds.get_data(key=userEmail + '_identifyingCode')
  177. if identifyingCode is False:
  178. return response.json(120)
  179. else:
  180. username = userEmail
  181. else:
  182. return response.json(120)
  183. if authCode != identifyingCode:
  184. return response.json(121)
  185. if dataValid.password_validate(password):
  186. if dataValid.email_validate(username):
  187. if userEmail:
  188. print(userEmail)
  189. emailValid = Device_User.objects.filter(userEmail=userEmail)
  190. if emailValid.exists():
  191. return response.json(103)
  192. else:
  193. userEmail = username
  194. if username:
  195. nameValid = Device_User.objects.filter(username=username)
  196. if nameValid.exists():
  197. return response.json(101)
  198. try:
  199. create_data = {
  200. "username": username,
  201. "NickName": username,
  202. "userEmail": userEmail,
  203. "password": make_password(password),
  204. "userID": CommonService.getUserID(μs=False, setOTAID=True),
  205. "is_active": True,
  206. "user_isValid": True,
  207. }
  208. users = Device_User.objects.create(**create_data)
  209. except Exception as e:
  210. errorInfo = traceback.format_exc()
  211. print(errorInfo)
  212. return response.json(424, repr(e))
  213. else:
  214. if reds.del_data(key=username + '_identifyingCode'):
  215. return response.json(0, {
  216. "user": {
  217. "userID": users.userID,
  218. "username": users.username,
  219. "userEmail": users.userEmail,
  220. "NickName": users.NickName,
  221. "userIconUrl": str(users.userIconUrl),
  222. "is_superuser": users.is_superuser,
  223. "is_active": users.is_active,
  224. "data_joined": date_handler(users.data_joined),
  225. "last_login": date_handler(users.last_login),
  226. }
  227. })
  228. else:
  229. return response.json(10, '删除缓存验证码错误')
  230. elif dataValid.mobile_validate(username):
  231. nameValid = Device_User.objects.filter(username=username)
  232. if nameValid:
  233. return response.json(101)
  234. try:
  235. create_data = {
  236. "username": username,
  237. "NickName": username,
  238. "userEmail": userEmail,
  239. "password": make_password(password),
  240. "userID": CommonService.getUserID(μs=False, setOTAID=True),
  241. "is_active": True,
  242. "user_isValid": True,
  243. }
  244. users = Device_User.objects.create(**create_data)
  245. except Exception as e:
  246. errorInfo = traceback.format_exc()
  247. print(errorInfo)
  248. return response.json(424, repr(e))
  249. else:
  250. if reds.del_data(key=username + '_identifyingCode'):
  251. return response.json(0, {
  252. "user": {
  253. "userID": users.userID,
  254. "username": users.username,
  255. "userEmail": users.userEmail,
  256. "NickName": users.NickName,
  257. "userIconUrl": str(users.userIconUrl),
  258. "is_superuser": users.is_superuser,
  259. "is_active": users.is_active,
  260. "data_joined": date_handler(users.data_joined),
  261. "last_login": date_handler(users.last_login),
  262. }
  263. })
  264. else:
  265. return response.json(10, '删除缓存验证码错误')
  266. else:
  267. return response.json(107)
  268. else:
  269. return response.json(109)
  270. def delete_local_account(self, username):
  271. user_qs = Device_User.objects.filter(username=username)
  272. print(user_qs)
  273. if user_qs.exists():
  274. user: Device_User = user_qs[0]
  275. if user.is_local:
  276. user.delete()
  277. Device_Info.objects.filter(userID__userID=user.userID).delete()
  278. # 登出
  279. class LogoutView(TemplateView):
  280. @method_decorator(csrf_exempt)
  281. def dispatch(self, *args, **kwargs):
  282. return super(LogoutView, self).dispatch(*args, **kwargs)
  283. def post(self, request, *args, **kwargs):
  284. request.encoding = 'utf-8'
  285. request_dict = request.POST
  286. return self.Logout(request_dict)
  287. def get(self, request, *args, **kwargs):
  288. request.encoding = 'utf-8'
  289. request_dict = request.GET
  290. return self.Logout(request_dict)
  291. def Logout(self, request_dict):
  292. response = ResponseObject()
  293. token = request_dict.get('token')
  294. tko = TokenObject(token)
  295. if tko.code == 0:
  296. Device_User.objects.filter(userID=tko.userID).update(online=False)
  297. redisObj = RedisObject(db=3)
  298. redisObj.del_data(key=tko.userID)
  299. m_code = request_dict.get('m_code', None)
  300. if m_code:
  301. userID = tko.userID
  302. try:
  303. UidPushModel.objects.filter(userID_id=userID, m_code=m_code).delete()
  304. except Exception as e:
  305. pass
  306. else:
  307. pass
  308. return response.json(0)
  309. else:
  310. return response.json(tko.code)
  311. # 修改密码
  312. class ChangePwdView(TemplateView):
  313. @method_decorator(csrf_exempt)
  314. def dispatch(self, *args, **kwargs):
  315. return super(ChangePwdView, self).dispatch(*args, **kwargs)
  316. def post(self, request, *args, **kwargs):
  317. request.encoding = 'utf-8'
  318. request_dict = request.POST
  319. return self.validates(request_dict)
  320. def get(self, request, *args, **kwargs):
  321. request.encoding = 'utf-8'
  322. request_dict = request.GET
  323. return self.validates(request_dict)
  324. def validates(self, request_dict):
  325. token = request_dict.get('token', None)
  326. oldPwd = request_dict.get('oldPwd', None)
  327. newPwd = request_dict.get('newPwd', None)
  328. response = ResponseObject()
  329. if oldPwd is None and newPwd is None:
  330. return response.json(800)
  331. tko = TokenObject(token)
  332. response.lang = tko.lang
  333. if tko.code != 0:
  334. return response.json(tko.code)
  335. return self.updatePwd(tko.userID, oldPwd, newPwd, response)
  336. def updatePwd(self, userID, oldPwd, newPwd, response):
  337. user_qs = Device_User.objects.filter(userID=userID)
  338. if not user_qs.exists():
  339. return response.json(104)
  340. c_p = check_password(oldPwd, user_qs[0].password)
  341. # 密码是否正确
  342. if not c_p:
  343. return response.json(111)
  344. update = user_qs.update(password=make_password(newPwd))
  345. if update:
  346. return response.json(0)
  347. else:
  348. return response.json(177)
  349. # 修改密码v3
  350. class v3ChangePwdView(TemplateView):
  351. @method_decorator(csrf_exempt)
  352. def dispatch(self, *args, **kwargs):
  353. return super(v3ChangePwdView, self).dispatch(*args, **kwargs)
  354. def post(self, request, *args, **kwargs):
  355. request.encoding = 'utf-8'
  356. request_dict = request.POST
  357. return self.validates(request_dict)
  358. def get(self, request, *args, **kwargs):
  359. request.encoding = 'utf-8'
  360. request_dict = request.GET
  361. return self.validates(request_dict)
  362. def validates(self, request_dict):
  363. token = request_dict.get('token', None)
  364. oldPwd = request_dict.get('oldPwd', None)
  365. newPwd = request_dict.get('newPwd', None)
  366. response = ResponseObject()
  367. # 解密
  368. try:
  369. for i in range(1, 4):
  370. if i == 1:
  371. oldPwd = base64.b64decode(oldPwd)
  372. oldPwd = oldPwd.decode('utf-8')
  373. oldPwd = oldPwd[1:-1]
  374. if i == 2:
  375. oldPwd = base64.b64decode(oldPwd)
  376. oldPwd = oldPwd.decode('utf-8')
  377. oldPwd = oldPwd[2:-2]
  378. if i == 3:
  379. oldPwd = base64.b64decode(oldPwd)
  380. oldPwd = oldPwd.decode('utf-8')
  381. oldPwd = oldPwd[3:-3]
  382. for i in range(1, 4):
  383. if i == 1:
  384. newPwd = base64.b64decode(newPwd)
  385. newPwd = newPwd.decode('utf-8')
  386. newPwd = newPwd[1:-1]
  387. if i == 2:
  388. newPwd = base64.b64decode(newPwd)
  389. newPwd = newPwd.decode('utf-8')
  390. newPwd = newPwd[2:-2]
  391. if i == 3:
  392. newPwd = base64.b64decode(newPwd)
  393. newPwd = newPwd.decode('utf-8')
  394. newPwd = newPwd[3:-3]
  395. except Exception as e:
  396. return response.json(111)
  397. else:
  398. if oldPwd is None and newPwd is None:
  399. return response.json(800)
  400. tko = TokenObject(token)
  401. response.lang = tko.lang
  402. if tko.code != 0:
  403. return response.json(tko.code)
  404. return self.updatePwd(tko.userID, oldPwd, newPwd, response)
  405. def updatePwd(self, userID, oldPwd, newPwd, response):
  406. user_qs = Device_User.objects.filter(userID=userID)
  407. if not user_qs.exists():
  408. return response.json(104)
  409. c_p = check_password(oldPwd, user_qs[0].password)
  410. # 密码是否正确
  411. if not c_p:
  412. return response.json(111)
  413. update = user_qs.update(password=make_password(newPwd))
  414. if update:
  415. return response.json(0)
  416. else:
  417. return response.json(177)
  418. class ForgetPwdView(TemplateView):
  419. '''
  420. 忘记密码
  421. '''
  422. @method_decorator(csrf_exempt)
  423. def dispatch(self, *args, **kwargs):
  424. return super(ForgetPwdView, self).dispatch(*args, **kwargs)
  425. @ratelimit(key='ip', rate='1/m')
  426. def get(self, request, *args, **kwargs):
  427. request.encoding = 'utf-8'
  428. response = ResponseObject()
  429. was_limited = getattr(request, 'limited', False)
  430. if was_limited is True:
  431. return response.json(5)
  432. userName = request.GET.get('userName', None)
  433. return self.ValidationError(userName, response)
  434. @ratelimit(key='ip', rate='1/m')
  435. def post(self, request):
  436. request.encoding = 'utf-8'
  437. userName = request.POST.get('userName', None)
  438. response = ResponseObject()
  439. was_limited = getattr(request, 'limited', False)
  440. if was_limited is True:
  441. return response.json(5)
  442. return self.ValidationError(userName, response)
  443. def ValidationError(self, userName, response):
  444. # return response.json(475)
  445. if userName != None:
  446. userName = userName.strip()
  447. return self.ForgetPwd(userName, response)
  448. else:
  449. return response.json(800)
  450. def ForgetPwd(self, userName, response):
  451. dataValid = DataValid()
  452. if dataValid.mobile_validate(userName):
  453. User = Device_User.objects.filter(username=userName)
  454. elif dataValid.email_validate(userName):
  455. User = Device_User.objects.filter(username=userName)
  456. if not User.exists():
  457. User = Device_User.objects.filter(userEmail=userName)
  458. else:
  459. return response.json(104)
  460. if User:
  461. email = User[0].userEmail
  462. userID = User[0].userID
  463. if email:
  464. redisObj = RedisObject()
  465. reset_pwd = redisObj.get_data(key=userID + '_email_reset_pwd')
  466. if reset_pwd is False:
  467. tko = TokenObject()
  468. rest = tko.generate(data={'userID': userID, 'user': userName})
  469. token = rest['access_token']
  470. reset_pwd = CommonService.RandomStr(6)
  471. send_data = TemplateService.email_message(type='forget', language='en')
  472. reset_link = '{server_host}account/email-re-pwd?token={token}'.format(
  473. server_host=SERVER_DOMAIN, token=token)
  474. send_body = send_data['body'].format(username=email, reset_pwd=reset_pwd, reset_link=reset_link)
  475. ses = SesClassObject()
  476. send_res = ses.send_email(send_address_list=[email], subject=send_data['title'], body=send_body)
  477. if send_res is True:
  478. if redisObj.set_data(key=userID + '_email_reset_pwd', val=reset_pwd, expire=3600):
  479. return response.json(0)
  480. else:
  481. return response.json(10, '存储验证失败')
  482. else:
  483. return response.json(89)
  484. else:
  485. return response.json(103)
  486. else:
  487. return response.json(104)
  488. class EmailResetPwdView(TemplateView):
  489. @method_decorator(csrf_exempt)
  490. def dispatch(self, *args, **kwargs):
  491. return super(EmailResetPwdView, self).dispatch(*args, **kwargs)
  492. # 查询
  493. def get(self, request, *args, **kwargs):
  494. response = ResponseObject()
  495. request_dict = request.GET
  496. return self.validate(request_dict, response, *args, **kwargs)
  497. # 认证登录
  498. def post(self, request, *args, **kwargs):
  499. response = ResponseObject()
  500. try:
  501. print(request.body.decode("utf-8"))
  502. json_data = json.loads(request.body.decode("utf-8"))
  503. except Exception as e:
  504. return response.json(10, repr(e))
  505. else:
  506. request_dict = json_data
  507. return self.validate(request_dict, response, *args, **kwargs)
  508. def validate(self, request_dict, response, *args, **kwargs):
  509. token = request_dict.get('token', None)
  510. tko = TokenObject(token)
  511. if tko.code == 0:
  512. redisObj = RedisObject()
  513. userID = tko.userID
  514. reset_pwd = redisObj.get_data(key=userID + '_email_reset_pwd')
  515. if reset_pwd is not False:
  516. user_qs = Device_User.objects.filter(userID=userID)
  517. if user_qs.exists():
  518. redisObj.del_data(key=userID + '_email_reset_pwd')
  519. is_update = user_qs.update(password=make_password(reset_pwd))
  520. if is_update:
  521. return HttpResponseRedirect(
  522. "http://www.dvema.com/web/html/paw_update_success.html?code=" + reset_pwd)
  523. else:
  524. return response.json(10)
  525. else:
  526. return response.json(104)
  527. else:
  528. return HttpResponseRedirect('http://www.dvema.com/web/html/paw_update_unsuccessful.html?lang=en')
  529. else:
  530. return HttpResponseRedirect('http://www.dvema.com/web/html/paw_update_unsuccessful.html?lang=en')
  531. class refreshTokenView(TemplateView):
  532. @method_decorator(csrf_exempt)
  533. def dispatch(self, *args, **kwargs):
  534. return super(refreshTokenView, self).dispatch(*args, **kwargs)
  535. def post(self, request, *args, **kwargs):
  536. request.encoding = 'utf-8'
  537. content_type = request.META.get('CONTENT_TYPE', None)
  538. if content_type == 'application/json':
  539. request_dict = json.loads(request.body.decode('utf-8'))
  540. else:
  541. request_dict = request.POST
  542. return self.validation(request_dict)
  543. def get(self, request, *args, **kwargs):
  544. request.encoding = 'utf-8'
  545. request_dict = request.GET
  546. return self.validation(request_dict)
  547. def validation(self, request_dict):
  548. token = request_dict.get('token', None)
  549. lang = request_dict.get('lang', None)
  550. language = request_dict.get('language', None)
  551. if lang is None:
  552. lang = language
  553. response = ResponseObject(lang)
  554. if token is not None:
  555. tko = TokenObject(token)
  556. tko.lang = lang
  557. res = tko.refresh()
  558. userID = tko.userID
  559. if tko.code == 0:
  560. # 更新用户扩展信息语言
  561. try:
  562. user_ex_qs = UserExModel.objects.filter(userID_id=userID)
  563. if user_ex_qs.exists():
  564. nowTime = int(time.time())
  565. update_dict = {
  566. 'updTime': nowTime,
  567. 'region': lang
  568. }
  569. user_ex_qs.update(**update_dict)
  570. except Exception as e:
  571. pass
  572. # # #
  573. return response.json(0, res)
  574. else:
  575. return response.json(tko.code)
  576. else:
  577. return response.json(444, 'token')
  578. # 获取验证码
  579. class v2authCodeView(TemplateView):
  580. @method_decorator(csrf_exempt)
  581. def dispatch(self, *args, **kwargs):
  582. return super(v2authCodeView, self).dispatch(*args, **kwargs)
  583. @ratelimit(key='ip', rate='2/m')
  584. def post(self, request, *args, **kwargs):
  585. request.encoding = 'utf-8'
  586. lang = request.POST.get('lang', None)
  587. if not lang:
  588. lang = request.POST.get('language', None)
  589. response = ResponseObject(lang)
  590. request_dict = request.POST
  591. phone = request_dict.get('phone', None)
  592. if phone is not None:
  593. was_limited = getattr(request, 'limited', False)
  594. if was_limited is True:
  595. return response.json(5)
  596. return self.ValidationError(request_dict, response)
  597. @ratelimit(key='ip', rate='2/m')
  598. def get(self, request, *args, **kwargs):
  599. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  600. request.encoding = 'utf-8'
  601. lang = request.GET.get('lang', None)
  602. if not lang:
  603. lang = request.GET.get('language', None)
  604. response = ResponseObject(lang)
  605. was_limited = getattr(request, 'limited', False)
  606. if was_limited is True:
  607. return response.json(5)
  608. request_dict = request.GET
  609. return self.ValidationError(request_dict, response)
  610. def ValidationError(self, request_dict, response):
  611. email = request_dict.get('email', None)
  612. phone = request_dict.get('phone', None)
  613. country_code = request_dict.get('country_code', None)
  614. sign_name = request_dict.get('sign_name', None)
  615. if email is not None:
  616. email = email.strip()
  617. # 阿里云的发送邮箱的调用方法
  618. return self.aliyun_emailCode(email, response)
  619. # return self.emailCode(email, response)
  620. elif phone is not None:
  621. phone = phone.strip()
  622. if country_code is None:
  623. return self.phoneCode(phone, response, sign_name)
  624. else:
  625. country_code = str(country_code.strip())
  626. return self.phoneCodeV2(country_code, phone, response, sign_name)
  627. else:
  628. return response.json(444)
  629. def emailCode(self, email, response):
  630. dataValid = DataValid()
  631. # 邮箱匹配
  632. if dataValid.email_validate(email) is False:
  633. return response.json(107)
  634. reds = RedisObject()
  635. identifyingCode = reds.get_data(key=email + '_identifyingCode')
  636. # 是否以获取邮箱验证码
  637. if identifyingCode:
  638. return response.json(89)
  639. user_qs = Device_User.objects.filter(username=email)
  640. email_qs = Device_User.objects.filter(userEmail=email)
  641. # 邮箱用户是否已存在
  642. if user_qs.exists():
