Class: JPSClient::Token

Inherits:

Object

• Object
• JPSClient::Token

Defined in:

lib/jpsclient/auth/token.rb

Overview

Token 管理类负责 token 的本地存储、加载和清除token 有效性由服务端 401 响应判断，本地不做过期检查

Instance Attribute Summary

• #created_at ⇒ Object readonly

  Returns the value of attribute created_at.

• #expires_at ⇒ Object readonly

  Returns the value of attribute expires_at.

• #lark_user_id ⇒ Object readonly

  Returns the value of attribute lark_user_id.

• #permissions ⇒ Object readonly

  Returns the value of attribute permissions.

• #tenant_manager ⇒ Object readonly

  Returns the value of attribute tenant_manager.

• #token ⇒ Object readonly

  Returns the value of attribute token.

• #user_id ⇒ Object readonly

  Returns the value of attribute user_id.

• #username ⇒ Object readonly

  Returns the value of attribute username.

Instance Method Summary

• #clear ⇒ Object

  清除 token.

• #initialize(config) ⇒ Token constructor

  A new instance of Token.

• #load ⇒ Object

  加载 token.

• #loaded? ⇒ Boolean

  token 是否已加载.

• #save(token_data) ⇒ Object

  保存 token 传入完整数据 Hash.

• #to_h ⇒ Object

  转换为 Hash.

Constructor Details

#initialize(config) ⇒ Token

Returns a new instance of Token.

# File 'lib/jpsclient/auth/token.rb', line 18

def initialize(config)
  @config = config
  @aes_key = config.aes_key if config

  # 从配置中获取 token 存储路径，如果配置中没有则使用默认值
  if config && config.token_dir && !config.token_dir.empty?
    @token_dir = File.expand_path(config.token_dir)
  else
    @token_dir = File.expand_path('~')  # 默认目录
  end

  # 从配置中获取 token 文件名，如果配置中没有则使用默认值
  if config && config.token_file_name && !config.token_file_name.empty?
    @token_file = File.join(@token_dir, config.token_file_name)
  else
    @token_file = File.join(@token_dir, '.jps_auth_token')  # 默认文件名
  end

  # token 数据
  @token = nil
  @username = nil
  @user_id = nil
  @permissions = nil
  @lark_user_id = nil
  @tenant_manager = false
  @expires_at = nil
  @created_at = nil

  # 调试模式
  @verbose = ENV['PINDO_DEBUG'] == 'true'
end

Instance Attribute Details

#created_at ⇒ Object (readonly)

Returns the value of attribute created_at.

# File 'lib/jpsclient/auth/token.rb', line 16

def created_at
  @created_at
end

#expires_at ⇒ Object (readonly)

Returns the value of attribute expires_at.

# File 'lib/jpsclient/auth/token.rb', line 16

def expires_at
  @expires_at
end

#lark_user_id ⇒ Object (readonly)

Returns the value of attribute lark_user_id.

# File 'lib/jpsclient/auth/token.rb', line 15

def lark_user_id
  @lark_user_id
end

#permissions ⇒ Object (readonly)

Returns the value of attribute permissions.

# File 'lib/jpsclient/auth/token.rb', line 15

def permissions
  @permissions
end

#tenant_manager ⇒ Object (readonly)

Returns the value of attribute tenant_manager.

# File 'lib/jpsclient/auth/token.rb', line 15

def tenant_manager
  @tenant_manager
end

#token ⇒ Object (readonly)

Returns the value of attribute token.

# File 'lib/jpsclient/auth/token.rb', line 14

def token
  @token
end

#user_id ⇒ Object (readonly)

Returns the value of attribute user_id.

# File 'lib/jpsclient/auth/token.rb', line 15

def user_id
  @user_id
end

#username ⇒ Object (readonly)

Returns the value of attribute username.

