first commit

juvenile
.gitignore
app.js
boot/config.js
boot/local.js
boot/policies.js
cluster.js
controllers/api.js
controllers/auth.js
controllers/authed.js
controllers/file.js
controllers/mock.js
controllers/robot.js
etc/init/01-settings.js
etc/init/02-middleware.js
etc/init/03-sessions.js
etc/init/04-security.js
etc/init/05-caching.js
etc/init/06-views.js
json/mockDate.json
json/payRoll.json
--- a/.gitignore 0 → 100644
查看文件 @873fca7
+++ b/.gitignore 0 → 100644
查看文件 @873fca7
+node_modules
+*.lock
+*.*.lock
+.vscode
+.idea
--- a/app.js 0 → 100644
查看文件 @873fca7
+++ b/app.js 0 → 100644
查看文件 @873fca7
+// # app
+
+var path = require('path');
+var IoC = require('electrolyte');
+var bootable = require('bootable');
+var express = require('express');
+
+// change the working directory to the root directory
+
+process.chdir(__dirname);
+
+// dependency injection
+
+IoC.loader(IoC.node(path.join(__dirname, 'boot')));
+IoC.loader('igloo', require('igloo'));
+IoC.loader('controllers', IoC.node(path.join(__dirname, 'controllers')));
+IoC.loader('services', IoC.node(path.join(__dirname, 'services')));
+IoC.loader('models', IoC.node(path.join(__dirname, 'models')));
+IoC.loader('utils',IoC.node(path.join(__dirname, 'utils')));
+
+// phases
+
+var app = bootable(express());
+
+
+app.phase(bootable.di.initializers());
+app.phase(bootable.di.routes('./routes/bootstarp.js'));
+app.phase(IoC.create('igloo/server'));
+
+// boot
+
+var logger = IoC.create('igloo/logger');
+var settings = IoC.create('igloo/settings');
+
+app.boot(function(err) {
+
+  if (err) {
+    logger.error(err.message);
+
+    if (settings.showStack) {
+      logger.error(err.stack);
+    }
+
+    process.exit(-1);
+    return;
+  }
+
+  logger.info('app booted');
+
+});
+
+exports = module.exports = app;
--- a/boot/config.js 0 → 100644
查看文件 @873fca7
+++ b/boot/config.js 0 → 100644
查看文件 @873fca7
+// # config
+
+var path = require('path');
+
+var parentDir = path.join(__dirname, '..');
+console.log(parentDir,'reacasjdjsakfkjaskjfnasjdflkjas')
+var appDir = path.join(parentDir, 'server');
+
+var pkg = require(path.join(parentDir, 'package'));
+
+var assetsDir = path.join(parentDir, 'build');
+var publicDir = path.join(assetsDir, 'public');
+var templatesDir = path.join(assetsDir, 'emails');
+var viewsDir = path.join(appDir, 'views');
+
+var maxAge = 24 * 60 * 60 * 1000;//60 * 60 * 1000;
+
+exports = module.exports = function () {
+
+	return {
+		defaults: {
+			basicAuth: {
+				enabled: false,
+				name: 'admin',
+				pass: 'password'
+			},
+			facebook: {
+				enabled: false,
+				appID: '',
+				appSecret: '',
+				scope: ['email']
+			},
+			google: {
+				enabled: false,
+				scope: [
+					'https://www.googleapis.com/auth/userinfo.profile',
+					'https://www.googleapis.com/auth/userinfo.email'
+				],
+				clientID: '',
+				clientSecret: ''
+			},
+			pkg: pkg,
+			cache: false,
+			showStack: true,
+			assetsDir: assetsDir,
+			publicDir: publicDir,
+			views: {
+				dir: viewsDir,
+				engine: 'ejs'
+			},
+			password: {
+				minStrength: 0,
+				limitAttempts: false
+			},
+			email: {
+				templates: {
+					dir: templatesDir,
+					options: {
+					}
+				},
+				// <https://github.com/andris9/Nodemailer>
+				transport: {
+					service: 'gmail',
+					auth: {
+						user: 'hi@eskimo.io',
+						pass: 'abc123'
+					}
+				},
+				headers: {
+					from: 'hi@eskimo.io'
+				}
+			},
+			hipchat: {
+				level: 'error',
+				silent: false,
+				token: '',
+				notify: false,
+				color: 'yellow',
+				room: '',
+				from: '',
+				messageFormat: 'text'
+			},
+			session: {
+				secret: 'igloo-change-me',
+				key: 'igloo',
+				cookie: {
+					path: '/',
+					httpOnly: true,
+					secure: false,
+					sameSite: 'strict',
+					maxAge: maxAge
+				},
+				resave: true,
+				saveUninitialized: true
+			},
+			trustProxy: true,
+			updateNotifier: {
+				enabled: true,
+				dependencies: {},
+				updateCheckInterval: 1000 * 60 * 60,
+				updateCheckTimeout: 1000 * 20
+			},
+			staticServer: {
+				maxAge: maxAge
+			},
+			server: {
+				host: 'localhost',
+				cluster: false,
+				ssl: {
+					enabled: false,
+					options: {}
+				}
+			},
+			cookieParser: 'igloo-change-me',
+			csrf: {
+				enabled: false,
+				options: {
+					cookie: {
+						maxAge: maxAge
+					}
+				}
+			},
+			mongo: {
+				host: 'localhost',
+				port: 27017,
+				opts: {},
+				// faster - don't perform 2nd request to verify
+				// log message was received/saved
+				safe: false
+			},
+			knex: {
+				client: 'mysql'
+			},
+			redis: {
+				host: '192.168.2.70',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!',
+				maxAge: maxAge
+			},
+			output: {
+				handleExceptions: false,
+				colorize: true,
+				prettyPrint: false
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: false,
+				hipchat: false,
+				slack: false
+			},
+			less: {
+				path: publicDir,
+				options: {
+					force: true
+				}
+			},
+			jade: {
+				amd: {
+					path: '/js/tmpl/',
+					options: {}
+				}
+			},
+			liveReload: {
+				port: 35729
+			},
+			restful: {
+				// url: 'http://154.8.229.55:20000/',
+				// url:'http://192.144.144.220:20000/',
+				//url:'http://127.0.0.1:20000/',
+				url: 'http://47.110.250.177:20000',
+				// url:'http://140.143.196.80:20000/',
+				ossUrl: 'http://192.168.2.72:20000/',
+				version: '/v1'
+			},
+			prefix: '/',
+			localStrategy: {
+				usernameField: 'username',
+				passwordField: 'password',
+				// session: false,
+				passReqToCallback: true
+			}
+		},
+		test: {
+			cache: true,
+			url: 'http://localhost:5999',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://172.21.0.8:20000/',
+				ossUrl: 'http://172.21.0.8:10001/v1/',
+				version: '/v1'
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 5999,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_test_develop',
+				host: '172.21.0.8',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-develop/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		development: {
+			cache: true,
+			url: 'http://localhost:3000',
+			server: {
+				env: 'development',
+				port: 3000,
+			},
+			mongo: {
+				dbname: 'igloo-development',
+				db: 'igloo-development' // keep for winston logger
+			},
+			knex: {
+				debug: true,
+				connection: {
+					host: '127.0.0.1',
+					user: 'root',
+					password: '',
+					database: 'igloo_development'
+				}
+			},
+			redis: {
+				prefix: 'igloo-development',
+				host: '127.0.0.1',
+				port: 6379,
+				pass: '',
+			}
+		},
+		production: {
+			cache: false,
+			url: 'http://localhost:6868',
+			views: {
+				dir: viewsDir,
+			},
+			publicDir: publicDir,
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://192.168.2.72:20000/',
+				ossUrl: 'http://192.168.2.72:20000/',
+				version: '/v1',
+				host: '192.168.2.72',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 6868,
+				cluster: false
+			},
+			mongo: {
+				dbname: 'igloo-production',
+				db: 'igloo-production' // keep for winston logger
+			},
+			knex: {
+				connection: {
+					host: '127.0.0.1',
+					user: 'root',
+					password: '',
+					database: 'igloo_production'
+				}
+			},
+			redis: {
+				prefix: 'igloo_production',
+				host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+			output: {
+				colorize: false
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		recruitIterative: {
+			cache: true,
+			url: 'http://localhost:6200',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.158.110:20000/',
+				// url: 'http://47.110.250.177:20000/',
+				// url: 'http://39.104.52.206:20000/',
+				ossUrl: 'http://47.110.158.110:20000/v1/',
+				version: '/v1',
+				host: '47.110.158.110',
+				// host: '47.110.250.177',
+				// host: '39.104.52.206',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 6200,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_recruitIterative',
+				host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-recruit-iterative/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		hroRecruit: {
+			cache: true,
+			url: 'http://localhost:6100',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				// url: 'http://47.110.158.110:20000/',
+				url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://140.143.196.80:10001/v1/',
+				version: '/v1',
+				// host: '47.110.158.110',
+				host: '47.110.250.177',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 6100,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroRecruit',
+				host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-tax/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		hroTax: {
+			cache: true,
+			url: 'http://localhost:6100',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.158.110:20000/',
+				// url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://140.143.196.80:10001/v1/',
+				version: '/v1',
+				host: '47.110.158.110',
+				// host: '47.110.250.177',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 6100,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroSalary',
+				host: '172.26.212.124',  //外服环境
+				// host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-salary/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		hroSalary: {
+			cache: true,
+			url: 'http://localhost:6200',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				// url: 'http://47.110.158.110:20000/',
+				url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://140.143.196.80:10001/v1/',
+				version: '/v1',
+				// host: '47.110.158.110',
+				host: '47.110.250.177',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 6200,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroSalary',
+				host: '172.26.212.124',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-salary/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		sipolicyIterative: {
+			cache: true,
+			url: 'http://localhost:8200',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://172.21.0.8:10001/v1/',
+				version: '/v1',
+				host: '47.110.250.177',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 8200,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_sipolicyIterative',
+				host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-sipolicy-iterative/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		hroSipolicy: {
+			cache: true,
+			url: 'http://localhost:8100',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://172.21.0.8:10001/v1/',
+				host: '47.110.250.177',
+				version: '/v1'
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 8100,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroSipolicy',
+				host: '127.0.0.1',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-sipolicy/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		settlemgmIterative: {
+			cache: true,
+			url: 'http://localhost:9200',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.158.110:20000/',
+				// url: 'http://47.110.250.177:20000/',
+				// url: 'http://39.104.52.206:20000/',
+				ossUrl: 'http://172.21.0.8:10001/v1/',
+				version: '/v1',
+				host: '47.110.158.110',
+				// host: '47.110.250.177',
+				// host: '39.104.52.206',
+				port: 20000
+			},
+
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 9200,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_settlemgmIterative',
+				host: '127.0.0.1',
+				// host: '172.26.212.124',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-settlemgm-iterative/igloo.log',
+					timestamp: true
+				}
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+		},
+		hroSettlemgm: {
+			cache: true,
+			url: 'http://localhost:9100',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				// url: 'http://47.110.158.110:20000/',
+				// url: 'http://47.110.250.177:20000/',
+				url: 'http://39.104.52.206:20000/',
+				ossUrl: 'http://140.143.196.80:10001/v1/',
+				version: '/v1',
+				// host: '47.110.158.110',
+				// host: '47.110.250.177',
+				host: '39.104.52.206',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 9100,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroSettlemgm',
+				// host: '127.0.0.1',
+				host: '172.26.212.124',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-settlemgm/igloo.log',
+					timestamp: true
+				}
+			},
+			csrf: {
+				enabled: true,
+				options: {
+					cookie: {
+						maxAge: maxAge,
+						sameSite: 'strict',
+						path: '/',
+						key: '_csrf',
+						httpOnly: true
+					}
+				}
+			},
+		},
+		hroTemp: {
+			cache: true,
+			url: 'http://localhost:8777',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				// url:'http://140.143.196.80:20000/',
+				url: 'http://154.8.229.55:20000/',
+				ossUrl: 'http://154.8.229.55:10001/v1/',
+				version: '/v1'
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 8777,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroTemp',
+				host: '172.21.0.8',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-temp/igloo.log',
+					timestamp: true
+				}
+			}
+		},
+		hroOddjobs: {
+			cache: true,
+			url: 'http://localhost:8899',
+			showStack: false,
+			updateNotifier: {
+				enabled: false,
+			},
+			restful: {
+				url: 'http://47.110.250.177:20000/',
+				ossUrl: 'http://154.8.229.55:10001/v1/',
+				version: '/v1',
+				host: '47.110.250.177',
+				port: 20000
+			},
+			server: {
+				host: '0.0.0.0',
+				env: 'production',
+				port: 8899,
+				cluster: false
+			},
+			redis: {
+				prefix: 'igloo_production_hroOddjobs',
+				host: '192.168.12.188',
+				port: 38888,
+				pass: 'Q*Kr4?#Rg!'
