1.0

aarongao
1 parent c1e54074
Showing 33 changed files with 1024 additions and 378 deletions Show diff stats
.idea/inspectionProfiles/Project_Default.xml
.idea/jsLinters/jshint.xml
.idea/letu.iml
.idea/misc.xml
.idea/modules.xml
.idea/vcs.xml
.idea/workspace.xml
API/Complaint.go
API/DealyMessage.go
API/Icon.go
API/Investigation.go
API/Item.go
API/Line.go
API/Operator.go
API/Scenic.go
API/Shop.go
API/Tag.go
API/TopMenus.go
API/User.go
API/UserLog.go
@@ -0,0 +1,6 @@
+<component name="InspectionProjectProfileManager">
+  <profile version="1.0">
+    <option name="myName" value="Project Default" />
+    <inspection_tool class="JSHint" enabled="true" level="ERROR" enabled_by_default="true" />
+  </profile>
+</component>
 \ No newline at end of file
@@ -0,0 +1,16 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="JSHintConfiguration" version="2.10.2" use-config-file="true" use-custom-config-file="true" custom-config-file-path="$PROJECT_DIR$/Console/html/bootstrap/grunt/.jshintrc">
+    <option bitwise="true" />
+    <option browser="true" />
+    <option curly="true" />
+    <option eqeqeq="true" />
+    <option forin="true" />
+    <option maxerr="50" />
+    <option noarg="true" />
+    <option noempty="true" />
+    <option nonew="true" />
+    <option strict="true" />
+    <option undef="true" />
+  </component>
+</project>
 \ No newline at end of file
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<module type="WEB_MODULE" version="4">
+  <component name="NewModuleRootManager">
+    <content url="file://$MODULE_DIR$" />
+    <orderEntry type="inheritedJdk" />
+    <orderEntry type="sourceFolder" forTests="false" />
+  </component>
+</module>
 \ No newline at end of file
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="JavaScriptSettings">
+    <option name="languageLevel" value="ES6" />
+  </component>
+</project>
 \ No newline at end of file
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ProjectModuleManager">
+    <modules>
+      <module fileurl="file://$PROJECT_DIR$/.idea/letu.iml" filepath="$PROJECT_DIR$/.idea/letu.iml" />
+    </modules>
+  </component>
+</project>
 \ No newline at end of file
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="VcsDirectoryMappings">
+    <mapping directory="$PROJECT_DIR$" vcs="Git" />
+  </component>
+</project>
 \ No newline at end of file
@@ -0,0 +1,128 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ChangeListManager">
+    <list default="true" id="4fc60b58-eb6b-4763-99c5-b2201813bdc2" name="Default Changelist" comment="">
+      <change beforePath="$PROJECT_DIR$/API/Complaint.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/Complaint.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/API/DealyMessage.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/DealyMessage.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/API/Investigation.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/Investigation.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/API/UserLog.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/UserLog.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/Bin/Monitor.go" beforeDir="false" afterPath="$PROJECT_DIR$/Bin/Monitor.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/Config/config.go" beforeDir="false" afterPath="$PROJECT_DIR$/Config/config.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/Config/config.json" beforeDir="false" afterPath="$PROJECT_DIR$/Config/config.json" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/Lib/DelayMessage/delaymessage.go" beforeDir="false" afterPath="$PROJECT_DIR$/Lib/DelayMessage/delaymessage.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/main.go" beforeDir="false" afterPath="$PROJECT_DIR$/main.go" afterDir="false" />
+      <change beforePath="$PROJECT_DIR$/main2.go" beforeDir="false" />
+    </list>
+    <option name="EXCLUDED_CONVERTED_TO_IGNORED" value="true" />
+    <option name="SHOW_DIALOG" value="false" />
+    <option name="HIGHLIGHT_CONFLICTS" value="true" />
+    <option name="HIGHLIGHT_NON_ACTIVE_CHANGELIST" value="false" />
+    <option name="LAST_RESOLUTION" value="IGNORE" />
+  </component>
+  <component name="FileEditorManager">
+    <leaf />
+  </component>
+  <component name="GOROOT" path="/usr/local/go" />
+  <component name="Git.Settings">
+    <option name="RECENT_GIT_ROOT_PATH" value="$PROJECT_DIR$" />
+  </component>
+  <component name="ProjectConfigurationFiles">
+    <option name="files">
+      <list>
+        <option value="$PROJECT_DIR$/.idea/letu.iml" />
+        <option value="$PROJECT_DIR$/.idea/misc.xml" />
+        <option value="$PROJECT_DIR$/.idea/modules.xml" />
+        <option value="$PROJECT_DIR$/.idea/vcs.xml" />
+        <option value="$PROJECT_DIR$/.idea/inspectionProfiles/Project_Default.xml" />
+        <option value="$PROJECT_DIR$/.idea/jsLinters/jshint.xml" />
+      </list>
+    </option>
+  </component>
+  <component name="ProjectFrameBounds">
+    <option name="x" value="315" />
+    <option name="y" value="73" />
+    <option name="width" value="1454" />
+    <option name="height" value="1010" />
+  </component>
+  <component name="ProjectView">
+    <navigator proportions="" version="1">
+      <foldersAlwaysOnTop value="true" />
+    </navigator>
+    <panes>
+      <pane id="ProjectPane">
+        <subPane>
+          <expand>
+            <path>
+              <item name="letu" type="b2602c69:ProjectViewProjectNode" />
+              <item name="letu" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="letu" type="b2602c69:ProjectViewProjectNode" />
+              <item name="letu" type="462c0819:PsiDirectoryNode" />
+              <item name="DB" type="462c0819:PsiDirectoryNode" />
+            </path>
+          </expand>
+          <select />
+        </subPane>
+      </pane>
+      <pane id="Scope" />
+    </panes>
+  </component>
+  <component name="PropertiesComponent">
+    <property name="WebServerToolWindowFactoryState" value="false" />
+    <property name="go.gopath.indexing.explicitly.defined" value="true" />
+    <property name="go.import.settings.migrated" value="true" />
+    <property name="go.sdk.automatically.set" value="true" />
+    <property name="last_opened_file_path" value="$PROJECT_DIR$" />
+    <property name="nodejs_interpreter_path.stuck_in_default_project" value="undefined stuck path" />
+    <property name="nodejs_npm_path_reset_for_default_project" value="true" />
+  </component>
+  <component name="RunDashboard">
+    <option name="ruleStates">
+      <list>
+        <RuleState>
+          <option name="name" value="ConfigurationTypeDashboardGroupingRule" />
+        </RuleState>
+        <RuleState>
+          <option name="name" value="StatusDashboardGroupingRule" />
+        </RuleState>
+      </list>
+    </option>
+  </component>
+  <component name="ToolWindowManager">
+    <frame x="315" y="73" width="1454" height="1010" extended-state="0" />
+    <layout>
+      <window_info id="Favorites" side_tool="true" />
+      <window_info active="true" content_ui="combo" id="Project" order="0" visible="true" weight="0.25" />
+      <window_info id="Structure" order="1" side_tool="true" weight="0.25" />
+      <window_info anchor="bottom" id="Docker" show_stripe_button="false" />
+      <window_info anchor="bottom" id="Database Changes" />
+      <window_info anchor="bottom" id="Version Control" />
+      <window_info anchor="bottom" id="Terminal" />
+      <window_info anchor="bottom" id="Event Log" side_tool="true" />
+      <window_info anchor="bottom" id="Message" order="0" />
+      <window_info anchor="bottom" id="Find" order="1" />
+      <window_info anchor="bottom" id="Run" order="2" />
+      <window_info anchor="bottom" id="Debug" order="3" weight="0.4" />
+      <window_info anchor="bottom" id="Cvs" order="4" weight="0.25" />
+      <window_info anchor="bottom" id="Inspection" order="5" weight="0.4" />
+      <window_info anchor="bottom" id="TODO" order="6" />
+      <window_info anchor="right" id="Database" />
+      <window_info anchor="right" id="Commander" internal_type="SLIDING" order="0" type="SLIDING" weight="0.4" />
+      <window_info anchor="right" id="Ant Build" order="1" weight="0.25" />
+      <window_info anchor="right" content_ui="combo" id="Hierarchy" order="2" weight="0.25" />
+    </layout>
+  </component>
+  <component name="TypeScriptGeneratedFilesManager">
+    <option name="version" value="1" />
+  </component>
+  <component name="editorHistoryManager">
+    <entry file="file://$PROJECT_DIR$/DB/db.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="270">
+          <caret line="22" column="41" lean-forward="true" selection-start-line="22" selection-start-column="41" selection-end-line="22" selection-end-column="41" />
+        </state>
+      </provider>
+    </entry>
+  </component>
+</project>
 \ No newline at end of file
@@ -59,7 +59,6 @@ func CreateComplaint(c *gin.Context) {
 			"验证码不正确",
 		})
 		return
-
 	}
 	var images []string
@@ -74,7 +73,7 @@ func CreateComplaint(c *gin.Context) {
 		c.PostForm("Sex"),
 		c.PostForm("Content"),
 		images,
-		"",
+		"未处理",
 		time.Now().Unix(),
 	})
@@ -124,7 +123,7 @@ func AllComplaint(c *gin.Context) {
 		0,
 		total,
 		currPage,
-		int(math.Ceil(float64(total) / float64(limit))),
+		int64(math.Ceil(float64(total) / float64(limit))),
 		limit,
 		aComplaint,
 	})
@@ -2,11 +2,13 @@ package Api
 import (
 	"github.com/aarongao/tools"
+	"github.com/aliyun/alibaba-cloud-sdk-go/services/push"
 	"github.com/gin-gonic/gin"
 	"go.mongodb.org/mongo-driver/bson"
 	"go.mongodb.org/mongo-driver/bson/primitive"
+	"letu/Config"
+	"letu/DB"
 	"letu/Lib/DelayMessage"
-	"letu/Lib/Token"
 )
 // @Title 查询用户的定时提醒
@@ -15,26 +17,19 @@ import (
 // @Produce  json
 // @Param   UserId     5dfb03070a9ac17ac7a82054    string     true        "用户id"
 // @Param   Token     wgergejfwe    string     true        "用户token"
-// @Success 200 {object} tools.ResponseSeccess "DelayTime=执行时间;Type=类型(0请求url地址1发送app通知);Fail失败次数;Title=通知标题;Content=通知内容;UDID=设备id"
+// @Success 200 {object} tools.ResponseSeccess "DelayTime=执行时间;Type=类型(0请求url地址1发送app通知);Fail失败次数;Title=通知标题;Content=通知内容;DeviceToken=设备id"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /DealyMessage/Info? [get]
 func DealyMessageInfo(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	_, err := primitive.ObjectIDFromHex(c.Query("UserId"))
-	if c.Query("Token") == "" || err != nil {
-		c.JSON(200, tools.ResponseError{
-			1,
-			"Token或者用户id不正确",
-		})
-		return
-	}
-
-	if Token.GetToken(c.Query("UserId")) != c.Query("Token") {
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	if c.Query("UserId") != user.Id.Hex() {
 		c.JSON(200, tools.ResponseError{
 			401,
-			"token过期",
+			"没有权限",
 		})
 		return
 	}
@@ -46,7 +41,7 @@ func DealyMessageInfo(c *gin.Context) {
 		for cur.Next(tools.GetContext()) {
 			var e DelayMessage.Message
 			cur.Decode(&e)
-			aDelayMessage = append(aDelayMessage,e)
+			aDelayMessage = append(aDelayMessage, e)
 		}
 	}
@@ -65,7 +60,7 @@ func DealyMessageInfo(c *gin.Context) {
 // @Produce  json
 // @Param   UserId     5dfb03070a9ac17ac7a82054    string     true        "用户id"
 // @Param   Token     wgergejfwe    string     true        "用户token"
-// @Param   UDID     5dfb03070a9ac17ac7a82054    string     true        "设备id"
+// @Param   DeviceToken     5dfb03070a9ac17ac7a82054    string     true        "设备id"
 // @Param   Title     表演时间提醒    string     true        "标题"
 // @Param   Content     5分钟后有表演    string     true        "内容"
 // @Param   DelayTime     1579066863    string     true        "到达这个时间戳就执行"
@@ -76,24 +71,27 @@ func CreateDealyMessage(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	_,err := primitive.ObjectIDFromHex(c.PostForm("UserId"))
-	if c.PostForm("Token") == "" || err != nil {
+
+	_user, _ := c.Get("UserInfo")
+	userToken := _user.(*DB.SMember)
+	if c.PostForm("UserId") != userToken.Id.Hex(){
 		c.JSON(200, tools.ResponseError{
-			1,
-			"Token或者用户id不正确",
+			401,
+			"没有权限",
 		})
 		return
 	}
-	if Token.GetToken(c.PostForm("UserId")) != c.PostForm("Token") {
+	_, err := primitive.ObjectIDFromHex(c.PostForm("UserId"))
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
-			401,
-			"token过期",
+			1,
+			"id不正确",
 		})
 		return
 	}
