修复「1.2.2 用户管理-用户列表勾选单一用户会全选」 close #216

2022-01-23 17:53:22 +08:00
parent 29c066ca3a
commit d35b348a33
130 changed files with 5467 additions and 4554 deletions
--- a/server/service/asset.go
+++ b/server/service/asset.go
@ -1,21 +1,26 @@
 package service

 import (
+	"context"
+	"encoding/base64"
+	"encoding/json"
+
 	"next-terminal/server/config"
+	"next-terminal/server/env"
+	"next-terminal/server/model"
 	"next-terminal/server/repository"
 	"next-terminal/server/utils"
+
+	"github.com/labstack/echo/v4"
+	"gorm.io/gorm"
 )

-type AssetService struct {
-	assetRepository *repository.AssetRepository
+type assetService struct {
+	baseService
 }

-func NewAssetService(assetRepository *repository.AssetRepository) *AssetService {
-	return &AssetService{assetRepository: assetRepository}
-}
-
-func (r AssetService) Encrypt() error {
-	items, err := r.assetRepository.FindAll()
+func (s assetService) EncryptAll() error {
+	items, err := repository.AssetRepository.FindAll(context.TODO())
 	if err != nil {
 		return err
 	}
@ -24,19 +29,95 @@ func (r AssetService) Encrypt() error {
 		if item.Encrypted {
 			continue
 		}
-		if err := r.assetRepository.Encrypt(&item, config.GlobalCfg.EncryptionPassword); err != nil {
+		if err := s.Encrypt(&item, config.GlobalCfg.EncryptionPassword); err != nil {
 			return err
 		}
-		if err := r.assetRepository.UpdateById(&item, item.ID); err != nil {
+		if err := repository.AssetRepository.UpdateById(context.TODO(), &item, item.ID); err != nil {
 			return err
 		}
 	}
 	return nil
 }

