xiongzhu
/
raex_back


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171
							package com.izouma.nineth.service.sms;

import com.alibaba.fastjson.JSON;
import com.alibaba.fastjson.JSONObject;
import com.aliyuncs.CommonRequest;
import com.aliyuncs.CommonResponse;
import com.aliyuncs.DefaultAcsClient;
import com.aliyuncs.IAcsClient;
import com.aliyuncs.http.MethodType;
import com.aliyuncs.profile.DefaultProfile;
import com.izouma.nineth.config.Constants;
import com.izouma.nineth.domain.SmsRecord;
import com.izouma.nineth.exception.BusinessException;
import com.izouma.nineth.repo.SmsRecordRepo;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.lang3.RandomStringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.scheduling.annotation.Scheduled;
import org.springframework.stereotype.Service;

import java.time.Duration;
import java.time.LocalDateTime;
import java.time.ZoneOffset;
import java.util.Date;
import java.util.HashMap;

@Service
@Slf4j
public class AliSmsService implements SmsService {
    @Value("${aliyun.access-key-id}")
    private String accessKeyId;
    @Value("${aliyun.access-key-secret}")
    private String accessKeySecret;
    @Value("${aliyun.sms-sign}")
    private String smsSign;
    @Value("${aliyun.sms-code}")
    private String smsCode;
    @Value("${aliyun.sell-out-code}")
    private String sellOutCode;

    @Value("${aliyun.saas-sell-out-code}")
    private String saasSellOutCode;

    @Autowired
    private SmsRecordRepo                 smsRecordRepo;
    @Autowired
    private RedisTemplate<String, Object> redisTemplate;

    @Override
    public String sendVerify(String phone) {
        if (smsSign.equals("身份验证")) {
            accessKeyId = "LTAI5tEL3wr9XeiyseqKLrEK";
            accessKeySecret = "I9JzOThjzeJMcpVf6melaMY3nt7ucU";
        }
        smsRecordRepo.findLastByPhoneAndExpiresAtAfterAndExpiredFalse(phone, LocalDateTime.now()).ifPresent(record -> {
            if (record.getCreatedAt().plusMinutes(1L).isAfter(LocalDateTime.now())) {
                long sec = record.getCreatedAt().plusMinutes(1L).toInstant(ZoneOffset.UTC)
                        .getEpochSecond() - LocalDateTime.now().toInstant(ZoneOffset.UTC).getEpochSecond() + 1;
                throw new BusinessException("请" + sec + "秒后再试");
            }
        });

        String code = RandomStringUtils.randomNumeric(4);
        DefaultProfile profile = DefaultProfile.getProfile("cn-hangzhou", accessKeyId, accessKeySecret);
        IAcsClient client = new DefaultAcsClient(profile);

        CommonRequest request = new CommonRequest();
        request.setMethod(MethodType.POST);
        request.setDomain("dysmsapi.aliyuncs.com");
        request.setVersion("2017-05-25");
        request.setAction("SendSms");
        request.putQueryParameter("PhoneNumbers", phone);
        request.putQueryParameter("SignName", smsSign);
        request.putQueryParameter("TemplateCode", smsCode);
        if (smsSign.equals("身份验证")) {
            request.putQueryParameter("TemplateParam", "{\"code\":\"" + code + "\",\"product\":\"用户\"}");
        } else {
            request.putQueryParameter("TemplateParam", "{\"code\":\"" + code + "\"}");
        }
        try {
            CommonResponse response = client.getCommonResponse(request);
            if (response.getHttpStatus() != 200) {
                throw new BusinessException("发送失败，请稍后再试", response.getHttpStatus() + "," + response.getData());
            }
            log.info("{} send sms response {}", phone, response.getData());
            JSONObject jsonObject = JSON.parseObject(response.getData());
            if (!"ok".equalsIgnoreCase(jsonObject.getString("Code"))) {
                throw new BusinessException("发送失败，请稍后再试", jsonObject.getString("Message"));
            }
            smsRecordRepo.expire(phone);
            String sessionId = RandomStringUtils.randomAlphabetic(10);
            smsRecordRepo.save(SmsRecord.builder()
                    .sessionId(sessionId)
                    .phone(phone)
                    .code(code)
                    .expiresAt(LocalDateTime.now().plusMinutes(5))
                    .expired(false)
                    .build());
            return sessionId;
        } catch (Exception e) {
            e.printStackTrace();
            throw new BusinessException("发送失败，请稍后再试", e.getMessage());
        }
    }

    @Override
    public String verify(String phone, String code) {
        if (Boolean.FALSE.equals(redisTemplate.opsForValue()
                .setIfAbsent("verify::" + phone, 1, Duration.ofSeconds(10)))) {
            throw new BusinessException("频繁操作，请稍后再试");
        }
        SmsRecord smsRecord = smsRecordRepo.findLastByPhoneAndExpiresAtAfterAndExpiredFalse(phone, LocalDateTime.now())
                .orElseThrow(new BusinessException("验证码错误"));
        if (!smsRecord.getCode().equalsIgnoreCase(code)) {
            throw new BusinessException("验证码错误");
        }
        smsRecord.setExpired(true);
        smsRecordRepo.save(smsRecord);

        return Jwts.builder()
                .setClaims(new HashMap<>())
                .setSubject(phone)
                .setIssuedAt(new Date())
                .setExpiration(new Date(new Date().getTime() + 10 * 60 * 1000)) //10min
                .signWith(SignatureAlgorithm.HS512, Constants.SMS_TOKEN_SECRET)
                .compact();
    }

    @Override
    public void sellOut(String phone, Long companyId) {
        if (companyId == null) companyId = 1L;
        DefaultProfile profile = DefaultProfile.getProfile("cn-hangzhou", accessKeyId, accessKeySecret);
        IAcsClient client = new DefaultAcsClient(profile);

        CommonRequest request = new CommonRequest();
        request.setMethod(MethodType.POST);
        request.setDomain("dysmsapi.aliyuncs.com");
        request.setVersion("2017-05-25");
        request.setAction("SendSms");
        request.putQueryParameter("PhoneNumbers", phone);
        request.putQueryParameter("SignName", smsSign);
        request.putQueryParameter("TemplateCode", companyId == 1L ? sellOutCode : saasSellOutCode);
        if (companyId != 1L) {
            request.putQueryParameter("TemplateParam", "{\"url\":\"saas/" + companyId + "/home\"}");
        }
        try {
            CommonResponse response = client.getCommonResponse(request);
            if (response.getHttpStatus() != 200) {
                log.error("发送失败，" + response.getHttpStatus() + "," + response.getData());
            }
            log.info("{} send sms response {}", phone, response.getData());
            JSONObject jsonObject = JSON.parseObject(response.getData());
            if (!"ok".equalsIgnoreCase(jsonObject.getString("Code"))) {
                log.error("发送失败，" + jsonObject.getString("Message"));
            }

        } catch (Exception e) {
            e.printStackTrace();
            log.error("发送失败，" + e.getMessage());
        }
    }

    @Scheduled(cron = "0 0 3 * * ?")
    void deleteExpired() {
        smsRecordRepo.deleteByCreatedAtBefore(LocalDateTime.now().minusDays(2));
    }
}