Merge remote-tracking branch 'remotes/origin/master' into pingyin_master

# Conflicts:
#	epmet-auth/src/main/java/com/epmet/service/impl/ThirdLoginServiceImpl.java
#	epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/redis/RedisKeys.java

epmet-admin/epmet-admin-client/src/main/java/com/epmet/dto/PasswordDTO.java

@@ -23,7 +23,10 @@ import java.io.Serializable;
 @Data
 public class PasswordDTO implements Serializable {
     private static final long serialVersionUID = 1L;
-
+    /**
+     * 旧密码
+     */
+    private String oldPassword;
     @NotBlank(message="{sysuser.password.require}")
     private String password;
 

epmet-auth/pom.xml

@@ -138,6 +138,16 @@
             <artifactId>epmet-auth-client</artifactId>
             <version>2.0.0</version>
         </dependency>
+        <dependency>
+            <artifactId>dingtalk-spring-boot-starter</artifactId>
+            <groupId>com.taobao</groupId>
+            <version>1.0.0</version>
+        </dependency>
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <version>1.15</version>
+        </dependency>
     </dependencies>
 
     <build>

epmet-auth/src/main/java/com/epmet/AuthApplication.java

@@ -8,6 +8,7 @@
 
 package com.epmet;
 
+import com.taobao.dingtalk.spring.annotations.EnableDingTalk;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.web.servlet.ServletComponentScan;
@@ -20,6 +21,7 @@ import org.springframework.cloud.openfeign.EnableFeignClients;
  * @author Mark sunlightcs@gmail.com
  * @since 1.0.0
  */
+@EnableDingTalk
 @SpringBootApplication
 @EnableDiscoveryClient
 @EnableFeignClients

epmet-auth/src/main/java/com/epmet/controller/GovWebController.java

@@ -1,6 +1,7 @@
 package com.epmet.controller;
 
 import com.epmet.auth.dto.result.BlockChainStaffAuthResultDTO;
+import com.epmet.commons.tools.constant.NumConstant;
 import com.epmet.commons.tools.utils.RSASignature;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.ValidatorUtils;
@@ -9,6 +10,7 @@ import com.epmet.dto.form.GovWebLoginFormDTO;
 import com.epmet.dto.result.UserTokenResultDTO;
 import com.epmet.service.GovWebService;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.web.bind.annotation.PostMapping;
@@ -44,10 +46,14 @@ public class GovWebController {
         ValidatorUtils.validateEntity(formDTO);
 
         try {
-            if (formDTO.getPassword().length() > 50) {
+            if (StringUtils.isNotBlank(formDTO.getPassword())&&formDTO.getPassword().length() > NumConstant.FIFTY) {
                 String newPassword = RSASignature.decryptByPrivateKey(formDTO.getPassword(), privateKey);
                 formDTO.setPassword(newPassword);
             }
+            if (StringUtils.isNotBlank(formDTO.getPhone())&&formDTO.getPhone().length() > NumConstant.FIFTY) {
+                String phone = RSASignature.decryptByPrivateKey(formDTO.getPhone(), privateKey);
+                formDTO.setPhone(phone);
+            }
 
         } catch (Exception e) {
             log.error("method exception", e);

epmet-auth/src/main/java/com/epmet/controller/LoginController.java

@@ -1,8 +1,10 @@
 package com.epmet.controller;
 
 import com.epmet.commons.tools.annotation.LoginUser;
+import com.epmet.commons.tools.constant.NumConstant;
 import com.epmet.commons.tools.exception.ErrorCode;
 import com.epmet.commons.tools.security.dto.TokenDto;
+import com.epmet.commons.tools.utils.RSASignature;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.AssertUtils;
 import com.epmet.commons.tools.validator.ValidatorUtils;
@@ -15,6 +17,7 @@ import com.epmet.service.LoginService;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.web.bind.annotation.*;
 
 import javax.imageio.ImageIO;
@@ -36,6 +39,8 @@ import java.util.Arrays;
 @RestController
 @RequestMapping("login")
 public class LoginController {
+	@Value("${epmet.login.privateKey}")
+	private String privateKey;
 	@Autowired
 	private CaptchaService captchaService;
 
@@ -90,11 +95,23 @@ public class LoginController {
 	 * @Date 2020/3/14 19:46
 	 **/
 	@PostMapping("/operweb/loginbypassword")
-	public Result<UserTokenResultDTO> loginByPassword(@RequestBody LoginByPassWordFormDTO formDTO) {
+	public Result<UserTokenResultDTO> loginByPassword(@RequestBody LoginByPassWordFormDTO formDTO) throws Exception {
 		//效验数据
 		ValidatorUtils.validateEntity(formDTO);
-		Result<UserTokenResultDTO> result = loginService.loginByPassword(formDTO);
-		return result;
+		//解密密码
+		if (StringUtils.isNotBlank(formDTO.getPhone())&&formDTO.getPhone().length() > NumConstant.FIFTY) {
+			String phone = RSASignature.decryptByPrivateKey(formDTO.getPhone(), privateKey);
+			formDTO.setPhone(phone);
+		}
+		if (StringUtils.isNotBlank(formDTO.getMobile())&&formDTO.getMobile().length() > NumConstant.FIFTY) {
+			String phone = RSASignature.decryptByPrivateKey(formDTO.getMobile(), privateKey);
+			formDTO.setMobile(phone);
+		}
+		if (StringUtils.isNotBlank(formDTO.getPassword())&&formDTO.getPassword().length() > NumConstant.FIFTY) {
+			String confirmNewPassWord = RSASignature.decryptByPrivateKey(formDTO.getPassword(), privateKey);
+			formDTO.setPassword(confirmNewPassWord);
+		}
+		return loginService.loginByPassword(formDTO);
 	}
 
 	/**

epmet-auth/src/main/java/com/epmet/controller/ThirdLoginController.java

@@ -3,15 +3,13 @@ package com.epmet.controller;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.ValidatorUtils;
 import com.epmet.dto.form.*;
+import com.epmet.dto.result.ResiDingAppLoginResDTO;
 import com.epmet.dto.result.StaffOrgsResultDTO;
 import com.epmet.dto.result.UserTokenResultDTO;
 import com.epmet.service.ThirdLoginService;
 import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestBody;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.bind.annotation.*;
 
 import java.util.List;
 
@@ -142,4 +140,68 @@ public class ThirdLoginController {
         return new Result();
     }
 
+    /**
+     * 钉钉应用的登录-居民端
+     * 产品服务商建立第三方企业应用
+     * 参考文档：https://open.dingtalk.com/document/isvapp-server/unified-authorization-suite-access-process
+     * @param formDTO
+     * @return
+     */
+    /**
+     * 接入流程：https://open.dingtalk.com/document/isvapp-server/unified-authorization-suite-access-process
+     * 1、获取个人用户token：https://open.dingtalk.com/document/isvapp-server/obtain-user-token
+     * 2、获取用户通讯录个人信息：https://open.dingtalk.com/document/isvapp-server/dingtalk-retrieve-user-information
+     * 接口逻辑：
+     * （1）根据clientId去XXX表找到customerId
+     * （2）通过1、2拿到手机号之后,根据mobile+customerId去user_base_info表找userId，
+     *           是否注册居民：register_relation
+     * （3）没有则生成user、user_Base_info表记录
+     * @param formDTO
+     * @return
+     */
+    @PostMapping("resilogin-ding")
+    public Result<ResiDingAppLoginResDTO> resiLoginDing(@RequestBody ResiDingAppLoginFormDTO formDTO) {
+        ValidatorUtils.validateEntity(formDTO,ResiDingAppLoginFormDTO.InnerMiniApp.class);
+        return new Result<ResiDingAppLoginResDTO>().ok(thirdLoginService.resiLoginDing(formDTO));
+    }
+
+    /**
+     * 烟台建立应用，授权给我们，走企业免登
+     * 企业简历内部应用授权给第三方
+     * 可参考文档： 获取第三方应用授权企业的accessToken https://open.dingtalk.com/document/orgapp-server/obtain-the-access_token-of-the-authorized-enterprise
+     * https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+     * @param formDTO
+     * @return
+     */
+    @PostMapping("resilogin-ding-md")
+    public Result<ResiDingAppLoginResDTO> resiLoginDingMd(@RequestBody ResiDingAppLoginMdFormDTO formDTO) {
+        ValidatorUtils.validateEntity(formDTO);
+        return new Result<ResiDingAppLoginResDTO>().ok(thirdLoginService.resiLoginDingMd(formDTO));
+    }
+
+    /**
+     * 企业内部应用开发，不授权了 文档地址：https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+     * https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+     * 建议用户信息保存在前端缓存中（dd.setStorage）或者cookie中，避免每次进入应用都调用钉钉接口进行免登。
+     *
+     * 获取免登授权码。
+     * 小程序免登
+     * 微应用免登
+     * 获取AccessToken。
+     * 调用接口获取access_token，详情请参考获取企业内部应用的access_token。
+     *
+     * 获取userid。
+     * 调用接口获取用户的userid，详情请参考通过免登码获取用户信息。
+     *
+     * 获取用户详情。
+     * 调用接口获取用户详细信息，详情请参考根据userId获取用户详情。
+     *
+     * @param formDTO
+     * @return
+     */
+    @PostMapping("resilogin-internalding")
+    public Result<ResiDingAppLoginResDTO> resiLoginInternalDing(@RequestBody ResiDingAppLoginMdFormDTO formDTO) {
+        ValidatorUtils.validateEntity(formDTO);
+        return new Result<ResiDingAppLoginResDTO>().ok(thirdLoginService.resiLoginInternalDing(formDTO));
+    }
 }

epmet-auth/src/main/java/com/epmet/dto/dingres/DingUserDetailDTO.java

@@ -0,0 +1,73 @@
+package com.epmet.dto.dingres;
+
+import lombok.Data;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/22 14:16
+ */
+@Data
+public class DingUserDetailDTO {
+    // 接口文档：https://open.dingtalk.com/document/isvapp-server/query-user-details
+    /**
+     * 员工的userId。
+     */
+    private String userid;
+
+    /**
+     * 员工在当前开发者企业账号范围内的唯一标识。
+     */
+    private String unionid;
+
+    /**
+     * 员工姓名。
+     */
+    private String name;
+    /**
+     * 头像。
+     * <p>
+     * 说明 员工使用默认头像，不返回该字段，手动设置头像会返回
+     */
+    private String avatar;
+    /**
+     * 国际电话区号。
+     * <p>
+     * 说明 第三方企业应用不返回该字段；如需获取state_code，可以使用钉钉统一授权套件方式获取。
+     */
+    private String state_code;
+    /**
+     * 手机号码。
+     * <p>
+     * 说明
+     * 企业内部应用，只有应用开通通讯录邮箱等个人信息权限，才会返回该字段。
+     * 第三方企业应用不返回该字段，如需获取mobile，可以使用钉钉统一授权套件方式获取。
+     */
+    private String mobile;
+    /**
+     * 是否号码隐藏：
+     * <p>
+     * true：隐藏
+     * <p>
+     * false：不隐藏
+     * <p>
+     * 说明 隐藏手机号后，手机号在个人资料页隐藏，但仍可对其发DING、发起钉钉免费商务电话。
+     */
+    private String hide_mobile;
+    /**
+     * 分机号。
+     * <p>
+     * 说明 第三方企业应用不返回该参数。
+     */
+    private String telephone;
+
+    /**
+     * 员工的企业邮箱。
+     *
+     * 如果员工的企业邮箱没有开通，返回信息中不包含该数据。
+     *
+     * 说明 第三方企业应用不返回该参数。
+     */
+    private String org_email;
+}
+

epmet-auth/src/main/java/com/epmet/dto/dingres/V2UserGetuserinfoResDTO.java

@@ -0,0 +1,54 @@
+package com.epmet.dto.dingres;
+
+import lombok.Data;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/22 14:08
+ */
+@Data
+public class V2UserGetuserinfoResDTO {
+    // 接口返参：https://open.dingtalk.com/document/orgapp-server/obtain-the-userid-of-a-user-by-using-the-log-free
+    /**
+     * 用户的userid。
+     */
+    private String userid;
+    /**
+     * 设备ID。
+     */
+    private String device_id;
+    /**
+     * 是否是管理员。
+     * <p>
+     * true：是
+     * <p>
+     * false：不是
+     */
+    private Boolean sys;
+    /**
+     * 级别。
+     * <p>
+     * 1：主管理员
+     * <p>
+     * 2：子管理员
+     * <p>
+     * 100：老板
+     * <p>
+     * 0：其他（如普通员工）
+     */
+    private Number sys_level;
+    /**
+     * 用户关联的unionId。
+     */
+    private String associated_unionid;
+    /**
+     * 用户unionId。
+     */
+    private String unionid;
+    /**
+     * 用户名字。
+     */
+    private String name;
+}
+

epmet-auth/src/main/java/com/epmet/dto/form/ResiDingAppLoginFormDTO.java

@@ -0,0 +1,41 @@
+package com.epmet.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/14 17:11
+ */
+@Data
+public class ResiDingAppLoginFormDTO {
+    public interface InnerMiniApp {}
+    public interface ThirdMiniApp {}
+    /**
+     * 授权统一后的authCode
+     */
+    @NotBlank(message = "authCode不能为空",groups = InnerMiniApp.class)
+    private String authCode;
+//    /**
+//     * 第三方企业应用传应用的SuiteKey
+//     */
+//    @NotBlank(message = "clientId不能为空")
+//    private String clientId;
+    /**
+     * 第三方企业应用传应用的SuiteKey
+     */
+    @NotBlank(message = "miniAppId不能为空",groups = InnerMiniApp.class)
+    private String miniAppId;
+
+    // @NotBlank(message = "当前访问用户的企业corpId不能为空")
+    // private String corpId;
+
+    /**
+     * third：第三方应用
+     * company_customize:企业定制应用
+     */
+    private String appType="company_customize";
+}
+

epmet-auth/src/main/java/com/epmet/dto/form/ResiDingAppLoginMdFormDTO.java

@@ -0,0 +1,23 @@
+package com.epmet.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/22 10:42
+ */
+@Data
+public class ResiDingAppLoginMdFormDTO {
+    @NotBlank(message = "authCode不能为空")
+    private String authCode;
+    /**
+     * 第三方企业应用传应用的SuiteKey
+     */
+    @NotBlank(message = "miniAppId不能为空")
+    private String miniAppId;
+
+}
+

epmet-auth/src/main/java/com/epmet/dto/result/ResiDingAppLoginResDTO.java

@@ -0,0 +1,42 @@
+package com.epmet.dto.result;
+
+import lombok.Data;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/14 17:20
+ */
+@Data
+public class ResiDingAppLoginResDTO {
+    private String authorization;
+    private String customerId;
+    private String gridId;
+    /**
+     * 网格名
+     */
+    private String gridName;
+    /**
+     * 网格所属的组织id
+     */
+    private String agencyId;
+    /**
+     * 居民端用户id
+     */
+    private String epmetUserId;
+
+    /**
+     * 5.获取用户手机号。使用用户个人access_token调用获取用户通讯录个人信息接口获取
+     * 返参信息
+     * 接口文档：https://open.dingtalk.com/document/isvapp-server/dingtalk-retrieve-user-information
+     */
+    private String extInfo;
+
+    /**
+     * 是否注册居民
+     * true:已注册
+     * false:未注册
+     */
+    private Boolean regFlag;
+}
+

epmet-auth/src/main/java/com/epmet/service/ThirdLoginService.java

@@ -1,6 +1,7 @@
 package com.epmet.service;
 
 import com.epmet.dto.form.*;
+import com.epmet.dto.result.ResiDingAppLoginResDTO;
 import com.epmet.dto.result.StaffOrgsResultDTO;
 import com.epmet.dto.result.UserTokenResultDTO;
 
@@ -84,4 +85,29 @@ public interface ThirdLoginService {
 	 * @description 单客户-工作端微信小程序登录-发送验证码
 	 **/
     void sendSmsCode(ThirdSendSmsCodeFormDTO formDTO);
+
+	/**
+	 * 钉钉应用的登录-居民端
+	 * 产品服务商建立第三方企业应用
+	 * 参考文档：https://open.dingtalk.com/document/isvapp-server/unified-authorization-suite-access-process
+	 * @param formDTO
+	 * @return
+	 */
+	ResiDingAppLoginResDTO resiLoginDing(ResiDingAppLoginFormDTO formDTO);
+
+	/**
+	 * 企业简历内部应用授权给第三方
+	 * 可参考文档： 获取第三方应用授权企业的accessToken https://open.dingtalk.com/document/orgapp-server/obtain-the-access_token-of-the-authorized-enterprise
+	 * https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+	 * @param formDTO
+	 * @return
+	 */
+	ResiDingAppLoginResDTO resiLoginDingMd(ResiDingAppLoginMdFormDTO formDTO);
+
+	/**
+	 * 企业内部应用免登 文档地址：https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+	 * @param formDTO
+	 * @return
+	 */
+	ResiDingAppLoginResDTO resiLoginInternalDing(ResiDingAppLoginMdFormDTO formDTO);
 }

epmet-auth/src/main/java/com/epmet/service/impl/ThirdLoginServiceImpl.java

@@ -5,11 +5,14 @@ import cn.binarywang.wx.miniapp.bean.WxMaPhoneNumberInfo;
 import cn.binarywang.wx.miniapp.util.crypt.WxMaCryptUtils;
 import com.alibaba.fastjson.JSON;
 import com.alibaba.fastjson.JSONObject;
+import com.aliyun.dingtalk.module.DingTalkResult;
 import com.epmet.auth.constants.AuthOperationConstants;
 import com.epmet.common.token.constant.LoginConstant;
 import com.epmet.commons.rocketmq.messages.LoginMQMsg;
 import com.epmet.commons.tools.constant.AppClientConstant;
 import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.constant.StrConstant;
+import com.epmet.commons.tools.enums.EnvEnum;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
 import com.epmet.commons.tools.exception.EpmetException;
 import com.epmet.commons.tools.exception.ExceptionUtils;
@@ -17,6 +20,8 @@ import com.epmet.commons.tools.exception.RenException;
 import com.epmet.commons.tools.feign.ResultDataResolver;
 import com.epmet.commons.tools.redis.RedisKeys;
 import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.commons.tools.redis.common.CustomerDingDingRedis;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
 import com.epmet.commons.tools.security.dto.GovTokenDto;
 import com.epmet.commons.tools.security.dto.TokenDto;
 import com.epmet.commons.tools.security.password.PasswordUtils;
@@ -26,6 +31,8 @@ import com.epmet.commons.tools.validator.PhoneValidatorUtils;
 import com.epmet.constant.AuthHttpUrlConstant;
 import com.epmet.constant.SmsTemplateConstant;
 import com.epmet.dto.*;
+import com.epmet.dto.dingres.DingUserDetailDTO;
+import com.epmet.dto.dingres.V2UserGetuserinfoResDTO;
 import com.epmet.dto.form.*;
 import com.epmet.dto.result.*;
 import com.epmet.feign.EpmetMessageOpenFeignClient;
@@ -35,6 +42,11 @@ import com.epmet.jwt.JwtTokenProperties;
 import com.epmet.jwt.JwtTokenUtils;
 import com.epmet.redis.CaptchaRedis;
 import com.epmet.service.ThirdLoginService;
+import com.taobao.api.ApiException;
+import com.taobao.dingtalk.client.DingTalkClientToken;
+import com.taobao.dingtalk.client.DingTalkClientUser;
+import com.taobao.dingtalk.vo.result.AccessTokenResult;
+import com.taobao.dingtalk.vo.result.UserBaseInfo;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.slf4j.Logger;
@@ -78,6 +90,10 @@ public class ThirdLoginServiceImpl implements ThirdLoginService, ResultDataResol
     private LoginUserUtil loginUserUtil;
     @Autowired
     private RedisUtils redisUtils;
+    @Autowired
+    private DingTalkClientToken dingTalkClientToken;
+    @Autowired
+    private DingTalkClientUser dingTalkClientUser;
 
     /**
      * @param formDTO
@@ -874,4 +890,297 @@ public class ThirdLoginServiceImpl implements ThirdLoginService, ResultDataResol
         //getResultDataOrThrowsException(result, ServiceConstant.EPMET_MESSAGE_SERVER, EpmetErrorCode.SERVER_ERROR.getCode(), "调用Message服务，发送登录事件到MQ失败");
     }
 
