ASJServer/Controller/UserController.py

#!/usr/bin/env python3
# -*- coding: utf-8 -*-
"""
@Copyright (C) ansjer cop Video Technology Co.,Ltd.All rights reserved.
@AUTHOR: ASJRD018
@NAME: AnsjerFormal
@software: PyCharm
@DATE: 2018/9/11 15:08
@Version: python3.6
@MODIFY DECORD:ansjer dev
@file: UserController.py
@Contact: chanjunkai@163.com
"""
from Model.models import Role
import traceback, datetime

import simplejson as json
from django.contrib.auth.hashers import make_password, check_password  # 对密码加密模块
from django.http import HttpResponseRedirect
from django.utils.decorators import method_decorator
from django.utils.timezone import utc
from django.views.decorators.csrf import csrf_exempt
from django.views.generic import TemplateView
from ratelimit.decorators import ratelimit

from Controller.CheckUserData import DataValid, date_handler, RandomStr
from Model.models import Device_User
from Object.AWS.SesClassObject import SesClassObject
from Object.RedisObject import RedisObject
from Object.ResponseObject import ResponseObject
from Object.TokenObject import TokenObject
from Service.CommonService import CommonService
from Service.MiscellService import MiscellService
from Service.ModelService import ModelService
from Service.TemplateService import TemplateService
from Object.AliSmsObject import AliSmsObject
from django.db.models import Q
from Ansjer.config import AuthCode_Expire, SERVER_DOMAIN


# 获取验证码
class authCodeView(TemplateView):

    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(authCodeView, self).dispatch(*args, **kwargs)

    @ratelimit(key='ip', rate='2/m')
    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        lang = request.POST.get('language', None)
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        username = request.POST.get('userName', None)
        useremail = request.POST.get('userEmail', None)
        return self.ValidationError(username, useremail, response)

    # @ratelimit(key='ip', rate='2/m')
    def get(self, request, *args, **kwargs):
        # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
        request.encoding = 'utf-8'
        lang = request.GET.get('language', None)
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        username = request.GET.get('userName', None)
        email = request.GET.get('userEmail', None)
        return self.ValidationError(username, email, response)

    def ValidationError(self, username, email, response):
        if username:
            username = username.strip()
            return self.phoneCode(username, response)
        elif email:
            email = email.strip()
            return self.emailCode(email, response)
        else:
            return response.json(800)

    def phoneCode(self, phone, response):
        dataValid = DataValid()
        if dataValid.mobile_validate(phone):
            reds = RedisObject()
            identifyingCode = reds.get_data(key=phone + '_identifyingCode')
            if identifyingCode is False:
                user_qs = Device_User.objects.filter(username=phone)
                if user_qs.exists():
                    return response.json(101)
                else:
                    identifyingCode = RandomStr(6, True)
                    if reds.set_data(key=phone + '_identifyingCode', val=identifyingCode, expire=600):
                        return response.json(0, {'identifyingCode': identifyingCode})
                    else:
                        return response.json(10, '生成缓存系统错误')

            else:
                return response.json(0, {'identifyingCode': identifyingCode})
        else:
            return response.json(107)

    def emailCode(self, email, response):
        dataValid = DataValid()
        if dataValid.email_validate(email):
            reds = RedisObject()
            identifyingCode = reds.get_data(key=email + '_identifyingCode')
            if identifyingCode is False:
                user_qs = Device_User.objects.filter(username=email)
                email_qs = Device_User.objects.filter(userEmail=email)
                if user_qs.exists():
                    return response.json(103)
                elif email_qs.exists():
                    return response.json(103)
                else:
                    identifyingCode = RandomStr(6, True)
                    if reds.set_data(key=email + '_identifyingCode', val=identifyingCode, expire=AuthCode_Expire):
                        send_data = TemplateService.email_message(type='register_code', language=response.lang)
                        ses = SesClassObject()
                        send_res = ses.send_email(
                            send_address_list=[email],
                            subject=send_data['title'],
                            body=send_data['body'].replace("{username}", email).replace("{captcha}",
                                                                                        str(identifyingCode))
                        )
                        if send_res:
                            reds.set_data(key=email + '_registerCode', val=identifyingCode, expire=AuthCode_Expire)
                            return response.json(0, {'identifyingCode': identifyingCode})
                        else:
                            return response.json(44)
                    else:
                        return response.json(10, '生成缓存系统错误')

            else:
                return response.json(89, {'identifyingCode': identifyingCode})
        else:
            return response.json(107)