+			},
+			logger: {
+				'console': true,
+				requests: true,
+				mongo: false,
+				file: {
+					filename: '/opt/work/hro/frontend/hro-oddjobs/igloo.log',
+					timestamp: true
+				}
+			}
+		}
+	};
+};
+
+exports['@singleton'] = true;
\ No newline at end of file
--- a/boot/local.js 0 → 100755
查看文件 @873fca7
+++ b/boot/local.js 0 → 100755
查看文件 @873fca7
+/*
+ * @Descripttion: 
+ * @version: 
+ * @Author: sueRimn
+ * @Date: 2020-06-28 15:34:13
+ * @LastEditors: genglw
+ * @LastEditTime: 2021-12-23 14:56:59
+ */
+
+// # local config (make sure it is ignored by git)
+//
+// This configuration file is specific to each developer's environment,
+// and will merge on top of all other settings from ./config.js
+// (but only will merge in development environment)
+//
+var maxAge = 60 * 60 * 1000 * 25;
+exports = module.exports = function () {
+	return {
+		cache: false,
+		server: {
+			host: '0.0.0.0',
+			port: 3000
+		},
+		email: {
+			// <https://github.com/andris9/Nodemailer>
+			transport: {
+				service: 'gmail',
+				auth: {
+					user: 'user@gmail.com',
+					pass: 'abc123'
+				}
+			}
+		},
+		restful: {
+			// url: 'http://118.178.181.180:20000/',
+			// url: 'http://47.110.250.177:20000/',
+			url: 'http://47.110.158.110:20000/',
+			// url:'http://120.27.220.60:20000/',
+			// url: 'http://39.104.52.206:20000/',
+			// url: 'http://47.99.189.12:20000/',
+			ossUrl: 'http://47.110.250.177:20000/',
+			version: '/v1',
+			// host: '47.110.250.177',
+			host: '47.110.158.110',
+			// host: '120.27.220.60',
+			// host: '39.104.52.206', 
+			port: 20000
+		},
+		csrf: {
+			enabled: true,
+			options: {
+				cookie: {
+					maxAge: maxAge,
+					key: '_csrf',
+					path: '/',
+					httpOnly: true,
+					sameSite: 'strict',
+				},
+				ignoreMethods: ['HEAD', 'OPTIONS', 'GET']
+			}
+		},
+		liveReload: {
+			enabled: true,
+			port: 35729
+		}
+	};
+};
+
+exports['@singleton'] = true;
--- a/boot/policies.js 0 → 100644
查看文件 @873fca7
+++ b/boot/policies.js 0 → 100644
查看文件 @873fca7
+
+// app - policies
+
+var connectEnsureLogin = require('connect-ensure-login');
+// var auth = require('basic-auth');
+var _ = require('underscore');
+
+exports = module.exports = function(IoC, User) {
+
+  // policy/middleware helpers
+   var ensureLoggedIn = connectEnsureLogin.ensureLoggedIn;
+  // var ensureLoggedOut = connectEnsureLogin.ensureLoggedOut;
+
+  // since there are issues with `passport-http` right now
+  // this is implemented as a temporary solution
+  function ensureApiToken(req, res, next) {
+    // var creds = auth(req);
+
+    // if (!creds || !_.isString(creds.name)) {
+    //   res.statusCode = 401;
+    //   return next({
+    //     message: 'API token missing',
+    //     param: 'username'
+    //   });
+    // }
+
+    // User.findOne({
+    //   api_token: creds.name
+    // }, function(err, user) {
+    //   if (err) return next(err);
+    //   if (!user) {
+    //     return next({
+    //       message: 'Invalid API token provided',
+    //       param: 'username'
+    //     });
+    //   }
+    //   req.user = user;
+    //   next();
+    // });
+    if(req.session.passport&&req.session.passport.user&&req.session.passport.user.token)
+      next();
+    else{
+      res.statusCode = 401;
+      return next({ message: 'API token missing',param: 'username'});
+    }
+
+  }
+
+  function ensureLoggedOut(options){
+    if (typeof options == 'string') {
+      options = { redirectTo: options }
+    }
+    options = options || {};
+    
+    var url = options.redirectTo || '/signIn';
+    var setReturnTo = (options.setReturnTo === undefined) ? true : options.setReturnTo;
+    return function(req, res, next) { 
+      if (!(req.session.passport&&req.session.passport.user&&req.session.passport.user.token)) {
+        if (setReturnTo && req.session) {
+          req.session.returnTo = req.originalUrl || req.url;
+        } 
+        res.statusCode=302;
+        return res.send({redirect:'/'}); 
+        // return res.redirect(url);
+      }
+      next();
+    }
+  }
+
+
+  var policies = {
+    ensureLoggedIn: ensureLoggedIn,
+    ensureLoggedOut: ensureLoggedOut,
+    ensureApiToken: ensureApiToken,
+    notApiRouteRegexp: /^(?!\/__webpack_hmr\/)|(?!\/*.ico).*$/
+  };
+
+  return policies;
+
+};
+
+exports['@singleton'] = true;
+exports['@require'] = [ '$container', 'models/user' ];
--- a/cluster.js 0 → 100644
查看文件 @873fca7
+++ b/cluster.js 0 → 100644
查看文件 @873fca7
+
+// # cluster
+
+var recluster = require('recluster');
+var path = require('path');
+var IoC = require('electrolyte');
+
+var cluster = recluster(path.join(__dirname, 'app.js'));
+
+IoC.loader(IoC.node(path.join(__dirname, 'boot')));
+IoC.loader('igloo', require('igloo'));
+var logger = IoC.create('igloo/logger');
+
+cluster.run();
+
+process.on('SIGUSR2', function() {
+  // reloading cluster
+  logger.info('received SIGUSR2, reloading cluster...');
+  cluster.reload();
+});
+
+// spawned cluster process.id
+// run kill -s SIGUSR2 to reload
+logger.info('spawned cluster, `kill -s SIGUSR2 %d` to reload', process.pid);
--- a/controllers/api.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/api.js 0 → 100644
查看文件 @873fca7
+var urlencode = require('urlencode');
+exports = module.exports = function (logger, rest, settings) {
+	function getOptions(url, type) {
+		var catalog = url.substring(1, url.indexOf('/', 1));
+		var pathUrl = url.substring(url.indexOf('/', 1));
+		var fullPath = '/' + catalog + settings.restful.version + pathUrl;
+		return {
+			'host': settings.restful.host, //后台请求地址
+			'port': settings.restful.port,
+			'path': fullPath,
+			'method': type,
+			'agent': false,
+			'headers': {
+				"Accept": "application/json",
+				"Content-Type": "application/json",
+				'User-Agent': 'Request for Express'
+			}
+		};
+	}
+
+	function addToken(options, req) {
+		if (req.session.passport && req.session.passport.user && req.session.passport.user && req.session.passport.user.token) {
+			options.headers['Authorization'] = "Bearer " + req.session.passport.user.token;
+		}
+		if (req.headers['device-id']) {
+			options.headers['Device-Id'] = req.headers['device-id']
+		}
+		if (req.ip) {
+			options.headers['Client-Ip'] = req.ip
+		}
+		return options;
+	}
+
+	function addParams(options, req) {
+		var postData = !req.body ? '' : JSON.stringify(req.body || {});
+		// options.headers['Content-Length'] = postData.length;
+		options.params = postData;
+	}
+
+	function addContentLength(options) {
+		if (options.params) {
+			options.headers['Content-Length'] = options.params.length;
+		}
+	}
+
+	function encodeUrl(url) {
+		return urlencode(url);
+	}
+
+	function encodePamars(params) {
+		var temp = [];
+		for (var i = 0; i < params.length; i++) {
+			var param = params[i];
+			var tempParam = param.split("=")
+			tempParam[1] = urlencode.decode(tempParam[1], 'utf8');
+			tempParam[1] = tempParam[1].replace(/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g, '');
+			console.log(tempParam[1]);
+			if (i < (params.length - 1)) {
+				if (/[:&+/?%#=]/g.test(tempParam[1])) {
+					temp.push(tempParam[0] + "=" + encodeUrl(tempParam[1]) + "&");
+				} else {
+					temp.push(tempParam[0] + "=" + tempParam[1] + "&");
+				}
+			} else {
+				if (/[:&+/?%#=]/g.test(tempParam[1])) {
+					temp.push(tempParam[0] + "=" + encodeUrl(tempParam[1]));
+				} else {
+					temp.push(tempParam[0] + "=" + tempParam[1]);
+				}
+			}
+		}
+		return temp.join("");
+	}
+
+	function handlePamars(url) {
+		var tempUrl = url;
+		// if(url.indexOf("?")!=-1){
+		// 	var temp=url.split("?");
+		// 	var params=""; 
+		// 	if(temp[1]&&temp[1].indexOf("&")!=-1){
+		// 		params=encodePamars(temp[1].split("&"));
+		// 	}else{
+		// 		params=encodePamars([temp[1]]);
+		// 	}
+		// 	return temp[0]+"?"+params;
+		// }else {
+		// 	return tempUrl;
+		// } 
+		return tempUrl;
+	}
+
+	function splitServiceFromUrl(url) {
+		var catalog = url.substring(1, url.indexOf('/', 1));
+		var pathUrl = url.substring(url.indexOf('/', 1));
+		var fullPath = settings.restful.url + catalog + settings.restful.version + pathUrl;
+		return fullPath
+	}
+
+	function splitUrl(fullUrl) {
+		if (settings.prefix && settings.prefix.length > 1) {
+			fullUrl = fullUrl.substring(settings.prefix.length - 1);
+		}
+		var url = fullUrl.substring(4);
+		return url;
+	}
+
+	function searchService(services, name) {
+		if (services[name]) {
+			console.log(services[name]);
+			return false;
+		} else {
+			return true;
+		}
+	}
+
+	function checkReq(req, res) {
+		var flag = true;
+		// if(flag&&req.headers&&!req.headers['service-catalog']){
+		// 	res.status(400);
+		// 	res.send({"errors":{},"message":"缺少必要请求参数，服务目录名称是必填项"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&req.session.passport&&req.session.passport.user&&!req.session.passport.user.service_catalog){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未加载，请重新登录"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&searchService(req.session.passport.user.service_catalog,req.headers['service-catalog'])){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未查询到请求服务,请确认参数正确"}); 
+		// 	flag=false; 
+		// }
+		return flag;
+	}
+
+	function checkJson(req) {
+		if (req.headers && req.headers['content-type'] == 'application/json') {
+			return true;
+		} else {
+			return false;
+		}
+	}
+
+	function get(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'GET');
+		addToken(options, req);
+		function _success(data, response) {
+			if (response.statusCode >= 400 || !data) {
+				logger.error(options, data);
+				res.status(response.statusCode);
+				res.send(data);
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	function post(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'POST');
+		addToken(options, req);
+		addParams(options, req);
+		function _success(data, response) {
+			if (response.statusCode >= 400) {
+				logger.error(options, data);
+				res.status(response.statusCode);
+				res.send(data);
+			} else if (!data || 'null' == data || "null\n" == data || '{}' == data) {
+				res.send({
+					code: 200,
+					message: '操作成功！'
+				});
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	function put(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'PUT');
+		addToken(options, req);
+		addParams(options, req);
+		function _success(data, response) {
+			if (response.statusCode >= 400) {
+				logger.error(options, data);
+				res.status(response.statusCode);
+				res.send(data);
+			} else if (!data || 'null' == data || "null\n" == data || '{}' == data) {
+				res.send({
+					code: 200,
+					message: '操作成功！'
+				});
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	function patch(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'PATCH');
+		addToken(options, req);
+		addParams(options, req);
+		function _success(data, response) {
+			if (response.statusCode >= 400) {
+				logger.error(options, data);
+				res.send(data);
+			} else if (!data) {
+				res.send({
+					code: 200,
+					message: '操作成功！'
+				});
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	function head(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'HEAD');
+		addToken(options, req);
+		addParams(options, req);
+		function _success(data, response) {
+			if (response.statusCode >= 400) {
+				logger.error(options, data);
+				res.send(data);
+			} else if (!data) {
+				res.send({
+					code: 200,
+					message: '操作成功！'
+				});
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	function del(req, res, next) {
+		var url = splitUrl(req.originalUrl);
+		var options = getOptions(url, 'DELETE');
+		addToken(options, req);
+		addParams(options, req);
+		addContentLength(options);
+		function _success(data, response) {
+			if (response.statusCode >= 400) {
+				logger.error(options, data);
+				res.status(response.statusCode);
+				res.send(data);
+			} else if (!data || (data && !data.message)) {
+				res.send({
+					code: 200,
+					action: "delete",
+					message: '删除成功'
+				});
+			} else {
+				res.send(data);
+			}
+		}
+		function _fail(err) {
+			logger.error(options, err);
+			res.send(err);
+		}
+		rest.restClient(options, _success, _fail);
+	}
+
+	return {
+		'get': get,
+		'post': post,
+		'put': put,
+		'patch': patch,
+		'head': head,
+		'delete': del
+	};
+};
+
+exports['@singleton'] = true;
+exports['@require'] = ['igloo/logger', 'utils/rest', 'igloo/settings'];
--- a/controllers/auth.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/auth.js 0 → 100644
查看文件 @873fca7
+const passport = require("passport");
+const urlencode = require("urlencode");
+const async = require("async");
+const crypto = require("crypto");
+
+exports = module.exports = function (logger, rest, settings) {
+  function index(req, res, next) {
+    logger.info(req.user);
+    res.redirect("https://www.baidu.com");
+  }
+
+  function indexPrefix(req, res) {
+    logger.info(req.user);
+    if (req.csrfToken) {
+      if (settings.prefix && settings.prefix.length > 1) {
+        res.redirect(settings.prefix.substring(0, settings.prefix.length - 1));
+      } else {
+        res.render("index", { csrfToken: req.csrfToken() });
+      }
+    } else res.render("index", { csrfToken: "" });
+  }
+
+  function productDes(req, res, next) {
+    if (req.csrfToken)
+      res.render("chat/new-chat", { csrfToken: req.csrfToken() });
+    else res.render("chat/new-chat", { csrfToken: "" });
+  }
+
+  function recharge(req, res) {
+    var params = JSON.parse(urlencode.decode(req.query.params));
+    console.log(params);
+    if (req.csrfToken)
+      res.render("recharge", { recharge: params, csrfToken: req.csrfToken() });
+    else res.render("recharge", { recharge: params, csrfToken: "" });
+  }
+
+  function register(req, res, next) {
+    if (req.csrfToken)
+      res.render("newRegister", { csrfToken: req.csrfToken() });
+    else res.render("newRegister", { csrfToken: "" });
+  }
+
+  function mobileRegister(req, res) {
+    if (req.csrfToken)
+      res.render("registerMobile", { csrfToken: req.csrfToken() });
+    else res.render("registerMobile", { csrfToken: "" });
+  }
+
+  function mobileRegisterSuccess(req, res) {
+    if (req.csrfToken)
+      res.render("registerMobileSuccess", { csrfToken: req.csrfToken() });
+    else res.render("registerMobileSuccess", { csrfToken: "" });
+  }
+
+  function signIn(req, res, next) {
+    //	console.log(req);
+    if (req.csrfToken) res.render("newLogin", { csrfToken: req.csrfToken() });
+    else res.render("newLogin", { csrfToken: "" });
+  }
+
+  function doLogin(req, res, next) {
+    passport.authenticate("local", function (err, user, info) {
+      console.log("doLogin:", err, user, info);
+      if (err) {
+        return next(err);
+      }
+      if (!user) {
+        return res.send(info);
+      }
+      req.logIn(user, function (err) {
+        if (err) {
+          return next(err);
+        }
+        return res.send({
+          ok: "登录成功",
+          user_info: req.session.passport.user.user_info,
+        });
+      });
+    })(req, res, next);
+  }
+
+  function signOut(req, res, next) {
+    if (
+      req.session.passport &&
+      req.session.passport.user &&
+      req.session.passport.user.user_info &&
+      req.session.passport.user.user_info.user
+    )
+      logger.info(
+        req.session.passport.user.user_info.user,
+        "You have successfully logged out"
+      );
+    req.logout();
+    req.flash("success", "You have successfully logged out");
+    res.redirect("/");
+  }
+
+  function smsCodes(req, res, next) {
+    rest.postJson({
+      baseUrl: "url",
+      url: "auth/smscodes",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        res.send({ code: 200, message: "发送成功" });
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function tenants(req, res, next) {
+    rest.register({
+      baseUrl: "url",
+      url: "tenants",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function resetPass(req, res) {
+    rest.putJson({
+      baseUrl: "url",
+      url: "auth/user",
+      params: {
+        user: req.body.user,
+        password: req.body.password,
+        again_password: req.body.again_password,
+      },
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function updatePassword(req, res) {
+    rest.patchJson({
+      baseUrl: "url",
+      url: "users/" + req.body.userId,
+      params: {
+        password: req.body.password,
+      },
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function loadUserInfo(req, res) {
+    settings;
+    if (req.session.passport.user && req.session.passport.user.user_info) {
+      res.send({
+        user_info: req.session.passport.user.user_info,
+        prefix: settings.prefix,
+      });
+    } else {
+      res.send({ user_info: null, prefix: settings.prefix });
+    }
+  }
+
+  function getUploaderToken(req, res) {
+    rest.postJson({
+      baseUrl: "ossUrl",
+      url: "inits",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function getObjectTokenByID(req, res) {
+    rest.get({
+      baseUrl: "ossUrl",
+      url: "objects/" + req.body.file_id,
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function delOSSObject(req, res) {
+    rest.del({
+      baseUrl: "ossUrl",
+      url:
+        "s3objects/" +
+        req.body.request_id +
+        "?bucket=" +
+        req.body.bucket +
+        "&file=" +
+        req.body.name,
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      console.log(response.statusCode);
+      if (response.statusCode < 300) {
+        res.send({ delete: "ok" });
+      }
+    }
+  }
+
+  function smsVerification(req, res) {
+    rest.postJson({
+      baseUrl: "url",
+      url: "auth/sms_verification",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        res.send({ code: 200, message: "发送成功" });
+      } else {
+        res.send({
+          code: response.statusCode,
+          message: data.message,
+          errors: data.errors,
+        });
+      }
+    }
+  }
+
+  function healthMonitor(res) {
+    res.statusCode = 200;
+    return res.send("status ok");
+  }
+
+  function updateUserRoles(req, res) {
+    rest.putJson({
+      baseUrl: "url",
+      url: "user_roles/" + req.body.user_id,
+      params: req.body.roles,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        res.send({ back: "ok" });
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function getRoles(req, res) {
+    rest.get({
+      baseUrl: "url",
+      url: "roles",
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function getUserRoles(req, res) {
+    rest.get({
+      baseUrl: "url",
+      url:
+        "user_roles?user=" +
+        urlencode(req.body.user) +
+        "&limit=" +
+        req.body.limit +
+        "&offset=" +
+        req.body.offset,
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function getTenant(req, res) {
+    rest.get({
+      baseUrl: "url",
+      url: "tenants/" + req.body.tenant_id,
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function updateTenant(req, res) {
+    rest.putJson({
+      baseUrl: "url",
+      url: "tenants/" + req.body.tenant_id,
+      params: req.body.tenant,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function offer(req, res) {
+    rest.get({
+      baseUrl: "hrUrl",
+      url:
+        "offers/" + req.params.requestId + "?tenant_id=" + req.query.tenant_id,
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      //res.send(data);
+      console.log(data);
+      data["offerId"] = req.params.requestId;
+      data["tenantId"] = req.query.tenant_id;
+      res.render("offer", data);
+    }
+  }
+
+  function onboardStatus(req, res) {
+    rest.get({
+      baseUrl: "hrUrl",
+      url: "onboard-status",
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      useUrl: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function dowloadApp(req, res) {
+    var mobileAgent = req.headers["user-agent"].toLowerCase();
+    var agent = {
+      android:
+        mobileAgent.indexOf("android") > -1 || mobileAgent.indexOf("Adr") > -1,
+      iPhone: mobileAgent.indexOf("iphone") > -1,
+      iPad: mobileAgent.indexOf("ipad") > -1,
+    };
+    if (agent.iPhone || agent.iPad) {
+      res.redirect(
+        301,
+        "https://itunes.apple.com/cn/app/%E8%96%AA%E5%91%97/id1140779439?l=en&mt=8"
+      );
+    } else if (agent.android) {
+      res.redirect(
+        301,
+        "http://krhrimg.oss-cn-beijing.aliyuncs.com/appdownload/production/android/krhr-android.apk"
+      );
+    } else {
+      res.redirect(
+        301,
+        "http://krhrimg.oss-cn-beijing.aliyuncs.com/appdownload/production/android/krhr-android.apk"
+      );
+    }
+  }
+
+  function softwareLicense(res) {
+    res.render("softwareLicense");
+  }
+
+  function changePassForRegister(req, res) {
+    var options = {
+      baseUrl: "url",
+      url: "users/" + req.body.user_id,
+      params: {
+        password: req.body.password,
+      },
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    };
+    if (req.body.access_token) {
+      console.log("@@@!!!!!!!!!!!!!!!!");
+      options.options = {
+        accessToken: req.body.access_token,
+      };
+      options["excludeToken"] = true;
+    }
+    rest.patchJson(options);
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function changeTenant(req, res) {
+    var params = {
+      grant_type: "refresh_token",
+      scope: "global_access:tenant_admin,tenant:" + req.body.id,
+      refresh_token: req.session.passport.user.refreshToken,
+    };
+    req.session.passport.user.token = "";
+    rest.postJson({
+      baseUrl: "url",
+      url:
+        settings.restful.url +
+        "uaa" +
+        settings.restful.version +
+        "/auth/tokens",
+      useUrl: true,
+      params: params,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      console.log(data);
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        req.session.passport.user.token = data.access_token;
+        req.session.passport.user.refreshToken = data.refresh_token;
+        req.session.passport.user.user_info = {
+          user: data.user,
+          perms: [],
+          tenant: data.tenant,
+          scope: data.scope,
+          oss: req.session.passport.user.user_info.oss,
+        };
+        req.session.save(function () {
