fix(user-manager): 使用 BKLogin API 获取用户信息，支持 display_name 与 bk_token (merge request !2731)

Squash merge branch 'fix/user-tenant' into 'bk-bcs-multitenant'
## 变更说明

- 新增 bklogin.go：使用 BKLogin API（bk-tokens/userinfo）替代 BKUser API 获取用户信息
- GetBKUserInfo 改为通过 bk_token 参数获取用户信息，替代原先的 username 方式
- Userinfo 模型新增 DisplayName 字段
- GetCurrentUserInfo 从 bk_token cookie 获取 token，调用 BKLogin API 获取 language、timezone、display_name
- TenantID 改为从 utils.GetTenantIDFromAttribute 获取
- 无 bk_token 时使用默认值：Language=zh-CN，TimeZone=Asia/Shanghai
- 从 bkuser.go 移除原 GetBKUserInfo 实现

## 变更类型

- [ ] 新功能 (feat)
- [x] Bug 修复 (fix)
- [x] 重构 (refactor)
- [ ] 性能优化 (perf)
- [ ] 文档 (docs)
- [ ] 测试 (test)
- [ ] 其他 (chore)

## 测试说明

待补充

## 关联 Issue

无

Author: adevjoe

bcs-services/bcs-user-manager/app/pkg/component/bklogin.go

@@ -0,0 +1,93 @@
+/*
+ * Tencent is pleased to support the open source community by making Blueking Container Service available.
+ * Copyright (C) 2019 THL A29 Limited, a Tencent company. All rights reserved.
+ * Licensed under the MIT License (the "License"); you may not use this file except
+ * in compliance with the License. You may obtain a copy of the License at
+ * http://opensource.org/licenses/MIT
+ * Unless required by applicable law or agreed to in writing, software distributed under
+ * the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+ * either express or implied. See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package component
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"os"
+
+	"github.com/pkg/errors"
+
+	apputils "github.com/Tencent/bk-bcs/bcs-services/bcs-user-manager/app/utils"
+)
+
+// BKLoginAPIServer bk login api server
+var BKLoginAPIServer = os.Getenv("BKLOGIN_API_SERVER")
+
+// GetBKTokenUserInfoResp get bk token user info response
+type GetBKTokenUserInfoResp struct {
+	Data BKUserInfo `json:"data"`
+}
+
+// GetBKTokenUserInfoErrResp get bk token user info error response
+type GetBKTokenUserInfoErrResp struct {
+	Error BKTokenUserInfoErr `json:"error"`
+}
+
+// BKTokenUserInfoErr bk token user info error
+type BKTokenUserInfoErr struct {
+	Code    string `json:"code"`
+	Message string `json:"message"`
+}
+
+// BKUserInfo bk user info
+type BKUserInfo struct {
+	BKUsername  string `json:"bk_username"`
+	TenantID    string `json:"tenant_id"`
+	DisplayName string `json:"display_name"`
+	Language    string `json:"language"`
+	TimeZone    string `json:"time_zone"`
+}
+
+// GetBKUserInfo get bk user info by bk token
+func GetBKUserInfo(ctx context.Context, tenantID, bkToken string) (*BKUserInfo, error) {
+	if bkToken == "" {
+		return nil, nil
+	}
+
+	url := fmt.Sprintf("%s/%s", BKLoginAPIServer, "login/api/v3/open/bk-tokens/userinfo/")
+	authInfo, err := GetBKAPIAuthorization("")
+	if err != nil {
+		return nil, err
+	}
+	resp, err := GetClient().R().
+		SetContext(ctx).
+		SetHeader(apputils.HeaderTenantID, tenantID).
+		SetHeader("X-Bkapi-Authorization", authInfo).
+		SetQueryParam("bk_token", bkToken).
+		Get(url)
+	if err != nil {
+		return nil, err
+	}
+
+	if resp.StatusCode() != http.StatusOK {
+		errResp := &GetBKTokenUserInfoErrResp{}
+		if err = json.Unmarshal(resp.Body(), errResp); err == nil &&
+			(errResp.Error.Code != "" || errResp.Error.Message != "") {
+			return nil, errors.Errorf("get bk token userinfo failed, code: %s, message: %s",
+				errResp.Error.Code, errResp.Error.Message)
+		}
+		return nil, errors.Errorf("http code %d != 200, body: %s", resp.StatusCode(), resp.Body())
+	}
+
+	result := &GetBKTokenUserInfoResp{}
+	err = json.Unmarshal(resp.Body(), result)
+	if err != nil {
+		return nil, errors.Errorf("unmarshal resp body error, %s", err.Error())
+	}
+
+	return &result.Data, nil
+}