-	err = DelayMessage.GlobalDM.AddTaskForAppMessage(c.PostForm("DelayTime"), c.PostForm("UDID"), c.PostForm("Title"), c.PostForm("Content"), c.PostForm("UserId"))
+	err = DelayMessage.GlobalDM.AddTaskForAppMessage(c.PostForm("DelayTime"), c.PostForm("DeviceToken"), c.PostForm("Title"), c.PostForm("Content"), c.PostForm("UserId"))
 	if err == nil {
@@ -125,20 +123,21 @@ func RemoveDealyMessage(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-
-	_,err := primitive.ObjectIDFromHex(c.PostForm("UserId"))
-	if c.PostForm("Token") == "" || err != nil {
+	_user, _ := c.Get("UserInfo")
+	userToken := _user.(*DB.SMember)
+	if c.PostForm("UserId") != userToken.Id.Hex(){
 		c.JSON(200, tools.ResponseError{
-			1,
-			"Token或者用户id不正确",
+			401,
+			"没有权限",
 		})
 		return
 	}
-	if Token.GetToken(c.PostForm("UserId")) != c.PostForm("Token") {
+	_, err := primitive.ObjectIDFromHex(c.PostForm("UserId"))
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
-			401,
-			"token过期",
+			1,
+			"用户id不正确",
 		})
 		return
 	}
@@ -151,3 +150,34 @@ func RemoveDealyMessage(c *gin.Context) {
 	})
 }
+
+
+func PushNoticeToiOS(c *gin.Context) {
+	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
+	c.Header("Access-Control-Allow-Credentials", "true")
+
+	// 推送app消息
+	client, err := push.NewClientWithAccessKey("cn-hangzhou", "LTAI4FdQeNMQXRU6u5J3EFQc", "PwvyF5rRNBWLDya41WrCpvENevYZGi")
+
+	request := push.CreatePushNoticeToiOSRequest()
+	request.ApnsEnv = Config.Info.Env
+	request.AppKey = "28332889"
+	request.Scheme = "https"
+	request.Target = "DEVICE"
+	request.TargetValue = "30076ed6fdb740e49d882433931bc34a"
+	request.Title = c.Query("title")
+	request.Body = c.Query("body")
+
+	response, err := client.PushNoticeToiOS(request)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			1,
+			err.Error(),
+		})
+		return
+	}
+	c.JSON(200, tools.ResponseSeccess{
+		0,
+		response,
+	})
+}
 \ No newline at end of file
@@ -7,6 +7,7 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
+	"letu/Lib/Auth"
 )
 // @Title 返回图标基础信息
@@ -45,6 +46,8 @@ func IconInfo(c *gin.Context) {
 // @Accept  json
 // @Produce  json
 // @Param   id     5dfb03070a9ac17ac7a82054    string     true        "图标id"
+// @Param   ScenicId     5e0d504e24e03431008b4567    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "Name名称:Picture图片地址:id图标id:ScenicId景区id"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /Icon/Update? [post]
@@ -52,11 +55,13 @@ func UpdateIcon(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId := c.PostForm("ScenicId")
-	if ScenicId == "" || ScenicId == "undefined" {
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
-			1,
-			"缺少ScenicId(景区id)",
+			401,
+			"没有权限",
 		})
 		return
 	}
@@ -74,7 +79,7 @@ func UpdateIcon(c *gin.Context) {
 		bson.M{"$set": bson.M{
 			"Name":     c.PostForm("Name"),
 			"Picture":  c.PostForm("Picture"),
-			"ScenicId": ScenicId,
+			"ScenicId": c.PostForm("ScenicId"),
 		}}, &options.FindOneAndUpdateOptions{
 			Upsert: &upsert,
 		},
@@ -99,13 +104,9 @@ func AllIcons(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId := c.Query("ScenicId")
-	if ScenicId == "" || ScenicId == "undefined" {
-		c.JSON(200, tools.ResponseError{
-			1,
-			"缺少ScenicId(景区id)",
-		})
-		return
+	var ScenicId string
+	if ScenicId = c.Query("ScenicId"); ScenicId == "" {
+		ScenicId = "5e0d504e24e03431008b4567" // 乐岛
 	}
 	var SIcons = []DB.SIcons{}
@@ -115,11 +116,10 @@ func AllIcons(c *gin.Context) {
 		for cur.Next(tools.GetContext()) {
 			var e DB.SIcons
 			cur.Decode(&e)
-			SIcons = append(SIcons,e)
+			SIcons = append(SIcons, e)
 		}
 	}
-
 	c.JSON(200, tools.ResponseSeccess{
 		0,
 		SIcons,
@@ -80,7 +80,7 @@ func AllInvestigation(c *gin.Context) {
 		0,
 		total,
 		currPage,
-		int(math.Ceil(float64(total) / float64(limit))),
+		int64(math.Ceil(float64(total) / float64(limit))),
 		limit,
 		aInvestigation,
 	})
@@ -8,6 +8,7 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
+	"letu/Lib/Auth"
 	"strconv"
 	"time"
 )
@@ -33,8 +34,8 @@ func ItemInfo(c *gin.Context) {
 	}
 	var SItem DB.SItem
-	objID,_ := primitive.ObjectIDFromHex(c.Query("id"))
-	DB.CItem.FindOne(tools.GetContext(),bson.M{"_id": objID}).Decode(&SItem)
+	objID, _ := primitive.ObjectIDFromHex(c.Query("id"))
+	DB.CItem.FindOne(tools.GetContext(), bson.M{"_id": objID}).Decode(&SItem)
 	c.JSON(200, tools.ResponseSeccess{
 		0,
@@ -47,6 +48,7 @@ func ItemInfo(c *gin.Context) {
 // @Description 设备管理 - 查询所有游玩项目
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
 // @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /AllItems? [get]
@@ -54,14 +56,19 @@ func AllItems(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	var ScenicId string
+	if  ScenicId = c.Query("ScenicId");ScenicId == ""{
+		ScenicId = "5e0d504e24e03431008b4567" // 乐岛
+	}
+
 	var aItems = []DB.SItem{}
-	cur, err := DB.CItem.Find(tools.GetContext(), bson.M{})
+	cur, err := DB.CItem.Find(tools.GetContext(), bson.M{"ScenicId": ScenicId})
 	defer cur.Close(tools.GetContext())
 	if err == nil {
 		for cur.Next(tools.GetContext()) {
 			var e DB.SItem
 			cur.Decode(&e)
-			aItems = append(aItems,e)
+			aItems = append(aItems, e)
 		}
 	}
@@ -73,6 +80,9 @@ func AllItems(c *gin.Context) {
 // @Description 设备管理 - 更新设施
 // @Accept  json
 // @Produce  json
+// @Param   id     5dfb03070a9ac17ac7a82054    string     true        "设备id"
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /UpdateItem? [post]
@@ -80,6 +90,17 @@ func UpdateItem(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
 	var Location DB.SLocation
 	json.Unmarshal([]byte(c.PostForm("Location")), &Location)
@@ -93,7 +114,7 @@ func UpdateItem(c *gin.Context) {
 	if pid := c.PostForm("id"); pid == "null" {
 		id = primitive.NewObjectID()
 	} else {
-		id,_ = primitive.ObjectIDFromHex(pid)
+		id, _ = primitive.ObjectIDFromHex(pid)
 	}
 	poststate, _ := strconv.Atoi(c.PostForm("State"))
@@ -104,6 +125,7 @@ func UpdateItem(c *gin.Context) {
 		bson.M{"$set": bson.M{
 			"Name":                c.PostForm("Name"),
 			"SubName":             c.PostForm("SubName"),
+			"ScenicId":            c.PostForm("ScenicId"),
 			"Location":            Location,
 			"Icon":                c.PostForm("Icon"),
 			"LimitHeight":         c.PostForm("LimitHeight"),
@@ -124,24 +146,21 @@ func UpdateItem(c *gin.Context) {
 		},
 	)
-
-
 	// 更新等待时间
 	allteim := DB.Redis.Get("AllItemTime")
-	jsond,_ := json.Marshal(allteim)
+	jsond, _ := json.Marshal(allteim)
 	var ItemTime map[string]string
 	json.Unmarshal([]byte(jsond), &ItemTime)
-	if poststate == 1{
+	if poststate == 1 {
 		ItemTime[c.PostForm("id")] = "--"
 	}
-	if poststate == 0{
+	if poststate == 0 {
 		ItemTime[c.PostForm("id")] = "0"
 	}
 	DB.Redis.Set("AllItemTime", ItemTime, time.Second*60*60*24*30)
-
 	c.JSON(200, tools.ResponseSeccess{
 		0,
 		"ok",
@@ -158,6 +177,8 @@ type ItemTime struct {
 // @Description 设备管理 - 更新等待时间
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Param   item     [{"id":"5df864740a9ac17ac7a7feb8","time":"20"},{"id":"5df8660924e03417008b4567","time":"33"}]    string     true        "设备列表"
 // @Success 200 {object} tools.ResponseSeccess "{errcode: 0, result: "ok"}"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
@@ -166,6 +187,17 @@ func UpdateItemTime(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
 	var ItemTime []ItemTime
 	json.Unmarshal([]byte(c.PostForm("items")), &ItemTime)
@@ -174,7 +206,7 @@ func UpdateItemTime(c *gin.Context) {
 		RedisData[v.Id] = v.Time
 	}
-	DB.Redis.Set("AllItemTime", RedisData, time.Second*60*60*24*30)
+	DB.Redis.Set("AllItemTime_"+c.PostForm("ScenicId"), RedisData, time.Second*60*60*24*30)
 	c.JSON(200, tools.ResponseSeccess{
 		0,
 		"ok",
@@ -185,6 +217,7 @@ func UpdateItemTime(c *gin.Context) {
 // @Description 设备管理 - 获得所有设备的等待时间
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
 // @Success 200 {object} tools.ResponseSeccess "{5df864740a9ac17ac7a7feb8: '20',.....}"
 // @Failure 500 {object} tools.ResponseError "{}"
 // @Router /AllItemTime? [get]
@@ -192,25 +225,16 @@ func AllItemTime(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	var ScenicId string
+	if  ScenicId = c.Query("ScenicId");ScenicId == ""{
+		ScenicId = "5e0d504e24e03431008b4567" // 乐岛
+	}
-	//Device := DB.SDevice{
-	//	c.Request.Header.Get("DeviceId"),
-	//	c.Request.Header.Get("Mac"),
-	//	c.Request.Header.Get("UDID"),
-	//	c.Request.Header.Get("SystemVersion"),
-	//	c.Request.Header.Get("SystemModel"),
-	//	c.Request.Header.Get("AppVersion"),
-	//	c.Request.Header.Get("AppVersion"),
-	//	c.Request.Header.Get("DeviceToken"),
-	//}
-	//spew.Dump(Device)
-
-
-	allteim := DB.Redis.Get("AllItemTime")
+	allteim := DB.Redis.Get("AllItemTime_" + ScenicId)
 	if allteim != nil {
 		c.JSON(200, allteim)
 	} else {
 		c.String(200, "{}")
 	}
-}
 \ No newline at end of file
+}
@@ -8,6 +8,7 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
+	"letu/Lib/Auth"
 )
 // @Title 查询线路信息
@@ -52,14 +53,19 @@ func AllLine(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	var ScenicId string
+	if  ScenicId = c.Query("ScenicId");ScenicId == ""{
+		ScenicId = "5e0d504e24e03431008b4567" // 乐岛
+	}
+
 	var aLine []DB.SLine
-	cur, err := DB.CLine.Find(tools.GetContext(), bson.M{})
+	cur, err := DB.CLine.Find(tools.GetContext(), bson.M{"ScenicId": ScenicId})
 	defer cur.Close(tools.GetContext())
 	if err == nil {
 		for cur.Next(tools.GetContext()) {
 			var e DB.SLine
 			cur.Decode(&e)
-			aLine = append(aLine,e)
+			aLine = append(aLine, e)
 		}
 	}
@@ -71,13 +77,29 @@ func AllLine(c *gin.Context) {
 // @Description 更新线路
 // @Accept  json
 // @Produce  json
+// @Param   id     5dfb03070a9ac17ac7a82054    string     true        "线路id"
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess ""
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /UpdateLine? [post]
 func UpdateLine(c *gin.Context) {
+
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
+
 	var Location []DB.SLocation
 	json.Unmarshal([]byte(c.PostForm("Location")), &Location)
@@ -88,7 +110,7 @@ func UpdateLine(c *gin.Context) {
 	if pid := c.PostForm("id"); pid == "null" {
 		id = primitive.NewObjectID()
 	} else {
-		id,_ = primitive.ObjectIDFromHex(pid)
+		id, _ = primitive.ObjectIDFromHex(pid)
 	}
 	upsert := true
@@ -0,0 +1,188 @@
+package Api
+
+import (
+	"encoding/json"
+	"github.com/aarongao/tools"
+	"github.com/gin-gonic/gin"
+	"go.mongodb.org/mongo-driver/bson"
+	"go.mongodb.org/mongo-driver/bson/primitive"
+	"letu/DB"
+	"letu/Lib/Auth"
+	"letu/Lib/JWT"
+	"time"
+)
+
+// @Title 登录
+// @Description 操作员管理 - 操作员登录
+// @Accept  json
+// @Produce  json
+// @Param   Username     aaron    string     true        "用户名"
+// @Param   Password     123    string     true        "密码"
+// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":{"Id":"5e09c64c1c09c6f0f7ca2fa9","Token":"640bf934e425aba5d3c90998b2641f2f0ca07261d334d9615d1cd4790b5f34e7"}} 调用其它需要登陆的接口时携带token,有过期时间"
+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
+// @Router /LoginOperator? [post]
+func LoginOperator(c *gin.Context) {
+	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
+	c.Header("Access-Control-Allow-Credentials", "true")
+
+	selected := bson.M{}
+	var User *DB.SMember
+	if c.PostForm("Username") != "" && c.PostForm("Password") != "" {
+		selected["Username"] = c.PostForm("Username")
+		selected["Password"] = c.PostForm("Password")
+		DB.CMember.FindOne(tools.GetContext(), selected).Decode(&User)
+
+		if User == nil {
+			c.JSON(200, tools.ResponseError{
+				1,
+				"用户不存在",
+			})
+			return
+		}
+
+	} else {
+		c.JSON(200, tools.ResponseError{
+			1,
+			"不能为空",
+		})
+		return
+	}
+
+	// 生成token
+	dd, _ := time.ParseDuration("8760h")
+	User.Token, _ = JWT.CreateToken(User, time.Now().Add(dd).Unix())
+	c.JSON(200, tools.ResponseSeccess{
+		0,
+		User,
+	})
+
+}
+
+// @Title 操作员管理
+// @Description 操作员管理 - 修改用户信息
+// @Accept  json
+// @Produce  json
+// @Param   id     aaron    string     true        "用户id""
+// @Param   ScenicId     5e0d504e24e03431008b4567    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
+// @Param   Username     aarongao    string     true        "用户名"
+// @Param   Remarks     18616619599    string     true        "备注"
+// @Param   Password     12345    string     true        "密码"
+// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
+// @Router /UpdateOperator? [post]
+func UpdateOperator(c *gin.Context) {
