func TestIsValidPhone(t *testing.T) { assert.True(t, utils.IsValidPhone("18801234567")) assert.True(t, utils.IsValidPhone("13398765432")) assert.False(t, utils.IsValidPhone("1339876543")) assert.False(t, utils.IsValidPhone("11111111111")) assert.False(t, utils.IsValidPhone("51532609")) }
// @Title CreateUserWithPhone // @Description 通过手机号注册, 返回所有字段 // @Param phone query string true "用户手机号" // @Param code query string true "手机验证码" // @Param secret query string true "加密处理后的密码" // @Param Authorization header string true "Basic auth的授权码, 计算方式见wiki" // @Success 201 {object} models.User // @Failure 401 basic auth失败 // @Failure 403 参数错误:缺失或格式错误 // @Failure 422 手机号已注册 // @Failure 500 系统错误 // @router / [post] func (this *UsersController) Post() { phone := this.GetString("phone") code := this.GetString("code") secret := this.GetString("secret") authorization := this.Ctx.Request.Header.Get("Authorization") if authorization != BASIC_AUTH_AUTHORIZATION { this.Ctx.ResponseWriter.WriteHeader(401) this.Data["json"] = utils.Issue(utils.ERROR_CODE_BASIC_AUTH_FAIL, this.Ctx.Request.URL.String()) } else if !utils.IsValidPhone(phone) || code == "" || len(secret) != 40 { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) } else if exists := models.UserPhoneExists(&phone); exists { this.Ctx.ResponseWriter.WriteHeader(422) this.Data["json"] = utils.Issue(utils.ERROR_CODE_USERS_PHONE_REGISTERED, this.Ctx.Request.URL.String()) } else if err := models.CheckVerifyCode(phone, code); err > 0 { this.Ctx.ResponseWriter.WriteHeader(422) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) } else if user, err := models.CreateUserByPhone(&phone, secret); err > 0 { this.Ctx.ResponseWriter.WriteHeader(500) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) } else { this.Ctx.ResponseWriter.WriteHeader(201) this.Data["json"] = user } this.ServeJSON() }
// @Title LoginWithPhone // @Description 通过手机号和密码获取Token(登录) // @Param phone query string true "用户手机号" // @Param secret query string true "加密处理后的密码,全部小写" // @Success 201 {object} models.User // @Failure 403 参数错误:缺失或格式错误 // @Failure 422 手机号未注册/密码错误 // @Failure 500 系统错误 // @router / [post] func (this *TokensController) Post() { phone := this.GetString("phone") secret := this.GetString("secret") if utils.IsValidPhone(phone) && len(secret) == 40 { user, err := models.VerifyUserByPhone(&phone, secret) if err > 0 { this.Ctx.ResponseWriter.WriteHeader(422) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) } else { this.Ctx.ResponseWriter.WriteHeader(201) this.Data["json"] = user } } else { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) } this.ServeJSON() }
// @Title CreateVerification // @Description 请求短信验证码 // @Param phone query string true "手机号" // @Param Authorization header string true "Basic auth的授权码, 计算方式见wiki" // @Success 201 "" "" // @Failure 401 basic auth失败 // @Failure 403 参数错误:缺失或格式错误 // @Failure 422 手机号已注册 // @Failure 500 系统错误 // @router / [post] func (this *VerificationsController) Post() { phone := this.GetString("phone") authorization := this.Ctx.Request.Header.Get("Authorization") if authorization != BASIC_AUTH_AUTHORIZATION { this.Ctx.ResponseWriter.WriteHeader(401) this.Data["json"] = utils.Issue(utils.ERROR_CODE_BASIC_AUTH_FAIL, this.Ctx.Request.URL.String()) } else if !utils.IsValidPhone(phone) { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) } else if models.UserPhoneExists(&phone) { this.Ctx.ResponseWriter.WriteHeader(422) this.Data["json"] = utils.Issue(utils.ERROR_CODE_USERS_PHONE_REGISTERED, this.Ctx.Request.URL.String()) } else if err := models.CreateVerification(phone); err > 0 { this.Ctx.ResponseWriter.WriteHeader(500) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) } else { this.Ctx.ResponseWriter.WriteHeader(201) } this.ServeJSON() }