  643. return response.json(103)
  644. elif email_qs.exists():
  645. return response.json(103)
  646. # 生成随机6位数
  647. identifyingCode = RandomStr(6, True)
  648. # 设置随机数缓存生命周期
  649. send_data = TemplateService.email_message(type='register_code', language=response.lang)
  650. ses = SesClassObject()
  651. # 发送邮件
  652. send_res = ses.send_email(
  653. send_address_list=[email],
  654. subject=send_data['title'],
  655. body=send_data['body'].replace("{username}", email).replace("{captcha}",
  656. str(identifyingCode))
  657. )
  658. if send_res is not True:
  659. return response.json(44)
  660. if reds.set_data(key=email + '_identifyingCode', val=identifyingCode, expire=600) is not True:
  661. return response.json(10, 'error')
  662. return response.json(0)
  663. # return response.json(0, {'identifyingCode': identifyingCode})
  664. # 阿里云获取邮箱验证码
  665. def aliyun_emailCode(self, email, response):
  666. print('阿里云开始')
  667. dataValid = DataValid()
  668. # 邮箱匹配
  669. if dataValid.email_validate(email) is False:
  670. return response.json(107)
  671. reds = RedisObject()
  672. identifyingCode = reds.get_data(key=email + '_identifyingCode')
  673. # 是否以获取邮箱验证码
  674. if identifyingCode:
  675. return response.json(89)
  676. user_qs = Device_User.objects.filter(username=email)
  677. email_qs = Device_User.objects.filter(userEmail=email)
  678. # 邮箱用户是否已存在
  679. if user_qs.exists():
  680. return response.json(103)
  681. elif email_qs.exists():
  682. return response.json(103)
  683. # 生成随机6位数
  684. identifyingCode = RandomStr(6, True)
  685. # 设置随机数缓存生命周期
  686. send_data = TemplateService.email_message(type='register_code', language=response.lang)
  687. ses = SesClassObject()
  688. # 发送邮件
  689. send_res = ses.alyEmailCode(
  690. send_address_list=[email],
  691. subject=send_data['title'],
  692. body=send_data['body'].replace("{username}", email).replace("{captcha}", str(identifyingCode))
  693. )
  694. if send_res is not True:
  695. return response.json(44)
  696. if reds.set_data(key=email + '_identifyingCode', val=identifyingCode, expire=600) is not True:
  697. return response.json(10, 'error')
  698. return response.json(0)
  699. def phoneCode(self, phone, response, sign_name):
  700. dataValid = DataValid()
  701. if dataValid.mobile_validate(phone) is not True:
  702. return response.json(107)
  703. reds = RedisObject()
  704. reds_key = str(phone) + '_identifyingCode'
  705. identifyingCode = reds.get_data(key=reds_key)
  706. reds_key_ttl = reds.get_ttl(key=reds_key)
  707. if reds_key_ttl > 240 and identifyingCode:
  708. # if identifyingCode :
  709. return response.json(90)
  710. user_qs = Device_User.objects.filter(username=phone)
  711. phone_qs = Device_User.objects.filter(phone=phone)
  712. if user_qs.exists() or phone_qs.exists():
  713. return response.json(101)
  714. identifyingCode = RandomStr(6, True)
  715. # 发送手机验证码
  716. aliSms = AliSmsObject()
  717. if sign_name == 'zosi':
  718. sign_ms = '周视'
  719. else:
  720. sign_ms = 'Ansjer'
  721. res = aliSms.send_code_sms(phone=phone, code=identifyingCode, sign_name=sign_ms,
  722. temp_msg='SMS_151600991')
  723. print(res)
  724. if res["Code"] == "OK":
  725. if reds.set_data(key=reds_key, val=identifyingCode, expire=300) is not True:
  726. # if reds.set_data(key=phone + '_identifyingCode', val=identifyingCode, expire=60) is not True:
  727. return response.json(10, '生成缓存系统错误')
  728. return response.json(0)
  729. else:
  730. return response.json(10, res["Message"])
  731. def phoneCodeV2(self, country_code, phone, response, sign_name):
  732. dataValid = DataValid()
  733. if dataValid.mobile_validate(phone) is not True:
  734. return response.json(107)
  735. reds = RedisObject()
  736. reds_key = str(phone) + '_identifyingCode'
  737. identifyingCode = reds.get_data(key=reds_key)
  738. reds_key_ttl = reds.get_ttl(key=reds_key)
  739. if reds_key_ttl > 240 and identifyingCode:
  740. # if identifyingCode :
  741. return response.json(90)
  742. user_qs = Device_User.objects.filter(username=phone)
  743. phone_qs = Device_User.objects.filter(phone=phone)
  744. if user_qs.exists() or phone_qs.exists():
  745. return response.json(101)
  746. identifyingCode = RandomStr(6, True)
  747. # 短信签名
  748. # sign_name_dict = {
  749. # 'ansjer':'Ansjer',
  750. # 'zosi':'周视'
  751. # }
  752. sign_ms = ''
  753. if country_code == '86':
  754. # 国内短信推送模板
  755. temp_msg = 'SMS_151600991'
  756. rec_phone = phone
  757. if sign_name == 'zosi':
  758. sign_ms = '周视'
  759. else:
  760. sign_ms = 'Ansjer'
  761. else:
  762. # 国际短信推送模板
  763. temp_msg = 'SMS_172165867'
  764. rec_phone = country_code + phone
  765. sign_ms = 'Ansjer'
  766. # 发送手机验证码
  767. aliSms = AliSmsObject()
  768. res = aliSms.send_code_sms(phone=rec_phone, code=identifyingCode, sign_name=sign_ms,
  769. temp_msg=temp_msg)
  770. print(res)
  771. if res["Code"] == "OK":
  772. # if reds.set_data(key=reds_key, val=identifyingCode, expire=60) is not True:
  773. if reds.set_data(key=reds_key, val=identifyingCode, expire=300) is not True:
  774. return response.json(10, '生成缓存系统错误')
  775. return response.json(0)
  776. else:
  777. return response.json(10, res["Message"])
  778. # 验证码注册
  779. class v2registerView(TemplateView):
  780. @method_decorator(csrf_exempt)
  781. def dispatch(self, *args, **kwargs):
  782. return super(v2registerView, self).dispatch(*args, **kwargs)
  783. def post(self, request, *args, **kwargs):
  784. request.encoding = 'utf-8'
  785. request_dict = request.POST
  786. return self.validates(request_dict)
  787. def get(self, request, *args, **kwargs):
  788. request.encoding = 'utf-8'
  789. request_dict = request.GET
  790. return self.validates(request_dict)
  791. def validates(self, request_dict):
  792. phone = request_dict.get('phone', None)
  793. email = request_dict.get('email', None)
  794. password = request_dict.get('password', None)
  795. authcode = request_dict.get('authcode', None)
  796. lang = request_dict.get('lang', None)
  797. response = ResponseObject(lang)
  798. if not lang:
  799. lang = request_dict.get('language', None)
  800. if password is None:
  801. return response.json(444, 'password')
  802. if authcode is None:
  803. return response.json(444, 'identifyingCode')
  804. if phone is not None:
  805. return self.do_phone_register(phone, password, authcode, response)
  806. elif email is not None:
  807. return self.do_email_register(email, password, authcode, response)
  808. else:
  809. return response.json(444, 'phone or email')
  810. def do_phone_register(self, phone, password, authcode, response):
  811. data_valid = DataValid()
  812. if data_valid.mobile_validate(phone) is not True:
  813. return response.json(100)
  814. if data_valid.password_validate(password) is not True:
  815. return response.json(109)
  816. reds = RedisObject()
  817. identifyingCode = reds.get_data(key=phone + '_identifyingCode')
  818. # 判断验证码是否过期
  819. if identifyingCode is False:
  820. return response.json(120)
  821. # 验证码是否正确
  822. if authcode != identifyingCode:
  823. return response.json(121)
  824. phone_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  825. # 是否已存在
  826. if phone_qs.exists():
  827. return response.json(101)
  828. try:
  829. users = Device_User.objects.create(
  830. username=phone,
  831. NickName=phone,
  832. phone=phone,
  833. password=make_password(password),
  834. userID=CommonService.getUserID(μs=False, setOTAID=True),
  835. is_active=True,
  836. user_isValid=True,
  837. )
  838. except Exception as e:
  839. errorInfo = traceback.format_exc()
  840. print(errorInfo)
  841. return response.json(424, repr(e))
  842. else:
  843. if not reds.del_data(key=phone + '_identifyingCode'):
  844. return response.json(10, '删除缓存验证码错误')
  845. return self.do_login(phone_qs, response)
  846. def do_login(self, user_qs, response):
  847. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  848. user_qs.update(last_login=now_time, online=True)
  849. userID = user_qs[0].userID
  850. print('userID' + userID)
  851. tko = TokenObject()
  852. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  853. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  854. # 增加角色
  855. user_qs[0].role.add(Role.objects.get(rid=1))
  856. role_dict = ModelService.own_role(userID=userID)
  857. res['rid'] = role_dict['rid']
  858. res['roleName'] = role_dict['roleName']
  859. res['permList'] = ModelService.own_permission(userID)
  860. res['userID'] = userID
  861. # 昵称,邮箱,电话,刷新,头像
  862. userIconPath = str(user_list[0]["userIconPath"])
  863. if userIconPath and userIconPath.find('static/') != -1:
  864. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  865. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  866. else:
  867. res['userIconUrl'] = ''
  868. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  869. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  870. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  871. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  872. print(res)
  873. return response.json(0, res)
  874. def do_email_register(self, email, password, authcode, response):
  875. data_valid = DataValid()
  876. if data_valid.email_validate(email) is not True:
  877. return response.json(105)
  878. if data_valid.password_validate(password) is not True:
  879. return response.json(109)
  880. reds = RedisObject()
  881. identifyingCode = reds.get_data(key=email + '_identifyingCode')
  882. # 判断验证码是否过期
  883. if identifyingCode is False:
  884. return response.json(120)
  885. # 验证码是否正确
  886. if authcode != identifyingCode:
  887. return response.json(121)
  888. email_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
  889. # 是否已存在
  890. if email_qs.exists():
  891. return response.json(103)
  892. try:
  893. users = Device_User.objects.create(
  894. username=email,
  895. NickName=email,
  896. userEmail=email,
  897. password=make_password(password),
  898. userID=CommonService.getUserID(μs=False, setOTAID=True),
  899. is_active=True,
  900. user_isValid=True,
  901. )
  902. except Exception as e:
  903. errorInfo = traceback.format_exc()
  904. print(errorInfo)
  905. return response.json(424, repr(e))
  906. else:
  907. if not reds.del_data(key=email + '_identifyingCode'):
  908. return response.json(10, '删除缓存验证码错误')
  909. return self.do_login(email_qs, response)
  910. # 验证码注册v3
  911. class v3registerView(TemplateView):
  912. @method_decorator(csrf_exempt)
  913. def dispatch(self, *args, **kwargs):
  914. return super(v3registerView, self).dispatch(*args, **kwargs)
  915. def post(self, request, *args, **kwargs):
  916. request.encoding = 'utf-8'
  917. request_dict = request.POST
  918. return self.validates(request_dict)
  919. def get(self, request, *args, **kwargs):
  920. request.encoding = 'utf-8'
  921. request_dict = request.GET
  922. return self.validates(request_dict)
  923. def validates(self, request_dict):
  924. phone = request_dict.get('phone', None)
  925. email = request_dict.get('email', None)
  926. password = request_dict.get('password', None)
  927. authcode = request_dict.get('authcode', None)
  928. lang = request_dict.get('lang', None)
  929. unique = request_dict.get('unique', None)
  930. self.delete_local_account(unique)
  931. response = ResponseObject(lang)
  932. # 解密
  933. try:
  934. for i in range(1, 4):
  935. if i == 1:
  936. password = base64.b64decode(password)
  937. password = password.decode('utf-8')
  938. password = password[1:-1]
  939. if i == 2:
  940. password = base64.b64decode(password)
  941. password = password.decode('utf-8')
  942. password = password[2:-2]
  943. if i == 3:
  944. password = base64.b64decode(password)
  945. password = password.decode('utf-8')
  946. password = password[3:-3]
  947. print(password)
  948. except Exception as e:
  949. return response.json(111)
  950. try:
  951. for i in range(1, 4):
  952. if i == 1:
  953. authcode = base64.b64decode(authcode)
  954. authcode = authcode.decode('utf-8')
  955. authcode = authcode[1:-1]
  956. if i == 2:
  957. authcode = base64.b64decode(authcode)
  958. authcode = authcode.decode('utf-8')
  959. authcode = authcode[2:-2]
  960. if i == 3:
  961. authcode = base64.b64decode(authcode)
  962. authcode = authcode.decode('utf-8')
  963. authcode = authcode[3:-3]
  964. print(authcode)
  965. except Exception as e:
  966. return response.json(121)
  967. else:
  968. if not lang:
  969. lang = request_dict.get('language', None)
  970. if password is None:
  971. return response.json(444, 'password')
  972. if authcode is None:
  973. return response.json(444, 'identifyingCode')
  974. if phone is not None:
  975. return self.do_phone_register(phone, password, authcode, response)
  976. elif email is not None:
  977. return self.do_email_register(email, password, authcode, response)
  978. else:
  979. return response.json(444, 'phone or email')
  980. def do_phone_register(self, phone, password, authcode, response):
  981. data_valid = DataValid()
  982. if data_valid.mobile_validate(phone) is not True:
  983. return response.json(100)
  984. if data_valid.password_validate(password) is not True:
  985. return response.json(109)
  986. reds = RedisObject()
  987. identifyingCode = reds.get_data(key=phone + '_identifyingCode')
  988. # 判断验证码是否过期
  989. if identifyingCode is False:
  990. return response.json(120)
  991. # 验证码是否正确
  992. if authcode != identifyingCode:
  993. return response.json(121)
  994. phone_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  995. # 是否已存在
  996. if phone_qs.exists():
  997. return response.json(101)
  998. try:
  999. users = Device_User.objects.create(
  1000. username=phone,
  1001. NickName=phone,
  1002. phone=phone,
  1003. password=make_password(password),
  1004. userID=CommonService.getUserID(μs=False, setOTAID=True),
  1005. is_active=True,
  1006. user_isValid=True,
  1007. )
  1008. except Exception as e:
  1009. errorInfo = traceback.format_exc()
  1010. print(errorInfo)
  1011. return response.json(424, repr(e))
  1012. else:
  1013. if not reds.del_data(key=phone + '_identifyingCode'):
  1014. return response.json(10, '删除缓存验证码错误')
  1015. return self.do_login(phone_qs, response)
  1016. def do_login(self, user_qs, response):
  1017. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1018. user_qs.update(last_login=now_time, online=True)
  1019. userID = user_qs[0].userID
  1020. print('userID' + userID)
  1021. tko = TokenObject()
  1022. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  1023. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  1024. # 增加角色
  1025. user_qs[0].role.add(Role.objects.get(rid=1))
  1026. role_dict = ModelService.own_role(userID=userID)
  1027. res['rid'] = role_dict['rid']
  1028. res['roleName'] = role_dict['roleName']
  1029. res['permList'] = ModelService.own_permission(userID)
  1030. res['userID'] = userID
  1031. # 昵称,邮箱,电话,刷新,头像
  1032. userIconPath = str(user_list[0]["userIconPath"])
  1033. if userIconPath and userIconPath.find('static/') != -1:
  1034. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1035. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1036. else:
  1037. res['userIconUrl'] = ''
  1038. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  1039. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  1040. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  1041. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  1042. return response.json(0, res)
  1043. def do_email_register(self, email, password, authcode, response):
  1044. data_valid = DataValid()
  1045. if data_valid.email_validate(email) is not True:
  1046. return response.json(105)
  1047. if data_valid.password_validate(password) is not True:
  1048. return response.json(109)
  1049. reds = RedisObject()
  1050. identifyingCode = reds.get_data(key=email + '_identifyingCode')
  1051. # 判断验证码是否过期
  1052. if identifyingCode is False:
  1053. return response.json(120)
  1054. # 验证码是否正确
  1055. if authcode != identifyingCode:
  1056. return response.json(121)
  1057. email_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
  1058. # 是否已存在
  1059. if email_qs.exists():
  1060. return response.json(103)
  1061. try:
  1062. users = Device_User.objects.create(
  1063. username=email,
  1064. NickName=email,
  1065. userEmail=email,
  1066. password=make_password(password),
  1067. userID=CommonService.getUserID(μs=False, setOTAID=True),
  1068. is_active=True,
  1069. user_isValid=True,
  1070. )
  1071. except Exception as e:
  1072. errorInfo = traceback.format_exc()
  1073. print(errorInfo)
  1074. return response.json(424, repr(e))
  1075. else:
  1076. if not reds.del_data(key=email + '_identifyingCode'):
  1077. return response.json(10, '删除缓存验证码错误')
  1078. return self.do_login(email_qs, response)
  1079. def delete_local_account(self, username):
  1080. user_qs = Device_User.objects.filter(username=username)
  1081. if user_qs.exists():
  1082. user: Device_User = user_qs[0]
  1083. if user.is_local:
  1084. user.delete()
  1085. Device_Info.objects.filter(userID__userID=user.userID).delete()
  1086. # 重置密码
  1087. # 忘记密码获取验证码v2
  1088. class v2forgetPwdCodeView(TemplateView):
  1089. @method_decorator(csrf_exempt)
  1090. def dispatch(self, *args, **kwargs):
