perf: 增加第三方免密跳转加密

b9c76e1c · 徐乐 · 52a86b10 · b9c76e1c · b9c76e1c · b9c76e1c
Commit b9c76e1c authored Apr 27, 2025 by 徐乐
Hide whitespace changes
Inline Side-by-side

Showing with 56 additions and 40 deletions

proxy.js config/proxy.js +1 -1

login.js src/pages/bootpage/demonstration/components/login.js +0 -1

login.js src/pages/user/login/login.js +55 -38

No files found.
--- a/config/proxy.js
+++ b/config/proxy.js
 /* eslint-disable */
 // const proxyURL = process.env.NODE_ENV !== 'production' ? 'http://192.168.10.150:8777' : window.location.origin;
 // const proxyURL = 'https://work.panda-water.cn';
- const proxyURL = 'http://192.168.10.182:8099/';
+ const proxyURL = 'http://localhost:8090/';
 // const proxyURL = 'https://panda-water.cn'
 //const proxyURL = 'http://192.168.12.189:8816/'
 module.exports = {

--- a/src/pages/bootpage/demonstration/components/login.js
+++ b/src/pages/bootpage/demonstration/components/login.js
@@ -1363,7 +1363,6 @@ class Login {
          path: '/',
        });
      }
-      debugger
      sessionStorage.setItem('client', self.globalConfig.client);
      self.isSignIn = true;
      self.updateConfig && self.updateConfig(self.globalConfig);