# 验证码注册
class registerView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(registerView, self).dispatch(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.POST
        return self.validates(request_dict)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        return self.validates(request_dict)

    def validates(self, request_dict):
        username = request_dict.get('userName', None)
        userEmail = request_dict.get('userEmail', None)
        password = request_dict.get('userPwd', None)
        authCode = request_dict.get('identifyingCode', None)
        language = request_dict.get('language', None)
        response = ResponseObject(language)
        if username and password and authCode:
            # 过滤空格
            username = username.strip()
            if userEmail:
                userEmail = userEmail.strip()
            return self.register(username, userEmail, password, authCode, response)
        else:
            return response.json(800)

    def register(self, username, userEmail, password, authCode, response):
        dataValid = DataValid()
        reds = RedisObject()
        identifyingCode = reds.get_data(key=username + '_identifyingCode')
        if identifyingCode is False:
            if userEmail:
                identifyingCode = reds.get_data(key=userEmail + '_identifyingCode')
                if identifyingCode is False:
                    return response.json(120)
                else:
                    username = userEmail
            else:
                return response.json(120)
        if authCode != identifyingCode:
            return response.json(121)
        if dataValid.password_validate(password):
            if dataValid.email_validate(username):
                if userEmail:
                    print(userEmail)
                    emailValid = Device_User.objects.filter(userEmail=userEmail)
                    if emailValid.exists():
                        return response.json(103)
                else:
                    userEmail = username
                if username:
                    nameValid = Device_User.objects.filter(username=username)
                    if nameValid.exists():
                        return response.json(101)
                try:
                    create_data = {
                        "username": username,
                        "userEmail": userEmail,
                        "password": make_password(password),
                        "userID": CommonService.getUserID(μs=False, setOTAID=True),
                        "is_active": True,
                        "user_isValid": True,
                    }
                    users = Device_User.objects.create(**create_data)
                except Exception as e:
                    errorInfo = traceback.format_exc()
                    print(errorInfo)
                    return response.json(424, repr(e))
                else:
                    if reds.del_data(key=username + '_identifyingCode'):
                        return response.json(0, {
                            "user": {
                                "userID": users.userID,
                                "username": users.username,
                                "userEmail": users.userEmail,
                                "NickName": users.NickName,
                                "userIconUrl": str(users.userIconUrl),
                                "is_superuser": users.is_superuser,
                                "is_active": users.is_active,
                                "data_joined": date_handler(users.data_joined),
                                "last_login": date_handler(users.last_login),
                            }
                        })
                    else:
                        return response.json(10, '删除缓存验证码错误')

            elif dataValid.mobile_validate(username):
                nameValid = Device_User.objects.filter(username=username)
                if nameValid:
                    return response.json(101)
                try:
                    create_data = {
                        "username": username,
                        "userEmail": userEmail,
                        "password": make_password(password),
                        "userID": CommonService.getUserID(μs=False, setOTAID=True),
                        "is_active": True,
                        "user_isValid": True,
                    }
                    users = Device_User.objects.create(**create_data)
                except Exception as e:
                    errorInfo = traceback.format_exc()
                    print(errorInfo)
                    return response.json(424, repr(e))
                else:
                    if reds.del_data(key=username + '_identifyingCode'):
                        return response.json(0, {
                            "user": {
                                "userID": users.userID,
                                "username": users.username,
                                "userEmail": users.userEmail,
                                "NickName": users.NickName,
                                "userIconUrl": str(users.userIconUrl),
                                "is_superuser": users.is_superuser,
                                "is_active": users.is_active,
                                "data_joined": date_handler(users.data_joined),
                                "last_login": date_handler(users.last_login),
                            }
                        })
                    else:
                        return response.json(10, '删除缓存验证码错误')

            else:
                return response.json(107)
        else:
            return response.json(109)