  1091. return super(v2forgetPwdCodeView, self).dispatch(*args, **kwargs)
  1092. @ratelimit(key='ip', rate='1/m')
  1093. def get(self, request, *args, **kwargs):
  1094. request.encoding = 'utf-8'
  1095. request_dict = request.GET
  1096. lang = request_dict.get('lang')
  1097. response = ResponseObject(lang)
  1098. was_limited = getattr(request, 'limited', False)
  1099. if was_limited is True:
  1100. return response.json(5)
  1101. return self.ValidationError(request_dict, response)
  1102. @ratelimit(key='ip', rate='1/m')
  1103. def post(self, request):
  1104. request.encoding = 'utf-8'
  1105. request_dict = request.POST
  1106. lang = request_dict.get('lang')
  1107. response = ResponseObject(lang)
  1108. was_limited = getattr(request, 'limited', False)
  1109. if was_limited is True:
  1110. return response.json(5)
  1111. return self.ValidationError(request_dict, response)
  1112. def ValidationError(self, request_dict, response):
  1113. phone = request_dict.get('phone', None)
  1114. email = request_dict.get('email', None)
  1115. country_code = request_dict.get('country_code', None)
  1116. sign_name = request_dict.get('sign_name', None)
  1117. if phone is not None:
  1118. phone = phone.strip()
  1119. if country_code is None:
  1120. return self.do_send_phone_code(phone, response, sign_name)
  1121. else:
  1122. return self.do_v2_send_phone_code(country_code, phone, response, sign_name)
  1123. elif email is not None:
  1124. return self.do_send_email_code(email, response)
  1125. else:
  1126. return response.json(444, 'phone')
  1127. def do_send_phone_code(self, phone, response, sign_name):
  1128. data_valid = DataValid()
  1129. if data_valid.mobile_validate(phone) is not True:
  1130. return response.json(100)
  1131. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  1132. if not user_qs.exists():
  1133. return response.json(102)
  1134. reds = RedisObject()
  1135. reds_key = str(phone) + '_forgetPwdResetCode'
  1136. resetCode = reds.get_data(key=reds_key)
  1137. reds_key_ttl = reds.get_ttl(key=reds_key)
  1138. if reds_key_ttl > 240 and resetCode:
  1139. # if identifyingCode :
  1140. return response.json(90)
  1141. # if resetCode is True:
  1142. # return response.json(120)
  1143. resetCode = RandomStr(6, True)
  1144. if sign_name == 'zosi':
  1145. sign_ms = '周视'
  1146. else:
  1147. sign_ms = 'Ansjer'
  1148. aliSms = AliSmsObject()
  1149. res = aliSms.send_code_sms(phone=phone, code=resetCode, sign_name=sign_ms,
  1150. temp_msg='SMS_151675019')
  1151. if res["Code"] == "OK":
  1152. if not reds.set_data(key=reds_key, val=resetCode, expire=300):
  1153. return response.json(10, '生成缓存错误')
  1154. return response.json(0)
  1155. else:
  1156. return response.json(10, res["Message"])
  1157. def do_v2_send_phone_code(self, country_code, phone, response, sign_name):
  1158. data_valid = DataValid()
  1159. if data_valid.mobile_validate(phone) is not True:
  1160. return response.json(100)
  1161. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  1162. if not user_qs.exists():
  1163. return response.json(102)
  1164. reds = RedisObject()
  1165. reds_key = str(phone) + '_forgetPwdResetCode'
  1166. resetCode = reds.get_data(key=reds_key)
  1167. reds_key_ttl = reds.get_ttl(key=reds_key)
  1168. if reds_key_ttl > 240 and resetCode:
  1169. # if identifyingCode :
  1170. return response.json(90)
  1171. # if resetCode is True:
  1172. # return response.json(120)
  1173. resetCode = RandomStr(6, True)
  1174. aliSms = AliSmsObject()
  1175. if country_code == '86':
  1176. rec_phone = phone
  1177. temp_msg = 'SMS_151675019'
  1178. if sign_name == 'zosi':
  1179. sign_ms = '周视'
  1180. else:
  1181. sign_ms = 'Ansjer'
  1182. else:
  1183. temp_msg = 'SMS_172200051'
  1184. rec_phone = str(country_code) + str(phone)
  1185. sign_ms = 'Ansjer'
  1186. res = aliSms.send_code_sms(phone=rec_phone, code=resetCode, sign_name=sign_ms,
  1187. temp_msg=temp_msg)
  1188. if res["Code"] == "OK":
  1189. if not reds.set_data(key=reds_key, val=resetCode, expire=300):
  1190. return response.json(10, '生成缓存错误')
  1191. return response.json(0)
  1192. else:
  1193. return response.json(10, res["Message"])
  1194. def do_send_email_code(self, email, response):
  1195. data_valid = DataValid()
  1196. if data_valid.email_validate(email) is not True:
  1197. return response.json(105)
  1198. user_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
  1199. if not user_qs.exists():
  1200. return response.json(104)
  1201. reds = RedisObject()
  1202. resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
  1203. if resetCode is True:
  1204. return response.json(120)
  1205. resetCode = RandomStr(6, True)
  1206. if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=600):
  1207. return response.json(10, '生成缓存错误')
  1208. send_data = TemplateService.email_message(type='forgetCode', language=response.lang)
  1209. send_body = send_data['body'].format(userEmail=email, email_valid_code=resetCode)
  1210. ses = SesClassObject()
  1211. # send_res = ses.send_email(send_address_list=[email], subject=send_data['title'], body=send_body)
  1212. # 阿里云发送邮箱
  1213. send_res = ses.alyEmailCode(send_address_list=[email], subject=send_data['title'], body=send_body)
  1214. if send_res is not True:
  1215. reds.del_data(key=email + '_forgetPwdResetCode')
  1216. return response.json(44)
  1217. return response.json(0)
  1218. # 忘记密码v2
  1219. class v2resetPwdByCodeView(TemplateView):
  1220. @method_decorator(csrf_exempt)
  1221. def dispatch(self, *args, **kwargs):
  1222. return super(v2resetPwdByCodeView, self).dispatch(*args, **kwargs)
  1223. def get(self, request, *args, **kwargs):
  1224. request.encoding = 'utf-8'
  1225. request_dict = request.GET
  1226. lang = request_dict.get('lang')
  1227. if not lang:
  1228. lang = request_dict.get('language', None)
  1229. response = ResponseObject(lang)
  1230. was_limited = getattr(request, 'limited', False)
  1231. if was_limited is True:
  1232. return response.json(5)
  1233. return self.ValidationError(request_dict, response)
  1234. def post(self, request):
  1235. request.encoding = 'utf-8'
  1236. request_dict = request.POST
  1237. lang = request_dict.get('lang')
  1238. if not lang:
  1239. lang = request_dict.get('language', None)
  1240. response = ResponseObject(lang)
  1241. was_limited = getattr(request, 'limited', False)
  1242. if was_limited is True:
  1243. return response.json(5)
  1244. return self.ValidationError(request_dict, response)
  1245. def ValidationError(self, request_dict, response):
  1246. phone = request_dict.get('phone', None)
  1247. email = request_dict.get('email', None)
  1248. password = request_dict.get('password', None)
  1249. authcode = request_dict.get('authcode', None)
  1250. print("1111111111111111111111")
  1251. if password is None or authcode is None:
  1252. return response.json(444, 'password,authcode')
  1253. authcode = authcode.strip()
  1254. password = password.strip()
  1255. if phone is not None:
  1256. phone = phone.strip()
  1257. return self.do_phone_pwd_reset(phone, authcode, password, response)
  1258. elif email is not None:
  1259. email = email.strip()
  1260. return self.do_email_pwd_reset(email, authcode, password, response)
  1261. else:
  1262. return response.json(444, 'phone')
  1263. def do_email_pwd_reset(self, email, authcode, password, response):
  1264. data_valid = DataValid()
  1265. if data_valid.email_validate(email) is not True:
  1266. return response.json(105)
  1267. if data_valid.password_validate(password) is not True:
  1268. return response.json(109)
  1269. user_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
  1270. if not user_qs.exists():
  1271. return response.json(104)
  1272. reds = RedisObject()
  1273. resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
  1274. if resetCode is False:
  1275. return response.json(90)
  1276. if authcode != resetCode:
  1277. return response.json(121)
  1278. # if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=300):
  1279. # return response.json(10, '生成缓存错误')
  1280. user_qs.update(password=make_password(password))
  1281. if not reds.del_data(email + '_forgetPwdResetCode'):
  1282. return response.json(10, '删除缓存失败')
  1283. return response.json(0)
  1284. def do_phone_pwd_reset(self, phone, authcode, password, response):
  1285. data_valid = DataValid()
  1286. if data_valid.mobile_validate(phone) is not True:
  1287. return response.json(100)
  1288. if data_valid.password_validate(password) is not True:
  1289. return response.json(109)
  1290. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  1291. if not user_qs.exists():
  1292. return response.json(102)
  1293. reds = RedisObject()
  1294. resetCode = reds.get_data(key=phone + '_forgetPwdResetCode')
  1295. if resetCode is False:
  1296. return response.json(90)
  1297. if authcode != resetCode:
  1298. return response.json(121)
  1299. # if not reds.set_data(key=phone + '_forgetPwdResetCode', val=resetCode, expire=300):
  1300. # return response.json(10, '生成缓存错误')
  1301. user_qs.update(password=make_password(password))
  1302. if not reds.del_data(phone + '_forgetPwdResetCode'):
  1303. return response.json(10, '删除缓存失败')
  1304. return response.json(0)
  1305. def do_login(self, user_qs, response):
  1306. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1307. user_qs.update(last_login=now_time, online=True)
  1308. userID = user_qs[0].userID
  1309. print('userID' + userID)
  1310. tko = TokenObject()
  1311. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  1312. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  1313. # 增加角色
  1314. user_qs[0].role.add(Role.objects.get(rid=1))
  1315. role_dict = ModelService.own_role(userID=userID)
  1316. res['rid'] = role_dict['rid']
  1317. res['roleName'] = role_dict['roleName']
  1318. res['permList'] = ModelService.own_permission(userID)
  1319. res['userID'] = userID
  1320. # 昵称,邮箱,电话,刷新,头像
  1321. userIconPath = str(user_list[0]["userIconPath"])
  1322. if userIconPath and userIconPath.find('static/') != -1:
  1323. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1324. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1325. else:
  1326. res['userIconUrl'] = ''
  1327. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  1328. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  1329. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  1330. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  1331. print(res)
  1332. return response.json(0, res)
  1333. # 忘记密码v3
  1334. class v3resetPwdByCodeView(TemplateView):
  1335. @method_decorator(csrf_exempt)
  1336. def dispatch(self, *args, **kwargs):
  1337. return super(v3resetPwdByCodeView, self).dispatch(*args, **kwargs)
  1338. def get(self, request, *args, **kwargs):
  1339. request.encoding = 'utf-8'
  1340. request_dict = request.GET
  1341. lang = request_dict.get('lang')
  1342. if not lang:
  1343. lang = request_dict.get('language', None)
  1344. response = ResponseObject(lang)
  1345. was_limited = getattr(request, 'limited', False)
  1346. if was_limited is True:
  1347. return response.json(5)
  1348. return self.ValidationError(request_dict, response)
  1349. def post(self, request):
  1350. request.encoding = 'utf-8'
  1351. request_dict = request.POST
  1352. lang = request_dict.get('lang')
  1353. if not lang:
  1354. lang = request_dict.get('language', None)
  1355. response = ResponseObject(lang)
  1356. was_limited = getattr(request, 'limited', False)
  1357. if was_limited is True:
  1358. return response.json(5)
  1359. return self.ValidationError(request_dict, response)
  1360. def ValidationError(self, request_dict, response):
  1361. phone = request_dict.get('phone', None)
  1362. email = request_dict.get('email', None)
  1363. password = request_dict.get('password', None)
  1364. authcode = request_dict.get('authcode', None)
  1365. if password is None or authcode is None:
  1366. return response.json(444, 'password,authcode')
  1367. authcode = authcode.strip()
  1368. password = password.strip()
  1369. # 解密
  1370. try:
  1371. for i in range(1, 4):
  1372. if i == 1:
  1373. password = base64.b64decode(password)
  1374. password = password.decode('utf-8')
  1375. password = password[1:-1]
  1376. if i == 2:
  1377. password = base64.b64decode(password)
  1378. password = password.decode('utf-8')
  1379. password = password[2:-2]
  1380. if i == 3:
  1381. password = base64.b64decode(password)
  1382. password = password.decode('utf-8')
  1383. password = password[3:-3]
  1384. print(password)
  1385. except Exception as e:
  1386. return response.json(111)
  1387. try:
  1388. for i in range(1, 4):
  1389. if i == 1:
  1390. authcode = base64.b64decode(authcode)
  1391. authcode = authcode.decode('utf-8')
  1392. authcode = authcode[1:-1]
  1393. if i == 2:
  1394. authcode = base64.b64decode(authcode)
  1395. authcode = authcode.decode('utf-8')
  1396. authcode = authcode[2:-2]
  1397. if i == 3:
  1398. authcode = base64.b64decode(authcode)
  1399. authcode = authcode.decode('utf-8')
  1400. authcode = authcode[3:-3]
  1401. print(authcode)
  1402. except Exception as e:
  1403. return response.json(121)
  1404. if phone is not None:
  1405. phone = phone.strip()
  1406. return self.do_phone_pwd_reset(phone, authcode, password, response)
  1407. elif email is not None:
  1408. email = email.strip()
  1409. return self.do_email_pwd_reset(email, authcode, password, response)
  1410. else:
  1411. return response.json(444, 'phone')
  1412. def do_email_pwd_reset(self, email, authcode, password, response):
  1413. data_valid = DataValid()
  1414. if data_valid.email_validate(email) is not True:
  1415. return response.json(105)
  1416. if data_valid.password_validate(password) is not True:
  1417. return response.json(109)
  1418. user_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
  1419. if not user_qs.exists():
  1420. return response.json(104)
  1421. reds = RedisObject()
  1422. resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
  1423. if resetCode is False:
  1424. return response.json(90)
  1425. if authcode != resetCode:
  1426. return response.json(121)
  1427. # if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=300):
  1428. # return response.json(10, '生成缓存错误')
  1429. user_qs.update(password=make_password(password))
  1430. if not reds.del_data(email + '_forgetPwdResetCode'):
  1431. return response.json(10, '删除缓存失败')
  1432. return response.json(0)
  1433. def do_phone_pwd_reset(self, phone, authcode, password, response):
  1434. data_valid = DataValid()
  1435. if data_valid.mobile_validate(phone) is not True:
  1436. return response.json(100)
  1437. if data_valid.password_validate(password) is not True:
  1438. return response.json(109)
  1439. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  1440. if not user_qs.exists():
  1441. return response.json(102)
  1442. reds = RedisObject()
  1443. resetCode = reds.get_data(key=phone + '_forgetPwdResetCode')
  1444. if resetCode is False:
  1445. return response.json(90)
  1446. if authcode != resetCode:
  1447. return response.json(121)
  1448. # if not reds.set_data(key=phone + '_forgetPwdResetCode', val=resetCode, expire=300):
  1449. # return response.json(10, '生成缓存错误')
  1450. user_qs.update(password=make_password(password))
  1451. if not reds.del_data(phone + '_forgetPwdResetCode'):
  1452. return response.json(10, '删除缓存失败')
  1453. return response.json(0)
  1454. def do_login(self, user_qs, response):
  1455. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1456. user_qs.update(last_login=now_time, online=True)
  1457. userID = user_qs[0].userID
  1458. print('userID' + userID)
  1459. tko = TokenObject()
  1460. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  1461. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  1462. # 增加角色
  1463. user_qs[0].role.add(Role.objects.get(rid=1))
  1464. role_dict = ModelService.own_role(userID=userID)
  1465. res['rid'] = role_dict['rid']
  1466. res['roleName'] = role_dict['roleName']
  1467. res['permList'] = ModelService.own_permission(userID)
  1468. res['userID'] = userID
  1469. # 昵称,邮箱,电话,刷新,头像
  1470. userIconPath = str(user_list[0]["userIconPath"])
  1471. if userIconPath and userIconPath.find('static/') != -1:
  1472. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1473. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1474. else:
  1475. res['userIconUrl'] = ''
  1476. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  1477. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  1478. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  1479. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  1480. print(res)
  1481. return response.json(0, res)
  1482. # 登录
  1483. class v2LoginView(TemplateView):
  1484. @method_decorator(csrf_exempt) # @csrf_exempt
  1485. def dispatch(self, *args, **kwargs):
  1486. return super(v2LoginView, self).dispatch(*args, **kwargs)
  1487. @ratelimit(key='ip', rate='5/m')
  1488. def post(self, request, *args, **kwargs):
  1489. request.encoding = 'utf-8'
  1490. request_dict = request.POST
  1491. language = request_dict.get('language', 'en')
  1492. response = ResponseObject(language)
  1493. was_limited = getattr(request, 'limited', False)
  1494. if was_limited is True:
  1495. return response.json(5)
