fix: modify tenant API

Author: lu-yg

base/src/main/java/com/tinyengine/it/common/exception/ExceptionEnum.java

@@ -312,10 +312,16 @@ public enum ExceptionEnum implements IBaseError {
      * Cm 337 exception enum.
      */
     CM337("CM337", "组织不存在"),
+
     /**
      * Cm 338 exception enum.
      */
-    CM338("CM338", "用户不存在，请重新注册");
+    CM338("CM338", "用户不存在，请重新注册"),
+
+    /**
+     * Cm 339 exception enum.
+     */
+    CM339("CM338", "token检验失败，请重新登录");
 
     /**
      * 错误码

base/src/main/java/com/tinyengine/it/login/config/SSOInterceptor.java

@@ -12,6 +12,8 @@
 
 package com.tinyengine.it.login.config;
 
+import com.tinyengine.it.common.exception.ExceptionEnum;
+import com.tinyengine.it.common.exception.ServiceException;
 import com.tinyengine.it.login.utils.JwtUtil;
 import com.tinyengine.it.login.config.context.DefaultLoginUserContext;
 import com.tinyengine.it.login.model.UserInfo;
@@ -35,18 +37,15 @@ public class SSOInterceptor implements HandlerInterceptor {
     @Autowired
     private JwtUtil jwtUtil;
 
-    private static final String SSO_SERVER = System.getenv("SSO_SERVER");
-
     @Override
     public boolean preHandle(HttpServletRequest request,
         HttpServletResponse response, Object handler) throws Exception {
 
         String authorization = request.getHeader("Authorization");
         // 如果没有token，重定向到登录页
         if (authorization == null || authorization.isEmpty()) {
-            log.info("No token, redirecting to: {}", SSO_SERVER);
-            response.sendRedirect(SSO_SERVER);
-            return false;
+            log.info("No token");
+            throw new ServiceException(ExceptionEnum.CM336.getResultCode(), ExceptionEnum.CM336.getResultMsg());
         }
         String token = jwtUtil.getTokenFromRequest(authorization);
         String requestURI = request.getRequestURI();
@@ -57,8 +56,7 @@ public boolean preHandle(HttpServletRequest request,
             // 验证token
             if (!jwtUtil.validateToken(token)) {
                 log.warn("Token validation failed");
-                response.sendRedirect(SSO_SERVER);
-                return false;
+                throw new ServiceException(ExceptionEnum.CM339.getResultCode(), ExceptionEnum.CM339.getResultMsg());
             }
 
             // 从token中获取用户信息
@@ -72,8 +70,7 @@ public boolean preHandle(HttpServletRequest request,
             // 检查必需的用户信息
             if (username == null || username.isEmpty() || userId == null) {
                 log.warn("User information is incomplete - username: {}, userId: {}", username, userId);
-                response.sendRedirect(SSO_SERVER);
-                return false;
+                throw new ServiceException(ExceptionEnum.CM339.getResultCode(), ExceptionEnum.CM339.getResultMsg());
             }
 
             // 存储用户信息到LoginUserContext
@@ -90,9 +87,8 @@ public boolean preHandle(HttpServletRequest request,
 
         } catch (Exception e) {
             log.error("Token validation exception: {}", e.getMessage(), e);
-            response.sendRedirect(SSO_SERVER);
             DefaultLoginUserContext.clear();
-            return false;
+            throw new ServiceException(ExceptionEnum.CM339.getResultCode(), ExceptionEnum.CM339.getResultMsg());
         }
     }
 

base/src/main/java/com/tinyengine/it/login/config/context/DefaultLoginUserContext.java

@@ -30,8 +30,13 @@ public String getTenantId() {
         if (tenantList == null || tenantList.isEmpty()) {
             return DEFAULT_TENANT;
         }
+        for (Tenant tenant : tenantList) {
+            if (tenant.getIsInUse()) {
+                return tenant.getId();
+            }
+        }
 
-        return tenantList.get(0).getId();
+        return DEFAULT_TENANT;
     }
 
