def post(self): if check_use_source(_USE_SOURCE_TYPE_1): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) # 2.0 获取参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id', 'level'], verify_timeliness=False, api_type=_USER_TYPE_ADMIN, check_token=False, invariable_key=False, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_DEFAULT) user_id = argument_dict['user_id'] level = argument_dict['level'] user_service = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) user_info = user_service.get_admin_user_info_by_id( user_id, admin_level=level) return user_info else: # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) # 2.0 获取参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id', 'level'], verify_timeliness=False, api_type=_USER_TYPE_ADMIN, check_token=False, invariable_key=False, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_INNER) user_service = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) user_info = user_service.get_user_info_by_id( argument_dict['user_id'], user_type=_USER_TYPE_ADMIN, admin_level=argument_dict['level']) return user_info
def post(self): if check_use_source(_USE_SOURCE_TYPE_1): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=[ 'user_id', 'user_name', 'rights_list', 'password', 'change_type' ], api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_LOGIN, check_form_token=True, ) user_id = argument_dict['user_id'] user_name = argument_dict['user_name'] rights_list = argument_dict['rights_list'] password = argument_dict['password'] change_type = argument_dict['change_type'] user_service = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) result = user_service.change_rights_by_admin( user_id, user_name, rights_list, password, change_type) return result, aes_share_key, aes_nonce else: return False
def post(self): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id', 'vcode', 'password', 'level'], api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_INNER) user_id = argument_dict['user_id'] vcode = argument_dict['vcode'] password = argument_dict['password'] level = argument_dict['level'] if not check_admin_user_platform_level(level): self.return_error(10039) # 3.0 检查验证码有效性 if not check_authentication(vcode): self.return_error(30201) r = UserBaseService( aes_share_key=aes_share_key, aes_nonce=aes_nonce).\ reset_login_password(user_id, password, user_type=_USER_TYPE_ADMIN, admin_level=level) return r, aes_share_key, aes_nonce
def post(self): """ 用户注册时,获取用户key_salt :return: """ # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_name', 'client_public_key', 'level'], check_token=False, invariable_key=False, api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_REGISTER, decode_by_inner=_DECODE_TYPE_INNER) name = argument_dict['user_name'] client_public_key = argument_dict['client_public_key'] level = argument_dict['level'] if not check_admin_user_platform_level(level): self.return_error(10039) # 2.0 创建用户并且创建salt us = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) result = us.get_register_key_salt(name, client_public_key, user_type=_USER_TYPE_ADMIN, admin_level=level) return result, aes_share_key, aes_nonce
def post(self): """ 登录 :return: """ # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) user_type = _USER_TYPE_ADMIN # 2.0 获取登录参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_mobile', 'password', 'level'], check_token=False, api_type=user_type, request_type=_REQUEST_TYPE_LOGINING, decode_by_inner=_DECODE_TYPE_INNER, check_form_token=True) user_name = argument_dict['user_mobile'] password = argument_dict['password'] level = argument_dict['level'] if not check_admin_user_platform_level_new(level): self.return_error(10039) # 3.0 完成登录 r = UserBaseService( aes_share_key=aes_share_key, aes_nonce=aes_nonce).\ login(user_name, password, user_type=user_type, admin_level=level) return r, aes_share_key, aes_nonce
def post(self): """ 登录时创建key_salt :return: """ # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) user_type = _USER_TYPE_ADMIN argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_mobile', 'client_public_key', 'level'], check_token=False, invariable_key=False, api_type=user_type, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_DEFAULT, check_form_token=False) user_mobile = argument_dict['user_mobile'] client_public_key = argument_dict['client_public_key'] level = argument_dict['level'] if not check_admin_user_platform_level_new(level): self.return_error(10039) us = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) # 创建salt result = us.get_login_key_salt(user_mobile, client_public_key, user_type=user_type, admin_level=level) return result, aes_share_key, aes_nonce
