|
|
import {
|
|
|
HttpErrorResponse,
|
|
|
HttpEvent,
|
|
|
HttpHandler,
|
|
|
HttpHeaders,
|
|
|
HttpInterceptor,
|
|
|
HttpRequest,
|
|
|
HttpResponseBase
|
|
|
} from '@angular/common/http';
|
|
|
import { Injectable, Injector } from '@angular/core';
|
|
|
import { Router } from '@angular/router';
|
|
|
import { DA_SERVICE_TOKEN, ITokenService } from '@delon/auth';
|
|
|
import { ALAIN_I18N_TOKEN, _HttpClient } from '@delon/theme';
|
|
|
import { environment } from '@env/environment';
|
|
|
import { NzNotificationService } from 'ng-zorro-antd/notification';
|
|
|
import { BehaviorSubject, Observable, of, throwError } from 'rxjs';
|
|
|
import { catchError, filter, mergeMap, switchMap, take } from 'rxjs/operators';
|
|
|
|
|
|
const CODEMESSAGE: { [key: number]: string } = {
|
|
|
200: '服务器成功返回请求的数据。',
|
|
|
201: '新建或修改数据成功。',
|
|
|
202: '一个请求已经进入后台排队(异步任务)。',
|
|
|
204: '删除数据成功。',
|
|
|
400: '发出的请求有错误,服务器没有进行新建或修改数据的操作。',
|
|
|
401: '用户没有权限(令牌、用户名、密码错误)。',
|
|
|
403: '用户得到授权,但是访问是被禁止的。',
|
|
|
404: '发出的请求针对的是不存在的记录,服务器没有进行操作。',
|
|
|
406: '请求的格式不可得。',
|
|
|
410: '请求的资源被永久删除,且不会再得到的。',
|
|
|
422: '当创建一个对象时,发生一个验证错误。',
|
|
|
500: '服务器发生错误,请检查服务器。',
|
|
|
502: '网关错误。',
|
|
|
503: '服务不可用,服务器暂时过载或维护。',
|
|
|
504: '网关超时。'
|
|
|
};
|
|
|
|
|
|
/**
|
|
|
* 默认HTTP拦截器,其注册细节见 `app.module.ts`
|
|
|
*/
|
|
|
@Injectable()
|
|
|
export class DefaultInterceptor implements HttpInterceptor {
|
|
|
private refreshTokenEnabled = environment.api.refreshTokenEnabled;
|
|
|
private refreshTokenType: 're-request' | 'auth-refresh' = environment.api.refreshTokenType;
|
|
|
private refreshToking = false;
|
|
|
private refreshToken$: BehaviorSubject<any> = new BehaviorSubject<any>(null);
|
|
|
|
|
|
constructor(private injector: Injector) {
|
|
|
if (this.refreshTokenType === 'auth-refresh') {
|
|
|
this.buildAuthRefresh();
|
|
|
}
|
|
|
}
|
|
|
|
|
|
private get notification(): NzNotificationService {
|
|
|
return this.injector.get(NzNotificationService);
|
|
|
}
|
|
|
|
|
|
private get tokenSrv(): ITokenService {
|
|
|
return this.injector.get(DA_SERVICE_TOKEN);
|
|
|
}
|
|
|
|
|
|
private get http(): _HttpClient {
|
|
|
return this.injector.get(_HttpClient);
|
|
|
}
|
|
|
|
|
|
private goTo(url: string): void {
|
|
|
setTimeout(() => this.injector.get(Router).navigateByUrl(url));
|
|
|
}
|
|
|
|
|
|
private checkStatus(ev: HttpResponseBase): void {
|
|
|
if ((ev.status >= 200 && ev.status < 300) || ev.status === 401) {
|
|
|
return;
|
|
|
}
|
|
|
|
|
|
const errortext = CODEMESSAGE[ev.status] || ev.statusText;
|
|
|
