// Package admin // @Link https://github.com/bufanyun/hotgo // @Copyright Copyright (c) 2023 HotGo CLI // @Author Ms <133814250@qq.com> // @License https://github.com/bufanyun/hotgo/blob/master/LICENSE package admin import ( "context" "fmt" "github.com/gogf/gf/v2/crypto/gmd5" "github.com/gogf/gf/v2/database/gdb" "github.com/gogf/gf/v2/errors/gerror" "github.com/gogf/gf/v2/frame/g" "github.com/gogf/gf/v2/os/gtime" "github.com/gogf/gf/v2/text/gstr" "github.com/gogf/gf/v2/util/gconv" "github.com/gogf/gf/v2/util/grand" "hotgo/internal/consts" "hotgo/internal/dao" "hotgo/internal/library/contexts" "hotgo/internal/library/hgorm" "hotgo/internal/library/hgorm/handler" "hotgo/internal/library/hgorm/hook" "hotgo/internal/model/entity" "hotgo/internal/model/input/adminin" "hotgo/internal/model/input/sysin" "hotgo/internal/service" "hotgo/utility/tree" "hotgo/utility/validate" ) type sAdminMember struct{} func NewAdminMember() *sAdminMember { return &sAdminMember{} } func init() { service.RegisterAdminMember(NewAdminMember()) } // AddBalance 增加余额 func (s *sAdminMember) AddBalance(ctx context.Context, in adminin.MemberAddBalanceInp) (err error) { var ( mb *entity.AdminMember memberId = contexts.GetUserId(ctx) ) if err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } return g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) (err error) { // 更新我的余额 _, err = service.AdminCreditsLog().SaveBalance(ctx, adminin.CreditsLogSaveBalanceInp{ MemberId: memberId, AppId: in.AppId, AddonsName: in.AddonsName, CreditGroup: in.SelfCreditGroup, Num: in.SelfNum, Remark: fmt.Sprintf("为后台用户:%v 操作%v", mb.Id, in.Remark), }) if err != nil { return } // 更新对方余额 _, err = service.AdminCreditsLog().SaveBalance(ctx, adminin.CreditsLogSaveBalanceInp{ MemberId: mb.Id, AppId: in.AppId, AddonsName: in.AddonsName, CreditGroup: in.OtherCreditGroup, Num: in.OtherNum, Remark: fmt.Sprintf("后台用户:%v 为你操作%v", memberId, in.Remark), }) return }) } // AddIntegral 增加积分 func (s *sAdminMember) AddIntegral(ctx context.Context, in adminin.MemberAddIntegralInp) (err error) { var ( mb *entity.AdminMember memberId = contexts.GetUserId(ctx) ) if err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } return g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) (err error) { // 更新我的余额 _, err = service.AdminCreditsLog().SaveIntegral(ctx, adminin.CreditsLogSaveIntegralInp{ MemberId: memberId, AppId: in.AppId, AddonsName: in.AddonsName, CreditGroup: in.SelfCreditGroup, Num: in.SelfNum, Remark: fmt.Sprintf("为后台用户:%v 操作%v", mb.Id, in.Remark), }) if err != nil { return } // 更新对方余额 _, err = service.AdminCreditsLog().SaveIntegral(ctx, adminin.CreditsLogSaveIntegralInp{ MemberId: mb.Id, AppId: in.AppId, AddonsName: in.AddonsName, CreditGroup: in.OtherCreditGroup, Num: in.OtherNum, Remark: fmt.Sprintf("后台用户:%v 为你操作%v", memberId, in.Remark), }) return }) } // UpdateCash 修改提现信息 func (s *sAdminMember) UpdateCash(ctx context.Context, in adminin.MemberUpdateCashInp) (err error) { memberId := contexts.Get(ctx).User.Id if memberId <= 0 { err = gerror.New("获取用户信息失败!") return } var mb entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if gmd5.MustEncryptString(in.Password+mb.Salt) != mb.PasswordHash { err = gerror.New("登录密码不正确") return } _, err = dao.AdminMember.Ctx(ctx).WherePri(memberId). Data(g.Map{ dao.AdminMember.Columns().Cash: adminin.MemberCash{ Name: in.Name, Account: in.Account, PayeeCode: in.PayeeCode, }, }). Update() if err != nil { err = gerror.New("修改提现信息失败!") return } return } // UpdateEmail 换绑邮箱 func (s *sAdminMember) UpdateEmail(ctx context.Context, in adminin.MemberUpdateEmailInp) (err error) { memberId := contexts.Get(ctx).User.Id if memberId <= 0 { err = gerror.New("获取用户信息失败!") return } var mb *entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } if mb.Email == in.Email { err = gerror.New("新旧邮箱不能一样") return } if !validate.IsEmail(in.Email) { err = gerror.New("邮箱地址不正确") return } // 存在原绑定号码,需要进行验证 if mb.Email != "" { err = service.SysEmsLog().VerifyCode(ctx, sysin.VerifyEmsCodeInp{ Event: consts.EmsTemplateBind, Email: mb.Email, Code: in.Code, }) if err != nil { return } } update := g.Map{ dao.AdminMember.Columns().Email: in.Email, } if _, err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Data(update).Update(); err != nil { err = gerror.Wrap(err, "换绑邮箱失败,请稍后重试!") return } return } // UpdateMobile 换绑手机号 func (s *sAdminMember) UpdateMobile(ctx context.Context, in adminin.MemberUpdateMobileInp) (err error) { memberId := contexts.Get(ctx).User.Id if memberId <= 0 { err = gerror.New("获取用户信息失败!") return } var mb *entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } if mb.Mobile == in.Mobile { err = gerror.New("新旧手机号不能一样") return } if !validate.IsMobile(in.Mobile) { err = gerror.New("手机号码不正确") return } // 存在原绑定号码,需要进行验证 if mb.Mobile != "" { err = service.SysSmsLog().VerifyCode(ctx, sysin.VerifyCodeInp{ Event: consts.SmsTemplateBind, Mobile: mb.Mobile, Code: in.Code, }) if err != nil { return } } update := g.Map{ dao.AdminMember.Columns().Mobile: in.Mobile, } if _, err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Data(update).Update(); err != nil { err = gerror.Wrap(err, "换绑手机号失败,请稍后重试!") return } return } // UpdateProfile 更新用户资料 func (s *sAdminMember) UpdateProfile(ctx context.Context, in adminin.MemberUpdateProfileInp) (err error) { memberId := contexts.Get(ctx).User.Id if memberId <= 0 { err = gerror.New("获取用户信息失败!") return } var mb *entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } cols := dao.AdminMember.Columns() update := g.Map{ cols.Avatar: in.Avatar, cols.RealName: in.RealName, cols.Qq: in.Qq, cols.Birthday: in.Birthday, cols.Sex: in.Sex, cols.CityId: in.CityId, cols.Address: in.Address, } if _, err = dao.AdminMember.Ctx(ctx).WherePri(memberId).Data(update).Update(); err != nil { err = gerror.Wrap(err, "更新资料失败,请稍后重试!") return } return } // UpdatePwd 修改登录密码 func (s *sAdminMember) UpdatePwd(ctx context.Context, in adminin.MemberUpdatePwdInp) (err error) { var mb entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(in.Id).