+          rest.get({
+            baseUrl: "url",
+            url:
+              settings.restful.url +
+              "uaa" +
+              settings.restful.version +
+              "/perms/detail",
+            useUrl: true,
+            params: {},
+            callback: _scb,
+            req: req,
+            res: res,
+            options: {},
+          });
+        });
+      } else {
+        res.send({
+          code: response.statusCode,
+          message: data.message,
+          initialize_done: "n",
+        });
+      }
+    }
+    function _scb(data1, response) {
+      if (response.statusCode < 300 && data1.items) {
+        req.session.passport.user.user_info.perms = data1.items;
+        req.session.save(function () {
+          // res.send({"code":200,"message":"切换租户成功"});
+          rest.get({
+            baseUrl: "url",
+            url:
+              settings.restful.url +
+              "filemeta" +
+              settings.restful.version +
+              "/config",
+            useUrl: true,
+            params: {},
+            callback: _scb1,
+            req: req,
+            res: res,
+            options: {},
+          });
+        });
+      } else {
+        res.send({ code: response.statusCode, message: data1.message });
+      }
+    }
+    function _scb1(data2, response) {
+      if (response.statusCode < 300 && data2 && data2.bucket) {
+        req.session.passport.user.user_info.oss = data2;
+        req.session.save(function () {
+          res.send({ code: 200, message: "切换租户成功" });
+        });
+      } else {
+        res.send({ code: 200, message: "切换租户失败" });
+      }
+    }
+  }
+
+  function sendRejectOffer(req, res) {
+    rest.get({
+      baseUrl: "hrUrl",
+      url: req.body.url, //传一个参数
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+      useUrl: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        res.send({ action: "ok" });
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function acceptOffer(req, res) {
+    rest.get({
+      baseUrl: "hrUrl",
+      url: req.body.url, //传一个参数
+      params: {},
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+      useUrl: true,
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        res.send({ action: "ok" });
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function imTokens(req, res) {
+    rest.post({
+      url: "auth/im_tokens",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function listChannels(req, res) {
+    rest.get({
+      baseUrl: "chatUrl",
+      url: "channels?page_size=10&page=0&status=active",
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    });
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      res.send(data);
+    }
+  }
+
+  function filemeta(req, res) {
+    var fullPath =
+      settings.restful.url +
+      "filemeta" +
+      settings.restful.version +
+      "/object-redirect";
+    fullPath =
+      fullPath +
+      "?" +
+      "bucket=" +
+      req.query.bucket +
+      "&object=" +
+      encodeURIComponent(req.query.object);
+    console.info("fullPath::::::", fullPath);
+    var options = {
+      service_catalog: "",
+      url: fullPath,
+      useUrl: true,
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    };
+    rest.get(options);
+    function _cb(data, response) {
+      if (data && data.download_url) {
+        if (req.query.type && "json" == req.query.type) {
+          res.send(data);
+        } else {
+          var url = data.download_url;
+          let path = url.split("?")[0];
+          let pathArray = path.split("/");
+          let result = [];
+          for (var i = 0; i < pathArray.length; i++) {
+            if (i == pathArray.length - 1) {
+              result.push(encodeURIComponent(pathArray[i]));
+            } else {
+              result.push(pathArray[i]);
+            }
+          }
+          let result1 = result.join("/");
+          if (url.indexOf("?") !== -1) {
+            result1 += "?" + url.split("?")[1];
+          }
+          if (req.query.result_callback) {
+            res.send(data);
+          } else {
+            res.redirect(301, result1);
+          }
+        }
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function getCustomerQrcode(req, res) {
+    var fullPath =
+      settings.restful.url +
+      "crm" +
+      settings.restful.version +
+      "/customers/" +
+      req.query.id +
+      "/qrcode";
+    var options = {
+      service_catalog: "",
+      url: fullPath,
+      useUrl: true,
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    };
+    rest.get(options);
+    function _cb(data, response) {
+      if (data && data.url_path) {
+        res.redirect(301, data.url_path);
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function getPositionQrcode(req, res) {
+    var fullPath =
+      settings.restful.url +
+      "recruit" +
+      settings.restful.version +
+      "/positions/" +
+      req.query.id +
+      "/qrcode";
+    var options = {
+      service_catalog: "",
+      url: fullPath,
+      useUrl: true,
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    };
+    rest.get(options);
+    function _cb(data, response) {
+      if (data && data.url_path) {
+        res.redirect(301, data.url_path);
+      } else {
+        res.send(data);
+      }
+    }
+  }
+
+  function getOSSConfig(req, res) {
+    var fullPath =
+      settings.restful.url + "filemeta" + settings.restful.version + "/config";
+    var options = {
+      service_catalog: "",
+      url: fullPath,
+      useUrl: true,
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+    };
+    rest.get(options);
+    function _cb(data, response) {
+      if (data && data.bucket) {
+        req.session.passport.user.user_info.oss = data;
+        req.session.save(function () {
+          res.send({ code: 200, message: "oss配置加载成功" });
+        });
+      } else {
+        res.send({ code: 200, message: "oss配置加载失败" });
+      }
+    }
+  }
+
+  function weidianTempLate(req, res) {
+    const { params } = req;
+    var fullPath =
+      settings.restful.url + "socialwork/internal/minishop/" + params.id;
+    var options = {
+      service_catalog: "",
+      url: fullPath,
+      useUrl: true,
+      params: req.body,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    };
+    rest.get(options);
+    function _cb(data, response) {
+      logger.info("back data:", data);
+      if (response.statusCode < 300) {
+        const { shop_logo = [], shop_name = "", shop_comment = "" } = data;
+        let imgUrl = "";
+        if (shop_logo.length > 0) {
+          imgUrl = "http://oss.workai.com.cn/public/" + shop_logo[0].object;
+        }
+        res.render("template/weiDian", {
+          imgUrl: imgUrl,
+          shop_name: shop_name,
+          shop_comment: shop_comment,
+        });
+      } else {
+        res.render("template/weiDian");
+      }
+    }
+  }
+
+  function workaiSecurityOAuth(req, res) {
+    var params = req.query;
+    if (params.authorization_code) {
+      var passport = {
+        user: {
+          refreshToken: "",
+          token: "",
+          service_catalog: {},
+          user_info: {},
+          err: null,
+        },
+      };
+      async.waterfall(
+        [
+          function (callback) {
+            //第三方登录
+            var tempParams = {
+              grant_type: "authorization_code_v1",
+              code: params.authorization_code,
+            };
+            // var tempParams={
+            // 	"grant_type":"password",
+            // 	"username":"18510929499",
+            // 	"scope":"global_access:tenant_admin",
+            // 	"password":"a123456"
+            // };
+            logger.info(
+              "Third login",
+              settings.restful.url + "uaa/v1/auth/tokens",
+              tempParams
+            );
+            rest.restful
+              .postJson(
+                settings.restful.url + "uaa/v1/auth/tokens",
+                tempParams,
+                {
+                  headers: {
+                    "Content-Type": "application/json",
+                    Accept: "application/json",
+                  },
+                }
+              )
+              .on("success", function (data) {
+                logger.info("Third login json data:", data);
+                if (data.access_token) {
+                  var scopes = data.scope.split(",");
+                  passport.user.token = data.access_token;
+                  passport.user.refreshToken = data.refresh_token;
+                  passport.user.user_info = data.user || {};
+                  passport.user.tenant_info = data.tenant;
+                  passport.user.customer_info = data.customer;
+                  passport.user.user_info.perms = data.perms;
+                  passport.user.type = data.user.type;
+                  passport.user.real_auth_status = data.user.real_auth_status;
+                  passport.user.credential_status = data.user.credential_status;
+                  passport.user.user_info.scope = scopes[0];
+                  callback(null, data);
+                } else {
+                  var err = new Error("Third login err");
+                  passport.user.err = data.message;
+                  callback(err, data);
+                }
+              })
+              .on("error", function (err, response) {
+                logger.error("Third login error", err);
+                var err = new Error("Third login err");
+                callback(err, response);
+              })
+              .on("fail", function (data, response) {
+                logger.error("Third login fail", data);
+                callback(data, response);
+              });
+          },
+          function (data, callback) {
+            //获取机构列表
+            var tempHead = {};
+            var ip = req.ip.match(/\d+\.\d+\.\d+\.\d+/)[0];
+            var user_agent = req.headers["user-agent"] || "";
+            tempHead["SXClientIP"] = ip;
+            tempHead["User-Agent"] = user_agent;
+            logger.info(
+              "Third login tenants",
+              settings.restful.url + "uaa/v1/tenants?all=true",
+              { accessToken: data.access_token, headers: tempHead }
+            );
+            rest.restful
+              .get(settings.restful.url + "uaa/v1/tenants?all=true", {
+                accessToken: data.access_token,
+                headers: tempHead,
+              })
+              .on("success", function (data1) {
+                logger.info("Third login tenants list:", data1);
+                if (data1 && data1.items && data1.items.length > 0) {
+                  callback(null, data1.items);
+                } else {
+                  var err = new Error("Third login tenants list err");
+                  passport.user.err = data.message;
+                  callback(err, data);
+                }
+              })
+              .on("error", function (err, response) {
+                var err = new Error("Third login tenants list err");
+                callback(err, response);
+              })
+              .on("fail", function (data, response) {
+                callback(data, response);
+              });
+          },
+          function (data, callback) {
+            //刷新token
+            if (data && data.length == 1) {
+              var params = {
+                grant_type: "refresh_token",
+                scope: "global_access:tenant_admin,tenant:" + data[0].id,
+                refresh_token: passport.user.refreshToken,
+              };
+              passport.user.token = "";
+              logger.info(
+                "Third login tokens",
+                settings.restful.url + "uaa/v1/auth/tokens",
+                params
+              );
+              rest.restful
+                .postJson(settings.restful.url + "uaa/v1/auth/tokens", params, {
+                  headers: {
+                    "Content-Type": "application/json",
+                    Accept: "application/json",
+                  },
+                })
+                .on("success", function (data2) {
+                  logger.info("Third login json data2:", data2);
+                  if (data2.access_token) {
+                    var scopes = data2.scope.split(",");
+                    passport.user.token = data2.access_token;
+                    passport.user.refreshToken = data2.refresh_token;
+                    passport.user.user_info = data2.user || {};
+                    passport.user.tenant_info = data2.tenant;
+                    passport.user.customer_info = data2.customer;
+                    passport.user.user_info.perms = data2.perms;
+                    passport.user.type = data2.user.type;
+                    passport.user.real_auth_status =
+                      data2.user.real_auth_status;
+                    passport.user.credential_status =
+                      data2.user.credential_status;
+                    passport.user.user_info.scope = scopes[0];
+                    passport.user.user_info.tenant = data2.tenant;
+                    passport.user.user_info.user = {
+                      credential_status: data2.credential_status,
+                      id: data2.id,
+                      is_root: data2.is_root,
+                      mobile: data2.mobile,
+                      name: data2.name,
+                      real_auth_status: data2.real_auth_status,
+                      status: data2.status,
+                      type: data2.type,
+                      wx_open_id: data2.wx_open_id,
+                    };
+                    callback(null, data2);
+                  } else {
+                    var err = new Error("Third login err");
+                    passport.user.err = data2.message;
+                    callback(err, data2);
+                  }
+                })
+                .on("error", function (err, response) {
+                  logger.error("Third login error", err);
+                  var err = new Error("Third login err");
+                  callback(err, response);
+                })
+                .on("fail", function (data2, response) {
+                  logger.error("Third login fail", data2);
+                  callback(data2, response);
+                });
+            } else if (data && data.length > 1) {
+              //   #/login/choose-tenant
+              callback(null, data);
+            } else {
+              var err = new Error("Third login tenants list item error");
+              callback(err, data);
+            }
+          },
+        ],
+        function (err, result) {
+          if (err) {
+            //登陆失败跳转失败页
+            res.render("loginerr", { err: err });
+          } else if (result instanceof Array && result.length > 1) {
+            //登陆成功跳转选择机构页
+            req.session.passport = passport;
+            req.session.save(function () {
+              res.redirect(301, settings.prefix + "#login/choose-tenant");
+            });
+          } else {
+            req.session.passport = passport;
+            req.session.save(function () {
+              rest.get({
+                baseUrl: "url",
+                url:
+                  settings.restful.url +
+                  "uaa" +
+                  settings.restful.version +
+                  "/perms/detail",
+                useUrl: true,
+                params: {},
+                callback: _scb,
+                req: req,
+                res: res,
+                options: {},
+              });
+            });
+            function _scb(data1, response) {
+              if (response.statusCode < 300 && data1.items) {
+                req.session.passport.user.user_info.perms = data1.items;
+                req.session.save(function () {
+                  if (params.redirect_page) {
+                    res.redirect(
+                      301,
+                      settings.prefix + "#" + params.redirect_page
+                    ); //登陆成功跳转首页
+                  } else {
+                    res.redirect(301, settings.prefix + "#container/home"); //登陆成功跳转首页
+                  }
+                });
+              } else {
+                if (params.redirect_page) {
+                  res.redirect(
+                    301,
+                    settings.prefix + "#" + params.redirect_page
+                  ); //登陆成功跳转首页
+                } else {
+                  res.redirect(301, settings.prefix + "#container/home"); //登陆成功跳转首页
+                }
+              }
+            }
+          }
+        }
+      );
+    }
+  }
+
+  function getTastLink(req, res) {
+    var url = crypto.createHash("md5").update(req.body.id).digest("hex");
+    if (settings.prefix && settings.prefix.length > 1) {
+      res.send(
+        req.protocol +
+          "://" +
+          req.get("host") +
+          settings.prefix.substring(0, settings.prefix.length - 1) +
+          "/socialwork/freedom-jobs/emps/" +
+          req.body.id +
+          "/" +
+          url
+      );
+    } else {
+      res.send({
+        url:
+          req.protocol +
+          "://" +
+          req.get("host") +
+          "/socialwork/freedom-jobs/emps/" +
+          req.body.id +
+          "/" +
+          url,
+      });
+    }
+  }
+
+  function freedomJobsEmp(req, res) {
+    var id = req.params.id;
+    // var url = crypto.createHash('md5').update(id).digest('hex');
+    if (false) {
+      //验证未通过verification != url
+      if (settings.prefix && settings.prefix.length > 1) {
+        res.redirect(settings.prefix.substring(0, settings.prefix.length - 1));
+      } else {
+        res.redirect("/");
+      }
+    } else {
+      //验证通过跳转，获取token存到session里
+      var passport = {
+        user: {
+          refreshToken: "",
+          token: "",
+          service_catalog: {},
+          user_info: {},
+          err: null,
+        },
+      };
+      var tempParams = {
+        grant_type: "client_credential",
+        client_id: "340161778618994688", //多宝鱼环境
+        client_secret: "0f8c30aa3d15332652f62c3eaf22fdea",
+      };
+      rest.restful
+        .postJson(settings.restful.url + "uaa/v1/auth/tokens", tempParams, {
+          headers: {
+            "Content-Type": "application/json",
+            Accept: "application/json",
+          },
+        })
+        .on("success", function (data) {
+          if (data.access_token) {
+            var scopes = data.scope.split(",");
+            passport.user.token = data.access_token;
+            passport.user.refreshToken = data.refresh_token;
+            passport.user.user_info = data.user;
+            passport.user.tenant_info = data.tenant;
+            passport.user.customer_info = data.customer;
+            passport.user.user_info.perms = data.perms;
+            passport.user.type = data.user.type;
+            passport.user.real_auth_status = data.user.real_auth_status;
+            passport.user.credential_status = data.user.credential_status;
+            passport.user.user_info.scope = scopes[0];
+            req.session.passport = passport;
+            req.session.save(function () {
+              if (settings.prefix && settings.prefix.length > 1) {
+                res.redirect(
+                  301,
+                  settings.prefix.substring(0, settings.prefix.length - 1) +
+                    "/#task_assign/" +
+                    id
+                );
+              } else {
+                res.redirect(301, "/#task_assign/" + id);
+              }
+            });
+          } else {
+            passport.user.err = data.message;
+          }
+        })
+        .on("error", function (err, response) {
+          logger.error("Third login error", err);
+          var err = new Error("Third login err");
+          callback(err, response);
+        })
+        .on("fail", function (data) {
+          logger.error("Third login fail", data);
+        });
+    }
+  }
+
+  function getShortToken(req, res) {
+    var params = {
+      grant_type: "refresh_token",
+      scope: req.session.passport.user.scope,
+      refresh_token: req.session.passport.user.refreshToken,
+    };
+    logger.info("getShortToken:", params);
+    rest.postJson({
+      baseUrl: "url",
+      url:
+        settings.restful.url +
+        "uaa" +
+        settings.restful.version +
+        "/auth/tokens",
+      useUrl: true,
+      params: params,
+      callback: _cb,
+      req: req,
+      res: res,
+      options: {},
+      excludeToken: true,
+    });
+    function _cb(data, response) {
+      console.log(data);
+      logger.info("back data:", data);
+      res.send({ code: response.statusCode, access_token: data.access_token });
+    }
+  }
+
+  return {
+    index: index,
+    indexPrefix,
+    register: register,
+    signIn: signIn,
+    doLogin: doLogin,
+    signOut: signOut,
+    smsCodes: smsCodes,
+    tenants: tenants,
+    productDes: productDes,
+    resetPass: resetPass,
+    updatePassword: updatePassword,
+    loadUserInfo: loadUserInfo,
+    getUploaderToken: getUploaderToken,
+    getObjectTokenByID,
+    delOSSObject: delOSSObject,
+    healthMonitor,
+    smsVerification,
+    updateUserRoles,
+    getRoles,
+    getUserRoles,
+    getTenant,
+    updateTenant,
+    offer,
+    onboardStatus,
+    dowloadApp,
+    mobileRegister,
+    mobileRegisterSuccess,
+    softwareLicense,
+    recharge,
+    changePassForRegister,
+    changeTenant,
+    sendRejectOffer,
+    acceptOffer,
+    imTokens,
+    listChannels,
+    filemeta,
+    getCustomerQrcode,
+    getPositionQrcode,
+    getOSSConfig,
+    weidianTempLate,
+    workaiSecurityOAuth,
+    getTastLink,
+    freedomJobsEmp,
+    getShortToken,
+  };
+};
+
+exports["@singleton"] = true;
+exports["@require"] = ["igloo/logger", "utils/rest", "igloo/settings"];
--- a/controllers/authed.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/authed.js 0 → 100644
查看文件 @873fca7
+var urlencode = require('urlencode');
+var passport = require('passport');
+
+exports=module.exports=function(logger,rest,settings){   
+	function encodeUrl(url){
+		return urlencode(url);
+	}
+
+	function encodePamars(params){
+		var temp=[];
+		for(var i=0;i<params.length;i++){
+			var param=params[i];