# 登出
class LogoutView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(LogoutView, self).dispatch(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        token = request.POST.get('token')
        return self.Logout(request, token)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        token = request.GET.get('token')
        return self.Logout(request, token)

    def Logout(self, request, token):
        response = ResponseObject()
        tko = TokenObject(token)
        if tko.code != 0:
            return response.json(tko.code)
        MiscellService.add_access_log(request=request, status_code=200)
        Device_User.objects.filter(userID=tko.userID).update(online=False)
        return response.json(0)


# 修改密码
class ChangePwdView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(ChangePwdView, self).dispatch(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.POST
        return self.validates(request_dict)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        return self.validates(request_dict)

    def validates(self, request_dict):
        token = request_dict.get('token', None)
        oldPwd = request_dict.get('oldPwd', None)
        newPwd = request_dict.get('newPwd', None)
        response = ResponseObject()
        if oldPwd is None and newPwd is None:
            return response.json(800)
        tko = TokenObject(token)
        response.lang = tko.lang
        if tko.code != 0:
            return response.json(tko.code)
        return self.updatePwd(tko.userID, oldPwd, newPwd, response)

    def updatePwd(self, userID, oldPwd, newPwd, response):
        user_qs = Device_User.objects.filter(userID=userID)
        if not user_qs.exists():
            return response.json(104)
        c_p = check_password(oldPwd, user_qs[0].password)
        # 密码是否正确
        if not c_p:
            return response.json(111)
        update = user_qs.update(password=make_password(newPwd))
        if update:
            return response.json(0)
        else:
            return response.json(112)


class ForgetPwdView(TemplateView):
    '''
    忘记密码
    '''

    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(ForgetPwdView, self).dispatch(*args, **kwargs)

    @ratelimit(key='ip', rate='1/m')
    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        response = ResponseObject()
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        userName = request.GET.get('userName', None)
        return self.ValidationError(userName, response)

    @ratelimit(key='ip', rate='1/m')
    def post(self, request):
        request.encoding = 'utf-8'
        userName = request.POST.get('userName', None)
        response = ResponseObject()
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.ValidationError(userName, response)

    def ValidationError(self, userName, response):

        if userName != None:
            userName = userName.strip()
            return self.ForgetPwd(userName, response)
        else:
            return response.json(800)

    def ForgetPwd(self, userName, response):
        dataValid = DataValid()
        if dataValid.mobile_validate(userName):
            User = Device_User.objects.filter(username=userName)
        elif dataValid.email_validate(userName):
            User = Device_User.objects.filter(username=userName)
            if not User.exists():
                User = Device_User.objects.filter(userEmail=userName)
        else:
            return response.json(9)
        if User:
            email = User[0].userEmail
            userID = User[0].userID
            if email:
                redisObj = RedisObject()
                reset_pwd = redisObj.get_data(key=userID + '_email_reset_pwd')
                if reset_pwd is False:
                    tko = TokenObject()
                    rest = tko.generate(data={'userID': userID, 'user': userName})
                    token = rest['access_token']
                    reset_pwd = CommonService.RandomStr(6)
                    send_data = TemplateService.email_message(type='forget', language='en')
                    reset_link = '{server_host}account/email-re-pwd?token={token}'.format(
                        server_host=SERVER_DOMAIN, token=token)
                    send_body = send_data['body'].format(username=email, reset_pwd=reset_pwd, reset_link=reset_link)
                    ses = SesClassObject()
                    send_res = ses.send_email(send_address_list=[email], subject=send_data['title'], body=send_body)
                    if send_res is True:
                        if redisObj.set_data(key=userID + '_email_reset_pwd', val=reset_pwd, expire=3600):
                            return response.json(0)
                        else:
                            return response.json(10, '存储验证失败')
                else:
                    return response.json(89)
            else:
                return response.json(103)
        else:
            return response.json(9)


class EmailResetPwdView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(EmailResetPwdView, self).dispatch(*args, **kwargs)

