soc/soc-modules/soc-modules-system/src/main/java/com/xunmei/system/controller/SysUserController.java

package com.xunmei.system.controller;

import cn.hutool.core.util.ObjectUtil;
import com.alibaba.excel.EasyExcel;
import com.alibaba.excel.context.AnalysisContext;
import com.alibaba.excel.event.AnalysisEventListener;
import com.alibaba.excel.write.style.column.LongestMatchColumnWidthStyleStrategy;
import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.xunmei.common.core.constant.SecurityConstants;
import com.xunmei.common.core.domain.R;
import com.xunmei.common.core.domain.message.domain.CoreAnnouncementNotificationToRole;
import com.xunmei.common.core.utils.DateUtils;
import com.xunmei.common.core.utils.StringUtils;
import com.xunmei.common.core.vo.IdNameVo;
import com.xunmei.common.core.web.controller.BaseController;
import com.xunmei.common.core.web.domain.AjaxResult;
import com.xunmei.common.core.web.page.TableDataInfo;
import com.xunmei.common.log.annotation.Log;
import com.xunmei.common.log.enums.BusinessType;
import com.xunmei.common.security.annotation.InnerAuth;
import com.xunmei.common.security.annotation.RequiresPermissions;
import com.xunmei.common.security.utils.SaltHelper;
import com.xunmei.common.security.utils.SecurityUtils;
import com.xunmei.system.api.domain.*;
import com.xunmei.system.api.model.LoginUser;
import com.xunmei.system.domain.SysUserRole;
import com.xunmei.system.domain.vo.SysUserListVo;
import com.xunmei.system.domain.vo.UserRoleVo;
import com.xunmei.system.api.dto.SysPlanOrgDTO;
import com.xunmei.system.mapper.SysOrgMapper;
import com.xunmei.system.service.*;
import com.xunmei.system.util.SecurityUserExport;
import com.xunmei.system.util.UserExport;
import com.xunmei.system.util.UserImport;
import io.swagger.annotations.ApiOperation;
import org.apache.commons.lang3.ArrayUtils;
import org.springframework.beans.BeanUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.transaction.annotation.Transactional;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.multipart.MultipartFile;

import javax.servlet.http.HttpServletResponse;
import java.io.File;
import java.io.IOException;
import java.net.URLEncoder;
import java.util.*;
import java.util.concurrent.atomic.AtomicInteger;
import java.util.stream.Collectors;

/**
 * 用户信息
 *
 * @author xunmei
 */
@RestController
@RequestMapping("/user")
public class SysUserController extends BaseController {
    @Autowired
    private ISysUserService userService;

    @Autowired
    private ISysRoleService roleService;

    @Autowired
    private ISysPermissionService permissionService;

    @Autowired
    private ISysConfigService configService;
    @Autowired
    private ISysUserRoleService sysUserRoleService;
    @Autowired
    private ISysUserInformationService sysUserInformationService;
    @Autowired
    private SysOrgMapper orgMapper;

    /**
     * 获取用户列表
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/list")
    public AjaxResult list(SysUser user) {
        AjaxResult ajax = AjaxResult.success();
        com.xunmei.common.core.web.page.TableDataInfo<com.xunmei.system.api.domain.SysUser> sysUserTableDataInfo = userService.selectUserList(user);

        ajax.put("data", sysUserTableDataInfo);
        boolean admin = false;
        SysUser sysUser = userService.selectUserById(SecurityUtils.getUserId());
        if (null != sysUser && "Y".equals(sysUser.getIsManage())) {
            admin = true;
        }
        ajax.put("check", admin);
        String orgName = "福建农信";
        if (null != user.getOrgId()) {
            SysOrg sysOrg = orgMapper.selectSysOrgById(user.getOrgId());
            orgName = sysOrg.getShortName();
        }
        ajax.put("orgName", orgName);
        return ajax;
    }

    /**
     * 获取用户列表
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/userselector/list")
    public AjaxResult userSelectorList(SysUser user) {
        TableDataInfo<SysUser> sysUserTableDataInfo = userService.userSelectorList(user);
        return success(sysUserTableDataInfo);
    }

    @RequiresPermissions("system:user:list")
    @GetMapping("/dictionlist")
    public R<List<SysUser>> list2(SysUser user) {
        try {
            if (ObjectUtil.isEmpty(user.getOrgId())) {
                user.setOrgId(SecurityUtils.getLoginUser().getOrgId());
            }
            return R.ok(userService.selectSyncUserList(user));
        } catch (Exception e) {
            return R.fail(e.getMessage());
        }
    }

