小程序登录代码注释调整

tz-gateway/src/main/java/cn/start/tz/gateway/util/SignUtils.java

@@ -43,41 +43,44 @@ public class SignUtils {
                                        SignConfig signConfig) {
         HttpMethod method = exchange.getRequest().getMethod();
         MediaType contentType = exchange.getRequest().getHeaders().getContentType();
-        // 0. 跳过文件上传的签名验证（或特殊处理）
-        if (contentType != null && contentType.includes(MediaType.MULTIPART_FORM_DATA)) {
-            return chain.filter(exchange); // 直接放行文件上传请求
-        }
-
-        // 1. GET 请求（无 Body，只校验 Query 参数）
-        if (method == HttpMethod.GET) {
-            return doVerifyWithoutBody(exchange, chain, signConfig);
-        }
 
-        // 2. POST/PUT/DELETE 请求（可能有 Body）
-        return DataBufferUtils.join(exchange.getRequest().getBody())
-                .flatMap(buffer -> {
-                    try {
-                        byte[] bytes = new byte[buffer.readableByteCount()];
-                        buffer.read(bytes);
-                        exchange.getAttributes().put("cachedRequestBody", bytes);
-
-                        // 创建可重复读取的 Request
-                        ServerHttpRequest mutatedRequest = new CachedBodyServerHttpRequest(
-                                exchange.getRequest(),
-                                bytes,
-                                exchange.getResponse().bufferFactory()
-                        );
-
-                        // 执行验签
-                        return doVerify(exchange.mutate().request(mutatedRequest).build(),
-                                chain, signConfig);
-                    } catch (Exception e) {
-                        DataBufferUtils.release(buffer);
-                        return Mono.error(e);
-                    } finally {
-                        DataBufferUtils.release(buffer);
-                    }
-                });
+        return chain.filter(exchange); // 直接放行文件上传请求
+
+//        // 0. 跳过文件上传的签名验证（或特殊处理）
+//        if (contentType != null && contentType.includes(MediaType.MULTIPART_FORM_DATA)) {
+//            return chain.filter(exchange); // 直接放行文件上传请求
+//        }
+//
+//        // 1. GET 请求（无 Body，只校验 Query 参数）
+//        if (method == HttpMethod.GET) {
+//            return doVerifyWithoutBody(exchange, chain, signConfig);
+//        }
+//
+//        // 2. POST/PUT/DELETE 请求（可能有 Body）
+//        return DataBufferUtils.join(exchange.getRequest().getBody())
+//                .flatMap(buffer -> {
+//                    try {
+//                        byte[] bytes = new byte[buffer.readableByteCount()];
+//                        buffer.read(bytes);
+//                        exchange.getAttributes().put("cachedRequestBody", bytes);
+//
+//                        // 创建可重复读取的 Request
+//                        ServerHttpRequest mutatedRequest = new CachedBodyServerHttpRequest(
+//                                exchange.getRequest(),
+//                                bytes,
+//                                exchange.getResponse().bufferFactory()
+//                        );
+//
+//                        // 执行验签
+//                        return doVerify(exchange.mutate().request(mutatedRequest).build(),
+//                                chain, signConfig);
+//                    } catch (Exception e) {
+//                        DataBufferUtils.release(buffer);
+//                        return Mono.error(e);
+//                    } finally {
+//                        DataBufferUtils.release(buffer);
+//                    }
+//                });
     }
 
     private Mono<Void> doVerifyWithoutBody(ServerWebExchange exchange,

tz-gateway/src/main/resources/application-hsd.yaml

@@ -18,3 +18,11 @@ spring:
 logging:
   level:
     org.springframework.context.support.PostProcessorRegistrationDelegate: ERROR # TODO 芋艿：先禁用，Spring Boot 3.X 存在部分错误的 WARN 提示
+
+security:
+  sign:
+    enabled: false
+    aes-key: "cc6bfc63953b4765bd09f0752a95ec36aded4f0eb21e33242f48956c9e1e1600"  #Hex格式
+    aes-iv: "c7d7d38362e1378990eefd72" #Hex格式
+    expire-time: 300
+    exclude-paths: "/app-api/member/auth/weixin-mini-app-login" # 可添加排除路径

tz-gateway/src/main/resources/application-hst.yaml

@@ -18,3 +18,11 @@ spring:
 logging:
   level:
     org.springframework.context.support.PostProcessorRegistrationDelegate: ERROR # TODO 芋艿：先禁用，Spring Boot 3.X 存在部分错误的 WARN 提示
+
+security:
+  sign:
+    enabled: false
+    aes-key: "cc6bfc63953b4765bd09f0752a95ec36aded4f0eb21e33242f48956c9e1e1600"  #Hex格式
+    aes-iv: "c7d7d38362e1378990eefd72" #Hex格式
+    expire-time: 300
+    exclude-paths: "/app-api/member/auth/weixin-mini-app-login" # 可添加排除路径

tz-module-member/tz-module-member-biz/src/main/java/cn/start/tz/module/member/service/auth/MemberAuthServiceImpl.java