    # 查询
    def get(self, request, *args, **kwargs):
        response = ResponseObject()
        request_dict = request.GET
        return self.validate(request_dict, response, *args, **kwargs)

    # 认证登录
    def post(self, request, *args, **kwargs):
        response = ResponseObject()
        try:
            print(request.body.decode("utf-8"))
            json_data = json.loads(request.body.decode("utf-8"))
        except Exception as e:
            return response.json(10, repr(e))
        else:
            request_dict = json_data
            return self.validate(request_dict, response, *args, **kwargs)

    def validate(self, request_dict, response, *args, **kwargs):
        token = request_dict.get('token', None)
        if token is not None:
            tko = TokenObject(token)
            if tko.code == 0:
                redisObj = RedisObject()
                userID = tko.userID
                reset_pwd = redisObj.get_data(key=userID + '_email_reset_pwd')
                if reset_pwd is not False:
                    user_qs = Device_User.objects.filter(userID=userID)
                    if user_qs.exists():
                        redisObj.del_data(key=userID + '_email_reset_pwd')
                        is_update = user_qs.update(password=make_password(reset_pwd))
                        if is_update:
                            return HttpResponseRedirect(
                                "http://www.dvema.com/web/html/paw_update_success.html?code=" + reset_pwd)
                        else:
                            return response.json(10)
                    else:
                        return response.json(9)
                else:
                    return HttpResponseRedirect('http://www.dvema.com/web/html/paw_update_unsuccessful.html?lang=en')
                    return response.json(306, 'rpwd')
            else:
                return HttpResponseRedirect('http://www.dvema.com/web/html/paw_update_unsuccessful.html?lang=en')
                return response.json(tko.code)
        else:
            return response.json(444, 'token')


class refreshTokenView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(refreshTokenView, self).dispatch(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = json.loads(request.body.decode('utf-8'))
        return self.validation(request_dict)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        return self.validation(request_dict)

    def validation(self, request_dict):
        token = request_dict.get('token', None)
        lang = request_dict.get('lang', None)
        response = ResponseObject(lang)
        if token is not None:
            tko = TokenObject(token)
            res = tko.refresh()
            code = tko.code
            if code == 0:
                return response.json(0, res)
            else:
                return response.json(code)
        else:
            return response.json(444, 'token')


# 获取验证码
class v2authCodeView(TemplateView):

    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(v2authCodeView, self).dispatch(*args, **kwargs)

    @ratelimit(key='ip', rate='2/m')
    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        lang = request.POST.get('lang', None)
        response = ResponseObject(lang)
        request_dict = request.POST
        phone = request_dict.get('phone', None)
        if phone is not None:
            was_limited = getattr(request, 'limited', False)
            if was_limited is True:
                return response.json(5)
        return self.ValidationError(request_dict, response)

    @ratelimit(key='ip', rate='2/m')
    def get(self, request, *args, **kwargs):
        # Device_User.objects.filter(userEmail='chanjunkai@163.com').delete()
        request.encoding = 'utf-8'
        lang = request.GET.get('lang', None)
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        request_dict = request.GET
        return self.ValidationError(request_dict, response)

    def ValidationError(self, request_dict, response):
        email = request_dict.get('email', None)
        phone = request_dict.get('phone', None)
        if email is not None:
            email = email.strip()
            return self.emailCode(email, response)
        elif phone is not None:
            phone = phone.strip()
            return self.phoneCode(phone, response)
        else:
            return response.json(444)