+			var tempParam=param.split("=")
+			tempParam[1]=urlencode.decode(tempParam[1], 'utf8');
+			tempParam[1]=tempParam[1].replace(/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g, '');
+			console.log(tempParam[1]);
+			if(i<(params.length-1)){
+				if(/[:&+/?%#=]/g.test(tempParam[1])){
+					temp.push(tempParam[0]+"="+encodeUrl(tempParam[1])+"&");
+				}else{
+					temp.push(tempParam[0]+"="+tempParam[1]+"&");
+				} 
+			}else{
+				if(/[:&+/?%#=]/g.test(tempParam[1])){
+					temp.push(tempParam[0]+"="+encodeUrl(tempParam[1]));
+				}else{
+					temp.push(tempParam[0]+"="+tempParam[1]);
+				}  
+			}
+		} 
+		return temp.join("");
+	}
+
+	function handlePamars(url){
+		var tempUrl=url;
+		// if(url.indexOf("?")!=-1){
+		// 	var temp=url.split("?");
+		// 	var params=""; 
+		// 	if(temp[1]&&temp[1].indexOf("&")!=-1){
+		// 		params=encodePamars(temp[1].split("&"));
+		// 	}else{
+		// 		params=encodePamars([temp[1]]);
+		// 	}
+		// 	return temp[0]+"?"+params;
+		// }else {
+		// 	return tempUrl;
+		// } 
+		return tempUrl;
+	}
+
+	function splitServiceFromUrl(url){
+		var catalog=url.substring(1,url.indexOf('/',1));
+		var pathUrl=url.substring(url.indexOf('/',1));
+		var fullPath=settings.restful.url+catalog+settings.restful.version+pathUrl; 
+		return fullPath
+	}
+
+	function splitUrl(fullUrl){
+		if(settings.prefix&&settings.prefix.length>1){
+			fullUrl=fullUrl.substring(settings.prefix.length-1);
+		}
+		var url=fullUrl.substring(9);
+		return url;
+	}
+
+	function searchService(services,name){
+		if(services[name]){
+			console.log(services[name]);
+			return false;
+		}else{
+			return true;
+		}
+	}
+
+	function checkReq(req,res){
+		var flag=true;
+		// if(flag&&req.headers&&!req.headers['service-catalog']){
+		// 	res.status(400);
+		// 	res.send({"errors":{},"message":"缺少必要请求参数，服务目录名称是必填项"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&req.session.passport&&req.session.passport.user&&!req.session.passport.user.service_catalog){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未加载，请重新登录"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&searchService(req.session.passport.user.service_catalog,req.headers['service-catalog'])){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未查询到请求服务,请确认参数正确"}); 
+		// 	flag=false; 
+		// }
+		return flag;
+	}
+
+	function checkJson(req){ 
+		if(req.headers&&req.headers['content-type']=='application/json'){
+			return true;
+		}else{
+			return false;
+		}
+	}
+
+	function get(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		url=handlePamars(url);
+		url=splitServiceFromUrl(url); 
+		if(checkReq(req,res)){  
+			var options={ 
+				'service_catalog':'',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true
+			}; 
+			// if(checkJson(req)){
+			// 	rest.json(options);
+			// }else{
+			// 	rest.get(options);
+			// }
+			rest.get(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else {
+				res.send(data);
+			} 
+		} 	 
+	}
+
+	function post(req,res,next){
+		var url=splitUrl(req.originalUrl); 
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true 
+			};
+			if(checkJson(req)){
+				rest.postJson(options);
+			}else{
+				rest.post(options);
+			} 
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data);  
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else{
+				res.send(data);
+			} 
+		}
+	}
+
+	function put(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url':url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true 
+			};
+			if(checkJson(req)){
+				rest.putJson(options);
+			}else{
+				rest.put(options);
+			}
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else{
+				res.send(data);
+			} 
+		}
+	}
+
+	function patch(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true 
+			};
+			if(checkJson(req)){
+				rest.patchJson(options);
+			}else{
+				rest.patch(options);
+			}
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			res.send(data);
+		}
+	}
+
+	function head(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true 
+			};
+			rest.get(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			res.send(data);
+		}
+	}
+
+	function del(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{},
+				'excludeToken':true 
+			};
+			rest.del(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300){
+		   		res.send({'action':'delete',"message":"删除成功"});
+		   	}else{
+				res.send(data);
+			}  
+		}
+	}
+
+	function doLogin(req,res,next){  
+		passport.authenticate('local', function(err, user, info) {  
+			if (err) { return next(err); }
+			if (!user) { return res.send({'error':'用户名或密码错误！'}); }
+			req.logIn(user, function(err) { 
+				if (err) { return next(err); }
+				return res.send({'ok':'登录成功',user_info:req.session.passport.user.user_info});
+			});
+		})(req, res, next); 
+	}
+
+	return { 
+		'get':get,
+		'post':post,
+		'put':put,
+		'patch':patch,
+		'head':head,
+		'delete':del
+	};
+};
+
+exports['@singleton']=true;
+exports['@require']=['igloo/logger','utils/rest','igloo/settings'];
--- a/controllers/file.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/file.js 0 → 100644
查看文件 @873fca7
+var urlencode = require('urlencode');
+exports=module.exports=function(logger,rest,settings){   
+	function encodeUrl(url){
+		return urlencode(url);
+	}
+
+	function encodePamars(params){
+		var temp=[];
+		for(var i=0;i<params.length;i++){
+			var param=params[i];
+			var tempParam=param.split("=")
+			tempParam[1]=urlencode.decode(tempParam[1], 'utf8');
+			tempParam[1]=tempParam[1].replace(/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g, '');
+			console.log(tempParam[1]);
+			if(i<(params.length-1)){
+				if(/[:&+/?%#=]/g.test(tempParam[1])){
+					temp.push(tempParam[0]+"="+encodeUrl(tempParam[1])+"&");
+				}else{
+					temp.push(tempParam[0]+"="+tempParam[1]+"&");
+				} 
+			}else{
+				if(/[:&+/?%#=]/g.test(tempParam[1])){
+					temp.push(tempParam[0]+"="+encodeUrl(tempParam[1]));
+				}else{
+					temp.push(tempParam[0]+"="+tempParam[1]);
+				}  
+			}
+		} 
+		return temp.join("");
+	}
+
+	function handlePamars(url){
+		var tempUrl=url;
+		// if(url.indexOf("?")!=-1){
+		// 	var temp=url.split("?");
+		// 	var params=""; 
+		// 	if(temp[1]&&temp[1].indexOf("&")!=-1){
+		// 		params=encodePamars(temp[1].split("&"));
+		// 	}else{
+		// 		params=encodePamars([temp[1]]);
+		// 	}
+		// 	return temp[0]+"?"+params;
+		// }else {
+		// 	return tempUrl;
+		// } 
+		return tempUrl;
+	}
+
+	function splitServiceFromUrl(url){
+		var catalog=url.substring(1,url.indexOf('/',1));
+		var pathUrl=url.substring(url.indexOf('/',1));
+		var fullPath=settings.restful.url+catalog+settings.restful.version+pathUrl; 
+		if(pathUrl&&pathUrl.indexOf('inits')!=-1){
+			fullPath=settings.restful.url+catalog+'/v2'+pathUrl; 
+		}
+		return fullPath
+	}
+
+	function splitUrl(fullUrl){
+		if(settings.prefix&&settings.prefix.length>1){
+			fullUrl=fullUrl.substring(settings.prefix.length-1);
+		}
+		var url=fullUrl.substring(9);
+		return url;
+	}
+
+	function searchService(services,name){
+		if(services[name]){
+			console.log(services[name]);
+			return false;
+		}else{
+			return true;
+		}
+	}
+
+	function checkReq(req,res){
+		var flag=true;
+		// if(flag&&req.headers&&!req.headers['service-catalog']){
+		// 	res.status(400);
+		// 	res.send({"errors":{},"message":"缺少必要请求参数，服务目录名称是必填项"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&req.session.passport&&req.session.passport.user&&!req.session.passport.user.service_catalog){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未加载，请重新登录"}); 
+		// 	flag=false;
+		// }
+		// if(flag&&searchService(req.session.passport.user.service_catalog,req.headers['service-catalog'])){
+		// 	res.status(404);
+		// 	res.send({"errors":{},"message":"服务目录未查询到请求服务,请确认参数正确"}); 
+		// 	flag=false; 
+		// }
+		return flag;
+	}
+
+	function checkJson(req){ 
+		if(req.headers&&req.headers['content-type']=='application/json'){
+			return true;
+		}else{
+			return false;
+		}
+	}
+
+	function get(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		url=handlePamars(url);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'',
+				'url':url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{}
+			};  
+			rest.get(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else {
+				res.send(data);
+			} 
+		} 	 
+	}
+
+	function post(req,res,next){
+		var url=splitUrl(req.originalUrl); 
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'services[catalog].public_endpoint',
+				'url':url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{} 
+			};
+			if(checkJson(req)){
+				rest.postJson(options);
+			}else{
+				rest.post(options);
+			} 
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data);  
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else{
+				res.send(data);
+			} 
+		}
+	}
+
+	function put(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'services[catalog].public_endpoint',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{} 
+			};
+			if(checkJson(req)){
+				rest.putJson(options);
+			}else{
+				rest.put(options);
+			}
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300&&!data){ 
+				res.send({
+					code:200,
+					message:'操作成功！'
+				});
+			}else{
+				res.send(data);
+			} 
+		}
+	}
+
+	function patch(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'services[catalog].public_endpoint',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{} 
+			};
+			if(checkJson(req)){
+				rest.patchJson(options);
+			}else{
+				rest.patch(options);
+			}
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			res.send(data);
+		}
+	}
+
+	function head(req,res,next){
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'services[catalog].public_endpoint',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{} 
+			};
+			rest.get(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			res.send(data);
+		}
+	}
+
+	function del(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		url=splitServiceFromUrl(url);
+		if(checkReq(req,res)){ 
+			var options={ 
+				'service_catalog':'services[catalog].public_endpoint',
+				'url': url,
+				'useUrl':true,
+				'params':req.body,
+				'callback':_cb,
+				'req':req,
+				'res':res,
+				'options':{} 
+			};
+			rest.del(options);
+		}   
+		function _cb(data,response){ 
+			logger.info('back data:',data); 
+			if(response.statusCode<300){
+		   		res.send({'action':'delete',"message":"删除成功"});
+		   	}else{
+				res.send(data);
+			}  
+		}
+	}
+
+	return { 
+		'get':get,
+		'post':post,
+		'put':put,
+		'patch':patch,
+		'head':head,
+		'delete':del
+	};
+};
+
+exports['@singleton']=true;
+exports['@require']=['igloo/logger','utils/rest','igloo/settings'];
--- a/controllers/mock.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/mock.js 0 → 100644
查看文件 @873fca7
+var urlencode = require('urlencode');
+var mockData = require('../json/mockDate.json');
+exports=module.exports=function(logger,rest,settings){    
+
+	function getJson(url,method){
+		var backData={};
+		for(var i=0;i<mockData.length;i++){
+			var urlRegex=new RegExp(mockData[i].url,'g');
+			if(urlRegex.test(url)){
+				backData=mockData[i][method+'_data'];
+				return backData;
+			}
+		}
+		return backData;
+	}
+
+	function get(req,res,next){ 
+		console.log(req.path);
+		res.send(getJson(req.path,'get')); 	 
+	}
+
+	function post(req,res,next){
+		console.log(req.path);
+		res.send(getJson(req.path,'post')); 
+	}
+
+	function put(req,res,next){
+		console.log(req.path);
+		res.send(getJson(req.path,'put')); 
+	}
+
+	function patch(req,res,next){
+		console.log(req.path);
+		res.send(getJson(req.path,'patch')); 
+	}
+
+	function head(req,res,next){
+		console.log(req.path);
+		res.send(getJson(req.path,'head')); 
+	}
+
+	function del(req,res,next){ 
+		console.log(req.path);
+		res.send(getJson(req.path,'del')); 
+	}
+
+	return { 
+		'get':get,
+		'post':post,
+		'put':put,
+		'patch':patch,
+		'head':head,
+		'delete':del
+	};
+};
+
+exports['@singleton']=true;
+exports['@require']=['igloo/logger','utils/rest','igloo/settings'];
--- a/controllers/robot.js 0 → 100644
查看文件 @873fca7
+++ b/controllers/robot.js 0 → 100644
查看文件 @873fca7
+var urlencode= require('urlencode');
+
+exports=module.exports=function(logger,rest,settings){
+	var api_service_endpoint = 'http://47.98.198.227:59000/v1';
+
+	function index(req,res,next){
+		logger.info(req.user);
+		res.render('robotMobile',{title:'外呼机器人'});
+	} 
+
+	function splitUrl(fullUrl){
+		if(settings.prefix&&settings.prefix.length>1){
+			fullUrl=fullUrl.substring(settings.prefix.length-1);
+		}
+		var url=fullUrl.substring(9);
+		return url;
+	}
+
+	function get(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		rest.get({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			console.log(data);
+			res.send(data);   
+		} 	 
+		// res.send({
+		// 	"total_count":20,
+		// 	"items":[{
+		// 		"id":'001',
+		// 		"call_out_number":'18501068035',
+		// 		"call_out_time":2022222,
+		// 		"status":"4",
+		// 		"record_url":'xxxx'
+		// 	}]
+		// })
+	}
+
+	function post(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		rest.postJson({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			console.log(data);
+			res.send(data);  
+		}
+	}
+
+	function put(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		rest.putJson({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			res.send(data);  
+		}
+	}
+
+	function patch(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		rest.patchJson({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			res.send(data);  
+		} 
+	}
+
+	function head(req,res,next){ 
+		var url=splitUrl(req.originalUrl);
+		rest.get({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			res.send(data);  
+		}
+	}
+
+	function del(req,res,next){  
+		var url=splitUrl(req.originalUrl);
+		rest.del({ 
+			'baseUrl':'url',
+			'url':api_service_endpoint+url,
+			'useUrl':true,
+			'params':req.body,
+			'callback':_cb,
+			'req':req,
+			'res':res,
+			'options':{},
+			'excludeToken':true
+		});
+		function _cb(data,response){   
+			res.send(data);  
+		}
+	}
+
+	return {
+		'index':index,
+		'get':get,
+		'post':post,
+		'put':put,
+		'patch':patch,
+		'head':head,
+		'delete':del
+	};
+};
+
+exports['@singleton']=true;
+exports['@require']=['igloo/logger','utils/rest','igloo/settings'];
--- a/etc/init/01-settings.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/01-settings.js 0 → 100644
查看文件 @873fca7
+
+// # settings
+
+var compress = require('compression');
+var https = require('https');
+var http = require('http');
+
+exports = module.exports = function(IoC, settings) {
+
+  var app = this;
+
+  // set the environment
+  app.set('env', settings.server.env);
+
+  // set the default views directory
+  // app.set('views', settings.views.dir);
+
+  // set the default view engine
+  // app.set('view engine', settings.views.engine);
+
+
+
+  if (settings.server.env === 'development') {
+
+    // make view engine output pretty
+    app.locals.pretty = true;
+
+  }
+
+  if (settings.server.env === 'production') {
+
+    // enable view caching
+    // app.enable('view cache');
+
+    // compress response data with gzip/deflate
+    // this overwrites res.write and res.end functions
+    app.use(compress());
+
+  }
+
+  if (settings.server.ssl.enabled) {
+    this.server = https.createServer(settings.server.ssl.options, this);
+  } else {
+    this.server = http.createServer(this);
+  }
+
+};
+
+exports['@require'] = [ '$container', 'igloo/settings' ];
--- a/etc/init/02-middleware.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/02-middleware.js 0 → 100644
查看文件 @873fca7
+
+// # middleware
+
+
+var serveFavicon = require('serve-favicon');
+var path = require('path');
+var winstonRequestLogger = require('winston-request-logger');
+var methodOverride = require('method-override');
+var bodyParser = require('body-parser');
+var responseTime = require('response-time');
+// var busboy = require('connect-busboy');
+
+
+exports = module.exports = function (IoC, logger, settings, policies) {
+
+	var app = this;
+
+	// ignore GET /favicon.ico
+	// app.use(serveFavicon(path.join(settings.publicDir, 'favicon.ico')));
+
+	if (settings.server.env === 'development') {
+
+	}
+
+	// static server (always keep this first)
+	// <http://goo.gl/j2BEl5>
+
+	// adds X-Response-Time header
+	app.use(responseTime({
+		digits: 5
+	}));
+
+	// prepare req.log for error handler
+	app.use(function (req, res, next) {
+		req.log = {
+			response_time: new Date().getTime(),
+			path: req.path,
+			query: req.query,
+			body: req.body,
+			params: req.params
+		};
+		next();
+	});
+
+	app.use((req, res, next) => {//跨域OPTIONS
+		if (req.path !== '/' && !req.path.includes('.')) {
+			res.set({
+				'Access-Control-Allow-Credentials': true, //允许后端发送cookie
+				'Access-Control-Allow-Origin': req.headers.origin || '*', //任意域名都可以访问,或者基于我请求头里面的域
+				'Access-Control-Allow-Headers': 'X-Requested-With,Content-Type', //设置请求头格式和类型
+				'Access-Control-Allow-Methods': 'PUT,POST,GET,DELETE,OPTIONS',//允许支持的请求方式
+				'Content-Type': 'application/json; charset=utf-8',//默认与允许的文本格式json和编码格式
+			});
+		}
+		req.method === 'OPTIONS' ? res.status(204).end() : next();
+	});
+
+	if (settings.server.env === 'production') {//production 生产环境
+		app.use((req, res, next) => {
+			//script-src: 	外部脚本
+			//style-src:	样式表
+			//img-src:		图像
+			//media-src:	媒体文件(音频和视频)	
+			//font-src:		字体文件
+			//object-src:	插件(比如：flash)
+			//child-src:	框架
+			//frame-ancestor:	嵌入的外部资源(比如:<frame> <iframe> <embed> <appled>)
+			//connect-src:		http链接(通过XHR、WebSockets、EventSource等)
+			//worker-src:		worker脚本
+			//manifest-src:		manifest文件
+			let other_origins = [
+				'cdn.ronghub.com',
+				'at.alicdn.com',
+				'gosspublic.alicdn.com',
+				'webapi.amap.com',
+				's22.cnzz.com',
+			];
+			const getKeys = () => {
+
+				let str = [], base_str = "'self' " + other_origins.join(' ') + " https: http: filesystem: blob:";
+				let obj = {
+					'child-src': base_str,
+					'connect-src': base_str,
+					'font-src': base_str + " data:",
+					'frame-src': base_str + " data:",
+					'img-src': base_str + " data:",
+					'media-src': base_str + " data:",
+					'object-src': base_str + " data:",
+					'worker-src': base_str + " 'unsafe-inline' 'unsafe-eval'",
+					'script-src': base_str + " 'unsafe-inline' 'unsafe-eval'",
+					'style-src': base_str + " 'unsafe-inline'",
+				}
+
+				for (var key in obj) {
+					str.push(key + ' ' + obj[key] + ';');
+				}
+
+				return str.join('');
+
+			}
+
+			res.set({
+				'Content-Security-Policy': "default-src 'self' https: http:;" + getKeys()
+			});
+			next();
+		});
+
+	}
+
+
+	// winston request logger before everything else
+	// but only if it was enabled in settings
+	if (settings.logger.requests) {
+		app.use(winstonRequestLogger.create(logger));
+	}
+
+	// parse request bodies
+	// support _method (PUT in forms etc)
+	app.use(
+		bodyParser.json({ limit: '50mb' }),
+		bodyParser.urlencoded({
+			limit: '50mb',
+			extended: true
+		}),
+		methodOverride('_method')
+	);
+	//support "application/x-www-formurlencoded" or starts with "multipart/*"
+	// app.use(busboy({  
+	//     limits: {
+	//       fileSize: 10 * 1024 * 1024
+	//     }
+	// })) 
+
+};
+
+exports['@require'] = ['$container', 'igloo/logger', 'igloo/settings', 'policies'];
--- a/etc/init/03-sessions.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/03-sessions.js 0 → 100644
查看文件 @873fca7
+
+// # sessions
+
+var flash = require('connect-flash');
+var session = require('express-session');
+var cookieParser = require('cookie-parser');
+var passport = require('passport');
+var LocalStrategy = require('passport-local').Strategy;
+var validator = require('validator');
+var _ = require('underscore');
+
+exports = module.exports = function(IoC, settings,authenticate, sessions, User, policies) {
+
+  var app = this; 
+  // pass a secret to cookieParser() for signed cookies
+  app.all(policies.notApiRouteRegexp, cookieParser(settings.cookieParser));
+
+  // add req.session cookie support
+  settings.session.store = sessions;
+  app.all(policies.notApiRouteRegexp, session(settings.session));
+ 
+
+  // add flash message support
+  app.use(session(settings.session));
+  app.use(flash());
+  app.use(passport.initialize());
+  app.use(passport.session());
+  app.all(policies.notApiRouteRegexp, flash());
+
+  //// add passport strategies
+  passport.use(new LocalStrategy(settings.localStrategy,authenticate.strategy));
+  passport.serializeUser(authenticate.serializeUser);
+  passport.deserializeUser(authenticate.deserializeUser);
+  
+};
+
+exports['@require'] = [ '$container', 'igloo/settings','utils/authenticate', 'igloo/sessions', 'models/user', 'policies' ];
--- a/etc/init/04-security.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/04-security.js 0 → 100644
查看文件 @873fca7
+
+// # security
+
+var helmet = require('helmet');
+var csrf = require('csurf');
+
+exports = module.exports = function(IoC, settings, policies) {
+
+  var app = this;
+
+  // trust proxy
+  if (settings.trustProxy) {
+    app.enable('trust proxy');
+  }
+
+  // use helmet for security
+  app.use(helmet());
+
+  // cross site request forgery prevention (csrf)
+  // (disabled for /api endpoints)
+  if (settings.csrf.enabled) {
+    app.all(policies.notApiRouteRegexp, function(req, res, next) {
+      if (req.xhr) return next();
+      csrf(settings.csrf.options)(req, res, next);
+    });
+  }
+
+};
+
+exports['@require'] = [ '$container', 'igloo/settings', 'policies' ];
--- a/etc/init/05-caching.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/05-caching.js 0 → 100644
查看文件 @873fca7
+
+// # caching
+
+var path = require('path');
+var helmet = require('helmet');
+
+exports = module.exports = function(IoC, settings) {
+
+  var app = this;
+
+  // Disable cache if settings say so
+  if (!settings.cache) {
+    app.use(helmet.nocache());
+  } else {
+    // Enable cache if NOT an XHR (AJAX) request
+    app.use(function(req, res, next) {
+      if (req.xhr) return next();
+      res.setHeader('Cache-Control', 'public');
+      res.setHeader('Pragma', '');
+      res.setHeader('Expires', settings.staticServer.maxAge);
+      // res.setHeader("Cache-Control", "no-cache, no-store, must-revalidate"); // HTTP 1.1.