+	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
+	c.Header("Access-Control-Allow-Credentials", "true")
+
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
+	var _auth []string
+	json.Unmarshal([]byte(c.PostForm("Auth")), &_auth)
+
+	objID, err := primitive.ObjectIDFromHex(c.PostForm("id"))
+	if err == nil {
+
+		_, err = DB.CMember.UpdateOne(tools.GetContext(),
+			bson.M{"_id": objID},
+			bson.M{"$set": bson.M{
+				"Auth":     _auth,
+				"Username": c.PostForm("Username"),
+				"Password": c.PostForm("Password"),
+				"Remarks":   c.PostForm("Remarks"),
+			}},
+		)
+	} else {
+
+		objectID := primitive.NewObjectID()
+		User := &DB.SMember{
+			&objectID,
+			"operator",
+			c.PostForm("ScenicId"),
+			c.PostForm("Username"),
+			c.PostForm("Password"),
+			"",
+			"",
+			"",
+			"",
+			"",
+			"",
+			&DB.SDevice{},
+			_auth,
+			c.PostForm("Remarks"),
+		}
+
+		// 生成token
+		var dd time.Duration
+		dd, err = time.ParseDuration("20m")
+		User.Token, _ = JWT.CreateToken(User, time.Now().Add(dd).Unix())
+
+		DB.CMember.InsertOne(tools.GetContext(), User)
+
+	}
+
+	if err == nil {
+		c.JSON(200, tools.ResponseSeccess{
+			0,
+			"ok",
+		})
+	} else {
+		c.JSON(200, tools.ResponseError{
+			1,
+			err.Error(),
+		})
+	}
+
+}
+
+// @Title 操作员管理
+// @Description 操作员管理 - 所有操作员
+// @Accept  json
+// @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     5dfb03070a9ac17ac7a82054    string     true        "用户token"
+// @Success 200 {object} tools.ResponseSeccess ""
+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
+// @Router /AllOperator? [get]
+func AllOperator(c *gin.Context) {
+	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
+	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.Query("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
+	var aMember []*DB.SMember
+	cur, err := DB.CMember.Find(tools.GetContext(), bson.M{"ScenicId": c.Query("ScenicId"), "UserType": "operator"})
+	defer cur.Close(tools.GetContext())
+	if err == nil {
+		for cur.Next(tools.GetContext()) {
+			var e *DB.SMember
+			cur.Decode(&e)
+			aMember = append(aMember, e)
+		}
+	}
+
+	if aMember == nil {
+		aMember = []*DB.SMember{}
+	}
+	c.JSON(200, tools.ResponseSeccess{
+		0,
+		aMember,
+	})
+}
@@ -8,6 +8,7 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
+	"letu/Lib/Auth"
 )
 // @Title 返回景区基础信息
@@ -46,6 +47,7 @@ func ScenicInfo(c *gin.Context) {
 // @Accept  json
 // @Produce  json
 // @Param   id     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "Name名称；Describe介绍；OpenHours营业时间；Picture最上面图片；ShopAdPicture商城列表页图片；ItemScenicPicture项目场次照片；ActivityPicture活动照片；VideoList视频(VideoPicture=首桢图片);InvestigationUrl问券调查的url；RangeLocation景区范围（多个坐标点）"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /UpdateScenic? [post]
@@ -53,6 +55,18 @@ func UpdateScenic(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("id"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
+
 	var Location DB.SLocation
 	json.Unmarshal([]byte(c.PostForm("Location")), &Location)
@@ -8,6 +8,7 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
+	"letu/Lib/Auth"
 )
 // @Title 查询商品信息
@@ -45,6 +46,7 @@ func CommodityInfo(c *gin.Context) {
 // @Description 查询所有商品
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
 // @Success 200 {object} tools.ResponseSeccess "Price=价格；ShopName=店铺名称；KvPhoto用于列表页的图片；TopPhoto详情页最上面的轮播图；Images详情页下面的产品详细图"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /AllCommodity? [get]
@@ -52,14 +54,19 @@ func AllCommodity(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	var ScenicId string
+	if  ScenicId = c.Query("ScenicId");ScenicId == ""{
+		ScenicId = "5e0d504e24e03431008b4567" // 乐岛
+	}
+
 	var aCommoditys []DB.SCommodity
-	cur, err := DB.CCommodity.Find(tools.GetContext(), bson.M{})
+	cur, err := DB.CCommodity.Find(tools.GetContext(), bson.M{"ScenicId": ScenicId})
 	defer cur.Close(tools.GetContext())
 	if err == nil {
 		for cur.Next(tools.GetContext()) {
 			var e DB.SCommodity
 			cur.Decode(&e)
-			aCommoditys = append(aCommoditys,e)
+			aCommoditys = append(aCommoditys, e)
 		}
 	}
@@ -71,6 +78,8 @@ func AllCommodity(c *gin.Context) {
 // @Description 更新商品
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess ""
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /UpdateCommodity? [post]
@@ -78,6 +87,17 @@ func UpdateCommodity(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
+	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
+		return
+	}
+
 	var Picture []string
 	json.Unmarshal([]byte(c.PostForm("Images")), &Picture)
@@ -87,12 +107,11 @@ func UpdateCommodity(c *gin.Context) {
 	//var Location DB.SLocation
 	//json.Unmarshal([]byte(c.PostForm("Location")), &Location)
-
 	var id primitive.ObjectID
 	if pid := c.PostForm("id"); pid == "null" {
 		id = primitive.NewObjectID()
 	} else {
-		id,_ = primitive.ObjectIDFromHex(pid)
+		id, _ = primitive.ObjectIDFromHex(pid)
 	}
 	upsert := true
@@ -5,6 +5,7 @@ import (
 	"github.com/gin-gonic/gin"
 	"go.mongodb.org/mongo-driver/bson"
 	"letu/DB"
+	"letu/Lib/Auth"
 	"letu/Lib/LeYouTu"
 	"time"
 )
@@ -23,6 +24,11 @@ func AllTag(c *gin.Context) {
 	ScenicId, err := LeYouTu.GetScenicId(c)
 	if err != nil {
+
+		c.JSON(200, tools.ResponseError{
+			1,
+			"景区id不能为空",
+		})
 		return
 	}
@@ -63,6 +69,10 @@ func AllTagGroup(c *gin.Context) {
 	ScenicId, err := LeYouTu.GetScenicId(c)
 	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			1,
+			"景区id不能为空",
+		})
 		return
 	}
@@ -119,6 +129,7 @@ func AllTagGroup(c *gin.Context) {
 // @Accept  json
 // @Produce  json
 // @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Param   TagName     广场    string     true        "标签名称"
 // @Param   TagGroup     location    string     true        "群组名称"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
@@ -128,8 +139,14 @@ func CreateTag(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId, err := LeYouTu.GetScenicId(c)
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
 	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
 		return
 	}
@@ -160,12 +177,12 @@ func CreateTag(c *gin.Context) {
 	}
 	DB.CTags.InsertOne(tools.GetContext(),DB.STag{
-		ScenicId,
+		c.PostForm("ScenicId"),
 		c.PostForm("TagGroup"),
 		c.PostForm("TagName"),
 	})
-	DB.Redis.Delete("Tags_" + ScenicId)
+	DB.Redis.Delete("Tags_" + c.PostForm("ScenicId"))
 	println("清楚缓存Tags")
 	c.JSON(200, tools.ResponseSeccess{
@@ -182,6 +199,7 @@ func CreateTag(c *gin.Context) {
 // @Accept  json
 // @Produce  json
 // @Param   ScenicId     5dfb03070a9ac17ac7a82054    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Param   TagName     广场    string     true        "标签名称"
 // @Param   TagGroup     location    string     true        "群组名称"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
@@ -191,8 +209,14 @@ func RemoveTag(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId, err := LeYouTu.GetScenicId(c)
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
 	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
 		return
 	}
@@ -222,9 +246,9 @@ func RemoveTag(c *gin.Context) {
 		return
 	}
-	DB.CTags.DeleteOne(tools.GetContext(), bson.M{"ScenicId": ScenicId,"Name":c.PostForm("TagName"),"Type":c.PostForm("TagGroup")})
+	DB.CTags.DeleteOne(tools.GetContext(), bson.M{"ScenicId": c.PostForm("ScenicId"),"Name":c.PostForm("TagName"),"Type":c.PostForm("TagGroup")})
-	DB.Redis.Delete("Tags_" + ScenicId)
+	DB.Redis.Delete("Tags_" + c.PostForm("ScenicId"))
 	println("清楚缓存Tags")
 	c.JSON(200, tools.ResponseSeccess{
@@ -8,13 +8,15 @@ import (
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
-	"letu/Lib/LeYouTu"
+	"letu/Lib/Auth"
 )
 // @Title 查询所有菜单
 // @Description 菜单管理 - 查询所有菜单
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5e0d504e24e03431008b4567    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":[{"Id":"","ScenicId":"","Title":"玩水","Tags":["玩水"]},{"Id":"","ScenicId":"","Title":"设施","Tags":["服务设施","游玩项目"]}]}"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /TopMenus/All? [get]
@@ -22,13 +24,19 @@ func AllTopMenus(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId, err := LeYouTu.GetScenicId(c)
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
 	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
 		return
 	}
 	var STopMenus []DB.STopMenus
-	cur, err := DB.CTopMenus.Find(tools.GetContext(), bson.M{"ScenicId": ScenicId})
+	cur, err := DB.CTopMenus.Find(tools.GetContext(), bson.M{"ScenicId": c.PostForm("ScenicId")})
 	defer cur.Close(tools.GetContext())
 	if err == nil {
 		for cur.Next(tools.GetContext()) {
@@ -53,6 +61,8 @@ func AllTopMenus(c *gin.Context) {
 // @Description 菜单管理 - 更新菜单
 // @Accept  json
 // @Produce  json
+// @Param   ScenicId     5e0d504e24e03431008b4567    string     true        "景区id"
+// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":[{"Id":"","ScenicId":"","Title":"玩水","Tags":["玩水"]},{"Id":"","ScenicId":"","Title":"设施","Tags":["服务设施","游玩项目"]}]}"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /TopMenus/Update? [post]
@@ -60,8 +70,15 @@ func UpdateTopMenus(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	ScenicId, err := LeYouTu.GetScenicId(c)
+
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
 	if err != nil {
+		c.JSON(200, tools.ResponseError{
+			401,
+			"没有权限",
+		})
 		return
 	}
@@ -87,7 +104,7 @@ func UpdateTopMenus(c *gin.Context) {
 	DB.CTopMenus.FindOneAndUpdate(tools.GetContext(),
 		bson.M{"_id": id},
 		bson.M{"$set": bson.M{
-			"ScenicId": ScenicId,
+			"ScenicId": c.PostForm("ScenicId"),
 			"Title":    c.PostForm("Title"),
 			"Tags":     Tags,
 		}}, &options.FindOneAndUpdateOptions{
 package Api
 import (
-	"crypto/sha256"
-	"encoding/hex"
 	"github.com/aarongao/tools"
 	"github.com/gin-gonic/gin"
 	"go.mongodb.org/mongo-driver/bson"
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo/options"
 	"letu/DB"
-	"letu/Lib/Token"
+	"letu/Lib/JWT"
 	"regexp"
-	"strconv"
 	"time"
 )
@@ -55,10 +52,6 @@ func LoginUser(c *gin.Context) {
 		return
 	}
-	// 生成token
-	tokenunit8 := sha256.Sum256([]byte(c.PostForm("Mobile") + c.PostForm("Code") + strconv.FormatInt(time.Now().UnixNano(), 10)))
-	token := hex.EncodeToString(tokenunit8[:32])
-
 	// 检查验证码
 	cacheCode := DB.Redis.Get("code_" + c.PostForm("Mobile"))
 	selected := bson.M{}
@@ -69,9 +62,13 @@ func LoginUser(c *gin.Context) {
 		// 验证码匹配,但手机号不存在
 		if User == nil {
+			var auth = []string{"用户管理", "通知管理"}
 			objectID := primitive.NewObjectID()
-			User := DB.SMember{
+			User = &DB.SMember{
 				&objectID,
+				"visitor",
+				"",
+				"",
 				"",
 				"",
 				"",
@@ -79,7 +76,7 @@ func LoginUser(c *gin.Context) {
 				"",
 				"",
 				"",
-				DB.SDevice{
+				&DB.SDevice{
 					c.Request.Header.Get("DeviceId"),
 					c.Request.Header.Get("Mac"),
 					c.Request.Header.Get("UDID"),
@@ -89,8 +86,10 @@ func LoginUser(c *gin.Context) {
 					c.Request.Header.Get("AppVersion"),
 					c.Request.Header.Get("DeviceToken"),
 				},
+				auth,
+				"",
 			}
-			DB.CMember.InsertOne(tools.GetContext(),User)
+			DB.CMember.InsertOne(tools.GetContext(), User)
 		}
 	} else {
@@ -101,16 +100,9 @@ func LoginUser(c *gin.Context) {
 		return
 	}
-	// 更新用户信息
-	//DB.CMember.Update(
-	//	bson.M{"_id": User.Id},
-	//	bson.M{"$set": bson.M{"Token": token}},
-	//)
-
-	// 更新token
-	Token.SaveToken(User.Id.Hex(), token)
-
-	User.Token = token
+	// 生成token
+	dd, _ := time.ParseDuration("8760h")
+	User.Token, _ = JWT.CreateToken(User, time.Now().Add(dd).Unix())
 	c.JSON(200, tools.ResponseSeccess{
 		0,
 		User,
@@ -146,15 +138,15 @@ func RegisterDevice(c *gin.Context) {
 	upsert := true
 	DB.CDevice.FindOneAndUpdate(tools.GetContext(),
-		bson.M{"DeviceId":c.Request.Header.Get("DeviceId")},
+		bson.M{"DeviceId": c.Request.Header.Get("DeviceId")},
 		bson.M{"$set": bson.M{
-			"Mac":c.Request.Header.Get("Mac"),
-			"UDID":c.Request.Header.Get("UDID"),
-			"SystemType":c.Request.Header.Get("SystemType"),
-			"SystemVersion":c.Request.Header.Get("SystemVersion"),
-			"SystemModel":c.Request.Header.Get("SystemModel"),
-			"AppVersion":c.Request.Header.Get("AppVersion"),
-			"DeviceToken":c.Request.Header.Get("DeviceToken"),
+			"Mac":           c.Request.Header.Get("Mac"),
+			"UDID":          c.Request.Header.Get("UDID"),
+			"SystemType":    c.Request.Header.Get("SystemType"),
+			"SystemVersion": c.Request.Header.Get("SystemVersion"),
+			"SystemModel":   c.Request.Header.Get("SystemModel"),