  1496. return self.validates(request_dict, response)
  1497. # @ratelimit(key='ip', rate='5/m')
  1498. def get(self, request, *args, **kwargs):
  1499. print("进来了")
  1500. request.encoding = 'utf-8'
  1501. request_dict = request.GET
  1502. language = request_dict.get('language', 'en')
  1503. response = ResponseObject(language)
  1504. was_limited = getattr(request, 'limited', False)
  1505. if was_limited is True:
  1506. return response.json(5)
  1507. return self.validates(request_dict, response)
  1508. def validates(self, request_dict, response):
  1509. username = request_dict.get('userName', None)
  1510. password = request_dict.get('userPwd', None)
  1511. if not username or not password:
  1512. return response.json(111)
  1513. username = username.strip()
  1514. password = password.strip()
  1515. data_valid = DataValid()
  1516. if data_valid.email_validate(username):
  1517. return self.do_email_login(username, password, response)
  1518. elif data_valid.mobile_validate(username):
  1519. return self.do_phone_login(username, password, response)
  1520. elif data_valid.name_validate(username):
  1521. return self.do_name_login(username, password, response)
  1522. else:
  1523. return response.json(107)
  1524. def do_email_login(self, email, password, response):
  1525. user_qs = Device_User.objects.filter(Q(username=email) | Q(userEmail=email))
  1526. return self.valid_login(user_qs, password, response)
  1527. def do_phone_login(self, phone, password, response):
  1528. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone), is_active=True, user_isValid=True)
  1529. return self.valid_login(user_qs, password, response)
  1530. def do_name_login(self, username, password, response):
  1531. user_qs = Device_User.objects.filter(Q(username=username) | Q(phone=username) | Q(userEmail=username),
  1532. is_active=True, user_isValid=True)
  1533. return self.valid_login(user_qs, password, response)
  1534. def valid_login(self, user_qs, password, response):
  1535. if not user_qs.exists():
  1536. return response.json(104)
  1537. # users = user_qs.values('role__rid', 'role__roleName', 'userID', 'role', 'NickName', 'username', 'userEmail',
  1538. # 'phone', 'password', 'userIconPath', 'user_isValid', 'is_active')[0]
  1539. users = user_qs.values('role__rid', 'role__roleName', 'userID', 'NickName', 'username', 'userEmail',
  1540. 'phone', 'password', 'userIconPath')[0]
  1541. if not check_password(password, users['password']):
  1542. return response.json(111)
  1543. userID = users['userID']
  1544. tko = TokenObject()
  1545. res = tko.generate(
  1546. data={'userID': userID, 'lang': response.lang, 'user': users['username'], 'm_code': '123413243214'})
  1547. if tko.code == 0:
  1548. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1549. user_qs.update(last_login=now_time, language=response.lang)
  1550. res['rid'] = users['role__rid']
  1551. res['roleName'] = users['role__roleName']
  1552. res['permList'] = ModelService.own_permission(userID)
  1553. res['userID'] = userID
  1554. # 昵称,邮箱,电话,刷新,头像
  1555. userIconPath = str(users['userIconPath'])
  1556. if userIconPath and userIconPath.find('static/') != -1:
  1557. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1558. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1559. else:
  1560. res['userIconUrl'] = ''
  1561. res['NickName'] = users['NickName'] if users['NickName'] is not None else ''
  1562. res['username'] = users['username'] if users['username'] is not None else ''
  1563. res['userEmail'] = users['userEmail'] if users['userEmail'] is not None else ''
  1564. res['phone'] = users['phone'] if users['phone'] is not None else ''
  1565. return response.json(0, res)
  1566. else:
  1567. return response.json(tko.code)
  1568. # 密码加密新登录
  1569. class v3LoginView(TemplateView):
  1570. @method_decorator(csrf_exempt) # @csrf_exempt
  1571. def dispatch(self, *args, **kwargs):
  1572. # chong
  1573. return super(v3LoginView, self).dispatch(*args, **kwargs)
  1574. @ratelimit(key='ip', rate='5/m')
  1575. def post(self, request, *args, **kwargs):
  1576. request.encoding = 'utf-8'
  1577. request_dict = request.POST
  1578. language = request_dict.get('language', 'en')
  1579. response = ResponseObject(language)
  1580. was_limited = getattr(request, 'limited', False)
  1581. if was_limited is True:
  1582. return response.json(5)
  1583. return self.validates(request_dict, response)
  1584. # @ratelimit(key='ip', rate='5/m')
  1585. def get(self, request, *args, **kwargs):
  1586. request.encoding = 'utf-8'
  1587. request_dict = request.GET
  1588. language = request_dict.get('language', 'en')
  1589. response = ResponseObject(language)
  1590. was_limited = getattr(request, 'limited', False)
  1591. if was_limited is True:
  1592. return response.json(5)
  1593. return self.validates(request_dict, response)
  1594. def validates(self, request_dict, response):
  1595. username = request_dict.get('userName', None)
  1596. password = request_dict.get('userPwd', None)
  1597. if not username or not password:
  1598. return response.json(111)
  1599. username = username.strip()
  1600. password = password.strip()
  1601. print("准备解密")
  1602. # 解密
  1603. try:
  1604. for i in range(1, 4):
  1605. if i == 1:
  1606. # 第一次先解密
  1607. password = base64.b64decode(password)
  1608. password = password.decode('utf-8')
  1609. # 截去第一位,最后一位
  1610. password = password[1:-1]
  1611. if i == 2:
  1612. # 第2次先解密
  1613. password = base64.b64decode(password)
  1614. password = password.decode('utf-8')
  1615. # 去前2位,后2位
  1616. password = password[2:-2]
  1617. if i == 3:
  1618. # 第3次先解密
  1619. password = base64.b64decode(password)
  1620. password = password.decode('utf-8')
  1621. # 去前3位,后3位
  1622. password = password[3:-3]
  1623. except Exception as e:
  1624. return response.json(111)
  1625. else:
  1626. data_valid = DataValid()
  1627. if data_valid.email_validate(username):
  1628. return self.do_email_login(username, password, response)
  1629. elif data_valid.mobile_validate(username):
  1630. return self.do_phone_login(username, password, response)
  1631. elif data_valid.name_validate(username):
  1632. return self.do_name_login(username, password, response)
  1633. else:
  1634. return response.json(107)
  1635. def do_email_login(self, email, password, response):
  1636. user_qs = Device_User.objects.filter(Q(username=email) | Q(userEmail=email))
  1637. return self.valid_login(user_qs, password, response)
  1638. def do_phone_login(self, phone, password, response):
  1639. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone), is_active=True, user_isValid=True)
  1640. return self.valid_login(user_qs, password, response)
  1641. def do_name_login(self, username, password, response):
  1642. user_qs = Device_User.objects.filter(Q(username=username) | Q(phone=username) | Q(userEmail=username),
  1643. is_active=True, user_isValid=True)
  1644. return self.valid_login(user_qs, password, response)
  1645. def valid_login(self, user_qs, password, response):
  1646. if not user_qs.exists():
  1647. return response.json(104)
  1648. # users = user_qs.values('role__rid', 'role__roleName', 'userID', 'role', 'NickName', 'username', 'userEmail',
  1649. # 'phone', 'password', 'userIconPath', 'user_isValid', 'is_active')[0]
  1650. users = user_qs.values('role__rid', 'role__roleName', 'userID', 'NickName', 'username', 'userEmail',
  1651. 'phone', 'password', 'userIconPath', 'fingerprint_enable', 'fingerprint_key')[0]
  1652. if not check_password(password, users['password']):
  1653. return response.json(111)
  1654. userID = users['userID']
  1655. tko = TokenObject()
  1656. res = tko.generate(
  1657. data={'userID': userID, 'lang': response.lang, 'user': users['username'], 'm_code': '123413243214'})
  1658. oauth_qs = UserOauth2Model.objects.filter(userID__userID=userID)
  1659. auth_type = 0
  1660. if oauth_qs.exists():
  1661. auth_type = oauth_qs[0].authType
  1662. if tko.code == 0:
  1663. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1664. user_qs.update(last_login=now_time, language=response.lang)
  1665. res['rid'] = users['role__rid']
  1666. res['roleName'] = users['role__roleName']
  1667. res['permList'] = ModelService.own_permission(userID)
  1668. res['userID'] = userID
  1669. # 昵称,邮箱,电话,刷新,头像
  1670. userIconPath = str(users['userIconPath'])
  1671. if userIconPath and userIconPath.find('static/') != -1:
  1672. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1673. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1674. else:
  1675. res['userIconUrl'] = ''
  1676. res['NickName'] = users['NickName'] if users['NickName'] is not None else ''
  1677. res['username'] = users['username'] if users['username'] is not None else ''
  1678. res['userEmail'] = users['userEmail'] if users['userEmail'] is not None else ''
  1679. res['phone'] = users['phone'] if users['phone'] is not None else ''
  1680. # res['fingerprint_enable'] = users['fingerprint_enable']
  1681. # res['fingerprint_key'] = CommonService.encode_data(content=users['fingerprint_key'], start=2)
  1682. res['authType'] = auth_type
  1683. return response.json(0, res)
  1684. else:
  1685. return response.json(tko.code)
  1686. # 用户登录后初始化接口
  1687. class InitInfoView(View):
  1688. def get(self, request, *args, **kwargs):
  1689. request.encoding = 'utf-8'
  1690. return self.validation(request.GET)
  1691. def post(self, request, *args, **kwargs):
  1692. request.encoding = 'utf-8'
  1693. return self.validation(request.POST)
  1694. def validation(self, request_dict):
  1695. response = ResponseObject()
  1696. token = request_dict.get('token', None)
  1697. tko = TokenObject(token)
  1698. if tko.code == 0:
  1699. userID = tko.userID
  1700. return self.init_info(request_dict, userID, response)
  1701. else:
  1702. return response.json(tko.code)
  1703. # 初始化设备token
  1704. def init_info(self, request_dict, userID, response):
  1705. # 未读的系统消息
  1706. token_val = request_dict.get('token_val', None)
  1707. m_code = request_dict.get('m_code', None)
  1708. push_type = request_dict.get('push_type', None)
  1709. appBundleId = request_dict.get('appBundleId', None)
  1710. tz = request_dict.get('tz', '0')
  1711. lang = request_dict.get('lang', '') # 语言区域
  1712. now_time = int(time.time())
  1713. if all([token_val, push_type, appBundleId, userID]):
  1714. push_type = int(push_type)
  1715. if push_type == 0:
  1716. if appBundleId not in APNS_CONFIG.keys():
  1717. return response.json(904)
  1718. elif push_type == 1:
  1719. if appBundleId not in FCM_CONFIG.keys():
  1720. return response.json(904)
  1721. elif push_type == 2:
  1722. if appBundleId not in JPUSH_CONFIG.keys():
  1723. return response.json(904)
  1724. else:
  1725. return response.json(444, 'push_type')
  1726. if m_code:
  1727. # 获取设备推送状态
  1728. update_dict = {
  1729. 'token_val': token_val,
  1730. 'push_type': push_type,
  1731. 'tz': tz,
  1732. }
  1733. # 更新当前用户推送设备状态
  1734. UidPushModel.objects.filter(userID_id=userID, m_code=m_code). \
  1735. update(**update_dict)
  1736. if appBundleId:
  1737. user_ex_qs = UserExModel.objects.filter(userID_id=userID)
  1738. if user_ex_qs.exists():
  1739. update_dict = {
  1740. 'updTime': now_time,
  1741. 'appBundleId': appBundleId,
  1742. 'region': lang
  1743. }
  1744. user_ex_qs.update(**update_dict)
  1745. else:
  1746. create_dict = {
  1747. 'addTime': now_time,
  1748. 'updTime': now_time,
  1749. 'appBundleId': appBundleId,
  1750. 'userID_id': userID,
  1751. 'region': lang
  1752. }
  1753. UserExModel.objects.create(**create_dict)
  1754. # 获取设备是否存在有已被删除
  1755. res = {'usmsg': 0} # 预留字段, 有版本app该字段去掉会报错
  1756. return response.json(0, res)
  1757. # 获取验证码
  1758. class verifyAuthcode(TemplateView):
  1759. def post(self, request, *args, **kwargs):
  1760. request.encoding = 'utf-8'
  1761. lang = request.POST.get('lang', None)
  1762. if not lang:
  1763. lang = request.POST.get('language', None)
  1764. response = ResponseObject(lang)
  1765. request_dict = request.POST
  1766. return self.ValidationError(request_dict, response)
  1767. def get(self, request, *args, **kwargs):
  1768. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  1769. request.encoding = 'utf-8'
  1770. lang = request.GET.get('lang', None)
  1771. if not lang:
  1772. lang = request.GET.get('language', None)
  1773. response = ResponseObject(lang)
  1774. request_dict = request.GET
  1775. return self.ValidationError(request_dict, response)
  1776. def ValidationError(self, request_dict, response):
  1777. email = request_dict.get('email', None)
  1778. phone = request_dict.get('phone', None)
  1779. authcode = request_dict.get('authcode', None)
  1780. if email is not None:
  1781. email = email.strip()
  1782. return self.email_validate(email, authcode, response)
  1783. elif phone is not None:
  1784. phone = phone.strip()
  1785. return self.phone_validate(phone, authcode, response)
  1786. else:
  1787. return response.json(444)
  1788. def email_validate(self, email, authcode, response):
  1789. data_valid = DataValid()
  1790. if data_valid.email_validate(email) is not True:
  1791. return response.json(105)
  1792. reds = RedisObject()
  1793. resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
  1794. if resetCode is False:
  1795. return response.json(120)
  1796. if authcode != resetCode:
  1797. return response.json(121)
  1798. return response.json(0)
  1799. def phone_validate(self, phone, authcode, response):
  1800. data_valid = DataValid()
  1801. if data_valid.mobile_validate(phone) is not True:
  1802. return response.json(100)
  1803. reds = RedisObject()
  1804. resetCode = reds.get_data(key=phone + '_forgetPwdResetCode')
  1805. if resetCode is False:
  1806. return response.json(120)
  1807. print(resetCode)
  1808. if authcode != resetCode:
  1809. return response.json(121)
  1810. return response.json(0)
  1811. # 微信登录
  1812. class wxAuthSignView(TemplateView):
  1813. def post(self, request, *args, **kwargs):
  1814. request.encoding = 'utf-8'
  1815. lang = request.POST.get('lang', None)
  1816. response = ResponseObject(lang)
  1817. request_dict = request.POST
  1818. return self.ValidationError(request_dict, response)
  1819. def get(self, request, *args, **kwargs):
  1820. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  1821. request.encoding = 'utf-8'
  1822. lang = request.GET.get('lang', None)
  1823. response = ResponseObject(lang)
  1824. request_dict = request.GET
  1825. # return self.do_register('157113010663213800138000', '157113010663213800138000', response, 'xx')
  1826. return self.ValidationError(request_dict, response)
  1827. def ValidationError(self, request_dict, response):
  1828. grant_code = request_dict.get('grant_code', None) # 微信授权code
  1829. appBundleID = request_dict.get('appBundleID', None) # 包名
  1830. print('grant_code')
  1831. print(grant_code)
  1832. print('appBundleID')
  1833. print(appBundleID)
  1834. if all([grant_code, appBundleID]):
  1835. app_config = {
  1836. 'com.ansjer.loocamccloud': {'appid': 'wx9f6d6ce63f85b367',
  1837. 'secret': 'fe495884cd24637f1ae516c7f53d1b97', },
  1838. 'com.ansjer.zccloud': {'appid': 'wx2a9f5ef9baf2760f', 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1839. 'com.ansjer.customizede': {'appid': 'wx2a9f5ef9baf2760f', 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1840. # ios
  1841. 'com.ansjer.zccloud_ab': {'appid': 'wx2a9f5ef9baf2760f', 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1842. # android
  1843. }
  1844. if appBundleID in app_config.keys():
  1845. appid = app_config[appBundleID]['appid']
  1846. secret = app_config[appBundleID]['secret']
  1847. # 获取access_token请求
  1848. at_url = 'https://api.weixin.qq.com/sns/oauth2/access_token?appid={appid}&secret={secret}&code={code}&grant_type=authorization_code'.format(
  1849. appid=appid, secret=secret, code=grant_code)
  1850. res_req = requests.get(url=at_url)
  1851. res_json = res_req.json()
  1852. print(res_json)
  1853. if 'access_token' not in res_json.keys():
  1854. # 授权过期
  1855. return response.json(717)
  1856. access_token = res_json['access_token']
  1857. openid = res_json['openid']
  1858. if access_token and openid:
  1859. info_url = 'https://api.weixin.qq.com/sns/userinfo?access_token={access_token}&openid={openid}'.format(
  1860. access_token=access_token, openid=openid)
  1861. res_req = requests.get(url=info_url)
  1862. res_req.encoding = res_req.apparent_encoding
  1863. res_json = res_req.json()
  1864. print(res_json)
  1865. unionID = res_json['unionid']
  1866. user_extend_qs = UserOauth2Model.objects.filter(unionID=unionID, authType=1)
  1867. if user_extend_qs.exists():
  1868. # 如果用户绑定过则直接登录
  1869. userID = user_extend_qs[0].userID_id
  1870. print(userID)
  1871. user_qs = Device_User.objects.filter(userID=userID)
  1872. return self.do_login(user_qs, response)
  1873. else:
  1874. # 如果用户为绑定过则创建用户并进行登录返回token
  1875. userID = CommonService.getUserID(getUser=False)
  1876. nickname = res_json['nickname'] + '_' + CommonService.RandomStr(4)
  1877. return self.do_register(userID, nickname, response, appBundleID, unionID)
  1878. else:
  1879. return response.json(414, 'access_token,openid')
  1880. else:
  1881. return response.json(414, 'appBundleID is wrong!')
