1Panel/backend/app/api/v1/auth.go

package v1

import (
	"encoding/base64"

	"github.com/1Panel-dev/1Panel/backend/app/api/v1/helper"
	"github.com/1Panel-dev/1Panel/backend/app/dto"
	"github.com/1Panel-dev/1Panel/backend/app/model"
	"github.com/1Panel-dev/1Panel/backend/constant"
	"github.com/1Panel-dev/1Panel/backend/global"
	"github.com/1Panel-dev/1Panel/backend/utils/captcha"
	"github.com/1Panel-dev/1Panel/backend/utils/qqwry"
	"github.com/gin-gonic/gin"
)

type BaseApi struct{}

// @Tags Auth
// @Summary User login
// @Description 用户登录
// @Accept json
// @Param EntranceCode header string true "安全入口 base64 加密串"
// @Param request body dto.Login true "request"
// @Success 200 {object} dto.UserLoginInfo
// @Router /auth/login [post]
func (b *BaseApi) Login(c *gin.Context) {
	var req dto.Login
	if err := helper.CheckBindAndValidate(&req, c); err != nil {
		return
	}

	if req.AuthMethod != "jwt" && !req.IgnoreCaptcha {
		if err := captcha.VerifyCode(req.CaptchaID, req.Captcha); err != nil {
			helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
			return
		}
	}
	entranceItem := c.Request.Header.Get("EntranceCode")
	var entrance []byte
	if len(entranceItem) != 0 {
		entrance, _ = base64.StdEncoding.DecodeString(entranceItem)
	}

	user, err := authService.Login(c, req, string(entrance))
	go saveLoginLogs(c, err)
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, user)
}

// @Tags Auth
// @Summary User login with mfa
// @Description 用户 mfa 登录
// @Accept json
// @Param request body dto.MFALogin true "request"
// @Success 200 {object} dto.UserLoginInfo
// @Router /auth/mfalogin [post]
// @Header 200 {string} EntranceCode "安全入口"
func (b *BaseApi) MFALogin(c *gin.Context) {
	var req dto.MFALogin
	if err := helper.CheckBindAndValidate(&req, c); err != nil {
		return
	}

	entranceItem := c.Request.Header.Get("EntranceCode")
	var entrance []byte
	if len(entranceItem) != 0 {
		entrance, _ = base64.StdEncoding.DecodeString(entranceItem)
	}

	user, err := authService.MFALogin(c, req, string(entrance))
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, user)
}

// @Tags Auth
// @Summary User logout
// @Description 用户登出
// @Success 200
// @Security ApiKeyAuth
// @Router /auth/logout [post]
func (b *BaseApi) LogOut(c *gin.Context) {
	if err := authService.LogOut(c); err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, nil)
}

// @Tags Auth
// @Summary Load captcha
// @Description 加载验证码
// @Success 200 {object} dto.CaptchaResponse
// @Router /auth/captcha [get]
func (b *BaseApi) Captcha(c *gin.Context) {
	captcha, err := captcha.CreateCaptcha()
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, captcha)
}

// @Tags Auth
// @Summary Load safety status
// @Description 获取系统安全登录状态
// @Success 200
// @Router /auth/issafety [get]
func (b *BaseApi) CheckIsSafety(c *gin.Context) {
	code := c.DefaultQuery("code", "")
	status, err := authService.CheckIsSafety(code)
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, status)
}

func (b *BaseApi) GetResponsePage(c *gin.Context) {
	pageCode, err := authService.GetResponsePage()
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, pageCode)
}

// @Tags Auth
// @Summary Check System isDemo
// @Description 判断是否为demo环境
// @Success 200
// @Router /auth/demo [get]
func (b *BaseApi) CheckIsDemo(c *gin.Context) {
	helper.SuccessWithData(c, global.CONF.System.IsDemo)
}

// @Tags Auth
// @Summary Load System Language
// @Description 获取系统语言设置
// @Success 200
// @Router /auth/language [get]
func (b *BaseApi) GetLanguage(c *gin.Context) {
	settingInfo, err := settingService.GetSettingInfo()
	if err != nil {
		helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)
		return
	}
	helper.SuccessWithData(c, settingInfo.Language)
}

func saveLoginLogs(c *gin.Context, err error) {
	var logs model.LoginLog
	if err != nil {
		logs.Status = constant.StatusFailed
		logs.Message = err.Error()
	} else {
		logs.Status = constant.StatusSuccess
	}
	logs.IP = c.ClientIP()
	qqWry, err := qqwry.NewQQwry()
	if err != nil {
		global.LOG.Errorf("load qqwry datas failed: %s", err)
	}
	res := qqWry.Find(logs.IP)
	logs.Agent = c.GetHeader("User-Agent")
	logs.Address = res.Area
	_ = logService.CreateLoginLog(logs)
}
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`package v1`