+			"AppVersion":    c.Request.Header.Get("AppVersion"),
+			"DeviceToken":   c.Request.Header.Get("DeviceToken"),
 		}}, &options.FindOneAndUpdateOptions{
 			Upsert: &upsert,
 		},
@@ -172,7 +164,6 @@ func RegisterDevice(c *gin.Context) {
 // @Accept  json
 // @Produce  json
 // @Param   id     aaron    string     true        "用户id"
-// @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":{"Id":"5e09c64c1c09c6f0f7ca2fa9","Token":"640bf934e425aba5d3c90998b2641f2f0ca07261d334d9615d1cd4790b5f34e7"}}"
 // @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
 // @Router /UserInfo? [get]
@@ -180,19 +171,11 @@ func UserInfo(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	objID,err := primitive.ObjectIDFromHex(c.Query("id"))
-	if c.Query("Token") == "" || err!=nil {
+	objID, err := primitive.ObjectIDFromHex(c.Query("id"))
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
 			1,
-			"Token或者用户id不正确",
-		})
-		return
-	}
-
-	if Token.GetToken(c.Query("id")) != c.Query("Token") {
-		c.JSON(200, tools.ResponseError{
-			401,
-			"token过期",
+			"用户id不正确",
 		})
 		return
 	}
@@ -200,7 +183,7 @@ func UserInfo(c *gin.Context) {
 	var User DB.SMember
 	DB.CMember.FindOne(tools.GetContext(), bson.M{"_id": objID}).Decode(&User)
-	User.Device = DB.SDevice{}
+	User.Device = &DB.SDevice{}
 	c.JSON(200, tools.ResponseSeccess{
 		0,
 		User,
@@ -212,7 +195,6 @@ func UserInfo(c *gin.Context) {
 // @Description 用户管理 - 检查Token是否过期
 // @Accept  json
 // @Produce  json
-// @Param   id     aaron    string     true        "用户id"
 // @Param   Token     wgergejfwe    string     true        "用户token"
 // @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
 // @Failure 500 {object} tools.ResponseError "{"errcode":401,"errmsg":"token过期"}"
@@ -221,26 +203,27 @@ func CheckToken(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	_,err := primitive.ObjectIDFromHex(c.PostForm("id"))
-	if c.PostForm("Token") == "" || err != nil {
+	if c.PostForm("Token") == "" {
 		c.JSON(200, tools.ResponseError{
 			1,
-			"Token或者用户id不正确",
+			"Token不正确",
 		})
 		return
 	}
-	if Token.GetToken(c.PostForm("id")) != c.PostForm("Token") {
+	user, err := JWT.ParseToken(c.PostForm("Token"))
+
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
 			401,
-			"token过期",
+			err.Error(),
 		})
 		return
 	}
 	c.JSON(200, tools.ResponseSeccess{
 		0,
-		"ok",
+		user,
 	})
 }
@@ -264,19 +247,13 @@ func UpdateUser(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	_,err := primitive.ObjectIDFromHex(c.PostForm("id"))
-	if c.PostForm("Token") == "" || err != nil {
-		c.JSON(200, tools.ResponseError{
-			1,
-			"Token或者用户id不正确",
-		})
-		return
-	}
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
-	if Token.GetToken(c.PostForm("id")) != c.PostForm("Token") {
+	if c.PostForm("id") != user.Id.Hex() {
 		c.JSON(200, tools.ResponseError{
 			401,
-			"token过期",
+			"没有权限",
 		})
 		return
 	}
@@ -299,14 +276,6 @@ func UpdateUser(c *gin.Context) {
 		return
 	}
-	//if c.PostForm("Password") != c.PostForm("ConfirmPassword") {
-	//	c.JSON(200, tools.ResponseError{
-	//		1,
-	//		"2次密码不一致",
-	//	})
-	//	return
-	//}
-
 	// 检查验证码
 	code := DB.Redis.Get("code_" + c.PostForm("Mobile"))
 	if code == "" || code != c.PostForm("Code") {
@@ -317,8 +286,8 @@ func UpdateUser(c *gin.Context) {
 		return
 	}
-	objID,_ := primitive.ObjectIDFromHex(c.PostForm("id"))
-	_, err = DB.CMember.UpdateOne(tools.GetContext(),
+	objID, _ := primitive.ObjectIDFromHex(c.PostForm("id"))
+	_, err := DB.CMember.UpdateOne(tools.GetContext(),
 		bson.M{"_id": objID},
 		bson.M{"$set": bson.M{
 			"Birthday": c.PostForm("Birthday"),
@@ -330,9 +299,9 @@ func UpdateUser(c *gin.Context) {
 	if err == nil {
 		var User *DB.SMember
-		objID,_ := primitive.ObjectIDFromHex(c.PostForm("id"))
+		objID, _ := primitive.ObjectIDFromHex(c.PostForm("id"))
 		DB.CMember.FindOne(tools.GetContext(), bson.M{"_id": objID}).Decode(&User)
-
+		User.Token = ""
 		c.JSON(200, tools.ResponseSeccess{
 			0,
 			User,
@@ -346,7 +315,6 @@ func UpdateUser(c *gin.Context) {
 }
-
 // @Title 删除用户
 // @Description 用户管理 - 删除用户（注销）
 // @Accept  json
@@ -360,19 +328,21 @@ func RemoveUser(c *gin.Context) {
 	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
 	c.Header("Access-Control-Allow-Credentials", "true")
-	objID,err := primitive.ObjectIDFromHex(c.PostForm("id"))
-	if c.PostForm("Token") == "" || err != nil {
+	_user, _ := c.Get("UserInfo")
+	user := _user.(*DB.SMember)
+	if c.PostForm("id") != user.Id.Hex() {
 		c.JSON(200, tools.ResponseError{
-			1,
-			"Token或者用户id不正确",
+			401,
+			"没有权限",
 		})
 		return
 	}
-	if Token.GetToken(c.PostForm("id")) != c.PostForm("Token") {
+	objID, err := primitive.ObjectIDFromHex(c.PostForm("id"))
+	if err != nil {
 		c.JSON(200, tools.ResponseError{
-			401,
-			"token过期",
+			1,
+			"用户id不正确",
 		})
 		return
 	}
@@ -131,12 +131,11 @@ func AllUserLog(c *gin.Context) {
 		}
 	}
-
 	c.JSON(200, tools.Page{
 		0,
 		total,
 		currPage,
-		int(math.Ceil(float64(total) / float64(limit))),
+		int64(math.Ceil(float64(total) / float64(limit))),
 		limit,
 		aUserLog,
 	})
@@ -12,7 +12,7 @@ var lastState = 0
 func main() {
 	for {
-		time.Sleep(30 * time.Second)
+		time.Sleep(180 * time.Second)
 		httpState, body, error := tools.GET("http://leyoutu.st-i.com.cn/AllScenic")
 		if httpState == 200 && error == nil {
@@ -0,0 +1,29 @@
+package main
+
+import (
+	"fmt"
+	"github.com/aliyun/alibaba-cloud-sdk-go/services/push"
+)
+
+func main() {
+
+	// 推送app消息
+	client, err := push.NewClientWithAccessKey("cn-hangzhou", "LTAI4FdQeNMQXRU6u5J3EFQc", "PwvyF5rRNBWLDya41WrCpvENevYZGi")
+
+
+	request := push.CreatePushNoticeToiOSRequest()
+	request.ApnsEnv = "DEV"
+	request.AppKey = "28332889"
+	request.Scheme = "https"
+	request.Target = "DEVICE"
+	request.TargetValue = "30076ed6fdb740e49d882433931bc34a"
+	request.Title = "消息测试1"
+	request.Body = "消息测试2"
+
+	response, err := client.PushNoticeToiOS(request)
+	if err != nil {
+		fmt.Print(err.Error())
+	}
+	fmt.Printf("response is %#v\n", response)
+
+}
 package Config
 type Config struct {
-	TagType    []string
-	DbPath     string
-	DbName     string
-	DbUser     string
-	DbPassword string
-	RedisPath  string
+	TagType     []string
+	DbPath      string
+	DbName      string
+	DbUser      string
+	DbPassword  string
+	RedisPath   string
+	Env         string
+	TokenSecret string
 }
+
+var Info = Config{}
@@ -4,5 +4,7 @@
   "dbName": "LeYouTu",
   "dbUser": "leyoutu",
   "dbPassword": "leyoutu123456",
-  "redisPath": "127.0.0.1:6379"
+  "redisPath": "127.0.0.1:6379",
+  "Env": "DEV",
+  "tokenSecret": "token.secret"
 }
@@ -26,6 +26,7 @@ var DB *mongo.Database
 type SItem struct {
 	Id                  *primitive.ObjectID `bson:"_id" json:"Id" valid:"required"`
+	ScenicId            string              `bson:"ScenicId" json:"ScenicId"` // 景区id
 	Name                string              `bson:"Name" json:"Name"`
 	SubName             string              `bson:"SubName" json:"SubName"`
 	Location            SLocation           `bson:"Location" json:"Location"`
@@ -45,6 +46,11 @@ type SItem struct {
 	Reminder            string              `bson:"Reminder" json:"Reminder"`                       //温馨提示
 	State               int                 `bson:"State" json:"State"`                             // 运行状态0=正常1=停运
 }
+
+type SModel struct {
+	Model  string `bson:"Model" json:"Model"`
+	Action string `bson:"Action" json:"Action"`
+}
 type SIcons struct {
 	Id       *primitive.ObjectID `bson:"_id" json:"Id" valid:"required"`
 	ScenicId string              `bson:"ScenicId" json:"ScenicId"`
@@ -143,6 +149,9 @@ type SInvestigation struct {
 }
 type SMember struct {
 	Id       *primitive.ObjectID `bson:"_id" json:"Id" valid:"required"`
+	UserType string              `bson:"UserType" json:"UserType"` // "root" or "operator" or "visitor"
+	ScenicId string              `bson:"ScenicId" json:"ScenicId"`
+	Username string              `bson:"Username" json:"Username"`
 	Password string              `bson:"Password" json:"Password"`
 	Birthday string              `bson:"Birthday" json:"Birthday"`
 	FullName string              `bson:"FullName" json:"FullName"`
@@ -150,7 +159,9 @@ type SMember struct {
 	Openid   string              `bson:"Openid" json:"Openid"`
 	Token    string              `bson:"Token" json:"Token"`
 	Sex      string              `bson:"Sex" json:"Sex"`
-	Device   SDevice             `bson:"Device" json:"Device"` //设备信息
+	Device   *SDevice            `bson:"Device" json:"Device"`   //设备信息
+	Auth     []string            `bson:"Auth" json:"Auth"`       //权限信息
+	Remarks  string              `bson:"Remarks" json:"Remarks"` //说明
 }
 type STag struct {
@@ -0,0 +1,98 @@
+package Auth
+
+import (
+	"github.com/aarongao/tools"
+	"github.com/gin-gonic/gin"
+	"github.com/pkg/errors"
+	"letu/DB"
+	"letu/Lib/JWT"
+)
+
+// 系统中所有模块
+var Models = make(map[string][]string)
+
+// @Title 所有模块信息
+// @Description 模块管理 - 所有模块信息
+// @Accept  json
+// @Produce  json
+// @Success 200 {object} tools.ResponseSeccess ""
+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
+// @Router /AllModules? [get]
+func Modules(c *gin.Context) {
+	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
+	c.Header("Access-Control-Allow-Credentials", "true")
+
+	rs := []string{}
+	for k, _ := range Models {
+		rs = append(rs, k)
+	}
+
+	c.JSON(200, tools.ResponseSeccess{
+		0,
+		rs,
+	})
+
+}
+
+// 检查基础权限
+func CheckAuthFunc(handFunc func(c *gin.Context), auth *DB.SModel) func(c *gin.Context) {
+	return func(c *gin.Context) {
+
+		if auth.Model == "" {
+			handFunc(c)
+			return
+		}
+
+		token := ""
+		if c.Request.Method == "GET" {
+			token = c.Query("Token")
+		}
+		if c.Request.Method == "POST" {
+			token = c.PostForm("Token")
+		}
+		if token == "" {
+			token = c.Request.Header.Get("Token")
+		}
+
+		// 解析token
+		user, err := JWT.ParseToken(token)
+		if user.UserType == "root" {
+			c.Set("UserInfo", user)
+			handFunc(c)
+			return
+		}
+
+		// 检查权限
+		checkAuth := false
+		for _, v := range user.Auth {
+			if v == auth.Model {
+				checkAuth = true
+				break
+			}
+		}
+
+		if err != nil || checkAuth == false {
+			c.JSON(200, tools.ResponseError{
+				401,
+				"没有权限",
+			})
+		} else {
+			c.Set("UserInfo", user)
+			handFunc(c)
+		}
+	}
+}
+
+func CheckScenicAuth(ScenicId string, user *DB.SMember) error {
+
+	if ScenicId == "" {
+		return errors.New("景区id不能为空")
+	}
+
+	if user.UserType == "operator" {
+		if user.ScenicId != ScenicId {
+			return errors.New("权限不正确（需要正确的Token和ScenicId）")
+		}
+	}
+	return nil
+}
@@ -5,11 +5,13 @@ import (
 	"encoding/json"
 	"fmt"
 	"github.com/aarongao/tools"
+	"github.com/aliyun/alibaba-cloud-sdk-go/services/push"
 	"github.com/pkg/errors"
+	"go.mongodb.org/mongo-driver/bson"
 	"go.mongodb.org/mongo-driver/bson/primitive"
 	"go.mongodb.org/mongo-driver/mongo"
-	"go.mongodb.org/mongo-driver/bson"
 	"io/ioutil"
+	"letu/DB"
 	"net/http"
 	"strconv"
 	"sync"
@@ -31,11 +33,11 @@ type Message struct {
 	Fail int
 	// 类型0=geturl;1=发送app消息
-	Type    int8   `bson:"Type" json:"Type"`
-	Title   string `bson:"Title" json:"Title"`
-	Content string `bson:"Content" json:"Content"`
-	UDID    string `bson:"UDID" json:"UDID"`
-	UserId  string `bson:"UserId" json:"UserId"`
+	Type        int8   `bson:"Type" json:"Type"`
+	Title       string `bson:"Title" json:"Title"`
+	Content     string `bson:"Content" json:"Content"`
+	DeviceToken string `bson:"DeviceToken" json:"DeviceToken"`
+	UserId      string `bson:"UserId" json:"UserId"`
 }
 // addTask
@@ -68,7 +70,7 @@ func (dm *DelayMessage) AddTaskForGetUrl(delayTime string, userid string, callba
 	return nil
 }
-func (dm *DelayMessage) AddTaskForAppMessage(delayTime string, udid string, title string, content string, userid string) error {
+func (dm *DelayMessage) AddTaskForAppMessage(delayTime string, deviceToken string, title string, content string, userid string) error {
 	iTIme, _ := strconv.Atoi(delayTime)
 	i64Time := int64(iTIme)
@@ -78,8 +80,8 @@ func (dm *DelayMessage) AddTaskForAppMessage(delayTime string, udid string, titl
 	if i64Time <= nowTimeU {
 		return errors.New("delayTime error...")
 	}
-	if udid == "" {
-		return errors.New("udid error...")
+	if deviceToken == "" {
+		return errors.New("deviceToken error...")
 	}
 	if title == "" {
 		return errors.New("title error...")