     @Override

base/src/main/java/com/tinyengine/it/login/controller/LoginController.java

@@ -239,18 +239,27 @@ public Result<ValidationResult> validateToken(@RequestParam String token) {
     @GetMapping("/user/tenant")
     public Result<SSOTicket> setTenant(@RequestParam Integer tenantId) {
         List<Tenant> tenants = loginUserContext.getTenants();
+        if (tenantId == null) {
+            return Result.failed(ExceptionEnum.CM320);
+        }
         if (tenants == null || tenants.isEmpty()) {
             return Result.failed(ExceptionEnum.CM337);
         }
-        List<Tenant> currentTenant = new ArrayList<>();
+        List<Tenant> tenantList = new ArrayList<>();
+        boolean found = false;
         for (Tenant tenant : tenants) {
             if (tenant.getId().equals(tenantId.toString())) {
-                currentTenant.add(tenant);
+                tenant.setIsInUse(true);
+                found = true;
             }
+            tenant.setIsInUse(false);
+            tenantList.add(tenant);
         }
-        if (currentTenant.isEmpty()) {
+
+        if (!found) {
             return Result.failed(ExceptionEnum.CM337);
         }
+
         // 通过 RequestContextHolder 获取请求
         HttpServletRequest request = ((ServletRequestAttributes) RequestContextHolder.currentRequestAttributes())
             .getRequest();
@@ -259,7 +268,7 @@ public Result<SSOTicket> setTenant(@RequestParam Integer tenantId) {
         if (headerToken == null || headerToken.isEmpty()) {
             return Result.failed(ExceptionEnum.CM336);
         }
-        String token = jwtUtil.generateTokenWithSelectedTenant(headerToken, currentTenant);
+        String token = jwtUtil.generateTokenWithSelectedTenant(headerToken, tenantList);
         // 将原 token 加入黑名单
         Claims claims = Jwts.parser()
             .verifyWith(JwtUtil.getSecretKey())

base/src/main/java/com/tinyengine/it/model/entity/Tenant.java

@@ -54,6 +54,10 @@ public class Tenant {
     @Schema(name = "description", description = "组织描述")
     private String description;
 
+    @TableField(exist = false)
+    @Schema(name = "isInUse", description = "是否当前所在组织")
+    private Boolean isInUse;
+
     @TableField(fill = FieldFill.INSERT)
     @Schema(name = "createdTime", description = "创建时间")
     @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss")

base/src/main/java/com/tinyengine/it/service/platform/impl/TenantServiceImpl.java

@@ -12,8 +12,11 @@
 
 package com.tinyengine.it.service.platform.impl;
 
+import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
 import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
 import com.tinyengine.it.common.context.LoginUserContext;
+import com.tinyengine.it.common.exception.ExceptionEnum;
+import com.tinyengine.it.common.exception.ServiceException;
 import com.tinyengine.it.mapper.TenantMapper;
 import com.tinyengine.it.mapper.AuthUsersUnitsRolesMapper;
 import com.tinyengine.it.model.entity.AuthUsersUnitsRoles;
@@ -110,6 +113,12 @@ public Integer updateTenantById(Tenant tenant) {
      */
     @Override
     public Integer createTenant(Tenant tenant) {
+        QueryWrapper<Tenant> queryWrapper = new QueryWrapper<>();
+        queryWrapper.eq("name_cn", tenant.getNameCn());
+        Tenant tenantResult = this.baseMapper.selectOne(queryWrapper);
+        if (tenantResult != null) {
+            throw new ServiceException(ExceptionEnum.CM003.getResultCode(), ExceptionEnum.CM003.getResultMsg());
+        }
         int result = baseMapper.createTenant(tenant);
         if (result == 1) {
             AuthUsersUnitsRoles authUsersUnitsRoles = new AuthUsersUnitsRoles();

example-docker.yml

@@ -19,8 +19,6 @@ COPY --from=build /app/all-MiniLM-L6-v2 /app/all-MiniLM-L6-v2
  # 设置环境变量
 ENV FOLDER_PATH="/app/documents"
 
-# 登录页面路径
-ENV SSO_SERVER=""
 #资源下载接口路径
 ENV TINY_ENGINE_URL=""
 ENTRYPOINT ["java", "-jar", "tiny-engine-app.jar", "--spring.profiles.active=alpha"]