+      // res.setHeader("Pragma", "no-cache"); // HTTP 1.0.
+      // res.setHeader("Expires", "0"); // Proxies.
+      next();
+    });
+  }
+
+};
+
+exports['@require'] = [ '$container', 'igloo/settings' ];
--- a/etc/init/06-views.js 0 → 100644
查看文件 @873fca7
+++ b/etc/init/06-views.js 0 → 100644
查看文件 @873fca7
+
+// # views
+
+var moment = require('moment');
+
+exports = module.exports = function(IoC, settings) {
+
+  var app = this;
+
+  // add dynamic helpers for views
+  app.use(function(req, res, next) {
+
+    res.locals.settings = settings;
+    res.locals.req = req;
+    res.locals.messages = {
+      success: req.flash('success'),
+      error: req.flash('error'),
+      info: req.flash('info'),
+      warning: req.flash('warning')
+    };
+
+    res.locals.moment = moment;
+
+    if (settings.csrf.enabled)
+      res.locals.csrf = req.csrfToken();
+
+    next();
+
+  });
+
+};
+
+exports['@require'] = [ '$container', 'igloo/settings' ];
--- a/json/mockDate.json 0 → 100644
查看文件 @873fca7
+++ b/json/mockDate.json 0 → 100644
查看文件 @873fca7
+[{
+	"url":"/psiorder/customer-other-fee",
+	"get_data":{
+		"total_count": 1,
+		"items": [
+			{
+			"id": "79287340000",
+			"customer": "我是客户",
+			"customer_id": "023984029348",
+			"service_contract": "我是服务合同",
+			"service_contract_id": "6263492374090",
+			"person_count": 100,
+			"total_amount": 5555,
+			"op_month": 1520309847
+			}
+		]
+	}
+},{
+	"url":"/psiorder/person-other-fee",
+	"get_data":{
+		"total_count": 1,
+		"items":[{
+			"id": "79287340000",
+			"name": "张三",
+			"id_num": "130928198007010098",
+			"subject": "制卡费",
+			"total_amount": 300,
+			"comment": "我是备注"
+		}]
+	},
+	"put_data":{
+		"total_count": 1,
+		"items": {
+			"id": "749283740900028",
+			"total_amount": 200,
+			"comment": "修改后的备注"
+		}
+	}
+},{
+	"url":"/psiorder/import-other-fee",
+	"post_data":{
+		"customer_id": "2992839100001993",
+		"service_contract_id": "747738820019918838",
+		"op_month": 1520309847,
+		"object_path": "hro/29384029384.xls"
+	}
+},{
+	"url":"/psiorder/customer-other-fee/[\\W\\w]+",
+	"del_data":{
+		"message": "成功"
+	}
+},{
+	"url":"/psiorder/front-reals",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"customer": "我是客户",
+			"customer_id": "8888292910839900",
+			"service_contract": "我是服务合同",
+			"service_contract_id": "77773889200288388",
+			"op_month": 1520309847,
+			"person_count": 555,
+			"person_amount": 10000,
+			"ent_amount": 8000,
+			"total_amount": 18000,
+			"status": "normal"
+		}]
+	}
+},{
+	"url":"/psiorder/front-real-details",
+	"get_data":{
+		"total_count": 1,
+		"head": {
+			"customer": "我是客户",
+			"customer_id": "8888292910839900",
+			"service_contract": "我是服务合同",
+			"service_contract_id": "77773889200288388",
+			"op_month": 1520309847,
+			"person_count": 555,
+			"person_amount": 10000,
+			"ent_amount": 8000,
+			"total_amount": 18000,
+			"status": "normal"
+		},
+		"items": [{
+			"name": "张三",
+			"id_num": "130928199008020082",
+			"pay_type": "正常应缴",
+			"ent_amount": 1000,
+			"person_amount": 2000,
+			"total_amount": 3000,
+			"op_type":"renew",
+			"status": "normal"
+		}]
+	}
+},{
+	"url":"/psiorder/real-handle-invalid/[\\W\\w]+",
+	"get_data":{
+	  "result":"SUCCESS"
+	}
+},{
+	"url":"/psiorder/real/[\\W\\w]+",
+	"get_data":{
+		"id": "170636915266031616",
+		"pay_type": "正常应缴",
+		"target_type": "ent",
+		"target_id": "152534304117755904",
+		"op_type": "payback",
+		"target_amount": 8594.91,
+		"target_service_fee": 0,
+		"insured_name": "噗噗测试",
+		"insured_person_id": "170621814383316992",
+		"insured_mobile": "18613850761",
+		"id_type": "身份证",
+		"id_num": "123456789098765001",
+		"ext_info": "[]",
+		"pay_start_month": 1509465600,
+		"pay_end_month": 1512057600,
+		"policy_infos": [{
+				"person_fee": 1234.1,
+				"ent_fee": 1234.1,
+				"total_fee": 1234.1,
+				"id": "170636914414587904",
+				"policy_category": "0",
+				"policy_name": "林州太行山",
+				"hhr_type": "城镇",
+				"province": "河南省",
+				"province_code": "410000",
+				"city": "安阳市",
+				"city_code": "410500",
+				"district": "林州市",
+				"district_code": "410581",
+				"total_amount": 27142.84,
+				"insurances": [{
+						"id": "170636914469113856",
+						"base": 1000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "aaa",
+						"back_admin_id": "143359863278276608",
+						"back_admin_mobile": "13691224345",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "黑玉断续膏",
+						"account": "255668797",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "3",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 5427.64,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "0",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 1379.4,
+						"ent_amount": 1334.42,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					},
+					{
+						"id": "170636914569777152",
+						"base": 1000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "112",
+						"back_admin_id": "132861396747554816",
+						"back_admin_mobile": "18501689786",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "残保金",
+						"account": "255668797",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "2",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 5428.8,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "0",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 1380,
+						"ent_amount": 1334.4,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					},
+					{
+						"id": "170636914657857536",
+						"base": 1000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "aaa",
+						"back_admin_id": "143133151974133760",
+						"back_admin_mobile": "13691224345",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "医疗保险",
+						"account": "255668797",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "0",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 5428.8,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "0",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 1380,
+						"ent_amount": 1334.4,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					},
+					{
+						"id": "170636914758520832",
+						"base": 1000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "测试",
+						"back_admin_id": "143135306059616256",
+						"back_admin_mobile": "17710611692",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "养老保险",
+						"account": "255668797",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "0",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 5428.8,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "0",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 1380,
+						"ent_amount": 1334.4,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					},
+					{
+						"id": "170636914825629696",
+						"base": 1000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "东方闪电",
+						"back_admin_id": "143133044163743744",
+						"back_admin_mobile": "14350000000",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "华佗再造丸",
+						"account": "255668797",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "1",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 5428.8,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "0",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 1380,
+						"ent_amount": 1334.4,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "1"
+					}
+				],
+				"created_at": 1515485899,
+				"updated_at": 1515485899,
+				"tenant_id": "122371433052508160",
+				"admin": "测试",
+				"admin_mobile": "17710611692",
+				"admin_id": "132861396747554816",
+				"policy_id": "143373974074560512",
+				"personal_policy_id": "0",
+				"handle_type": "2",
+				"belong_ent": "蜗壳爱智能科技",
+				"belong_ent_id": "122371433052508160"
+			},
+			{
+				"person_fee": 1234.1,
+				"ent_fee": 1234.1,
+				"total_fee": 1234.1,
+				"id": "170636914884349952",
+				"policy_category": "1",
+				"policy_name": "林州市最新公积金政策",
+				"hhr_type": "",
+				"province": "河南省",
+				"province_code": "410000",
+				"city": "安阳市",
+				"city_code": "410500",
+				"district": "林州市",
+				"district_code": "410581",
+				"total_amount": 7236.8,
+				"insurances": [{
+						"id": "170636914980818944",
+						"base": 2000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "候大虎",
+						"back_admin_id": "128270343730106368",
+						"back_admin_mobile": "13261209796",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "补充公积金",
+						"account": "566656",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "0",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 3618.4,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "1",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 919.6,
+						"ent_amount": 889.6,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					},
+					{
+						"id": "170636915064705024",
+						"base": 2000,
+						"pay_start_month": 1509465600,
+						"pay_end_month": 1512057600,
+						"abort_month": -62135596800,
+						"back_admin": "测试",
+						"back_admin_id": "132861396747554816",
+						"back_admin_mobile": "17710611692",
+						"datum_check_status": "init",
+						"op_progress": "0",
+						"op_result": "init",
+						"next_op": "",
+						"insurance": "公积金",
+						"account": "566656",
+						"service_start_month": 1509465600,
+						"pay_rate": 0.4523,
+						"fixed_amount": 500,
+						"insurance_category": "0",
+						"total_amount": 0,
+						"created_at": 1515485899,
+						"updated_at": 1515485899,
+						"tenant_id": "122371433052508160",
+						"payback_source": "manual",
+						"fee_per_month": 3618.4,
+						"op_month": 1514736000,
+						"relation_payback_ids": null,
+						"policy_category": "1",
+						"insured_person_id": "170621814383316992",
+						"person_amount": 919.6,
+						"ent_amount": 889.6,
+						"person_fixed_amount": 300,
+						"ent_fixed_amount": 200,
+						"person_proportion": 0.2299,
+						"ent_proportion": 0.2224,
+						"account_company": "",
+						"pay_frequency": "0"
+					}
+				],
+				"created_at": 1515485899,
+				"updated_at": 1515485899,
+				"tenant_id": "122371433052508160",
+				"admin": "测试",
+				"admin_mobile": "17710611692",
+				"admin_id": "132861396747554816",
+				"policy_id": "143382751427432448",
+				"personal_policy_id": "0",
+				"handle_type": "2",
+				"belong_ent": "蜗壳爱智能科技",
+				"belong_ent_id": "122371433052508160"
+			}
+		],
+		"person_attachments": null,
+		"handle_results": null,
+		"created_at": 1515485899,
+		"updated_at": 1515485899,
+		"tenant_id": "122371433052508160",
+		"op_result": "success",
+		"insurance_ids": "",
+		"view_type": "form",
+		"target_contract_id": "153258768430272512",
+		"target_contract_name": "云测试",
+		"form_abnormal_status": "[]",
+		"form_is_abnormal": "n",
+		"form_handle_status": "wait-confirm",
+		"remind_at": -62135596800,
+		"si_base": 1000,
+		"hf_base": 2000,
+		"target_name": "上海锦迪娱乐有限公司 ",
+		"ent_si_policy_id": "143373974074560512",
+		"ent_hf_policy_id": "143382751427432448",
+		"si_province": "河南省",
+		"si_province_code": "410000",
+		"si_city": "安阳市",
+		"si_city_code": "410500",
+		"si_district": "林州市",
+		"si_district_code": "410581",
+		"hf_province": "河南省",
+		"hf_province_code": "410000",
+		"hf_city": "安阳市",
+		"hf_city_code": "410500",
+		"hf_district": "林州市",
+		"hf_district_code": "410581",
+		"creator": "周正友",
+		"creator_id": "83422060570742784",
+		"person_fee": 4369.3,
+		"ent_fee": 4225.61,
+		"total_fee": 8594.91,
+		"relation_real_id": "0",
+		"relation_payback_id": "0",
+		"handle_type": "2",
+		"op_month": 1514736000,
+		"decrease_comment": "",
+		"si_policy_belong_category": "",
+		"hf_policy_belong_category": "",
+		"si_back_return_infos": [{
+			"id": "8877776678899288",
+			"insurances": "[\"养老\",\"医疗\"]",
+			"return_reason": "无法增员",
+			"return_comment": "备注",
+			"start_month": 1514736000,
+			"end_month": 1514736000
+		}],
+		"hf_back_return_infos": [{
+			"id": "8877776678899288",
+			"insurances": "[\"公积金\"]",
+			"return_reason": "无法增员",
+			"return_comment": "备注",
+			"start_month": 1514736000,
+			"end_month": 1514736000
+		}]
+	}
+},{
+	"url":"/psiorder/do-import-real-template",
+	"post_data":{
+		"result": {
+			"input_columns": [
+				"姓名",
+				"手机号",
+				"证件类型",
+				"开户行",
+				"证件号码",
+				"银行卡号",
+				"生育保险",
+				"商业健康保险费",
+				"服务费",
+				"住房公积金",
+				"应纳税额",
+				"实发工资",
+				"通信费",
+				"备注",
+				"应发工资",
+				"养老保险",
+				"医疗保险",
+				"失业保险"
+			],
+			"base_fields": [{
+					"column": "姓名",
+					"key": "name",
+					"is_required": true
+				},
+				{
+					"column": "手机号",
+					"key": "mobile",
+					"is_required": true
+				}
+			],
+			"ins_fields": [{
+					"column": "基数",
+					"key": "base",
+					"is_required": true
+				},
+				{
+					"column": "手机号",
+					"key": "mobile",
+					"is_required": true
+				}
+			],
+			"insurance_prefix": [
+				"养老",
+				"医疗",
+				"工商"
+			]
+		}
+	}
+},{
+	"url":"/psiorder/real-template",
+	"post_data":{
+		"item": {
+			"id": "151104194051313664",
+			"created_at": 1510828935,
+			"updated_at": 1510828935,
+			"tenant_id": "122371433052508160",
+			"object_path": "xxxxxx",
+			"name": "小爱科技接单模板",
+			"account": "账户",
+			"account_id": "9872346001832123",
+			"province": "河北省",
+			"province_code": "130000",
+			"city": "保定市",
+			"city_code": "130400",
+			"district": "莲池区",
+			"district_code": "130401",
+			"insurances": ["养老保险", "医疗保险", "工伤保险"],
+			"has_payback": "y",
+			"header_has_insurance": "y",
+			"fields": [{
+					"original_column": "姓名",
+					"system_column": "姓名",
+					"key": "name",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "联系方式",
+					"system_column": "手机号",
+					"key": "mobile",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "证件类型",
+					"system_column": "证件类型",
+					"key": "credential_type",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "身份证号码",
+					"system_column": "证件号码",
+					"key": "credential_number",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "开户行",
+					"system_column": "开户行",
+					"key": "bank",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "银行卡号",
+					"system_column": "银行卡号",
+					"key": "bank_card_no",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "应发工资",
+					"system_column": "应发工资",
+					"key": "salary",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "住房公积金",
+					"system_column": "住房公积金",
+					"key": "house_fund",
+					"field_type": "float",
+					"field_category": "default",
+					"is_required": false
+				},
+				{
+					"original_column": "应纳税所得额",
+					"system_column": "应纳税所得额",
+					"key": "taxable_income",
+					"field_type": "float",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "应纳税额",
+					"system_column": "应纳税额",
+					"key": "tax_amount",
+					"field_type": "float",
+					"field_category": "default",
+					"is_required": true
+				},
+				{
+					"original_column": "徐恒堂",
+					"system_column": "徐恒堂",
+					"key": "",
+					"field_type": "text",
+					"field_category": "default",
+					"is_required": false
+				}
+			],
+			"template_path": "/hro/psiorder/tenants/122371433052508160/users/83422060570742784/小爱科技增员接单表.xls"
+		}
+	}
+},{
