iot-device-management-frontend/apps/web-antd/src/store/auth.ts

import type { AuthPermissionInfo, Recordable, UserInfo } from '@vben/types';

import type { AuthApi } from '#/api';

import { ref } from 'vue';
import { useRouter } from 'vue-router';

import { LOGIN_PATH } from '@vben/constants';
import { preferences } from '@vben/preferences';
import { resetAllStores, useAccessStore, useUserStore } from '@vben/stores';

import { notification } from 'ant-design-vue';
import { defineStore } from 'pinia';

import {
  getAuthPermissionInfoApi,
  loginApi,
  logoutApi,
  register,
  smsLogin,
  socialLogin,
} from '#/api';
import { $t } from '#/locales';

export const useAuthStore = defineStore('auth', () => {
  const accessStore = useAccessStore();
  const userStore = useUserStore();
  const router = useRouter();

  const loginLoading = ref(false);

  /**
   * 登录流程的公共收尾：落 token → 拉用户信息 → 跳首页 → 成功通知。
   * 所有入口（密码/短信/社交/SSO）拿到 token 后都走这里，保持行为一致。
   */
  async function completeLogin(
    accessToken: string,
    refreshToken: string,
    onSuccess?: () => Promise<void> | void,
  ): Promise<null | UserInfo> {
    accessStore.setAccessToken(accessToken);
    accessStore.setRefreshToken(refreshToken);

    const fetchUserInfoResult = await fetchUserInfo();
    const userInfo = fetchUserInfoResult.user;

    if (accessStore.loginExpired) {
      accessStore.setLoginExpired(false);
    } else {
      onSuccess
        ? await onSuccess?.()
        : await router.push(
            userInfo.homePath || preferences.app.defaultHomePath,
          );
    }

    if (userInfo?.nickname) {
      notification.success({
        description: `${$t('authentication.loginSuccessDesc')}:${userInfo?.nickname}`,
        duration: 3,
        message: $t('authentication.loginSuccess'),
      });
    }
    return userInfo;
  }

  /**
   * 异步处理登录操作
   * Asynchronously handle the login process
   * @param type 登录类型
   * @param params 登录表单数据
   * @param onSuccess 登录成功后的回调函数
   */
  async function authLogin(
    type: 'mobile' | 'register' | 'social' | 'username',
    params: Recordable<any>,
    onSuccess?: () => Promise<void> | void,
  ) {
    let userInfo: null | UserInfo = null;
    try {
      let loginResult: AuthApi.LoginResult;
      loginLoading.value = true;
      switch (type) {
        case 'mobile': {
          loginResult = await smsLogin(params as AuthApi.SmsLoginParams);
          break;
        }
        case 'register': {
          loginResult = await register(params as AuthApi.RegisterParams);
          break;
        }
        case 'social': {
          loginResult = await socialLogin(params as AuthApi.SocialLoginParams);
          break;
        }
        default: {
          loginResult = await loginApi(params);
        }
      }
      const { accessToken, refreshToken } = loginResult;
      if (accessToken) {
        userInfo = await completeLogin(accessToken, refreshToken, onSuccess);
      }
    } finally {
      loginLoading.value = false;
    }
    return { userInfo };
  }

  /**
   * SSO 登录：从业务平台跳转过来时，已经拿到 access_token，跳过密码校验
   */
  async function ssoLogin(
    accessToken: string,
    refreshToken: string,
    onSuccess?: () => Promise<void> | void,
  ) {
    let userInfo: null | UserInfo = null;
    try {
      loginLoading.value = true;
      // SSO 首次进入时，store 可能尚未水合出 visitTenantId，这里用 tenantId 兜底，
      // 避免第一屏接口因缺少 visit-tenant-id 被后端拒绝。
      if (accessStore.tenantId && !accessStore.visitTenantId) {
        accessStore.setVisitTenantId(accessStore.tenantId);
      }
      userInfo = await completeLogin(accessToken, refreshToken, onSuccess);
    } finally {
      loginLoading.value = false;
    }
    return { userInfo };
  }

  async function logout(redirect: boolean = true) {
    try {
      const accessToken = accessStore.accessToken as string;
      if (accessToken) {
        await logoutApi(accessToken);
      }
    } catch {
      // 不做任何处理
    }
    resetAllStores();
    accessStore.setLoginExpired(false);

    // 回登录页带上当前路由地址
    await router.replace({
      path: LOGIN_PATH,
      query: redirect
        ? {
            redirect: encodeURIComponent(router.currentRoute.value.fullPath),
          }
        : {},
    });
  }

  async function fetchUserInfo() {
    // 加载
    let authPermissionInfo: AuthPermissionInfo | null = null;
    authPermissionInfo = await getAuthPermissionInfoApi();
    // userStore
    userStore.setUserInfo(authPermissionInfo.user);
    userStore.setUserRoles(authPermissionInfo.roles);
    // accessStore
    accessStore.setAccessMenus(authPermissionInfo.menus);
    accessStore.setAccessCodes(authPermissionInfo.permissions);
    return authPermissionInfo;
  }

  function $reset() {
    loginLoading.value = false;
  }

  return {
    $reset,
    authLogin,
    ssoLogin,
    fetchUserInfo,
    loginLoading,
    logout,
  };
});