    // @RequiresPermissions("system:user:list")
    @GetMapping("/userListData")
    public R<List<SysUser>> userListData(SysUser user) {
        if (ObjectUtil.isEmpty(user.getOrgId())) {
            user.setOrgId(SecurityUtils.getLoginUser().getOrgId());
        }
        return R.ok(userService.selectUserListData(user));

    }


    /**
     * 获取当前用户信息
     */
    @InnerAuth
    @GetMapping("/info/{username}")
    public R<LoginUser> info(@PathVariable("username") String username) {
        SysUser sysUser = userService.selectUserByUserName(username);

        if (StringUtils.isNull(sysUser)) {
            return R.fail("用户名或密码错误");
        }
        //获取当前用户的角色数据。
        List<SysRole> sysRoles = roleService.selectRolesByUserId(sysUser.getId());
        sysUser.setRoles(sysRoles);

        // 角色集合
        Set<String> roles = permissionService.getRolePermission(sysUser);
        // 权限集合
        Set<String> permissions = permissionService.getMenuPermission(sysUser);
        LoginUser sysUserVo = new LoginUser();
        sysUserVo.setOrgId(sysUser.getOrgId());
        sysUserVo.setName(sysUser.getName());
        sysUserVo.setSysUser(sysUser);
        sysUserVo.setRoles(roles);
        sysUserVo.setPermissions(permissions);
        return R.ok(sysUserVo);
    }

    /**
     * 注册用户信息
     */
    @InnerAuth
    @PostMapping("/register")
    public R<Boolean> register(@RequestBody SysUser sysUser) {
        String username = sysUser.getUsername();
        if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser")))) {
            return R.fail("当前系统没有开启注册功能！");
        }
        if (!userService.checkUserNameUnique(sysUser)) {
            return R.fail("保存用户'" + username + "'失败，注册账号已存在");
        }
        return R.ok(userService.registerUser(sysUser));
    }

    /**
     * 获取用户信息
     *
     * @return 用户信息
     */
    @GetMapping("getInfo")
    public AjaxResult getInfo() {
        SysUser user = userService.selectUserById(SecurityUtils.getUserId());
        SysOrg org = orgMapper.selectOne(new LambdaQueryWrapper<SysOrg>()
                .eq(SysOrg::getId, user.getOrgId())
                .select(SysOrg::getType, SysOrg::getShortName));
        if (ObjectUtil.isNotEmpty(org)) {
            user.setOrgType(org.getType());
            user.setOrgShortName(org.getShortName());
        }
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(user);
        // 权限集合
        Set<String> permissions = permissionService.getMenuPermission(user);
        List<UserRoleVo> userRoleVos = sysUserRoleService.selectUserRoleVoList(user.getId());
        AjaxResult ajax = AjaxResult.success();
        ajax.put("user", user);
        ajax.put("roles", roles);
        //用户角色信息
        ajax.put("roleList", userRoleVos);
        ajax.put("permissions", permissions);
        return ajax;
    }

    /**
     * 根据用户编号获取详细信息
     */
    @RequiresPermissions("system:user:query")
    @GetMapping(value = {"/", "/{userId}"})
    public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId) {
        userService.checkUserDataScope(userId);
        AjaxResult ajax = AjaxResult.success();
        List<SysRole> roles = roleService.selectRoleAll();
        ajax.put("roles", roles);
        ajax.put("posts", null);
        if (StringUtils.isNotNull(userId)) {
            SysUserInformation informationByUserId = sysUserInformationService.getInformationByUserId(userId);
            if (null == informationByUserId) {
                informationByUserId = new SysUserInformation();
            }
            SysUser sysUser = userService.selectUserById(userId);
            sysUser.setOrgId(sysUser.getOriginalOrgId());
            List<SysUserRole> userRoles = sysUserRoleService.list(new QueryWrapper<SysUserRole>().eq("user_id", userId));
            sysUser.setRoles(roles);
            String sex = "-";
            String status = "禁用";
            if (null != sysUser) {
                if (null != sysUser.getGender()) {
                    if (sysUser.getGender().equals("1")) {
                        sex = "女";
                    } else {
                        sex = "男";
                    }
                }
                if (sysUser.getIsLock().equals("0")) {
                    status = "启用";
                }
            }
            ajax.put(AjaxResult.DATA_TAG, sysUser);
            ajax.put("information", informationByUserId);
            ajax.put("postIds", null);
            ajax.put("roleIds", userRoles.stream().map(SysUserRole::getRoleId).collect(Collectors.toList()));
            ajax.put("roleName", roleService.getRoleName(userId));
            ajax.put("sex", sex);
            ajax.put("status", status);
            ajax.put("source", sysUser.getSource());
        }
        return ajax;
    }