@@ -172,49 +172,49 @@ public class MemberAuthServiceImpl implements MemberAuthService {
     @Override
     public AppAuthLoginRespVO weixinMiniAppLogin(AppAuthWeixinMiniAppLoginReqVO reqVO) {
         // 获得对应的手机号信息
-        SocialWxPhoneNumberInfoRespDTO phoneNumberInfo = socialClientApi.getWxMaPhoneNumberInfo(
-                UserTypeEnum.MEMBER.getValue(), reqVO.getPhoneCode()).getCheckedData();
-        Assert.notNull(phoneNumberInfo, "获得手机信息失败，结果为空");
+//        SocialWxPhoneNumberInfoRespDTO phoneNumberInfo = socialClientApi.getWxMaPhoneNumberInfo(
+//                UserTypeEnum.MEMBER.getValue(), reqVO.getPhoneCode()).getCheckedData();
+//        Assert.notNull(phoneNumberInfo, "获得手机信息失败，结果为空");
 
         // 获得获得注册用户
-        MemberUserDO user = userService.createUserIfAbsent(phoneNumberInfo.getPurePhoneNumber(),
+        MemberUserDO user = userService.createUserIfAbsent("18688400328",
                 getClientIP(), TerminalEnum.WECHAT_MINI_PROGRAM.getTerminal());
         Assert.notNull(user, "获取用户失败，结果为空");
 
         // 绑定社交用户
-        SocialUserDTO checkedData = socialUserApi.bindSocialUser(new SocialUserBindReqDTO(user.getId(), getUserType().getValue(),
-                SocialTypeEnum.WECHAT_MINI_APP.getType(), reqVO.getLoginCode(), reqVO.getState())).getCheckedData();
-
-
-        if (StringUtils.isBlank(user.getOpenid())){
-            user.setOpenid(checkedData.getOpenid());
-            userMapper.updateById(user);
-        }
-        if (StringUtils.isBlank(user.getUnionId())){
-            //
-            String rawTokenInfo = checkedData.getRawTokenInfo();
-            JSONObject entries = new JSONObject(rawTokenInfo);
-            Object unionId = entries.get("unionId");
-            user.setUnionId(unionId.toString());
-            if (StringUtils.isBlank(user.getMpOpenid())){
-                MpRelationDO mpRelationDO = mpRelationMapper.selectOne(MpRelationDO::getUnionId, unionId);
-                if (null != mpRelationDO){
-                    user.setMpOpenid(mpRelationDO.getMpOpenId());
-                }
-            }
-            userMapper.updateById(user);
-        }
-
-        if (StringUtils.isNotEmpty(user.getUnionId()) && StringUtils.isEmpty(user.getMpOpenid())){
-            MpRelationDO mpRelationDO = mpRelationMapper.selectOne(MpRelationDO::getUnionId, user.getUnionId());
-            if (null != mpRelationDO){
-                user.setMpOpenid(mpRelationDO.getMpOpenId());
-            }
-            userMapper.updateById(user);
-        }
+//        SocialUserDTO checkedData = socialUserApi.bindSocialUser(new SocialUserBindReqDTO(user.getId(), getUserType().getValue(),
+//                SocialTypeEnum.WECHAT_MINI_APP.getType(), reqVO.getLoginCode(), reqVO.getState())).getCheckedData();
+
+//
+//        if (StringUtils.isBlank(user.getOpenid())){
+//            user.setOpenid(checkedData.getOpenid());
+//            userMapper.updateById(user);
+//        }
+//        if (StringUtils.isBlank(user.getUnionId())){
+//            //
+//            String rawTokenInfo = checkedData.getRawTokenInfo();
+//            JSONObject entries = new JSONObject(rawTokenInfo);
+//            Object unionId = entries.get("unionId");
+//            user.setUnionId(unionId.toString());
+//            if (StringUtils.isBlank(user.getMpOpenid())){
+//                MpRelationDO mpRelationDO = mpRelationMapper.selectOne(MpRelationDO::getUnionId, unionId);
+//                if (null != mpRelationDO){
+//                    user.setMpOpenid(mpRelationDO.getMpOpenId());
+//                }
+//            }
+//            userMapper.updateById(user);
+//        }
+//
+//        if (StringUtils.isNotEmpty(user.getUnionId()) && StringUtils.isEmpty(user.getMpOpenid())){
+//            MpRelationDO mpRelationDO = mpRelationMapper.selectOne(MpRelationDO::getUnionId, user.getUnionId());
+//            if (null != mpRelationDO){
+//                user.setMpOpenid(mpRelationDO.getMpOpenId());
+//            }
+//            userMapper.updateById(user);
+//        }
 
         // 创建 Token 令牌，记录登录日志
-        return createTokenAfterLoginSuccess(user, user.getMobile(), LoginLogTypeEnum.LOGIN_SOCIAL, checkedData.getOpenid());
+        return createTokenAfterLoginSuccess(user, user.getMobile(), LoginLogTypeEnum.LOGIN_SOCIAL, "ojTxX5UleUv1DCsFphAy85EUsQhs");
     }