permissionGuard.ts 11 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257
  1. import type { Router, RouteRecordRaw } from 'vue-router';
  2. import { usePermissionStoreWithOut } from '/@/store/modules/permission';
  3. import { PageEnum } from '/@/enums/pageEnum';
  4. import { useUserStoreWithOut } from '/@/store/modules/user';
  5. import { PAGE_NOT_FOUND_ROUTE, QIANKUN_ROUTE } from '/@/router/routes/basic';
  6. import { RootRoute } from '/@/router/routes';
  7. import { isOAuth2AppEnv } from '/@/views/sys/login/useLogin';
  8. import { OAUTH2_THIRD_LOGIN_TENANT_ID } from '/@/enums/cacheEnum';
  9. import { useGlobSetting } from '/@/hooks/setting';
  10. import _ from 'lodash';
  11. import { AUTO_LOGIN_URL_QUERY, SKIP_SSO_URL_QUERY } from '../constant';
  12. import { useSso } from '/@/hooks/web/useSso';
  13. const LOGIN_PATH = PageEnum.BASE_LOGIN;
  14. //auth2登录路由
  15. const OAUTH2_LOGIN_PAGE_PATH = PageEnum.OAUTH2_LOGIN_PAGE_PATH;
  16. //分享免登录路由
  17. const SYS_FILES_PATH = PageEnum.SYS_FILES_PATH;
  18. // 邮件中的跳转地址,对应此路由,携带token免登录直接去办理页面
  19. const TOKEN_LOGIN = PageEnum.TOKEN_LOGIN;
  20. const ROOT_PATH = RootRoute.path;
  21. //update-begin---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3不支持auth2登录------------
  22. //update-begin---author:wangshuai ---date:20221111 for: [VUEN-2472]分享免登录------------
  23. const whitePathList: PageEnum[] = [LOGIN_PATH, OAUTH2_LOGIN_PAGE_PATH, SYS_FILES_PATH, TOKEN_LOGIN];
  24. //update-end---author:wangshuai ---date:20221111 for: [VUEN-2472]分享免登录------------
  25. //update-end---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3不支持auth2登录------------
  26. const glob = useGlobSetting();
  27. export function createPermissionGuard(router: Router) {
  28. const userStore = useUserStoreWithOut();
  29. const permissionStore = usePermissionStoreWithOut();
  30. router.beforeEach(async (to, from, next) => {
  31. RootRoute.redirect = glob.homePath || PageEnum.BASE_HOME;
  32. if (_.isEmpty(history.state.current)) {
  33. _.assign(history.state, { current: from.fullPath });
  34. }
  35. if (
  36. from.path === ROOT_PATH &&
  37. to.path === (glob.homePath || PageEnum.BASE_HOME) &&
  38. userStore.getUserInfo.homePath &&
  39. userStore.getUserInfo.homePath !== (glob.homePath || PageEnum.BASE_HOME)
  40. ) {
  41. // mountMicroApp(userStore.getUserInfo.homePath);
  42. next(userStore.getUserInfo.homePath);
  43. document.title = '首页';
  44. return;
  45. }
  46. const token = userStore.getToken;
  47. // Whitelist can be directly entered
  48. if (whitePathList.includes(to.path as PageEnum)) {
  49. if (to.path === LOGIN_PATH && token) {
  50. const isSessionTimeout = userStore.getSessionTimeout;
  51. //update-begin---author:scott ---date:2023-04-24 for:【QQYUN-4713】登录代码调整逻辑有问题,改造待观察--
  52. //TODO vben默认写法,暂时不知目的,有问题暂时先注释掉
  53. //await userStore.afterLoginAction();
  54. //update-end---author:scott ---date::2023-04-24 for:【QQYUN-4713】登录代码调整逻辑有问题,改造待观察--
  55. try {
  56. if (!isSessionTimeout) {
  57. next((to.query?.redirect as string) || '/');
  58. document.title = '';
  59. return;
  60. }
  61. } catch {}
  62. //update-begin---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3不支持auth2登录------------
  63. } else if (to.path === LOGIN_PATH && isOAuth2AppEnv() && !token) {