    /**
     * 新增用户
     */
    @RequiresPermissions("system:user:add")
    @Log(title = "用户管理", businessType = BusinessType.INSERT)
    @PostMapping
    @Transactional(rollbackFor = Exception.class)
    public AjaxResult add(@Validated @RequestBody SysUser user) {
        if (!userService.checkUserNameUnique(user)) {
            return error("新增用户'" + user.getUsername() + "'失败，账号已存在");
        } else if (StringUtils.isNotEmpty(user.getPhone()) && !userService.checkPhoneUnique(user)) {
            return error("新增用户'" + user.getUsername() + "'失败，手机号码已存在");
        }
        user.setCreateBy(SecurityUtils.getUsername());
        user.setSource(0);
        user.setCreateTime(new Date());
        //isp的加密方式
        final String salt = SaltHelper.salt();
        user.setSalt(salt);
        user.setPassword(SaltHelper.exec(user.getPassword(), salt));
        user.setOriginalOrgId(user.getOrgId());
        userService.insertUser(user);
        return AjaxResult.success();
    }

    @GetMapping("/selectrolesByOrgId")
    public AjaxResult selectrolesByOrgId(Long orgId) {
        return AjaxResult.success(userService.selectrolesByOrgId(orgId));
    }

    /**
     * 修改用户
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping
    public AjaxResult edit(@Validated @RequestBody SysUser user) {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getId());
        if (!userService.checkUserNameUnique(user)) {
            return error("修改用户'" + user.getUsername() + "'失败，账号已存在");
        } else if (StringUtils.isNotEmpty(user.getPhone()) && !userService.checkPhoneUnique(user)) {
            return error("修改用户'" + user.getUsername() + "'失败，手机号码已存在");
        }

        if (user.getRoleIds() != null && user.getRoleIds().length > 0) {
            sysUserRoleService.remove(new QueryWrapper<SysUserRole>().eq("user_id", user.getId()));
            for (Long roleId :
                    user.getRoleIds()) {
                SysUserRole sysUserRole = new SysUserRole();
                sysUserRole.setUserId(user.getId());
                sysUserRole.setRoleId(roleId);
                sysUserRole.setCreateTime(new Date());
                sysUserRoleService.insertSysUserRole(sysUserRole);
            }

        }
        user.setOriginalOrgId(user.getOrgId());
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.updateUser(user));
    }

    /**
     * 删除用户
     */
    @RequiresPermissions("system:user:remove")
    @Log(title = "用户管理", businessType = BusinessType.DELETE)
    @DeleteMapping("/{userIds}")
    public AjaxResult remove(@PathVariable Long[] userIds) {
        if (ArrayUtils.contains(userIds, SecurityUtils.getUserId())) {
            return error("当前用户不能删除");
        }
        return toAjax(userService.deleteUserByIds(userIds));
    }

    /**
     * 重置密码
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping("/resetPwd")
    public AjaxResult resetPwd(@RequestBody SysUser user) {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getId());
        final String salt = SaltHelper.salt();
        user.setSalt(salt);
//        user.setPassword(SaltHelper.exec(user.getPassword(), userService.selectUserById(user.getId()).getSalt()));
        user.setPassword(SaltHelper.exec(user.getPassword(), salt));
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.resetPwd(user));
    }

    /**
     * 状态修改
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.UPDATE)
    @PutMapping("/changeStatus")
    public AjaxResult changeStatus(@RequestBody SysUser user) {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getId());
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.updateUserStatus(user));
    }