@@ -92,7 +94,7 @@ func (dm *DelayMessage) AddTaskForAppMessage(delayTime string, udid string, titl
 	}
 	objectID := primitive.NewObjectID()
-	_Message := &Message{&objectID, i64Time, "", 0, 1, title, content, udid, userid}
+	_Message := &Message{&objectID, i64Time, "", 0, 1, title, content, deviceToken, userid}
 	CDelayMessage.InsertOne(tools.GetContext(), _Message)
@@ -147,16 +149,35 @@ func Callback(key *primitive.ObjectID, message *Message) {
 	} else if message.Type == 1 {
 		// 推送app消息
-		//client, err := push.NewClientWithAccessKey("cn-hangzhou", "28332889", "4c0b32d5fd0822a9de703e177798e8ca")
-		//
-		//request := push.CreatePushMessageToiOSRequest()
-		//request.Scheme = "https"
-		//
-		//response, err := client.PushMessageToiOS(request)
-		//if err != nil {
-		//	fmt.Print(err.Error())
-		//}
-		//fmt.Printf("response is %#v\n", response)
+		client, err := push.NewClientWithAccessKey("cn-hangzhou", "LTAI4FdQeNMQXRU6u5J3EFQc", "PwvyF5rRNBWLDya41WrCpvENevYZGi")
+
+		request := push.CreatePushNoticeToiOSRequest()
+		request.ApnsEnv = "DEV"
+		request.AppKey = "28332889"
+		request.Scheme = "https"
+		request.Target = "DEVICE"
+		request.TargetValue = message.DeviceToken
+		request.Title = message.Title
+		request.Body = message.Content
+
+		response, err := client.PushNoticeToiOS(request)
+		if err != nil {
+			fmt.Print(err.Error())
+		}
+
+		res,_ := json.Marshal(response)
+		DB.CSystemLog.InsertOne(tools.GetContext(),DB.SSystemLog{
+			message.UserId,
+			"",
+			"",
+			6002,
+			"调用阿里接口发送app通知",
+			time.Now().Unix(),
+			DB.SLocation{},
+			string(res),
+			err,
+		})
+
 	}
 	json, _ := json.Marshal(message)
@@ -0,0 +1,72 @@
+package JWT
+
+import (
+	"encoding/json"
+	"errors"
+	"github.com/dgrijalva/jwt-go"
+	"go.mongodb.org/mongo-driver/bson/primitive"
+	"letu/Config"
+	"letu/DB"
+	"time"
+)
+
+func CreateToken(user *DB.SMember, exp int64) (tokenss string, err error) {
+	//自定义claim
+
+
+	auth, _ := json.Marshal(user.Auth)
+	claim := jwt.MapClaims{
+		"id":       user.Id,
+		//"mobile":   user.Mobile,
+		"userType": user.UserType,
+		"scenicId": user.ScenicId,
+		"auth":     string(auth),
+		"nbf":      time.Now().Unix(),
+		"iat":      time.Now().Unix(),
+		"exp":      exp,
+	}
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claim)
+	tokenss, err = token.SignedString([]byte(Config.Info.TokenSecret))
+	return
+}
+
+func secret() jwt.Keyfunc {
+	return func(token *jwt.Token) (interface{}, error) {
+		return []byte(Config.Info.TokenSecret), nil
+	}
+}
+
+func CheckToken(tokenss string) (err error) {
+
+	_, err = jwt.Parse(tokenss, secret())
+	return err
+}
+
+func ParseToken(tokenss string) (user *DB.SMember, err error) {
+	user = &DB.SMember{}
+	token, err := jwt.Parse(tokenss, secret())
+	if err != nil {
+		return
+	}
+	claim, ok := token.Claims.(jwt.MapClaims)
+	if !ok {
+		err = errors.New("cannot convert claim to mapclaim")
+		return
+	}
+	//验证token，如果token被修改过则为false
+	if !token.Valid {
+		err = errors.New("token is invalid")
+		return
+	}
+
+	id, _ := primitive.ObjectIDFromHex(claim["id"].(string))
+	user.Id = &id
+	//user.Mobile = claim["mobile"].(string)
+	user.UserType = claim["userType"].(string)
+	user.ScenicId = claim["scenicId"].(string)
+
+	var jsons []string
+	json.Unmarshal([]byte(claim["auth"].(string)),&jsons)
+	user.Auth = jsons
+	return
+}
@@ -1,26 +0,0 @@
-package LeYouTu
-
-import (
-	"github.com/gin-gonic/gin"
-)
-
-type Controllers struct {
-	Layout func(c *gin.Context) bool
-}
-
-func (this *Controllers) POST(handFunc func(c *gin.Context)) func(c *gin.Context) {
-	return this.HandleFunc(handFunc, "POST")
-}
-func (this *Controllers) GET(handFunc func(c *gin.Context)) func(c *gin.Context) {
-	return this.HandleFunc(handFunc, "GET")
-}
-func (this *Controllers) HandleFunc(handFunc func(c *gin.Context), httpMethod string) func(c *gin.Context) {
-	return func(c *gin.Context) {
-
-		if c.Request.Method != httpMethod {
-			//res.Write([]byte(http.StatusText(http.StatusMethodNotAllowed)))
-			return
-		}
-
-	}
-}
 \ No newline at end of file
 package LeYouTu
 import (
-	"github.com/aarongao/tools"
 	"github.com/gin-gonic/gin"
 	"github.com/pkg/errors"
 )
@@ -16,10 +15,6 @@ func GetScenicId(c *gin.Context) (ScenicId string, error error) {
 	}
 	if ScenicId == "" || ScenicId == "undefined" {
-		c.JSON(200, tools.ResponseError{
-			1,
-			"缺少ScenicId(景区id)",
-		})
 		return "", errors.New("缺少ScenicId(景区id)")
 	} else {
 		return ScenicId, nil
@@ -11,6 +11,7 @@ import (
 	"letu/Api"
 	"letu/Config"
 	"letu/DB"
+	"letu/Lib/Auth"
 	"letu/Lib/Cache"
 	"letu/Lib/DelayMessage"
 	"log"
@@ -21,6 +22,8 @@ import (
 // @APIVersion 1.0.0
 // @APITitle 乐游图后端接口文档
 // @BasePath 正式 leyoutu.st-i.com.cn; 测试 letu.api.imagchina.com
+var Gin *gin.Engine
+
 func main() {
 	// 读取配置文件
@@ -28,13 +31,27 @@ func main() {
 	file, _ := os.Open(dir + "/Config/config.json")
 	defer file.Close()
 	decoder := json.NewDecoder(file)
-	conf := Config.Config{}
-	err := decoder.Decode(&conf)
+	err := decoder.Decode(&Config.Info)
 	tools.CheckError(err)
 	// 连接数据库
 	// Set client options
-	clientOptions := options.Client().ApplyURI("mongodb://" + conf.DbPath)
+	clientOptions := options.Client()
+	if Config.Info.Env == "DEV" {
+		clientOptions.ApplyURI("mongodb://" + Config.Info.DbPath)
+	} else if Config.Info.Env == "PRODUCT" {
+		credential := options.Credential{
+			AuthMechanism: "SCRAM-SHA-1",
+			AuthSource:    Config.Info.DbName,
+			Username:      Config.Info.DbUser,
+			Password:      Config.Info.DbPassword,
+		}
+		clientOptions.ApplyURI("mongodb://" + Config.Info.DbPath).SetAuth(credential)
+	} else {
+		log.Fatal("未知的运行环境 DEV or PRODUCT")
+		return
+	}
+
 	clientOptions.SetLocalThreshold(3 * time.Second)  //只使用与mongo操作耗时小于3秒的
 	clientOptions.SetMaxConnIdleTime(5 * time.Second) //指定连接可以保持空闲的最大毫秒数
 	clientOptions.SetMaxPoolSize(4096)                //使用最大的连接数
@@ -53,8 +70,7 @@ func main() {
 	log.Println("Connected to MongoDB!")
 	//获取文档集
-	DB.DB = client.Database("LeYouTu")
-	//DB.DB.Login(conf.DbUser, conf.DbPassword)
+	DB.DB = client.Database(Config.Info.DbName)
 	DB.CItem = DB.DB.Collection("Item")
 	DB.CComplaint = DB.DB.Collection("Complaint")
@@ -76,7 +92,7 @@ func main() {
 	// 连接redis
 	DB.Redis = Cache.NewRedis(&Cache.RedisOpts{
-		conf.RedisPath,
+		Config.Info.RedisPath,
 		"",
 		0,
 		200,
@@ -84,59 +100,68 @@ func main() {
 		0,
 	})
-	r := gin.Default()
+	Gin = gin.Default()
 	//r.Static("/.well-known", "./.well-known/")
-	r.GET("/AllItems", Api.AllItems)
-	r.GET("/AllItemTime", Api.AllItemTime)
-	r.GET("/AllCommodity", Api.AllCommodity)
-	r.GET("/AllLine", Api.AllLine)
-	r.GET("/ItemInfo", Api.ItemInfo)
-	r.GET("/CommodityInfo", Api.CommodityInfo)
-	r.POST("/CreateComplaint", Api.CreateComplaint)
-	r.GET("/AllComplaint", Api.AllComplaint)
-	//r.POST("/CreateUser", Api.CreateUser)
-	r.POST("/LoginUser", Api.LoginUser)
-	r.POST("/UpdateUser", Api.UpdateUser)
-	r.GET("/UserInfo", Api.UserInfo)
-	r.GET("/ScenicInfo", Api.ScenicInfo)
-	r.GET("/LineInfo", Api.LineInfo)
-	r.GET("/AllTag", Api.AllTag)
-	r.GET("/AllTagGroup", Api.AllTagGroup)
-	r.POST("/Tag/Create", Api.CreateTag)
-	r.POST("/Tag/Remove", Api.RemoveTag)
-
-	r.POST("/Upload", Api.Upload)
-	r.POST("/UpdateItem", Api.UpdateItem)
-	r.POST("/UpdateCommodity", Api.UpdateCommodity)
-	r.POST("/UpdateLine", Api.UpdateLine)
-	r.POST("/UpdateScenic", Api.UpdateScenic)
-	r.POST("/UpdateItemTime", Api.UpdateItemTime)
-	r.GET("/AllScenic", Api.AllScenic)
-	r.POST("/UserLog", Api.UserLog)
-	r.GET("/AllUserLog", Api.AllUserLog)
-	r.POST("/Sms/Send", Api.Send)
-	r.POST("/Investigation/Save", Api.SaveInvestigation)
-	r.GET("/Investigation/List", Api.AllInvestigation)
-	r.POST("/Trajectory/Save", Api.SaveTrajectory)
-	r.POST("/DealyMessage/Create", Api.CreateDealyMessage)
-	r.GET("/DealyMessage/Info", Api.DealyMessageInfo)
-	r.POST("/DealyMessage/Remove", Api.RemoveDealyMessage)
-	r.POST("/Icon/Update", Api.UpdateIcon)
-	r.GET("/Icon/All", Api.AllIcons)
-	r.GET("/Icon/Info", Api.IconInfo)
-	r.POST("/CheckToken", Api.CheckToken)
-	//r.GET("/Tiles", Api.Tiles)
-	r.POST("/TopMenus/Update", Api.UpdateTopMenus)
-	r.GET("/TopMenus/All", Api.AllTopMenus)
-	r.POST("/RegisterDevice", Api.RegisterDevice)
-	r.POST("/RemoveUser", Api.RemoveUser)
-	//r.GET("/ws", Api.WsPage)
-
-	r.Static("/Upload", "./Upload")
-	r.Static("/Console", "./Console")
-	r.Static("/Policy", dir+"/Policy")
-
-	r.GET("MP_verify_R9xuhLXYcVbdDDNk.txt", func(c *gin.Context) {
+
+	InitController("GET", "/AllItems", Api.AllItems, &DB.SModel{})
+	InitController("GET", "/AllItemTime", Api.AllItemTime, &DB.SModel{})
+	InitController("GET", "/AllCommodity", Api.AllCommodity, &DB.SModel{})
+	InitController("GET", "/AllLine", Api.AllLine, &DB.SModel{})
+	InitController("GET", "/ItemInfo", Api.ItemInfo, &DB.SModel{})
+	InitController("GET", "/CommodityInfo", Api.CommodityInfo, &DB.SModel{})
+	InitController("POST", "/CreateComplaint", Api.CreateComplaint, &DB.SModel{})
+	InitController("GET", "/AllComplaint", Api.AllComplaint, &DB.SModel{"投诉建议", "查看所有"})
+	//InitController("/CreateUser", Api.CreateUser)
+	InitController("POST", "/LoginUser", Api.LoginUser, &DB.SModel{})
+	InitController("POST", "/UpdateUser", Api.UpdateUser, &DB.SModel{"用户管理", "修改"})
+	InitController("GET", "/UserInfo", Api.UserInfo, &DB.SModel{})
+	InitController("GET", "/ScenicInfo", Api.ScenicInfo, &DB.SModel{})
+	InitController("GET", "/LineInfo", Api.LineInfo, &DB.SModel{})
+	InitController("GET", "/AllTag", Api.AllTag, &DB.SModel{})
+	InitController("GET", "/AllTagGroup", Api.AllTagGroup, &DB.SModel{})
+	InitController("POST", "/Tag/Create", Api.CreateTag, &DB.SModel{"标签管理", "增加"})
+	InitController("POST", "/Tag/Remove", Api.RemoveTag, &DB.SModel{"标签管理", "删除"})
+
+	InitController("POST", "/Upload", Api.Upload, &DB.SModel{})
+	InitController("POST", "/UpdateItem", Api.UpdateItem, &DB.SModel{"项目管理", "修改"})
+	InitController("POST", "/UpdateCommodity", Api.UpdateCommodity, &DB.SModel{"商品管理", "修改"})
+	InitController("POST", "/UpdateLine", Api.UpdateLine, &DB.SModel{"线路管理", "修改"})
+	InitController("POST", "/UpdateScenic", Api.UpdateScenic, &DB.SModel{"景区管理", "修改"})
+	InitController("POST", "/UpdateItemTime", Api.UpdateItemTime, &DB.SModel{"项目管理", "修改等候时间"})
+	InitController("GET", "/AllScenic", Api.AllScenic, &DB.SModel{})
+	InitController("POST", "/UserLog", Api.UserLog, &DB.SModel{})
+	InitController("GET", "/AllUserLog", Api.AllUserLog, &DB.SModel{})
+	InitController("POST", "/Sms/Send", Api.Send, &DB.SModel{})
+	InitController("POST", "/Investigation/Save", Api.SaveInvestigation, &DB.SModel{})
+	InitController("GET", "/Investigation/List", Api.AllInvestigation, &DB.SModel{})
+	InitController("POST", "/Trajectory/Save", Api.SaveTrajectory, &DB.SModel{})
+	InitController("POST", "/DealyMessage/Create", Api.CreateDealyMessage, &DB.SModel{"通知管理", "增加"})
+	InitController("GET", "/DealyMessage/Info", Api.DealyMessageInfo, &DB.SModel{"通知管理", "查看所有"})
+	InitController("POST", "/DealyMessage/Remove", Api.RemoveDealyMessage, &DB.SModel{"通知管理", "删除"})
+	InitController("POST", "/Icon/Update", Api.UpdateIcon, &DB.SModel{"图标管理", "修改管理"})
+	InitController("GET", "/Icon/All", Api.AllIcons, &DB.SModel{})
+	InitController("GET", "/Icon/Info", Api.IconInfo, &DB.SModel{})
+	InitController("POST", "/CheckToken", Api.CheckToken, &DB.SModel{})
+	//InitController("/Tiles", Api.Tiles)
+	InitController("POST", "/TopMenus/Update", Api.UpdateTopMenus, &DB.SModel{})
+	InitController("GET", "/TopMenus/All", Api.AllTopMenus, &DB.SModel{})
+	InitController("GET", "/RegisterDevice", Api.RegisterDevice, &DB.SModel{})
+	InitController("POST", "/RemoveUser", Api.RemoveUser, &DB.SModel{"用户管理", "删除"})
+
+	InitController("POST", "/LoginOperator", Api.LoginOperator, &DB.SModel{})
+	InitController("POST", "/UpdateOperator", Api.UpdateOperator, &DB.SModel{"操作员管理", "增加和修改"})
+	InitController("GET", "/AllOperator", Api.AllOperator, &DB.SModel{"操作员管理", "查看所有"})
+	Gin.GET("/AllModules", Auth.Modules)
+	//InitController("/ws", Api.WsPage)
+
+	// 用于给赵翔测试通知效果
+	Gin.GET("/PushNoticeToiOS", Api.PushNoticeToiOS)
+
+	Gin.Static("/Upload", "./Upload")
+	Gin.Static("/Console", "./Console")
+	Gin.Static("/Policy", dir+"/Policy")
+
+	Gin.GET("MP_verify_R9xuhLXYcVbdDDNk.txt", func(c *gin.Context) {
 		c.String(200, "R9xuhLXYcVbdDDNk")
 	})
 	//r.Static("/tiles2", dir+"/tiles")
@@ -149,7 +174,7 @@ func main() {
 		DelayMessage.GlobalDM.Start()
 	}()
-	// -初始化数据
+	// -初始化延迟数据
 	if cur, err := DelayMessage.CDelayMessage.Find(tools.GetContext(), bson.M{}); err == nil {
 		defer cur.Close(tools.GetContext())
 		for cur.Next(tools.GetContext()) {
@@ -170,5 +195,19 @@ func main() {
 		spew.Dump(err)
 	}
-	r.Run(":8080")
+	Gin.Run(":8080")
+}
+
+func InitController(method string, uri string, handFunc func(c *gin.Context), auth *DB.SModel) {
+
+	if auth.Model != "" {
+		Auth.Models[auth.Model] = append(Auth.Models[auth.Model], auth.Action)
+	}
+
+	if method == "GET" {
+		Gin.GET(uri, Auth.CheckAuthFunc(handFunc, auth))
+	}
+	if method == "POST" {
+		Gin.POST(uri, Auth.CheckAuthFunc(handFunc, auth))
+	}
 }
@@ -1,83 +0,0 @@
-package main
-
-import (
-	"context"
-	"fmt"
-	"github.com/gin-gonic/gin"
-	"go.mongodb.org/mongo-driver/mongo"
-	"go.mongodb.org/mongo-driver/mongo/options"
-	"log"
-	"time"
-)
-
-var (
-	client     *mongo.Client
-	err        error
-	result     *mongo.InsertOneResult
-	collection *mongo.Collection
-)
-
-// @APIVersion 1.0.0
-// @APITitle 乐游图后端接口文档
-// @BasePath 正式 leyoutu.st-i.com.cn; 测试 letu.api.imagchina.com
-func main() {
-
-	// Set client options
-	clientOptions := options.Client().ApplyURI("mongodb://localhost:27017")
-	clientOptions.SetLocalThreshold(3 * time.Second)  //只使用与mongo操作耗时小于3秒的
-	clientOptions.SetMaxConnIdleTime(5 * time.Second) //指定连接可以保持空闲的最大毫秒数
-	clientOptions.SetMaxPoolSize(4096)                //使用最大的连接数
-
-	// Connect to MongoDB
-	client, err = mongo.Connect(context.TODO(), clientOptions)
-
-	if err != nil {
-		log.Fatal(err)
-	}
-
-	// Check the connection
-	err = client.Ping(context.TODO(), nil)
-
-	if err != nil {
-		log.Fatal(err)
-	}
-
-	fmt.Println("Connected to MongoDB!")