    def emailCode(self, email, response):
        dataValid = DataValid()
        # 邮箱匹配
        if dataValid.email_validate(email) is False:
            return response.json(107)
        reds = RedisObject()
        identifyingCode = reds.get_data(key=email + '_identifyingCode')
        # 是否以获取邮箱验证码
        if identifyingCode:
            return response.json(89)
        user_qs = Device_User.objects.filter(username=email)
        email_qs = Device_User.objects.filter(userEmail=email)
        # 邮箱用户是否已存在
        if user_qs.exists():
            return response.json(103)
        elif email_qs.exists():
            return response.json(103)
        # 生成随机6位数
        identifyingCode = RandomStr(6, True)
        # 设置随机数缓存生命周期
        send_data = TemplateService.email_message(type='register_code', language=response.lang)
        ses = SesClassObject()
        # 发送邮件
        send_res = ses.send_email(
            send_address_list=[email],
            subject=send_data['title'],
            body=send_data['body'].replace("{username}", email).replace("{captcha}",
                                                                        str(identifyingCode))
        )
        if send_res is not True:
            return response.json(44)
        if reds.set_data(key=email + '_identifyingCode', val=identifyingCode, expire=600) is not True:
            return response.json(10, 'error')
        return response.json(0)
        # return response.json(0, {'identifyingCode': identifyingCode})

    def phoneCode(self, phone, response):
        dataValid = DataValid()
        if dataValid.mobile_validate(phone) is not True:
            return response.json(107)
        reds = RedisObject()
        identifyingCode = reds.get_data(key=phone + '_identifyingCode')
        if identifyingCode:
            return response.json(90)
        user_qs = Device_User.objects.filter(username=phone)
        phone_qs = Device_User.objects.filter(phone=phone)
        if user_qs.exists() or phone_qs.exists():
            return response.json(101)
        identifyingCode = RandomStr(6, True)
        # 发送手机验证码
        aliSms = AliSmsObject()
        res = aliSms.send_code_sms(phone=phone, code=identifyingCode, sign_name='Ansjer',
                                   temp_msg='SMS_151600991')
        if res["Code"] == "OK":
            if reds.set_data(key=phone + '_identifyingCode', val=identifyingCode, expire=60) is not True:
                return response.json(10, '生成缓存系统错误')
            return response.json(0)
        else:
            return response.json(10, res["Message"])


# 验证码注册
class v2registerView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(v2registerView, self).dispatch(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.POST
        return self.validates(request_dict)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        return self.validates(request_dict)

    def validates(self, request_dict):
        phone = request_dict.get('phone', None)
        email = request_dict.get('email', None)

        password = request_dict.get('password', None)
        authcode = request_dict.get('authcode', None)
        lang = request_dict.get('lang', None)
        response = ResponseObject(lang)
        if password is None:
            return response.json(444, 'password')
        if authcode is None:
            return response.json(444, 'identifyingCode')
        if phone is not None:
            return self.do_phone_register(phone, password, authcode, response)
        elif email is not None:
            return self.do_email_register(email, password, authcode, response)
        else:
            return response.json(444, 'phone or email')

    def do_phone_register(self, phone, password, authcode, response):
        data_valid = DataValid()
        if data_valid.mobile_validate(phone) is not True:
            return response.json(100)
        if data_valid.password_validate(password) is not True:
            return response.json(109)
        reds = RedisObject()
        identifyingCode = reds.get_data(key=phone + '_identifyingCode')
        # 判断验证码是否过期
        if identifyingCode is False:
            return response.json(120)
        # 验证码是否正确
        if authcode != identifyingCode:
            return response.json(121)
        phone_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
        # 是否已存在
        if phone_qs.exists():
            return response.json(101)
        try:
            users = Device_User.objects.create(
                username=phone,
                NickName=phone,
                phone=phone,
                password=make_password(password),
                userID=CommonService.getUserID(μs=False, setOTAID=True),
                is_active=True,
                user_isValid=True,
            )
        except Exception as e:
            errorInfo = traceback.format_exc()
            print(errorInfo)
            return response.json(424, repr(e))
        else:
            if not reds.del_data(key=phone + '_identifyingCode'):
                return response.json(10, '删除缓存验证码错误')
            return self.do_login(phone_qs, response)

