Inicio Explorar Axuda
Iniciar sesión
maoming
/
python-fastapi-mm-zhcs-yj-api
3
1
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 3f2c793eba
Ramas Etiquetas
python-fasta...
/
common
/
enc
/
sys_user_data.py

sys_user_data.py 2.6 KB
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. #!/usr/bin/env python3
    2. 

  2. # -*- coding: utf-8 -*-
    3. 

  3. 

  4. from . import mpfun
    5. 

  5. from models import *
    6. 

  6. from sqlalchemy.orm import Session
    7. 

  7. 

  8. # 系统用户表
    9. 

  9. 

  10. # 加密和HMAC签名
    11. 

  11. def sign_row(db: Session, row: SysUser) -> None:
    12. 

  12.     if row.sign != '':
    13. 

  13.         return
    14. 

  14.     
    15. 

  15.     user_id = str(row.user_id) # 用户ID
    16. 

  16.     user_name = mpfun.enc_data(row.user_name) # 用户账号
    17. 

  17.     password = mpfun.enc_data(row.password) # 密码
    18. 

  18.     nick_name = mpfun.base64_data(row.nick_name) # 用户昵称
    19. 

  19.     dept_id = str(row.dept_id) # 部门ID
    20. 

  20.     dept_name = mpfun.base64_data(row.dept_name) # 部门名称
    21. 

  21.     email = mpfun.enc_data(row.email) # 电子邮箱
    22. 

  22.     phonenumber = mpfun.enc_data(row.phonenumber) # 手机号码
    23. 

  23.     status = str(row.status) # 用户状态
    24. 

  24.     del_flag = row.del_flag # 是否已删除
    25. 

  25.     yzy_account = mpfun.enc_data(row.yzy_account) # 粤政易账号
    26. 

  26. 

  27.     sign_data = ",".join([user_id, user_name, password, nick_name, dept_id, dept_name, email, phonenumber, status, del_flag, yzy_account])
    28. 

  28.     sign_hmac = mpfun.sign_data(sign_data)
    29. 

  29.     # print('sign_tbl_user sign_data:', sign_data)
    30. 

  30.     # print('sign_tbl_user sign_hmac:', sign_hmac)
    31. 

  31. 

  32.     row.user_name = user_name
    33. 

  33.     row.password = password
    34. 

  34.     row.email = email
    35. 

  35.     row.phonenumber = phonenumber
    36. 

  36.     row.yzy_account = yzy_account
    37. 

  37.     row.sign = sign_hmac
    38. 

  38.     
    39. 

  39.     db.commit()
    40. 

  40. 

  41. # 比较字段合并字符串是否和MAC值匹配上,调用密码服务器[验证HMAC]接口
    42. 

  42. def sign_valid_row(row: SysUser) -> bool:
    43. 

  43.     if row.sign == '':
    44. 

  44.         return True
    45. 

  45. 

  46.     # 关键字段合并字符串
    47. 

  47.     sign_data = get_sign_str(row)
    48. 

  48.     # print('sys_user sign_data:', sign_data)
    49. 

  49.     
    50. 

  50.     # 原HMACSM3数值
    51. 

  51.     sign_hmac = row.sign
    52. 

  52.     # print('sign_hmac:', sign_hmac)
    53. 

  53. 

  54.     return mpfun.hmac_verify(sign_data, sign_hmac)
    55. 

  55. 

  56. # 生成待签名的字符串
    57. 

  57. def get_sign_str(row: SysUser) -> str:
    58. 

  58.     user_id = str(row.user_id) # 用户ID
    59. 

  59.     user_name = row.user_name # 用户账号
    60. 

  60.     password = row.password # 密码
    61. 

  61.     nick_name = mpfun.base64_data(row.nick_name) # 用户昵称
    62. 

  62.     dept_id = str(row.dept_id) # 部门ID
    63. 

  63.     dept_name = mpfun.base64_data(row.dept_name) # 部门名称
    64. 

  64.     email = row.email # 电子邮箱
    65. 

  65.     phonenumber = row.phonenumber # 手机号码
    66. 

  66.     status = str(row.status) # 用户状态
    67. 

  67.     del_flag = row.del_flag # 是否已删除
    68. 

  68.     yzy_account = row.yzy_account # 粤政易账号
    69. 

  69. 

  70.     # 关键字段合并字符串
    71. 

  71.     sign_data = ",".join([user_id, user_name, password, nick_name, dept_id, dept_name, email, phonenumber, status, del_flag, yzy_account])
    72. 

  72.     return sign_data
    73. 

  73. 

  74. # 生成HAMC签名值
    75. 

  75. def get_sign_hmac(row: SysUser) -> str:
    76. 

  76.     sign_data = get_sign_str(row)
    77. 

  77.     return mpfun.sign_data(sign_data) 
    78.