    /**
     * 根据用户编号获取授权角色
     */
    @RequiresPermissions("system:user:query")
    @GetMapping("/authRole/{userId}")
    public AjaxResult authRole(@PathVariable("userId") Long userId) {
        AjaxResult ajax = AjaxResult.success();
        SysUser user = userService.selectUserById(userId);
        List<SysRole> roles = roleService.selectRolesByUserId(userId);
        List<SysUserRole> userRoles = sysUserRoleService.selectSysUserRoleListByUserId(userId);
        ajax.put("user", user);
        ajax.put("roles", roles);
        ajax.put("userRoles", userRoles);
        return ajax;
    }

    /**
     * 用户授权角色
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "用户管理", businessType = BusinessType.GRANT)
    @PutMapping("/authRole")
    public AjaxResult insertAuthRole(Long userId, Long[] roleIds) {
        userService.checkUserDataScope(userId);
        userService.insertUserAuth(userId, roleIds);
        return success();
    }

    /**
     * 获取用户列表
     */
    @InnerAuth
    @PostMapping("/sync/list")
    public R<List<SysUser>> syncUserList(@RequestBody SysUser user) {
        try {
            return R.ok(userService.selectSyncUserList(user));
        } catch (Exception e) {
            return R.fail(e.getMessage());
        }
    }

    @InnerAuth
    @GetMapping("/getUserById")
    public SysUser getUserById(Long id) {
        return userService.selectUserById(id);
    }

    /**
     * 查询机构列表
     */
    @ApiOperation(value = "批量保存同步用户数据")
    @InnerAuth
    @PostMapping("/sync/batch")
    public R<Boolean> batchSaveSyncSysOrgs(@RequestBody List<SysUser> sysUserList) {
        userService.batchSaveOrUpdate(sysUserList);
        return R.ok(true);
    }

    /**
     * 查询机构列表
     */
    @ApiOperation(value = "记录用户最后一次登录")
    @InnerAuth
    @PostMapping("/userLoginInfo")
    public R<Boolean> userLoginInfo(Long id, Date loginTime, String loginIp) {
        SysUser sysUser = userService.selectUserById(id);
        sysUser.setLastIp(loginIp);
        if (null == loginTime) {
            loginTime = DateUtils.getNowDate();
        }
        sysUser.setLastTime(loginTime);
        userService.saveOrUpdate(sysUser);
        return R.ok(true);
    }


    @ApiOperation(value = "根据机构id查询用户")
    @GetMapping("/getByOrgId/{orgId}")
    public R<List<SysUserListVo>> getByOrgId(@PathVariable Long orgId) {
        List<SysUserListVo> sysUsers = userService.selectUserByOrgId(orgId);
        return R.ok(sysUsers);
    }

    @InnerAuth
    @PostMapping("/allUserList")
    public List<SysUser> allUserList() {
        return userService.list();
    }

    @ApiOperation(value = "通过角色获取用户")
    @InnerAuth
    @PostMapping("/userListByRole")
    public List<SysUser> userLoginInfo(@RequestBody List<CoreAnnouncementNotificationToRole> notificationToRoles) {
        return userService.selectUserListByRole(notificationToRoles);
    }

    @GetMapping("/selectAllUser")
    public AjaxResult selectAllUser(@PathVariable(value = "userName", required = false) String userName) {
        return success(userService.selectAllUser(userName));
    }

    @ApiOperation(value = "通过角色和机构获取用户")
    @InnerAuth
    @PostMapping("/userListByRoleAndOrg")
    public List<SysUser> userListByRoleAndOrg(@RequestBody SysPlanOrgDTO sysRoleOrgDTO) {
        return userService.selectUserListByRoleAndOrg(sysRoleOrgDTO);
    }

    /**
     * 获取用户的角色id及名称
     *
     * @param
     * @return
     */
    @ApiOperation(value = "获取用户的角色id及名称")
    @InnerAuth
    @GetMapping("/getroleinfoofuser")
    public List<IdNameVo> getRoleInfoOfUser(@RequestParam Long userId) {
        List<UserRoleVo> vos = sysUserRoleService.selectUserRoleVoList(userId);
        return vos.stream().map(v -> {
            IdNameVo vo = new IdNameVo();
            vo.setId(v.getRoleId());
            vo.setName(v.getRoleName());
            return vo;
        }).collect(Collectors.toList());
    }

    /**
     * 导出用户数据
     */
    @RequiresPermissions("system:user:export")
    @PostMapping("/export")
    public void export(SysUser user, HttpServletResponse response) {
        List<UserExport> list = null;
        Set<String> excludeColumnFiledNames = new HashSet<String>();