+// 接入流程：https://open.dingtalk.com/document/isvapp-server/unified-authorization-suite-access-process
+// 1、获取个人用户token：https://open.dingtalk.com/document/isvapp-server/obtain-user-token
+// 2、获取用户通讯录个人信息：https://open.dingtalk.com/document/isvapp-server/dingtalk-retrieve-user-information
+// 接口逻辑：
+// （1）根据clientId去XXX表找到customerId
+// （2）通过1、2拿到手机号之后,根据mobile+customerId去user_base_info表找userId，
+// 是否注册居民：register_relation
+// （3）没有则生成user、user_Base_info表记录
+    /**
+     * 钉钉应用的登录-居民端
+     *
+     * @param formDTO
+     * @return
+     */
+    @Override
+    public ResiDingAppLoginResDTO resiLoginDing(ResiDingAppLoginFormDTO formDTO) {
+        //获取用户手机号
+        log.info("1、钉钉居民端应用登录入参:"+ JSON.toJSONString(formDTO));
+        ResiDingAppLoginResDTO resDTO= null;
+        try {
+            resDTO = new ResiDingAppLoginResDTO();
+            resDTO.setCustomerId(getCurrentCustomerId());
+            //1、获取用户手机号
+            String miniAppId = formDTO.getMiniAppId();
+            DingMiniInfoCache dingMiniInfo = CustomerDingDingRedis.getDingMiniInfo(miniAppId);
+            DingTalkResult<AccessTokenResult> userAccessToken = dingTalkClientToken.getUserAccessToken(formDTO.getAuthCode(), dingMiniInfo.getSuiteKey(), dingMiniInfo.getSuiteSecret());
+            log.info("2、resiLoginDing userAccessToken:{}",JSON.toJSONString(userAccessToken));
+            if (!userAccessToken.success() || null == userAccessToken.getData()) {
+                throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "调用微信api异常:" + JSON.toJSONString(userAccessToken), EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getMsg());
+            }
+            DingTalkResult<UserBaseInfo> me = dingTalkClientUser.getUserInfo("me", userAccessToken.getData().getAccessToken());
+            log.info("3、resiLoginDing me:{}",JSON.toJSONString(me));
+            resDTO.setExtInfo(JSON.toJSONString(me.getData()));
+            if (!me.success() || StringUtils.isBlank(me.getData().getMobile())) {
+                log.error("resilogin-ding登录接口报错,入参:" + JSON.toJSONString(formDTO) + ";获取手机号为空, userAccessToken.getData().getAccessToken()=" + userAccessToken.getData().getAccessToken());
+                throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取手机号为空", "获取手机号为空");
+            }
+            // 2、调用userfeign接口获取userId、注册网格相关信息 todo
+            DingLoginResiFormDTO dingLoginResiFormDTO=ConvertUtils.sourceToTarget(me.getData(),DingLoginResiFormDTO.class);
+            dingLoginResiFormDTO.setCustomerId(resDTO.getCustomerId());
+            Result<DingLoginResiResDTO> loginResiResDTOResult = epmetUserOpenFeignClient.dingResiLogin(dingLoginResiFormDTO);
+            if (!loginResiResDTOResult.success() || null == loginResiResDTOResult.getData()) {
+                //临时打个日志
+                log.error(String.format("resilogin-ding获取epmetUserId异常,入参：%s,user服务返参：%s", JSON.toJSONString(formDTO), JSON.toJSONString(loginResiResDTOResult)));
+                throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取epmetUserId异常:" + JSON.toJSONString(loginResiResDTOResult), EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getMsg());
+            }
+            DingLoginResiResDTO resiResDTO=loginResiResDTOResult.getData();
+            resDTO.setGridId(resiResDTO.getGridId());
+            resDTO.setGridName(resiResDTO.getGridName());
+            resDTO.setAgencyId(resiResDTO.getAgencyId());
+            resDTO.setEpmetUserId(resiResDTO.getEpmetUserId());
+            resDTO.setRegFlag(resiResDTO.getRegFlag());
+
+            //3.生成token，并且存放Redis
+            String token=this.saveTokenDtoDing(formDTO.getMiniAppId(),AppClientConstant.APP_RESI,AppClientConstant.MINI_DING, resDTO.getEpmetUserId(), resDTO.getCustomerId());
+            resDTO.setAuthorization(token);
+
+        } catch (ApiException e) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), e.getErrMsg(), EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getMsg());
+        }
+        return resDTO;
+    }
+
+    private String saveTokenDtoDing(String miniAppId,String app,String client, String userId,String customerId) {
+        //生成token串
+        Map<String, Object> map = new HashMap<>();
+        map.put(AppClientConstant.APP, app);
+        // map.put(AppClientConstant.CLIENT, client);
+        // 第三方企业应用传应用的SuiteKey 作为client
+        map.put(AppClientConstant.CLIENT, client.concat(miniAppId));
+        map.put("userId", userId);
+        String token = jwtTokenUtils.createToken(map);
+        int expire = jwtTokenProperties.getExpire();
+        TokenDto tokenDto = new TokenDto();
+        tokenDto.setCustomerId(customerId);
+        tokenDto.setApp(app);
+        tokenDto.setClient(client.concat(miniAppId));
+        tokenDto.setUserId(userId);
+        tokenDto.setToken(token);
+        tokenDto.setUpdateTime(System.currentTimeMillis());
+        tokenDto.setExpireTime(jwtTokenUtils.getExpiration(token).getTime());
+        cpUserDetailRedis.set(tokenDto, expire);
+        // cpUserDetailRedis.setForDingApp(miniAppId,tokenDto, expire);
+        logger.info("截止时间：" + DateUtils.format(jwtTokenUtils.getExpiration(token), "yyyy-MM-dd HH:mm:ss"));
+        return token;
+    }
+
+    @Override
+    public ResiDingAppLoginResDTO resiLoginDingMd(ResiDingAppLoginMdFormDTO formDTO) {
+        // 获取用户手机号
+        log.info("1、钉钉居民端应用登录入参:" + JSON.toJSONString(formDTO));
+        ResiDingAppLoginResDTO resDTO = null;
+        resDTO = new ResiDingAppLoginResDTO();
+        resDTO.setCustomerId(getCurrentCustomerId());
+        // 1、获取用户手机号
+        DingLoginResiFormDTO dingLoginResiFormDTO = getDingLoginResiFormDTOMd(formDTO.getMiniAppId(), formDTO.getAuthCode());
+        dingLoginResiFormDTO.setCustomerId(resDTO.getCustomerId());
+        // 2、调用userfeign接口获取userId、注册网格相关信息
+        Result<DingLoginResiResDTO> loginResiResDTOResult = epmetUserOpenFeignClient.dingResiLogin(dingLoginResiFormDTO);
+        if (!loginResiResDTOResult.success() || null == loginResiResDTOResult.getData()) {
+            // 临时打个日志
+            log.error(String.format("resiLoginDingMd获取epmetUserId异常,入参：%s,user服务返参：%s", JSON.toJSONString(formDTO), JSON.toJSONString(loginResiResDTOResult)));
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取epmetUserId异常:" + JSON.toJSONString(loginResiResDTOResult), EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getMsg());
+        }
+        DingLoginResiResDTO resiResDTO = loginResiResDTOResult.getData();
+        resDTO.setGridId(resiResDTO.getGridId());
+        resDTO.setGridName(resiResDTO.getGridName());
+        resDTO.setAgencyId(resiResDTO.getAgencyId());
+        resDTO.setEpmetUserId(resiResDTO.getEpmetUserId());
+        resDTO.setRegFlag(resiResDTO.getRegFlag());
+
+        // 3.生成token，并且存放Redis
+        String token = this.saveTokenDtoDing(formDTO.getMiniAppId(), AppClientConstant.APP_RESI, AppClientConstant.MINI_DING, resDTO.getEpmetUserId(), resDTO.getCustomerId());
+        resDTO.setAuthorization(token);
+
+        return resDTO;
+    }
+
+    private DingLoginResiFormDTO getDingLoginResiFormDTOMd(String miniAppId, String authCode) {
+        DingMiniInfoCache dingMiniInfo = CustomerDingDingRedis.getDingMiniInfo(miniAppId);
+
+        // 1、服务商获取第三方应用授权企业的access_token,文档地址：https://open.dingtalk.com/document/orgapp-server/obtains-the-enterprise-authorized-credential
+        // 烟台的CorpId:  dingaae55cbc47a96845f5bf40eda33b7ba0
+        String yantaiCorpId = "dingaae55cbc47a96845f5bf40eda33b7ba0";
+        DingTalkResult<String> res = dingTalkClientToken.getThirdAuthCorpAccessToken(dingMiniInfo.getSuiteKey(), dingMiniInfo.getSuiteSecret(), "abc", yantaiCorpId);
+        if (!res.success() || StringUtils.isBlank(res.getData())) {
+            log.error(String.format("企业内部应用免登服务商获取第三方应用授权企业的access_token失败,customKey:%s,customSecret:%s,corpId:%s", dingMiniInfo.getSuiteSecret(), dingMiniInfo.getSuiteSecret(), yantaiCorpId));
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "服务商获取第三方应用授权企业的access_token", "服务商获取第三方应用授权企业的access_token");
+        }
+        String accessToken = res.getData();
+        log.info(String.format("1、服务商获取第三方应用授权企业的access_token返参:%s", accessToken));
+
+        // 2、通过免登码获取用户信息,文档地址：https://open.dingtalk.com/document/orgapp-server/obtain-the-userid-of-a-user-by-using-the-log-free
+        DingTalkResult<String> v2UserGetuserinfoRes = dingTalkClientToken.getUserInfo(accessToken, authCode);
+        if (!v2UserGetuserinfoRes.success() || StringUtils.isBlank(v2UserGetuserinfoRes.getData())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "通过免登码获取用户信息异常", "通过免登码获取用户信息异常");
+        }
+        log.info(String.format("2、通过免登码获取用户信息返参:%s", v2UserGetuserinfoRes.getData()));
+        V2UserGetuserinfoResDTO v2UserGetuserinfoResDTO = JSON.parseObject(v2UserGetuserinfoRes.getData(), V2UserGetuserinfoResDTO.class);
+        if (null == v2UserGetuserinfoResDTO || StringUtils.isBlank(v2UserGetuserinfoResDTO.getUserid())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取钉钉用户userid为空", "获取钉钉用户userid为空");
+        }
+
+
+        // 3、查询用户详情，文档地址：https://open.dingtalk.com/document/isvapp-server/query-user-details
+        DingTalkResult<String> v2UserGetRes = dingTalkClientToken.getUserDetail(v2UserGetuserinfoResDTO.getUserid(), accessToken);
+        if (!v2UserGetRes.success() || StringUtils.isBlank(v2UserGetRes.getData())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "根据userId查询用户详情失败", "根据userId查询用户详情失败");
+        }
+        log.info(String.format("3、查询用户详情:%s", v2UserGetRes.getData()));
+        DingUserDetailDTO dingUserDetailDTO = JSON.parseObject(v2UserGetRes.getData(), DingUserDetailDTO.class);
+        if (null == dingUserDetailDTO || StringUtils.isBlank(dingUserDetailDTO.getMobile())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取手机号为空", "获取手机号为空");
+        }
+
+        DingLoginResiFormDTO dingLoginResiFormDTO = new DingLoginResiFormDTO();
+        dingLoginResiFormDTO.setAvatarUrl(dingUserDetailDTO.getAvatar());
+        dingLoginResiFormDTO.setEmail(dingUserDetailDTO.getOrg_email());
+        dingLoginResiFormDTO.setMobile(dingUserDetailDTO.getMobile());
+        dingLoginResiFormDTO.setNick(dingUserDetailDTO.getName());
+        dingLoginResiFormDTO.setOpenId(StrConstant.EPMETY_STR);
+        dingLoginResiFormDTO.setStateCode(dingUserDetailDTO.getState_code());
+        dingLoginResiFormDTO.setUnionId(dingUserDetailDTO.getUnionid());
+        return dingLoginResiFormDTO;
+    }
+
+
+    /**
+     * 企业内部应用开发，不授权了
+     * https://open.dingtalk.com/document/orgapp-server/enterprise-internal-application-logon-free
+     * 建议用户信息保存在前端缓存中（dd.setStorage）或者cookie中，避免每次进入应用都调用钉钉接口进行免登。
+     *
+     * 获取免登授权码。
+     * 小程序免登
+     * 微应用免登
+     * 获取AccessToken。
+     * 调用接口获取access_token，详情请参考获取企业内部应用的access_token。
+     *
+     * 获取userid。
+     * 调用接口获取用户的userid，详情请参考通过免登码获取用户信息。
+     *
+     * 获取用户详情。
+     * 调用接口获取用户详细信息，详情请参考根据userId获取用户详情。
+     *
+     * @param formDTO
+     * @return
+     */
+    @Override
+    public ResiDingAppLoginResDTO resiLoginInternalDing(ResiDingAppLoginMdFormDTO formDTO) {
+        // 获取用户手机号
+        log.info("1、钉钉居民端应用登录入参:" + JSON.toJSONString(formDTO));
+        ResiDingAppLoginResDTO resDTO = null;
+        resDTO = new ResiDingAppLoginResDTO();
+        resDTO.setCustomerId(getCurrentCustomerId());
+
+        // 1、获取用户手机号
+        DingLoginResiFormDTO dingLoginResiFormDTO = getDingLoginResiFormDTOInternal(formDTO.getMiniAppId(), formDTO.getAuthCode());
+        dingLoginResiFormDTO.setCustomerId(resDTO.getCustomerId());
+
+        // 2、调用userfeign接口获取userId、注册网格相关信息
+        Result<DingLoginResiResDTO> loginResiResDTOResult = epmetUserOpenFeignClient.dingResiLogin(dingLoginResiFormDTO);
+        if (!loginResiResDTOResult.success() || null == loginResiResDTOResult.getData()) {
+            // 临时打个日志
+            log.error(String.format("resiLoginInternalDing获取epmetUserId异常,入参：%s", JSON.toJSONString(dingLoginResiFormDTO)));
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取epmetUserId异常:"+ JSON.toJSONString(loginResiResDTOResult), "获取epmetUserId异常");
+        }
+        DingLoginResiResDTO resiResDTO = loginResiResDTOResult.getData();
+        resDTO.setGridId(resiResDTO.getGridId());
+        resDTO.setGridName(resiResDTO.getGridName());
+        resDTO.setAgencyId(resiResDTO.getAgencyId());
+        resDTO.setEpmetUserId(resiResDTO.getEpmetUserId());
+        resDTO.setRegFlag(resiResDTO.getRegFlag());
+
+        // 3.生成token，并且存放Redis
+        String token = this.saveTokenDtoDing(formDTO.getMiniAppId(), AppClientConstant.APP_RESI, AppClientConstant.MINI_DING, resDTO.getEpmetUserId(), resDTO.getCustomerId());
+        resDTO.setAuthorization(token);
+
+        return resDTO;
+    }
+
+    /**
+     * 最原始的企业内部应用开发，不授权给产品服务商
+     * @param miniAppId
+     * @param authCode
+     * @return
+     */
+    private DingLoginResiFormDTO getDingLoginResiFormDTOInternal(String miniAppId, String authCode) {
+        DingMiniInfoCache dingMiniInfo = CustomerDingDingRedis.getDingMiniInfo(miniAppId);
+
+        // 1、获取企业内部应用的accessToken文档地址：https://open.dingtalk.com/document/orgapp-server/obtain-the-access_token-of-an-internal-app
+        String accessToken = "";
+        DingTalkResult<String> dingTalkResult = dingTalkClientToken.getAppAccessTokenToken(dingMiniInfo.getSuiteKey(), dingMiniInfo.getSuiteSecret());
+        if (!dingTalkResult.success() || StringUtils.isBlank(dingTalkResult.getData())) {
+            log.error(String.format("获取企业内部应用的accessToken失败,customKey:%s,customSecret:%s", dingMiniInfo.getSuiteSecret(), dingMiniInfo.getSuiteSecret()));
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取企业内部应用的accessToken异常", "获取企业内部应用的accessToken");
+        }
+        accessToken = dingTalkResult.getData();
+        log.info(String.format("1、获取企业内部应用的accessToken返参:%s", accessToken));
+
+
+        // 2、通过免登码获取用户信息,文档地址：https://open.dingtalk.com/document/orgapp-server/obtain-the-userid-of-a-user-by-using-the-log-free
+        DingTalkResult<String> v2UserGetuserinfoRes = dingTalkClientToken.getUserInfo(accessToken, authCode);
+        if (!v2UserGetuserinfoRes.success() || StringUtils.isBlank(v2UserGetuserinfoRes.getData())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "通过免登码获取用户信息异常", "通过免登码获取用户信息异常");
+        }
+        log.info(String.format("2、通过免登码获取用户信息返参:%s", v2UserGetuserinfoRes.getData()));
+        V2UserGetuserinfoResDTO v2UserGetuserinfoResDTO = JSON.parseObject(v2UserGetuserinfoRes.getData(), V2UserGetuserinfoResDTO.class);
+        if (null == v2UserGetuserinfoResDTO || StringUtils.isBlank(v2UserGetuserinfoResDTO.getUserid())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取钉钉用户userid为空", "获取钉钉用户userid为空");
+        }
+
+
+        // 3、查询用户详情，文档地址：https://open.dingtalk.com/document/isvapp-server/query-user-details
+        DingTalkResult<String> v2UserGetRes = dingTalkClientToken.getUserDetail(v2UserGetuserinfoResDTO.getUserid(), accessToken);
+        if (!v2UserGetRes.success() || StringUtils.isBlank(v2UserGetRes.getData())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "根据userId查询用户详情失败", "根据userId查询用户详情失败");
+        }
+        log.info(String.format("3、查询用户详情:%s", v2UserGetRes.getData()));
+        DingUserDetailDTO dingUserDetailDTO = JSON.parseObject(v2UserGetRes.getData(), DingUserDetailDTO.class);
+        if (null == dingUserDetailDTO || StringUtils.isBlank(dingUserDetailDTO.getMobile())) {
+            throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "获取手机号为空", "获取手机号为空");
+        }
+
+        DingLoginResiFormDTO dingLoginResiFormDTO = new DingLoginResiFormDTO();
+        dingLoginResiFormDTO.setAvatarUrl(dingUserDetailDTO.getAvatar());
+        dingLoginResiFormDTO.setEmail(dingUserDetailDTO.getOrg_email());
+        dingLoginResiFormDTO.setMobile(dingUserDetailDTO.getMobile());
+        dingLoginResiFormDTO.setNick(dingUserDetailDTO.getName());
+        dingLoginResiFormDTO.setOpenId(StrConstant.EPMETY_STR);
+        dingLoginResiFormDTO.setStateCode(dingUserDetailDTO.getState_code());
+        dingLoginResiFormDTO.setUnionId(dingUserDetailDTO.getUnionid());
+        return dingLoginResiFormDTO;
+    }
+
+    /**
+     * 客户写死吧
+     * @return
+     */
+    private String getCurrentCustomerId() {
+        String customerId="";
+        EnvEnum currentEnv = EnvEnum.getCurrentEnv();
+        if (EnvEnum.PROD.getCode().equals(currentEnv.getCode())) {
+            // 烟台的客户id
+            customerId="1535072605621841922";
+        } else if (EnvEnum.TEST.getCode().equals(currentEnv.getCode())) {
+            // 最美琴岛
+            customerId="0c41b272ee9ee95ac6f184ad548a30eb";
+        } else {
+            // 其余统一走开发环境
+            customerId="45687aa479955f9d06204d415238f7cc";
+        }
+        return customerId;
+    }
 }

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/constant/AppClientConstant.java

@@ -32,6 +32,11 @@ public interface AppClientConstant {
      */
     String CLIENT_WXMP = "wxmp";
 
+    /**
+     * 钉钉小程序
+     */
+    String MINI_DING = "mini_ding";
+
     /**
      * 客户来源App
      * */

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/constant/NumConstant.java

@@ -85,6 +85,7 @@ public interface NumConstant {
     String POSITIVE_EIGHT_STR = "+8";
     String EMPTY_STR = "";
     String ONE_NEG_STR = "-1";
+    String ONE_HUNDRED_STR = "100";
 
     String FIFTY_STR="50";
 }

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/dto/form/DingMiniInfoFormDTO.java

@@ -0,0 +1,26 @@
+package com.epmet.commons.tools.dto.form;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import javax.validation.constraints.NotBlank;
+import java.io.Serializable;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/15 10:25
+ * @DESC
+ */
+@Data
+@NoArgsConstructor
+@AllArgsConstructor
+public class DingMiniInfoFormDTO implements Serializable {
+
+    private static final long serialVersionUID = 2661531490851265637L;
+
+    public interface DingMiniInfoForm{}
+
+    @NotBlank(message = "miniAppId不能为空",groups = DingMiniInfoForm.class)
+    private String miniAppId;
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/dto/form/HasOperPermissionFormDTO.java

@@ -0,0 +1,24 @@
+package com.epmet.commons.tools.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+
+@Data
+public class HasOperPermissionFormDTO {
+
+    /**
+     * uri
+     */
+    @NotBlank(message = "uri不能为空")
+    private String uri;
+
+    /**
+     * http方法
+     */
+    @NotBlank(message = "请求http方法不能为空")
+    private String method;
+
+    @NotBlank(message = "操作者ID不能为空")
+    private String operId;
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/dto/result/OperResouce.java

@@ -0,0 +1,13 @@
+package com.epmet.commons.tools.dto.result;
+
+import lombok.Data;
+
+@Data
+public class OperResouce {
+
+    private String userId;
+    private String resourceUrl;
+    private String ResourceMethod;
+
+
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/dto/result/YtHsjcResDTO.java

@@ -0,0 +1,22 @@
+package com.epmet.commons.tools.dto.result;
+
+import lombok.Data;
+
+import java.util.List;
+
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/26 17:04
+ */
+@Data
+public class YtHsjcResDTO {
+    private int code = 200;
+    private String msg = "请求成功";
+    /**
+     * 响应数据
+     */
+    private List<YtHsjcResDetailDTO> data;
+    private int total;
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/dto/result/YtHsjcResDetailDTO.java