  1882. else:
  1883. return response.json(414)
  1884. # if wxcode
  1885. # 登录
  1886. def do_login(self, user_qs, response):
  1887. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  1888. userID = user_qs[0].userID
  1889. print('userID' + userID)
  1890. tko = TokenObject()
  1891. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  1892. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  1893. # 增加角色
  1894. user_qs[0].role.add(Role.objects.get(rid=1))
  1895. role_dict = ModelService.own_role(userID=userID)
  1896. res['rid'] = role_dict['rid']
  1897. res['roleName'] = role_dict['roleName']
  1898. res['permList'] = ModelService.own_permission(userID)
  1899. res['userID'] = userID
  1900. # 昵称,邮箱,电话,刷新,头像
  1901. userIconPath = str(user_list[0]["userIconPath"])
  1902. if userIconPath and userIconPath.find('static/') != -1:
  1903. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  1904. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  1905. else:
  1906. res['userIconUrl'] = ''
  1907. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  1908. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  1909. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  1910. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  1911. print(res)
  1912. # 添加用户登录类型
  1913. oauth_qs = UserOauth2Model.objects.filter(userID__userID=userID)
  1914. auth_type = 0
  1915. if oauth_qs.exists():
  1916. auth_type = oauth_qs[0].authType
  1917. res['authType'] = auth_type
  1918. user_qs.update(last_login=now_time, online=True)
  1919. return response.json(0, res)
  1920. def do_register(self, userID, nickname, response, appBundleId, unionID):
  1921. data_valid = DataValid()
  1922. if data_valid.name_validate(userID) is not True:
  1923. return response.json(105)
  1924. try:
  1925. users = Device_User.objects.create(
  1926. username=userID,
  1927. NickName=nickname,
  1928. password=make_password('123456'),
  1929. userID=userID,
  1930. is_active=True,
  1931. user_isValid=True,
  1932. )
  1933. nowTime = int(time.time())
  1934. UserOauth2Model.objects.create(
  1935. addTime=nowTime,
  1936. updTime=nowTime,
  1937. userID_id=users.userID,
  1938. authType=1,
  1939. unionID=unionID
  1940. )
  1941. except Exception as e:
  1942. errorInfo = traceback.format_exc()
  1943. print(errorInfo)
  1944. return response.json(424, repr(e))
  1945. else:
  1946. user_qs = Device_User.objects.filter(Q(userID=userID))
  1947. print('---')
  1948. print(user_qs)
  1949. return self.do_login(user_qs, response)
  1950. # 获取验证码
  1951. class wxPerfectView(TemplateView):
  1952. def post(self, request, *args, **kwargs):
  1953. request.encoding = 'utf-8'
  1954. lang = request.POST.get('lang', None)
  1955. response = ResponseObject(lang)
  1956. request_dict = request.POST
  1957. return self.ValidationError(request_dict, response)
  1958. def get(self, request, *args, **kwargs):
  1959. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  1960. request.encoding = 'utf-8'
  1961. lang = request.GET.get('lang', None)
  1962. response = ResponseObject(lang)
  1963. request_dict = request.GET
  1964. # return self.do_register('157113010663213800138000', '157113010663213800138000', response, 'xx')
  1965. return self.ValidationError(request_dict, response)
  1966. def ValidationError(self, request_dict, response):
  1967. grant_code = request_dict.get('grant_code', None) # 微信授权code
  1968. appBundleID = request_dict.get('appBundleID', None) # 包名
  1969. token = request_dict.get('token', None) # 包名
  1970. if all([grant_code, appBundleID, token]):
  1971. tko = TokenObject(token)
  1972. if tko.code == 0:
  1973. userID = tko.userID
  1974. app_config = {
  1975. # ios
  1976. 'com.ansjer.loocamccloud': {'appid': 'wx9f6d6ce63f85b367',
  1977. 'secret': 'fe495884cd24637f1ae516c7f53d1b97', },
  1978. 'com.ansjer.zccloud': {'appid': 'wx2a9f5ef9baf2760f', 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1979. 'com.ansjer.customizede': {'appid':'wx2a9f5ef9baf2760f', 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1980. # android
  1981. 'com.ansjer.zccloud_ab': {'appid': 'wx2a9f5ef9baf2760f',
  1982. 'secret': '5d38c7079676463149ffea593c58f2ed'},
  1983. }
  1984. if appBundleID in app_config.keys():
  1985. appid = app_config[appBundleID]['appid']
  1986. secret = app_config[appBundleID]['secret']
  1987. # 获取access_token请求
  1988. at_url = 'https://api.weixin.qq.com/sns/oauth2/access_token?appid={appid}&secret={secret}&code={code}&grant_type=authorization_code'.format(
  1989. appid=appid, secret=secret, code=grant_code)
  1990. res_req = requests.get(url=at_url)
  1991. res_json = res_req.json()
  1992. print(res_json)
  1993. if 'access_token' not in res_json.keys():
  1994. # 授权过期
  1995. return response.json(717)
  1996. access_token = res_json['access_token']
  1997. openid = res_json['openid']
  1998. if access_token and openid:
  1999. info_url = 'https://api.weixin.qq.com/sns/userinfo?access_token={access_token}&openid={openid}'.format(
  2000. access_token=access_token, openid=openid)
  2001. res_req = requests.get(url=info_url)
  2002. res_req.encoding = res_req.apparent_encoding
  2003. res_json = res_req.json()
  2004. print(res_json)
  2005. unionID = res_json['unionid']
  2006. user_has_bind = UserOauth2Model.objects.filter(unionID=unionID)
  2007. if not user_has_bind.exists():
  2008. user_oauth2_qs = UserOauth2Model.objects. \
  2009. filter(userID_id=userID, authType=1)
  2010. if user_oauth2_qs.exists():
  2011. user_oauth2_qs.update(unionID=unionID)
  2012. return response.json(0)
  2013. else:
  2014. try:
  2015. nowTime = int(time.time())
  2016. UserOauth2Model.objects.create(
  2017. addTime=nowTime,
  2018. updTime=nowTime,
  2019. userID_id=userID,
  2020. authType=1,
  2021. unionID=unionID)
  2022. except Exception as e:
  2023. return response.json(424, repr(e))
  2024. else:
  2025. return response.json(0)
  2026. else:
  2027. return response.json(16)
  2028. else:
  2029. return response.json(414, 'access_token,openid')
  2030. else:
  2031. return response.json(414, 'appBundleID is wrong!')
  2032. else:
  2033. return response.json(tko.code)
  2034. else:
  2035. return response.json(414)
  2036. # 获取验证码
  2037. class OauthAuthCodeView(TemplateView):
  2038. @method_decorator(csrf_exempt)
  2039. def dispatch(self, *args, **kwargs):
  2040. return super(OauthAuthCodeView, self).dispatch(*args, **kwargs)
  2041. @ratelimit(key='ip', rate='2/m')
  2042. def post(self, request, *args, **kwargs):
  2043. request.encoding = 'utf-8'
  2044. lang = request.POST.get('lang', None)
  2045. if not lang:
  2046. lang = request.POST.get('language', None)
  2047. response = ResponseObject(lang)
  2048. request_dict = request.POST
  2049. phone = request_dict.get('phone', None)
  2050. if phone is not None:
  2051. was_limited = getattr(request, 'limited', False)
  2052. if was_limited is True:
  2053. return response.json(5)
  2054. return self.ValidationError(request_dict, response)
  2055. @ratelimit(key='ip', rate='2/m')
  2056. def get(self, request, *args, **kwargs):
  2057. # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
  2058. request.encoding = 'utf-8'
  2059. lang = request.GET.get('lang', None)
  2060. if not lang:
  2061. lang = request.GET.get('language', None)
  2062. response = ResponseObject(lang)
  2063. was_limited = getattr(request, 'limited', False)
  2064. if was_limited is True:
  2065. return response.json(5)
  2066. request_dict = request.GET
  2067. return self.ValidationError(request_dict, response)
  2068. def ValidationError(self, request_dict, response):
  2069. email = request_dict.get('email', None)
  2070. phone = request_dict.get('phone', None)
  2071. country_code = request_dict.get('country_code', None)
  2072. sign_name = request_dict.get('sign_name', None)
  2073. token = request_dict.get('token', None)
  2074. print(token)
  2075. if email is not None:
  2076. email = email.strip()
  2077. # 阿里云的发送邮箱的调用方法
  2078. return self.aliyun_emailCode(email, response)
  2079. # return self.emailCode(email, response)
  2080. elif phone is not None:
  2081. phone = phone.strip()
  2082. if country_code is None:
  2083. return self.phoneCode(phone, response, sign_name)
  2084. else:
  2085. country_code = str(country_code.strip())
  2086. return self.phoneCodeV2(country_code, phone, response, sign_name)
  2087. else:
  2088. return response.json(444)
  2089. def emailCode(self, email, response):
  2090. dataValid = DataValid()
  2091. # 邮箱匹配
  2092. if dataValid.email_validate(email) is False:
  2093. return response.json(107)
  2094. reds = RedisObject()
  2095. identifyingCode = reds.get_data(key=email + '_OauthPerfect')
  2096. # 是否以获取邮箱验证码
  2097. if identifyingCode:
  2098. return response.json(89)
  2099. user_qs = Device_User.objects.filter(username=email)
  2100. email_qs = Device_User.objects.filter(userEmail=email)
  2101. # 邮箱用户是否已存在
  2102. if user_qs.exists():
  2103. return response.json(103)
  2104. elif email_qs.exists():
  2105. return response.json(103)
  2106. # 生成随机6位数
  2107. identifyingCode = RandomStr(6, True)
  2108. # 设置随机数缓存生命周期
  2109. send_data = TemplateService.email_message(type='register_code', language=response.lang)
  2110. ses = SesClassObject()
  2111. # 发送邮件
  2112. send_res = ses.send_email(
  2113. send_address_list=[email],
  2114. subject=send_data['title'],
  2115. body=send_data['body'].replace("{username}", email).replace("{captcha}",
  2116. str(identifyingCode))
  2117. )
  2118. if send_res is not True:
  2119. return response.json(44)
  2120. if reds.set_data(key=email + '_OauthPerfect', val=identifyingCode, expire=600) is not True:
  2121. return response.json(10, 'error')
  2122. return response.json(0)
  2123. # return response.json(0, {'identifyingCode': identifyingCode})
  2124. # 阿里云获取邮箱验证码
  2125. def aliyun_emailCode(self, email, response):
  2126. print('阿里云开始')
  2127. dataValid = DataValid()
  2128. # 邮箱匹配
  2129. if dataValid.email_validate(email) is False:
  2130. return response.json(107)
  2131. reds = RedisObject()
  2132. identifyingCode = reds.get_data(key=email + '_OauthPerfect')
  2133. # 是否以获取邮箱验证码
  2134. if identifyingCode:
  2135. return response.json(89)
  2136. user_qs = Device_User.objects.filter(username=email)
  2137. email_qs = Device_User.objects.filter(userEmail=email)
  2138. # 邮箱用户是否已存在
  2139. if user_qs.exists():
  2140. return response.json(103)
  2141. elif email_qs.exists():
  2142. return response.json(103)
  2143. # 生成随机6位数
  2144. identifyingCode = RandomStr(6, True)
  2145. # 设置随机数缓存生命周期
  2146. send_data = TemplateService.email_message(type='register_code', language=response.lang)
  2147. ses = SesClassObject()
  2148. # 发送邮件
  2149. send_res = ses.alyEmailCode(
  2150. send_address_list=[email],
  2151. subject=send_data['title'],
  2152. body=send_data['body'].replace("{username}", email).replace("{captcha}", str(identifyingCode))
  2153. )
  2154. if send_res is not True:
  2155. return response.json(44)
  2156. if reds.set_data(key=email + '_OauthPerfect', val=identifyingCode, expire=600) is not True:
  2157. return response.json(10, 'error')
  2158. return response.json(0)
  2159. def phoneCode(self, phone, response, sign_name):
  2160. dataValid = DataValid()
  2161. if dataValid.mobile_validate(phone) is not True:
  2162. return response.json(107)
  2163. reds = RedisObject()
  2164. reds_key = str(phone) + '_OauthPerfect'
  2165. identifyingCode = reds.get_data(key=reds_key)
  2166. reds_key_ttl = reds.get_ttl(key=reds_key)
  2167. if reds_key_ttl > 240 and identifyingCode:
  2168. # if identifyingCode :
  2169. return response.json(90)
  2170. user_qs = Device_User.objects.filter(username=phone)
  2171. phone_qs = Device_User.objects.filter(phone=phone)
  2172. if user_qs.exists() or phone_qs.exists():
  2173. return response.json(101)
  2174. identifyingCode = RandomStr(6, True)
  2175. # 发送手机验证码
  2176. aliSms = AliSmsObject()
  2177. if sign_name == 'zosi':
  2178. sign_ms = '周视'
  2179. else:
  2180. sign_ms = 'Ansjer'
  2181. res = aliSms.send_code_sms(phone=phone, code=identifyingCode, sign_name=sign_ms,
  2182. temp_msg='SMS_151600991')
  2183. print(res)
  2184. if res["Code"] == "OK":
  2185. if reds.set_data(key=reds_key, val=identifyingCode, expire=300) is not True:
  2186. # if reds.set_data(key=phone + '_identifyingCode', val=identifyingCode, expire=60) is not True:
  2187. return response.json(10, '生成缓存系统错误')
  2188. return response.json(0)
  2189. else:
  2190. return response.json(10, res["Message"])
  2191. def phoneCodeV2(self, country_code, phone, response, sign_name):
  2192. dataValid = DataValid()
  2193. if dataValid.mobile_validate(phone) is not True:
  2194. return response.json(107)
  2195. reds = RedisObject()
  2196. reds_key = str(phone) + '_OauthPerfect'
  2197. identifyingCode = reds.get_data(key=reds_key)
  2198. reds_key_ttl = reds.get_ttl(key=reds_key)
  2199. if reds_key_ttl > 240 and identifyingCode:
  2200. # if identifyingCode :
  2201. return response.json(90)
  2202. user_qs = Device_User.objects.filter(username=phone)
  2203. phone_qs = Device_User.objects.filter(phone=phone)
  2204. if user_qs.exists() or phone_qs.exists():
  2205. return response.json(101)
  2206. identifyingCode = RandomStr(6, True)
  2207. # 短信签名
  2208. # sign_name_dict = {
  2209. # 'ansjer':'Ansjer',
  2210. # 'zosi':'周视'
  2211. # }
  2212. sign_ms = ''
  2213. if country_code == '86':
  2214. # 国内短信推送模板
  2215. temp_msg = 'SMS_151600991'
  2216. rec_phone = phone
  2217. if sign_name == 'zosi':
  2218. sign_ms = '周视'
  2219. else:
  2220. sign_ms = 'Ansjer'
  2221. else:
  2222. # 国际短信推送模板
  2223. temp_msg = 'SMS_172165867'
  2224. rec_phone = country_code + phone
  2225. sign_ms = 'Ansjer'
  2226. # 发送手机验证码
  2227. aliSms = AliSmsObject()
  2228. res = aliSms.send_code_sms(phone=rec_phone, code=identifyingCode, sign_name=sign_ms,
  2229. temp_msg=temp_msg)
  2230. print(res)
  2231. if res["Code"] == "OK":
  2232. # if reds.set_data(key=reds_key, val=identifyingCode, expire=60) is not True:
  2233. if reds.set_data(key=reds_key, val=identifyingCode, expire=300) is not True:
  2234. return response.json(10, '生成缓存系统错误')
  2235. return response.json(0)
  2236. else:
  2237. return response.json(10, res["Message"])
  2238. class OauthPerfectView(TemplateView):
  2239. @method_decorator(csrf_exempt)
  2240. def dispatch(self, *args, **kwargs):
  2241. return super(OauthPerfectView, self).dispatch(*args, **kwargs)
  2242. def get(self, request, *args, **kwargs):