-
-	collection = client.Database("LeYouTu").Collection("LogRecord")
-
-	r := gin.Default()
-	r.GET("/AllScenic", func(c *gin.Context) {
-		c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
-		c.Header("Access-Control-Allow-Credentials", "true")
-
-		//var aItems = DB.SItem{}
-		//if err = collection.FindOne(context.TODO(), bson.D{{}}).Decode(&aItems); err != nil {
-		//	println(err)
-		//}
-
-		record := &LogRecord{
-			JobName: "job10",
-			Command: "echo hello",
-			Err:     "",
-			Content: "hello",
-		}
-
-		if result, err = collection.InsertOne(context.TODO(), record); err != nil {
-			fmt.Println(err)
-			return
-		}
-
-		c.JSON(200, "ok")
-
-	})
-
-	r.Run(":8080")
-}
-
-type LogRecord struct {
-	JobName string `bson:"jobName"` // 任务名
-	Command string `bson:"command"` // shell命令
-	Err     string `bson:"err"`     // 脚本错误
-	Content string `bson:"content"` // 脚本输出
-}
	@@ -0,0 +1,6 @@		@@ -0,0 +1,6 @@
		1	+<component name="InspectionProjectProfileManager">
		2	+ <profile version="1.0">
		3	+ <option name="myName" value="Project Default" />
		4	+ <inspection_tool class="JSHint" enabled="true" level="ERROR" enabled_by_default="true" />
		5	+ </profile>
		6	+</component>
0	\ No newline at end of file	7	\ No newline at end of file
	@@ -0,0 +1,16 @@		@@ -0,0 +1,16 @@
		1	+<?xml version="1.0" encoding="UTF-8"?>
		2	+<project version="4">
		3	+ <component name="JSHintConfiguration" version="2.10.2" use-config-file="true" use-custom-config-file="true" custom-config-file-path="$PROJECT_DIR$/Console/html/bootstrap/grunt/.jshintrc">
		4	+ <option bitwise="true" />
		5	+ <option browser="true" />
		6	+ <option curly="true" />
		7	+ <option eqeqeq="true" />
		8	+ <option forin="true" />
		9	+ <option maxerr="50" />
		10	+ <option noarg="true" />
		11	+ <option noempty="true" />
		12	+ <option nonew="true" />
		13	+ <option strict="true" />
		14	+ <option undef="true" />
		15	+ </component>
		16	+</project>
0	\ No newline at end of file	17	\ No newline at end of file
	@@ -0,0 +1,8 @@		@@ -0,0 +1,8 @@
		1	+<?xml version="1.0" encoding="UTF-8"?>
		2	+<module type="WEB_MODULE" version="4">
		3	+ <component name="NewModuleRootManager">
		4	+ <content url="file://$MODULE_DIR$" />
		5	+ <orderEntry type="inheritedJdk" />
		6	+ <orderEntry type="sourceFolder" forTests="false" />
		7	+ </component>
		8	+</module>
0	\ No newline at end of file	9	\ No newline at end of file
	@@ -0,0 +1,128 @@		@@ -0,0 +1,128 @@
		1	+<?xml version="1.0" encoding="UTF-8"?>
		2	+<project version="4">
		3	+ <component name="ChangeListManager">
		4	+ <list default="true" id="4fc60b58-eb6b-4763-99c5-b2201813bdc2" name="Default Changelist" comment="">
		5	+ <change beforePath="$PROJECT_DIR$/API/Complaint.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/Complaint.go" afterDir="false" />
		6	+ <change beforePath="$PROJECT_DIR$/API/DealyMessage.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/DealyMessage.go" afterDir="false" />
		7	+ <change beforePath="$PROJECT_DIR$/API/Investigation.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/Investigation.go" afterDir="false" />
		8	+ <change beforePath="$PROJECT_DIR$/API/UserLog.go" beforeDir="false" afterPath="$PROJECT_DIR$/API/UserLog.go" afterDir="false" />
		9	+ <change beforePath="$PROJECT_DIR$/Bin/Monitor.go" beforeDir="false" afterPath="$PROJECT_DIR$/Bin/Monitor.go" afterDir="false" />
		10	+ <change beforePath="$PROJECT_DIR$/Config/config.go" beforeDir="false" afterPath="$PROJECT_DIR$/Config/config.go" afterDir="false" />
		11	+ <change beforePath="$PROJECT_DIR$/Config/config.json" beforeDir="false" afterPath="$PROJECT_DIR$/Config/config.json" afterDir="false" />
		12	+ <change beforePath="$PROJECT_DIR$/Lib/DelayMessage/delaymessage.go" beforeDir="false" afterPath="$PROJECT_DIR$/Lib/DelayMessage/delaymessage.go" afterDir="false" />
		13	+ <change beforePath="$PROJECT_DIR$/main.go" beforeDir="false" afterPath="$PROJECT_DIR$/main.go" afterDir="false" />
		14	+ <change beforePath="$PROJECT_DIR$/main2.go" beforeDir="false" />
		15	+ </list>
		16	+ <option name="EXCLUDED_CONVERTED_TO_IGNORED" value="true" />
		17	+ <option name="SHOW_DIALOG" value="false" />
		18	+ <option name="HIGHLIGHT_CONFLICTS" value="true" />
		19	+ <option name="HIGHLIGHT_NON_ACTIVE_CHANGELIST" value="false" />
		20	+ <option name="LAST_RESOLUTION" value="IGNORE" />
		21	+ </component>
		22	+ <component name="FileEditorManager">
		23	+ <leaf />
		24	+ </component>
		25	+ <component name="GOROOT" path="/usr/local/go" />
		26	+ <component name="Git.Settings">
		27	+ <option name="RECENT_GIT_ROOT_PATH" value="$PROJECT_DIR$" />
		28	+ </component>
		29	+ <component name="ProjectConfigurationFiles">
		30	+ <option name="files">
		31	+ <list>
		32	+ <option value="$PROJECT_DIR$/.idea/letu.iml" />
		33	+ <option value="$PROJECT_DIR$/.idea/misc.xml" />
		34	+ <option value="$PROJECT_DIR$/.idea/modules.xml" />
		35	+ <option value="$PROJECT_DIR$/.idea/vcs.xml" />
		36	+ <option value="$PROJECT_DIR$/.idea/inspectionProfiles/Project_Default.xml" />
		37	+ <option value="$PROJECT_DIR$/.idea/jsLinters/jshint.xml" />
		38	+ </list>
		39	+ </option>
		40	+ </component>
		41	+ <component name="ProjectFrameBounds">
		42	+ <option name="x" value="315" />
		43	+ <option name="y" value="73" />
		44	+ <option name="width" value="1454" />
		45	+ <option name="height" value="1010" />
		46	+ </component>
		47	+ <component name="ProjectView">
		48	+ <navigator proportions="" version="1">
		49	+ <foldersAlwaysOnTop value="true" />
		50	+ </navigator>
		51	+ <panes>
		52	+ <pane id="ProjectPane">
		53	+ <subPane>
		54	+ <expand>
		55	+ <path>
		56	+ <item name="letu" type="b2602c69:ProjectViewProjectNode" />
		57	+ <item name="letu" type="462c0819:PsiDirectoryNode" />
		58	+ </path>
		59	+ <path>
		60	+ <item name="letu" type="b2602c69:ProjectViewProjectNode" />
		61	+ <item name="letu" type="462c0819:PsiDirectoryNode" />
		62	+ <item name="DB" type="462c0819:PsiDirectoryNode" />
		63	+ </path>
		64	+ </expand>
		65	+ <select />
		66	+ </subPane>
		67	+ </pane>
		68	+ <pane id="Scope" />
		69	+ </panes>
		70	+ </component>
		71	+ <component name="PropertiesComponent">
		72	+ <property name="WebServerToolWindowFactoryState" value="false" />
		73	+ <property name="go.gopath.indexing.explicitly.defined" value="true" />
		74	+ <property name="go.import.settings.migrated" value="true" />
		75	+ <property name="go.sdk.automatically.set" value="true" />
		76	+ <property name="last_opened_file_path" value="$PROJECT_DIR$" />
		77	+ <property name="nodejs_interpreter_path.stuck_in_default_project" value="undefined stuck path" />
		78	+ <property name="nodejs_npm_path_reset_for_default_project" value="true" />
		79	+ </component>
		80	+ <component name="RunDashboard">
		81	+ <option name="ruleStates">
		82	+ <list>
		83	+ <RuleState>
		84	+ <option name="name" value="ConfigurationTypeDashboardGroupingRule" />
		85	+ </RuleState>
		86	+ <RuleState>
		87	+ <option name="name" value="StatusDashboardGroupingRule" />
		88	+ </RuleState>
		89	+ </list>
		90	+ </option>
		91	+ </component>
		92	+ <component name="ToolWindowManager">
		93	+ <frame x="315" y="73" width="1454" height="1010" extended-state="0" />
		94	+ <layout>
		95	+ <window_info id="Favorites" side_tool="true" />
		96	+ <window_info active="true" content_ui="combo" id="Project" order="0" visible="true" weight="0.25" />
		97	+ <window_info id="Structure" order="1" side_tool="true" weight="0.25" />
		98	+ <window_info anchor="bottom" id="Docker" show_stripe_button="false" />
		99	+ <window_info anchor="bottom" id="Database Changes" />
		100	+ <window_info anchor="bottom" id="Version Control" />
		101	+ <window_info anchor="bottom" id="Terminal" />
		102	+ <window_info anchor="bottom" id="Event Log" side_tool="true" />
		103	+ <window_info anchor="bottom" id="Message" order="0" />
		104	+ <window_info anchor="bottom" id="Find" order="1" />
		105	+ <window_info anchor="bottom" id="Run" order="2" />
		106	+ <window_info anchor="bottom" id="Debug" order="3" weight="0.4" />
		107	+ <window_info anchor="bottom" id="Cvs" order="4" weight="0.25" />
		108	+ <window_info anchor="bottom" id="Inspection" order="5" weight="0.4" />
		109	+ <window_info anchor="bottom" id="TODO" order="6" />
		110	+ <window_info anchor="right" id="Database" />
		111	+ <window_info anchor="right" id="Commander" internal_type="SLIDING" order="0" type="SLIDING" weight="0.4" />
		112	+ <window_info anchor="right" id="Ant Build" order="1" weight="0.25" />
		113	+ <window_info anchor="right" content_ui="combo" id="Hierarchy" order="2" weight="0.25" />
		114	+ </layout>
		115	+ </component>
		116	+ <component name="TypeScriptGeneratedFilesManager">
		117	+ <option name="version" value="1" />
		118	+ </component>
		119	+ <component name="editorHistoryManager">
		120	+ <entry file="file://$PROJECT_DIR$/DB/db.go">
		121	+ <provider selected="true" editor-type-id="text-editor">
		122	+ <state relative-caret-position="270">
		123	+ <caret line="22" column="41" lean-forward="true" selection-start-line="22" selection-start-column="41" selection-end-line="22" selection-end-column="41" />
		124	+ </state>
		125	+ </provider>
		126	+ </entry>
		127	+ </component>
		128	+</project>
0	\ No newline at end of file	129	\ No newline at end of file
	@@ -7,6 +7,7 @@ import (		@@ -7,6 +7,7 @@ import (
7	"go.mongodb.org/mongo-driver/bson/primitive"	7	"go.mongodb.org/mongo-driver/bson/primitive"
8	"go.mongodb.org/mongo-driver/mongo/options"	8	"go.mongodb.org/mongo-driver/mongo/options"
9	"letu/DB"	9	"letu/DB"
		10	+ "letu/Lib/Auth"
10	)	11	)
11		12
12	// @Title 返回图标基础信息	13	// @Title 返回图标基础信息
	@@ -45,6 +46,8 @@ func IconInfo(c *gin.Context) {		@@ -45,6 +46,8 @@ func IconInfo(c *gin.Context) {
45	// @Accept json	46	// @Accept json
46	// @Produce json	47	// @Produce json
47	// @Param id 5dfb03070a9ac17ac7a82054 string true "图标id"	48	// @Param id 5dfb03070a9ac17ac7a82054 string true "图标id"
		49	+// @Param ScenicId 5e0d504e24e03431008b4567 string true "景区id"
		50	+// @Param Token wgergejfwe string true "用户token"
48	// @Success 200 {object} tools.ResponseSeccess "Name名称:Picture图片地址:id图标id:ScenicId景区id"	51	// @Success 200 {object} tools.ResponseSeccess "Name名称:Picture图片地址:id图标id:ScenicId景区id"
49	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"	52	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
50	// @Router /Icon/Update? [post]	53	// @Router /Icon/Update? [post]
	@@ -52,11 +55,13 @@ func UpdateIcon(c *gin.Context) {		@@ -52,11 +55,13 @@ func UpdateIcon(c *gin.Context) {
52	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	55	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
53	c.Header("Access-Control-Allow-Credentials", "true")	56	c.Header("Access-Control-Allow-Credentials", "true")
54		57
55	- ScenicId := c.PostForm("ScenicId")
56	- if ScenicId == "" \|\| ScenicId == "undefined" {	58	+ _user, _ := c.Get("UserInfo")
		59	+ user := _user.(*DB.SMember)
		60	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
		61	+ if err != nil {
57	c.JSON(200, tools.ResponseError{	62	c.JSON(200, tools.ResponseError{
58	- 1,
59	- "缺少ScenicId(景区id)",	63	+ 401,
		64	+ "没有权限",
60	})	65	})
61	return	66	return
62	}	67	}
	@@ -74,7 +79,7 @@ func UpdateIcon(c *gin.Context) {		@@ -74,7 +79,7 @@ func UpdateIcon(c *gin.Context) {
74	bson.M{"$set": bson.M{	79	bson.M{"$set": bson.M{
75	"Name": c.PostForm("Name"),	80	"Name": c.PostForm("Name"),
76	"Picture": c.PostForm("Picture"),	81	"Picture": c.PostForm("Picture"),
77	- "ScenicId": ScenicId,	82	+ "ScenicId": c.PostForm("ScenicId"),
78	}}, &options.FindOneAndUpdateOptions{	83	}}, &options.FindOneAndUpdateOptions{