@@ -0,0 +1,48 @@
+package com.epmet.commons.tools.dto.result;
+
+import lombok.Data;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/26 17:10
+ */
+@Data
+public class YtHsjcResDetailDTO {
+    private String id;
+    private String name;
+    private String card_no;
+    private String telephone;
+    private String address;
+    private String test_time;
+    private String depart_name;
+    private String county;
+    private String upload_time;
+    private String sample_result_pcr;
+    private String sample_time;
+    private String sampling_org_pcr;
+
+   /* {
+        "code":"200",
+            "msg":"请求成功",
+            "data":[
+        {
+            "id":"6a31eb2d38c011eda054fa163ebc7ff4",
+                "name":"杨冠中",// 姓名
+                "card_no":"372527198404130813",// 证件号码
+                "telephone":"13697890860",// 电话
+                "address":"保利香榭里公馆18-1-302",// 联系地址
+                "test_time":"2022-09-20 12:52:28",// 检测时间
+                "depart_name":"天仁医学检验实验室有限公司",// varchar
+                "county":"莱山区",// 所属区县
+                "upload_time":"2022-09-20 21:23:10",// 时间戳
+                "sample_result_pcr":"2",// 核酸检测结果 1:阳性,2:阴性
+                "sample_time":"2022-09-20 06:48:28",// 采样时间
+                "sampling_org_pcr":"采样点327"// 核酸采样机构
+        },
+        ]
+        "total":1
+    }
+*/
+}
+

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/enums/DingMiniAppEnum.java

@@ -0,0 +1,79 @@
+package com.epmet.commons.tools.enums;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/14 19:11
+ */
+public enum DingMiniAppEnum {
+    // 亿联云盘CorpId：dingd1e19e397c754c7735c2f4657eb6378f
+    //
+    // //各应用秘钥
+    //         随手拍
+    // SuiteId：27501006
+    // AppId：119450
+    // MiniAppId：5000000002934668
+    // SuiteKey：suitew6ccvkquinmrghqy
+    // SuiteSecret：TooAxiegdsE5BPP6xo1AxK1LdmaUoMpPMyomOcGcBSXtnsxRc8dEfyOlG56oSmEB
+    //
+    //         随时讲
+    // SuiteId：27564007
+    // AppId：119451
+    // MiniAppId：5000000002934374
+    // SuiteKey：suitezhyj12glsrp8em0f
+    // SuiteSecret：-z5Q_lvMP6l7fTzlArEzUT8D_-5pvqBQaJMuTGHoXnz0nuiqGQMZ8aeya_cxTsN-
+    //
+    // 我的报事
+    // SuiteId：27569006
+    // AppId：119452
+    // MiniAppId：5000000002934456
+    // SuiteKey：suite5yxliro6wawv514w
+    // SuiteSecret：aQxiPi7DwJSUa9HlbUU_L7Q4wGCLEDmgf__Ffx75cTn3jZwuHy9vdl-9Iv5FeyJU
+    //
+    //         实时动态
+    // SuiteId：27458011
+    // AppId：119453
+    // MiniAppId：5000000002934488
+    // SuiteKey：suitemcestnonr6y0xigc
+    // SuiteSecret：kKCNCkfDhmLoVnl_wuAiScyDG4776mkTevuSBuiYhHg-Bvz1-vhb_4IA-Km7nK2I
+    SSP("suitew6ccvkquinmrghqy", "随手拍", "TooAxiegdsE5BPP6xo1AxK1LdmaUoMpPMyomOcGcBSXtnsxRc8dEfyOlG56oSmEB"),
+    SSJ("suitezhyj12glsrp8em0f", "随时讲", "-z5Q_lvMP6l7fTzlArEzUT8D_-5pvqBQaJMuTGHoXnz0nuiqGQMZ8aeya_cxTsN-"),
+    MY_REPORT_EVENT("suite5yxliro6wawv514w", "我的报事", "aQxiPi7DwJSUa9HlbUU_L7Q4wGCLEDmgf__Ffx75cTn3jZwuHy9vdl-9Iv5FeyJU"),
+    SSDT("suitemcestnonr6y0xigc", "实时动态", "kKCNCkfDhmLoVnl_wuAiScyDG4776mkTevuSBuiYhHg-Bvz1-vhb_4IA-Km7nK2I");
+
+    private String suiteKey;
+    private String name;
+    private String suiteSecret;
+
+
+    DingMiniAppEnum(String suiteKey, String name, String suiteSecret) {
+        this.suiteKey = suiteKey;
+        this.name = name;
+        this.suiteSecret = suiteSecret;
+    }
+
+    public static DingMiniAppEnum getEnum(String suiteKey) {
+        DingMiniAppEnum[] values = DingMiniAppEnum.values();
+        for (DingMiniAppEnum value : values) {
+            if (value.getSuiteKey().equals(suiteKey)) {
+                return value;
+            }
+        }
+        return null;
+    }
+
+
+    public String getSuiteKey() {
+        return suiteKey;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public String getSuiteSecret() {
+        return suiteSecret;
+    }
+
+}
+

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/CommonOperAccessOpenFeignClient.java

@@ -0,0 +1,46 @@
+package com.epmet.commons.tools.feign;
+
+import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.dto.form.HasOperPermissionFormDTO;
+import com.epmet.commons.tools.dto.result.OperResouce;
+import com.epmet.commons.tools.feign.fallback.CommonOperAccessOpenFeignClientFallbackFactory;
+import com.epmet.commons.tools.utils.Result;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+/**
+ * @Description 运营端权限模块
+ * @Author yinzuomei
+ * @Date 2020/5/21 15:17 本服务对外开放的API,其他服务通过引用此client调用该服务
+ */
+@FeignClient(name = ServiceConstant.OPER_ACCESS_SERVER, fallbackFactory = CommonOperAccessOpenFeignClientFallbackFactory.class)
+//@FeignClient(name = ServiceConstant.OPER_ACCESS_SERVER, fallbackFactory = CommonOperAccessOpenFeignClientFallbackFactory.class, url = "http://localhost:8093")
+public interface CommonOperAccessOpenFeignClient {
+    /**
+     * @param
+     * @return com.epmet.commons.tools.utils.Result
+     * @Author yinzuomei
+     * @Description 清空运营人员权限信息、菜单信息
+     * @Date 2020/5/21 17:08
+     **/
+    @GetMapping("/oper/access/menu/clearoperuseraccess")
+    Result clearOperUserAccess();
+
+    /**
+     * 是否有该接口的权限
+     * @return
+     */
+    @PostMapping("/oper/access/menu/hasPermission")
+    Result hasOperPermission(@RequestBody HasOperPermissionFormDTO form);
+
+    /**
+     * 需要验证的菜单资源
+     * @return
+     */
+    @PostMapping("/oper/access/menu/getExamineResourceUrls")
+    Result<List<OperResouce>> getExamineResourceUrls();
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/CommonThirdFeignClient.java

@@ -0,0 +1,24 @@
+package com.epmet.commons.tools.feign;
+
+import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.feign.fallback.CommonThirdFeignClientFallBackFactory;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.commons.tools.utils.Result;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+
+/**
+ * @Description
+ * @Author zxc
+ */
+@FeignClient(name = ServiceConstant.EPMET_THIRD_SERVER, fallbackFactory = CommonThirdFeignClientFallBackFactory.class)
+// @FeignClient(name = ServiceConstant.EPMET_THIRD_SERVER, fallbackFactory = CommonAggFeignClientFallBackFactory.class,url = "localhost:8110")
+public interface CommonThirdFeignClient {
+
+    @PostMapping("/third/dingTalk/getDingMiniInfo")
+    Result<DingMiniInfoCache> getDingMiniInfo(@RequestBody DingMiniInfoFormDTO formDTO);
+
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/fallback/CommonOperAccessOpenFeignClientFallback.java

@@ -0,0 +1,35 @@
+package com.epmet.commons.tools.feign.fallback;
+
+import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.dto.form.HasOperPermissionFormDTO;
+import com.epmet.commons.tools.dto.result.OperResouce;
+import com.epmet.commons.tools.feign.CommonOperAccessOpenFeignClient;
+import com.epmet.commons.tools.utils.ModuleUtils;
+import com.epmet.commons.tools.utils.Result;
+
+import java.util.List;
+
+/**
+ * @Description 运营端权限模块
+ * @Author yinzuomei
+ * @Date 2020/5/21 15:47
+ */
+//@Component
+public class CommonOperAccessOpenFeignClientFallback implements CommonOperAccessOpenFeignClient {
+    @Override
+    public Result clearOperUserAccess() {
+        return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "clearOperUserAccess");
+
+    }
+
+    @Override
+    public Result hasOperPermission(HasOperPermissionFormDTO form) {
+        return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "hasOperPermission");
+    }
+
+    @Override
+    public Result<List<OperResouce>> getExamineResourceUrls() {
+        return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "getExamineResourceUrls");
+    }
+}
+

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/fallback/CommonOperAccessOpenFeignClientFallbackFactory.java

@@ -0,0 +1,19 @@
+package com.epmet.commons.tools.feign.fallback;
+
+import com.epmet.commons.tools.exception.ExceptionUtils;
+import com.epmet.commons.tools.feign.CommonOperAccessOpenFeignClient;
+import feign.hystrix.FallbackFactory;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+@Component
+@Slf4j
+public class CommonOperAccessOpenFeignClientFallbackFactory implements FallbackFactory<CommonOperAccessOpenFeignClient> {
+    private CommonOperAccessOpenFeignClientFallback fallback = new CommonOperAccessOpenFeignClientFallback();
+
+    @Override
+    public CommonOperAccessOpenFeignClient create(Throwable cause) {
+        log.error(String.format("FeignClient调用发生异常,异常信息:%s", ExceptionUtils.getThrowableErrorStackTrace(cause)));
+        return fallback;
+    }
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/fallback/CommonThirdFeignClientFallBackFactory.java

@@ -0,0 +1,20 @@
+package com.epmet.commons.tools.feign.fallback;
+
+import com.epmet.commons.tools.exception.ExceptionUtils;
+import com.epmet.commons.tools.feign.CommonThirdFeignClient;
+import feign.hystrix.FallbackFactory;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+@Component
+@Slf4j
+public class CommonThirdFeignClientFallBackFactory implements FallbackFactory<CommonThirdFeignClient> {
+
+    private CommonThirdFeignClientFallback fallback = new CommonThirdFeignClientFallback();
+
+    @Override
+    public CommonThirdFeignClient create(Throwable cause) {
+        log.error(String.format("FeignClient调用发生异常,异常信息:%s", ExceptionUtils.getThrowableErrorStackTrace(cause)));
+        return fallback;
+    }
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/feign/fallback/CommonThirdFeignClientFallback.java

@@ -0,0 +1,24 @@
+package com.epmet.commons.tools.feign.fallback;
+
+import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.feign.CommonThirdFeignClient;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.commons.tools.utils.ModuleUtils;
+import com.epmet.commons.tools.utils.Result;
+import org.springframework.stereotype.Component;
+
+/**
+ *
+ * @Author zxc
+ * @Description
+ * @Date
+ **/
+@Component
+public class CommonThirdFeignClientFallback implements CommonThirdFeignClient {
+
+    @Override
+    public Result<DingMiniInfoCache> getDingMiniInfo(DingMiniInfoFormDTO formDTO) {
+        return ModuleUtils.feignConError(ServiceConstant.EPMET_THIRD_SERVER, "getDingMiniInfo", formDTO);
+    }
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/redis/RedisKeys.java

@@ -104,6 +104,10 @@ public class RedisKeys {
 		return rootPrefix.concat("sys:security:user:").concat(app).concat(StrConstant.COLON).concat(client).concat(StrConstant.COLON).concat(userId);
 	}
 
+	public static String getCpUserKeyForDingApp(String suiteKey,String app, String client, String userId) {
+		return rootPrefix.concat("sys:security:user:").concat(app).concat(StrConstant.COLON).concat(client).concat(StrConstant.COLON).concat(suiteKey).concat(StrConstant.COLON).concat(userId);
+	}
+
 	/**
 	 * 拼接手机验证码key---后面需要改！！！
 	 *
@@ -890,4 +894,39 @@ public class RedisKeys {
 		}
 		return rootPrefix.concat("gov:staff:temp:staffId:")+staffId;
 	}
+
+	/**
+	 * Desc: 票据
+	 * @param suiteKey
+	 * @author zxc
+	 * @date 2022/9/14 10:46
+	 */
+	public static String getSuiteTicketKey(String suiteKey) {
+		return rootPrefix.concat("ding:suiteTicket:" + suiteKey);
+	}
+
+	public static String getDingMiniInfoKey(String suiteKey) {
+		return rootPrefix.concat("ding:miniInfo:" + suiteKey);
+	}
+
+	/**
+	 * 运营人员-资源权限
+	 * @param operId
+	 * @return
+	 */
+	public static String operResourcesBaseDir() {
+		return rootPrefix.concat("oper:access:resources:");
+	}
+
+    public static String operResourcesByUserId(String operId) {
+		return operResourcesBaseDir().concat(operId);
+    }
+
+	/**
+	 * 获取需要检查的资源url
+	 * @return
+	 */
+	public static String getOperExamineResourceUrls() {
+		return rootPrefix.concat("oper:access:examineresources");
+    }
 }

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/redis/common/CustomerDingDingRedis.java

@@ -0,0 +1,58 @@
+package com.epmet.commons.tools.redis.common;
+
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.exception.EpmetException;
+import com.epmet.commons.tools.feign.CommonThirdFeignClient;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.commons.tools.utils.ConvertUtils;
+import com.epmet.commons.tools.utils.Result;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+import org.springframework.util.CollectionUtils;
+
+import javax.annotation.PostConstruct;
+import java.util.Map;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/15 10:01
+ * @DESC
+ */
+@Slf4j
+@Component
+public class CustomerDingDingRedis {
+
+    @Autowired
+    private CommonThirdFeignClient thirdFeignClient;
+    @Autowired
+    private RedisUtils redisUtils;
+
+    private static CustomerDingDingRedis customerDingDingRedis;
+
+    @PostConstruct
+    public void init() {
+        customerDingDingRedis = this;
+        customerDingDingRedis.thirdFeignClient = this.thirdFeignClient;
+        customerDingDingRedis.redisUtils = this.redisUtils;
+    }
+
+    public static DingMiniInfoCache getDingMiniInfo(String miniAppId){
+        String key = RedisKeys.getDingMiniInfoKey(miniAppId);
+        Map<String, Object> miniInfoMap = customerDingDingRedis.redisUtils.hGetAll(key);
+        if (!CollectionUtils.isEmpty(miniInfoMap)){
+            return ConvertUtils.mapToEntity(miniInfoMap,DingMiniInfoCache.class);
+        }
+        Result<DingMiniInfoCache> dingMiniInfoResult = customerDingDingRedis.thirdFeignClient.getDingMiniInfo(new DingMiniInfoFormDTO(miniAppId));
+        if (!dingMiniInfoResult.success()){
+            throw new EpmetException("查询dingMiniInfo失败...");
+        }
+        if (null == dingMiniInfoResult.getData()){
+            return null;
+        }
+        return dingMiniInfoResult.getData();
+    }
+
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/redis/common/bean/DingMiniInfoCache.java

@@ -0,0 +1,52 @@
+package com.epmet.commons.tools.redis.common.bean;
+
+import lombok.Data;
+
+import java.io.Serializable;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/15 10:11
+ * @DESC
+ */
+@Data
+public class DingMiniInfoCache implements Serializable {
+
+    private static final long serialVersionUID = -6956910978074595334L;
+
+    private String id;
+
+    /**
+     *
+     */
+    private String suiteId;
+
+    /**
+     *
+     */
+    private String appId;
+
+    /**
+     *
+     */
+    private String miniAppId;
+
+    /**
+     *
+     */
+    private String suiteName;
+
+    /**
+     *
+     */
+    private String suiteKey;
+
+    /**
+     *
+     */
+    private String suiteSecret;
+
+    private String token;
+
+    private String aesKey;
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/security/password/PasswordUtils.java

@@ -37,6 +37,43 @@ public class PasswordUtils {
         return passwordEncoder.matches(str, password);
     }
 
+    /**
+     * desc:校验密码规则是否
+     * 校验密码规则：密码必须8-20个字符，而且同时包含大小写字母和数字
+     * @param password
+     * @return
+     */
+    public static boolean checkPassWordRule(String password) {
+        boolean flag=false;
+        if(password.length()<8||password.length()>20){
+            return flag;
+        }
+        boolean numFlag=false;
+        boolean bigLetter=false;
+        boolean smallLetter=false;
+        char[] passwordArray = password.toCharArray();
+        for(int i=0;i < passwordArray.length;i++) {
+            char currentStr=passwordArray[i];
+            // 判断ch是否是数字字符，如'1'，'2‘，是返回true。否则返回false
+            if(Character.isDigit(currentStr)){
+                numFlag=true;
+                continue;
+            }
+            // 判断ch是否是字母字符，如'a'，'b‘，是返回true。否则返回false
+            if(Character.isUpperCase(currentStr)){
+                bigLetter=true;
+                continue;
+            }
+            if(Character.isLowerCase(currentStr)){
+                smallLetter=true;
+            }
+        }
+        if(numFlag&&bigLetter&&smallLetter){
+            flag=true;
+        }
+        return flag;
+    }
+
 
     public static void main(String[] args) {
         String str = "wangqing";

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/utils/CpUserDetailRedis.java

@@ -41,6 +41,15 @@ public class CpUserDetailRedis {
 		redisUtils.hMSet(key, map, expire);
 	}
 
+	public void setForDingApp(String suiteKey,TokenDto user, long expire) {
+		if (user == null) {
+			return;
+		}
+		String key = RedisKeys.getCpUserKeyForDingApp(suiteKey,user.getApp(), user.getClient(), user.getUserId());
+		//bean to map
+		Map<String, Object> map = BeanUtil.beanToMap(user, false, true);
+		redisUtils.hMSet(key, map, expire);
+	}
 	/**
 	 * 获取token信息
 	 *

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/utils/NameUtils.java

@@ -0,0 +1,89 @@
+package com.epmet.commons.tools.utils;
+
+import com.epmet.commons.tools.constant.NumConstant;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @Description
+ * @Author zhaoqifeng
+ * @Date 2022/9/14 14:40
+ */
+public class NameUtils {
+    /**
+     * 复姓（两字）,国内现存81个。末尾添加三字以上的部分满姓
+     */
+    private static final String[] SURNAME_NOW = {"百里", "北堂", "北野", "北宫", "辟闾", "孛尔", "淳于", "成公", "陈生", "褚师",
+            "端木", "东方", "东郭", "东野", "东门", "第五", "大狐", "段干", "段阳", "带曰", "第二", "东宫", "公孙", "公冶", "公羊",
+            "公良", "公西", "公孟", "高堂", "高阳", "公析", "公肩", "公坚", "郭公", "谷梁", "毌将", "公乘", "毌丘", "公户", "公广",
+            "公仪", "公祖", "皇甫", "黄龙", "胡母", "何阳", "夹谷", "九方", "即墨", "梁丘", "闾丘", "洛阳", "陵尹", "冷富", "龙丘",
+            "令狐", "林彭", "南宫", "南郭", "女娲", "南伯", "南容", "南门", "南野", "欧阳", "欧侯", "濮阳", "青阳", "漆雕", "亓官",
+            "渠丘", "壤驷", "上官", "少室", "少叔", "司徒", "司马", "司空", "司寇", "士孙", "申屠", "申徒", "申鲜", "申叔", "夙沙",
+            "叔先", "叔仲", "侍其", "叔孙", "澹台", "太史", "太叔", "太公", "屠岸", "唐古", "闻人", "巫马", "微生", "王孙", "无庸",
+            "夏侯", "西门", "信平", "鲜于", "轩辕", "相里", "新垣", "徐离", "羊舌", "羊角", "延陵", "於陵", "伊祁", "吾丘", "乐正",
+            "只斤", "诸葛", "颛孙", "仲孙", "仲长", "钟离", "宗政", "主父", "中叔", "左人", "左丘", "宰父", "长儿", "仉督", "单于",
+            "叱干", "叱利", "车非", "车公", "车侯", "车长", "车绵", "独孤", "大野", "独吉", "达奚", "达官", "达仲", "达品", "哥舒",
+            "哥夜", "哥翰", "哥汗", "赫连", "呼延", "贺兰", "黑齿", "斛律", "斛粟", "贺若", "贺奴", "贺远", "贺元", "夹谷", "吉胡",
+            "吉利", "吉家", "可频", "慕容", "万俟", "万红", "万中", "抹捻", "纳兰", "纳西", "纳吉", "纳罕", "纳塞", "纳博", "纳称",
+            "纳勉", "普周", "仆固", "仆散", "蒲察", "屈突", "屈卢", "钳耳", "是云", "索卢", "厍狄", "拓跋", "同蹄", "秃发", "完颜",
+            "完明", "完忠", "宇文", "尉迟", "耶律", "耶红", "也先", "耶鲜", "耶闻", "长孙", "长南", "长北", "长西", "长红", "长元",
+            "长秋", "长寸", "长李", "长云", "萨嘛喇","赫舍里","萨克达","钮祜禄","他塔喇","喜塔腊","库雅喇","瓜尔佳","舒穆禄","索绰络",
+            "叶赫那拉","依尔觉罗","额尔德特","讷殷富察","叶赫那兰","爱新觉罗","依尔根觉罗"};
+
+    /**
+     * 获取复姓，非单字姓氏。未匹配上则依旧返回单字姓氏
+     * @param name
+     * @return
+     */
+    public static String getSurNameComplex(String name){
+        for (String s : SURNAME_NOW) {
+            if (name.startsWith(s)) {
+                return name.substring(0, s.length());
+            }
+        }
+        return name.substring(0,1);
+    }
+
+    /**
+     * 获取复姓名，去除姓氏后名
+     * @param name
+     * @return
+     */
+    public static String getNameComplex(String name){
+        for (String s : SURNAME_NOW) {
+            if (name.startsWith(s)) {
+                return name.substring(s.length());
+            }
+        }
+        return name.substring(1);
+    }
+
+    /**
+     * 获取姓氏与姓名<br>
+     * 姓名在两字时，首字为姓。<br>
+     * 姓名大于两字时，优先匹配复姓。<br>
+     * 姓氏未匹配且姓名多于5字时，姓与名均在姓氏中,名为空；少于5字时则采用第一个字为姓。<br>
+     * @param name 姓名
+     * @return map类型数据，姓氏为key值“X”，名字为value值“M”
+     */
+    public static Map<String, String> getSurName(String name) {
+        Map<String,String> mapData = new HashMap<>(NumConstant.TWO);
+        if (name.length() > NumConstant.ZERO && name.length() <= NumConstant.TWO){
+            mapData.put("X", name.substring(NumConstant.ZERO, NumConstant.ONE));
+            mapData.put("M", name.substring(NumConstant.ONE));
+        } else if (name.length() > NumConstant.TWO) {
+            for (String s : SURNAME_NOW) {//遍历复姓数组
+                if (name.startsWith(s)) {
+                    mapData.put("X", s);
+                    mapData.put("M", name.substring(s.length()));
+                    return mapData;
+                }
+            }
+            //姓氏没有匹配时采用第一个字为姓
+            mapData.put("X", name.substring(NumConstant.ZERO, NumConstant.ONE));
+            mapData.put("M", name.substring(NumConstant.ONE));
+        }
+        return mapData;
+    }
+}

epmet-commons/epmet-commons-tools/src/main/java/com/epmet/commons/tools/utils/YtHsResUtils.java

