| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208 |
- # coding=utf-8
- import traceback
- import json
- import datetime
- from django.db.models import Q
- from rest_framework.decorators import action
- from django.db import transaction
- from rest_framework.views import APIView
- from rest_framework.serializers import ValidationError
- from utils.permission import isLogin
- from rest_framework_jwt.views import ObtainJSONWebToken, RefreshJSONWebToken
- from utils import response_error, response_ok
- from django.contrib.auth import get_user_model
- User = get_user_model()
- from apps.account.serializers import JWTSerializer, EmployeeSerializer, \
- WechatLoginSerializer, WechatBindSerializer
- from utils.custom_modelviewset import CustomModelViewSet
- from apps.account.filters import UserFilter
- from apps.log.models import BizLog
- from utils.exceptions import CustomError
- from apps.account.models import CustomerWechat
- from utils.wx.WXBizDataCrypt import WXBizDataCrypt
- class LoginView(ObtainJSONWebToken):
- serializer_class = JWTSerializer
- def post(self, request, *args, **kwargs):
- try:
- ser = self.serializer_class(data=request.data)
- ser.request = request
- if ser.is_valid(raise_exception=True):
- return response_ok(ser.validated_data)
- except ValidationError as e:
- return response_error(e.detail['error'][0])
- except CustomError as e:
- return response_error(str(e))
- class RefreshTokenView(RefreshJSONWebToken):
- def post(self, request, *args, **kwargs):
- try:
- ser = self.serializer_class(data=request.data)
- if ser.is_valid(raise_exception=True):
- return response_ok({'token': ser.validated_data['token'], 'error':False})
- except ValidationError as e:
- return response_ok({'error':True})
- except CustomError as e:
- return response_error(str(e))
- class ChangePassword(APIView):
- permission_classes = [isLogin, ]
- def post(self, request, *args, **kwargs):
- id = request.GET.get('id')
- data = json.loads(request.body)
- try:
- with transaction.atomic():
- user = User.objects.filter(id=id).first()
- if not user:
- raise CustomError(u'用户信息错误,请刷新重试!')
- user.change_password(data['new_password'], data['confirm_password'], data['old_password'])
- BizLog.objects.addnew(request.user, BizLog.UPDATE, u"修改密码[%s],id=%d" % (user.username, user.id))
- except CustomError as e:
- return response_error(str(e))
- except Exception as e:
- traceback.print_exc()
- return response_error(u'保存失败!')
- return response_ok()
- class EmployeeViewSet(CustomModelViewSet):
- permission_classes = [isLogin, ]
- queryset = User.objects.filter().exclude(type=User.CUSTOMER)
- serializer_class = EmployeeSerializer
- def filter_queryset(self, queryset):
- queryset = queryset.filter()
- user = self.request.user
- queryset = queryset.filter(
- Q(id=user.id) |
- Q(create_user=user)
- )
- f = UserFilter(self.request.GET, queryset=queryset)
- return f.qs
- def perform_create(self, serializer):
- super(EmployeeViewSet, self).perform_create(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'添加用户[%s],id=%d' % (instance.name, instance.id), validated_data)
- def perform_update(self, serializer):
- super(EmployeeViewSet, self).perform_update(serializer)
- instance = serializer.instance
- validated_data = serializer.validated_data
- BizLog.objects.addnew(self.request.user, BizLog.UPDATE,
- u'修改用户[%s],id=%d' % (instance.name, instance.id), validated_data)
- @action(methods=['post'], detail=True)
- def manager(self, request, pk):
- # 管理员工
- if not request.user.is_superuser:
- return response_error('无权操作')
- data = json.loads(request.POST.get('users'))
- try:
- instance = self.get_object()
- with transaction.atomic():
- instance.manager_users = ','.join(data)
- instance.save()
- BizLog.objects.addnew(self.request.user, BizLog.INSERT,
- u'设置[%s]管理员工,id=%d' % (instance.name, instance.id), data)
- return response_ok()
- except Exception as e:
- traceback.print_exc()
- return response_error(u'保存失败')
- class SetUserInfoView(APIView):
- permission_classes = [isLogin, ]
- def post(self, request, *args, **kwargs):
- appid = request.POST.get('appid')
- openid = request.POST.get('openid')
- encryptedData = request.POST.get('encryptedData')
- iv = request.POST.get('iv')
- customer_wechat = CustomerWechat.objects.filter(openid=openid, wechat_app__authorizer_appid=appid).first()
- if not customer_wechat:
- raise CustomError(u'未找到相应的微信客户!')
- employee = self.request.user
- if customer_wechat.customer and customer_wechat.customer != employee:
- # 用户用手机号、密码登录后,同步微信信息时,customer可能会不一样
- #张三、李四都是注册、同步用户。 张三的账号,在李四小程序上登录,同步的李四微信信息,可能会两个用户不同。
- raise CustomError(u'该微信已同步其他客户!')
- if not customer_wechat.customer:
- customer_wechat.customer = employee
- customer_wechat.save()
- pc = WXBizDataCrypt(appid, customer_wechat.session_key)
- result = pc.decrypt(encryptedData, iv)
- with transaction.atomic():
- if employee.name == employee.tel:
- employee.name = result['nickName']
- employee.gender = result['gender']
- employee.face = result['avatarUrl']
- employee.save()
- return response_ok({'face':employee.face,'name':employee.name})
- class WxLoginView(APIView):
- serializer_class = WechatLoginSerializer
- def post(self, request, *args, **kwargs):
- ser = self.serializer_class(data=request.data)
- if ser.is_valid():
- return response_ok(ser.validated_data)
- else:
- return response_error('参数错误')
- class WxBindView(APIView):
- serializer_class = WechatBindSerializer
- def post(self, request, *args, **kwargs):
- ser = self.serializer_class(data=request.data)
- if ser.is_valid():
- return response_ok(ser.validated_data)
- else:
- return response_error('参数错误')
- class UserDictView(APIView):
- def get(self, request):
- seller = request.GET.get('seller')
- data = []
- queryset = User.objects.filter(is_active=True, id=seller, type=User.SELLER)
- for row in queryset:
- item = {
- 'id': row.id,
- 'name': '{}-{}'.format(row.name, row.username),
- }
- data.append(item)
- return response_ok(data)
- class UserTreeView(APIView):
- permission_classes = [isLogin, ]
- def get(self, request):
- if not request.user.is_superuser:
- return response_error('无权操作')
- id = request.GET.get('id')
- agent_data = []
- user = User.objects.filter(id=id).first()
- manager_users = user.manager_users and user.manager_users.split(',') or [] # 选择用户
- companys = User.objects.filter(is_active=True, is_superuser=False, type=User.SELLER)
- for company in companys:
- checked = False
- if str(company.id) in manager_users:
- checked = True
- agent_item = {
- 'title': company.name,
- 'id': company.id,
- 'checked': checked,
- }
- agent_data.append(agent_item)
- return response_ok(agent_data)
|