this.notification.error(`请求错误 ${ev.status}: ${ev.url}`, errortext);
|
|
|
}
|
|
|
|
|
|
/**
|
|
|
* 刷新 Token 请求
|
|
|
*/
|
|
|
private refreshTokenRequest(): Observable<any> {
|
|
|
const model = this.tokenSrv.get();
|
|
|
return this.http.post(`/api/auth/refresh`, null, null, { headers: { refresh_token: model?.refresh_token || '' } });
|
|
|
}
|
|
|
|
|
|
// #region 刷新Token方式一:使用 401 重新刷新 Token
|
|
|
|
|
|
private tryRefreshToken(ev: HttpResponseBase, req: HttpRequest<any>, next: HttpHandler): Observable<any> {
|
|
|
// 1、若请求为刷新Token请求,表示来自刷新Token可以直接跳转登录页
|
|
|
if ([`/api/auth/refresh`].some(url => req.url.includes(url))) {
|
|
|
this.toLogin();
|
|
|
return throwError(ev);
|
|
|
}
|
|
|
// 2、如果 `refreshToking` 为 `true` 表示已经在请求刷新 Token 中,后续所有请求转入等待状态,直至结果返回后再重新发起请求
|
|
|
if (this.refreshToking) {
|
|
|
return this.refreshToken$.pipe(
|
|
|
filter(v => !!v),
|
|
|
take(1),
|
|
|
switchMap(() => next.handle(this.reAttachToken(req)))
|
|
|
);
|
|
|
}
|
|
|
// 3、尝试调用刷新 Token
|
|
|
this.refreshToking = true;
|
|
|
this.refreshToken$.next(null);
|
|
|
|
|
|
return this.refreshTokenRequest().pipe(
|
|
|
switchMap(res => {
|
|
|
// 通知后续请求继续执行
|
|
|
this.refreshToking = false;
|
|
|
this.refreshToken$.next(res);
|
|
|
// 重新保存新 token
|
|
|
this.tokenSrv.set(res);
|
|
|
// 重新发起请求
|
|
|
return next.handle(this.reAttachToken(req));
|
|
|
}),
|
|
|
catchError(err => {
|
|
|
this.refreshToking = false;
|
|
|
this.toLogin();
|
|
|
return throwError(err);
|
|
|
})
|
|
|
);
|
|
|
}
|
|
|
|
|
|
/**
|
|
|
* 重新附加新 Token 信息
|
|
|
*
|
|
|
* > 由于已经发起的请求,不会再走一遍 `@delon/auth` 因此需要结合业务情况重新附加新的 Token
|
|
|
*/
|
|
|
private reAttachToken(req: HttpRequest<any>): HttpRequest<any> {
|
|
|
// 以下示例是以 NG-ALAIN 默认使用 `SimpleInterceptor`
|
|
|
const token = this.tokenSrv.get()?.token;
|
|
|
return req.clone({
|
|
|
setHeaders: {
|
|
|
token: `Bearer ${token}`
|
|
|
}
|
|
|
});
|
|
|
}
|
|
|
|
|
|
// #endregion
|
|
|
|
|
|
// #region 刷新Token方式二:使用 `@delon/auth` 的 `refresh` 接口
|
|
|
|
|
|
private buildAuthRefresh(): void {
|
|
|
if (!this.refreshTokenEnabled) {
|
|
|
return;
|
|
|
}
|
|
|
this.tokenSrv.refresh
|
|
|
.pipe(
|
|
|
filter(() => !this.refreshToking),
|
|
|
switchMap(res => {
|
|
|
console.log(res);
|
|
|
this.refreshToking = true;
|
|
|
return this.refreshTokenRequest();
|
|
|
})
|
|
|
)
|
|
|
.subscribe(
|
|
|
res => {
|
|
|
// TODO: Mock expired value
|
|
|
res.expired = +new Date() + 1000 * 60 * 5;
|
|
|
this.refreshToking = false;
|
|
|
this.tokenSrv.set(res);
|
|
|
},
|
|
|
() => this.toLogin()
|
|
|
);
|
|
|
}
|
|
|
|
|
|
// #endregion
|
|
|
|
|