+	"url":"/psiorder/real-templates",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"id": "171752302397362176",
+			"created_at": 1515751828,
+			"updated_at": 1515751828,
+			"tenant_id": "122371433052508160",
+			"name": "小爱模板",
+			"account": "账户",
+			"account_id": "9872346001832123",
+			"account_category": "0",
+			"province": "河北省",
+			"province_code": "130000",
+			"city": "保定市",
+			"city_code": "130400",
+			"district": "莲池区",
+			"district_code": "130401",
+			"insurances": ["养老保险", "医疗保险", "工伤保险"],
+			"has_payback": "y",
+			"header_has_insurance": "y",
+			"object_path": "/hro/empmgm/tenants/122371433052508160/users/99269474502316032/171752090454986752.xlsx",
+			"template_path": "/hro/payroll/tenants/122371433052508160/users/99269474502316032/小爱科技接单模板.xls",
+			"status": "active"
+		}]
+	}
+},{
+	"url":"/psiorder/real-templates/[\\W\\w]+",
+	"del_data":{
+	  "result":"SUCCESS"
+	}
+},{
+	"url":"/psiorder/get-real-mapping",
+	"post_data":{
+		"result": {
+			"input_columns": [
+				"养老保险",
+				"医疗保险"
+			],
+			"ins_fields": [{
+					"column": "养老保险",
+					"key": "养老保险",
+					"is_required": true
+				},
+				{
+					"column": "医疗保险",
+					"key": "医疗保险",
+					"is_required": true
+				}
+			]
+		}
+	}
+},{
+	"url":"/psiorder/real/do-import",
+	"post_data":{
+		"columns": "[{\"name\":\"姓名\"},{\"id_card_no\":\"身份证号码\"},{\"company\":\"所属公司\"},{\"organization\":\"部门\"},{\"base_salary\":\"基本工资\"},{\"merit_salary\":\"绩效工资\"},{\"total\":\"工资合计\"},{\"telephone_allowance\":\"电话补助\"},{\"lunch_allowance\":\"午餐补助\"},{\"trans_allowance\":\"交通补助\"},{\"other_allowance\":\"其它补助\"},{\"reward\":\"销售提成\/奖金\"},{\"attendance_deduction\":\"出勤扣款\"},{\"other_deduction\":\"其它扣款\"},{\"pay_salary\":\"应发工资\"},{\"company_insurance\":\"公司五险\"},{\"company_fund\":\"公司公积金\"},{\"person_insurance\":\"个人五险\"},{\"person_fund\": \"个人公积金\"},{\"person_total\":\"个人合计\"},{\"company_total\":\"单位合计\"},{\"tax_salary\":\"应税工资\"},{\"personal_tax\":\"个税\"},{\"salary\":\"实发工资\"}]",
+		"costData": "[{\"company_fund\":456,\"compay_insurance\":546.45,\"datas\":{\"attendance_deduction\":\"21\",\"base_salary\":\"20000\",\"company\":\"北京小爱智能科技有限公司\",\"company_fund\":\"456\",\"company_insurance\":\"546.45000000000005\",\"company_total\":\"1002.45\",\"id_card_no\":\"110221198301270001\",\"lunch_allowance\":\"0\",\"merit_salary\":\"10000\",\"name\":\"甲\",\"organization\":\"销售部\",\"other_allowance\":\"0\",\"other_deduction\":\"0\",\"pay_salary\":\"3000\",\"person_fund\":\"456\",\"person_insurance\":\"318.45\",\"person_total\":\"774.45\",\"personal_tax\":\"678.65\",\"reward\":\"0\",\"salary\":\"60100\",\"tax_salary\":\"\",\"telephone_allowance\":\"100\",\"total\":\"30000\",\"trans_allowance\":\"200\"},\"id_card_no\":\"110221198301270001\",\"name\":\"甲\",\"pay_salary\":3000,\"salary\":60100},{\"company_fund\":456,\"compay_insurance\":546.45,\"datas\":{\"attendance_deduction\":\"21\",\"base_salary\":\"80000\",\"company\":\"北京小爱智能科技有限公司\",\"company_fund\":\"456\",\"company_insurance\":\"546.45000000000005\",\"company_total\":\"1002.45\",\"id_card_no\":\"110221198301270002\",\"lunch_allowance\":\"0\",\"merit_salary\":\"40000\",\"name\":\"乙\",\"organization\":\"研发部\",\"other_allowance\":\"0\",\"other_deduction\":\"0\",\"pay_salary\":\"12000\",\"person_fund\":\"456\",\"person_insurance\":\"318.45\",\"person_total\":\"774.45\",\"personal_tax\":\"678.65\",\"reward\":\"0\",\"salary\":\"240100\",\"tax_salary\":\"\",\"telephone_allowance\":\"100\",\"total\": \"120000\",\"trans_allowance\":\"200\"},\"id_card_no\":\"110221198301270002\",\"name\":\"乙\",\"pay_salary\":12000,\"salary\":240100}]",
+		"errors": "[]"
+	}
+},{
+	"url":"/psiorder/real",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"account_id": "2938402304",
+			"account": "账户号",
+			"account_category": "0",
+			"op_month": 1520309847,
+			"people_count": 432,
+			"ent_amount": 1000,
+			"person_amount": 1000,
+			"real_type": "import",
+			"total_amount": 2000
+		}]
+	}
+},{
+	"url":"/psiorder/real-detail",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"id": "xxx",
+			"name": "张三",
+			"id_num": "923740928034777",
+			"hhr_type": "农村",
+			"pay_type": "正常应缴",
+			"insurances": ["养老", "医疗"],
+			"base": 1000,
+			"pay_start_month": 1520309847,
+			"pay_end_month": 1520309847,
+			"person_amount": 1000,
+			"ent_amount": 1000,
+			"total_amount": 2000
+		}]
+	}
+},{
+	"url":"/psiorder/accounts",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"account": "9999",
+			"account_id": "999900000000001",
+			"account_category": "0",
+			"insurances": ["养老", "医疗"],
+			"province": "河北省",
+			"province_code": "130000",
+			"city": "邢台市",
+			"city_code": "130700",
+			"district": "大大区",
+			"district_code": "130702"
+		}]
+	}
+},{
+	"url":"/psiorder/diff-handle-statistics",
+	"get_data":{
+		"deduct": 2929,
+		"payback": 920,
+		"refund": 901
+	}
+},{
+	"url":"/psiorder/customer-handle-diffs",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"id": "0293840273094",
+			"diff_handle_type": "deduct",
+			"customer": "我是客户",
+			"service_contract": "我是服务合同",
+			"start_month": 1520309847,
+			"handle_month": 1520309847,
+			"refund_type": "now",
+			"total_amount": 888,
+			"status": "handled"
+		}]
+	}
+},{
+	"url":"/psiorder/customer-diff-export",
+	"post_data":{
+		"object_path":"hro/xxxx.xls"
+	}
+},{
+	"url":"/psiorder/customer-diff-confirm/[\\W\\w]+",
+	"post_data":{
+		"result":"SUCCESS"
+	}
+},{
+	"url":"/psiorder/person-handle-diffs",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"id": "0293840273094",
+			"name": "张三",
+			"id_num": "130928199901020921",
+			"customer": "我是客户",
+			"service_contract": "我是服务合同",
+			"start_month": 1520309847,
+			"refund_type": "now",
+			"bank_name": "开户行",
+			"bank_card_num": "92038480293840",
+			"total_amount": 88,
+			"status": "handled"
+		}]
+	}
+},{
+	"url":"/psiorder/person-diff-export",
+	"post_data":{
+		"object_path":"hro/xxxx.xls"
+	}
+},{
+	"url":"/psiorder/person-diff-confirm/[\\W\\w]+",
+	"post_data":{
+		"result":"SUCCESS"
+	}
+},{
+	"url":"/psiorder/diffs",
+	"get_data":{
+		"total_count": 1,
+		"items": [{
+			"id": "8887729293747",
+			"customer": "我是客户",
+			"customer_id": "8888292910839900",
+			"service_contract": "我是服务合同",
+			"service_contract_id": "77773889200288388",
+			"op_month": 1520309847,
+			"status": "wait",
+			"pre_person_count": 500,
+			"pre_total_amount": 10000,
+			"real_person_count": 498,
+			"real_total_amount": 9800,
+			"diff_total_amount": 200
+		}]
+	}
+},
+{
+	"url":"/psiorder/entsi-person-diffs",
+	"get_data":{
+		"head":{
+			"id": "8887729293747",
+			"customer": "我是客户",
+			"customer_id": "8888292910839900",
+			"service_contract": "我是服务合同",
+			"service_contract_id": "77773889200288388",
+			"op_month": 1520309847,
+			"status": "wait",
+			"pre_person_count": 500,
+			"pre_total_amount": 10000,
+			"real_person_count": 498,
+			"real_total_amount": 9800,
+			"diff_total_amount": 200
+		},
+		"total_count": 1,
+		"items": [{
+			"id": "8887729293747",
+			"name": "张三",
+			"id_num": "证件号码",
+			"pay_type": "正常应缴",
+			"diff_handle_status": "handled",
+			"service_contract_id": "77773889200288388",
+			"op_month": 1520309847,
+			"pre_amount": 1000,
+			"real_total_amount": 980,
+			"diff_real_amount": 200,
+			"diff_other_amount": 200,
+			"diff_amount": 200,
+			"person_diff_amount": 0,
+			"ent_diff_amount": 0,
+			"real_person_amount": 0,
+			"real_ent_amount": 0,
+			"diff_handle_show_type": "0"
+		}]
+	}
+},{
+	"url":"/psiorder/person-diff/[\\W\\w]+",
+	"get_data":{
+		"id": "2394727340290",
+		"handle_result": {
+			"handle_info": "抵款，差异费用抵扣到2018年5月",
+			"comment": ""
+		},
+		"base_info": {
+			"name": "小何",
+			"id_num": "130928198701010099",
+			"province": "河北省",
+			"province_code": "130000",
+			"city": "邯郸市",
+			"city_code": "1300100",
+			"district": "第一区",
+			"district_code": "130101",
+			"hhr_type": "本地农村",
+			"customer": "北京小鸟科技",
+			"service_contract": "我是服务合同",
+			"pay_type": "正常应缴",
+			"op_month": 150029399,
+			"diff_handle_show_type": "0"
+
+		},
+		"total_diff_amount": 10000,
+		"other_amount": 200,
+		"ins_diff_info": [{
+			"insurance": "养老",
+			"service_month": 150029399,
+			"person_pre_amount": 400,
+			"person_real_amount": 400,
+			"person_diff_amount": 0,
+			"ent_pre_amount": 400,
+			"ent_real_amount": 400,
+			"ent_diff_amount": 0,
+			"total_pre_amount": 1000,
+			"total_real_amount": 1000,
+			"total_diff_amount": 0
+		}]
+	}
+}]
--- a/json/payRoll.json 0 → 100644
查看文件 @873fca7
+++ b/json/payRoll.json 0 → 100644
查看文件 @873fca7
--- a/models/user.js 0 → 100644
查看文件 @873fca7
+++ b/models/user.js 0 → 100644
查看文件 @873fca7
+
+// # user
+
+var util = require('util');
+
+var _ = require('underscore');
+var _str = require('underscore.string');
+_.mixin(_str.exports());
+ 
+var strength = require('strength');
+var validator = require('validator');
+
+exports = module.exports = function(settings, email, logger) {
+
+  var User = {};
+  
+  return {};
+};
+
+exports['@singleton'] = true;
+exports['@require'] = [ 'igloo/settings', 'igloo/email', 'igloo/logger' ];
--- a/package.json 0 → 100644
查看文件 @873fca7
+++ b/package.json 0 → 100644
查看文件 @873fca7
+{
+  "name": "hro-middleware",
+  "version": "1.0.0",
+  "main": "index.js",
+  "author": "juvenile <1050299953@qq.com>",
+  "license": "MIT",
+  "scripts": {
+    "start":"nodemon app.js"
+  },
+  "devDependencies": {
+    "bootable": "^0.2.4",
+    "compression": "^1.6.1",
+    "connect-ensure-login": "^0.1.1",
+    "connect-flash": "^0.1.1",
+    "cookie-parser": "^1.4.1",
+    "csurf": "^1.8.3",
+    "ejs": "^2.4.1",
+    "electrolyte": "0.0.6",
+    "express": "^4.13.4",
+    "helmet": "^1.3.0",
+    "igloo": "git+http://gitlab.workai.com.cn/zanghb/igloo.git",
+    "method-override": "^2.3.5",
+    "moment": "^2.12.0",
+    "nodemon": "^2.0.15",
+    "passport": "^0.3.2",
+    "passport-local": "^1.0.0",
+    "response-time": "^2.3.1",
+    "restler": "^3.4.0",
+    "restler-q": "^0.1.1",
+    "serve-favicon": "^2.3.0",
+    "strength": "^0.1.4",
+    "urlencode": "^1.1.0",
+    "uuid": "^7.0.1",
+    "validator": "^5.1.0",
+    "winston-request-logger": "^1.0.7"
+  },
+  "dependencies": {}
+}
--- a/routes/api.js 0 → 100644
查看文件 @873fca7
+++ b/routes/api.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var controller = IoC.create('controllers/api');
+
+	router.get(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.get
+	);
+
+	router.post(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.post
+	);
+
+	router.put(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.put
+	);
+
+	router.patch(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.patch
+	);
+
+	router.head(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.head
+	);
+
+	router.delete(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.delete
+	);
+
+	app.use(settings.prefix + 'api', router);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/routes/auth.js 0 → 100644
查看文件 @873fca7
+++ b/routes/auth.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+var payRoll = require('../json/payRoll.json');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var router2 = express.Router();
+	var controller = IoC.create('controllers/auth');
+	
+	if (settings.prefix.length > 0) {
+		router.get(
+			'/',
+			controller.index
+		);
+		router.get(
+			'/signOut',
+			controller.signOut
+		);
+	}
+
+	router2.get(
+		'/',
+		controller.indexPrefix
+	);
+
+	router.get(
+		'/productDes',
+		controller.productDes
+	);
+
+	router.get(
+		'/register',
+		controller.register
+	);
+
+	router.get(
+		'/mobileRegister',
+		controller.mobileRegister
+	);
+
+	router.get(
+		'/mobileRegisterSuccess',
+		controller.mobileRegisterSuccess
+	);
+
+	router.get(
+		'/signIn',
+		controller.signIn
+	);
+
+	router.post(
+		'/doLogin',
+		controller.doLogin
+	);
+
+
+	router2.get(
+		'/signOut',
+		controller.signOut
+	);
+
+	router.post(
+		'/smsCodes',
+		controller.smsCodes
+	);
+
+	router.post(
+		'/tenants',
+		controller.tenants
+	);
+
+	router.post(
+		'/resetPass',
+		policies.ensureLoggedOut(),
+		controller.resetPass
+	);
+
+	router.post(
+		'/updatePassword',
+		policies.ensureLoggedOut(),
+		controller.updatePassword
+	);
+
+
+	router.post(
+		'/loadUserInfo',
+		policies.ensureLoggedOut(),
+		controller.loadUserInfo
+	);
+
+	router.post(
+		'/getUploaderToken',
+		policies.ensureLoggedOut(),
+		controller.getUploaderToken
+	);
+
+	router.post(
+		'/delOSSObject',
+		policies.ensureLoggedOut(),
+		controller.delOSSObject
+	);
+
+	router.post(
+		'/smsVerification',
+		controller.smsVerification
+	)
+
+	router.post(
+		'/getObjectTokenByID',
+		controller.getObjectTokenByID
+	)
+
+	// router.get(
+	// 	'/healthMonitor',
+	// 	controller.healthMonitor
+	// )
+
+	// router.head(
+	// 	'/healthMonitor',
+	// 	controller.healthMonitor
+	// )
+
+	router.post(
+		'/getUserRoles',
+		policies.ensureLoggedOut(),
+		controller.getUserRoles
+	);
+
+	router.post(
+		'/getRoles',
+		policies.ensureLoggedOut(),
+		controller.getRoles
+	);
+
+	router.post(
+		'/updateUserRoles',
+		policies.ensureLoggedOut(),
+		controller.updateUserRoles
+	);
+
+	router.post(
+		'/getTenant',
+		policies.ensureLoggedOut(),
+		controller.getTenant
+	);
+
+	router.post(
+		'/updateTenant',
+		policies.ensureLoggedOut(),
+		controller.updateTenant
+	);
+
+	router.get(
+		'/offer/:requestId',
+		controller.offer
+	);
+
+	router.post(
+		'/onboardStatus',
+		policies.ensureLoggedOut(),
+		controller.onboardStatus
+	);
+
+	router.get(
+		'/downloadApp',
+		controller.dowloadApp
+	);
+
+	router.get(
+		'/info/policy',
+		controller.softwareLicense
+	);
+
+	router.get('/payRoll', function (req, res, next) {
+		res.send(payRoll);
+	});
+
+	router.get(
+		'/recharge',
+		controller.recharge
+	);
+
+	router.post(
+		'/changePassForRegister',
+		controller.changePassForRegister
+	);
+
+	router.post(
+		'/changeTenant',
+		policies.ensureLoggedOut(),
+		controller.changeTenant
+	);
+
+	router.post(
+		'/hr/sendRejectOffer',
+		controller.sendRejectOffer
+	);
+
+	router.post(
+		'/hr/acceptOffer',
+		controller.acceptOffer
+	);
+
+	router.post(
+		'/imTokens',
+		policies.ensureLoggedOut(),
+		controller.imTokens
+	);
+
+	router.post(
+		'/listChannels',
+		policies.ensureLoggedOut(),
+		controller.listChannels
+	);
+
+	router.post(
+		'/getTastLink',
+		policies.ensureLoggedOut(),
+		controller.getTastLink
+	);
+
+	router.get(
+		'/filemeta',
+		policies.ensureLoggedOut(),
+		controller.filemeta
+	);
+
+	router.get(
+		'/getCustomerQrcode',
+		policies.ensureLoggedOut(),
+		controller.getCustomerQrcode
+	);
+
+	router.get(
+		'/getPositionQrcode',
+		policies.ensureLoggedOut(),
+		controller.getPositionQrcode
+	);
+	router.get(  //微店模板路由
+		'/minishop/:id',
+		controller.weidianTempLate
+	);
+
+	router.get(
+		'/wso-workai',
+		controller.workaiSecurityOAuth
+	);
+
+	router.get(
+		'/socialwork/freedom-jobs/emps/:id/:verification',
+		controller.freedomJobsEmp
+	);
+
+	router.get(
+		'/socialwork/freedom-jobs/emps/:id',
+		controller.freedomJobsEmp
+	);
+
+	router.get(
+		'/getShortToken',
+		controller.getShortToken
+	);
+
+	settings.prefix.length > 1 ?