79	Upsert: &upsert,	84	Upsert: &upsert,
80	},	85	},
	@@ -99,13 +104,9 @@ func AllIcons(c *gin.Context) {		@@ -99,13 +104,9 @@ func AllIcons(c *gin.Context) {
99	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	104	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
100	c.Header("Access-Control-Allow-Credentials", "true")	105	c.Header("Access-Control-Allow-Credentials", "true")
101		106
102	- ScenicId := c.Query("ScenicId")
103	- if ScenicId == "" \|\| ScenicId == "undefined" {
104	- c.JSON(200, tools.ResponseError{
105	- 1,
106	- "缺少ScenicId(景区id)",
107	- })
108	- return	107	+ var ScenicId string
		108	+ if ScenicId = c.Query("ScenicId"); ScenicId == "" {
		109	+ ScenicId = "5e0d504e24e03431008b4567" // 乐岛
109	}	110	}
110		111
111	var SIcons = []DB.SIcons{}	112	var SIcons = []DB.SIcons{}
	@@ -115,11 +116,10 @@ func AllIcons(c *gin.Context) {		@@ -115,11 +116,10 @@ func AllIcons(c *gin.Context) {
115	for cur.Next(tools.GetContext()) {	116	for cur.Next(tools.GetContext()) {
116	var e DB.SIcons	117	var e DB.SIcons
117	cur.Decode(&e)	118	cur.Decode(&e)
118	- SIcons = append(SIcons,e)	119	+ SIcons = append(SIcons, e)
119	}	120	}
120	}	121	}
121		122
122	-
123	c.JSON(200, tools.ResponseSeccess{	123	c.JSON(200, tools.ResponseSeccess{
124	0,	124	0,
125	SIcons,	125	SIcons,
	@@ -80,7 +80,7 @@ func AllInvestigation(c *gin.Context) {		@@ -80,7 +80,7 @@ func AllInvestigation(c *gin.Context) {
80	0,	80	0,
81	total,	81	total,
82	currPage,	82	currPage,
83	- int(math.Ceil(float64(total) / float64(limit))),	83	+ int64(math.Ceil(float64(total) / float64(limit))),
84	limit,	84	limit,
85	aInvestigation,	85	aInvestigation,
86	})	86	})
	@@ -8,6 +8,7 @@ import (		@@ -8,6 +8,7 @@ import (
8	"go.mongodb.org/mongo-driver/bson/primitive"	8	"go.mongodb.org/mongo-driver/bson/primitive"
9	"go.mongodb.org/mongo-driver/mongo/options"	9	"go.mongodb.org/mongo-driver/mongo/options"
10	"letu/DB"	10	"letu/DB"
		11	+ "letu/Lib/Auth"
11	"strconv"	12	"strconv"
12	"time"	13	"time"
13	)	14	)
	@@ -33,8 +34,8 @@ func ItemInfo(c *gin.Context) {		@@ -33,8 +34,8 @@ func ItemInfo(c *gin.Context) {
33	}	34	}
34		35
35	var SItem DB.SItem	36	var SItem DB.SItem
36	- objID,_ := primitive.ObjectIDFromHex(c.Query("id"))
37	- DB.CItem.FindOne(tools.GetContext(),bson.M{"_id": objID}).Decode(&SItem)	37	+ objID, _ := primitive.ObjectIDFromHex(c.Query("id"))
		38	+ DB.CItem.FindOne(tools.GetContext(), bson.M{"_id": objID}).Decode(&SItem)
38		39
39	c.JSON(200, tools.ResponseSeccess{	40	c.JSON(200, tools.ResponseSeccess{
40	0,	41	0,
	@@ -47,6 +48,7 @@ func ItemInfo(c *gin.Context) {		@@ -47,6 +48,7 @@ func ItemInfo(c *gin.Context) {
47	// @Description 设备管理 - 查询所有游玩项目	48	// @Description 设备管理 - 查询所有游玩项目
48	// @Accept json	49	// @Accept json
49	// @Produce json	50	// @Produce json
		51	+// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
50	// @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"	52	// @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"
51	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"	53	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
52	// @Router /AllItems? [get]	54	// @Router /AllItems? [get]
	@@ -54,14 +56,19 @@ func AllItems(c *gin.Context) {		@@ -54,14 +56,19 @@ func AllItems(c *gin.Context) {
54	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	56	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
55	c.Header("Access-Control-Allow-Credentials", "true")	57	c.Header("Access-Control-Allow-Credentials", "true")
56		58
		59	+ var ScenicId string
		60	+ if ScenicId = c.Query("ScenicId");ScenicId == ""{
		61	+ ScenicId = "5e0d504e24e03431008b4567" // 乐岛
		62	+ }
		63	+
57	var aItems = []DB.SItem{}	64	var aItems = []DB.SItem{}
58	- cur, err := DB.CItem.Find(tools.GetContext(), bson.M{})	65	+ cur, err := DB.CItem.Find(tools.GetContext(), bson.M{"ScenicId": ScenicId})
59	defer cur.Close(tools.GetContext())	66	defer cur.Close(tools.GetContext())
60	if err == nil {	67	if err == nil {
61	for cur.Next(tools.GetContext()) {	68	for cur.Next(tools.GetContext()) {
62	var e DB.SItem	69	var e DB.SItem
63	cur.Decode(&e)	70	cur.Decode(&e)
64	- aItems = append(aItems,e)	71	+ aItems = append(aItems, e)
65	}	72	}
66	}	73	}
67		74
	@@ -73,6 +80,9 @@ func AllItems(c *gin.Context) {		@@ -73,6 +80,9 @@ func AllItems(c *gin.Context) {
73	// @Description 设备管理 - 更新设施	80	// @Description 设备管理 - 更新设施
74	// @Accept json	81	// @Accept json
75	// @Produce json	82	// @Produce json
		83	+// @Param id 5dfb03070a9ac17ac7a82054 string true "设备id"
		84	+// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
		85	+// @Param Token wgergejfwe string true "用户token"
76	// @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"	86	// @Success 200 {object} tools.ResponseSeccess "Tags所属标签，标签有分类；LimitHeight限高；PlayDuration游玩时长；SceneTime场次时间；Picture照片；Voice音频；AverageConsumption平均消费；Menu菜单, OpenHours开放时间: LocationDescription位置描述; Reminder温馨提示; State运行状态0=正常1=停运"
77	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"	87	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
78	// @Router /UpdateItem? [post]	88	// @Router /UpdateItem? [post]
	@@ -80,6 +90,17 @@ func UpdateItem(c *gin.Context) {		@@ -80,6 +90,17 @@ func UpdateItem(c *gin.Context) {
80	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	90	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
81	c.Header("Access-Control-Allow-Credentials", "true")	91	c.Header("Access-Control-Allow-Credentials", "true")
82		92
		93	+ _user, _ := c.Get("UserInfo")
		94	+ user := _user.(*DB.SMember)
		95	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
		96	+ if err != nil {
		97	+ c.JSON(200, tools.ResponseError{
		98	+ 401,
		99	+ "没有权限",
		100	+ })
		101	+ return
		102	+ }
		103	+
83	var Location DB.SLocation	104	var Location DB.SLocation
84	json.Unmarshal([]byte(c.PostForm("Location")), &Location)	105	json.Unmarshal([]byte(c.PostForm("Location")), &Location)
85		106
	@@ -93,7 +114,7 @@ func UpdateItem(c *gin.Context) {		@@ -93,7 +114,7 @@ func UpdateItem(c *gin.Context) {
93	if pid := c.PostForm("id"); pid == "null" {	114	if pid := c.PostForm("id"); pid == "null" {
94	id = primitive.NewObjectID()	115	id = primitive.NewObjectID()
95	} else {	116	} else {
96	- id,_ = primitive.ObjectIDFromHex(pid)	117	+ id, _ = primitive.ObjectIDFromHex(pid)
97	}	118	}
98		119
99	poststate, _ := strconv.Atoi(c.PostForm("State"))	120	poststate, _ := strconv.Atoi(c.PostForm("State"))
	@@ -104,6 +125,7 @@ func UpdateItem(c *gin.Context) {		@@ -104,6 +125,7 @@ func UpdateItem(c *gin.Context) {
104	bson.M{"$set": bson.M{	125	bson.M{"$set": bson.M{
105	"Name": c.PostForm("Name"),	126	"Name": c.PostForm("Name"),
106	"SubName": c.PostForm("SubName"),	127	"SubName": c.PostForm("SubName"),
		128	+ "ScenicId": c.PostForm("ScenicId"),
107	"Location": Location,	129	"Location": Location,
108	"Icon": c.PostForm("Icon"),	130	"Icon": c.PostForm("Icon"),
109	"LimitHeight": c.PostForm("LimitHeight"),	131	"LimitHeight": c.PostForm("LimitHeight"),
	@@ -124,24 +146,21 @@ func UpdateItem(c *gin.Context) {		@@ -124,24 +146,21 @@ func UpdateItem(c *gin.Context) {
124	},	146	},
125	)	147	)
126		148
127	-
128	-
129	// 更新等待时间	149	// 更新等待时间
130	allteim := DB.Redis.Get("AllItemTime")	150	allteim := DB.Redis.Get("AllItemTime")
131	- jsond,_ := json.Marshal(allteim)	151	+ jsond, _ := json.Marshal(allteim)
132		152
133	var ItemTime map[string]string	153	var ItemTime map[string]string
134	json.Unmarshal([]byte(jsond), &ItemTime)	154	json.Unmarshal([]byte(jsond), &ItemTime)
135		155
136	- if poststate == 1{	156	+ if poststate == 1 {
137	ItemTime[c.PostForm("id")] = "--"	157	ItemTime[c.PostForm("id")] = "--"
138	}	158	}
139	- if poststate == 0{	159	+ if poststate == 0 {
140	ItemTime[c.PostForm("id")] = "0"	160	ItemTime[c.PostForm("id")] = "0"
141	}	161	}
142	DB.Redis.Set("AllItemTime", ItemTime, time.Second60602430)	162	DB.Redis.Set("AllItemTime", ItemTime, time.Second60602430)
143		163
144	-
145	c.JSON(200, tools.ResponseSeccess{	164	c.JSON(200, tools.ResponseSeccess{
146	0,	165	0,
147	"ok",	166	"ok",
	@@ -158,6 +177,8 @@ type ItemTime struct {		@@ -158,6 +177,8 @@ type ItemTime struct {
158	// @Description 设备管理 - 更新等待时间	177	// @Description 设备管理 - 更新等待时间
159	// @Accept json	178	// @Accept json
160	// @Produce json	179	// @Produce json
		180	+// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
		181	+// @Param Token wgergejfwe string true "用户token"
161	// @Param item [{"id":"5df864740a9ac17ac7a7feb8","time":"20"},{"id":"5df8660924e03417008b4567","time":"33"}] string true "设备列表"	182	// @Param item [{"id":"5df864740a9ac17ac7a7feb8","time":"20"},{"id":"5df8660924e03417008b4567","time":"33"}] string true "设备列表"
162	// @Success 200 {object} tools.ResponseSeccess "{errcode: 0, result: "ok"}"	183	// @Success 200 {object} tools.ResponseSeccess "{errcode: 0, result: "ok"}"
163	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"	184	// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
	@@ -166,6 +187,17 @@ func UpdateItemTime(c *gin.Context) {		@@ -166,6 +187,17 @@ func UpdateItemTime(c *gin.Context) {
166	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	187	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
167	c.Header("Access-Control-Allow-Credentials", "true")	188	c.Header("Access-Control-Allow-Credentials", "true")
168		189
		190	+ _user, _ := c.Get("UserInfo")
		191	+ user := _user.(*DB.SMember)
		192	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
		193	+ if err != nil {
		194	+ c.JSON(200, tools.ResponseError{
		195	+ 401,
		196	+ "没有权限",
		197	+ })
		198	+ return
		199	+ }
		200	+
169	var ItemTime []ItemTime	201	var ItemTime []ItemTime
170	json.Unmarshal([]byte(c.PostForm("items")), &ItemTime)	202	json.Unmarshal([]byte(c.PostForm("items")), &ItemTime)
171		203
	@@ -174,7 +206,7 @@ func UpdateItemTime(c *gin.Context) {		@@ -174,7 +206,7 @@ func UpdateItemTime(c *gin.Context) {
174	RedisData[v.Id] = v.Time	206	RedisData[v.Id] = v.Time
175	}	207	}
176		208
177	- DB.Redis.Set("AllItemTime", RedisData, time.Second60602430)	209	+ DB.Redis.Set("AllItemTime_"+c.PostForm("ScenicId"), RedisData, time.Second60602430)
178	c.JSON(200, tools.ResponseSeccess{	210	c.JSON(200, tools.ResponseSeccess{
179	0,	211	0,
180	"ok",	212	"ok",
	@@ -185,6 +217,7 @@ func UpdateItemTime(c *gin.Context) {		@@ -185,6 +217,7 @@ func UpdateItemTime(c *gin.Context) {
185	// @Description 设备管理 - 获得所有设备的等待时间	217	// @Description 设备管理 - 获得所有设备的等待时间
186	// @Accept json	218	// @Accept json
187	// @Produce json	219	// @Produce json
		220	+// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
188	// @Success 200 {object} tools.ResponseSeccess "{5df864740a9ac17ac7a7feb8: '20',.....}"	221	// @Success 200 {object} tools.ResponseSeccess "{5df864740a9ac17ac7a7feb8: '20',.....}"
189	// @Failure 500 {object} tools.ResponseError "{}"	222	// @Failure 500 {object} tools.ResponseError "{}"
190	// @Router /AllItemTime? [get]	223	// @Router /AllItemTime? [get]
	@@ -192,25 +225,16 @@ func AllItemTime(c *gin.Context) {		@@ -192,25 +225,16 @@ func AllItemTime(c *gin.Context) {
192	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	225	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
193	c.Header("Access-Control-Allow-Credentials", "true")	226	c.Header("Access-Control-Allow-Credentials", "true")
194		227
		228	+ var ScenicId string
		229	+ if ScenicId = c.Query("ScenicId");ScenicId == ""{
		230	+ ScenicId = "5e0d504e24e03431008b4567" // 乐岛
		231	+ }
195		232
196	- //Device := DB.SDevice{
197	- // c.Request.Header.Get("DeviceId"),
198	- // c.Request.Header.Get("Mac"),
199	- // c.Request.Header.Get("UDID"),
200	- // c.Request.Header.Get("SystemVersion"),
