| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 | package userimport (	"fmt"	"github.com/0xJacky/Nginx-UI/api"	"github.com/0xJacky/Nginx-UI/internal/user"	"github.com/0xJacky/Nginx-UI/settings"	"github.com/casdoor/casdoor-go-sdk/casdoorsdk"	"github.com/gin-gonic/gin"	"github.com/pkg/errors"	"gorm.io/gorm"	"net/http"	"net/url")type CasdoorLoginUser struct {	Code  string `json:"code" binding:"required,max=255"`	State string `json:"state" binding:"required,max=255"`}func CasdoorCallback(c *gin.Context) {	var loginUser CasdoorLoginUser	ok := api.BindAndValid(c, &loginUser)	if !ok {		return	}	endpoint := settings.CasdoorSettings.Endpoint	clientId := settings.CasdoorSettings.ClientId	clientSecret := settings.CasdoorSettings.ClientSecret	certificate := settings.CasdoorSettings.Certificate	organization := settings.CasdoorSettings.Organization	application := settings.CasdoorSettings.Application	if endpoint == "" || clientId == "" || clientSecret == "" || certificate == "" || organization == "" || application == "" {		c.JSON(http.StatusInternalServerError, gin.H{			"message": "Casdoor is not configured",		})		return	}	casdoorsdk.InitConfig(endpoint, clientId, clientSecret, certificate, organization, application)	token, err := casdoorsdk.GetOAuthToken(loginUser.Code, loginUser.State)	if err != nil {		api.ErrHandler(c, err)		return	}	claims, err := casdoorsdk.ParseJwtToken(token.AccessToken)	if err != nil {		api.ErrHandler(c, err)		return	}	u, err := user.GetUser(claims.Name)	if err != nil {		if errors.Is(err, gorm.ErrRecordNotFound) {			c.JSON(http.StatusForbidden, gin.H{				"message": "User not exist",			})		} else {			api.ErrHandler(c, err)		}		return	}	userToken, err := user.GenerateJWT(u.Name)	if err != nil {		api.ErrHandler(c, err)		return	}	c.JSON(http.StatusOK, LoginResponse{		Message: "ok",		Token:   userToken,	})}func GetCasdoorUri(c *gin.Context) {	endpoint := settings.CasdoorSettings.Endpoint	clientId := settings.CasdoorSettings.ClientId	redirectUri := settings.CasdoorSettings.RedirectUri	state := settings.CasdoorSettings.Application	if endpoint == "" || clientId == "" || redirectUri == "" || state == "" {		c.JSON(http.StatusOK, gin.H{			"uri": "",		})		return	}	encodedRedirectUri := url.QueryEscape(redirectUri)	c.JSON(http.StatusOK, gin.H{		"uri": fmt.Sprintf("%s/login/oauth/authorize?client_id=%s&response_type=code&redirect_uri=%s&state=%s&scope=read", endpoint, clientId, encodedRedirectUri, state),	})}
 |