@@ -0,0 +1,42 @@
+package com.epmet.commons.tools.utils;
+
+import com.alibaba.fastjson.JSON;
+import com.epmet.commons.tools.dto.result.YtHsjcResDTO;
+import com.epmet.commons.tools.exception.EpmetErrorCode;
+import com.epmet.commons.tools.exception.EpmetException;
+import lombok.extern.slf4j.Slf4j;
+
+import java.util.ArrayList;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/26 16:56
+ */
+@Slf4j
+public class YtHsResUtils {
+    static String url = "https://10.2.2.60:8191/sjzt/server/hsjcxx?appkey=DR4jF5Be7sCsqDmCamq2tmYCl";
+
+    /**
+     * desc:图片同步扫描
+     *
+     * @return
+     */
+    public static YtHsjcResDTO hsjc(String cardNo, Integer rowNum, Integer pageSize) {
+        try {
+            String param = String.format("&card_no=%s&ROWNUM=%s&PAGESIZE=%s", cardNo, rowNum, pageSize);
+            String apiUrl = url.concat(param);
+            Result<String> result = HttpClientManager.getInstance().sendPostByJSON(apiUrl, null);
+            if (result.success()) {
+                return JSON.parseObject(result.getData(), YtHsjcResDTO.class);
+            }
+            YtHsjcResDTO resultResult = new YtHsjcResDTO();
+            resultResult.setData(new ArrayList<>());
+            return resultResult;
+        } catch (Exception e) {
+            log.error(String.format("烟台核算检测结果查询异常cardNo:%s,异常信息:%s", cardNo, e.getMessage()));
+            throw new EpmetException(EpmetErrorCode.SERVER_ERROR.getCode(), "获取核算检测结果api异常"+e.getMessage());
+        }
+    }
+}
+

epmet-gateway/src/main/java/com/epmet/GatewayApplication.java

@@ -8,9 +8,15 @@
 
 package com.epmet;
 
+import com.alibaba.fastjson.JSON;
 import com.epmet.commons.tools.aspect.ServletExceptionHandler;
 import com.epmet.commons.tools.config.RedissonConfig;
 import com.epmet.commons.tools.config.ThreadDispatcherConfig;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.filter.CpProperty;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
@@ -18,6 +24,9 @@ import org.springframework.cloud.openfeign.EnableFeignClients;
 import org.springframework.context.annotation.ComponentScan;
 import org.springframework.context.annotation.FilterType;
 
+import javax.annotation.PostConstruct;
+import java.util.List;
+
 /**
  * 网关服务
  *
@@ -31,7 +40,24 @@ import org.springframework.context.annotation.FilterType;
 @ComponentScan(basePackages = {"com.epmet.*"}, excludeFilters = @ComponentScan.Filter(type = FilterType.ASSIGNABLE_TYPE, classes = {RedissonConfig.class, ThreadDispatcherConfig.class, ServletExceptionHandler.class}))
 public class GatewayApplication {
 
+	@Autowired
+	private CpProperty cpProperty;
+
+	@Autowired
+	private RedisUtils redisUtils;
+
 	public static void main(String[] args) {
 		SpringApplication.run(GatewayApplication.class, args);
 	}
+
+	/**
+	 * 初始化运营端校验资源列表
+	 */
+//	@PostConstruct
+//	public void initOperExamineResources() {
+//		if (!redisUtils.hasKey(RedisKeys.getOperExamineResourceUrls())) {
+//			List<CpProperty.OperExamineResource> operExamineResourceUrls = cpProperty.getOperExamineResourceUrls();
+//			redisUtils.setString(RedisKeys.getOperExamineResourceUrls(), JSON.toJSONString(operExamineResourceUrls));
+//		}
+//	}
 }

epmet-gateway/src/main/java/com/epmet/auth/InternalAuthProcessor.java

@@ -1,11 +1,22 @@
 package com.epmet.auth;
 
+import com.alibaba.fastjson.JSON;
+import com.alibaba.fastjson.TypeReference;
 import com.epmet.commons.tools.constant.AppClientConstant;
 import com.epmet.commons.tools.constant.Constant;
+import com.epmet.commons.tools.constant.ServiceConstant;
+import com.epmet.commons.tools.dto.form.HasOperPermissionFormDTO;
+import com.epmet.commons.tools.dto.result.OperResouce;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
+import com.epmet.commons.tools.exception.EpmetException;
 import com.epmet.commons.tools.exception.RenException;
+import com.epmet.commons.tools.feign.CommonOperAccessOpenFeignClient;
+import com.epmet.commons.tools.feign.ResultDataResolver;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
 import com.epmet.commons.tools.security.dto.BaseTokenDto;
 import com.epmet.commons.tools.utils.CpUserDetailRedis;
+import com.epmet.commons.tools.utils.Result;
 import com.epmet.filter.CpProperty;
 import com.epmet.jwt.JwtTokenUtils;
 import io.jsonwebtoken.Claims;
@@ -15,18 +26,20 @@ import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.cloud.gateway.filter.GatewayFilterChain;
 import org.springframework.http.HttpHeaders;
+import org.springframework.http.HttpMethod;
 import org.springframework.http.server.reactive.ServerHttpRequest;
 import org.springframework.stereotype.Component;
 import org.springframework.util.AntPathMatcher;
 import org.springframework.web.server.ServerWebExchange;
 
 import java.util.Date;
+import java.util.List;
 
 /**
  * 内部认证处理器
  */
 @Component
-public class InternalAuthProcessor extends AuthProcessor {
+public class InternalAuthProcessor extends AuthProcessor implements ResultDataResolver {
 
     private Logger logger = LoggerFactory.getLogger(getClass());
 
@@ -41,6 +54,12 @@ public class InternalAuthProcessor extends AuthProcessor {
     @Autowired
     private CpProperty cpProperty;
 
+    @Autowired
+    private CommonOperAccessOpenFeignClient operAccessOpenFeignClient;
+
+    @Autowired
+    private RedisUtils redisUtils;
+
     @Override
     public ServerWebExchange auth(ServerWebExchange exchange, GatewayFilterChain chain) {
         ServerHttpRequest request = exchange.getRequest();
@@ -104,10 +123,59 @@ public class InternalAuthProcessor extends AuthProcessor {
             builder.header(AppClientConstant.CUSTOMER_ID, customerId);
         }
 
+        // 针对运营端的url拦截和校验
+        if (AppClientConstant.APP_OPER.equals(app)) {
+            HttpMethod method = request.getMethod();
+            Boolean hasAccess = checkRequestOperResource(userId, requestUri, method.toString());
+            if (!hasAccess) {
+                throw new EpmetException(EpmetErrorCode.EPMET_COMMON_OPERATION_FAIL.getCode(), "资源未授权", "资源未授权");
+            }
+        }
+
         ServerHttpRequest shr = builder.build();
         return exchange.mutate().request(shr).build();
     }
 
+    /**
+     * 校验运营端用户是否有权访问该资源
+     * @param uri
+     * @param method
+     * @return
+     */
+    private Boolean checkRequestOperResource(String userId, String uri, String method) {
+        String resourceJsonString = redisUtils.getString(RedisKeys.getOperExamineResourceUrls());
+        List<OperResouce> resources = JSON.parseObject(resourceJsonString, new TypeReference<List<OperResouce>>() {});
+
+        if (resources == null) {
+            // redis中没有缓存，需要api获取
+            resources = getResultDataOrThrowsException(operAccessOpenFeignClient.getExamineResourceUrls(), ServiceConstant.OPER_ACCESS_SERVER,
+                    EpmetErrorCode.SERVER_ERROR.getCode(), "调用operaccess获取要校验的资源失败", "调用operaccess获取要校验的资源失败");
+
+            // 缓存
+            redisUtils.setString(RedisKeys.getOperExamineResourceUrls(), JSON.toJSONString(resources));
+        }
+
+        for (OperResouce resource : resources) {
+            if (antPathMatcher.match(resource.getResourceUrl(), uri)
+                    && resource.getResourceMethod().equals(method)) {
+
+                //需要校验权限的url
+                HasOperPermissionFormDTO form = new HasOperPermissionFormDTO();
+                form.setUri(uri);
+                form.setMethod(method);
+                form.setOperId(userId);
+                Result result = operAccessOpenFeignClient.hasOperPermission(form);
+                if (result == null || !result.success()) {
+                    return false;
+                }
+                return true;
+            }
+        }
+
+        // 如果当前请求url不需要校验权限，那么返回true
+        return true;
+    }
+
     /**
      * 是否需要认证
      * @param requestUri

epmet-gateway/src/main/java/com/epmet/filter/CpProperty.java

@@ -42,4 +42,15 @@ public class CpProperty {
      */
     private List<String> swaggerUrls;
 
+    /**
+     * 运营端，需要校验的url资源列表
+     */
+    private List<OperExamineResource> operExamineResourceUrls;
+
+    @Data
+    public static class OperExamineResource {
+        private String resourceUrl;
+        private String resourceMethod;
+    }
+
 }

epmet-gateway/src/main/java/com/epmet/filter/EpmetGatewayFilter.java

@@ -5,6 +5,7 @@ import com.epmet.auth.ExternalAuthProcessor;
 import com.epmet.auth.InternalAuthProcessor;
 import com.epmet.commons.tools.constant.AppClientConstant;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
+import com.epmet.commons.tools.exception.EpmetException;
 import com.epmet.commons.tools.exception.ExceptionUtils;
 import com.epmet.commons.tools.exception.RenException;
 import com.epmet.commons.tools.utils.IpUtils;
@@ -64,6 +65,10 @@ public class EpmetGatewayFilter implements GatewayFilter {
             }
 
             return doFilter(exchange, chain);
+        } catch (EpmetException re) {
+            // 人为抛出，则携带错误码和错误信息响应给前端
+            log.error("EpmetGatewayFilter认证出错RenException，错误信息:{}", ExceptionUtils.getErrorStackTrace(re));
+            return response(exchange, new Result<>().error(re.getCode(), re.getMessage()));
         } catch (RenException re) {
             // 人为抛出，则携带错误码和错误信息响应给前端
             log.error("EpmetGatewayFilter认证出错RenException，错误信息:{}", ExceptionUtils.getErrorStackTrace(re));

epmet-gateway/src/main/resources/bootstrap-urls.yml

@@ -0,0 +1,5 @@
+epmet:
+  oper-examine-resource-urls:
+    #      角色编辑
+    - resourceUrl: /oper/access/operrole
+      resourceMethod: PUT

epmet-gateway/src/main/resources/bootstrap.yml

@@ -12,6 +12,7 @@ spring:
     name: epmet-gateway-server
   #环境 dev|test|prod
   profiles:
+    include: urls
     active:  @spring.profiles.active@
   messages:
     encoding: UTF-8
@@ -512,6 +513,7 @@ epmet:
     - /resi/voice/**
     - /point/**
     - /heart/**
+    - /oss/**
 
   # 内部认证url白名单(在白名单中的，就不会再校验登录了)
   internalAuthUrlsWhiteList:

epmet-module/epmet-common-service/common-service-client/src/main/java/com/epmet/constants/ImportTaskConstants.java

@@ -73,4 +73,9 @@ public interface ImportTaskConstants {
      * 社会组织
      */
     String IC_SOCIETY_ORG="ic_society_org";
+
+    /**
+     * 未做核酸比对
+     */
+    String IC_NAT_COMPARE_RECORD="ic_nat_compare_record";
 }

epmet-module/epmet-job/epmet-job-server/src/main/java/com/epmet/task/NatInfoScanTask.java

@@ -0,0 +1,40 @@
+package com.epmet.task;
+
+
+import com.alibaba.fastjson.JSON;
+import com.epmet.commons.tools.utils.Result;
+import com.epmet.dto.form.NatInfoScanTaskFormDTO;
+import com.epmet.feign.EpmetUserOpenFeignClient;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+/**
+ * @author zxc
+ * @dscription
+ * 大数据局部门配置on
+ * 根据范围搜索居民，调接口查询最近一次核酸检测记录
+ * 检测时间 + 身份证 不存在就插入
+ */
+@Slf4j
+@Component("natInfoScanTask")
+public class NatInfoScanTask implements ITask {
+
+    @Autowired
+    private EpmetUserOpenFeignClient userOpenFeignClient;
+
+    @Override
+    public void run(String params) {
+        NatInfoScanTaskFormDTO formDTO = new NatInfoScanTaskFormDTO();
+        if (StringUtils.isNotBlank(params)) {
+            formDTO = JSON.parseObject(params, NatInfoScanTaskFormDTO.class);
+        }
+        Result result = userOpenFeignClient.natInfoScanTask(formDTO);
+        if (result.success()) {
+            log.info("NatInfoScanTask定时任务执行成功");
+        } else {
+            log.error("NatInfoScanTask定时任务执行失败:" + result.getMsg());
+        }
+    }
+}

epmet-module/epmet-oss/epmet-oss-client/src/main/java/com/epmet/dto/result/UploadImgResultDTO.java

@@ -13,6 +13,10 @@ import java.io.Serializable;
 @Data
 public class UploadImgResultDTO implements Serializable {
 	private String url;
+	/**
+	 * 原始文件名
+	 */
+	private String fileName;
 	/**
 	 * 域名
 	 */

epmet-module/epmet-oss/epmet-oss-server/src/main/java/com/epmet/controller/OssController.java

@@ -10,6 +10,7 @@ package com.epmet.controller;
 
 import com.epmet.cloud.CloudStorageConfig;
 import com.epmet.cloud.OssFactory;
+import com.epmet.commons.tools.annotation.LoginUser;
 import com.epmet.commons.tools.constant.NumConstant;
 import com.epmet.commons.tools.constant.StrConstant;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
@@ -17,6 +18,7 @@ import com.epmet.commons.tools.exception.RenException;
 import com.epmet.commons.tools.page.PageData;
 import com.epmet.commons.tools.redis.RedisKeys;
 import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.commons.tools.security.dto.TokenDto;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.ValidatorUtils;
 import com.epmet.commons.tools.validator.group.AliyunGroup;
@@ -404,8 +406,10 @@ public class OssController {
 	 * @date 2021.08.03 16:23
 	*/
 	@PostMapping("upload-resi-event-file")
-	public Result<UploadImgResultDTO> uploadResiEventFile(@RequestPart(value = "file") MultipartFile file, @RequestParam("customerId") String customerId) {
-
+	public Result<UploadImgResultDTO> uploadResiEventFile(@LoginUser TokenDto tokenDto, @RequestPart(value = "file") MultipartFile file, @RequestParam(value = "customerId",required = false) String customerId) {
+		if (StringUtils.isBlank(customerId)){
+			customerId = tokenDto.getCustomerId();
+		}
 		// 体积限制
 		int sizeMb = 10;
 		int sizeThreshold = sizeMb * 1024 * 1024; // 大小限制10m

epmet-module/epmet-oss/epmet-oss-server/src/main/java/com/epmet/service/impl/OssServiceImpl.java

@@ -279,6 +279,7 @@ public class OssServiceImpl extends BaseServiceImpl<OssDao, OssEntity> implement
 		UploadImgResultDTO dto = new UploadImgResultDTO();
 		dto.setUrl(url);
 		dto.setDomain(ossDomain);
+		dto.setFileName(file.getOriginalFilename());
 		return new Result<UploadImgResultDTO>().ok(dto);
 	}
 

epmet-module/epmet-third/epmet-third-client/src/main/java/com/epmet/dto/DingMiniInfoDTO.java

@@ -0,0 +1,89 @@
+package com.epmet.dto;
+
+import lombok.Data;
+
+import java.io.Serializable;
+import java.util.Date;
+
+
+/**
+ * 钉钉小程序信息
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+@Data
+public class DingMiniInfoDTO implements Serializable {
+
+    private static final long serialVersionUID = 1L;
+
+    /**
+     * ID
+     */
+	private String id;
+
+    /**
+     * 
+     */
+	private String suiteId;
+
+    /**
+     * 
+     */
+	private String appId;
+
+    /**
+     * 
+     */
+	private String miniAppId;
+
+    /**
+     * 
+     */
+	private String suiteName;
+
+    /**
+     * 
+     */
+	private String suiteKey;
+
+    /**
+     * 
+     */
+	private String suiteSecret;
+
+	private String token;
+
+	private String aesKey;
+
+    /**
+     * 
+     */
+	private Integer delFlag;
+
+    /**
+     * 乐观锁
+     */
+	private Integer revision;
+
+    /**
+     * 创建人
+     */
+	private String createdBy;
+
+    /**
+     * 创建时间
+     */
+	private Date createdTime;
+
+    /**
+     * 更新人
+     */
+	private String updatedBy;
+
+    /**
+     * 更新时间
+     */
+	private Date updatedTime;
+
+}

epmet-module/epmet-third/epmet-third-client/src/main/java/com/epmet/dto/OpenSyncBizDataDTO.java

@@ -0,0 +1,99 @@
+package com.epmet.dto;
+
+import lombok.Data;
+
+import java.io.Serializable;
+import java.util.Date;
+
+
+/**
+ * 
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+@Data
+public class OpenSyncBizDataDTO implements Serializable {
+
+    private static final long serialVersionUID = 1L;
+
+    /**
+     * 
+     */
+	private String id;
+
+    /**
+     * 第三方企业应用的suiteid加下划线0
+     */
+	private String subscribeId;
+
+    private String suiteKey;
+
+    /**
+     * 第三方企业应用的corpid
+     */
+	private String corpId;
+
+    /**
+     * 第三方企业应用的suiteid
+     */
+	private String bizId;
+
+    /**
+     * 数据为Json格式
+     */
+	private String bizData;
+
+    /**
+     * 2：第三方企业应用票据；
+4：企业授权变更，包含授权、解除授权、授权变更；
+7：第三方企业应用变更，包含停用、启用、删除(删除保留授权)；
+13：企业用户变更，包含用户添加、修改、删除；
+14：企业部门变更，包含部门添加、修改、删除；
+15：企业角色变更，包含角色添加、修改、删除；
+16：企业变更，包含企业修改、删除；
+17：市场订单；
+20：企业外部联系人变更，包含添加、修改、删除；
+22：ISV自定义审批；
+25：家校通讯录1.0(Deprecated)信息变更。家校通讯录升级，请查看家校通讯录2.0数据推送；
+32：智能硬件绑定类型；
+37：因订单到期或者用户退款等导致的服务关闭，目前仅推送因退款等导致的服务关闭；
+50：家校通讯录2.0，部门信息变更；
+51：家校通讯录2.0，人员信息变更；
+63：应用试用记录回调信息；
+66：工作台组件变更回调事件；
+67：钉钉假期相关回调事件；
+133：CRM客户动态相关数据回调事件；
+137：人事平台员工异动V2相关数据回调事件；
+139：异步转译通讯录id任务完成通知；
+165：人事平台员工档案变动事件相关数据的回调事件；
+175：人事解决方案变更事件；
+     */
+	private String bizType;
+
+    /**
+     * 
+     */
+	private Integer delFlag;
+
+    /**
+     * 
+     */
+	private Date createdTime;
+
+    /**
+     * 
+     */
+	private String createdBy;
+
+    /**
+     * 
+     */
+	private Date updatedTime;
+
+    /**
+     * 
+     */
+	private String updatedBy;
+
+}

epmet-module/epmet-third/epmet-third-client/src/main/java/com/epmet/dto/form/ExemptLoginUserDetailFormDTO.java

@@ -0,0 +1,28 @@
+package com.epmet.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+import java.io.Serializable;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/14 14:52
+ * @DESC
+ */
+@Data
+public class ExemptLoginUserDetailFormDTO implements Serializable {
+
+    private static final long serialVersionUID = -4333806195203619201L;
+
+    public interface ExemptLoginUserDetailForm{}
+
+    @NotBlank(message = "code不能为空",groups = ExemptLoginUserDetailForm.class)
+    private String code;
+
+    @NotBlank(message = "corpId不能为空",groups = ExemptLoginUserDetailForm.class)
+    private String corpId;
+
+    @NotBlank(message = "miniAppId不能为空",groups = ExemptLoginUserDetailForm.class)
+    private String miniAppId;
+}

epmet-module/epmet-third/epmet-third-server/pom.xml

@@ -157,7 +157,16 @@
             <artifactId>rocketmq-acl</artifactId>
             <version>4.9.2</version>
         </dependency>
-
+        <dependency>
+            <artifactId>dingtalk-spring-boot-starter</artifactId>
+            <groupId>com.taobao</groupId>
+            <version>1.0.0</version>
+        </dependency>
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <version>1.15</version>
+        </dependency>
     </dependencies>
 