  2243. request.encoding = 'utf-8'
  2244. request_dict = request.GET
  2245. lang = request_dict.get('lang')
  2246. if not lang:
  2247. lang = request_dict.get('language', None)
  2248. response = ResponseObject(lang)
  2249. was_limited = getattr(request, 'limited', False)
  2250. if was_limited is True:
  2251. return response.json(5)
  2252. return self.ValidationError(request_dict, response)
  2253. def post(self, request):
  2254. request.encoding = 'utf-8'
  2255. request_dict = request.POST
  2256. lang = request_dict.get('lang')
  2257. if not lang:
  2258. lang = request_dict.get('language', None)
  2259. response = ResponseObject(lang)
  2260. was_limited = getattr(request, 'limited', False)
  2261. if was_limited is True:
  2262. return response.json(5)
  2263. return self.ValidationError(request_dict, response)
  2264. def ValidationError(self, request_dict, response):
  2265. phone = request_dict.get('phone', None)
  2266. email = request_dict.get('email', None)
  2267. password = request_dict.get('password', None)
  2268. authcode = request_dict.get('authcode', None)
  2269. token = request_dict.get('token', None)
  2270. token = request_dict.get('token')
  2271. tko = TokenObject(token)
  2272. if password is None or authcode is None:
  2273. return response.json(444, 'password,authcode')
  2274. authcode = CommonService.decode_data(authcode.strip())
  2275. if authcode is None:
  2276. return response.json(444, 'password,authcode')
  2277. password = CommonService.decode_data(password.strip())
  2278. if password is None:
  2279. return response.json(444, 'password,authcode')
  2280. if phone is not None:
  2281. phone = phone.strip()
  2282. return self.do_phone(tko, phone, authcode, password, response)
  2283. elif email is not None:
  2284. email = email.strip()
  2285. return self.do_email(tko, email, authcode, password, response)
  2286. else:
  2287. return response.json(444, 'phone')
  2288. def do_email(self, tko, email, authcode, password, response):
  2289. data_valid = DataValid()
  2290. if data_valid.email_validate(email) is not True:
  2291. return response.json(105)
  2292. if data_valid.password_validate(password) is not True:
  2293. return response.json(109)
  2294. if tko.code == 0:
  2295. user_qs = Device_User.objects.filter(userID=tko.userID)
  2296. else:
  2297. return response.json(tko.code)
  2298. if not user_qs.exists():
  2299. return response.json(104)
  2300. reds = RedisObject()
  2301. resetCode = reds.get_data(key=email + '_OauthPerfect')
  2302. if resetCode is False:
  2303. return response.json(90)
  2304. if authcode != resetCode:
  2305. return response.json(121)
  2306. # if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=300):
  2307. # return response.json(10, '生成缓存错误')
  2308. user_qs.update(userEmail=email, password=make_password(password))
  2309. if not reds.del_data(email + '_OauthPerfect'):
  2310. return response.json(10, '删除缓存失败')
  2311. return response.json(0)
  2312. def do_phone(self, tko, phone, authcode, password, response):
  2313. data_valid = DataValid()
  2314. if data_valid.mobile_validate(phone) is not True:
  2315. return response.json(100)
  2316. if data_valid.password_validate(password) is not True:
  2317. return response.json(109)
  2318. if tko.code == 0:
  2319. user_qs = Device_User.objects.filter(userID=tko.userID)
  2320. else:
  2321. return response.json(tko.code)
  2322. if not user_qs.exists():
  2323. return response.json(102)
  2324. reds = RedisObject()
  2325. resetCode = reds.get_data(key=str(phone) + '_OauthPerfect')
  2326. print(resetCode)
  2327. if resetCode is False:
  2328. return response.json(90)
  2329. if authcode != resetCode:
  2330. return response.json(121)
  2331. # if not reds.set_data(key=phone + '_forgetPwdResetCode', val=resetCode, expire=300):
  2332. # return response.json(10, '生成缓存错误')
  2333. user_qs.update(phone=phone, password=make_password(password))
  2334. if not reds.del_data(str(phone) + '_OauthPerfect'):
  2335. return response.json(10, '删除缓存失败')
  2336. return response.json(0)
  2337. class UnbundingWXView(TemplateView):
  2338. def get(self, request, *args, **kwargs):
  2339. request.encoding = 'utf-8'
  2340. request_dict = request.GET
  2341. lang = request_dict.get('lang')
  2342. if not lang:
  2343. lang = request_dict.get('language', None)
  2344. response = ResponseObject(lang)
  2345. return self.ValidationError(request_dict, response)
  2346. def post(self, request, *args, **kwargs):
  2347. request.encoding = 'utf-8'
  2348. request_dict = request.POST
  2349. lang = request_dict.get('lang')
  2350. if not lang:
  2351. lang = request_dict.get('language', None)
  2352. response = ResponseObject(lang)
  2353. return self.ValidationError(request_dict, response)
  2354. def ValidationError(self, request_dict, response):
  2355. token = request_dict.get('token', None)
  2356. auth_type = request_dict.get('auth_type', None)
  2357. if not all([token, auth_type]):
  2358. return response.json(444, 'token,auth_type')
  2359. tko = TokenObject(token)
  2360. if tko.code == 0:
  2361. userID = tko.userID
  2362. user_oauth2_qs = UserOauth2Model.objects.filter(
  2363. ~Q(unionID='') & Q(userID_id=userID) & Q(authType=auth_type))
  2364. if user_oauth2_qs.exists():
  2365. user_qs = Device_User.objects.filter(phone='', userEmail='', userID=userID)
  2366. if user_qs.exists():
  2367. return response.json(17)
  2368. else:
  2369. user_oauth2_qs.delete()
  2370. return response.json(0)
  2371. else:
  2372. return response.json(173)
  2373. else:
  2374. return response.json(tko.code)
  2375. class alexaAuthView(TemplateView):
  2376. def post(self, request, *args, **kwargs):
  2377. request.encoding = 'utf-8'
  2378. # request_dict = json.loads(request.body.decode('utf-8'))
  2379. request_dict = request.POST
  2380. response = ResponseObject()
  2381. return self.validates(request_dict, response)
  2382. def get(self, request, *args, **kwargs):
  2383. request.encoding = 'utf-8'
  2384. request_dict = request.GET
  2385. response = ResponseObject()
  2386. return self.validates(request_dict, response)
  2387. def validates(self, request_dict, response):
  2388. username = request_dict.get('userName', None)
  2389. password = request_dict.get('userPwd', None)
  2390. if not username or not password:
  2391. return response.json(111)
  2392. username = username.strip()
  2393. password = password.strip()
  2394. data_valid = DataValid()
  2395. if data_valid.email_validate(username):
  2396. return self.do_email_login(username, password, response)
  2397. elif data_valid.mobile_validate(username):
  2398. return self.do_phone_login(username, password, response)
  2399. elif data_valid.name_validate(username):
  2400. return self.do_name_login(username, password, response)
  2401. else:
  2402. return response.json(107)
  2403. def do_email_login(self, email, password, response):
  2404. user_qs = Device_User.objects.filter(Q(username=email) | Q(userEmail=email))
  2405. return self.valid_login(user_qs, password, response)
  2406. def do_phone_login(self, phone, password, response):
  2407. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone), is_active=True, user_isValid=True)
  2408. return self.valid_login(user_qs, password, response)
  2409. def do_name_login(self, username, password, response):
  2410. user_qs = Device_User.objects.filter(Q(username=username) | Q(phone=username) | Q(userEmail=username),
  2411. is_active=True, user_isValid=True)
  2412. return self.valid_login(user_qs, password, response)
  2413. def valid_login(self, user_qs, password, response):
  2414. if not user_qs.exists():
  2415. return response.json(104)
  2416. users = user_qs.values('userID', 'password')[0]
  2417. if not check_password(password, users['password']):
  2418. return response.json(111)
  2419. userID = users['userID']
  2420. # uid_qs = Device_Info.objects.filter(userID_id=userID, isExist=1).values('UID', 'NickName', 'View_Password')
  2421. # uid_arr = []
  2422. # for uid_q in uid_qs:
  2423. # uid_arr.append({'uid': uid_q['UID'], 'nick': uid_q['NickName'], 'password': uid_q['View_Password']})
  2424. res = {
  2425. 'userID': userID,
  2426. # 'uid_arr': uid_arr
  2427. }
  2428. return response.json(0, res)
  2429. # return response.json(0, res)
  2430. class alexaUidView(TemplateView):
  2431. def post(self, request, *args, **kwargs):
  2432. request.encoding = 'utf-8'
  2433. # request_dict = json.loads(request.body.decode('utf-8'))
  2434. request_dict = request.POST
  2435. response = ResponseObject()
  2436. return self.validates(request_dict, response)
  2437. def get(self, request, *args, **kwargs):
  2438. request.encoding = 'utf-8'
  2439. request_dict = request.GET
  2440. response = ResponseObject()
  2441. return self.validates(request_dict, response)
  2442. def validates1(self, request_dict, response):
  2443. userID = request_dict.get('alexa_user_id')
  2444. sid = request_dict.get('sid')
  2445. sst = request_dict.get('sst')
  2446. if sid == 'admin' and sst == 'admin':
  2447. uid_qs = Device_Info.objects.filter(userID_id=userID, isExist=1).values('UID', 'NickName', 'View_Password')
  2448. uid_arr = []
  2449. uid_list = []
  2450. for uid_q in uid_qs:
  2451. uid_list.append(uid_q['UID'])
  2452. uid_arr.append({'uid': uid_q['UID'], 'nick': uid_q['NickName'], 'password': uid_q['View_Password'], })
  2453. res = {
  2454. 'uid_arr': uid_arr
  2455. }
  2456. return response.json(0, res)
  2457. else:
  2458. return response.json(107)
  2459. def validates(self, request_dict, response):
  2460. userID = request_dict.get('alexa_user_id')
  2461. sid = request_dict.get('sid')
  2462. sst = request_dict.get('sst')
  2463. if sid == 'admin' and sst == 'admin':
  2464. uid_qs = Device_Info.objects.filter(userID_id=userID, isExist=1).values('UID', 'NickName', 'View_Password')
  2465. uid_dict = {}
  2466. uid_list = []
  2467. for uid_q in uid_qs:
  2468. # 追加
  2469. uid_list.append(uid_q['UID'])
  2470. # 给uid_q['UID']赋值
  2471. uid_dict[uid_q['UID']] = {'nick': uid_q['NickName'], 'password': uid_q['View_Password']}
  2472. us_qs = UidSetModel.objects.filter(uid__in=uid_list, is_alexa=1).values('uid', 'region_alexa')
  2473. # uid,password,region的列表
  2474. uid_arr = []
  2475. for us in us_qs:
  2476. uid = us['uid']
  2477. # 设备alexa区域
  2478. region_alexa = us['region_alexa']
  2479. if region_alexa == '':
  2480. region_alexa = "en"
  2481. # uid_arr.append({'uid': uid, 'nick': uid_dict[uid]['nick'], 'password': uid_dict['uid']['password']})
  2482. uid_arr.append({'uid': uid, 'nick': uid_dict[uid]['nick'], 'password': uid_dict[uid]['password'],
  2483. 'region': region_alexa})
  2484. res = {
  2485. 'uid_arr': uid_arr
  2486. }
  2487. return response.json(0, res)
  2488. else:
  2489. return response.json(107)
  2490. # 登出
  2491. class V2LogoutView(TemplateView):
  2492. @method_decorator(csrf_exempt)
  2493. def dispatch(self, *args, **kwargs):
  2494. return super(V2LogoutView, self).dispatch(*args, **kwargs)
  2495. def post(self, request, *args, **kwargs):
  2496. request.encoding = 'utf-8'
  2497. request_dict = request.POST
  2498. return self.Logout(request_dict)
  2499. def get(self, request, *args, **kwargs):
  2500. request.encoding = 'utf-8'
  2501. request_dict = request.GET
  2502. return self.Logout(request_dict)
  2503. def Logout(self, request_dict):
  2504. response = ResponseObject()
  2505. token = request_dict.get('token')
  2506. tko = TokenObject(token)
  2507. userID = tko.userID
  2508. if tko.code == 0:
  2509. Device_User.objects.filter(userID=tko.userID).update(online=False)
  2510. redisObj = RedisObject(db=3)
  2511. redisObj.del_data(key=tko.userID)
  2512. m_code = request_dict.get('m_code', None)
  2513. if m_code:
  2514. try:
  2515. UidPushModel.objects.filter(userID_id=userID, m_code=m_code).delete()
  2516. except Exception as e:
  2517. pass
  2518. else:
  2519. pass
  2520. os_type = request_dict.get('os_type', None)
  2521. appid = request_dict.get('appid', None)
  2522. udid = request_dict.get('udid', None)
  2523. if os_type and appid and udid:
  2524. tutk_push_url = "{tutk_push_domain}?cmd=mapsync&os={os_type}&appid={appid}&udid={udid}". \
  2525. format(os_type=os_type, appid=appid, udid=udid, tutk_push_domain=TUTK_PUSH_DOMAIN)
  2526. res = requests.get(url=tutk_push_url)
  2527. res_s = res.text
  2528. res_s = res_s.rstrip()
  2529. if res_s == '200 Success.':
  2530. return response.json(0)
  2531. else:
  2532. return response.json(10, 'not yes')
  2533. return response.json(0)
  2534. else:
  2535. return response.json(tko.code)
  2536. # 图片验证码生成
  2537. class generatePictureCodeView(TemplateView):
  2538. @method_decorator(csrf_exempt)
  2539. def dispatch(self, *args, **kwargs):
  2540. return super(generatePictureCodeView, self).dispatch(*args, **kwargs)
  2541. def post(self, request, *args, **kwargs):
  2542. request.encoding = 'utf-8'
  2543. request_dict = request.POST
  2544. return self.validates(request_dict)
  2545. def get(self, request, *args, **kwargs):
  2546. request.encoding = 'utf-8'
  2547. request_dict = request.GET
  2548. return self.validates(request_dict)
  2549. # 生成验证码和验证码图片
  2550. def get_valid_code_img(self, request_dict):
  2551. # ---------生成背景图片-----------
  2552. # img = Image.new('RGB', (260, 34), color=get_random_color())
  2553. img = Image.new('RGB', (260, 34),
  2554. color=(random.randint(0, 255), random.randint(0, 255), random.randint(0, 255)))
  2555. # -------/生成背景图片-----------
  2556. # --------生成随机验证码,设置字体格式,大小等属性------------
  2557. draw = ImageDraw.Draw(img)
  2558. path = BASE_DIR + '/Ansjer/file/font/simhei.ttf'
  2559. kumo_font = ImageFont.truetype(path, 40, encoding="unic") # 设置字体
  2560. print("字体可以")
  2561. valid_code_str = ''
  2562. for i in range(5):
  2563. random_num = str(random.randint(0, 9))
  2564. random_low_alpha = chr(random.randint(97, 122))
  2565. random_high_alpha = chr(random.randint(65, 90))
  2566. random_char = random.choice([random_num, random_low_alpha, random_high_alpha])
  2567. draw.text((i * 50 + 20, -3), random_char, 'white', kumo_font)
  2568. # 保存验证码字符串
  2569. valid_code_str += random_char
  2570. print(valid_code_str)
  2571. # --------/生成随机验证码,设置字体格式,大小等属性------------
  2572. # -------增加干扰线,点----------
  2573. # 噪点噪线
  2574. width = 260
  2575. height = 34
  2576. for i in range(10):
  2577. x1 = random.randint(0, width)
  2578. x2 = random.randint(0, width)
  2579. y1 = random.randint(0, height)
  2580. y2 = random.randint(0, height)