+		app.use(settings.prefix.substring(0, settings.prefix.length - 1), router) :
+		app.use('/', router);
+
+
+	app.use('/', router2);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/routes/authed.js 0 → 100644
查看文件 @873fca7
+++ b/routes/authed.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var controller = IoC.create('controllers/authed');
+
+	router.get(
+		'/*',
+		controller.get
+	);
+
+	router.post(
+		'/*',
+		controller.post
+	);
+
+	router.put(
+		'/*',
+		controller.put
+	);
+
+	router.patch(
+		'/*',
+		controller.patch
+	);
+
+	router.head(
+		'/*',
+		controller.head
+	);
+
+	router.delete(
+		'/*',
+		controller.delete
+	);
+
+	app.use(settings.prefix + 'auth_api', router);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/routes/bootstarp.js 0 → 100644
查看文件 @873fca7
+++ b/routes/bootstarp.js 0 → 100644
查看文件 @873fca7
+
+// app - routes
+
+var bootable = require('bootable');
+
+exports = module.exports = function(IoC, settings) {
+
+  var app = this; 
+  
+  //auth
+  app.phase(bootable.di.routes('./routes/auth.js')); 
+  
+  //mock
+  app.phase(bootable.di.routes('./routes/mock.js'));   
+  //authed
+
+  app.phase(bootable.di.routes('./routes/authed.js')); 
+
+  //api
+  app.phase(bootable.di.routes('./routes/api.js'));
+
+  //file
+  app.phase(bootable.di.routes('./routes/file.js'));
+
+  //robot
+  app.phase(bootable.di.routes('./routes/robot.js'));
+
+  // error handler (always keep this last)
+  app.phase(function() {
+    var errorHandler = IoC.create('igloo/error-handler');
+    app.use(errorHandler);
+  });
+
+};
+
+exports['@require'] = [ '$container', 'igloo/settings' ];
--- a/routes/file.js 0 → 100644
查看文件 @873fca7
+++ b/routes/file.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var controller = IoC.create('controllers/file');
+
+	router.get(
+		'/*',
+		controller.get
+	);
+
+	router.post(
+		'/*',
+		controller.post
+	);
+
+	router.put(
+		'/*',
+		controller.put
+	);
+
+	router.patch(
+		'/*',
+		controller.patch
+	);
+
+	router.head(
+		'/*',
+		controller.head
+	);
+
+	router.delete(
+		'/*',
+		controller.delete
+	);
+
+	app.use(settings.prefix + 'file_api', router);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/routes/mock.js 0 → 100644
查看文件 @873fca7
+++ b/routes/mock.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var controller = IoC.create('controllers/mock');
+
+	router.get(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.get
+	);
+
+	router.post(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.post
+	);
+
+	router.put(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.put
+	);
+
+	router.patch(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.patch
+	);
+
+	router.head(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.head
+	);
+
+	router.delete(
+		'/*',
+		policies.ensureLoggedOut(),
+		controller.delete
+	);
+
+	app.use(settings.prefix + 'mock/api', router);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/routes/robot.js 0 → 100644
查看文件 @873fca7
+++ b/routes/robot.js 0 → 100644
查看文件 @873fca7
+var express = require('express');
+
+exports = module.exports = function (IoC, policies, settings) {
+	var app = this;
+	var router = express.Router();
+	var controller = IoC.create('controllers/robot');
+	router.get(
+		'/robot',
+		controller.index
+	);
+
+	router.get(
+		'/api/*',
+		controller.get
+	);
+
+	router.post(
+		'/api/*',
+		controller.post
+	);
+
+	router.put(
+		'/api/*',
+		controller.put
+	);
+
+	router.patch(
+		'/api/*',
+		controller.patch
+	);
+
+	router.head(
+		'/api/*',
+		controller.head
+	);
+
+	router.delete(
+		'/api/*',
+		controller.delete
+	);
+
+	app.use(settings.prefix + 'demo', router);
+};
+
+exports['@require'] = ['$container', 'policies', 'igloo/settings'];
+exports['@singleton'] = true;
--- a/test/01-server.test.js 0 → 100644
查看文件 @873fca7
+++ b/test/01-server.test.js 0 → 100644
查看文件 @873fca7
+
+// # tests - server
+
+var util = require('util');
+var request = require('supertest');
+var app = require('../app');
+var chai = require('chai');
+var sinon = require('sinon');
+var sinonChai = require('sinon-chai');
+var expect = chai.expect;
+
+chai.should();
+chai.use(sinonChai);
+
+request = request(app);
+
+describe('server', function() {
+
+  it('should return 200 if home page loads', function(done) {
+    request
+      .get('/')
+      .accept('application/json')
+      .expect(200)
+      .end(done);
+  });
+
+});
--- a/test/02-users.test.js 0 → 100644
查看文件 @873fca7
+++ b/test/02-users.test.js 0 → 100644
查看文件 @873fca7
+
+// # tests - users
+
+var util = require('util');
+var request = require('supertest');
+var app = require('../app');
+var chai = require('chai');
+var sinon = require('sinon');
+var sinonChai = require('sinon-chai');
+var expect = chai.expect;
+var utils = require('./utils');
+var async = require('async');
+var IoC = require('electrolyte');
+var cheerio = require('cheerio');
+
+chai.should();
+chai.use(sinonChai);
+
+request = request(app);
+
+// storage for context-specific variables throughout the tests
+var context = {};
+
+describe('/users', function() {
+
+  var User = IoC.create('models/user');
+
+  // Clean DB and add 3 sample users before tests start
+  before(function(done) {
+    async.waterfall([
+      utils.cleanDatabase,
+      function createTestUsers(callback) {
+        // Create 3 test users
+        async.timesSeries(3, function(i, _callback) {
+          var user = new User({
+            email: 'email+' + i + '@example.com',
+            name: 'User #' + i,
+            surname: 'Last Name #' + i,
+            password: '1234' + i
+          });
+
+          user.save(_callback);
+        }, callback);
+      }
+    ], done);
+  });
+
+  // Clean DB after all tests are done
+  after(function(done) {
+    utils.cleanDatabase(done);
+  });
+
+  it('POST /users - should return 200 if user was created', function(done) {
+    this.timeout(3000); // The first request sometimes takes longer to complete
+
+    request
+      .post('/users')
+      .set({
+        'X-Requested-With': 'XMLHttpRequest'// We need to set this so CSRF is ignored when enabled
+      })
+      .accept('application/json')
+      .send({
+        email: util.format('niftylettuce+%s@gmail.com', new Date().getTime()),
+        name: 'Nifty',
+        surname: 'Lettuce',
+        password: 'abc123'
+      })
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.body).to.exist;
+        res.body.should.have.property('id');
+        res.body.should.have.property('name');
+        res.body.should.have.property('surname');
+        res.body.should.not.have.property('password');
+
+        // Test the values make sense
+        res.body.name.should.equal('Nifty');
+        res.body.surname.should.equal('Lettuce');
+
+        // Store this id to use later
+        context.userIdCreatedWithRequest = res.body.id;
+
+        done();
+      });
+  });
+
+  it('GET /users/:id — should return 200 if user was retrieved', function(done) {
+    request
+      .get(util.format('/users/%s', context.userIdCreatedWithRequest))
+      .accept('application/json')
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.body).to.exist;
+        res.body.should.have.property('id');
+        res.body.should.have.property('name');
+        res.body.should.have.property('surname');
+        res.body.should.not.have.property('password');
+
+        // Test the values make sense
+        res.body.name.should.equal('Nifty');
+        res.body.surname.should.equal('Lettuce');
+
+        done();
+      });
+  });
+
+  it('PUT /users/:id - should return 200 if user was updated', function(done) {
+    request
+      .put(util.format('/users/%s', context.userIdCreatedWithRequest))
+      .set({
+        'X-Requested-With': 'XMLHttpRequest'// We need to set this so CSRF is ignored when enabled
+      })
+      .accept('application/json')
+      .send({
+        name: 'NiftyWhoa',
+        email: 'niftywhoa@gmail.com',
+        surname: 'LettuceWhoa'
+      })
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.body).to.exist;
+        res.body.should.have.property('id');
+        res.body.should.have.property('email');
+        res.body.should.have.property('name');
+        res.body.should.have.property('surname');
+
+        // Test the values make sense
+        res.body.email.should.equal('niftywhoa@gmail.com');
+        res.body.name.should.equal('NiftyWhoa');
+        res.body.surname.should.equal('LettuceWhoa');
+
+        done();
+      });
+  });
+
+  it('DELETE /users/:id - should return 200 if user was deleted', function(done) {
+    request
+      .del(util.format('/users/%s', context.userIdCreatedWithRequest))
+      .set({
+        'X-Requested-With': 'XMLHttpRequest'// We need to set this so CSRF is ignored when enabled
+      })
+      .accept('application/json')
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.body).to.exist;
+        res.body.should.have.property('id');
+        res.body.should.have.property('deleted');
+
+        // Test the values make sense
+        res.body.id.should.equal(context.userIdCreatedWithRequest);
+        res.body.deleted.should.equal(true);
+
+        done();
+      });
+  });
+
+  it('GET /users - should return 200 if user index loads (JSON)', function(done) {
+    request
+      .get('/users')
+      .accept('application/json')
+      .expect(200, done);
+  });
+
+  it('GET /users - should return 200 if user index loads and shows 3 rows (HTML)', function(done) {
+    request
+      .get('/users')
+      .accept('text/html')
+      .expect(200)
+      .end(function(err, res) {
+        // Test the attributes exist
+        expect(res.text).to.exist;
+
+        var $ = cheerio.load(res.text);
+        var $userList = $('table');
+        var $userRows = $userList.find('tr');
+
+        // Test the values make sense
+        $userList.should.have.length.of(1);
+        $userRows.should.have.length.of.at.least(3);
+
+        done();
+      });
+  });
+
+});
--- a/test/03-api.test.js 0 → 100644
查看文件 @873fca7
+++ b/test/03-api.test.js 0 → 100644
查看文件 @873fca7
+
+// # tests - api
+
+var util = require('util');
+var request = require('supertest');
+var app = require('../app');
+var chai = require('chai');
+var sinon = require('sinon');
+var sinonChai = require('sinon-chai');
+var expect = chai.expect;
+var utils = require('./utils');
+var async = require('async');
+var IoC = require('electrolyte');
+var cheerio = require('cheerio');
+
+chai.should();
+chai.use(sinonChai);
+
+request = request(app);
+
+// storage for context-specific variables throughout the tests
+var context = {};
+
+describe('/api', function() {
+
+  var User = IoC.create('models/user');
+
+  // Clean DB and add 3 sample users before tests start
+  before(function(done) {
+    // We need this timeout increased because "registering" a user instead of just saving takes longer
+    this.timeout(5000);
+
+    async.waterfall([
+      utils.cleanDatabase,
+      function createTestUsers(callback) {
+        // Create 3 test users
+        async.timesSeries(3, function(i, _callback) {
+          var user = {
+            email: 'email+' + i + '@example.com',
+            name: 'User #' + i,
+            surname: 'Last Name #' + i,
+            password: '123456a' + i
+          };
+
+          // Save the details for the second user
+          if ( i === 1 ) {
+            context.testUser = user;
+          }
+
+          // Registering instead of saving so we can login with the user
+          User.register({
+            email: user.email,
+            name: user.name,
+            surname: user.surname
+          }, user.password, _callback);
+        }, callback);
+      }
+    ], done);
+  });
+
+  // Clean DB after all tests are done
+  after(function(done) {
+    utils.cleanDatabase(done);
+  });
+
+  it('POST /api/auth/email - should return 200 with user object', function(done) {
+    request
+      .post('/api/auth/email')
+      .send({
+        email: context.testUser.email,
+        password: context.testUser.password
+      })
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        var result = res.body;
+
+        // Test the attributes exist
+        expect(result).to.exist;
+        result.should.have.property('id');
+        result.should.have.property('name');
+        result.should.have.property('surname');
+        result.should.not.have.property('password');
+
+        // Test the values make sense
+        result.name.should.equal(context.testUser.name);
+        result.surname.should.equal(context.testUser.surname);
+
+        // Store the API token to use it later
+        context.testUser.apiToken = result.api_token;
+
+        done();
+      });
+  });
+
+  it('PUT /api/user - should return 200 with user object', function(done) {
+    request
+      .put('/api/user')
+      .auth(context.testUser.apiToken, 'a')// Apparently supertest or basic-auth need password to not be empty
+      .send({
+        email: context.testUser.email,
+        name: 'Nifty',
+        surname: 'Lettuce'
+      })
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        var result = res.body;
+
+        // Test the attributes exist
+        expect(result).to.exist;
+        result.should.have.property('id');
+        result.should.have.property('name');
+        result.should.have.property('surname');
+        result.should.not.have.property('password');
+
+        // Test the values make sense
+        result.name.should.equal('Nifty');
+        result.surname.should.equal('Lettuce');
+
+        done();
+      });
+  });
+
+});
--- a/test/04-auth.test.js 0 → 100644
查看文件 @873fca7
+++ b/test/04-auth.test.js 0 → 100644
查看文件 @873fca7
+
+// # tests - auth
+
+var util = require('util');
+var request = require('supertest');
+var app = require('../app');
+var chai = require('chai');
+var sinon = require('sinon');
+var sinonChai = require('sinon-chai');
+var expect = chai.expect;
+var utils = require('./utils');
+var async = require('async');
+var IoC = require('electrolyte');
+var cheerio = require('cheerio');
+
+chai.should();
+chai.use(sinonChai);
+
+var agent = request.agent(app);
+request = request(app);
+
+// storage for context-specific variables throughout the tests
+var context = {};
+
+describe('auth', function() {
+
+  var User = IoC.create('models/user');
+
+  // Clean DB and add 3 sample users before tests start
+  before(function(done) {
+    async.waterfall([
+      utils.cleanDatabase,
+      function createTestUsers(callback) {
+        // Create 3 test users
+        async.timesSeries(3, function(i, _callback) {
+          var user = new User({
+            email: 'email+' + i + '@example.com',
+            name: 'User #' + i,
+            surname: 'Last Name #' + i,
+            password: '1234' + i
+          });
+
+          user.save(_callback);
+        }, callback);
+      }
+    ], done);
+  });
+
+  // Clean DB after all tests are done
+  after(function(done) {
+    utils.cleanDatabase(done);
+  });
+
+  it('GET /my-account — should redirect me to /login and show error without login', function(done) {
+    agent
+      .get('/my-account')
+      .accept('text/html')
+      .expect(302)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.headers.location).to.exist;
+
+        // Test the values make sense
+        res.headers.location.should.equal('/login');
+
+        done();
+      });
+  });
+
+  it('GET /signup — should show me email and password form fields', function(done) {
+    agent
+      .get('/signup')
+      .accept('text/html')
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.text).to.exist;
+
+        var $ = cheerio.load(res.text);
+        var $container = $('.container form');
+
+        // Test the values make sense
+        $container.should.have.length.of(1);
+        $container.find('input[name="email"]').should.have.length.of.least(1);
+        $container.find('input[name="password"]').should.have.length.of.least(1);
+        $container.find('button[type="submit"]').should.have.length.of.least(1);
+
+        // Save for later use
+        context.csrf = $container.find('input[name="_csrf"]').val();
+
+        done();
+      });
+  });
+
+  it('POST /signup — should create an account and redirect me to /my-account', function(done) {
+
+    // This does take a couple of seconds on average
+    this.timeout(5000);
+
+    agent
+      .post('/signup')
+      .send({
+        _csrf: context.csrf,
+        email: 'test+something@example.com',
+        name: 'Test',
+        surname: 'Something',
+        password: '123a-c456'
+      })
+      .accept('text/html')
+      .expect(302)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.headers.location).to.exist;
+
+        // Test the values make sense
+        res.headers.location.should.equal('/my-account');
+
+        // Test we can fetch the user from the DB
+        User.findOne({
+          email: 'test+something@example.com'
+        }, function(err, user) {
+          if (err) return done(err);
+
+          expect(user).to.exist;
+
+          user.should.have.property('name');
+          user.name.should.equal('Test');
+
+          done();
+        });
+      });
+  });
+
+  it('GET /login — should redirect me to / if logged in', function(done) {
+    agent
+      .get('/login')
+      .accept('text/html')