        //如果导出模板
        if (user.getTemplate() != null && user.getTemplate()) {
            excludeColumnFiledNames.add("lastIp");
            excludeColumnFiledNames.add("lastTime");
            list = new ArrayList<>();
        } else {
            list = userService.down(user);
            if (ObjectUtil.isEmpty(list)) {
                throw new RuntimeException("导出数据为空!");
            }
            AtomicInteger xh = new AtomicInteger();
            xh.getAndIncrement();
            list.forEach(e -> {
                if (e.getIsManage() == null) {
                    e.setIsManage("N");
                }
                e.setXh(String.valueOf(xh.getAndIncrement()));
            });

            if (list.size() > 10000) {
                throw new RuntimeException("导出数据量过大（单次导出限量10000条数据），请填写条件分批导出");
            }
        }

        try {
            // 设置响应头
            response.addHeader("Content-Disposition", "attachment;filename=" + URLEncoder.encode("用户数据", "utf-8"));
            response.setContentType("application/octet-stream;charset=UTF-8");
            response.setCharacterEncoding("utf-8");
            // 数据导出
            EasyExcel.write(response.getOutputStream(), UserExport.class).excludeColumnFiledNames(excludeColumnFiledNames)
                    .registerWriteHandler(new LongestMatchColumnWidthStyleStrategy()).sheet("用户数据").doWrite(list);
        } catch (Exception e) {
            // 重置response
            response.reset();
            response.setContentType("application/json");
            response.setCharacterEncoding("utf-8");
        }
    }

    @RequiresPermissions("system:user:exportSecurity")
    @PostMapping("/exportSecurity")
    public void exportSecurity(SysUser user, HttpServletResponse response) {
        List<SecurityUserExport> securityUserExports = userService.downSecurityUser();
        if (ObjectUtil.isEmpty(securityUserExports)) {
            throw new RuntimeException("导出数据为空!");
        }
        AtomicInteger xh = new AtomicInteger();
        xh.getAndIncrement();
        securityUserExports.forEach(e -> {
            e.setXh(String.valueOf(xh.getAndIncrement()));
        });
        if (securityUserExports.size() > 10000) {
            throw new RuntimeException("导出数据量过大（单次导出限量10000条数据），请填写条件分批导出");
        }
        try {
            // 设置响应头
            response.addHeader("Content-Disposition", "attachment;filename=" + URLEncoder.encode("用户数据", "utf-8"));
            response.setContentType("application/octet-stream;charset=UTF-8");
            response.setCharacterEncoding("utf-8");
            // 数据导出
            EasyExcel.write(response.getOutputStream(), SecurityUserExport.class)
                    .registerWriteHandler(new LongestMatchColumnWidthStyleStrategy()).sheet("用户数据").doWrite(securityUserExports);
        } catch (Exception e) {
            // 重置response
            response.reset();
            response.setContentType("application/json");
            response.setCharacterEncoding("utf-8");
        }

    }

    /**
     * 导出管理人员数据
     */
    @RequiresPermissions("system:user:exportManager")
    @PostMapping("/exportManager")
    public void exportManager(SysUser user, HttpServletResponse response) {
        List<UserExport> list = userService.down(user);
        if (ObjectUtil.isEmpty(list)) {
            throw new RuntimeException("导出数据为空!");
        }
        list = list.stream().filter(e -> "Y".equals(e.getIsManage())).collect(Collectors.toList());

        AtomicInteger xh = new AtomicInteger();
        xh.getAndIncrement();
        list.forEach(e -> {
            if (e.getIsManage() == null) {
                e.setIsManage("N");
            }
            e.setXh(String.valueOf(xh.getAndIncrement()));
        });

        if (list.size() > 10000) {
            throw new RuntimeException("导出数据量过大（单次导出限量10000条数据），请填写条件分批导出");
        }
        try {
            // 设置响应头
            response.addHeader("Content-Disposition", "attachment;filename=" + URLEncoder.encode("用户数据", "utf-8"));
            response.setContentType("application/octet-stream;charset=UTF-8");
            response.setCharacterEncoding("utf-8");
            // 数据导出
            EasyExcel.write(response.getOutputStream(), UserExport.class)
                    .registerWriteHandler(new LongestMatchColumnWidthStyleStrategy()).sheet("用户数据").doWrite(list);
        } catch (Exception e) {
            // 重置response
            response.reset();
            response.setContentType("application/json");
            response.setCharacterEncoding("utf-8");
        }
    }