  64. //退出登录进入此逻辑
  65. //如果进入的页面是login页面并且当前是OAuth2app环境,并且token为空,就进入OAuth2登录页面
  66. //update-begin---author:wangshuai ---date:20230224 for:[QQYUN-3440]新建企业微信和钉钉配置表,通过租户模式隔离------------
  67. // if (to.query.tenantId) {
  68. // setAuthCache(OAUTH2_THIRD_LOGIN_TENANT_ID, to.query.tenantId);
  69. // }
  70. next({ path: OAUTH2_LOGIN_PAGE_PATH });
  71. document.title = '登录';
  72. ///
  73. //update-end---author:wangshuai ---date:20230224 for:[QQYUN-3440]新建企业微信和钉钉配置表,通过租户模式隔离------------
  74. return;
  75. //update-end---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3不支持auth2登录------------
  76. }
  77. next();
  78. document.title = to.meta.title;
  79. return;
  80. }
  81. // token does not exist
  82. if (!token) {
  83. // You can access without permission. You need to set the routing meta.ignoreAuth to true
  84. if (to.meta.ignoreAuth) {
  85. next();
  86. document.title = to.meta.title;
  87. return;
  88. }
  89. // query如果没有明确要求跳过sso则执行sso登录
  90. if (to.query[SKIP_SSO_URL_QUERY.key] !== SKIP_SSO_URL_QUERY.val) {
  91. const redirectSso = await useSso().ssoLogin();
  92. // 如果需要重定向到sso页面则取消路由导航
  93. if (redirectSso) return;
  94. }
  95. // query中要求自动登录的执行自动登录
  96. if (to.query[AUTO_LOGIN_URL_QUERY.key] === AUTO_LOGIN_URL_QUERY.val) {
  97. const userStore = useUserStoreWithOut();
  98. await userStore.mockLogin({
  99. goHome: false,
  100. });
  101. return next({
  102. path: to.path,
  103. query: to.query,
  104. });
  105. }
  106. //update-begin---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3 Auth2未实现------------
  107. let path = LOGIN_PATH;
  108. if (whitePathList.includes(to.path as PageEnum)) {
  109. // 在免登录白名单,如果进入的页面是login页面并且当前是OAuth2app环境,就进入OAuth2登录页面
  110. if (to.path === LOGIN_PATH && isOAuth2AppEnv()) {
  111. next({ path: OAUTH2_LOGIN_PAGE_PATH });
  112. document.title = '登录';
  113. } else {
  114. //在免登录白名单,直接进入
  115. // mountMicroApp(to.path);
  116. next();
  117. document.title = to.meta.title;
  118. }
  119. } else {
  120. //update-begin---author:wangshuai ---date:20230302 for:只有首次登陆并且是企业微信或者钉钉的情况下才会调用------------
  121. //----------【首次登陆并且是企业微信或者钉钉的情况下才会调用】-----------------------------------------------
  122. //只有首次登陆并且是企业微信或者钉钉的情况下才会调用
  123. const href = window.location.href;
  124. //判断当前是auth2页面,并且是钉钉/企业微信,并且包含tenantId参数
  125. if (isOAuth2AppEnv() && href.indexOf('/tenantId/') != -1) {
  126. const params = to.params;
  127. if (params && params.path && params.path.length > 0) {
  128. //直接获取参数最后一位
  129. setAuthCache(OAUTH2_THIRD_LOGIN_TENANT_ID, params.path[params.path.length - 1]);
  130. }
  131. }
  132. //---------【首次登陆并且是企业微信或者钉钉的情况下才会调用】------------------------------------------------
  133. //update-end---author:wangshuai ---date:20230302 for:只有首次登陆并且是企业微信或者钉钉的情况下才会调用------------
  134. // 如果当前是在OAuth2APP环境,就跳转到OAuth2登录页面,否则跳转到登录页面
  135. path = isOAuth2AppEnv() ? OAUTH2_LOGIN_PAGE_PATH : LOGIN_PATH;
  136. }
  137. //update-end---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3 Auth2未实现------------
  138. // redirect login page
  139. const redirectData: { path: string; replace: boolean; query?: Recordable<string> } = {
  140. //update-begin---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3 Auth2未实现------------