+      .expect(302)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.headers.location).to.exist;
+
+        // Test the values make sense
+        res.headers.location.should.equal('/');
+
+        done();
+      });
+  });
+
+  it('GET /logout — should log me out and redirect me to /', function(done) {
+    agent
+      .get('/logout')
+      .accept('text/html')
+      .expect(302)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.headers.location).to.exist;
+
+        // Test the values make sense
+        res.headers.location.should.equal('/');
+
+        done();
+      });
+  });
+
+  it('GET /login — should show me email and password form fields', function(done) {
+    agent
+      .get('/login')
+      .accept('text/html')
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.text).to.exist;
+
+        var $ = cheerio.load(res.text);
+        var $container = $('.container form');
+
+        // Test the values make sense
+        $container.should.have.length.of(1);
+        $container.find('input[name="email"]').should.have.length.of.least(1);
+        $container.find('input[name="password"]').should.have.length.of.least(1);
+        $container.find('button[type="submit"]').should.have.length.of.least(1);
+
+        // Save for later use
+        context.csrf = $container.find('input[name="_csrf"]').val();
+
+        done();
+      });
+  });
+
+  it('POST /login — should log me in and redirect me to /', function(done) {
+    agent
+      .post('/login')
+      .send({
+        _csrf: context.csrf,
+        email: 'test+something@example.com',
+        password: '123a-c456'
+      })
+      .accept('text/html')
+      .expect(302)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.headers.location).to.exist;
+
+        // Test the values make sense
+        res.headers.location.should.equal('/');
+
+        done();
+      });
+  });
+
+  it('GET /my-account — should show me my email', function(done) {
+    agent
+      .get('/my-account')
+      .accept('text/html')
+      .expect(200)
+      .end(function(err, res) {
+        if (err) return done(err);
+
+        // Test the attributes exist
+        expect(res.text).to.exist;
+
+        var $ = cheerio.load(res.text);
+        var $container = $('.container');
+
+        // Test the values make sense
+        $container.should.have.length.of(1);
+        $container.find('h1').text().should.equal('My Account');
+        $container.find('h3').eq(0).text().should.equal('Email: test+something@example.com');
+        $container.find('h3').eq(1).text().should.equal('Name: Test Something');
+
+        done();
+      });
+  });
+
+});
--- a/test/support/should.js 0 → 100644
查看文件 @873fca7
+++ b/test/support/should.js 0 → 100644
查看文件 @873fca7
+var chai = require('chai');
+chai.should();
--- a/test/utils.js 0 → 100644
查看文件 @873fca7
+++ b/test/utils.js 0 → 100644
查看文件 @873fca7
+var IoC = require('electrolyte');
+var path = require('path');
+var fs = require('fs');
+var async = require('async');
+
+var modelsPath = path.join(__dirname, '..', 'app', 'models');
+
+var files = fs.readdirSync(modelsPath);
+var models = [];
+for (var i = 0; i < files.length; i++) {
+  var model = IoC.create('models/'+path.basename(files[i], '.js'));
+  models.push(model);
+}
+
+exports.cleanDatabase = function(callback) {
+  async.eachSeries(models, function(model, next) {
+    model.remove({}, next);
+  }, callback);
+};
--- a/utils/authenticate.js 0 → 100644
查看文件 @873fca7
+++ b/utils/authenticate.js 0 → 100644
查看文件 @873fca7
+var async = require('async');
+
+exports = module.exports = function (logger, rest) {
+
+	function strategy(req, username, password, done) {
+		var user = {
+			refreshToken: "",
+			token: "",
+			service_catalog: {},
+			user_info: {},
+			err: null
+		};
+		async.waterfall([
+			function (callback) {//get temp token
+				logger.info("get temp token");
+				var tempParams = {
+					"grant_type": req.body.grant_type,
+					"username": req.body.username,
+					"scope": req.body.scope,
+					"password": req.body.password,
+					"img_code": req.body.img_code,
+				};
+				if (req.body.smscode)
+					tempParams['sms_code'] = req.body.smscode;
+
+				logger.info("url:" + rest.getBaseUrl('auth/tokens', 'uaa'));
+				logger.info("params", tempParams);
+				console.log(tempParams)
+				rest.restful.postJson(rest.getBaseUrl('auth/tokens', 'uaa'), tempParams, {
+					headers: { 'Content-Type': 'application/json', "Accept": "application/json" }
+				})
+					.on('success', function (data, response) {
+						logger.info("tokens-success", data);
+						if (data.access_token) {
+							user.token = data.access_token;
+							user.refreshToken = data.refresh_token;
+							user.user_info = {
+								'user': data.user,
+								'tenant': data.tenant,
+								'perms': [],
+								'scope': data.scope,
+								'oss': {}
+							};
+							user.service_catalog = data.service_catalog
+							callback(null, data)
+						} else {
+							var err = new Error('name or pass err');
+							user.err = data.message;
+							callback(err, data);
+						}
+					}).on('error', function (err, response) {
+						//	logger.info("tokens-error",data);
+						var err = new Error('name or pass err');
+						callback(err, response);
+					}).on('fail', function (data, response) {
+						logger.info("tokens-fail", data);
+						var err = new Error('name or pass err');
+						callback(data, response);
+					});
+			}], function (err, result) {
+				logger.info(err);
+				if (err) {
+					return done(null, false, err);
+				} else {
+					return done(null, user);
+				}
+			});
+	}
+
+	function serializeUser(user, done) {
+		logger.info("passport.serializeUser");
+		done(null, user);
+	}
+
+	function deserializeUser(user, done) {
+		var user = {
+			refreshToken: "",
+			token: "",
+			info: {},
+			err: null
+		};
+		console.info("passport.deserializeUser");
+		done(null, user);
+	}
+
+	return {
+		strategy: strategy,
+		serializeUser: serializeUser,
+		deserializeUser: deserializeUser
+	};
+};
+
+exports['@singleton'] = true;
+exports['@require'] = ['igloo/logger', 'utils/rest'];
--- a/utils/rest.js 0 → 100644
查看文件 @873fca7
+++ b/utils/rest.js 0 → 100644
查看文件 @873fca7
+var rest = require('restler');
+var async = require('async');
+var uuid = require('uuid/v4');
+var restq = require('restler-q');
+var http = require("http");
+var qs = require("qs");
+
+
+function RestHelper(logger, settings) {
+	this.logger = logger;
+	this.settings = settings;
+	this.restTasks = {};
+}
+
+RestHelper.prototype = {
+	getUrl: function (url, baseUrl) {
+		var base = this.settings.restful.url + baseUrl + this.settings.restful.version + "/" + url;
+		return base;
+	},
+	preLog: function (tempUrl, tempParams) {
+		
+	},
+	checkJson: function (type) {
+		if (type === 'patchJson' || type === 'putJson' || type === 'postJson' || type === 'json') {
+			return true;
+		} else {
+			return false;
+		}
+	},
+	reflashToken: function (data, respones, taskId) {
+		// var self=this,method=self.restTasks[taskId].type,context=self.restTasks[taskId].context,req=context.req,res=context.res;
+		// if(req.session.passport&&req.session.passport.user&&req.session.passport.user.token&&req.session.passport.user.user_info){
+		// 	var tempParams={
+		// 		'grant_type':'refresh_token', 
+		// 		'refresh_token':req.session.passport.user.refreshToken,
+		// 		'account':req.session.passport.user.user_info.tenant_id
+		// 	};
+		// 	rest.postJson(self.getUrl('auth/tokens'),tempParams,{
+		// 		headers: { 'Content-Type': 'application/json','Accept': 'application/json' }})
+		// 		.on('success',function(data,response){
+		// 			console.log(data);
+		// 			console.log(req.session); 
+		// 			if(data.access_token){
+		// 				req.session.passport.user.token=data.access_token;
+		// 				req.session.passport.user.refreshToken=data.refresh_token;
+		// 				req.session.save(function(err){ console.log(err);}); 
+		// 				if(self.checkJson(method)){
+		// 					context.options.accessToken=req.session.passport.user.token; 
+		// 					rest[method](context.url,context.data,context.options)
+		// 					.on('success',function(data,response){
+		// 						delete self.restTasks[taskId];
+		// 						if(context.asyncMap){
+		// 							context.callback(null, data);
+		// 						}else{
+		// 							context.callback(data,response);
+		// 						}	
+		// 					})
+		// 					.on('fail',function(data,response){
+		// 						self.fail(data,response,req,res);
+		// 						if(context.asyncMap){
+		// 							context.callback(null, data);
+		// 						}else{
+		// 							context.callback(data,response);
+		// 						}
+		// 					});
+		// 				}else{
+		// 					context.data.accessToken=req.session.passport.user.token; 
+		// 					rest[method](context.url,context.data)
+		// 					.on('success',function(data,response){
+		// 						delete self.restTasks[taskId]; 
+		// 						if(context.asyncMap){
+		// 							context.callback(null, data);
+		// 						}else{
+		// 							context.callback(data,response);
+		// 						}	
+		// 					})
+		// 					.on('fail',function(data,response){
+		// 						self.fail(data,response,req,res);
+		// 						if(context.asyncMap){
+		// 							context.callback(null, data);
+		// 						}else{
+		// 							context.callback(data,response);
+		// 						}
+		// 					});
+		// 				} 
+		// 			}else{
+		// 				data = data||{};
+		// 				data.redirect='/signIn';
+		// 			}
+		// 		}).on('fail',function(data,response){
+		// 			data = data||{};
+		// 			data.redirect='/signIn';
+		// 	}); 
+		// }
+	},
+	params: function (context, type) {
+		var self = this;
+		var tempData = context.params || {};
+		var tempOptions = context.options || {};
+		var tempHead = context.headers || {};
+		var req = context.req, res = context.res;
+		res.resultMsg = res.resultMsg || [];
+		var ip = req.ip.match(/\d+\.\d+\.\d+\.\d+/)[0];
+		tempHead['SXClientIP'] = ip;
+		tempHead['Client-Ip'] = ip;
+		var tempParams = {
+			data: tempData,
+			headers: tempHead,
+			timeout: 1000 * 60 * 10
+		};
+		context.options.headers = tempHead;
+		// self.logger.info('req.session.passport.user.token:',req.session.passport.user.token);
+		if (type === 'json') {
+			tempParams = context.params || {};
+			tempOptions = context.options || {};
+			if (!context.excludeToken) {
+				tempOptions.accessToken = req.session.passport.user.token;
+			}
+			if (context.useUrl) {
+				self.preLog(context.url, tempParams);
+			} else {
+				self.preLog(self.getUrl(context.url, context.baseUrl), tempParams);
+			}
+		} else {
+			if (!context.excludeToken) {
+				tempParams.accessToken = req.session.passport.user.token;
+			}
+			self.preLog(self.getUrl(context.url, context.baseUrl), tempData);
+		}
+		tempOptions['timeout'] = 1000 * 60 * 10;
+		return {
+			url: context.useUrl ? context.url : self.getUrl(context.url, context.baseUrl),
+			data: tempParams,
+			options: tempOptions,
+			callback: context.callback,
+			req: req,
+			res: res
+		};
+	},
+	addTask: function (type, context, data, response) {
+		var self = this;
+		var id = self.generateID();
+		self.restTasks[id] = {
+			'type': type,
+			'context': context
+		};
+		// self.reflashToken(data,response,id);
+	},
+	generateID: function () {
+		return uuid();
+	},
+	error: function (err, respones, req, res) {
+		this.logger.info('this have a err! Maby connection aborted,parse,encoding,decoding failed or some other unhandled errors');
+		this.logger.error(err);
+
+	},
+	fail: function (data, respones, req, res) {
+		this.logger.info('request is fail!');
+		this.logger.info(respones.statusCode);
+		this.logger.error(data);
+		res.resultMsg.push(data);
+	}
+};
+
+
+
+exports = module.exports = function (logger, settings) {
+	var helper = new RestHelper(logger, settings);
+	function _getUrl(url, baseUrl) {
+		return helper.getUrl(url, baseUrl);
+	}
+
+	function _preLog(tempUrl, tempParams) {
+		helper.preLog(tempUrl, tempParams);
+	}
+
+	function _error(err, respones) {
+		logger.info('this have a err! Maby connection aborted,parse,encoding,decoding failed or some other unhandled errors');
+		logger.error(err);
+		return
+	}
+
+	function _fail(data, respones) {
+		logger.info('request is fail!');
+		logger.info(respones.statusCode);
+		logger.info(data);
+		return
+	}
+
+	function restClient(options, success, fail) {
+		var postData = !options.params ? '' : options.params;
+		var httpRequest = http.request(options, function (res) {
+			var _data = '';
+			res.setEncoding('utf8');
+			res.on('data', function (chunk) {
+				_data += chunk;
+			});
+			res.on('end', function () {
+				success(_data, res);
+			});
+		});
+		httpRequest.on('error', function (e) {
+			fail(e);
+		});
+		httpRequest.write(postData);
+		httpRequest.end();
+	}
+
+	function get(context) {
+		var param = helper.params(context);
+		rest.get(param.url, param.data)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('get', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function post(context) {
+		var param = helper.params(context);
+		rest.post(param.url, param.data)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('post', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+	function put(context) {
+		var param = helper.params(context);
+		rest.put(param.url, param.data)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('put', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+	function del(context) {
+		var param = helper.params(context);
+		if (param.data && param.data.data)
+			param.data.data = JSON.stringify(param.data.data);
+		rest.del(param.url, param.data)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('del', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function patch(context) {
+		var param = helper.params(context);
+		rest.patch(param.url, param.data)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('patch', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function json(context) {
+		var param = helper.params(context, 'json');
+		rest.json(param.url, param.data, param.options)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('json', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+	function postJson(context) {
+		var param = helper.params(context, 'json');
+		rest.postJson(param.url, param.data, param.options)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('postJson', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function register(context) {
+		var param = helper.params(context, 'json');
+		rest.postJson(param.url, param.data, param.options)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				_fail(data, response);
+				context.callback(data, response);
+			});
+	}
+
+	function putJson(context) {
+		var param = helper.params(context, 'json');
+		rest.putJson(param.url, param.data, param.options)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('putJson', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function patchJson(context) {
+		var param = helper.params(context, 'json');
+		rest.patchJson(param.url, param.data, param.options)
+			.on('success', context.callback)
+			.on('fail', function (data, response) {
+				if (response.statusCode === 401) {
+					helper.addTask('patchJson', param, data, response);
+				} else {
+					_fail(data, response);
+					context.callback(data, response);
+				}
+			});
+	}
+
+	function asyncMap(contexts, cb) {
+		var AsyncLibrary = {
+			sendRequest: function (number, callback) {
+				var context = number;
+				var tempParams = context.params || {};
+				var tempOptions = context.options || {};
+				var req = context.req, res = context.res;
+				res.resultMsg = res.resultMsg || [];
+				if (!context.excludeToken) {
+					tempOptions.accessToken = req.session.passport.user.token;
+				}
+				_preLog(_getUrl(context.url, context.baseUrl), tempParams);
+				rest[context.method](_getUrl(context.url, context.baseUrl), tempParams, tempOptions)
+					.on('success', function (data, response) {
+						callback(null, data);
+					})
+					.on('fail', function (data, response) {
+						if (response.statusCode === 401) {
+							var param = helper.params(context, 'json');
+							param.callback = callback;
+							param.asyncMap = true;
+							helper.addTask(context.method, param, data, response);
+						} else {
+							callback(null, data);
+						}
+					});
+			}
+		};
+		async.map(contexts, AsyncLibrary.sendRequest, cb);
+	}
+
+	function transformParams(jsonParams) {
+		var params = ['?'];
+		for (var i in jsonParams) {
+			params.push(i + '=' + jsonParams[i] + '&');
+		}
+		return params.join('').substring(0, params.join('').length - 1);
+	}
+
+	function getFormFields(context) {
+		return restq.get(helper.getUrl(context.url, context.baseUrl), {
+			accessToken: context.params.token
+		})
+	}
+
+	function initOssToken(context) {
+		return restq.postJson(helper.getUrl(context.url, context.baseUrl), context.params, {
+			accessToken: context.options.token
+		});
+	}
+
+	return {
+		get: get,
+		post: post,
+		put: put,
+		del: del,
+		patch: patch,
+		json: json,
+		postJson: postJson,
+		putJson: putJson,
+		patchJson: patchJson,
+		transformParams: transformParams,
+		register: register,
+		restful: rest,
+		getBaseUrl: _getUrl,
+		map: asyncMap,
+		getFormFields: getFormFields,
+		initOssToken: initOssToken,
+		restClient: restClient
+	};
+};
+
+
+
+
+exports['@singleton'] = true;
+exports['@require'] = ['igloo/logger', 'igloo/settings'];