			`import (`
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`"encoding/base64"`

feat: 修改main路径，增加打包静态资源 2022-10-17 16:32:31 +08:00			`"github.com/1Panel-dev/1Panel/backend/app/api/v1/helper"`
			`"github.com/1Panel-dev/1Panel/backend/app/dto"`
feat: 完成面板日志功能 2022-11-15 17:20:57 +08:00			`"github.com/1Panel-dev/1Panel/backend/app/model"`
feat: 修改main路径，增加打包静态资源 2022-10-17 16:32:31 +08:00			`"github.com/1Panel-dev/1Panel/backend/constant"`
			`"github.com/1Panel-dev/1Panel/backend/global"`
			`"github.com/1Panel-dev/1Panel/backend/utils/captcha"`
feat: 修改登录页样式 2022-11-21 15:20:04 +08:00			`"github.com/1Panel-dev/1Panel/backend/utils/qqwry"`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`"github.com/gin-gonic/gin"`
			`)`

			`type BaseApi struct{}`

feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Tags Auth`
			`// @Summary User login`
			`// @Description 用户登录`
			`// @Accept json`
fix: 修改登录接口文档 (#2334) 2023-09-18 14:06:18 +08:00			`// @Param EntranceCode header string true "安全入口 base64 加密串"`
feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Param request body dto.Login true "request"`
			`// @Success 200 {object} dto.UserLoginInfo`
			`// @Router /auth/login [post]`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`func (b BaseApi) Login(c gin.Context) {`
			`var req dto.Login`
fix: 简化接口校验代码 (#2704) 2023-10-27 14:19:26 +08:00			`if err := helper.CheckBindAndValidate(&req, c); err != nil {`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`return`
			`}`
fix: 简化接口校验代码 (#2704) 2023-10-27 14:19:26 +08:00
feat: 验证码输入判断逻辑修改 (#842) 2023-04-30 23:58:24 +08:00			`if req.AuthMethod != "jwt" && !req.IgnoreCaptcha {`
fix: 修复了 jwt 无法登录的问题 (#436) 2023-03-29 11:46:14 +08:00			`if err := captcha.VerifyCode(req.CaptchaID, req.Captcha); err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`}`
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`entranceItem := c.Request.Header.Get("EntranceCode")`
			`var entrance []byte`
			`if len(entranceItem) != 0 {`
			`entrance, _ = base64.StdEncoding.DecodeString(entranceItem)`
			`}`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`user, err := authService.Login(c, req, string(entrance))`
feat: 完成面板日志功能 2022-11-15 17:20:57 +08:00			`go saveLoginLogs(c, err)`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, user)`
			`}`

feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Tags Auth`
			`// @Summary User login with mfa`
			`// @Description 用户 mfa 登录`
			`// @Accept json`
			`// @Param request body dto.MFALogin true "request"`
			`// @Success 200 {object} dto.UserLoginInfo`
			`// @Router /auth/mfalogin [post]`
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`// @Header 200 {string} EntranceCode "安全入口"`
feat: mfa 登录实现 2022-09-15 18:43:41 +08:00			`func (b BaseApi) MFALogin(c gin.Context) {`
			`var req dto.MFALogin`
fix: 简化接口校验代码 (#2704) 2023-10-27 14:19:26 +08:00			`if err := helper.CheckBindAndValidate(&req, c); err != nil {`
feat: mfa 登录实现 2022-09-15 18:43:41 +08:00			`return`
			`}`
fix: 简化接口校验代码 (#2704) 2023-10-27 14:19:26 +08:00
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`entranceItem := c.Request.Header.Get("EntranceCode")`
			`var entrance []byte`
			`if len(entranceItem) != 0 {`
			`entrance, _ = base64.StdEncoding.DecodeString(entranceItem)`
			`}`
feat: mfa 登录实现 2022-09-15 18:43:41 +08:00
fix: 登陆接口增加安全入口校验 (#2199) 2023-09-06 15:00:12 +08:00			`user, err := authService.MFALogin(c, req, string(entrance))`
feat: mfa 登录实现 2022-09-15 18:43:41 +08:00			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, user)`
			`}`

feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Tags Auth`
			`// @Summary User logout`
			`// @Description 用户登出`
			`// @Success 200`
			`// @Security ApiKeyAuth`
			`// @Router /auth/logout [post]`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`func (b BaseApi) LogOut(c gin.Context) {`
			`if err := authService.LogOut(c); err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, nil)`
			`}`

feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Tags Auth`
			`// @Summary Load captcha`
			`// @Description 加载验证码`
			`// @Success 200 {object} dto.CaptchaResponse`
			`// @Router /auth/captcha [get]`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`func (b BaseApi) Captcha(c gin.Context) {`
			`captcha, err := captcha.CreateCaptcha()`
			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
feat: 安全入口功能实现 2022-09-15 17:15:03 +08:00			`return`
feat: 增加系统设置接口 2022-09-08 18:47:15 +08:00			`}`
			`helper.SuccessWithData(c, captcha)`
			`}`
feat: 安全入口功能实现 2022-09-15 17:15:03 +08:00
feat: 增加 swagger 接口文档 2023-01-04 22:31:51 +08:00			`// @Tags Auth`
			`// @Summary Load safety status`
			`// @Description 获取系统安全登录状态`
			`// @Success 200`
feat: 增加系统安全入口功能 2023-04-14 18:54:34 +08:00			`// @Router /auth/issafety [get]`
			`func (b BaseApi) CheckIsSafety(c gin.Context) {`
			`code := c.DefaultQuery("code", "")`
fix: 优化未启用安全入口跳转逻辑 (#1210) 2023-06-01 10:14:11 +08:00			`status, err := authService.CheckIsSafety(code)`
			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, status)`
feat: 安全入口功能实现 2022-09-15 17:15:03 +08:00			`}`
feat: 完成面板日志功能 2022-11-15 17:20:57 +08:00
feat: 未认证设置状态下系统跳转页面功能实现 (#4444) #### What this PR does / why we need it? #### Summary of your change #### Please indicate you've done the following: - [ ] Made sure tests are passing and test coverage is added if needed. - [ ] Made sure commit message follow the rule of [Conventional Commits specification](https://www.conventionalcommits.org/). - [ ] Considered the docs impact and opened a new docs issue or PR with docs changes if needed. 2024-04-09 22:46:09 +08:00			`func (b BaseApi) GetResponsePage(c gin.Context) {`
			`pageCode, err := authService.GetResponsePage()`
			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, pageCode)`
			`}`

feat: 增加判断系统是否是 demo 接口 2023-03-14 15:03:46 +08:00			`// @Tags Auth`
			`// @Summary Check System isDemo`
			`// @Description 判断是否为demo环境`
			`// @Success 200`
			`// @Router /auth/demo [get]`
			`func (b BaseApi) CheckIsDemo(c gin.Context) {`
			`helper.SuccessWithData(c, global.CONF.System.IsDemo)`
			`}`

feat: 登录页增加语言选项 (#1752) Refs https://github.com/1Panel-dev/1Panel/issues/1728 2023-07-25 17:24:15 +08:00			`// @Tags Auth`
			`// @Summary Load System Language`
			`// @Description 获取系统语言设置`
			`// @Success 200`
			`// @Router /auth/language [get]`
			`func (b BaseApi) GetLanguage(c gin.Context) {`
			`settingInfo, err := settingService.GetSettingInfo()`
			`if err != nil {`
			`helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err)`
			`return`
			`}`
			`helper.SuccessWithData(c, settingInfo.Language)`
			`}`

feat: 完成面板日志功能 2022-11-15 17:20:57 +08:00			`func saveLoginLogs(c *gin.Context, err error) {`
			`var logs model.LoginLog`
			`if err != nil {`
			`logs.Status = constant.StatusFailed`
			`logs.Message = err.Error()`
			`} else {`
			`logs.Status = constant.StatusSuccess`
			`}`
			`logs.IP = c.ClientIP()`
feat: 修改登录页样式 2022-11-21 15:20:04 +08:00			`qqWry, err := qqwry.NewQQwry()`
			`if err != nil {`
			`global.LOG.Errorf("load qqwry datas failed: %s", err)`
			`}`
			`res := qqWry.Find(logs.IP)`
			`logs.Agent = c.GetHeader("User-Agent")`
			`logs.Address = res.Area`
			`_ = logService.CreateLoginLog(logs)`
feat: 完成面板日志功能 2022-11-15 17:20:57 +08:00			`}`