  2581. draw.line((x1, y1, x2, y2), fill=(random.randint(0, 255), random.randint(0, 255), random.randint(0, 255)))
  2582. for i in range(10):
  2583. draw.point([random.randint(0, width), random.randint(0, height)],
  2584. fill=(random.randint(0, 255), random.randint(0, 255), random.randint(0, 255)))
  2585. x = random.randint(0, width)
  2586. y = random.randint(0, height)
  2587. draw.arc((x, y, x + 4, y + 4), 0, 90,
  2588. fill=(random.randint(0, 255), random.randint(0, 255), random.randint(0, 255)))
  2589. # -------/增加干扰线,点-----------
  2590. # ------存入内存---------
  2591. f = BytesIO() # 用完之后,BytesIO会自动清掉
  2592. img.save(f, 'png')
  2593. data = f.getvalue()
  2594. return data, valid_code_str
  2595. # 生成验证码方法
  2596. def validates(self, request_dict):
  2597. # 页面传过来的uuid
  2598. imageCodeId = request_dict.get('imageCodeId', '')
  2599. response = ResponseObject()
  2600. if not imageCodeId:
  2601. return response.json(444)
  2602. # 存入redis的key
  2603. image_code_id = "image_code_%s" % imageCodeId
  2604. """
  2605. 基于PIL模块动态生成响应状态码图片
  2606. :param request:
  2607. :return:
  2608. """
  2609. # 图片data,验证码
  2610. data, valid_code_str = self.get_valid_code_img(request_dict)
  2611. if imageCodeId:
  2612. redisObj = RedisObject(db=6)
  2613. # 单条维护
  2614. redisObj.set_data(key=image_code_id, val=valid_code_str, expire=120)
  2615. image_code_val = redisObj.get_data(key=image_code_id)
  2616. print("________获取验证码的值" + image_code_val)
  2617. return HttpResponse(data)
  2618. # 图片验证码校验注册
  2619. class Image_Code_RegisterView(TemplateView):
  2620. @method_decorator(csrf_exempt)
  2621. def dispatch(self, *args, **kwargs):
  2622. return super(Image_Code_RegisterView, self).dispatch(*args, **kwargs)
  2623. def post(self, request, *args, **kwargs):
  2624. request.encoding = 'utf-8'
  2625. request_dict = request.POST
  2626. return self.validates(request_dict)
  2627. def get(self, request, *args, **kwargs):
  2628. request.encoding = 'utf-8'
  2629. request_dict = request.GET
  2630. return self.validates(request_dict)
  2631. # 检测验证码,并注册
  2632. def validates(self, request_dict):
  2633. print("__________request_dict:%s" % request_dict)
  2634. userEmail = request_dict.get('userEmail', None)
  2635. password = request_dict.get('userPwd', None)
  2636. lang = request_dict.get('lang', None)
  2637. # 前端传进来的uuid
  2638. imageCodeId = request_dict.get('imageCodeId', None)
  2639. # 页面输入的验证码
  2640. response = ResponseObject(lang)
  2641. valid_code = request_dict.get('id_v_code', None)
  2642. if not all([userEmail, password, lang, imageCodeId, valid_code]):
  2643. return response.json(444)
  2644. try:
  2645. for i in range(1, 4):
  2646. if i == 1:
  2647. password = base64.b64decode(password)
  2648. password = password.decode('utf-8')
  2649. password = password[1:-1]
  2650. if i == 2:
  2651. password = base64.b64decode(password)
  2652. password = password.decode('utf-8')
  2653. password = password[2:-2]
  2654. if i == 3:
  2655. password = base64.b64decode(password)
  2656. password = password.decode('utf-8')
  2657. password = password[3:-3]
  2658. print("password%s" % password)
  2659. except Exception as e:
  2660. return response.json(111)
  2661. try:
  2662. for i in range(1, 4):
  2663. if i == 1:
  2664. valid_code = base64.b64decode(valid_code)
  2665. valid_code = valid_code.decode('utf-8')
  2666. valid_code = valid_code[1:-1]
  2667. if i == 2:
  2668. valid_code = base64.b64decode(valid_code)
  2669. valid_code = valid_code.decode('utf-8')
  2670. valid_code = valid_code[2:-2]
  2671. if i == 3:
  2672. valid_code = base64.b64decode(valid_code)
  2673. valid_code = valid_code.decode('utf-8')
  2674. valid_code = valid_code[3:-3]
  2675. print("valid_code:%s" % valid_code)
  2676. except Exception as e:
  2677. return response.json(121)
  2678. if not userEmail:
  2679. return response.json(105)
  2680. if not password:
  2681. return response.json(109)
  2682. userEmail = userEmail.strip()
  2683. password = password.strip()
  2684. # 注释
  2685. if userEmail:
  2686. emailValid = Device_User.objects.filter(userEmail=userEmail)
  2687. if emailValid:
  2688. return response.json(103)
  2689. # 根据uuid拼接的key
  2690. image_code_key = "image_code_%s" % imageCodeId
  2691. # 判断验证码是否过期
  2692. if image_code_key is None:
  2693. return response.json(120)
  2694. redisObj = RedisObject(db=6)
  2695. # redis里面的验证码
  2696. redis_image_code = redisObj.get_data(key=image_code_key)
  2697. # 验证用户输入的验证码和redis中的验证码
  2698. if redis_image_code is False or valid_code.lower() != redis_image_code.lower():
  2699. return response.json(121)
  2700. # 删除redis中的图片验证码,防止用户使用同一个图片验证码验证多次
  2701. redisObj.del_data(key=image_code_key)
  2702. username = userEmail
  2703. email_qs = Device_User.objects.filter(Q(userEmail=userEmail) | Q(username=userEmail))
  2704. if email_qs:
  2705. return response.json(103)
  2706. # #存用户名和密码
  2707. create_data = {
  2708. "username": username,
  2709. "NickName": username,
  2710. "userEmail": userEmail,
  2711. "password": make_password(password),
  2712. "userID": CommonService.getUserID(μs=False, setOTAID=True),
  2713. "is_active": True,
  2714. "user_isValid": True,
  2715. }
  2716. users = Device_User.objects.create(**create_data)
  2717. return self.do_login(email_qs, response)
  2718. def do_login(self, user_qs, response):
  2719. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  2720. user_qs.update(last_login=now_time, online=True)
  2721. userID = user_qs[0].userID
  2722. print('userID' + userID)
  2723. tko = TokenObject()
  2724. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  2725. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  2726. # 增加角色
  2727. user_qs[0].role.add(Role.objects.get(rid=1))
  2728. role_dict = ModelService.own_role(userID=userID)
  2729. res['rid'] = role_dict['rid']
  2730. res['roleName'] = role_dict['roleName']
  2731. res['permList'] = ModelService.own_permission(userID)
  2732. res['userID'] = userID
  2733. # 昵称,邮箱,电话,刷新,头像
  2734. userIconPath = str(user_list[0]["userIconPath"])
  2735. if userIconPath and userIconPath.find('static/') != -1:
  2736. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  2737. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  2738. else:
  2739. res['userIconUrl'] = ''
  2740. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  2741. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  2742. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  2743. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  2744. print(res)
  2745. return response.json(0, res)
  2746. class UserAppFrequencyView(TemplateView):
  2747. @method_decorator(csrf_exempt)
  2748. def dispatch(self, *args, **kwargs):
  2749. return super(UserAppFrequencyView, self).dispatch(*args, **kwargs)
  2750. def post(self, request, *args, **kwargs):
  2751. request.encoding = 'utf-8'
  2752. request_dict = request.POST
  2753. operation = kwargs.get('operation')
  2754. return self.validates(request_dict, operation)
  2755. def get(self, request, *args, **kwargs):
  2756. request.encoding = 'utf-8'
  2757. request_dict = request.GET
  2758. operation = kwargs.get('operation')
  2759. return self.validates(request_dict, operation)
  2760. def validates(self, request_dict, operation):
  2761. token = request_dict.get('token', None)
  2762. response = ResponseObject()
  2763. token = TokenObject(token)
  2764. if token.code != 0:
  2765. return response.json(token.code)
  2766. if operation == 'refresh':
  2767. return self.do_refresh(request_dict, token.userID, response)
  2768. else:
  2769. return response.json(404)
  2770. def do_refresh(self, request_dict, userID, response):
  2771. type = request_dict.get('type', None)
  2772. month = request_dict.get('month', None)
  2773. if not type or not month:
  2774. return response.json(444, 'type')
  2775. else:
  2776. type = int(type)
  2777. now_time = int(time.time())
  2778. month = int(month)
  2779. uaf_qs = UserAppFrequencyModel.objects.filter(user__userID=userID)
  2780. if not uaf_qs.exists():
  2781. user = Device_User.objects.filter(userID=userID)[0]
  2782. data = {
  2783. 'user': user,
  2784. 'type': type,
  2785. 'data_time': month,
  2786. 'add_time': now_time,
  2787. 'update_time': now_time,
  2788. }
  2789. UserAppFrequencyModel.objects.create(**data)
  2790. return response.json(0)
  2791. else:
  2792. updateMonth = time.strftime('%m', time.localtime(month))
  2793. uaf = uaf_qs.values('id', 'type', 'data_time')[0]
  2794. dbMonth = time.strftime('%m', time.localtime(int(uaf['data_time'])))
  2795. print('update month is ' + updateMonth)
  2796. print('db month is ' + dbMonth)
  2797. if updateMonth == dbMonth:
  2798. UserAppFrequencyModel.objects.filter(id=uaf['id']).update(type=type)
  2799. return response.json(0)
  2800. elif updateMonth > dbMonth:
  2801. user = Device_User.objects.filter(userID=userID)[0]
  2802. data = {
  2803. 'user': user,
  2804. 'type': type,
  2805. 'data_time': month,
  2806. 'add_time': now_time,
  2807. 'update_time': now_time,
  2808. }
  2809. UserAppFrequencyModel.objects.create(**data)
  2810. return response.json(0)
  2811. else:
  2812. return response.json(444, 'month')
  2813. class loginCodeView(View):
  2814. @method_decorator(csrf_exempt) # @csrf_exempt
  2815. def dispatch(self, *args, **kwargs):
  2816. return super(loginCodeView, self).dispatch(*args, **kwargs)
  2817. @ratelimit(key='ip', rate='2/m')
  2818. def post(self, request, *args, **kwargs):
  2819. request.encoding = 'utf-8'
  2820. lang = request.POST.get('lang', None)
  2821. if not lang:
  2822. lang = request.POST.get('language', None)
  2823. response = ResponseObject(lang)
  2824. request_dict = request.POST
  2825. phone = request_dict.get('phone', None)
  2826. if phone is not None:
  2827. was_limited = getattr(request, 'limited', False)
  2828. if was_limited is True:
  2829. return response.json(5)
  2830. return self.validate(request_dict, response)
  2831. @ratelimit(key='ip', rate='2/m')
  2832. def get(self, request, *args, **kwargs):
  2833. request.encoding = 'utf-8'
  2834. lang = request.GET.get('lang', None)
  2835. if not lang:
  2836. lang = request.GET.get('language', None)
  2837. response = ResponseObject(lang)
  2838. was_limited = getattr(request, 'limited', False)
  2839. if was_limited is True:
  2840. return response.json(5)
  2841. request_dict = request.GET
  2842. return self.validate(request_dict, response)
  2843. def validate(self, request_dict, response):
  2844. phone = request_dict.get('phone', None)
  2845. country_code = request_dict.get('country_code', None)
  2846. sign_name = request_dict.get('sign_name', None)
  2847. if phone and sign_name:
  2848. du_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
  2849. if not du_qs.exists():
  2850. return response.json(104)
  2851. else:
  2852. redisObject = RedisObject()
  2853. login_code_key = '{phone}_login_code'.format(phone=phone)
  2854. login_code = redisObject.get_data(key=login_code_key)
  2855. login_code_ttl = redisObject.get_ttl(key=login_code_key)
  2856. if login_code_ttl > 240 and login_code:
  2857. return response.json(90)
  2858. login_code = RandomStr(6, True)
  2859. aliSms = AliSmsObject()
  2860. if sign_name == 'zosi':
  2861. sign_sms = '周视'
  2862. else:
  2863. sign_sms = 'Ansjer'
  2864. res = aliSms.send_code_sms(phone=phone, code=login_code, sign_name=sign_sms, temp_msg='SMS_151675022')
  2865. if res['Code'] == 'OK':
  2866. if redisObject.set_data(key=login_code_key, val=login_code, expire=300) is not True:
  2867. return response.json(48)
  2868. return response.json(0)
  2869. else:
  2870. return response.json(10, res['Message'])
  2871. else:
  2872. return response.json(444)
  2873. class v3LoginByCodeView(View):
  2874. @method_decorator(csrf_exempt) # @csrf_exempt
  2875. def dispatch(self, *args, **kwargs):
  2876. return super(v3LoginByCodeView, self).dispatch(*args, **kwargs)
  2877. def post(self, request, *args, **kwargs):
  2878. request.encoding = 'utf-8'
  2879. lang = request.POST.get('lang', None)
  2880. if not lang:
  2881. lang = request.POST.get('language', None)
  2882. response = ResponseObject(lang)
  2883. request_dict = request.POST
  2884. phone = request_dict.get('phone', None)
  2885. if phone is not None:
  2886. was_limited = getattr(request, 'limited', False)
  2887. if was_limited is True:
  2888. return response.json(5)
  2889. return self.validate(request_dict, response)
  2890. def get(self, request, *args, **kwargs):
  2891. request.encoding = 'utf-8'
  2892. lang = request.GET.get('lang', None)
  2893. if not lang:
  2894. lang = request.GET.get('language', None)
  2895. response = ResponseObject(lang)
  2896. was_limited = getattr(request, 'limited', False)
  2897. if was_limited is True:
  2898. return response.json(5)
  2899. request_dict = request.GET
  2900. return self.validate(request_dict, response)
  2901. def validate(self, request_dict, response):
  2902. phone = request_dict.get('phone', None)
  2903. code = request_dict.get('code', None)
  2904. if phone and code:
  2905. redisObject = RedisObject()
  2906. login_code_key = '{phone}_login_code'.format(phone=phone)
  2907. login_code = redisObject.get_data(key=login_code_key)
  2908. if login_code is not False:
  2909. print(code)
  2910. code = CommonService.decode_data(code)
  2911. print(code)
  2912. if login_code == code:
  2913. if response.lang is None:
  2914. response.lang = 'en'
  2915. return self.do_phone_login(phone, response)
  2916. else:
  2917. return response.json(121)
  2918. else:
  2919. return response.json(120)
  2920. def do_phone_login(self, phone, response):
  2921. user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone), is_active=True,
  2922. user_isValid=True)
  2923. return self.valid_login(user_qs, response)
  2924. def valid_login(self, user_qs, response):
  2925. if not user_qs.exists():
  2926. return response.json(104)
  2927. # users = user_qs.values('role__rid', 'role__roleName', 'userID', 'role', 'NickName', 'username', 'userEmail',
  2928. # 'phone', 'password', 'userIconPath', 'user_isValid', 'is_active')[0]
  2929. users = user_qs.values('role__rid', 'role__roleName', 'userID', 'NickName', 'username', 'userEmail',
  2930. 'phone', 'password', 'userIconPath')[0]
  2931. userID = users['userID']
  2932. tko = TokenObject()
  2933. res = tko.generate(
  2934. data={'userID': userID, 'lang': response.lang, 'user': users['username'],
  2935. 'm_code': '123413243214'})
  2936. # 添加用户登录类型
  2937. oauth_qs = UserOauth2Model.objects.filter(userID__userID=userID)