     <build>
@@ -229,7 +238,7 @@
                 </dingTalk.robot.webHook>
                 <dingTalk.robot.secret>SECfcc020bdc83bb17a2c00f39977b1fbc409ef4188c7beaea11c5caa90eeaf87fd
                 </dingTalk.robot.secret>
-                
+
                 <!-- epmet-cloud内部用的rocketmq配置 -->
                 <!--<rocketmq.epmet-cloud-inner.enable>true</rocketmq.epmet-cloud-inner.enable>
                 <rocketmq.epmet-cloud-inner.name-server>192.168.1.140:9876;192.168.1.141:9876</rocketmq.epmet-cloud-inner.name-server>-->

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/EpmetThirdApplication.java

@@ -1,6 +1,7 @@
 package com.epmet;
 
 import com.epmet.mq.properties.RocketMQProperties;
+import com.taobao.dingtalk.spring.annotations.EnableDingTalk;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.context.properties.EnableConfigurationProperties;
@@ -8,6 +9,7 @@ import org.springframework.boot.web.servlet.ServletComponentScan;
 import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
 import org.springframework.cloud.openfeign.EnableFeignClients;
 
+@EnableDingTalk
 @EnableConfigurationProperties(RocketMQProperties.class)
 @SpringBootApplication
 @EnableDiscoveryClient

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/controller/dingtalk/CallbackController.java

@@ -0,0 +1,155 @@
+package com.epmet.controller.dingtalk;
+
+import com.alibaba.fastjson.JSON;
+import com.alibaba.fastjson.JSONObject;
+import com.aliyun.dingtalk.util.DingCallbackCrypto;
+import com.epmet.commons.tools.constant.NumConstant;
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.commons.tools.utils.Result;
+import com.epmet.commons.tools.validator.ValidatorUtils;
+import com.epmet.dao.OpenSyncBizDataDao;
+import com.epmet.dto.DingMiniInfoDTO;
+import com.epmet.dto.form.ExemptLoginUserDetailFormDTO;
+import com.epmet.entity.OpenSyncBizDataEntity;
+import com.epmet.redis.DingDingCallbackRedis;
+import com.epmet.service.DingTalkService;
+import com.epmet.service.OpenSyncBizDataService;
+import org.apache.commons.collections4.CollectionUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * ISV 小程序回调信息处理
+ */
+@RestController
+@RequestMapping("/dingTalk")
+public class CallbackController {
+
+    private final Logger log = LoggerFactory.getLogger(getClass());
+
+    /**
+     * 创建应用，验证回调URL创建有效事件（第一次保存回调URL之前）
+     */
+    private static final String EVENT_CHECK_CREATE_SUITE_URL = "check_create_suite_url";
+
+    /**
+     * 创建应用，验证回调URL变更有效事件（第一次保存回调URL之后）
+     */
+    private static final String EVENT_CHECK_UPADTE_SUITE_URL = "check_update_suite_url";
+
+    /**
+     * suite_ticket推送事件
+     */
+    private static final String EVENT_SUITE_TICKET = "suite_ticket";
+
+    /**
+     * 企业授权开通应用事件
+     */
+    private static final String EVENT_TMP_AUTH_CODE = "tmp_auth_code";
+
+    private static final String EVENT_SYNC_HTTP_PUSH_HIGH = "SYNC_HTTP_PUSH_HIGH";
+
+    @Autowired
+    private OpenSyncBizDataService openSyncBizDataService;
+    @Autowired
+    private OpenSyncBizDataDao openSyncBizDataDao;
+    @Autowired
+    private DingDingCallbackRedis dingCallbackRedis;
+    @Autowired
+    private DingTalkService dingTalkService;
+
+    @PostMapping(value = "dingCallback")
+    public Object dingCallback(
+            @RequestParam(value = "signature") String signature,
+            @RequestParam(value = "timestamp") Long timestamp,
+            @RequestParam(value = "nonce") String nonce,
+            @RequestParam(value = "suiteKey") String suiteKey,
+            @RequestBody(required = false) JSONObject body
+    ) {
+        String params = "signature:" + signature + " timestamp:" + timestamp + " nonce:" + nonce + " body:" + body + "suiteKey::"+suiteKey;
+        try {
+            log.info("begin callback:" + params);
+            DingMiniInfoDTO dingMiniInfo = openSyncBizDataDao.getDingMiniInfo(suiteKey);
+            DingCallbackCrypto dingTalkEncryptor = new DingCallbackCrypto(dingMiniInfo.getToken(), dingMiniInfo.getAesKey(), suiteKey);
+
+            // 从post请求的body中获取回调信息的加密数据进行解密处理
+            String encrypt = body.getString("encrypt");
+            String plainText = dingTalkEncryptor.getDecryptMsg(signature, timestamp.toString(), nonce, encrypt);
+            JSONObject callBackContent = JSON.parseObject(plainText);
+
+            log.info("推来的消息体："+plainText);
+
+            // 根据回调事件类型做不同的业务处理
+            String eventType = callBackContent.getString("EventType");
+            if (EVENT_CHECK_CREATE_SUITE_URL.equals(eventType)) {
+                log.info("验证新创建的回调URL有效性: " + plainText);
+            } else if (EVENT_CHECK_UPADTE_SUITE_URL.equals(eventType)) {
+                log.info("验证更新回调URL有效性: " + plainText);
+            } else if (EVENT_SUITE_TICKET.equals(eventType)) {
+                // suite_ticket用于用签名形式生成accessToken(访问钉钉服务端的凭证)，需要保存到应用的db。
+                // 钉钉会定期向本callback url推送suite_ticket新值用以提升安全性。
+                // 应用在获取到新的时值时，保存db成功后，返回给钉钉success加密串（如本demo的return）
+                log.info("应用suite_ticket数据推送: " + plainText);
+            } else if (EVENT_TMP_AUTH_CODE.equals(eventType)) {
+                // 本事件应用应该异步进行授权开通企业的初始化，目的是尽最大努力快速返回给钉钉服务端。用以提升企业管理员开通应用体验
+                // 即使本接口没有收到数据或者收到事件后处理初始化失败都可以后续再用户试用应用时从前端获取到corpId并拉取授权企业信息，进而初始化开通及企业。
+                log.info("企业授权开通应用事件: " + plainText);
+            } else if (EVENT_SYNC_HTTP_PUSH_HIGH.equals(eventType)){
+                List<Map<String, Object>> bizData = (List<Map<String, Object>>) callBackContent.get("bizData");
+                if (CollectionUtils.isNotEmpty(bizData)){
+                    List<OpenSyncBizDataEntity> list = new ArrayList<>();
+                    bizData.forEach(b -> {
+                        OpenSyncBizDataEntity e = new OpenSyncBizDataEntity();
+                        e.setSuiteKey(suiteKey);
+                        e.setSubscribeId(b.get("subscribe_id").toString());
+                        e.setCorpId(b.get("corp_id").toString());
+                        e.setBizId(b.get("biz_id").toString());
+                        e.setBizData(b.get("biz_data").toString());
+                        e.setBizType(b.get("biz_type").toString());
+                        list.add(e);
+                        openSyncBizDataService.delete(e);
+                        if (e.getBizType().equals(NumConstant.TWO_STR)){
+                            Map<String,String> ticketMap = JSON.parseObject(e.getBizData(), Map.class);
+                            dingCallbackRedis.set(suiteKey,ticketMap.get("suiteTicket"));
+                        }
+                    });
+                    openSyncBizDataService.insertBatch(list);
+                }
+            } else{
+                // 其他类型事件处理
+            }
+
+            // 返回success的加密信息表示回调处理成功
+            return dingTalkEncryptor.getEncryptedMap("success", timestamp, nonce);
+        } catch (Exception e) {
+            //失败的情况，应用的开发者应该通过告警感知，并干预修复
+            log.error("process callback fail." + params, e);
+            return "fail";
+        }
+    }
+
+    @PostMapping("getExemptLoginUserDetail")
+    public Result<Object> getExemptLoginUserDetail(@RequestBody ExemptLoginUserDetailFormDTO formDTO){
+        ValidatorUtils.validateEntity(formDTO, ExemptLoginUserDetailFormDTO.ExemptLoginUserDetailForm.class);
+        return new Result<Object>().ok(dingTalkService.getExemptLoginUserDetail(formDTO));
+    }
+
+    /**
+     * Desc: 获取钉钉小程序信息
+     * @param formDTO
+     * @author zxc
+     * @date 2022/9/15 10:46
+     */
+    @PostMapping("getDingMiniInfo")
+    public Result<DingMiniInfoCache> getDingMiniInfo(@RequestBody DingMiniInfoFormDTO formDTO){
+        ValidatorUtils.validateEntity(formDTO, DingMiniInfoFormDTO.DingMiniInfoForm.class);
+        return new Result<DingMiniInfoCache>().ok(dingTalkService.getDingMiniInfo(formDTO));
+    }
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/dao/OpenSyncBizDataDao.java

@@ -0,0 +1,29 @@
+package com.epmet.dao;
+
+import com.epmet.commons.mybatis.dao.BaseDao;
+import com.epmet.dto.DingMiniInfoDTO;
+import com.epmet.dto.OpenSyncBizDataDTO;
+import com.epmet.entity.OpenSyncBizDataEntity;
+import org.apache.ibatis.annotations.Mapper;
+import org.apache.ibatis.annotations.Param;
+
+import java.util.List;
+
+/**
+ * 
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+@Mapper
+public interface OpenSyncBizDataDao extends BaseDao<OpenSyncBizDataEntity> {
+
+    DingMiniInfoDTO getDingMiniInfo(@Param("suiteKey")String suiteKey);
+
+    DingMiniInfoDTO getDingMiniInfoByAppId(@Param("miniAppId")String miniAppId);
+
+    Integer delOpenSyncData(OpenSyncBizDataEntity e);
+
+    List<OpenSyncBizDataDTO> getOpenSyncData(@Param("suiteKey")String suiteKey, @Param("bizType")String bizType,@Param("corpId")String corpId);
+
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/entity/OpenSyncBizDataEntity.java

@@ -0,0 +1,70 @@
+package com.epmet.entity;
+
+import com.baomidou.mybatisplus.annotation.TableName;
+import com.epmet.commons.mybatis.entity.BaseEpmetEntity;
+import lombok.Data;
+import lombok.EqualsAndHashCode;
+
+/**
+ * 
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+@Data
+@EqualsAndHashCode(callSuper=false)
+@TableName("open_sync_biz_data")
+public class OpenSyncBizDataEntity extends BaseEpmetEntity {
+
+	private static final long serialVersionUID = 1L;
+
+    /**
+     * 第三方企业应用的suiteid加下划线0
+     */
+	private String subscribeId;
+
+	private String suiteKey;
+
+    /**
+     * 第三方企业应用的corpid
+     */
+	private String corpId;
+
+    /**
+     * 第三方企业应用的suiteid
+     */
+	private String bizId;
+
+    /**
+     * 数据为Json格式
+     */
+	private String bizData;
+
+    /**
+     * 2：第三方企业应用票据；
+4：企业授权变更，包含授权、解除授权、授权变更；
+7：第三方企业应用变更，包含停用、启用、删除(删除保留授权)；
+13：企业用户变更，包含用户添加、修改、删除；
+14：企业部门变更，包含部门添加、修改、删除；
+15：企业角色变更，包含角色添加、修改、删除；
+16：企业变更，包含企业修改、删除；
+17：市场订单；
+20：企业外部联系人变更，包含添加、修改、删除；
+22：ISV自定义审批；
+25：家校通讯录1.0(Deprecated)信息变更。家校通讯录升级，请查看家校通讯录2.0数据推送；
+32：智能硬件绑定类型；
+37：因订单到期或者用户退款等导致的服务关闭，目前仅推送因退款等导致的服务关闭；
+50：家校通讯录2.0，部门信息变更；
+51：家校通讯录2.0，人员信息变更；
+63：应用试用记录回调信息；
+66：工作台组件变更回调事件；
+67：钉钉假期相关回调事件；
+133：CRM客户动态相关数据回调事件；
+137：人事平台员工异动V2相关数据回调事件；
+139：异步转译通讯录id任务完成通知；
+165：人事平台员工档案变动事件相关数据的回调事件；
+175：人事解决方案变更事件；
+     */
+	private String bizType;
+
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/redis/DingDingCallbackRedis.java

@@ -0,0 +1,46 @@
+package com.epmet.redis;
+
+import com.alibaba.fastjson.JSON;
+import com.epmet.commons.tools.constant.NumConstant;
+import com.epmet.commons.tools.exception.EpmetException;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.dao.OpenSyncBizDataDao;
+import com.epmet.dto.OpenSyncBizDataDTO;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/14 10:32
+ * @DESC
+ */
+@Component
+public class DingDingCallbackRedis {
+    @Autowired
+    private RedisUtils redisUtils;
+    @Autowired
+    private OpenSyncBizDataDao openSyncBizDataDao;
+
+    public void set(String suiteKey,String suiteTicket){
+        String key = RedisKeys.getSuiteTicketKey(suiteKey);
+        redisUtils.set(key,suiteTicket,-1);
+    }
+
+    public String get(String suiteKey){
+        String ticket = redisUtils.getString(RedisKeys.getSuiteTicketKey(suiteKey));
+        if (StringUtils.isNotBlank(ticket)){
+            return ticket;
+        }
+        List<OpenSyncBizDataDTO> openSyncData = openSyncBizDataDao.getOpenSyncData(suiteKey, NumConstant.TWO_STR, null);
+        if (null == openSyncData){
+            throw new EpmetException("未查询到"+suiteKey+"的ticket");
+        }
+        Map map = JSON.parseObject(openSyncData.get(NumConstant.ZERO).getBizData(), Map.class);
+        return map.get("suiteTicket").toString();
+    }
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/service/DingTalkService.java

@@ -0,0 +1,24 @@
+package com.epmet.service;
+
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.dto.form.ExemptLoginUserDetailFormDTO;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/14 14:56
+ * @DESC
+ */
+public interface DingTalkService {
+
+    Object getExemptLoginUserDetail(ExemptLoginUserDetailFormDTO formDTO);
+
+    /**
+     * Desc: 获取钉钉小程序信息
+     * @param formDTO
+     * @author zxc
+     * @date 2022/9/15 10:46
+     */
+    DingMiniInfoCache getDingMiniInfo(DingMiniInfoFormDTO formDTO);
+
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/service/OpenSyncBizDataService.java

@@ -0,0 +1,80 @@
+package com.epmet.service;
+
+import com.epmet.commons.mybatis.service.BaseService;
+import com.epmet.commons.tools.page.PageData;
+import com.epmet.dto.OpenSyncBizDataDTO;
+import com.epmet.entity.OpenSyncBizDataEntity;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * 
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+public interface OpenSyncBizDataService extends BaseService<OpenSyncBizDataEntity> {
+
+    /**
+     * 默认分页
+     *
+     * @param params
+     * @return PageData<OpenSyncBizDataDTO>
+     * @author generator
+     * @date 2022-09-14
+     */
+    PageData<OpenSyncBizDataDTO> page(Map<String, Object> params);
+
+    /**
+     * 默认查询
+     *
+     * @param params
+     * @return java.util.List<OpenSyncBizDataDTO>
+     * @author generator
+     * @date 2022-09-14
+     */
+    List<OpenSyncBizDataDTO> list(Map<String, Object> params);
+
+    /**
+     * 单条查询
+     *
+     * @param id
+     * @return OpenSyncBizDataDTO
+     * @author generator
+     * @date 2022-09-14
+     */
+    OpenSyncBizDataDTO get(String id);
+
+    /**
+     * 默认保存
+     *
+     * @param dto
+     * @return void
+     * @author generator
+     * @date 2022-09-14
+     */
+    void save(OpenSyncBizDataDTO dto);
+
+    /**
+     * 默认更新
+     *
+     * @param dto
+     * @return void
+     * @author generator
+     * @date 2022-09-14
+     */
+    void update(OpenSyncBizDataDTO dto);
+
+    /**
+     * 批量删除
+     *
+     * @param ids
+     * @return void
+     * @author generator
+     * @date 2022-09-14
+     */
+    void delete(String[] ids);
+
+    void delete(OpenSyncBizDataEntity condition);
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/service/impl/DingTalkServiceImpl.java

@@ -0,0 +1,68 @@
+package com.epmet.service.impl;
+
+import cn.hutool.core.bean.BeanUtil;
+import com.aliyun.dingtalk.module.DingTalkResult;
+import com.epmet.commons.tools.dto.form.DingMiniInfoFormDTO;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
+import com.epmet.commons.tools.redis.common.bean.DingMiniInfoCache;
+import com.epmet.commons.tools.utils.ConvertUtils;
+import com.epmet.dao.OpenSyncBizDataDao;
+import com.epmet.dto.DingMiniInfoDTO;
+import com.epmet.dto.form.ExemptLoginUserDetailFormDTO;
+import com.epmet.redis.DingDingCallbackRedis;
+import com.epmet.service.DingTalkService;
+import com.taobao.dingtalk.client.DingTalkClientToken;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Service;
+import org.springframework.util.CollectionUtils;
+
+import java.util.Map;
+
+/**
+ * @Author zxc
+ * @DateTime 2022/9/14 14:57
+ * @DESC
+ */
+@Service
+@Slf4j
+public class DingTalkServiceImpl implements DingTalkService {
+
+    @Autowired
+    private DingTalkClientToken dingTalkClientToken;
+    @Autowired
+    private OpenSyncBizDataDao openSyncBizDataDao;
+    @Autowired
+    private DingDingCallbackRedis dingCallbackRedis;
+    @Autowired
+    private RedisUtils redisUtils;
+
+    @Override
+    public Object getExemptLoginUserDetail(ExemptLoginUserDetailFormDTO formDTO) {
+        DingMiniInfoDTO dingMiniInfo = openSyncBizDataDao.getDingMiniInfoByAppId(formDTO.getMiniAppId());
+        DingTalkResult<String> exemptLoginUserDetail = dingTalkClientToken.getExemptLoginUserDetail(formDTO.getCorpId(), dingMiniInfo.getSuiteKey(), dingMiniInfo.getSuiteSecret(), dingCallbackRedis.get(dingMiniInfo.getSuiteKey()), formDTO.getCode());
+        return exemptLoginUserDetail.getData();
+    }
+
+    /**
+     * Desc: 获取钉钉小程序信息
+     * @param formDTO
+     * @author zxc
+     * @date 2022/9/15 10:46
+     */
+    @Override
+    public DingMiniInfoCache getDingMiniInfo(DingMiniInfoFormDTO formDTO) {
+        String key = RedisKeys.getDingMiniInfoKey(formDTO.getMiniAppId());
+        Map<String, Object> dingMiniInfoMap = redisUtils.hGetAll(key);
+        if (!CollectionUtils.isEmpty(dingMiniInfoMap)) {
+            return ConvertUtils.mapToEntity(dingMiniInfoMap,DingMiniInfoCache.class);
+        }
+        DingMiniInfoDTO dingMiniInfo = openSyncBizDataDao.getDingMiniInfoByAppId(formDTO.getMiniAppId());
+        if (null != dingMiniInfo){
+            redisUtils.hMSet(key, BeanUtil.beanToMap(dingMiniInfo));
+            return ConvertUtils.sourceToTarget(dingMiniInfo,DingMiniInfoCache.class);
+        }
+        return null;
+    }
+}

epmet-module/epmet-third/epmet-third-server/src/main/java/com/epmet/service/impl/OpenSyncBizDataServiceImpl.java