    @ApiOperation("检查用户的按钮权限")
    @InnerAuth
    @PostMapping("/checkuserpermission")
    public List<Long> checkUserPermission(@RequestParam List<Long> menuIds, @RequestParam Long userId) {
        return userService.checkUserPermission(menuIds, userId);
    }

    /**
     * 导入
     */
    @RequiresPermissions("system:user:import")
    @ResponseBody
    @PostMapping("/importData")
    @Transactional(rollbackFor = {RuntimeException.class, Exception.class})
    public AjaxResult importData(MultipartFile file, boolean updateSupport) {
        List<UserImport> list = new ArrayList<>();
        // 读取excel
        EasyExcel.read(multipartFileToFile(file), UserImport.class, new AnalysisEventListener<UserImport>() {
            // 每解析一行数据,该方法会被调用一次
            @Override
            public void invoke(UserImport user, AnalysisContext analysisContext) {
//                System.out.println("解析数据为:" + user.toString());
                if (user.getName() != null) {
                    list.add(user);
                }
            }

            // 全部解析完成被调用
            @Override
            public void doAfterAllAnalysed(AnalysisContext analysisContext) {
//                System.out.println("解析完成...");
                List<String> names = list.stream().map(UserImport::getName).collect(Collectors.toList());
                List<String> exist = userService.selectCountByNames(names);
                if (exist.size() > 0) {
                    throw new RuntimeException("用户" + exist + "已存在");
                }
                // 将解析的数据保存到数据库
                for (UserImport u : list) {
                    //构建基础user对象
                    SysUser user = new SysUser();
                    BeanUtils.copyProperties(u, user);
                    user.setDeleted(0);
                    user.setIsLock("正常".equals(u.getIsLock()) ? "0" : "1");
                    user.setGender("男".equals(u.getGender()) ? "0" : "1");
                    user.setIsManage("是".equals(u.getIsManage()) ? "Y" : "N");
                    SysOrg org = orgMapper.selectOne(new LambdaQueryWrapper<SysOrg>().eq(SysOrg::getShortName, u.getOrgName()).eq(SysOrg::getDeleted, 0));
                    if (org == null) {
                        throw new RuntimeException("机构" + u.getOrgName() + "不存在");
                    }
                    user.setOrgName(org.getName());
                    user.setOrgPath(org.getPath());
                    user.setOrgId(org.getId());
                    user.setOrgType(org.getType());
                    user.setCreateBy(SecurityUtils.getUsername());
                    user.setSource(0);
                    user.setCreateTime(new Date());
                    //isp的加密方式
                    final String salt = SaltHelper.salt();
                    user.setSalt(salt);
                    user.setPassword(SaltHelper.exec("Admin1234", salt));
                    user.setOriginalOrgId(user.getOrgId());
                    userService.insertUser(user);
                    //构建用户角色关联关系
                    String[] roleNames = user.getRoleNames().split(",");
                    List<SysRole> roles = roleService.list(new LambdaQueryWrapper<SysRole>().in(SysRole::getRoleName, roleNames));
                    if (roles.size() != roleNames.length) {
                        throw new RuntimeException("角色" + Arrays.toString(roleNames) + "存在异常");
                    }
                    for (SysRole r :
                            roles) {
                        SysUserRole sysUserRole = new SysUserRole();
                        sysUserRole.setUserId(user.getId());
                        sysUserRole.setRoleId(r.getId());
                        sysUserRoleService.insertSysUserRole(sysUserRole);
                    }
                }
            }
        }).sheet().doRead();
        return success("导入成功!");
    }

    /***
     * 功能描述:
     * MultipartFile 转 File
     * @return: java.io.File
     */
    public static File multipartFileToFile(MultipartFile multipartFile) {
        // 获取文件名
        String fileName = multipartFile.getOriginalFilename();
        // 获取文件后缀
        assert fileName != null;
        String suffix = fileName.substring(fileName.lastIndexOf("."));
        // 若需要防止临时文件重复，需要在文件名后加上UUID
        try {
            File file = File.createTempFile(fileName.substring(0, fileName.lastIndexOf(".")) + UUID.randomUUID(), suffix);
            multipartFile.transferTo(file);
            return file;
        } catch (IOException e) {
            e.printStackTrace();
        }
        return null;
    }
}