    def do_login(self, user_qs, response):
        now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
        user_qs.update(last_login=now_time, online=True)
        userID = user_qs[0].userID
        print('userID' + userID)
        tko = TokenObject()
        user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
        res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
        # 增加角色
        user_qs[0].role.add(Role.objects.get(rid=1))
        role_dict = ModelService.own_role(userID=userID)
        res['rid'] = role_dict['rid']
        res['roleName'] = role_dict['roleName']
        res['permList'] = ModelService.own_permission(userID)
        res['userID'] = userID
        # 昵称，邮箱，电话，刷新，头像
        userIconPath = str(user_list[0]["userIconPath"])
        if userIconPath and userIconPath.find('static/') != -1:
            userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
            res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
        else:
            res['userIconUrl'] = ''
        res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
        res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
        res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
        res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
        print(res)
        return response.json(0, res)

    def do_email_register(self, email, password, authcode, response):
        data_valid = DataValid()
        if data_valid.email_validate(email) is not True:
            return response.json(105)
        if data_valid.password_validate(password) is not True:
            return response.json(109)
        reds = RedisObject()
        identifyingCode = reds.get_data(key=email + '_identifyingCode')
        # 判断验证码是否过期
        if identifyingCode is False:
            return response.json(120)
        # 验证码是否正确
        if authcode != identifyingCode:
            return response.json(121)
        email_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
        # 是否已存在
        if email_qs.exists():
            return response.json(103)
        try:
            users = Device_User.objects.create(
                username=email,
                NickName=email,
                userEmail=email,
                password=make_password(password),
                userID=CommonService.getUserID(μs=False, setOTAID=True),
                is_active=True,
                user_isValid=True,
            )
        except Exception as e:
            errorInfo = traceback.format_exc()
            print(errorInfo)
            return response.json(424, repr(e))
        else:
            if not reds.del_data(key=email + '_identifyingCode'):
                return response.json(10, '删除缓存验证码错误')
            return self.do_login(email_qs, response)


# 忘记密码获取验证码v2
class v2forgetPwdCodeView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(v2forgetPwdCodeView, self).dispatch(*args, **kwargs)

    @ratelimit(key='ip', rate='1/m')
    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        lang = request_dict.get('lang')
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.ValidationError(request_dict, response)

    @ratelimit(key='ip', rate='1/m')
    def post(self, request):
        request.encoding = 'utf-8'
        request_dict = request.POST
        lang = request_dict.get('lang')
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.ValidationError(request_dict, response)

    def ValidationError(self, request_dict, response):
        phone = request_dict.get('phone', None)
        email = request_dict.get('email', None)
        if phone is not None:
            phone = phone.strip()
            return self.do_send_phone_code(phone, response)
        elif email is not None:
            return self.do_send_email_code(email, response)
        else:
            return response.json(444, 'phone')

    def do_send_phone_code(self, phone, response):
        data_valid = DataValid()
        if data_valid.mobile_validate(phone) is not True:
            return response.json(100)
        user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
        if not user_qs.exists():
            return response.json(102)
        reds = RedisObject()
        resetCode = reds.get_data(key=phone + '_forgetPwdResetCode')
        if resetCode is True:
            return response.json(90)
        resetCode = RandomStr(6, True)
        if not reds.set_data(key=phone + '_forgetPwdResetCode', val=resetCode, expire=300):
            return response.json(10, '生成缓存错误')
        aliSms = AliSmsObject()
        res = aliSms.send_code_sms(phone=phone, code=resetCode, sign_name='Ansjer',
                                   temp_msg='SMS_151675019')
        if res["Code"] == "OK":
            return response.json(0, {'forgetPwdResetCode': resetCode})
        else:
            return response.json(10, res["Message"])

    def do_send_email_code(self, email, response):
        data_valid = DataValid()
        if data_valid.email_validate(email) is not True:
            return response.json(105)
        user_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
        if not user_qs.exists():
            return response.json(104)
        reds = RedisObject()
        resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
        if resetCode is True:
            return response.json(90)
        resetCode = RandomStr(6, True)
        if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=600):
            return response.json(10, '生成缓存错误')
        send_data = TemplateService.email_message(type='forgetCode', language=response.lang)
        send_body = send_data['body'].format(userEmail=email, email_valid_code=resetCode)
        ses = SesClassObject()
        send_res = ses.send_email(send_address_list=[email], subject=send_data['title'], body=send_body)
        if send_res is not True:
            return response.json(44)
        return response.json(0)