@@ -0,0 +1,88 @@
+package com.epmet.service.impl;
+
+import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
+import com.baomidou.mybatisplus.core.metadata.IPage;
+import com.epmet.commons.mybatis.service.impl.BaseServiceImpl;
+import com.epmet.commons.tools.constant.FieldConstant;
+import com.epmet.commons.tools.page.PageData;
+import com.epmet.commons.tools.utils.ConvertUtils;
+import com.epmet.dao.OpenSyncBizDataDao;
+import com.epmet.dto.OpenSyncBizDataDTO;
+import com.epmet.entity.OpenSyncBizDataEntity;
+import com.epmet.service.OpenSyncBizDataService;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * 
+ *
+ * @author generator generator@elink-cn.com
+ * @since v1.0.0 2022-09-14
+ */
+@Service
+public class OpenSyncBizDataServiceImpl extends BaseServiceImpl<OpenSyncBizDataDao, OpenSyncBizDataEntity> implements OpenSyncBizDataService {
+
+    @Override
+    public PageData<OpenSyncBizDataDTO> page(Map<String, Object> params) {
+        IPage<OpenSyncBizDataEntity> page = baseDao.selectPage(
+                getPage(params, FieldConstant.CREATED_TIME, false),
+                getWrapper(params)
+        );
+        return getPageData(page, OpenSyncBizDataDTO.class);
+    }
+
+    @Override
+    public List<OpenSyncBizDataDTO> list(Map<String, Object> params) {
+        List<OpenSyncBizDataEntity> entityList = baseDao.selectList(getWrapper(params));
+
+        return ConvertUtils.sourceToTarget(entityList, OpenSyncBizDataDTO.class);
+    }
+
+    private QueryWrapper<OpenSyncBizDataEntity> getWrapper(Map<String, Object> params){
+        String id = (String)params.get(FieldConstant.ID_HUMP);
+
+        QueryWrapper<OpenSyncBizDataEntity> wrapper = new QueryWrapper<>();
+        wrapper.eq(StringUtils.isNotBlank(id), FieldConstant.ID, id);
+
+        return wrapper;
+    }
+
+    @Override
+    public OpenSyncBizDataDTO get(String id) {
+        OpenSyncBizDataEntity entity = baseDao.selectById(id);
+        return ConvertUtils.sourceToTarget(entity, OpenSyncBizDataDTO.class);
+    }
+
+    @Override
+    @Transactional(rollbackFor = Exception.class)
+    public void save(OpenSyncBizDataDTO dto) {
+        OpenSyncBizDataEntity entity = ConvertUtils.sourceToTarget(dto, OpenSyncBizDataEntity.class);
+        insert(entity);
+    }
+
+    @Override
+    @Transactional(rollbackFor = Exception.class)
+    public void update(OpenSyncBizDataDTO dto) {
+        OpenSyncBizDataEntity entity = ConvertUtils.sourceToTarget(dto, OpenSyncBizDataEntity.class);
+        updateById(entity);
+    }
+
+    @Override
+    @Transactional(rollbackFor = Exception.class)
+    public void delete(String[] ids) {
+        // 逻辑删除（@TableLogic 注解）
+        baseDao.deleteBatchIds(Arrays.asList(ids));
+    }
+
+    @Override
+    @Transactional(rollbackFor = Exception.class)
+    public void delete(OpenSyncBizDataEntity condition) {
+        baseDao.delOpenSyncData(condition);
+    }
+
+}

epmet-module/epmet-third/epmet-third-server/src/main/resources/bootstrap.yml

@@ -156,6 +156,9 @@ third:
       - https://epmet-ext10.elinkservice.cn
 
 dingTalk:
+  appKey: dingo53zvltapzrstzbo
+  appsecret: o1hjFvWKwLG1GIuivX0nbynqFvFDZiI3CoqLyhdZXhghXMEsr34LKCud0Rz2Hd16
+  agentid: 1880131092
   robot:
     webHook: @dingTalk.robot.webHook@
     secret: @dingTalk.robot.secret@

epmet-module/epmet-third/epmet-third-server/src/main/resources/db/migration/V0.0.14__add_ding_table.sql

@@ -0,0 +1,51 @@
+CREATE TABLE `ding_mini_info` (
+                                  `ID` varchar(64) NOT NULL COMMENT 'ID',
+                                  `SUITE_ID` varchar(255) NOT NULL,
+                                  `APP_ID` varchar(255) NOT NULL,
+                                  `MINI_APP_ID` varchar(255) NOT NULL,
+                                  `SUITE_NAME` varchar(255) NOT NULL,
+                                  `SUITE_KEY` varchar(255) NOT NULL,
+                                  `SUITE_SECRET` varchar(255) NOT NULL,
+                                  `TOKEN` varchar(255) NOT NULL,
+                                  `AES_KEY` varchar(255) DEFAULT NULL,
+                                  `DEL_FLAG` int(11) NOT NULL,
+                                  `REVISION` int(11) NOT NULL COMMENT '乐观锁',
+                                  `CREATED_BY` varchar(32) NOT NULL COMMENT '创建人',
+                                  `CREATED_TIME` datetime NOT NULL COMMENT '创建时间',
+                                  `UPDATED_BY` varchar(32) NOT NULL COMMENT '更新人',
+                                  `UPDATED_TIME` datetime NOT NULL COMMENT '更新时间',
+                                  PRIMARY KEY (`ID`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COMMENT='钉钉小程序信息';
+
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1', '1903117866', '119453', '5000000003010492', '随时讲', 'suiter5nqmiwzwq4lodee', 'hHKnno_nGouRjB5LVFn0k11O20CCEhf9gaiErLNN0lKUExe5VzZrB8tN9hdRrhPA', '', '', 0, 0, '授权给亿联科技', '2022-09-14 11:11:13', '授权给亿联科技', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1001', '1905492491', '', '5000000003022462', '随手拍', 'dingu6fdnlcqbyr1fdxu', 'r-Fi8awDyD5rBCPS1NnoBEqkrq0InheNMkc0xAOKvkD0-47oDFiClbJRiFQy-JO1', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-22 16:54:09', '烟台企业内部应用', '2022-09-22 16:54:16');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1002', '1905441943', '', '5000000003021766', '随时讲', 'dinguizzwnfnvjs6nntz', 'uUqJYGyoOjOBcc1bC5jCD2lipOaUxbrdZyeXSWKq1JfX7tWQYNz6ZfvvybWBENKS', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-22 16:55:25', '烟台企业内部应用', '2022-09-22 16:55:28');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1003', '1905455843', '', '5000000003022737', '我的报事', 'dingllzzs6g8u7htteg5', 'fjTJe31Ot4FylmO_hWY-aRckikdPKA2u640GjiW68R4JItFG8picnwFd8d9gLFm_', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-22 16:56:29', '烟台企业内部应用', '2022-09-22 16:56:37');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1004', '1905486539', '', '5000000003022522', '实时动态', 'dingf8hpd485mlgaov7c', 'CmUSLH-M-tDgpwRTmiAXf9p3v-hLZ27J1kscxUg3118EKX4mV-JLJ073PMxC6We1', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-22 16:57:21', '烟台企业内部应用', '2022-09-22 16:57:24');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('2', '1903003033', '', '5000000003009021', '随手拍', 'suite44k7hacfbfx4zazi', 'EtamucmdHdQMe5nM7YW0qwn2b3m6UJXEk3JAr3ICoisZdZdcIBXsFI1uUHf9xUrl', '', '', 0, 0, '授权给亿联科技', '2022-09-14 11:11:13', '授权给亿联科技', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('27805834197073948', '27501006', '119450', '5000000002934668', '随手拍', 'suitew6ccvkquinmrghqy', 'TooAxiegdsE5BPP6xo1AxK1LdmaUoMpPMyomOcGcBSXtnsxRc8dEfyOlG56oSmEB', 'qN6Mg1XljdeHzVg2KeZGmBgY5', 'CzBxlN3uVCo6S3AzB8gfkUMBQxYsrRUdXRqX4XcYcyw', 0, 0, '亿联第三方企业应用', '2022-09-14 11:09:15', '亿联第三方企业应用', '2022-09-14 11:09:15');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('27805834197073949', '27501007', '119451', '5000000002934374', '随时讲', 'suitezhyj12glsrp8em0f', '-z5Q_lvMP6l7fTzlArEzUT8D_-5pvqBQaJMuTGHoXnz0nuiqGQMZ8aeya_cxTsN-', 'rKs2lIN1Oe6K34AtASGOQDh', 'a7hsIIHVTiIB7SQwOiGNgxVo7zAigGUk4InTUNIikWy', 0, 0, '亿联第三方企业应用', '2022-09-14 11:11:13', '亿联第三方企业应用', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('27805834197073950', '27501008', '119452', '5000000002934456', '我的报事', 'suite5yxliro6wawv514w', 'aQxiPi7DwJSUa9HlbUU_L7Q4wGCLEDmgf__Ffx75cTn3jZwuHy9vdl-9Iv5FeyJU', 'vTUvaf6QtOJZsa1h7Wkoteo', 'csRpvVFGL7Cf1N9ubajix8tDWhCllROhaxCHKFnbuAz', 0, 0, '亿联第三方企业应用', '2022-09-14 11:11:13', '亿联第三方企业应用', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('27805834197073951', '27501009', '119453', '5000000002934488', '实时动态', 'suitemcestnonr6y0xigc', 'kKCNCkfDhmLoVnl_wuAiScyDG4776mkTevuSBuiYhHg-Bvz1-vhb_4IA-Km7nK2I', 'MvWLkZGbC', 'iSVLw69AeNXS8jgGefTG2ulkKWDQjcSsMBgkFMgfPuB', 0, 0, '亿联第三方企业应用', '2022-09-14 11:11:13', '亿联第三方企业应用', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('3', '1903155647', '', '5000000003010470', '我的报事', 'suitedwccu2wbepxvdebi', 'OHbAMPBzPWnTL-VqPuJ4ngnwBGLVoxKkkl12uY1CPvIhfX0NqcNJMGl21gQqNpd2', '', '', 0, 0, '授权给亿联科技', '2022-09-14 11:11:13', '授权给亿联科技', '2022-09-14 11:11:13');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('4', '1903147702', '', '5000000003010661', '实时动态', 'suitekcbekxzjnlrlgft2', 'fMKaF1UsORAftH7LdqR-CpHOCLzA56Q8S5WN6fRAOAI7E7T-p-96SspOyc-8CdnO', '', '', 0, 0, '授权给亿联科技', '2022-09-14 11:11:13', '授权给亿联科技', '2022-09-14 11:11:13');
+
+
+CREATE TABLE `open_sync_biz_data`
+(
+    `ID`           varchar(255) NOT NULL,
+    `SUITE_KEY`    varchar(255) DEFAULT NULL,
+    `SUBSCRIBE_ID` varchar(255) NOT NULL COMMENT '第三方企业应用的suiteid加下划线0',
+    `CORP_ID`      varchar(255) NOT NULL COMMENT '第三方企业应用的corpid',
+    `BIZ_ID`       varchar(255) NOT NULL COMMENT '第三方企业应用的suiteid',
+    `BIZ_DATA`     json         NOT NULL COMMENT '数据为Json格式',
+    `BIZ_TYPE`     varchar(10)  NOT NULL COMMENT '2：第三方企业应用票据；\n4：企业授权变更，包含授权、解除授权、授权变更；\n7：第三方企业应用变更，包含停用、启用、删除(删除保留授权)；\n13：企业用户变更，包含用户添加、修改、删除；\n14：企业部门变更，包含部门添加、修改、删除；\n15：企业角色变更，包含角色添加、修改、删除；\n16：企业变更，包含企业修改、删除；\n17：市场订单；\n20：企业外部联系人变更，包含添加、修改、删除；\n22：ISV自定义审批；\n25：家校通讯录1.0(Deprecated)信息变更。家校通讯录升级，请查看家校通讯录2.0数据推送；\n32：智能硬件绑定类型；\n37：因订单到期或者用户退款等导致的服务关闭，目前仅推送因退款等导致的服务关闭；\n50：家校通讯录2.0，部门信息变更；\n51：家校通讯录2.0，人员信息变更；\n63：应用试用记录回调信息；\n66：工作台组件变更回调事件；\n67：钉钉假期相关回调事件；\n133：CRM客户动态相关数据回调事件；\n137：人事平台员工异动V2相关数据回调事件；\n139：异步转译通讯录id任务完成通知；\n165：人事平台员工档案变动事件相关数据的回调事件；\n175：人事解决方案变更事件；',
+    `DEL_FLAG`     int(1)       NOT NULL,
+    `REVISION`     int(1)       NOT NULL,
+    `CREATED_TIME` datetime     NOT NULL,
+    `CREATED_BY`   varchar(255) NOT NULL,
+    `UPDATED_TIME` datetime     NOT NULL,
+    `UPDATED_BY`   varchar(255) NOT NULL,
+    PRIMARY KEY (`ID`) USING BTREE
+) ENGINE = InnoDB
+  DEFAULT CHARSET = utf8mb4;

epmet-module/epmet-third/epmet-third-server/src/main/resources/db/migration/V0.0.15__other3app.sql

@@ -0,0 +1,3 @@
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1005', '1912268145', '', '5000000003054196', '信息登记', 'dingtbmsztg41nmbclzi', '6mdIbt8xWkKOkGasxqQt44uNEri-KQWSmMX1u7weTMEuoGWwQsoYSyc0hBeoQGEj', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-26 14:03:32', '烟台企业内部应用', '2022-09-26 14:03:40');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1006', '1912172899', '', '5000000003054651', '疫情防控', 'dingye4npkwn5l8gate0', 'iOqq_5nURdTr-69DKukTfpzmkJIN5UBCQNlOdB-g6PucCC2UG-wrXmyC2XEylkuE', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-26 14:04:39', '烟台企业内部应用', '2022-09-26 14:04:46');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1007', '1912176853', '', '5000000003054757', '议事厅', 'ding56hee9xi5kxlmpbp', 'Y16WoB0qD0k8N7NY2J7HLyHGGAkhlBj9Bxkpa1cFuUUrTZlH2SfLvP4ZYnsvxC7f', '', NULL, 0, 0, '烟台企业内部应用', '2022-09-26 14:05:40', '烟台企业内部应用', '2022-09-26 14:05:43');

epmet-module/epmet-third/epmet-third-server/src/main/resources/db/migration/V0.0.16__shenli4app.sql

@@ -0,0 +1,4 @@
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1008', '1914273833', '', '5000000003069546', '随手拍', 'dingpvk106h0eca7btlm', 'zLF8ld6pF40NLUxC2aRKP7yfXreRpSRJTCN48_kyAQtretSLBfSpFMX6prUOaH_Z', '', NULL, 0, 0, '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:32', '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:40');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1009', '1914301613', '', '5000000003069487', '随时讲', 'ding1ept2iaynjxu2w6o', 'xSXSennTbJG8nc-IjjsrG1zEugNoCp2rLhT7pS0vInT7OnPZ5FgY3974aR9D-xd2', '', NULL, 0, 0, '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:32', '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:40');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1010', '1914266905', '', '5000000003069391', '我的报事', 'dingpzsyljcsbu3fbac5', 'fWRzS2W59fwx__istOF23mHq1S0hAs64nZhcmljrSLLMYrceZVsz7GhgG4izZvhy', '', NULL, 0, 0, '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:32', '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:40');
+INSERT INTO `epmet_third`.`ding_mini_info` (`ID`, `SUITE_ID`, `APP_ID`, `MINI_APP_ID`, `SUITE_NAME`, `SUITE_KEY`, `SUITE_SECRET`, `TOKEN`, `AES_KEY`, `DEL_FLAG`, `REVISION`, `CREATED_BY`, `CREATED_TIME`, `UPDATED_BY`, `UPDATED_TIME`) VALUES ('1011', '1914338340', '', '5000000003069669', '实时动态', 'dingflbhlrd1epy11irl', '47OE8jNuSj-JoOPBx7ZCqEii4fycnWtY2x97ndu3Mk2BOh9ElKMNuOGNU0zzshVn', '', NULL, 0, 0, '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:32', '烟台企业内部应用_慎礼社区', '2022-09-27 13:03:40');

epmet-module/epmet-third/epmet-third-server/src/main/resources/logback-spring.xml

@@ -145,6 +145,7 @@
         <logger name="org.springboot.sample" level="INFO"/>
         <logger name="com.epmet.dao" level="INFO"/>
         <logger name="com.epmet.dao" level="DEBUG"/>
+        <logger name="com.taobao" level="DEBUG"/>
         <root level="INFO">
             <appender-ref ref="DEBUG_FILE"/>
             <appender-ref ref="INFO_FILE"/>
@@ -158,6 +159,7 @@
         <logger name="org.springframework.web" level="INFO"/>
         <logger name="org.springboot.sample" level="INFO"/>
         <logger name="com.epmet.dao" level="INFO"/>
+        <logger name="com.taobao" level="DEBUG"/>
         <root level="INFO">
             <appender-ref ref="CONSOLE"/>
             <appender-ref ref="DEBUG_FILE"/>

epmet-module/epmet-third/epmet-third-server/src/main/resources/mapper/OpenSyncBizDataDao.xml

@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE mapper PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN" "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
+
+<mapper namespace="com.epmet.dao.OpenSyncBizDataDao">
+    <delete id="delOpenSyncData">
+        DELETE
+        FROM open_sync_biz_data
+        WHERE biz_id = #{bizId}
+          AND biz_type = #{bizType}
+          AND subscribe_id = #{subscribeId}
+          AND corp_id = #{corpId}
+          AND DEL_FLAG = 0
+    </delete>
+
+    <select id="getDingMiniInfo" resultType="com.epmet.dto.DingMiniInfoDTO">
+        select * from ding_mini_info where del_flag = 0 and suite_key = #{suiteKey}
+    </select>
+    <select id="getDingMiniInfoByAppId" resultType="com.epmet.dto.DingMiniInfoDTO">
+        select * from ding_mini_info where del_flag = 0 and mini_app_id = #{miniAppId}
+    </select>
+    <select id="getOpenSyncData" resultType="com.epmet.dto.OpenSyncBizDataDTO">
+        select * FROM open_sync_biz_data
+        where del_flag = 0
+            and biz_type = #{bizType}
+            and suite_key = #{suiteKey}
+            <if test='null != corpId and corpId != "" '>
+                and corp_id = #{corpId}
+            </if>
+    </select>
+</mapper>

epmet-module/epmet-third/epmet-third-server/src/main/test/java/com/epmet/ThirdPlatformTest.java

@@ -0,0 +1,30 @@
+package com.epmet;
+
+import com.alibaba.fastjson.JSON;
+import com.aliyun.dingtalk.module.DingTalkResult;
+import com.taobao.dingtalk.client.DingTalkClientToken;
+import lombok.extern.slf4j.Slf4j;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.context.junit4.SpringRunner;
+
+/**
+ * desc：redisson测试类
+ */
+@Slf4j
+@RunWith(value = SpringRunner.class)
+@SpringBootTest(classes = {EpmetThirdApplication.class})
+public class ThirdPlatformTest {
+
+
+    @Autowired
+    DingTalkClientToken dingTalkClientToken;
+
+    @Test
+    public void sendText(){
+        DingTalkResult<String> appAccessTokenToken = dingTalkClientToken.getAppAccessTokenToken();
+        System.out.println("=======:"+JSON.toJSONString(appAccessTokenToken));
+    }
+}

epmet-module/gov-access/gov-access-client/src/main/java/com/epmet/dto/GovMenuDTO.java

@@ -65,6 +65,10 @@ public class GovMenuDTO extends TreeStringNode<GovMenuDTO> implements Serializab
      * 菜单图标
      */
 	private String icon;
+	/**
+	 * 菜单颜色
+	 */
+	private String color;
 
     /**
      * 权限标识，如：sys:menu:save

epmet-module/gov-access/gov-access-client/src/main/java/com/epmet/dto/result/OftenUseFunctionListResultDTO.java

@@ -38,4 +38,9 @@ public class OftenUseFunctionListResultDTO implements Serializable {
      * 排序
      */
     private String sort;
+
+    /**
+     * 菜单颜色
+     */
+    private String color;
 }

epmet-module/gov-access/gov-access-server/src/main/java/com/epmet/entity/GovMenuEntity.java

@@ -47,6 +47,10 @@ public class GovMenuEntity extends BaseEpmetEntity {
 	 * 菜单图标
 	 */
 	private String icon;
+	/**
+	 * 菜单颜色
+	 */
+	private String color;
 	/**
 	 * 权限标识，如：sys:menu:save
 	 */

epmet-module/gov-access/gov-access-server/src/main/resources/db/migration/V0.0.9__alter_menu_color.sql

@@ -0,0 +1,2 @@
+ALTER TABLE `epmet_gov_access`.`gov_menu`
+    ADD COLUMN `color` varchar(16)  DEFAULT '' COMMENT '菜单颜色' AFTER `icon`;

epmet-module/gov-access/gov-access-server/src/main/resources/mapper/IcOftenUseFunctionDao.xml

@@ -15,7 +15,8 @@
             ic.MENU_ID,
             gm.url,
             gm.icon,
-            gl.field_value AS menuName
+            gl.field_value AS menuName,
+            gm.color
         FROM ic_often_use_function ic
         INNER JOIN gov_customer_menu gc ON (gc.TABLE_ID = ic.MENU_ID AND gc.DEL_FLAG = '0' AND ic.CUSTOMER_ID = gc.CUSTOMER_ID)
         INNER JOIN gov_menu gm ON (gc.TABLE_ID = gm.id AND gm.DEL_FLAG = 0 AND gm.SHOW_FLAG = 1)
@@ -24,4 +25,4 @@
           AND ic.USER_ID = #{userId}
         ORDER BY ic.SORT
     </select>
-</mapper>
+</mapper>

epmet-module/gov-mine/gov-mine-client/src/main/java/com/epmet/dto/form/StaffResetPassWordFormDTO.java

@@ -22,6 +22,10 @@ public class StaffResetPassWordFormDTO implements Serializable {
     public interface AddUserShowGroup extends CustomerClientShowGroup {
     }
 
+    /**
+     * 旧密码
+     */
+    private String oldPassword;
     @NotBlank(message = "新密码不能为空", groups = {AddUserShowGroup.class})
     private String newPassword;
     @NotBlank(message = "确认新密码不能为空", groups = {AddUserShowGroup.class})

epmet-module/gov-mine/gov-mine-server/src/main/java/com/epmet/controller/MineController.java

@@ -2,12 +2,15 @@ package com.epmet.controller;
 
 import com.epmet.commons.tools.annotation.LoginUser;
 import com.epmet.commons.tools.security.dto.TokenDto;
+import com.epmet.commons.tools.utils.RSASignature;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.ValidatorUtils;
 import com.epmet.dto.form.StaffResetPassWordFormDTO;
 import com.epmet.dto.result.MineResultDTO;
 import com.epmet.service.MineService;
+import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RequestMapping;
@@ -21,6 +24,8 @@ import org.springframework.web.bind.annotation.RestController;
 @RestController
 @RequestMapping("mine")
 public class MineController {
+	@Value("${epmet.login.privateKey}")
+	private String privateKey;
 	@Autowired
 	private MineService mineService;
 