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if gmd5.MustEncryptString(in.OldPassword+mb.Salt) != mb.PasswordHash { err = gerror.New("原密码不正确") return } update := g.Map{ dao.AdminMember.Columns().PasswordHash: gmd5.MustEncryptString(in.NewPassword + mb.Salt), } if _, err = dao.AdminMember.Ctx(ctx).WherePri(in.Id).Data(update).Update(); err != nil { err = gerror.Wrap(err, "更新登录密码失败,请稍后重试!") return } return } // ResetPwd 重置密码 func (s *sAdminMember) ResetPwd(ctx context.Context, in adminin.MemberResetPwdInp) (err error) { var ( mb *entity.AdminMember memberId = contexts.GetUserId(ctx) ) if err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Scan(&mb); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if mb == nil { err = gerror.New("用户信息不存在") return } update := g.Map{ dao.AdminMember.Columns().PasswordHash: gmd5.MustEncryptString(in.Password + mb.Salt), } if _, err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Data(update).Update(); err != nil { err = gerror.Wrap(err, "用户密码重置失败,请稍后重试!") return } return } // VerifyUnique 验证管理员唯一属性 func (s *sAdminMember) VerifyUnique(ctx context.Context, in adminin.VerifyUniqueInp) (err error) { if in.Where == nil { return } cols := dao.AdminMember.Columns() msgMap := g.MapStrStr{ cols.Username: "用户名已存在,请换一个", cols.Email: "邮箱已存在,请换一个", cols.Mobile: "手机号已存在,请换一个", cols.InviteCode: "邀请码已存在,请换一个", } for k, v := range in.Where { if v == "" { continue } message, ok := msgMap[k] if !ok { err = gerror.Newf("字段 [ %v ] 未配置唯一属性验证", k) return } if err = hgorm.IsUnique(ctx, &dao.AdminMember, g.Map{k: v}, message, in.Id); err != nil { return } } return } // Delete 删除 func (s *sAdminMember) Delete(ctx context.Context, in adminin.MemberDeleteInp) (err error) { if s.VerifySuperId(ctx, gconv.Int64(in.Id)) { err = gerror.New("超管账号禁止删除!") return } memberId := contexts.GetUserId(ctx) if memberId <= 0 { err = gerror.New("获取用户信息失败!") return } var models *entity.AdminMember if err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Scan(&models); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if models == nil { err = gerror.New("需要删除的用户不存在或已删除!") return } return g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) (err error) { if _, err = s.FilterAuthModel(ctx, memberId).WherePri(in.Id).Delete(); err != nil { err = gerror.Wrap(err, "删除用户失败,请稍后重试!") return } if _, err = dao.AdminMemberPost.Ctx(ctx).Where("member_id", memberId).Delete(); err != nil { err = gerror.Wrap(err, "删除用户岗位失败,请稍后重试!") } return }) } // Edit 修改/新增 func (s *sAdminMember) Edit(ctx context.Context, in adminin.MemberEditInp) (err error) { opMemberId := contexts.GetUserId(ctx) if opMemberId <= 0 { err = gerror.New("获取用户信息失败!") return } if in.Username == "" { err = gerror.New("帐号不能为空") return } cols := dao.AdminMember.Columns() err = s.VerifyUnique(ctx, adminin.VerifyUniqueInp{ Id: in.Id, Where: g.Map{ cols.Username: in.Username, cols.Mobile: in.Mobile, cols.Email: in.Email, }, }) if err != nil { return } config, err := service.SysConfig().GetLogin(ctx) if err != nil { return } // 修改 if in.Id > 0 { if s.VerifySuperId(ctx, in.Id) { err = gerror.New("超管账号禁止编辑!") return } mod := s.FilterAuthModel(ctx, opMemberId) if in.Password != "" { // 修改密码,需要获取到密码盐 salt, err := s.FilterAuthModel(ctx, opMemberId).Fields(cols.Salt).WherePri(in.Id).Value() if err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return err } if salt.IsEmpty() { err = gerror.New("该用户没有设置密码盐,请联系管理员!") return err } in.PasswordHash = gmd5.MustEncryptString(in.Password + salt.String()) } else { mod = mod.FieldsEx(cols.PasswordHash) } return g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) (err error) { if _, err = mod.WherePri(in.Id).Data(in).Update(); err != nil { err = gerror.Wrap(err, "修改用户信息失败,请稍后重试!") return } // 更新岗位 if err = dao.AdminMemberPost.UpdatePostIds(ctx, in.Id, in.PostIds); err != nil { err = gerror.Wrap(err, "更新用户岗位失败,请稍后重试!") } return }) } // 新增用户时的额外属性 var data adminin.MemberAddInp data.MemberEditInp = in data.Salt = grand.S(6) data.InviteCode = grand.S(12) data.PasswordHash = gmd5.MustEncryptString(data.Password + data.Salt) // 关系树 data.Pid = opMemberId data.Level, data.Tree, err = s.GenTree(ctx, opMemberId) if err != nil { return } // 默认头像 if data.Avatar == "" { data.Avatar = config.Avatar } return g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) (err error) { id, err := dao.AdminMember.Ctx(ctx).Data(data).InsertAndGetId() if err != nil { err = gerror.Wrap(err, "新增用户失败,请稍后重试!") return } // 更新岗位 if err = dao.AdminMemberPost.UpdatePostIds(ctx, id, in.PostIds); err != nil { err = gerror.Wrap(err, "新增用户岗位失败,请稍后重试!") } return }) } // View 获取用户信息 func (s *sAdminMember) View(ctx context.Context, in adminin.MemberViewInp) (res *adminin.MemberViewModel, err error) { if err = s.FilterAuthModel(ctx, contexts.GetUserId(ctx)).Hook(hook.MemberInfo).WherePri(in.Id).Scan(&res); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") } return } // List 获取列表 func (s *sAdminMember) List(ctx context.Context, in adminin.MemberListInp) (list []*adminin.MemberListModel, totalCount int, err error) { mod := s.FilterAuthModel(ctx, contexts.GetUserId(ctx)) cols := dao.AdminMember.Columns() if in.RealName != "" { mod = mod.WhereLike(cols.RealName, "%"+in.RealName+"%") } if in.Username != "" { mod = mod.WhereLike(cols.Username, "%"+in.Username+"%") } if in.Mobile > 0 { mod = mod.Where(cols.Mobile, in.Mobile) } if in.Status > 0 { mod = mod.Where(cols.Status, in.Status) } if in.DeptId > 0 { mod = mod.Where(cols.DeptId, in.DeptId) } if in.RoleId > 0 { mod = mod.Where(cols.RoleId, in.RoleId) } if len(in.CreatedAt) == 2 { mod = mod.WhereBetween(cols.CreatedAt, gtime.New(in.CreatedAt[0]), gtime.New(in.CreatedAt[1])) } totalCount, err = mod.Count() if err != nil { err = gerror.Wrap(err, "获取用户数据行失败!") return } if totalCount == 0 { return } if err = mod.Hook(hook.MemberInfo).Page(in.Page, in.PerPage).OrderDesc(cols.Id).Scan(&list); err != nil { err = gerror.Wrap(err, "获取用户列表失败!") return } for _, v := range list { columns, err := dao.AdminMemberPost.Ctx(ctx).Fields(dao.AdminMemberPost.Columns().PostId).Where(dao.AdminMemberPost.Columns().MemberId, v.Id).Array() if err != nil { err = gerror.Wrap(err, "获取用户岗位数据失败!") return nil, 0, err } v.PostIds = g.NewVar(columns).Int64s() } return } // Status 更新状态 func (s *sAdminMember) Status(ctx context.Context, in adminin.MemberStatusInp) (err error) { if s.VerifySuperId(ctx, in.Id) { err = gerror.New("超管账号不能更改状态") return } if _, err = s.FilterAuthModel(ctx, contexts.GetUserId(ctx)).WherePri(in.Id).Data(dao.AdminMember.Columns().Status, in.Status).Update(); err != nil { err = gerror.Wrap(err, "更新用户状态失败,请稍后重试!") } return } // GenTree 生成关系树 func (s *sAdminMember) GenTree(ctx context.Context, pid int64) (level int, newTree string, err error) { var pmb *entity.AdminMember if err = dao.AdminMember.Ctx(ctx).WherePri(pid).Scan(&pmb); err != nil { return } if pmb == nil { err = gerror.New("上级信息不存在") return } level = pmb.Level + 1 newTree = tree.GenLabel(pmb.Tree, pmb.Id) return } // LoginMemberInfo 获取登录用户信息 func (s *sAdminMember) LoginMemberInfo(ctx context.Context) (res *adminin.LoginMemberInfoModel, err error) { var memberId = contexts.GetUserId(ctx) if memberId <= 0 { err = gerror.New("用户身份异常,请重新登录!") return } if err = dao.AdminMember.Ctx(ctx).Hook(hook.MemberInfo).WherePri(memberId).Scan(&res); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") return } if res == nil { err = gerror.New("用户不存在!") return } // 细粒度权限 permissions, err := service.AdminMenu().LoginPermissions(ctx, memberId) if err != nil { return } res.Permissions = permissions // 登录统计 stat, err := s.MemberLoginStat(ctx, adminin.MemberLoginStatInp{MemberId: memberId}) if err != nil { return } res.MemberLoginStatModel = stat res.Mobile = gstr.HideStr(res.Mobile, 40, `*`) res.Email = gstr.HideStr(res.Email, 40, `*`) res.OpenId, _ = service.CommonWechat().GetOpenId(ctx) return } // MemberLoginStat 用户登录统计 func (s *sAdminMember) MemberLoginStat(ctx context.Context, in adminin.MemberLoginStatInp) (res *adminin.MemberLoginStatModel, err error) { var ( models *entity.SysLoginLog cols = dao.SysLoginLog.Columns() ) err = dao.SysLoginLog.Ctx(ctx). Fields(cols.LoginAt, cols.LoginIp). Where(cols.MemberId, in.MemberId). Where(cols.Status, consts.StatusEnabled). OrderDesc(cols.Id). Scan(&models) if err != nil { return } res = new(adminin.MemberLoginStatModel) if models == nil { return } res.LastLoginAt = models.LoginAt res.LastLoginIp = models.LoginIp res.LoginCount, err = dao.SysLoginLog.Ctx(ctx). Where(cols.MemberId, in.MemberId). Where(cols.Status, consts.StatusEnabled). Count() return } // GetIdByCode 通过邀请码获取用户ID func (s *sAdminMember) GetIdByCode(ctx context.Context, in adminin.GetIdByCodeInp) (res *adminin.GetIdByCodeModel, err error) { if err = dao.AdminMember.Ctx(ctx).Fields(adminin.GetIdByCodeModel{}).Where(dao.AdminMember.Columns().InviteCode, in.Code).Scan(&res); err != nil { err = gerror.Wrap(err, "获取用户信息失败,请稍后重试!") } return } // Select 获取可选的用户选项 func (s *sAdminMember) Select(ctx context.Context, in adminin.MemberSelectInp) (res []*adminin.MemberSelectModel, err error) { err = dao.AdminMember.Ctx(ctx). Fields("id as value,real_name as label,username,avatar"). Handler(handler.FilterAuthWithField("id")). Scan(&res) if err != nil { err = gerror.Wrap(err, "获取可选用户选项失败,请稍后重试!") } return } // VerifySuperId 验证是否为超管 func (s *sAdminMember) VerifySuperId(ctx context.Context, verifyId int64) bool { for _, id := range g.Cfg().MustGet(ctx, "hotgo.admin.superIds").Int64s() { if id == verifyId { return true } } return false } func (s *sAdminMember) FilterAuthModel(ctx context.Context, memberId int64) *gdb.Model { m := dao.AdminMember.Ctx(ctx) if !s.VerifySuperId(ctx, memberId) { m = m.Where("id <> ?", memberId) } return m.Handler(handler.FilterAuthWithField("id")) }