  141. path: path,
  142. //update-end---author:wangshuai ---date:20220629 for:[issues/I5BG1I]vue3 Auth2未实现------------
  143. replace: true,
  144. };
  145. //update-begin---author:scott ---date:2023-04-24 for:【QQYUN-4713】登录代码调整逻辑有问题,改造待观察--
  146. if (to.fullPath) {
  147. const getFullPath = to.fullPath;
  148. if (
  149. getFullPath == '/' ||
  150. getFullPath == '/500' ||
  151. getFullPath == '/400' ||
  152. getFullPath == '/login?redirect=/' ||
  153. getFullPath == '/login?redirect=/login?redirect=/'
  154. ) {
  155. return;
  156. }
  157. //update-end---author:scott ---date:2023-04-24 for:【QQYUN-4713】登录代码调整逻辑有问题,改造待观察--
  158. redirectData.query = {
  159. ...redirectData.query,
  160. // update-begin-author:sunjianlei date:20230306 for: 修复登录成功后,没有正确重定向的问题
  161. redirect: to.fullPath,
  162. // update-end-author:sunjianlei date:20230306 for: 修复登录成功后,没有正确重定向的问题
  163. };
  164. }
  165. // mountMicroApp(redirectData.path);
  166. next(redirectData);
  167. document.title = '';
  168. return;
  169. }
  170. //==============================【首次登录并且是企业微信或者钉钉的情况下才会调用】==================
  171. //判断是免登录页面,如果页面包含/tenantId/,那么就直接前往主页
  172. if (isOAuth2AppEnv() && to.path.indexOf('/tenantId/') != -1) {
  173. next(userStore.getUserInfo.homePath || PageEnum.BASE_HOME);
  174. document.title = '首页';
  175. return;
  176. }
  177. //==============================【首次登录并且是企业微信或者钉钉的情况下才会调用】==================
  178. // Jump to the 404 page after processing the login
  179. if (
  180. from.path === LOGIN_PATH &&
  181. to.name === PAGE_NOT_FOUND_ROUTE.name &&
  182. to.fullPath !== (userStore.getUserInfo.homePath || glob.homePath || PageEnum.BASE_HOME)
  183. ) {
  184. // mountMicroApp(userStore.getUserInfo.homePath || PageEnum.BASE_HOME);
  185. next(userStore.getUserInfo.homePath || PageEnum.BASE_HOME);
  186. document.title = '首页';
  187. return;
  188. }
  189. // get userinfo while last fetch time is empty
  190. if (userStore.getLastUpdateTime === 0) {
  191. try {
  192. await userStore.getUserInfoAction();
  193. } catch (err) {
  194. console.info(err);
  195. // mountMicroApp(to.path);
  196. next();
  197. document.title = to.meta.title;
  198. }
  199. }
  200. if (permissionStore.getIsDynamicAddedRoute) {
  201. // mountMicroApp(to.path);
  202. next();
  203. document.title = to.meta.title;
  204. return;
  205. }
  206. const routes = await permissionStore.buildRoutesAction();
  207. routes.forEach((route) => {
  208. router.addRoute(route as unknown as RouteRecordRaw);
  209. });
  210. router.addRoute(PAGE_NOT_FOUND_ROUTE as unknown as RouteRecordRaw); //
  211. router.addRoute(QIANKUN_ROUTE as unknown as RouteRecordRaw);
  212. permissionStore.setDynamicAddedRoute(true);
  213. if (to.name === PAGE_NOT_FOUND_ROUTE.name) {
  214. // 动态添加路由后,此处应当重定向到fullPath,否则会加载404页面内容
  215. next({ path: to.fullPath, replace: true, query: to.query });
  216. } else {
  217. const redirectPath = (from.query.redirect || to.path) as string;
  218. const redirect = decodeURIComponent(redirectPath);
  219. const nextData = to.path === redirect ? { ...to, replace: true } : { path: redirect };
  220. // mountMicroApp(nextData.path);
  221. next(nextData);
  222. document.title = '';
  223. }
  224. });
  225. }