@@ -45,9 +50,27 @@ public class MineController {
 	 * @Date 2020/7/1 9:59
 	 **/
 	@PostMapping("resetpassword")
-	public Result resetPassword(@LoginUser TokenDto tokenDto, @RequestBody StaffResetPassWordFormDTO formDTO) {
+	public Result resetPassword(@LoginUser TokenDto tokenDto, @RequestBody StaffResetPassWordFormDTO formDTO) throws Exception {
 		formDTO.setStaffId(tokenDto.getUserId());
 		ValidatorUtils.validateEntity(formDTO, StaffResetPassWordFormDTO.AddUserShowGroup.class, StaffResetPassWordFormDTO.AddUserInternalGroup.class);
+		//解密密码
+		if (formDTO.getConfirmNewPassword().length() > 50) {
+			String confirmNewPassWord = RSASignature.decryptByPrivateKey(formDTO.getConfirmNewPassword(), privateKey);
+			String newPassword = RSASignature.decryptByPrivateKey(formDTO.getNewPassword(), privateKey);
+			formDTO.setConfirmNewPassword(confirmNewPassWord);
+			formDTO.setNewPassword(newPassword);
+			if (StringUtils.isNotBlank(formDTO.getOldPassword())){
+				String oldPassWord = RSASignature.decryptByPrivateKey(formDTO.getOldPassword(), privateKey);
+				formDTO.setOldPassword(oldPassWord);
+			}
+		}
 		return mineService.resetPassword(formDTO);
 	}
+
+	public static void main(String[] args) throws Exception {
+		String p= "R16c3yJqCMyRFTxElBeBexTVlW1GArItaVqEEyF3o3jXVwq0G08ck8wEdBAEyQI1y4uCsw3UBgx1mqiMbIfvdg==";
+		String privateKey= "MIIBVQIBADANBgkqhkiG9w0BAQEFAASCAT8wggE7AgEAAkEAqOANodapaCq6hq1sLjPNAKCoTwLjblUg7LMlVWAfUdRgIem41ScYK/ccECXZGzOJZCpCB3XHGXQLdrkngnr2jwIDAQABAkAyYaWvgrtHuHetdk+v+QRQC54q9FGluP/5nfilX+f4IUf8j92o/ZohTtmJn9qcDiAP4wxCLIsfy4IW3psST78BAiEA0A/E0WvtI7spWnjfw+wMDhdVMIbIJvDbj/cqMwRZInUCIQDPyO2sbXpwDjmAvyn0jpGJJxU5POWYdI37rTf9fScMcwIhAMkWNHbjBHKANVuHb10ACjakPmWEHnXkW5AspdBg53TxAiARPbzq99KXBbcjxbj3f/T3inSqYTEz60f0wDTLJd1dnQIhAIFe6Jd1TduIxGk1PDh/b/3q0jNGgVXkFnUBnKWDaL9N";
+		String newPassword = RSASignature.decryptByPrivateKey(p, privateKey);
+		System.out.println(newPassword);
+	}
 }

epmet-module/gov-mine/gov-mine-server/src/main/java/com/epmet/service/impl/MineServiceImpl.java

@@ -5,6 +5,7 @@ import com.epmet.commons.tools.constant.ServiceConstant;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
 import com.epmet.commons.tools.exception.RenException;
 import com.epmet.commons.tools.security.dto.TokenDto;
+import com.epmet.commons.tools.security.password.PasswordUtils;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.dto.form.StaffInfoFromDTO;
 import com.epmet.dto.form.StaffResetPassWordFormDTO;
@@ -50,7 +51,7 @@ public class MineServiceImpl implements MineService {
 			throw new RenException(EpmetErrorCode.PASSWORD_NOT_FIT.getCode());
 		}
 		//2、校验密码规则：密码必须8-20个字符，而且同时包含大小写字母和数字
-		boolean flag=this.checkPassWord(formDTO.getNewPassword());
+		boolean flag= PasswordUtils.checkPassWordRule(formDTO.getNewPassword());
 		if(!flag){
 			throw new RenException(EpmetErrorCode.PASSWORD_OUT_OF_ORDER.getCode());
 		}
@@ -59,50 +60,15 @@ public class MineServiceImpl implements MineService {
 		staffResetPwFormDTO.setNewPassword(formDTO.getNewPassword());
 		staffResetPwFormDTO.setConfirmNewPassword(formDTO.getConfirmNewPassword());
 		staffResetPwFormDTO.setStaffId(formDTO.getStaffId());
+		staffResetPwFormDTO.setOldPassword(formDTO.getOldPassword());
 		Result updatePassWordResult=epmetUserOpenFeignClient.resetStaffPassword(staffResetPwFormDTO);
 		if(updatePassWordResult.success()){
 			logger.info(String.format("调用%s服务,修改密码成功", ServiceConstant.EPMET_USER_SERVER));
 		}else{
 			logger.warn(String.format("调用%s服务,修改密码失败,返参:%s", ServiceConstant.EPMET_USER_SERVER,
 					JSON.toJSONString(updatePassWordResult)));
-			return new Result().error(EpmetErrorCode.PASSWORD_UPDATE_FAILED.getCode());
+			return new Result().error(EpmetErrorCode.PASSWORD_UPDATE_FAILED.getCode(),updatePassWordResult.getMsg());
 		}
 		return new Result();
 	}
-
-	private boolean checkPassWord(String password) {
-		boolean flag=false;
-		if(password.length()<8||password.length()>20){
-			logger.warn(String.format("密码长度应为8-20位，当前输入密码%s,长度为%s",password,password.length()));
-			return flag;
-		}
-		boolean numFlag=false;
-		boolean bigLetter=false;
-		boolean smallLetter=false;
-		char[] passwordArray = password.toCharArray();
-		for(int i=0;i < passwordArray.length;i++) {
-			char currentStr=passwordArray[i];
-			logger.info(String.format("当前字符%s",currentStr));
-			// 判断ch是否是数字字符，如'1'，'2‘，是返回true。否则返回false
-			if(Character.isDigit(currentStr)){
-				numFlag=true;
-				continue;
-			}
-			// 判断ch是否是字母字符，如'a'，'b‘，是返回true。否则返回false
-			if(Character.isUpperCase(currentStr)){
-				bigLetter=true;
-				continue;
-			}
-			if(Character.isLowerCase(currentStr)){
-				smallLetter=true;
-				continue;
-			}
-		}
-		if(numFlag&&bigLetter&&smallLetter){
-			flag=true;
-		}else{
-			logger.warn(String.format("当前密码%s,是否包含数字%s,是否包含大写字母%s,是否包含小写字母%s",password,numFlag,bigLetter,smallLetter));
-		}
-		return flag;
-	}
 }

epmet-module/gov-mine/gov-mine-server/src/main/resources/bootstrap.yml

@@ -133,3 +133,8 @@ thread:
     keepAliveSeconds: @thread.threadPool.keep-alive-seconds@
     threadNamePrefix: @thread.threadPool.thread-name-prefix@
     rejectedExecutionHandler: @thread.threadPool.rejected-execution-handler@
+epmet:
+  login:
+    publicKey: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKjgDaHWqWgquoatbC4zzQCgqE8C425VIOyzJVVgH1HUYCHpuNUnGCv3HBAl2RsziWQqQgd1xxl0C3a5J4J69o8CAwEAAQ==
+    privateKey: MIIBVQIBADANBgkqhkiG9w0BAQEFAASCAT8wggE7AgEAAkEAqOANodapaCq6hq1sLjPNAKCoTwLjblUg7LMlVWAfUdRgIem41ScYK/ccECXZGzOJZCpCB3XHGXQLdrkngnr2jwIDAQABAkAyYaWvgrtHuHetdk+v+QRQC54q9FGluP/5nfilX+f4IUf8j92o/ZohTtmJn9qcDiAP4wxCLIsfy4IW3psST78BAiEA0A/E0WvtI7spWnjfw+wMDhdVMIbIJvDbj/cqMwRZInUCIQDPyO2sbXpwDjmAvyn0jpGJJxU5POWYdI37rTf9fScMcwIhAMkWNHbjBHKANVuHb10ACjakPmWEHnXkW5AspdBg53TxAiARPbzq99KXBbcjxbj3f/T3inSqYTEz60f0wDTLJd1dnQIhAIFe6Jd1TduIxGk1PDh/b/3q0jNGgVXkFnUBnKWDaL9N
+

epmet-module/gov-org/gov-org-client/src/main/java/com/epmet/dto/result/IcBulidingDetailDTO.java

@@ -57,6 +57,10 @@ public class IcBulidingDetailDTO implements Serializable {
      */
     private String type;
 
+    /**
+     * --楼栋类型，1商品房，2自建房，3别墅
+     */
+    private String typeName;
 
     /**
      * 排序

epmet-module/gov-org/gov-org-client/src/main/java/com/epmet/dto/result/IcNeighborHoodDetailDTO.java

@@ -0,0 +1,111 @@
+package com.epmet.dto.result;
+
+import com.epmet.dto.IcPropertyManagementDTO;
+import lombok.Data;
+
+import java.util.List;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/21 9:19
+ */
+@Data
+public class IcNeighborHoodDetailDTO {
+    private String id;
+    /**
+     * 客户id
+     */
+    private String customerId;
+
+    /**
+     * 小区名称
+     */
+    private String neighborHoodName;
+
+    /**
+     * 组织id
+     */
+    private String agencyId;
+
+    /**
+     * 组织名称--新版详情页面用于显示
+     */
+    private String agencyName;
+
+    /**
+     * 上级组织id
+     */
+    private String parentAgencyId;
+
+    /**
+     * 组织的所有上级组织id
+     */
+    private String agencyPids;
+
+    /**
+     * 网格id
+     */
+    private String gridId;
+
+    /**
+     * 详细地址
+     */
+    private String address;
+
+    /**
+     * 备注
+     */
+    private String remark;
+
+    /**
+     * 中心点位：经度
+     */
+    private String longitude;
+
+    /**
+     * 中心点位：纬度
+     */
+    private String latitude;
+
+    /**
+     * 坐标区域
+     */
+    private String coordinates;
+
+    /**
+     * 坐标位置
+     */
+    private String location;
+
+    /**
+     * 网格名称--新版详情页面用于显示
+     */
+    private String gridName;
+
+    /**
+     * 物业名称--新版详情页面用于显示
+     */
+    private List<IcPropertyManagementDTO> propertyList;
+
+    /**
+     * 小区编码
+     */
+    private String coding;
+
+    /**
+     * 小区系统编码
+     */
+    private String sysCoding;
+
+    /**
+     * 实有楼栋数
+     */
+    private Integer realBuilding;
+
+    /**
+     * 二维码地址
+     */
+    private String qrcodeUrl;
+}
+

epmet-module/gov-org/gov-org-server/src/main/java/com/epmet/controller/HouseInformationController.java

@@ -23,7 +23,6 @@ import com.epmet.commons.tools.security.dto.TokenDto;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.dto.form.HouseInformationFormDTO;
 import com.epmet.dto.result.*;
-import com.epmet.entity.IcNeighborHoodEntity;
 import com.epmet.service.*;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.web.bind.annotation.*;
@@ -64,7 +63,7 @@ public class HouseInformationController {
     * @return com.epmet.commons.tools.utils.Result<com.epmet.dto.IcNeighborHoodDTO>
     */
     @PostMapping("neighborhoodDetail/{neighborhoodId}")
-    public Result<IcNeighborHoodEntity> neighborhoodDetail(@PathVariable("neighborhoodId") String neighborhoodId){
+    public Result<IcNeighborHoodDetailDTO> neighborhoodDetail(@PathVariable("neighborhoodId") String neighborhoodId){
         return icNeighborHoodService.neighborhoodDetail(neighborhoodId);
     }
 

epmet-module/gov-org/gov-org-server/src/main/java/com/epmet/dao/IcPropertyManagementDao.java

@@ -18,6 +18,7 @@
 package com.epmet.dao;
 
 import com.epmet.commons.mybatis.dao.BaseDao;
+import com.epmet.dto.IcPropertyManagementDTO;
 import com.epmet.entity.IcPropertyManagementEntity;
 import org.apache.ibatis.annotations.Mapper;
 import org.apache.ibatis.annotations.Param;
@@ -50,4 +51,11 @@ public interface IcPropertyManagementDao extends BaseDao<IcPropertyManagementEnt
      * @date 2022/2/13 9:59 上午
      */
     List<IcPropertyManagementEntity> selectIdByName(@Param("names")List<String> names);
+
+    /**
+     * 查询小区关联物业id,name
+     * @param neighborhoodId
+     * @return
+     */
+    List<IcPropertyManagementDTO> selectPropertyNameList(String neighborhoodId);
 }

epmet-module/gov-org/gov-org-server/src/main/java/com/epmet/service/IcNeighborHoodService.java

@@ -28,11 +28,11 @@ import com.epmet.dto.NeighborHoodAndManagementDTO;
 import com.epmet.dto.form.IcNeighborHoodAddFormDTO;
 import com.epmet.dto.form.ImportInfoFormDTO;
 import com.epmet.dto.result.BuildingResultDTO;
+import com.epmet.dto.result.IcNeighborHoodDetailDTO;
 import com.epmet.dto.result.ImportTaskCommonResultDTO;
 import com.epmet.entity.IcNeighborHoodEntity;
 import com.epmet.entity.IcNeighborHoodPropertyEntity;
 import com.epmet.entity.IcPropertyManagementEntity;
-import org.springframework.web.bind.annotation.RequestBody;
 
 import java.io.IOException;
 import java.io.InputStream;
@@ -194,5 +194,5 @@ public interface IcNeighborHoodService extends BaseService<IcNeighborHoodEntity>
     * @params [neighborhoodId]
     * @return com.epmet.commons.tools.utils.Result<com.epmet.dto.IcNeighborHoodDTO>
     */
-    Result<IcNeighborHoodEntity> neighborhoodDetail(String neighborhoodId);
+    Result<IcNeighborHoodDetailDTO> neighborhoodDetail(String neighborhoodId);
 }

epmet-module/gov-org/gov-org-server/src/main/java/com/epmet/service/impl/IcNeighborHoodServiceImpl.java

@@ -30,6 +30,7 @@ import com.baomidou.mybatisplus.core.toolkit.IdWorker;
 import com.epmet.commons.mybatis.service.impl.BaseServiceImpl;
 import com.epmet.commons.tools.constant.FieldConstant;
 import com.epmet.commons.tools.constant.NumConstant;
+import com.epmet.commons.tools.constant.StrConstant;
 import com.epmet.commons.tools.dto.result.CustomerStaffInfoCacheResult;
 import com.epmet.commons.tools.dto.result.OptionResultDTO;
 import com.epmet.commons.tools.exception.EpmetErrorCode;
@@ -50,10 +51,7 @@ import com.epmet.dto.*;
 import com.epmet.dto.form.IcNeighborHoodAddFormDTO;
 import com.epmet.dto.form.ImportInfoFormDTO;
 import com.epmet.dto.form.ImportTaskCommonFormDTO;
-import com.epmet.dto.result.BuildingResultDTO;
-import com.epmet.dto.result.ImportTaskCommonResultDTO;
-import com.epmet.dto.result.InfoByNamesResultDTO;
-import com.epmet.dto.result.UploadImgResultDTO;
+import com.epmet.dto.result.*;
 import com.epmet.entity.*;
 import com.epmet.excel.IcNeighborHoodExcel;
 import com.epmet.feign.EpmetCommonServiceOpenFeignClient;
@@ -808,12 +806,22 @@ public class IcNeighborHoodServiceImpl extends BaseServiceImpl<IcNeighborHoodDao
     }
 
     @Override
-    public Result<IcNeighborHoodEntity> neighborhoodDetail(String neighborhoodId) {
-        IcNeighborHoodEntity result = baseDao.selectById(neighborhoodId);
-        if(null != result && null == result.getRemark()){
-            result.setRemark("");
+    public Result<IcNeighborHoodDetailDTO> neighborhoodDetail(String neighborhoodId) {
+        IcNeighborHoodEntity icNeighborHoodEntity = baseDao.selectById(neighborhoodId);
+        if (null == icNeighborHoodEntity) {
+            return new Result<>();
         }
-        return new Result<IcNeighborHoodEntity>().ok(result);
+        IcNeighborHoodDetailDTO result = ConvertUtils.sourceToTarget(icNeighborHoodEntity, IcNeighborHoodDetailDTO.class);
+        if(null == result.getRemark()){
+            result.setRemark(StrConstant.EPMETY_STR);
+        }
+        GridInfoCache gridInfoCache=CustomerOrgRedis.getGridInfo(result.getGridId());
+        if (null != gridInfoCache) {
+            result.setAgencyName(gridInfoCache.getAgencyName());
+            result.setGridName(gridInfoCache.getGridName());
+        }
+        result.setPropertyList(propertyManagementDao.selectPropertyNameList(neighborhoodId));
+        return new Result<IcNeighborHoodDetailDTO>().ok(result);
     }
 
 }

epmet-module/gov-org/gov-org-server/src/main/resources/mapper/IcBuildingDao.xml

@@ -458,6 +458,13 @@
 			b.LONGITUDE,
 			b.COORDINATE_POSITION,
 			b.TYPE,
+			(
+			    case when b.TYPE='1' then '商品房'
+			    when b.TYPE='2' then '自建房'
+			    when b.TYPE='3' then '别墅'
+			    else ''
+			    end
+            ) as typeName,
             h.GRID_ID,
             h.AGENCY_ID,
 			b.BUILDING_LEADER_NAME,

epmet-module/gov-org/gov-org-server/src/main/resources/mapper/IcPropertyManagementDao.xml

@@ -48,4 +48,21 @@
         )
     </select>
 
+    <select id="selectPropertyNameList" parameterType="java.lang.String" resultType="com.epmet.dto.IcPropertyManagementDTO">
+        SELECT
+            p.id,
+            p.NAME
+        FROM
+            ic_property_management p
+        WHERE
+                p.id IN (
+                SELECT DISTINCT
+                    p.PROPERTY_ID
+                FROM
+                    ic_neighbor_hood_property p
+                WHERE
+                    p.NEIGHBOR_HOOD_ID = #{neighborhoodId}
+                  AND p.DEL_FLAG = '0'
+            )
+    </select>
 </mapper>

epmet-module/gov-project/gov-project-server/src/main/java/com/epmet/service/impl/IcEventServiceImpl.java

@@ -940,7 +940,7 @@ public class IcEventServiceImpl extends BaseServiceImpl<IcEventDao, IcEventEntit
         }
 
         //5.新增操作记录
-        IcEventOperationLogEntity logEntity = logEntity(formDTO.getCustomerId(), formDTO.getIcEventId(), formDTO.getDemandUserId(), new Date(), "shift_demand", "shift_demand");
+        IcEventOperationLogEntity logEntity = logEntity(formDTO.getCustomerId(), formDTO.getIcEventId(), formDTO.getDemandUserId(), formDTO.getWantServiceTime(), "shift_demand", "shift_demand");
         icEventOperationLogService.insert(logEntity);
 
         //6.判断来源居民端的事件，转了项目给居民推送站内信

epmet-module/gov-project/gov-project-server/src/main/resources/mapper/IcEventDao.xml

@@ -72,7 +72,7 @@
               and c.CATEGORY_CODE like CONCAT(#{categoryCode},'%')
           </if>
         </where>
-        order by e.CREATED_TIME desc
+        order by e.happen_time desc
     </select>
     <select id="listMonthlyEventCount" resultType="com.epmet.dto.result.IcEventMonthlyCountResultDTO">
         select t.monthName, count(1) eventCount
@@ -211,10 +211,10 @@
             AND ie.mobile = #{mobile}
         </if>
         <if test="startTime != null and startTime != '' ">
-            AND DATE_FORMAT(ie.created_time,"%Y-%m-%d %H:%i") <![CDATA[>=]]> #{startTime}
+            AND DATE_FORMAT(ie.happen_time,"%Y-%m-%d %H:%i") <![CDATA[>=]]> #{startTime}
         </if>
         <if test="endTime != null and endTime != '' ">
-            AND DATE_FORMAT(ie.created_time,"%Y-%m-%d %H:%i") <![CDATA[<=]]> #{endTime}
+            AND DATE_FORMAT(ie.happen_time,"%Y-%m-%d %H:%i") <![CDATA[<=]]> #{endTime}
         </if>
         <if test="status != null and status != '' ">
             AND ie.`status` = #{status}

epmet-module/gov-voice/gov-voice-client/src/main/java/com/epmet/dto/form/TopArticleFormDTO.java

@@ -0,0 +1,26 @@
+package com.epmet.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+
+/**
+ * @Description
+ * @Author yzm
+ * @Date 2022/9/21 15:13
+ */
+@Data
+public class TopArticleFormDTO {
+    /**
+     * 文章id
+     */
+    @NotBlank(message = "文章id不能为空")
+    private String articleId;
+    /**
+     * top
+     * cancel_top
+     */
+    @NotBlank(message = "type不能为空,置顶:top,取消置顶:cancel_top")
+    private String type;
+}
+

epmet-module/gov-voice/gov-voice-server/src/main/java/com/epmet/controller/ArticleController.java

@@ -424,6 +424,17 @@ public class ArticleController {
 		return new Result<PageData<PublishedListResultDTO>>().ok(articleService.articleListV2(formDTO));
 	}
 