# 忘记密码v2
class v2resetPwdByCodeView(TemplateView):
    @method_decorator(csrf_exempt)
    def dispatch(self, *args, **kwargs):
        return super(v2resetPwdByCodeView, self).dispatch(*args, **kwargs)

    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        lang = request_dict.get('lang')
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.ValidationError(request_dict, response)

    def post(self, request):
        request.encoding = 'utf-8'
        request_dict = request.POST
        lang = request_dict.get('lang')
        response = ResponseObject(lang)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.ValidationError(request_dict, response)

    def ValidationError(self, request_dict, response):
        phone = request_dict.get('phone', None)
        email = request_dict.get('email', None)
        password = request_dict.get('password', None)
        authcode = request_dict.get('authcode', None)
        if password is None or authcode is None:
            return response.json(444, 'password,authcode')
        authcode = authcode.strip()
        password = password.strip()
        if phone is not None:
            phone = phone.strip()
            return self.do_phone_pwd_reset(phone, authcode, password, response)
        elif email is not None:
            email = email.strip()
            return self.do_email_pwd_reset(email, authcode, password, response)
        else:
            return response.json(444, 'phone')

    def do_email_pwd_reset(self, email, authcode, password, response):
        data_valid = DataValid()
        if data_valid.email_validate(email) is not True:
            return response.json(105)
        if data_valid.password_validate(password) is not True:
            return response.json(109)
        user_qs = Device_User.objects.filter(Q(userEmail=email) | Q(username=email))
        if not user_qs.exists():
            return response.json(104)
        reds = RedisObject()
        resetCode = reds.get_data(key=email + '_forgetPwdResetCode')
        if resetCode is True:
            return response.json(90)
        if authcode != resetCode:
            return response.json(121)
        if not reds.set_data(key=email + '_forgetPwdResetCode', val=resetCode, expire=300):
            return response.json(10, '生成缓存错误')
        user_qs.update(password=make_password(password))
        if not reds.del_data(email + '_forgetPwdResetCode'):
            return response.json(10, '删除缓存失败')
        return response.json(0)

    def do_phone_pwd_reset(self, phone, authcode, password, response):
        data_valid = DataValid()
        if data_valid.mobile_validate(phone) is not True:
            return response.json(100)
        if data_valid.password_validate(password) is not True:
            return response.json(109)
        user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
        if not user_qs.exists():
            return response.json(102)
        reds = RedisObject()
        resetCode = reds.get_data(key=phone + '_forgetPwdResetCode')
        if resetCode is True:
            return response.json(90)
        if authcode != resetCode:
            return response.json(121)
        if not reds.set_data(key=phone + '_forgetPwdResetCode', val=resetCode, expire=300):
            return response.json(10, '生成缓存错误')
        user_qs.update(password=make_password(password))
        if not reds.del_data(phone + '_forgetPwdResetCode'):
            return response.json(10, '删除缓存失败')
        return response.json(0)

    def do_login(self, user_qs, response):
        now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
        user_qs.update(last_login=now_time, online=True)
        userID = user_qs[0].userID
        print('userID' + userID)
        tko = TokenObject()
        user_list = user_qs.values("NickName", "userIconUrl", "userIconPath", "username", "userEmail", "phone")
        res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': user_list[0]["username"]})
        # 增加角色
        user_qs[0].role.add(Role.objects.get(rid=1))
        role_dict = ModelService.own_role(userID=userID)
        res['rid'] = role_dict['rid']
        res['roleName'] = role_dict['roleName']
        res['permList'] = ModelService.own_permission(userID)
        res['userID'] = userID
        # 昵称，邮箱，电话，刷新，头像
        userIconPath = str(user_list[0]["userIconPath"])
        if userIconPath and userIconPath.find('static/') != -1:
            userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
            res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
        else:
            res['userIconUrl'] = ''
        res['NickName'] = user_list[0]["NickName"] if user_list[0]["NickName"] is not None else ''
        res['username'] = user_list[0]["username"] if user_list[0]["username"] is not None else ''
        res['userEmail'] = user_list[0]["userEmail"] if user_list[0]["userEmail"] is not None else ''
        res['phone'] = user_list[0]["phone"] if user_list[0]["phone"] is not None else ''
        print(res)
        return response.json(0, res)