def post(self): """ 刷新用户access_token :return: """ # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) api_type = _USER_TYPE_ADMIN # 2.0 获取参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id', 'refresh_token'], check_token=False, api_type=api_type, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_INNER) user_id = argument_dict['user_id'] refresh_token = argument_dict['refresh_token'] # 3.0 刷新token r = ApiTokenService(aes_share_key=aes_share_key, aes_nonce=aes_nonce).\ refresh_token(user_id, refresh_token, user_type=api_type) return r, aes_share_key, aes_nonce
def post(self): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) # 2.0 获取参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( api_type=_USER_TYPE_BORROW, request_type=_REQUEST_TYPE_LOGIN, check_user_id=True) return argument_dict
def post(self): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) # 2.0 获取参数 argument_dict, _, _ = self.get_argument_dict( api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_INNER) return argument_dict
def post(self, path): all_path_list = request.path.split("/")[1:] path_list = path.split("/") # 1.0 区别前后台用户 if all_path_list[0] == 'bg': if len(path_list) < 2: self.return_error(10043) self.user_type = _USER_TYPE_ADMIN # 后台用户需要校验ip result = check_bg_ip() if result is False: self.return_error(30000) elif all_path_list[0] == 'users': pass else: self.return_error(10004) # 2.0 获取参数 argument_dict, share_key, nonce = self.get_argument_dict( must_keys=self.must_keys, is_transfer=True, api_type=self.user_type, request_type=self.request_type, invariable_key=self.invariable_key, check_token=self.check_token, check_user_id=self.check_user_id, verify_timeliness=self.verify_timeliness, encrypt=self.encrypt, check_form_token=self.check_form_token) raise_logger('UsersTransferToPlatformController' + json.dumps(argument_dict)) # 3.0 后台用户校验权限 user_service = UserBaseService(aes_share_key=share_key, aes_nonce=nonce) if self.user_type == _USER_TYPE_ADMIN: user_id = argument_dict['user_id'] module_url = path_list[0] transfer_check_result = user_service.check_admin_user_module_rights_by_user_id( user_id, module_url) if not transfer_check_result: self.return_error(30232) transfer_url = get_transfer_to_platform_config( )['default_ip'] + request.path response_dict = transfer_to_platform(transfer_url, data=argument_dict) if self.return_aes: return response_dict, share_key, nonce else: return response_dict
def post(self): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) user_type = _USER_TYPE_BORROW # 2.0 获取参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id'], verify_timeliness=False, api_type=user_type, check_token=False, invariable_key=False, request_type=_REQUEST_TYPE_LOGIN, decode_by_inner=_DECODE_TYPE_INNER) user_info = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce).\ update_user_info_by_id(argument_dict, user_type=user_type) return user_info
def post(self): if check_use_source(_USE_SOURCE_TYPE_1): # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_id'], api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_LOGIN, ) user_id = argument_dict['user_id'] user_service = UserBaseService(aes_share_key=aes_share_key, aes_nonce=aes_nonce) result = user_service.list_rights_to_admin(user_id) return result, aes_share_key, aes_nonce else: return False
def post(self): """ 用户注册 :return: header 放入 User-Mobile 为用户名 """ # 1.0 校验平台 result = check_bg_ip() if result is False: self.return_error(30000) if check_use_source(_USE_SOURCE_TYPE_1): return result else: # 2.0 获取注册参数 argument_dict, aes_share_key, aes_nonce = self.get_argument_dict( must_keys=['user_mobile', 'vcode', 'password', 'level'], check_token=False, api_type=_USER_TYPE_ADMIN, request_type=_REQUEST_TYPE_REGISTER, decode_by_inner=_DECODE_TYPE_INNER) user_name = argument_dict['user_mobile'] vcode = argument_dict['vcode'] password = argument_dict['password'] level = argument_dict['level'] if not check_admin_user_platform_level(level): self.return_error(10039) # 3.0 检查验证码有效性 if not check_authentication(vcode): self.return_error(30201) # 4.0 处理用户注册逻辑, 注册后更新saltkey result = UserBaseService( aes_share_key=aes_share_key, aes_nonce=aes_nonce).\ register(user_name, password, level, user_type=_USER_TYPE_ADMIN) return result, aes_share_key, aes_nonce