+	/**
+	 * 文章置顶、取消置顶
+	 * @param formDTO
+	 * @return
+	 */
+	@PostMapping("topArticle")
+	public Result topArticle(@RequestBody TopArticleFormDTO formDTO){
+		ValidatorUtils.validateEntity(formDTO);
+		articleService.topArticle(formDTO.getArticleId(),formDTO.getType());
+		return new Result();
+	}
 	/**
 	 * @param tokenDTO
 	 * @return

epmet-module/gov-voice/gov-voice-server/src/main/java/com/epmet/service/ArticleService.java

@@ -255,4 +255,6 @@ public interface ArticleService extends BaseService<ArticleEntity> {
     PageData<PublishedListResultDTO> articleListV2(ArticleListFormDTO formDTO);
 
     PublishedListResultDTO detailV2(ArticleListFormDTO formDTO);
+
+    void topArticle(String articleId, String type);
 }

epmet-module/gov-voice/gov-voice-server/src/main/java/com/epmet/service/impl/ArticleServiceImpl.java

@@ -1775,4 +1775,21 @@ public class ArticleServiceImpl extends BaseServiceImpl<ArticleDao, ArticleEntit
 
 		return resultDTO;
 	}
+
+	@Override
+	public void topArticle(String articleId, String type) {
+		ArticleEntity articleEntity = baseDao.selectById(articleId);
+		if (null != articleEntity) {
+			/**
+			 * top
+			 * cancel_top
+			 */
+			if ("top".equals(type)) {
+				articleEntity.setIsTop(NumConstant.ONE);
+			} else if ("cancel_top".equals(type)) {
+				articleEntity.setIsTop(NumConstant.ZERO);
+			}
+			baseDao.updateById(articleEntity);
+		}
+	}
 }

epmet-module/oper-access/oper-access-client/src/main/java/com/epmet/dto/form/HasOperPermissionFormDTO.java

@@ -0,0 +1,24 @@
+package com.epmet.dto.form;
+
+import lombok.Data;
+
+import javax.validation.constraints.NotBlank;
+
+@Data
+public class HasOperPermissionFormDTO {
+
+    /**
+     * uri
+     */
+    @NotBlank(message = "uri不能为空")
+    private String uri;
+
+    /**
+     * http方法
+     */
+    @NotBlank(message = "请求http方法不能为空")
+    private String method;
+
+    @NotBlank(message = "操作者ID不能为空")
+    private String operId;
+}

epmet-module/oper-access/oper-access-client/src/main/java/com/epmet/dto/result/OperResouce.java

@@ -0,0 +1,13 @@
+package com.epmet.dto.result;
+
+import lombok.Data;
+
+@Data
+public class OperResouce {
+
+    private String userId;
+    private String resourceUrl;
+    private String ResourceMethod;
+
+
+}

epmet-module/oper-access/oper-access-client/src/main/java/com/epmet/feign/OperAccessOpenFeignClient.java

@@ -2,9 +2,12 @@ package com.epmet.feign;
 
 import com.epmet.commons.tools.constant.ServiceConstant;
 import com.epmet.commons.tools.utils.Result;
+import com.epmet.dto.form.HasOperPermissionFormDTO;
 import com.epmet.feign.fallback.OperAccessOpenFeignClientFallbackFactory;
 import org.springframework.cloud.openfeign.FeignClient;
 import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
 
 /**
  * @Description 运营端权限模块
@@ -23,4 +26,18 @@ public interface OperAccessOpenFeignClient {
      **/
     @GetMapping("/oper/access/menu/clearoperuseraccess")
     Result clearOperUserAccess();
+
+    /**
+     * 是否有该接口的权限
+     * @return
+     */
+    @PostMapping("/oper/access/menu/hasPermission")
+    Result hasOperPermission(@RequestBody HasOperPermissionFormDTO form);
+
+    /**
+     * 需要验证的菜单资源
+     * @return
+     */
+    @PostMapping("/oper/access/menu/getExamineResourceUrls")
+    Result getExamineResourceUrls();
 }

epmet-module/oper-access/oper-access-client/src/main/java/com/epmet/feign/fallback/OperAccessOpenFeignClientFallback.java

@@ -3,6 +3,7 @@ package com.epmet.feign.fallback;
 import com.epmet.commons.tools.constant.ServiceConstant;
 import com.epmet.commons.tools.utils.ModuleUtils;
 import com.epmet.commons.tools.utils.Result;
+import com.epmet.dto.form.HasOperPermissionFormDTO;
 import com.epmet.feign.OperAccessOpenFeignClient;
 
 /**
@@ -17,5 +18,15 @@ public class OperAccessOpenFeignClientFallback implements OperAccessOpenFeignCli
         return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "clearOperUserAccess");
 
     }
+
+    @Override
+    public Result hasOperPermission(HasOperPermissionFormDTO form) {
+        return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "hasOperPermission");
+    }
+
+    @Override
+    public Result getExamineResourceUrls() {
+        return ModuleUtils.feignConError(ServiceConstant.OPER_ACCESS_SERVER, "getExamineResourceUrls");
+    }
 }
 

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/controller/OperMenuController.java

@@ -1,9 +1,11 @@
 package com.epmet.controller;
 
 import com.epmet.commons.tools.annotation.LoginUser;
+import com.epmet.commons.tools.constant.AppClientConstant;
 import com.epmet.commons.tools.exception.ErrorCode;
 import com.epmet.commons.tools.page.PageData;
 import com.epmet.commons.tools.security.dto.TokenDto;
+import com.epmet.commons.tools.utils.EpmetRequestHolder;
 import com.epmet.commons.tools.utils.ExcelUtils;
 import com.epmet.commons.tools.utils.Result;
 import com.epmet.commons.tools.validator.AssertUtils;
@@ -12,7 +14,9 @@ import com.epmet.commons.tools.validator.group.AddGroup;
 import com.epmet.commons.tools.validator.group.DefaultGroup;
 import com.epmet.commons.tools.validator.group.UpdateGroup;
 import com.epmet.dto.OperMenuDTO;
+import com.epmet.dto.form.HasOperPermissionFormDTO;
 import com.epmet.dto.result.MenuResourceDTO;
+import com.epmet.dto.result.OperResouce;
 import com.epmet.excel.OperMenuExcel;
 import com.epmet.service.OperMenuService;
 import com.epmet.service.OperResourceService;
@@ -53,7 +57,7 @@ public class OperMenuController {
 
 		//菜单资源列表
 		List<MenuResourceDTO> resourceList = operResourceService.getMenuResourceList(id);
-
+		data.setResourceList(resourceList);
 		return new Result<OperMenuDTO>().ok(data);
 	}
 
@@ -161,4 +165,37 @@ public class OperMenuController {
 		operMenuService.clearOperUserAccess(tokenDto.getApp(), tokenDto.getClient(), tokenDto.getUserId());
 		return new Result();
 	}
+
+	/**
+	 * 改运营人员是否有该接口的权限
+	 * @return
+	 */
+	@PostMapping("hasPermission")
+	public Result hasOperPermission(@RequestBody HasOperPermissionFormDTO form) {
+		ValidatorUtils.validateEntity(form);
+		String uri = form.getUri();
+		String method = form.getMethod();
+
+		//		if (!AppClientConstant.APP_OPER.equals(loginUserApp)) {
+		////			只校验运营端，其他都返回true
+		//			return new Result();
+		//		}
+
+		Boolean isMathe = operMenuService.hasOperPermission(uri, method, form.getOperId());
+		if (isMathe){
+			return new Result();
+		} else {
+			return new Result().error();
+		}
+	}
+
+	/**
+	 * 需要验证的菜单资源
+	 * @return
+	 */
+	@PostMapping("getExamineResourceUrls")
+	public Result getExamineResourceUrls() {
+		List<OperResouce> resources = operMenuService.getExamineResourceUrls();
+		return new Result().ok(resources);
+	}
 }

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/dao/OperMenuDao.java

@@ -9,6 +9,7 @@
 package com.epmet.dao;
 
 import com.epmet.commons.mybatis.dao.BaseDao;
+import com.epmet.dto.result.OperResouce;
 import com.epmet.entity.OperMenuEntity;
 import org.apache.ibatis.annotations.Mapper;
 import org.apache.ibatis.annotations.Param;
@@ -49,4 +50,8 @@ public interface OperMenuDao extends BaseDao<OperMenuEntity> {
      * @param pid  父菜单ID
      */
     List<OperMenuEntity> getListPid(String pid);
+
+    List<OperResouce> getOperResourcesByUserId(String operId);
+
+    List<OperResouce> getExamineResourceUrls();
 }

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/redis/OperMenuRedis.java

@@ -17,10 +17,13 @@
 
 package com.epmet.redis;
 
+import com.alibaba.fastjson.JSON;
+import com.alibaba.fastjson.TypeReference;
 import com.epmet.commons.tools.redis.RedisKeys;
 import com.epmet.commons.tools.redis.RedisUtils;
 import com.epmet.commons.tools.utils.HttpContextUtils;
 import com.epmet.dto.OperMenuDTO;
+import com.epmet.dto.result.OperResouce;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
@@ -71,4 +74,25 @@ public class OperMenuRedis {
         return (Set<String>)redisUtils.get(key);
     }
 
+    public List<OperResouce> getOperResourcesByUserId(String operId) {
+        String key = RedisKeys.operResourcesByUserId(operId);
+        String json = redisUtils.getString(key);
+        return JSON.parseObject(json, new TypeReference<List<OperResouce>>(){});
+    }
+
+    public void setOperResourcesByUserId(String operId, List<OperResouce> resouces) {
+        String key = RedisKeys.operResourcesByUserId(operId);
+        String jsonString = JSON.toJSONString(resouces);
+        redisUtils.setString(key, jsonString);
+    }
+
+    /**
+     * 运营端用户资源删除
+     * @param operId
+     * @param resouces
+     */
+    public void deleteOperResourcesByUserId(String operId) {
+        String key = RedisKeys.operResourcesByUserId(operId);
+        redisUtils.delete(key);
+    }
 }

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/service/OperMenuService.java

@@ -21,6 +21,7 @@ import com.epmet.commons.mybatis.service.BaseService;
 import com.epmet.commons.tools.page.PageData;
 import com.epmet.commons.tools.security.dto.TokenDto;
 import com.epmet.dto.OperMenuDTO;
+import com.epmet.dto.result.OperResouce;
 import com.epmet.entity.OperMenuEntity;
 
 import java.util.List;
@@ -141,4 +142,8 @@ public interface OperMenuService extends BaseService<OperMenuEntity> {
     List<OperMenuDTO> getListPid(String pid);
 
     void clearOperUserAccess(String app, String client, String userId);
+
+    Boolean hasOperPermission(String uri, String method, String loginUserId);
+
+    List<OperResouce> getExamineResourceUrls();
 }

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/service/impl/OperMenuServiceImpl.java

@@ -24,8 +24,11 @@ import com.epmet.commons.tools.constant.Constant;
 import com.epmet.commons.tools.constant.FieldConstant;
 import com.epmet.commons.tools.enums.SuperAdminEnum;
 import com.epmet.commons.tools.exception.ErrorCode;
+import com.epmet.commons.tools.exception.ExceptionUtils;
 import com.epmet.commons.tools.exception.RenException;
 import com.epmet.commons.tools.page.PageData;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
 import com.epmet.commons.tools.security.dto.TokenDto;
 import com.epmet.commons.tools.utils.ConvertUtils;
 import com.epmet.commons.tools.utils.HttpContextUtils;
@@ -34,6 +37,7 @@ import com.epmet.commons.tools.utils.TreeUtils;
 import com.epmet.dao.OperMenuDao;
 import com.epmet.dto.OperMenuDTO;
 import com.epmet.dto.OperUserDTO;
+import com.epmet.dto.result.OperResouce;
 import com.epmet.entity.OperMenuEntity;
 import com.epmet.enums.MenuTypeEnum;
 import com.epmet.feign.EpmetUserFeignClient;
@@ -48,6 +52,7 @@ import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
+import org.springframework.util.AntPathMatcher;
 
 import java.util.*;
 
@@ -70,6 +75,10 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
     private OperResourceService operResourceService;
     @Autowired
     private OperLanguageService operLanguageService;
+    @Autowired
+    private RedisUtils redisUtils;
+
+    private final AntPathMatcher antPathMatcher = new AntPathMatcher();
 
     @Override
     public PageData<OperMenuDTO> page(Map<String, Object> params) {
@@ -112,6 +121,13 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
         insert(entity);
         saveLanguage(entity.getId(), "name", entity.getName());
 
+        try {
+            redisUtils.delete(RedisKeys.getOperExamineResourceUrls());
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            logger.error("保存菜单配置异常:{}", msg);
+        }
+
         //保存菜单资源
         operResourceService.saveMenuResource(entity.getId(), entity.getName(), dto.getResourceList());
 
@@ -133,6 +149,21 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
         updateById(entity);
         saveLanguage(entity.getId(), "name", entity.getName());
 
+        try {
+            redisUtils.delete(RedisKeys.getOperExamineResourceUrls());
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            logger.error("修改菜单配置异常:{}", msg);
+        }
+
+        try {
+            redisUtils.deleteByPattern(RedisKeys.operResourcesBaseDir().concat("*"));
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            logger.error("修改菜单配置异常:{}", msg);
+        }
+
+
         //更新菜单资源
         operResourceService.saveMenuResource(entity.getId(), entity.getName(), dto.getResourceList());
 
@@ -150,6 +181,13 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
     @Override
     @Transactional(rollbackFor = Exception.class)
     public void delete(String id, TokenDto tokenDto) {
+        try {
+            redisUtils.delete(RedisKeys.getOperExamineResourceUrls());
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            logger.error("删除菜单配置异常:{}", msg);
+        }
+
         //逻辑删除
         baseDao.deleteBatchIds(Collections.singletonList(id));
         //删除角色菜单关系
@@ -242,6 +280,9 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
     public void clearOperUserAccess(String app, String client, String userId) {
         //清空当前用户，菜单导航、权限标识
         operMenuRedis.delete(userId, app, client);
+
+//        根据用户id删除用户资源列表，后期可以跟deleteAccess合并起来，先为烟台的安全检测做。
+        operMenuRedis.deleteOperResourcesByUserId(userId);
         logger.info(String.format("运营端用户退出系统%s,清空菜单、权限成功",userId));
     }
 
@@ -249,4 +290,44 @@ public class OperMenuServiceImpl extends BaseServiceImpl<OperMenuDao, OperMenuEn
         operLanguageService.saveOrUpdate("oper_menu", tableId, fieldName, fieldValue, HttpContextUtils.getLanguage());
     }
 
+    @Override
+    public Boolean hasOperPermission(String uri, String method, String operId) {
+        Result<OperUserDTO> operUserDTOResult = epmetUserFeignClient.info(operId);
+        if(!operUserDTOResult.success()||null==operUserDTOResult.getData()){
+            logger.error("查询运营人员信息失败：operId:{}", operId);
+            return false;
+        }
+
+        //系统管理员，拥有最高权限
+        if(operUserDTOResult.getData().getSuperAdmin() == SuperAdminEnum.YES.value()){
+            return true;
+        }
+
+        // 不是系统管理员再具体查询
+        List<OperResouce> resouces = operMenuRedis.getOperResourcesByUserId(operId);
+        if (resouces == null) {
+            resouces = baseDao.getOperResourcesByUserId(operId);
+            operMenuRedis.setOperResourcesByUserId(operId, resouces);
+        }
+
+        return pathMatcher(uri, method, resouces);
+    }
+
+    private boolean pathMatcher(String requestUri, String method, List<OperResouce> resources){
+        for (OperResouce resource : resources) {
+            String resourceUrl = resource.getResourceUrl();
+            String resourceMethod = resource.getResourceMethod();
+
+//            路径匹配 && http方法 匹配
+            if(antPathMatcher.match(resourceUrl, requestUri) && resourceMethod.equals(method)){
+                return true;
+            }
+        }
+        return false;
+    }
+
+    @Override
+    public List<OperResouce> getExamineResourceUrls() {
+        return baseDao.getExamineResourceUrls();
+    }
 }

epmet-module/oper-access/oper-access-server/src/main/java/com/epmet/service/impl/OperRoleServiceImpl.java

@@ -21,7 +21,10 @@ import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
 import com.baomidou.mybatisplus.core.metadata.IPage;
 import com.epmet.commons.mybatis.service.impl.BaseServiceImpl;
 import com.epmet.commons.tools.constant.FieldConstant;
+import com.epmet.commons.tools.exception.ExceptionUtils;
 import com.epmet.commons.tools.page.PageData;
+import com.epmet.commons.tools.redis.RedisKeys;
+import com.epmet.commons.tools.redis.RedisUtils;
 import com.epmet.commons.tools.utils.ConvertUtils;
 import com.epmet.dao.OperRoleDao;
 import com.epmet.dto.OperRoleDTO;
@@ -30,6 +33,7 @@ import com.epmet.redis.OperRoleRedis;
 import com.epmet.service.OperRoleMenuService;
 import com.epmet.service.OperRoleService;
 import com.epmet.service.OperRoleUserService;
+import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
@@ -46,6 +50,7 @@ import java.util.Map;
  * @since v1.0.0 2020-03-18
  */
 @Service
+@Slf4j
 public class OperRoleServiceImpl extends BaseServiceImpl<OperRoleDao, OperRoleEntity> implements OperRoleService {
 
     @Autowired
@@ -55,6 +60,9 @@ public class OperRoleServiceImpl extends BaseServiceImpl<OperRoleDao, OperRoleEn
     @Autowired
     private OperRoleUserService operRoleUserService;
 
+    @Autowired
+    private RedisUtils redisUtils;
+
     @Override
     public PageData<OperRoleDTO> page(Map<String, Object> params) {
         IPage<OperRoleEntity> page = baseDao.selectPage(
@@ -93,6 +101,13 @@ public class OperRoleServiceImpl extends BaseServiceImpl<OperRoleDao, OperRoleEn
         insert(entity);
         //保存角色菜单关系
         OperRoleMenuService.saveOrUpdate(entity.getId(), dto.getMenuIdList());
+
+        try {
+            redisUtils.deleteByPattern(RedisKeys.operResourcesBaseDir().concat("*"));
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            log.error("新增运营角色信息配置异常:{}", msg);
+        }
     }
 
     @Override
@@ -102,6 +117,13 @@ public class OperRoleServiceImpl extends BaseServiceImpl<OperRoleDao, OperRoleEn
         updateById(entity);
         //保存角色菜单关系
         OperRoleMenuService.saveOrUpdate(entity.getId(), dto.getMenuIdList());
+
+        try {
+            redisUtils.deleteByPattern(RedisKeys.operResourcesBaseDir().concat("*"));
+        } catch (Exception e) {
+            String msg = ExceptionUtils.getErrorStackTrace(e);
+            log.error("修改运营角色信息配置异常:{}", msg);
+        }
     }
 
     @Override
@@ -113,6 +135,7 @@ public class OperRoleServiceImpl extends BaseServiceImpl<OperRoleDao, OperRoleEn
         OperRoleMenuService.deleteByRoleIds(ids);
 
         operRoleUserService.deleteByRoleIds(ids);
+
     }
 
 }

epmet-module/oper-access/oper-access-server/src/main/resources/mapper/OperMenuDao.xml

@@ -26,9 +26,9 @@
     <select id="getUserMenuList" resultType="com.epmet.entity.OperMenuEntity">
         select t3.*, (select lang.field_value from oper_language lang where lang.table_name='oper_menu' and lang.field_name='name'
         and lang.table_id=t3.id and lang.language=#{language}) as name from oper_role_user t1
-        left join oper_role_menu t2 on t1.role_id = t2.role_id
-        left join oper_menu t3 on t2.menu_id = t3.id
-        where t1.user_id = #{userId} and t3.del_flag = 0
+        left join oper_role_menu t2 on (t1.role_id = t2.role_id AND t2.del_flag = 0)
+        left join oper_menu t3 on (t2.menu_id = t3.id)
+        where t1.user_id = #{userId} AND t1.del_flag = 0 and t3.del_flag = 0 and t2.DEL_FLAG = 0
         <if test="type != null">
             and t3.type = #{type}
         </if>
@@ -39,4 +39,22 @@
         select * from oper_menu where del_flag = 0 and pid = #{value}
     </select>
 
+    <select id="getOperResourcesByUserId" resultType="com.epmet.dto.result.OperResouce">
+        select ru.user_id
+             , res.resource_url
+             , res.resource_method
+        from oper_role_user ru
+                     inner join oper_role_menu orm on (ru.role_id = orm.role_id and orm.DEL_FLAG = 0)
+                     inner join oper_resource res on (orm.menu_id = res.resource_code and res.DEL_FLAG=0)
+        where ru.user_id = #{operId}
+          and ru.DEL_FLAG = 0
+    </select>
+
+    <!--需要验证的资源列表(配置给了菜单，并且没有被删除的资源列表)-->
+    <select id="getExamineResourceUrls" resultType="com.epmet.dto.result.OperResouce">
+        select distinct res.resource_url, res.resource_method
+        from oper_menu menu
+                     inner join oper_resource res on (menu.id = res.resource_code and res.DEL_FLAG = 0)
+        where menu.DEL_FLAG = 0
+    </select>
 </mapper>

epmet-module/oper-access/oper-access-server/src/main/resources/mapper/OperRoleMenuDao.xml

@@ -4,7 +4,7 @@
 <mapper namespace="com.epmet.dao.OperRoleMenuDao">
 
     <select id="getMenuIdList" resultType="java.lang.String">
-        select menu_id from oper_role_menu where role_id = #{value}
+        select menu_id from oper_role_menu where del_flag = 0 AND role_id = #{value}
     </select>
 
     <update id="deleteByRoleIds">