Files
infinite-canvas/handler/auth.go
T
HouYunFei fff7074218 feat(admin): 添加管理员用户算力点管理和日志功能
- 在管理员API中新增用户算力点调整功能和信用日志相关接口
- 实现后端用户算力点调整逻辑和信用日志的增删改查操作
- 在管理员界面用户管理页面添加算力点调整功能
- 新增独立的算力点日志管理页面,支持日志查看和编辑
- 添加算力点日志相关的数据模型和服务函数
- 更新数据库文档说明第三方资料存储结构
- 添加dayjs依赖用于时间格式化显示
2026-05-25 12:57:27 +08:00

187 lines
4.5 KiB
Go

package handler
import (
"encoding/json"
"net/http"
"net/url"
"strings"
"github.com/basketikun/infinite-canvas/model"
"github.com/basketikun/infinite-canvas/service"
)
type loginRequest struct {
Username string `json:"username"`
Password string `json:"password"`
}
type registerRequest struct {
Username string `json:"username"`
Password string `json:"password"`
}
type saveUserRequest struct {
ID string `json:"id"`
Username string `json:"username"`
Password string `json:"password"`
Email string `json:"email"`
DisplayName string `json:"displayName"`
Role model.UserRole `json:"role"`
Status model.UserStatus `json:"status"`
}
type adjustUserCreditsRequest struct {
Credits int `json:"credits"`
}
func Register(w http.ResponseWriter, r *http.Request) {
var request registerRequest
_ = json.NewDecoder(r.Body).Decode(&request)
session, err := service.Register(request.Username, request.Password)
if err != nil {
FailError(w, err)
return
}
OK(w, session)
}
func Login(w http.ResponseWriter, r *http.Request) {
var request loginRequest
_ = json.NewDecoder(r.Body).Decode(&request)
session, err := service.Login(request.Username, request.Password)
if err != nil {
FailError(w, err)
return
}
OK(w, session)
}
func LinuxDoAuthorize(w http.ResponseWriter, r *http.Request) {
authURL, err := service.LinuxDoAuthorizeURL(r, r.URL.Query().Get("redirect"))
if err != nil {
FailError(w, err)
return
}
http.Redirect(w, r, authURL, http.StatusFound)
}
func LinuxDoCallback(w http.ResponseWriter, r *http.Request) {
session, redirect, err := service.LoginWithLinuxDo(r, r.URL.Query().Get("code"), r.URL.Query().Get("state"))
if err != nil {
http.Redirect(w, r, loginRedirect(r, redirect, "", err.Error()), http.StatusFound)
return
}
http.Redirect(w, r, loginRedirect(r, redirect, session.Token, ""), http.StatusFound)
}
func AdminLogin(w http.ResponseWriter, r *http.Request) {
var request loginRequest
_ = json.NewDecoder(r.Body).Decode(&request)
session, err := service.Login(request.Username, request.Password)
if err != nil {
FailError(w, err)
return
}
if session.User.Role != model.UserRoleAdmin {
Fail(w, "需要管理员权限")
return
}
OK(w, session)
}
func CurrentUser(w http.ResponseWriter, r *http.Request) {
if user, ok := service.UserFromContext(r.Context()); ok {
OK(w, user)
return
}
OK(w, service.GuestUser())
}
func AdminUsers(w http.ResponseWriter, r *http.Request) {
users, err := service.ListUsers(parseQuery(r))
if err != nil {
FailError(w, err)
return
}
OK(w, users)
}
func AdminSaveUser(w http.ResponseWriter, r *http.Request) {
var request saveUserRequest
_ = json.NewDecoder(r.Body).Decode(&request)
user, err := service.SaveUser(model.User{
ID: request.ID,
Username: request.Username,
Email: request.Email,
DisplayName: request.DisplayName,
Role: request.Role,
Status: request.Status,
}, request.Password)
if err != nil {
FailError(w, err)
return
}
OK(w, user)
}
func AdminAdjustUserCredits(w http.ResponseWriter, r *http.Request, id string) {
var request adjustUserCreditsRequest
_ = json.NewDecoder(r.Body).Decode(&request)
user, err := service.AdjustUserCredits(id, request.Credits)
if err != nil {
FailError(w, err)
return
}
OK(w, user)
}
func AdminCreditLogs(w http.ResponseWriter, r *http.Request) {
logs, err := service.ListCreditLogs(parseQuery(r))
if err != nil {
FailError(w, err)
return
}
OK(w, logs)
}
func AdminSaveCreditLog(w http.ResponseWriter, r *http.Request) {
var log model.CreditLog
_ = json.NewDecoder(r.Body).Decode(&log)
result, err := service.SaveCreditLog(log)
if err != nil {
FailError(w, err)
return
}
OK(w, result)
}
func AdminDeleteCreditLog(w http.ResponseWriter, r *http.Request, id string) {
if err := service.DeleteCreditLog(id); err != nil {
FailError(w, err)
return
}
OK(w, true)
}
func loginRedirect(r *http.Request, redirect string, token string, message string) string {
values := url.Values{}
if strings.TrimSpace(token) != "" {
values.Set("token", token)
}
if strings.TrimSpace(message) != "" {
values.Set("error", message)
}
if strings.TrimSpace(redirect) != "" {
values.Set("redirect", redirect)
}
return service.RequestOrigin(r) + "/login?" + values.Encode()
}
func AdminDeleteUser(w http.ResponseWriter, r *http.Request, id string) {
if err := service.DeleteUser(id); err != nil {
FailError(w, err)
return
}
OK(w, true)
}