|
private toLogin(): void {
|
|
|
this.notification.error(`未登录或登录已过期,请重新登录。`, ``);
|
|
|
this.goTo('/passport/login');
|
|
|
}
|
|
|
|
|
|
private handleData(ev: HttpResponseBase, req: HttpRequest<any>, next: HttpHandler): Observable<any> {
|
|
|
switch (ev.status) {
|
|
|
case 200:
|
|
|
break;
|
|
|
case 401:
|
|
|
if (this.refreshTokenEnabled && this.refreshTokenType === 're-request') {
|
|
|
return this.tryRefreshToken(ev, req, next);
|
|
|
}
|
|
|
this.toLogin();
|
|
|
break;
|
|
|
case 403:
|
|
|
case 404:
|
|
|
this.goTo(`/exception/${ev.status}`);
|
|
|
break;
|
|
|
default:
|
|
|
console.log(ev);
|
|
|
if (ev instanceof HttpErrorResponse) {
|
|
|
this.blobToText(ev.error).subscribe((resp) => {
|
|
|
var msg = resp ? resp : ev.statusText;
|
|
|
this.notification.error('Error', `${ev.status}: ${ev.url} ${msg}`, { nzDuration: 5000 });
|
|
|
});
|
|
|
return throwError(ev);
|
|
|
}
|
|
|
break;
|
|
|
}
|
|
|
if (ev instanceof HttpErrorResponse) {
|
|
|
return throwError(ev);
|
|
|
} else {
|
|
|
return of(ev);
|
|
|
}
|
|
|
}
|
|
|
|
|
|
private getAdditionalHeaders(headers?: HttpHeaders): { [name: string]: string } {
|
|
|
const res: { [name: string]: string } = {};
|
|
|
const lang = this.injector.get(ALAIN_I18N_TOKEN).currentLang;
|
|
|
if (!headers?.has('Accept-Language') && lang) {
|
|
|
res['Accept-Language'] = lang;
|
|
|
}
|
|
|
|
|
|
return res;
|
|
|
}
|
|
|
|
|
|
intercept(req: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
|
|
|
// 统一加上服务端前缀
|
|
|
let url = req.url;
|
|
|
if (!url.startsWith('https://') && !url.startsWith('http://')) {
|
|
|
url = environment.api.baseUrl + url;
|
|
|
}
|
|
|
|
|
|
const newReq = req.clone({ url, setHeaders: this.getAdditionalHeaders(req.headers) });
|
|
|
return next.handle(newReq).pipe(
|
|
|
mergeMap(ev => {
|
|
|
// 允许统一对请求错误处理
|
|
|
if (ev instanceof HttpResponseBase) {
|
|
|
return this.handleData(ev, newReq, next);
|
|
|
}
|
|
|
// 若一切都正常,则后续操作
|
|
|
return of(ev);
|
|
|
}),
|
|
|
catchError((err: HttpErrorResponse) => this.handleData(err, newReq, next))
|
|
|
);
|
|
|
}
|
|
|
|
|
|
blobToText(blob: any): Observable<string> {
|
|
|
return new Observable<string>((observer: any) => {
|
|
|
if (blob instanceof Blob) {
|
|
|
let reader = new FileReader();
|
|
|
reader.onload = (event) => {
|
|
|
observer.next((<any>event.target).result);
|
|
|
observer.complete();
|
|
|
};
|
|
|
reader.readAsText(blob);
|
|
|
} else {
|
|
|
observer.next(blob && blob.error ? blob.error : JSON.stringify(blob));
|
|
|
observer.complete();
|
|
|
}
|
|
|
});
|
|
|
}
|
|
|
}
|