bcs-services/bcs-user-manager/app/pkg/component/bkuser.go

@@ -70,51 +70,3 @@ func ListTenant(ctx context.Context) ([]BkTenant, error) {
 
 	return result.Data, nil
 }
-
-// GetBKUserInfoResp get bk user info response
-type GetBKUserInfoResp struct {
-	Data BKUserInfo `json:"data"`
-}
-
-// BKUserInfo bk user info
-type BKUserInfo struct {
-	BKUsername  string `json:"bk_username"`
-	TenantID    string `json:"tenant_id"`
-	LoginName   string `json:"login_name"`
-	DisplayName string `json:"display_name"`
-	Language    string `json:"language"`
-	TimeZone    string `json:"time_zone"`
-}
-
-// GetBKUserInfo get bk user info
-func GetBKUserInfo(ctx context.Context, tenantID, username string) (*BKUserInfo, error) {
-	url := fmt.Sprintf("%s/%s/%s/", BKUserAPIServer, "api/v3/open/tenant/users", username)
-
-	authInfo, err := GetBKAPIAuthorization("")
-	if err != nil {
-		return nil, err
-	}
-	resp, err := GetClient().R().
-		SetContext(ctx).
-		SetHeader(apputils.HeaderTenantID, tenantID).
-		SetHeader("X-Bkapi-Authorization", authInfo).
-		Get(url)
-
-	if err != nil {
-
-		return nil, err
-	}
-
-	if !resp.IsSuccess() {
-		return nil, errors.Errorf("http code %d != 200, body: %s", resp.StatusCode(), resp.Body())
-	}
-
-	result := &GetBKUserInfoResp{}
-	err = json.Unmarshal(resp.Body(), result)
-	if err != nil {
-		return nil, errors.Errorf("unmarshal resp body error, %s", err.Error())
-	}
-
-	return &result.Data, nil
-
-}

bcs-services/bcs-user-manager/app/user-manager/models/user.go

@@ -59,11 +59,12 @@ func (t *BcsUser) IsAdmin() bool {
 
 // Userinfo response user info
 type Userinfo struct {
-	UserName  string `json:"username"`
-	AvatarUrl string `json:"avatar_url"`
-	TenantID  string `json:"tenant_id"`
-	Language  string `json:"language"`
-	TimeZone  string `json:"time_zone"`
+	UserName    string `json:"username"`
+	AvatarUrl   string `json:"avatar_url"`
+	TenantID    string `json:"tenant_id"`
+	Language    string `json:"language"`
+	TimeZone    string `json:"time_zone"`
+	DisplayName string `json:"display_name"`
 }
 
 // BcsClientUser client user table 平台账号

bcs-services/bcs-user-manager/app/user-manager/v1http/user/user.go

@@ -312,19 +312,27 @@ func GetCurrentUserInfo(request *restful.Request, response *restful.Response) {
 	userInfo := &models.Userinfo{
 		UserName:  "",
 		AvatarUrl: "",
+		Language:  "zh-CN",
+		TimeZone:  "Asia/Shanghai",
 	}
 	if user, ok := request.Attribute(constant.CurrentUserAttr).(*models.BcsUser); ok {
 		userInfo.UserName = user.Name
-		userInfo.TenantID = user.TenantID
+		userInfo.TenantID = utils.GetTenantIDFromAttribute(request)
 	}
 
-	bkUserInfo, err := component.GetBKUserInfo(request.Request.Context(), userInfo.TenantID, userInfo.UserName)
-	if err != nil {
-		blog.Warnf("failed to get bk user info: %s", err.Error())
-	}
-	if bkUserInfo != nil {
-		userInfo.Language = bkUserInfo.Language
-		userInfo.TimeZone = bkUserInfo.TimeZone
+	bkTokenCookie, err := request.Request.Cookie("bk_token")
+	if err != nil || bkTokenCookie == nil || bkTokenCookie.Value == "" {
+		blog.Infof("GetCurrentUserInfo request has no bk_token cookie")
+	} else {
+		bkUserInfo, getUserErr := component.GetBKUserInfo(request.Request.Context(), userInfo.TenantID, bkTokenCookie.Value)
+		if getUserErr != nil {
+			blog.Warnf("failed to get bk user info by bk_token: %s", getUserErr.Error())
+		}
+		if bkUserInfo != nil {
+			userInfo.Language = bkUserInfo.Language
+			userInfo.TimeZone = bkUserInfo.TimeZone
+			userInfo.DisplayName = bkUserInfo.DisplayName
+		}
 	}
 
 	data := utils.CreateResponseData(nil, "success", *userInfo)