# 登录
class v2LoginView(TemplateView):
    @method_decorator(csrf_exempt)  # @csrf_exempt
    def dispatch(self, *args, **kwargs):
        return super(v2LoginView, self).dispatch(*args, **kwargs)

    @ratelimit(key='ip', rate='5/m')
    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.POST
        language = request_dict.get('language', 'en')
        response = ResponseObject(language)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.validates(request_dict, response)

    @ratelimit(key='ip', rate='5/m')
    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        request_dict = request.GET
        language = request_dict.get('language', 'en')
        response = ResponseObject(language)
        was_limited = getattr(request, 'limited', False)
        if was_limited is True:
            return response.json(5)
        return self.validates(request_dict, response)

    def validates(self, request_dict, response):
        username = request_dict.get('userName', None)
        password = request_dict.get('userPwd', None)
        if not username or not password:
            return response.json(111)
        username = username.strip()
        password = password.strip()
        data_valid = DataValid()
        if data_valid.email_validate(username):
            return self.do_email_login(username, password, response)
        elif data_valid.mobile_validate(username):
            return self.do_phone_login(username, password, response)
        elif data_valid.name_validate(username):
            return self.do_name_login(username, password, response)
        else:
            return response.json(107)

    def do_email_login(self, email, password, response):
        user_qs = Device_User.objects.filter(Q(username=email) | Q(userEmail=email))
        return self.valid_login(user_qs, password, response)

    def do_phone_login(self, phone, password, response):
        user_qs = Device_User.objects.filter(Q(phone=phone) | Q(username=phone))
        return self.valid_login(user_qs, password, response)

    def do_name_login(self, username, password, response):
        user_qs = Device_User.objects.filter(Q(username=username) | Q(phone=username) | Q(userEmail=username))
        return self.valid_login(user_qs, password, response)

    def valid_login(self, user_qs, password, response):
        if not user_qs.exists():
            return response.json(104)
        users = user_qs.values('role__rid', 'role__roleName', 'userID', 'role', 'NickName', 'username', 'userEmail',
                               'phone', 'password', 'userIconPath','user_isValid','is_active')[0]
        if not check_password(password, users['password']):
            return response.json(111)
        if not users['user_isValid'] or not users['is_active']:
            return response.json(110)
        userID = users['userID']
        tko = TokenObject()
        res = tko.generate(data={'userID': userID, 'lang': response.lang, 'user': users['username']})
        if tko.code == 0:
            now_time = datetime.datetime.utcnow().replace(tzinfo=utc).astimezone(utc)
            user_qs.update(last_login=now_time, online=True, language=response.lang)
            res['rid'] = users['role__rid']
            res['roleName'] = users['role__roleName']
            res['permList'] = ModelService.own_permission(userID)
            res['userID'] = userID
            # 昵称，邮箱，电话，刷新，头像
            userIconPath = str(users['userIconPath'])
            if userIconPath and userIconPath.find('static/') != -1:
                userIconPath = userIconPath.replace('static/', '').replace('\\', '/')
                res['userIconUrl'] = SERVER_DOMAIN + 'account/getAvatar/' + userIconPath
            else:
                res['userIconUrl'] = ''
            res['NickName'] = users['NickName'] if users['NickName'] is not None else ''
            res['username'] = users['username'] if users['username'] is not None else ''
            res['userEmail'] = users['userEmail'] if users['userEmail'] is not None else ''
            res['phone'] = users['phone'] if users['phone'] is not None else ''
            return response.json(0, res)
        else:
            return response.json(tko.code)