-func (r AssetService) CheckStatus(accessGatewayId string, ip string, port int) (active bool, err error) {
+func (s assetService) Decrypt(item *model.Asset, password []byte) error {
+	if item.Encrypted {
+		if item.Password != "" && item.Password != "-" {
+			origData, err := base64.StdEncoding.DecodeString(item.Password)
+			if err != nil {
+				return err
+			}
+			decryptedCBC, err := utils.AesDecryptCBC(origData, password)
+			if err != nil {
+				return err
+			}
+			item.Password = string(decryptedCBC)
+		}
+		if item.PrivateKey != "" && item.PrivateKey != "-" {
+			origData, err := base64.StdEncoding.DecodeString(item.PrivateKey)
+			if err != nil {
+				return err
+			}
+			decryptedCBC, err := utils.AesDecryptCBC(origData, password)
+			if err != nil {
+				return err
+			}
+			item.PrivateKey = string(decryptedCBC)
+		}
+		if item.Passphrase != "" && item.Passphrase != "-" {
+			origData, err := base64.StdEncoding.DecodeString(item.Passphrase)
+			if err != nil {
+				return err
+			}
+			decryptedCBC, err := utils.AesDecryptCBC(origData, password)
+			if err != nil {
+				return err
+			}
+			item.Passphrase = string(decryptedCBC)
+		}
+	}
+	return nil
+}
+
+func (s assetService) Encrypt(item *model.Asset, password []byte) error {
+	if item.Password != "" && item.Password != "-" {
+		encryptedCBC, err := utils.AesEncryptCBC([]byte(item.Password), password)
+		if err != nil {
+			return err
+		}
+		item.Password = base64.StdEncoding.EncodeToString(encryptedCBC)
+	}
+	if item.PrivateKey != "" && item.PrivateKey != "-" {
+		encryptedCBC, err := utils.AesEncryptCBC([]byte(item.PrivateKey), password)
+		if err != nil {
+			return err
+		}
+		item.PrivateKey = base64.StdEncoding.EncodeToString(encryptedCBC)
+	}
+	if item.Passphrase != "" && item.Passphrase != "-" {
+		encryptedCBC, err := utils.AesEncryptCBC([]byte(item.Passphrase), password)
+		if err != nil {
+			return err
+		}
+		item.Passphrase = base64.StdEncoding.EncodeToString(encryptedCBC)
+	}
+	item.Encrypted = true
+	return nil
+}
+
+func (s assetService) FindByIdAndDecrypt(c context.Context, id string) (model.Asset, error) {
+	asset, err := repository.AssetRepository.FindById(c, id)
+	if err != nil {
+		return model.Asset{}, err
+	}
+	if err := s.Decrypt(&asset, config.GlobalCfg.EncryptionPassword); err != nil {
+		return model.Asset{}, err
+	}
+	return asset, nil
+}
+
+func (s assetService) CheckStatus(accessGatewayId string, ip string, port int) (active bool, err error) {
 	if accessGatewayId != "" && accessGatewayId != "-" {
-		g, e1 := accessGatewayService.GetGatewayAndReconnectById(accessGatewayId)
+		g, e1 := GatewayService.GetGatewayAndReconnectById(accessGatewayId)
 		if err != nil {
 			return false, e1
 		}
@ -58,3 +139,118 @@ func (r AssetService) CheckStatus(accessGatewayId string, ip string, port int) (
 	}
 	return active, err
 }
+
+func (s assetService) Create(m echo.Map) (model.Asset, error) {
+
+	data, err := json.Marshal(m)
+	if err != nil {
+		return model.Asset{}, err
+	}
+	var item model.Asset
+	if err := json.Unmarshal(data, &item); err != nil {
+		return model.Asset{}, err
+	}
+
+	item.ID = utils.UUID()
+	item.Created = utils.NowJsonTime()
+	item.Active = true
+
+	return item, env.GetDB().Transaction(func(tx *gorm.DB) error {
+		c := s.Context(tx)
+
+		if err := s.Encrypt(&item, config.GlobalCfg.EncryptionPassword); err != nil {
+			return err
+		}
+		if err := repository.AssetRepository.Create(c, &item); err != nil {
+			return err
+		}
+
+		if err := repository.AssetRepository.UpdateAttributes(c, item.ID, item.Protocol, m); err != nil {
+			return err
+		}
+
+		go func() {
+			active, _ := s.CheckStatus(item.AccessGatewayId, item.IP, item.Port)
+
+			if item.Active != active {
+				_ = repository.AssetRepository.UpdateActiveById(context.TODO(), active, item.ID)
+			}
+		}()
+		return nil
+	})
+}
+
+func (s assetService) DeleteById(id string) error {
+	return env.GetDB().Transaction(func(tx *gorm.DB) error {
+		c := s.Context(tx)
+		// 删除资产
+		if err := repository.AssetRepository.DeleteById(c, id); err != nil {
+			return err
+		}
+		// 删除资产属性
+		if err := repository.AssetRepository.DeleteAttrByAssetId(c, id); err != nil {
+			return err
+		}
+		// 删除资产与用户的关系
+		if err := repository.ResourceSharerRepository.DeleteByResourceId(c, id); err != nil {
+			return err
+		}
+		return nil
+	})
+}
+
+func (s assetService) UpdateById(id string, m echo.Map) error {
+	data, err := json.Marshal(m)
+	if err != nil {
+		return err
+	}
+	var item model.Asset
+	if err := json.Unmarshal(data, &item); err != nil {
+		return err
+	}
+
+	switch item.AccountType {
+	case "credential":
+		item.Username = "-"
+		item.Password = "-"
+		item.PrivateKey = "-"
+		item.Passphrase = "-"
+	case "private-key":
+		item.Password = "-"
+		item.CredentialId = "-"
+		if len(item.Username) == 0 {
+			item.Username = "-"
+		}
+		if len(item.Passphrase) == 0 {
+			item.Passphrase = "-"
+		}
+	case "custom":
+		item.PrivateKey = "-"
+		item.Passphrase = "-"
+		item.CredentialId = "-"
+	}
+
+	if len(item.Tags) == 0 {
+		item.Tags = "-"
+	}
+
+	if item.Description == "" {
+		item.Description = "-"
+	}
+
+	if err := s.Encrypt(&item, config.GlobalCfg.EncryptionPassword); err != nil {
+		return err
+	}
+	return env.GetDB().Transaction(func(tx *gorm.DB) error {
+		c := s.Context(tx)
+
+		if err := repository.AssetRepository.UpdateById(c, &item, id); err != nil {
+			return err
+		}
+		if err := repository.AssetRepository.UpdateAttributes(c, id, item.Protocol, m); err != nil {
+			return err
+		}
+		return nil
+	})
+
+}