--- a/src/pages/user/login/login.js
+++ b/src/pages/user/login/login.js
@@ -10,6 +10,7 @@ import { getUserInfo, getWebSiteConfig } from '@/api/service/base';
 import { SERVICE_APP_LOGIN_MODE, SERVICE_INTERFACE_SUCCESS_CODE, WX_REDIRECT_URI } from '@/constants';
 import store from '@/stores';
 import { defaultApp } from '@/micro';
+import CryptoJS from 'crypto-js';
 import {
  DEFAULT_MQTT_PATH,
@@ -36,21 +37,38 @@ class Login {
    // 单点登录_xule_20231214
    const queryString = window.location.search.substring(1);
    const params = queryString.split('&');
-    const paramsFind =
+    const paramsFind = params && params.find(function (a) { return a.split('=')[0] == 'uniwater_utoken'; });
-      params &&
-      params.find(function(a) {
-        return a.split('=')[0] == 'uniwater_utoken';
-      });
    this.uniwater_utoken = paramsFind?.split('=')[1] ?? '';
    // 单页面免登重定向地址
-    const redirect =
+    const redirect = params && params.find(function (a) { return a.split('=')[0] === 'redirect'; });
-      params &&
-      params.find(function(a) {
-        return a.split('=')[0] === 'redirect';
-      });
    if (this.uniwater_utoken && !redirect) {
      this.getTokenForThird();
    }
+    //第三方免密登录，通过账号加密的方式,链接有效期30s_xule_20250427
+    const loginName = params && params.find(function (a) { return a.split('=')[0] === 'loginName'; })?.split('=')[1] || '';
+    if (loginName) {
+      const generateType = params && params.find(function (a) { return a.split('=')[0] === 'type'; })?.split('=')[1] || '';
+      const initiateTime = params && params.find(function (a) { return a.split('=')[0] === 'time'; })?.split('=')[1] || '';
+      const eiv = params && params.find(function (a) { return a.split('=')[0] === 'key'; })?.split('=')[1] || '';
+      let newTime = new Date().getTime() - initiateTime * 1;
+      if (generateType == 'pandaoa' && newTime > 0 && newTime < 30000 && eiv) {
+        const key = CryptoJS.PBKDF2(initiateTime, '', {
+          keySize: 256 / 32,
+          iterations: 100000
+        });
+        const iv = CryptoJS.enc.Hex.parse(eiv);
+        const decrypted = CryptoJS.AES.decrypt(loginName, key, {
+          iv: iv,
+          mode: CryptoJS.mode.CBC,
+          padding: CryptoJS.pad.Pkcs7
+        });
+        const enLoginName = decrypted.toString(CryptoJS.enc.Utf8);
+        this.login(enLoginName, '', '', false, 'password', '', generateType);
+        return;
+      }
+    }
    this.createContext = props.createContext;
    this.history = props.history;
@@ -152,8 +170,8 @@ class Login {
      (response.token
        ? response.token
        : response.access_token !== null && response.user_token !== null
-        ? response.user_token
+          ? response.user_token
-        : '');
+          : '');
    if (token) {
      const exp = 86400000;
      self.globalConfig.token = token;
@@ -355,7 +373,7 @@ class Login {
              ? this.globalConfig.userInfo.fullName
              : '',
        })
-        .catch(error => {});
+        .catch(error => { });
    }
    if (window.location.host === 'panda-water.com') {
@@ -369,7 +387,7 @@ class Login {
              ? this.globalConfig.userInfo.fullName
              : '',
        })
-        .catch(error => {});
+        .catch(error => { });
    }
  }
@@ -435,10 +453,10 @@ class Login {
          !res || !res.data
            ? false
            : _.isString(res.data)
-            ? JSON.parse(res.data)
+              ? JSON.parse(res.data)
-            : typeof res.data === 'boolean'
+              : typeof res.data === 'boolean'
-            ? res.data
+                ? res.data
-            : false;
+                : false;
        self.globalConfig.hasGateWay = hasGateWay;
        self.globalConfig.apiGatewayDomain = `${window.location.origin}${hasGateWay ? '/PandaCore/GateWay' : ''}`;
        if (hasGateWay) {
@@ -554,9 +572,8 @@ class Login {
              mqttConfig.mqtt_mess.TcpPort = DEFAULT_TCP_PORT;
              mqttConfig.mqtt_IsSSL = `${mqttConfig.mqtt_mess.TcpIP}:${mqttConfig.mqtt_mess.TcpPort}`;
            }
-            mqttConfig.mqtt_iotIP = `${mqttConfig.mqtt_mess.TcpIP}:${
+            mqttConfig.mqtt_iotIP = `${mqttConfig.mqtt_mess.TcpIP}:${mqttConfig.mqtt_mess.TcpPort ? mqttConfig.mqtt_mess.TcpPort : '443'
-              mqttConfig.mqtt_mess.TcpPort ? mqttConfig.mqtt_mess.TcpPort : '443'
+              }`;
-            }`;
            self.globalConfig = Object.assign(self.globalConfig, {
              ...mqttConfig,
            });
@@ -582,8 +599,8 @@ class Login {
          const homepage = params.getParams('homepage')
            ? params.getParams('homepage')
            : homeType && config.homepage
-            ? `${homeType}/${params.getParams('homepage') || config.homepage}`
+              ? `${homeType}/${params.getParams('homepage') || config.homepage}`
-            : '';
+              : '';
          window.qiankunIsCache =
            window.location.origin.replace(/^(http|https):\/\//, '') === 'panda-water.cn'
              ? false
@@ -1011,7 +1028,7 @@ class Login {
      height: '400',
    });
-    const handleMessage = function(event) {
+    const handleMessage = function (event) {
      const { origin } = event;
      // Logger.log('origin', event.origin);
      if (origin === 'https://login.dingtalk.com') {
@@ -1214,15 +1231,15 @@ class Login {
    if (industry) {
      let userInfo =
        self.globalConfig.userInfo &&
-        self.globalConfig.userInfo.Groups &&
+          self.globalConfig.userInfo.Groups &&
-        self.globalConfig.userInfo.Groups instanceof Array
+          self.globalConfig.userInfo.Groups instanceof Array
          ? self.globalConfig.userInfo.Groups.find(enter => {
-              if (toSite) {
+            if (toSite) {
-                return enter.site === toSite;
+              return enter.site === toSite;
-              } else {
+            } else {
-                return enter.industry === industry;
+              return enter.industry === industry;
-              }
+            }
-            })
+          })
          : null;
      if (industry === '熊猫新产品' && site) {
@@ -1245,8 +1262,8 @@ class Login {
        site: decodeURIComponent(decode(site)),
        Groups:
          self.globalConfig.userInfo &&
-          self.globalConfig.userInfo.Groups &&
+            self.globalConfig.userInfo.Groups &&
-          self.globalConfig.userInfo.Groups instanceof Array
+            self.globalConfig.userInfo.Groups instanceof Array
            ? self.globalConfig.userInfo.Groups
            : null,
      };
@@ -1334,8 +1351,8 @@ class Login {
      (response.token
        ? response.token
        : response.access_token !== null && response.user_token !== null
-        ? response.user_token
+          ? response.user_token
-        : '');
+          : '');
    if (token) {
      const exp = 86400000;
      self.globalConfig.token = token;
@@ -1384,7 +1401,7 @@ class Login {
    }
  }
-  login(usr, pwd, userPhone, isRememberPWD, mode = SERVICE_APP_LOGIN_MODE.password, captcha) {
+  login(usr, pwd, userPhone, isRememberPWD, mode = SERVICE_APP_LOGIN_MODE.password, captcha, generateType) {
    this.globalConfig = getGlobalConfig();
    const self = this;
    if (window.globalConfig && window.globalConfig.hasGateWay) {
@@ -1399,7 +1416,7 @@ class Login {
              : encipher(pwd, this.globalConfig.encrypt).toUpperCase()
            : '',
          type: mode,
-          generateType: params.getParams('generateType') || '',
+          generateType: params.getParams('generateType') || generateType || '',
          vcode: captcha,
        })
        .then(res => {