package v1 import ( "errors" "github.com/1Panel-dev/1Panel/backend/app/api/v1/helper" "github.com/1Panel-dev/1Panel/backend/app/dto" "github.com/1Panel-dev/1Panel/backend/app/model" "github.com/1Panel-dev/1Panel/backend/constant" "github.com/1Panel-dev/1Panel/backend/global" "github.com/1Panel-dev/1Panel/backend/utils/captcha" "github.com/1Panel-dev/1Panel/backend/utils/qqwry" "github.com/gin-gonic/gin" ) type BaseApi struct{} // @Tags Auth // @Summary User login // @Description 用户登录 // @Accept json // @Param request body dto.Login true "request" // @Success 200 {object} dto.UserLoginInfo // @Router /auth/login [post] func (b *BaseApi) Login(c *gin.Context) { var req dto.Login if err := c.ShouldBindJSON(&req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } if req.AuthMethod != "jwt" { if err := captcha.VerifyCode(req.CaptchaID, req.Captcha); err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } } user, err := authService.Login(c, req) go saveLoginLogs(c, err) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } helper.SuccessWithData(c, user) } // @Tags Auth // @Summary User login with mfa // @Description 用户 mfa 登录 // @Accept json // @Param request body dto.MFALogin true "request" // @Success 200 {object} dto.UserLoginInfo // @Router /auth/mfalogin [post] func (b *BaseApi) MFALogin(c *gin.Context) { var req dto.MFALogin if err := c.ShouldBindJSON(&req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } if err := global.VALID.Struct(req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } user, err := authService.MFALogin(c, req) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } helper.SuccessWithData(c, user) } // @Tags Auth // @Summary User logout // @Description 用户登出 // @Success 200 // @Security ApiKeyAuth // @Router /auth/logout [post] func (b *BaseApi) LogOut(c *gin.Context) { if err := authService.LogOut(c); err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } helper.SuccessWithData(c, nil) } // @Tags Auth // @Summary Load captcha // @Description 加载验证码 // @Success 200 {object} dto.CaptchaResponse // @Router /auth/captcha [get] func (b *BaseApi) Captcha(c *gin.Context) { captcha, err := captcha.CreateCaptcha() if err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } helper.SuccessWithData(c, captcha) } // @Tags Auth // @Summary Load safety status // @Description 获取系统安全登录状态 // @Success 200 // @Failure 402 // @Router /auth/status [get] func (b *BaseApi) GetSafetyStatus(c *gin.Context) { if err := authService.SafetyStatus(c); err != nil { helper.ErrorWithDetail(c, constant.CodeErrUnSafety, constant.ErrTypeNotSafety, err) return } helper.SuccessWithData(c, nil) } func (b *BaseApi) SafeEntrance(c *gin.Context) { code, exist := c.Params.Get("code") if !exist { helper.ErrorWithDetail(c, constant.CodeErrUnSafety, constant.ErrTypeNotSafety, errors.New("missing code")) return } ok, err := authService.VerifyCode(code) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrUnSafety, constant.ErrTypeNotSafety, errors.New("missing code")) return } if !ok { helper.ErrorWithDetail(c, constant.CodeErrUnSafety, constant.ErrTypeNotSafety, errors.New("missing code")) return } if err := authService.SafeEntrance(c, code); err != nil { helper.ErrorWithDetail(c, constant.CodeErrUnSafety, constant.ErrTypeNotSafety, errors.New("missing code")) return } helper.SuccessWithData(c, nil) } // @Tags Auth // @Summary Check is First login // @Description 判断是否为首次登录 // @Success 200 // @Router /auth/status [get] func (b *BaseApi) CheckIsFirstLogin(c *gin.Context) { helper.SuccessWithData(c, authService.CheckIsFirst()) } // @Tags Auth // @Summary Init user // @Description 初始化用户 // @Accept json // @Param request body dto.InitUser true "request" // @Success 200 // @Router /auth/init [post] func (b *BaseApi) InitUserInfo(c *gin.Context) { var req dto.InitUser if err := c.ShouldBindJSON(&req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } if err := global.VALID.Struct(req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } if err := authService.InitUser(c, req); err != nil { helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } helper.SuccessWithData(c, nil) } // @Tags Auth // @Summary Check System isDemo // @Description 判断是否为demo环境 // @Success 200 // @Router /auth/demo [get] func (b *BaseApi) CheckIsDemo(c *gin.Context) { helper.SuccessWithData(c, global.CONF.System.IsDemo) } func saveLoginLogs(c *gin.Context, err error) { var logs model.LoginLog if err != nil { logs.Status = constant.StatusFailed logs.Message = err.Error() } else { logs.Status = constant.StatusSuccess } logs.IP = c.ClientIP() qqWry, err := qqwry.NewQQwry() if err != nil { global.LOG.Errorf("load qqwry datas failed: %s", err) } res := qqWry.Find(logs.IP) logs.Agent = c.GetHeader("User-Agent") logs.Address = res.Area _ = logService.CreateLoginLog(logs) }