201	- // c.Request.Header.Get("SystemModel"),
202	- // c.Request.Header.Get("AppVersion"),
203	- // c.Request.Header.Get("AppVersion"),
204	- // c.Request.Header.Get("DeviceToken"),
205	- //}
206	- //spew.Dump(Device)
207	-
208	-
209	- allteim := DB.Redis.Get("AllItemTime")	233	+ allteim := DB.Redis.Get("AllItemTime_" + ScenicId)
210	if allteim != nil {	234	if allteim != nil {
211	c.JSON(200, allteim)	235	c.JSON(200, allteim)
212	} else {	236	} else {
213	c.String(200, "{}")	237	c.String(200, "{}")
214	}	238	}
215		239
216	-}
217	\ No newline at end of file	240	\ No newline at end of file
		241	+}
@@ -0,0 +1,188 @@		@@ -0,0 +1,188 @@
	1	+package Api
	2	+
	3	+import (
	4	+ "encoding/json"
	5	+ "github.com/aarongao/tools"
	6	+ "github.com/gin-gonic/gin"
	7	+ "go.mongodb.org/mongo-driver/bson"
	8	+ "go.mongodb.org/mongo-driver/bson/primitive"
	9	+ "letu/DB"
	10	+ "letu/Lib/Auth"
	11	+ "letu/Lib/JWT"
	12	+ "time"
	13	+)
	14	+
	15	+// @Title 登录
	16	+// @Description 操作员管理 - 操作员登录
	17	+// @Accept json
	18	+// @Produce json
	19	+// @Param Username aaron string true "用户名"
	20	+// @Param Password 123 string true "密码"
	21	+// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":{"Id":"5e09c64c1c09c6f0f7ca2fa9","Token":"640bf934e425aba5d3c90998b2641f2f0ca07261d334d9615d1cd4790b5f34e7"}} 调用其它需要登陆的接口时携带token,有过期时间"
	22	+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
	23	+// @Router /LoginOperator? [post]
	24	+func LoginOperator(c *gin.Context) {
	25	+ c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
	26	+ c.Header("Access-Control-Allow-Credentials", "true")
	27	+
	28	+ selected := bson.M{}
	29	+ var User *DB.SMember
	30	+ if c.PostForm("Username") != "" && c.PostForm("Password") != "" {
	31	+ selected["Username"] = c.PostForm("Username")
	32	+ selected["Password"] = c.PostForm("Password")
	33	+ DB.CMember.FindOne(tools.GetContext(), selected).Decode(&User)
	34	+
	35	+ if User == nil {
	36	+ c.JSON(200, tools.ResponseError{
	37	+ 1,
	38	+ "用户不存在",
	39	+ })
	40	+ return
	41	+ }
	42	+
	43	+ } else {
	44	+ c.JSON(200, tools.ResponseError{
	45	+ 1,
	46	+ "不能为空",
	47	+ })
	48	+ return
	49	+ }
	50	+
	51	+ // 生成token
	52	+ dd, _ := time.ParseDuration("8760h")
	53	+ User.Token, _ = JWT.CreateToken(User, time.Now().Add(dd).Unix())
	54	+ c.JSON(200, tools.ResponseSeccess{
	55	+ 0,
	56	+ User,
	57	+ })
	58	+
	59	+}
	60	+
	61	+// @Title 操作员管理
	62	+// @Description 操作员管理 - 修改用户信息
	63	+// @Accept json
	64	+// @Produce json
	65	+// @Param id aaron string true "用户id""
	66	+// @Param ScenicId 5e0d504e24e03431008b4567 string true "景区id"
	67	+// @Param Token wgergejfwe string true "用户token"
	68	+// @Param Username aarongao string true "用户名"
	69	+// @Param Remarks 18616619599 string true "备注"
	70	+// @Param Password 12345 string true "密码"
	71	+// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
	72	+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
	73	+// @Router /UpdateOperator? [post]
	74	+func UpdateOperator(c *gin.Context) {
	75	+ c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
	76	+ c.Header("Access-Control-Allow-Credentials", "true")
	77	+
	78	+ _user, _ := c.Get("UserInfo")
	79	+ user := _user.(*DB.SMember)
	80	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
	81	+ if err != nil {
	82	+ c.JSON(200, tools.ResponseError{
	83	+ 401,
	84	+ "没有权限",
	85	+ })
	86	+ return
	87	+ }
	88	+
	89	+ var _auth []string
	90	+ json.Unmarshal([]byte(c.PostForm("Auth")), &_auth)
	91	+
	92	+ objID, err := primitive.ObjectIDFromHex(c.PostForm("id"))
	93	+ if err == nil {
	94	+
	95	+ _, err = DB.CMember.UpdateOne(tools.GetContext(),
	96	+ bson.M{"_id": objID},
	97	+ bson.M{"$set": bson.M{
	98	+ "Auth": _auth,
	99	+ "Username": c.PostForm("Username"),
	100	+ "Password": c.PostForm("Password"),
	101	+ "Remarks": c.PostForm("Remarks"),
	102	+ }},
	103	+ )
	104	+ } else {
	105	+
	106	+ objectID := primitive.NewObjectID()
	107	+ User := &DB.SMember{
	108	+ &objectID,
	109	+ "operator",
	110	+ c.PostForm("ScenicId"),
	111	+ c.PostForm("Username"),
	112	+ c.PostForm("Password"),
	113	+ "",
	114	+ "",
	115	+ "",
	116	+ "",
	117	+ "",
	118	+ "",
	119	+ &DB.SDevice{},
	120	+ _auth,
	121	+ c.PostForm("Remarks"),
	122	+ }
	123	+
	124	+ // 生成token
	125	+ var dd time.Duration
	126	+ dd, err = time.ParseDuration("20m")
	127	+ User.Token, _ = JWT.CreateToken(User, time.Now().Add(dd).Unix())
	128	+
	129	+ DB.CMember.InsertOne(tools.GetContext(), User)
	130	+
	131	+ }
	132	+
	133	+ if err == nil {
	134	+ c.JSON(200, tools.ResponseSeccess{
	135	+ 0,
	136	+ "ok",
	137	+ })
	138	+ } else {
	139	+ c.JSON(200, tools.ResponseError{
	140	+ 1,
	141	+ err.Error(),
	142	+ })
	143	+ }
	144	+
	145	+}
	146	+
	147	+// @Title 操作员管理
	148	+// @Description 操作员管理 - 所有操作员
	149	+// @Accept json
	150	+// @Produce json
	151	+// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
	152	+// @Param Token 5dfb03070a9ac17ac7a82054 string true "用户token"
	153	+// @Success 200 {object} tools.ResponseSeccess ""
	154	+// @Failure 500 {object} tools.ResponseError "{"errcode":1,"errmsg":"错误原因"}"
	155	+// @Router /AllOperator? [get]
	156	+func AllOperator(c *gin.Context) {
	157	+ c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
	158	+ c.Header("Access-Control-Allow-Credentials", "true")
	159	+ _user, _ := c.Get("UserInfo")
	160	+ user := _user.(*DB.SMember)
	161	+ err := Auth.CheckScenicAuth(c.Query("ScenicId"), user)
	162	+ if err != nil {
	163	+ c.JSON(200, tools.ResponseError{
	164	+ 401,
	165	+ "没有权限",
	166	+ })
	167	+ return
	168	+ }
	169	+
	170	+ var aMember []*DB.SMember
	171	+ cur, err := DB.CMember.Find(tools.GetContext(), bson.M{"ScenicId": c.Query("ScenicId"), "UserType": "operator"})
	172	+ defer cur.Close(tools.GetContext())
	173	+ if err == nil {
	174	+ for cur.Next(tools.GetContext()) {
	175	+ var e *DB.SMember
	176	+ cur.Decode(&e)
	177	+ aMember = append(aMember, e)
	178	+ }
	179	+ }
	180	+
	181	+ if aMember == nil {
	182	+ aMember = []*DB.SMember{}
	183	+ }
	184	+ c.JSON(200, tools.ResponseSeccess{
	185	+ 0,
	186	+ aMember,
	187	+ })
	188	+}
	@@ -5,6 +5,7 @@ import (		@@ -5,6 +5,7 @@ import (
5	"github.com/gin-gonic/gin"	5	"github.com/gin-gonic/gin"
6	"go.mongodb.org/mongo-driver/bson"	6	"go.mongodb.org/mongo-driver/bson"
7	"letu/DB"	7	"letu/DB"
		8	+ "letu/Lib/Auth"
8	"letu/Lib/LeYouTu"	9	"letu/Lib/LeYouTu"
9	"time"	10	"time"
10	)	11	)
	@@ -23,6 +24,11 @@ func AllTag(c *gin.Context) {		@@ -23,6 +24,11 @@ func AllTag(c *gin.Context) {
23		24
24	ScenicId, err := LeYouTu.GetScenicId(c)	25	ScenicId, err := LeYouTu.GetScenicId(c)
25	if err != nil {	26	if err != nil {
		27	+
		28	+ c.JSON(200, tools.ResponseError{
		29	+ 1,
		30	+ "景区id不能为空",
		31	+ })
26	return	32	return
27	}	33	}
28		34
	@@ -63,6 +69,10 @@ func AllTagGroup(c *gin.Context) {		@@ -63,6 +69,10 @@ func AllTagGroup(c *gin.Context) {
63		69
64	ScenicId, err := LeYouTu.GetScenicId(c)	70	ScenicId, err := LeYouTu.GetScenicId(c)
65	if err != nil {	71	if err != nil {
		72	+ c.JSON(200, tools.ResponseError{
		73	+ 1,
		74	+ "景区id不能为空",
		75	+ })
66	return	76	return
67	}	77	}
68		78
	@@ -119,6 +129,7 @@ func AllTagGroup(c *gin.Context) {		@@ -119,6 +129,7 @@ func AllTagGroup(c *gin.Context) {
119	// @Accept json	129	// @Accept json
120	// @Produce json	130	// @Produce json
121	// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"	131	// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
		132	+// @Param Token wgergejfwe string true "用户token"
122	// @Param TagName 广场 string true "标签名称"	133	// @Param TagName 广场 string true "标签名称"
123	// @Param TagGroup location string true "群组名称"	134	// @Param TagGroup location string true "群组名称"
124	// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"	135	// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
	@@ -128,8 +139,14 @@ func CreateTag(c *gin.Context) {		@@ -128,8 +139,14 @@ func CreateTag(c *gin.Context) {
128	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	139	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
129	c.Header("Access-Control-Allow-Credentials", "true")	140	c.Header("Access-Control-Allow-Credentials", "true")
130		141
131	- ScenicId, err := LeYouTu.GetScenicId(c)	142	+ _user, _ := c.Get("UserInfo")
		143	+ user := _user.(*DB.SMember)
		144	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
132	if err != nil {	145	if err != nil {
		146	+ c.JSON(200, tools.ResponseError{
		147	+ 401,
		148	+ "没有权限",
		149	+ })
133	return	150	return
134	}	151	}
135		152
	@@ -160,12 +177,12 @@ func CreateTag(c *gin.Context) {		@@ -160,12 +177,12 @@ func CreateTag(c *gin.Context) {
160	}	177	}
161		178
162	DB.CTags.InsertOne(tools.GetContext(),DB.STag{	179	DB.CTags.InsertOne(tools.GetContext(),DB.STag{
163	- ScenicId,	180	+ c.PostForm("ScenicId"),
164	c.PostForm("TagGroup"),	181	c.PostForm("TagGroup"),
165	c.PostForm("TagName"),	182	c.PostForm("TagName"),
166	})	183	})
167		184
168	- DB.Redis.Delete("Tags_" + ScenicId)	185	+ DB.Redis.Delete("Tags_" + c.PostForm("ScenicId"))
169	println("清楚缓存Tags")	186	println("清楚缓存Tags")
170		187
171	c.JSON(200, tools.ResponseSeccess{	188	c.JSON(200, tools.ResponseSeccess{
	@@ -182,6 +199,7 @@ func CreateTag(c *gin.Context) {		@@ -182,6 +199,7 @@ func CreateTag(c *gin.Context) {
182	// @Accept json	199	// @Accept json
183	// @Produce json	200	// @Produce json
184	// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"	201	// @Param ScenicId 5dfb03070a9ac17ac7a82054 string true "景区id"
		202	+// @Param Token wgergejfwe string true "用户token"
185	// @Param TagName 广场 string true "标签名称"	203	// @Param TagName 广场 string true "标签名称"
186	// @Param TagGroup location string true "群组名称"	204	// @Param TagGroup location string true "群组名称"
187	// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"	205	// @Success 200 {object} tools.ResponseSeccess "{"errcode":0,"result":"ok"}"
	@@ -191,8 +209,14 @@ func RemoveTag(c *gin.Context) {		@@ -191,8 +209,14 @@ func RemoveTag(c *gin.Context) {
191	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))	209	c.Header("Access-Control-Allow-Origin", c.Request.Header.Get("Origin"))
192	c.Header("Access-Control-Allow-Credentials", "true")	210	c.Header("Access-Control-Allow-Credentials", "true")
193		211
194	- ScenicId, err := LeYouTu.GetScenicId(c)	212	+ _user, _ := c.Get("UserInfo")
		213	+ user := _user.(*DB.SMember)
		214	+ err := Auth.CheckScenicAuth(c.PostForm("ScenicId"), user)
195	if err != nil {	215	if err != nil {
		216	+ c.JSON(200, tools.ResponseError{
		217	+ 401,
		218	+ "没有权限",
		219	+ })
196	return	220	return
197	}	221	}
198		222
	@@ -222,9 +246,9 @@ func RemoveTag(c *gin.Context) {		@@ -222,9 +246,9 @@ func RemoveTag(c *gin.Context) {
222	return	246	return
223	}	247	}
224		248
225	- DB.CTags.DeleteOne(tools.GetContext(), bson.M{"ScenicId": ScenicId,"Name":c.PostForm("TagName"),"Type":c.PostForm("TagGroup")})	249	+ DB.CTags.DeleteOne(tools.GetContext(), bson.M{"ScenicId": c.PostForm("ScenicId"),"Name":c.PostForm("TagName"),"Type":c.PostForm("TagGroup")})
226		250
227	- DB.Redis.Delete("Tags_" + ScenicId)	251	+ DB.Redis.Delete("Tags_" + c.PostForm("ScenicId"))
228	println("清楚缓存Tags")	252	println("清楚缓存Tags")
229		253
230	c.JSON(200, tools.ResponseSeccess{	254	c.JSON(200, tools.ResponseSeccess{
	@@ -12,7 +12,7 @@ var lastState = 0		@@ -12,7 +12,7 @@ var lastState = 0
12	func main() {	12	func main() {
13		13
14	for {	14	for {
15	- time.Sleep(30 * time.Second)	15	+ time.Sleep(180 * time.Second)
16	httpState, body, error := tools.GET("http://leyoutu.st-i.com.cn/AllScenic")	16	httpState, body, error := tools.GET("http://leyoutu.st-i.com.cn/AllScenic")
17	if httpState == 200 && error == nil {	17	if httpState == 200 && error == nil {
18		18