# File 'lib/jpsclient/auth/token.rb', line 14

def username
  @username
end

Instance Method Details

#clear ⇒ Object

清除 token

# File 'lib/jpsclient/auth/token.rb', line 148

def clear
  @token = nil
  @username = nil
  @user_id = nil
  @permissions = nil
  @lark_user_id = nil
  @tenant_manager = false
  @expires_at = nil
  @created_at = nil

  FileUtils.rm_f(@token_file) if File.exist?(@token_file)
  puts "✓ Token 已清除" if @verbose
end

#load ⇒ Object

加载 token

# File 'lib/jpsclient/auth/token.rb', line 51

def load
  return false unless File.exist?(@token_file)

  begin
    file_content = File.read(@token_file)

    # 根据是否有 AES 密钥决定解密方式
    token_data = if @aes_key
      begin
        aes = AES.new(@aes_key)
        decrypted = aes.decrypt(file_content)
        JSON.parse(decrypted)
      rescue => e
        # 解密失败，可能是明文，尝试直接解析
        puts "尝试解密失败，作为明文读取: #{e.message}" if @verbose
        JSON.parse(file_content)
      end
    else
      JSON.parse(file_content)
    end

    @token = token_data['token']
    @username = token_data['username']
    @user_id = token_data['user_id']
    @permissions = token_data['permissions']
    @lark_user_id = token_data['lark_user_id']
    @tenant_manager = token_data.key?('tenant_manager') ? token_data['tenant_manager'] : false
    @expires_at = token_data['expires_at']
    @created_at = token_data['created_at']

    # 旧版 token 文件缺少 user_id，视为无效，需重新登录获取完整字段
    unless @token && @user_id
      puts "Token 文件缺少必要字段，需要重新登录" if @verbose
      clear
      return false
    end

    return true
  rescue => e
    puts "读取 token 失败: #{e.message}" if @verbose
    clear_corrupted_file
  end

  false
end

#loaded? ⇒ Boolean

token 是否已加载

Returns:

• (Boolean)

# File 'lib/jpsclient/auth/token.rb', line 143

def loaded?
  !@token.nil? && !@token.empty?
end

#save(token_data) ⇒ Object

保存 token 传入完整数据 Hash

# File 'lib/jpsclient/auth/token.rb', line 99

def save(token_data)
  return false unless token_data.is_a?(Hash) && token_data['token']

  @token = token_data['token']
  @username = token_data['username']
  @user_id = token_data['user_id']
  @permissions = token_data['permissions']
  @lark_user_id = token_data['lark_user_id']
  @tenant_manager = token_data.key?('tenant_manager') ? token_data['tenant_manager'] : false
  @created_at = Time.now.to_i
  @expires_at = @created_at + 6 * 24 * 60 * 60  # 6天后过期

  # 确保目录存在
  FileUtils.mkdir_p(@token_dir) unless Dir.exist?(@token_dir)

  save_data = {
    'token' => @token,
    'username' => @username,
    'user_id' => @user_id,
    'permissions' => @permissions,
    'lark_user_id' => @lark_user_id,
    'tenant_manager' => @tenant_manager,
    'expires_at' => @expires_at,
    'created_at' => @created_at
  }

  # 根据是否有 AES 密钥决定加密方式
  content = if @aes_key
    aes = AES.new(@aes_key)
    aes.encrypt(save_data.to_json)
  else
    save_data.to_json
  end

  File.write(@token_file, content)
  puts "✓ Token 已保存到 #{@token_file}" if @verbose

  true
rescue => e
  puts "保存 token 失败: #{e.message}"
  false
end

#to_h ⇒ Object

转换为 Hash

# File 'lib/jpsclient/auth/token.rb', line 163

def to_h
  return nil unless @token

  {
    'token' => @token,
    'username' => @username,
    'user_id' => @user_id,
    'permissions' => @permissions,
    'lark_user_id' => @lark_user_id,
    'tenant_manager' => @tenant_manager,
    'expires_at' => @expires_at,
    'created_at' => @created_at
  }
end