  2938. auth_type = 0
  2939. if oauth_qs.exists():
  2940. auth_type = oauth_qs[0].authType
  2941. if tko.code == 0:
  2942. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  2943. user_qs.update(last_login=now_time, language=response.lang)
  2944. res['rid'] = users['role__rid']
  2945. res['roleName'] = users['role__roleName']
  2946. res['permList'] = ModelService.own_permission(userID)
  2947. res['userID'] = userID
  2948. # 昵称,邮箱,电话,刷新,头像
  2949. userIconPath = str(users['userIconPath'])
  2950. if userIconPath and userIconPath.find('static/') != -1:
  2951. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  2952. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  2953. else:
  2954. res['userIconUrl'] = ''
  2955. res['NickName'] = users['NickName'] if users['NickName'] is not None else ''
  2956. res['username'] = users['username'] if users['username'] is not None else ''
  2957. res['userEmail'] = users['userEmail'] if users['userEmail'] is not None else ''
  2958. res['phone'] = users['phone'] if users['phone'] is not None else ''
  2959. res['authType'] = auth_type
  2960. return response.json(0, res)
  2961. else:
  2962. return response.json(tko.code)
  2963. class v3LoginByFingerprintView(View):
  2964. @method_decorator(csrf_exempt) # @csrf_exempt
  2965. def dispatch(self, *args, **kwargs):
  2966. return super(v3LoginByFingerprintView, self).dispatch(*args, **kwargs)
  2967. def post(self, request, *args, **kwargs):
  2968. request.encoding = 'utf-8'
  2969. lang = request.POST.get('lang', None)
  2970. if not lang:
  2971. lang = request.POST.get('language', None)
  2972. response = ResponseObject(lang)
  2973. request_dict = request.POST
  2974. was_limited = getattr(request, 'limited', False)
  2975. if was_limited is True:
  2976. return response.json(5)
  2977. return self.validate(request_dict, response)
  2978. def get(self, request, *args, **kwargs):
  2979. request.encoding = 'utf-8'
  2980. lang = request.GET.get('lang', None)
  2981. if not lang:
  2982. lang = request.GET.get('language', None)
  2983. response = ResponseObject(lang)
  2984. was_limited = getattr(request, 'limited', False)
  2985. if was_limited is True:
  2986. return response.json(5)
  2987. request_dict = request.GET
  2988. return self.validate(request_dict, response)
  2989. def validate(self, request_dict, response):
  2990. password = request_dict.get("password", None)
  2991. if password:
  2992. password = CommonService.decode_data(password)
  2993. if password is None:
  2994. return response.json(444)
  2995. else:
  2996. user_qs = Device_User.objects.filter(username=password, is_active=True, user_isValid=True)
  2997. if not user_qs.exists():
  2998. return response.json(104)
  2999. else:
  3000. users = user_qs.values('role__rid', 'role__roleName', 'userID', 'NickName', 'username', 'userEmail',
  3001. 'phone', 'password', 'userIconPath', 'fingerprint_enable', 'fingerprint_key')[0]
  3002. if users['fingerprint_enable'] == 0:
  3003. return response.json(112)
  3004. else:
  3005. userID = users['userID']
  3006. tko = TokenObject()
  3007. res = tko.generate(
  3008. data={'userID': userID, 'lang': response.lang, 'user': users['username'],
  3009. 'm_code': '123413243214'})
  3010. if tko.code == 0:
  3011. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  3012. user_qs.update(last_login=now_time, language=response.lang)
  3013. res['rid'] = users['role__rid']
  3014. res['roleName'] = users['role__roleName']
  3015. res['permList'] = ModelService.own_permission(userID)
  3016. res['userID'] = userID
  3017. # 昵称,邮箱,电话,刷新,头像
  3018. userIconPath = str(users['userIconPath'])
  3019. if userIconPath and userIconPath.find('static/') != -1:
  3020. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  3021. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  3022. else:
  3023. res['userIconUrl'] = ''
  3024. res['NickName'] = users['NickName'] if users['NickName'] is not None else ''
  3025. res['username'] = users['username'] if users['username'] is not None else ''
  3026. res['userEmail'] = users['userEmail'] if users['userEmail'] is not None else ''
  3027. res['phone'] = users['phone'] if users['phone'] is not None else ''
  3028. res['fingerprint_enable'] = users['fingerprint_enable']
  3029. res['fingerprint_key'] = CommonService.encode_data(content=users['fingerprint_key'], start=2)
  3030. return response.json(0, res)
  3031. else:
  3032. return response.json(tko.code)
  3033. else:
  3034. return response.json(444)
  3035. class v3SetFingerprintView(View):
  3036. @method_decorator(csrf_exempt)
  3037. def dispatch(self, *args, **kwargs):
  3038. return super(v3SetFingerprintView, self).dispatch(*args, **kwargs)
  3039. def post(self, request, *args, **kwargs):
  3040. request.encoding = 'utf-8'
  3041. request_dict = request.POST
  3042. return self.validate(request_dict)
  3043. def get(self, request, *args, **kwargs):
  3044. request.encoding = 'utf-8'
  3045. request_dict = request.GET
  3046. return self.validate(request_dict)
  3047. def validate(self, request_dict):
  3048. lang = request_dict.get('lang', None)
  3049. token = request_dict.get('token', None)
  3050. fingerprint_enable = request_dict.get('fingerprint_enable', None)
  3051. fingerprint_key = request_dict.get('fingerprint_key', None)
  3052. response = ResponseObject()
  3053. token = TokenObject(token)
  3054. if token.code != 0:
  3055. return response.json(token.code)
  3056. if not lang:
  3057. return response.json(444, 'lang')
  3058. response.lang = lang
  3059. data = {}
  3060. if fingerprint_enable:
  3061. data['fingerprint_enable'] = int(fingerprint_enable)
  3062. if fingerprint_key:
  3063. data['fingerprint_key'] = CommonService.decode_data(fingerprint_key, end=3)
  3064. if len(data) > 0:
  3065. Device_User.objects.filter(userID=token.userID).update(**data)
  3066. return response.json(0)
  3067. class AppleAuthLogin(View):
  3068. def post(self, request, *args, **kwargs):
  3069. request.encoding = 'utf-8'
  3070. request_dict = request.POST
  3071. return self.validate(request_dict)
  3072. def get(self, request, *args, **kwargs):
  3073. request.encoding = 'utf-8'
  3074. request_dict = request.GET
  3075. return self.validate(request_dict)
  3076. def validate(self, request_dict):
  3077. lang = request_dict.get('lang', None)
  3078. identity_token = request_dict.get('identity_token', None)
  3079. app_bundle_id = request_dict.get('app_bundle_id', None) # 包名
  3080. response = ResponseObject(lang)
  3081. identity_token = CommonService.decode_data(identity_token)
  3082. # print(identity_token)
  3083. if identity_token:
  3084. key_url = 'https://appleid.apple.com/auth/keys'
  3085. key_response = requests.get(key_url).json()
  3086. # print(key_response)
  3087. head = jwt.get_unverified_header(identity_token)
  3088. # print(head)
  3089. token_key = head['kid']
  3090. key_object = None
  3091. alg = None
  3092. for pub_key in key_response['keys']:
  3093. if pub_key['kid'] == token_key:
  3094. key_object = simplejson.dumps(pub_key)
  3095. key_object = RSAAlgorithm.from_jwk(key_object)
  3096. alg = pub_key['alg']
  3097. break
  3098. if key_object:
  3099. try:
  3100. claims = jwt.decode(identity_token, key=key_object, verify=True, algorithms=[alg], audience=app_bundle_id)
  3101. unionID = claims['sub']
  3102. print(claims)
  3103. user_extend_qs = UserOauth2Model.objects.filter(unionID=unionID, authType=2)
  3104. if user_extend_qs.exists():
  3105. # 如果用户绑定过则直接登录
  3106. userID = user_extend_qs[0].userID_id
  3107. print(userID)
  3108. user_qs = Device_User.objects.filter(userID=userID)
  3109. return self.do_login(user_qs, response)
  3110. else:
  3111. # 如果用户为绑定过则创建用户并进行登录返回token
  3112. userID = CommonService.getUserID(getUser=False)
  3113. if claims.__contains__('email'):
  3114. nickname = claims['email']
  3115. else:
  3116. nickname = 'apple_{num}'.format(num=CommonService.RandomStr(6, False))
  3117. return self.do_register(userID, nickname, response, app_bundle_id, unionID)
  3118. except Exception as e:
  3119. print(e)
  3120. return response.json(717)
  3121. else:
  3122. return response.json(444)
  3123. else:
  3124. return response.json(444)
  3125. # 登录
  3126. def do_login(self, user_qs, response):
  3127. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  3128. userID = user_qs[0].userID
  3129. print('userID' + userID)
  3130. tko = TokenObject()
  3131. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  3132. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  3133. # 增加角色
  3134. user_qs[0].role.add(Role.objects.get(rid=1))
  3135. role_dict = ModelService.own_role(userID=userID)
  3136. res['rid'] = role_dict['rid']
  3137. res['roleName'] = role_dict['roleName']
  3138. res['permList'] = ModelService.own_permission(userID)
  3139. res['userID'] = userID
  3140. # 昵称,邮箱,电话,刷新,头像
  3141. userIconPath = str(user_list[0]["userIconPath"])
  3142. if userIconPath and userIconPath.find('static/') != -1:
  3143. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  3144. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  3145. else:
  3146. res['userIconUrl'] = ''
  3147. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  3148. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  3149. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  3150. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  3151. print(res)
  3152. # 添加用户登录类型
  3153. oauth_qs = UserOauth2Model.objects.filter(userID__userID=userID)
  3154. auth_type = 0
  3155. if oauth_qs.exists():
  3156. auth_type = oauth_qs[0].authType
  3157. res['authType'] = auth_type
  3158. user_qs.update(last_login=now_time, online=True)
  3159. return response.json(0, res)
  3160. def do_register(self, userID, nickname, response, appBundleId, unionID):
  3161. data_valid = DataValid()
  3162. if data_valid.name_validate(userID) is not True:
  3163. return response.json(105)
  3164. try:
  3165. users = Device_User.objects.create(
  3166. username=userID,
  3167. NickName=nickname,
  3168. password=make_password('123456'),
  3169. userID=userID,
  3170. is_active=True,
  3171. user_isValid=True,
  3172. )
  3173. nowTime = int(time.time())
  3174. UserOauth2Model.objects.create(
  3175. addTime=nowTime,
  3176. updTime=nowTime,
  3177. userID_id=users.userID,
  3178. authType=2,
  3179. unionID=unionID
  3180. )
  3181. except Exception as e:
  3182. errorInfo = traceback.format_exc()
  3183. print(errorInfo)
  3184. return response.json(424, repr(e))
  3185. else:
  3186. user_qs = Device_User.objects.filter(Q(userID=userID))
  3187. print('---')
  3188. print(user_qs)
  3189. return self.do_login(user_qs, response)
  3190. class LocalUserView(View):
  3191. def get(self, request, *args, **kwargs):
  3192. request.encoding = 'utf-8'
  3193. request_dict = request.GET
  3194. operation = kwargs.get('operation', None)
  3195. return self.validate(request_dict, operation, CommonService.get_ip_address(request))
  3196. def post(self, request, *args, **kwargs):
  3197. request.encoding = 'utf-8'
  3198. request_dict = request.POST
  3199. operation = kwargs.get('operation', None)
  3200. return self.validate(request_dict, operation, CommonService.get_ip_address(request))
  3201. def validate(self, request_dict, operation, ip):
  3202. language = request_dict.get('language', None)
  3203. response = ResponseObject(lang=language)
  3204. print(CommonService.getAddr(ip))
  3205. if operation == 'login':
  3206. return self.do_local_login(request_dict, response)
  3207. else:
  3208. return response.json(404)
  3209. def do_local_login(self, request_dict, response):
  3210. username = request_dict.get('username', None)
  3211. app_bundle_id = request_dict.get('app_bundle_id', None)
  3212. user_qs = Device_User.objects.filter(username=username)
  3213. if user_qs.exists():
  3214. return self.do_login(user_qs, response)
  3215. else:
  3216. # 如果用户为绑定过则创建用户并进行登录返回token
  3217. userID = CommonService.getUserID(μs=False, setOTAID=True)
  3218. nickname = 'local_{num}'.format(num=CommonService.RandomStr(6, False))
  3219. return self.do_register(userID, username, nickname, response, app_bundle_id)
  3220. # 登录
  3221. def do_login(self, user_qs, response):
  3222. now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
  3223. userID = user_qs[0].userID
  3224. print('userID' + userID)
  3225. tko = TokenObject()
  3226. user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
  3227. res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
  3228. # 增加角色
  3229. user_qs[0].role.add(Role.objects.get(rid=1))
  3230. role_dict = ModelService.own_role(userID=userID)
  3231. res['rid'] = role_dict['rid']
  3232. res['roleName'] = role_dict['roleName']
  3233. res['permList'] = ModelService.own_permission(userID)
  3234. res['userID'] = userID
  3235. # 昵称,邮箱,电话,刷新,头像
  3236. userIconPath = str(user_list[0]["userIconPath"])
  3237. if userIconPath and userIconPath.find('static/') != -1:
  3238. userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
  3239. res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
  3240. else:
  3241. res['userIconUrl'] = ''
  3242. res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
  3243. res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
  3244. res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
  3245. res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
  3246. print(res)
  3247. # 添加用户登录类型
  3248. oauth_qs = UserOauth2Model.objects.filter(userID__userID=userID)
  3249. auth_type = 0
  3250. if oauth_qs.exists():
  3251. auth_type = oauth_qs[0].authType
  3252. res['authType'] = auth_type
  3253. user_qs.update(last_login=now_time, online=True)
  3254. return response.json(0, res)
  3255. def do_register(self, userID, username, nickname, response, appBundleId):
  3256. data_valid = DataValid()
  3257. if data_valid.name_validate(userID) is not True:
  3258. return response.json(105)
  3259. try:
  3260. Device_User.objects.create(
  3261. username=username,
  3262. NickName=nickname,
  3263. password=make_password('123456'),
  3264. userID=userID,
  3265. is_active=True,
  3266. user_isValid=True,
  3267. is_local=True
  3268. )
  3269. except Exception as e:
  3270. errorInfo = traceback.format_exc()
  3271. print(errorInfo)
  3272. return response.json(424, repr(e))
  3273. else:
  3274. user_qs = Device_User.objects.filter(Q(userID=userID))
  3275. print('---')
  3276. print(user_qs)
  3277. return self.do_login(user_qs, response)