// @Title UpdateUserInfo // @Description 修改用户自己的信息, 修改哪些字段就传哪些字段, 成功后返回所有字段, <br/>注意: N位中英数限制, 指只能有汉字/英文字母/阿拉伯数字, 不能有标点符号, 特殊符号, 每个汉字/字母/数字长度都算1 // @Param token query string true "Token" // @Param phone query string false "更换绑定手机号" // @Param code query string false "手机验证码, 换绑手机号时需要" // @Param wx_openid query string false "微信授权的openid" // @Param wx_token query string false "微信授权的token" // @Param qq_openid query string false "QQ授权的openid" // @Param qq_token query string false "QQ授权的token" // @Param wb_token query string false "微博授权的token" // @Param nickname query string false "昵称, 小于12位中英数" // @Param gender query int false "性别, 1为男, 2为女" // @Param avatar query string false "头像url, 通过上传头像接口上传成功后获得" // @Success 201 {object} models.User // @Failure 401 token无效 // @Failure 403 参数错误:缺失或格式错误 // @Failure 500 系统错误 // @router / [patch] func (this *UsersController) Patch() { token := this.GetString("token") phone := this.GetString("phone") code := this.GetString("code") wx_openid := this.GetString("wx_openid") wx_token := this.GetString("wx_token") qq_openid := this.GetString("qq_openid") qq_token := this.GetString("qq_token") wb_token := this.GetString("wb_token") nickname := this.GetString("nickname") gender, errGender := this.GetInt("gender", 0) avatar := this.GetString("avatar") if (phone != "" && !utils.IsValidPhone(phone)) || errGender != nil { // has phone, but invalid; parse gender/birthday error this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) } else if user, err := models.GetUserByToken(token); err > 0 { // invalid token this.Ctx.ResponseWriter.WriteHeader(401) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) } else { for { // has valid phone if phone != "" { if code == "" { // has valid phone but not valid code this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_VERIFY_CODE_MISMATCH, this.Ctx.Request.URL.String()) break } if err = models.CheckVerifyCode(phone, code); err > 0 { // code mismatch this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) break } // valid user.Phone = &phone } // has wx_openid if wx_openid != "" { if wx_token == "" { // empty wx_token this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) break } authUser, err := utils.AuthWithWeiXin(wx_openid, wx_token) if err > 0 { // auth fail this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) break } // verified user.WeiXin = &authUser.Openid user.WeiXinNickName = authUser.Nickname } // has wb_token if wb_token != "" { authUser, err := utils.AuthWithWeiBo(wb_token) if err > 0 { // auth fail this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) break } // verified user.WeiBo = &authUser.Openid user.WeiBoNickName = authUser.Nickname } // has qq_openid if qq_openid != "" { if qq_token == "" { // empty qq_token this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_PARAM_ERROR, this.Ctx.Request.URL.String()) break } authUser, err := utils.AuthWithQQ(qq_openid, qq_token, QQ_OAUTH_CONSUMER_KEY) if err > 0 { // auth fail this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) break } // verified user.QQ = &authUser.Openid user.QQNickName = authUser.Nickname } if nickname != "" { if !utils.IsLegalRestrictedStringWithLength(nickname, utils.USER_NICKNAME_MEX_LEN) { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_USERS_INVALID_NICKNAME, this.Ctx.Request.URL.String()) break } user.Nickname = nickname } if gender > 0 { if gender != 1 && gender != 2 { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_USERS_INVALID_GENDER_VALUE, this.Ctx.Request.URL.String()) break } user.Gender = gender } if avatar != "" { if len(avatar) > utils.USER_AVATAR_MEX_LEN { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(utils.ERROR_CODE_USERS_INVALID_AVATAR, this.Ctx.Request.URL.String()) break } user.Avatar = avatar } err = models.UpdateUser(user) if err > 0 { this.Ctx.ResponseWriter.WriteHeader(403) this.Data["json"] = utils.Issue(err, this.Ctx.Request.URL.String()) break } // success this.Ctx.ResponseWriter.WriteHeader(201) this.Data["json"] = user break } } this.ServeJSON() }