Gitiles
Code Review Sign In
source.supwisdom.com / institute / deploy-authx-service / 0799c53dd6aafc5b640a1066f23353f3c23488c5 / . / deploy-manifests / k8s-rancher / 1.authx-service / 10.1.init-portal.sql
blob: 61b09d4e5977aac9dc65de19ec6fc38612eb6523 [file] [log] [blame]
-- 10.1.init.sql
/*
将 paas.example.com 替换为 paas.学校域名.edu.cn
*/
-- 以下脚本为可选操作
/*
* 若部署了流程平台、门户的产品
* 可默认创建几个管理员帐号,以及初始授权
*/
-- 创建管理帐号
use user;
-- portaladmin
INSERT INTO `TB_B_USER` (`ID`, `DELETED`,
`UID`, `PASSWORD`, `NAME`, `NAME_SPELLING`, `FULL_NAME_SPELLING`,
`CERTIFICATE_TYPE_ID`, `CERTIFICATE_NUMBER`, `PHONE_NUMBER`, `EMAIL`,
`GENDER_ID`, `NATION_ID`, `COUNTRY_ID`, `ADDRESS_ID`)
VALUES ('60', 0,
'60', 'portaladmin', '门户管理员', 'portaladmin', 'portaladmin',
'20001', '60', null, 'portaladmin@supwisdom.com',
'30001', '40001', '50156', '310000');
INSERT INTO `TB_B_ACCOUNT` (`ID`, `DELETED`, `USER_ID`,
`ACCOUNT_NAME`, `ACCOUNT_EXPIRY_DATE`, `ORGANIZATION_ID`, `IDENTITY_TYPE_ID`,
`ACTIVATION`, `STATE`, `IS_DATA_CENTER`)
VALUES ('60', 0, '60',
'portaladmin', null, '1', '1',
1, 'NORMAL', 0);
INSERT INTO `TB_B_SAFETY`(`ID`, `DELETED`, `USER_ID`, `SCORE`, `PASSWORD_SCORE`, `SECURE_EMAIL`, `SECURE_PHONE`)
VALUES ('60', 0, '60', '0', '0', null, null);
INSERT INTO `TB_B_ACCOUNT_ORGANIZATION` (`ID`, `DELETED`,
`ROOT_ORGANIZATION_ID`, `ACCOUNT_ID`, `ORGANIZATION_ID`)
VALUES ('60_1', 0,
'0', '60', '1');
INSERT INTO `TB_B_ACCOUNT_LABEL`(`ID`, `DELETED`,
`ACCOUNT_ID`, `LABEL_ID`)
VALUES ('60_1', 0, '60', '1');
commit;
-- 创建管理帐号的授权
use user_authz;
-- portal
INSERT INTO `TB_SYSTEM` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`BUSINESS_DOMAIN_ID`,
`CODE`, `NAME`, `DESCRIPTION`, `ENABLED`)
VALUES ('60', '1', 0, 'admin', '2019-07-01 00:00:00',
'1',
'portal', '门户', '门户', 1);
INSERT INTO `TB_APPLICATION` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`BUSINESS_DOMAIN_ID`, `SYSTEM_ID`,
`NAME`, `APPLICATION_ID`, `SYNC_URL`, `ENABLED`)
VALUES ('60', '1', 0, 'admin', '2019-07-01 00:00:00',
'1', '60',
'门户', '60', '', 1);
INSERT INTO `TB_ROLE` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`APPLICATION_ID`, `CODE`, `NAME`, `DESCRIPTION`, `ENABLED`, `EXTERNAL_ID`)
VALUES ('60', '1', 0, 'admin', '2019-07-01 00:00:00',
'60', 'portal-admin', '门户管理员', '门户管理员', 1, '60');
INSERT INTO `TB_ROLE_USER` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`ORIGIN_TYPE`, `ORIGIN_PK`,
`APPLICATION_ID`, `ROLE_ID`, `ACCOUNT_ID`,
`GRANT_EXPIRED_DATE`)
VALUES ('60_60_60', '1', 0, 'admin', '2019-07-01 00:00:00',
NULL, NULL,
'60', '60', '60',
NULL);
commit;
-- 配置门户角色的同步接口
update TB_APPLICATION
set
SYNC_URL='http://portal.paas.example.com/portal-web/api/open/role/findAll'
where ID='60'; -- todo, modify
commit;
-- 创建认证帐号、认证对接
use cas_server;
-- portal
INSERT INTO `TB_ACCOUNT` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`USERNAME`, `PASSWORD`, `DESCRIPTION`, `ENABLED`, `ACCOUNT_NON_EXPIRED`, `ACCOUNT_NON_LOCKED`, `CREDENTIALS_NON_EXPIRED`,
`IDENTITY`, `USER_NO`, `NAME`, `MOBILE`, `EMAIL_ADDRESS`, `IDENTITY_TYPE`, `IDENTITY_NO`,
`EXTERNAL_ID`)
VALUES ('60', '1', 0, 'admin', '2019-07-01 00:00:00',
'portaladmin', 'portaladmin', '门户管理员', 1, 1, 1, 1,
'admin', '60', '门户管理员', '', 'portaladmin@supwisdom.com', '20001', '',
'60');
commit;
INSERT INTO `TB_SERVICE` (`ID`, `COMPANY_ID`, `DELETED`, `ADD_ACCOUNT`, `ADD_TIME`,
`NAME`, `DESCRIPTION`, `INFORMATION_URL`, `LOGOUT_URL`,
`RESPONSE_TYPE`, `LOGOUT_TYPE`,
`EVALUATION_ORDER`, `FRIENDLY_NAME`, `REGISTERED_SERVICE_ID`, `SERVICE_ID`,
`ENABLED`, `SSO_ENABLED`, `REQUIRE_ALL_ATTRIBUTES`,
`APPLICATION_ID`, `EXTERNAL_ID`)
VALUES ('60', '1', 0, 'admin', '2019-07-01 00:00:00',
'门户', '门户', 'https://ecampus.paas.example.com', 'https://ecampus.paas.example.com/cas/slo',
'REDIRECT', 'FRONT_CHANNEL',
60, '门户', 60, 'https://ecampus.paas.example.com/login',
1, 1, 1,
'60', '60');
commit;
update TB_SERVICE
set
INFORMATION_URL='http://ecampus.paas.example.com',
LOGOUT_URL='http://ecampus.paas.example.com/cas/slo',
SERVICE_ID='http://ecampus.paas.example.com/cas/(.*)',
ID_TOKEN_ENABLED=1
where ID='60'; -- todo, modify
commit;