完善初始化更新

2026-03-20 20:42:33 +08:00
parent 568ccb08fa
commit e6866feb29
39 changed files with 6986 additions and 2379 deletions
--- a/sproutgate-backend/internal/storage/registration.go
+++ b/sproutgate-backend/internal/storage/registration.go
@@ -0,0 +1,214 @@
+package storage
+
+import (
+	"crypto/rand"
+	"errors"
+	"os"
+	"strings"
+	"time"
+
+	"sproutgate-backend/internal/models"
+)
+
+// InviteEntry 管理员发放的注册邀请码。
+type InviteEntry struct {
+	Code      string `json:"code"`
+	Note      string `json:"note,omitempty"`
+	MaxUses   int    `json:"maxUses"` // 0 表示不限次数
+	Uses      int    `json:"uses"`
+	ExpiresAt string `json:"expiresAt,omitempty"` // RFC3339，空表示不过期
+	CreatedAt string `json:"createdAt"`
+}
+
+// RegistrationConfig 注册策略与邀请码列表（data/config/registration.json）。
+type RegistrationConfig struct {
+	RequireInviteCode bool          `json:"requireInviteCode"`
+	Invites           []InviteEntry `json:"invites"`
+}
+
+func normalizeInviteCode(raw string) string {
+	return strings.ToUpper(strings.TrimSpace(raw))
+}
+
+func (s *Store) loadOrCreateRegistrationConfig() error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	if _, err := os.Stat(s.registrationPath); errors.Is(err, os.ErrNotExist) {
+		cfg := RegistrationConfig{RequireInviteCode: false, Invites: []InviteEntry{}}
+		if err := writeJSONFile(s.registrationPath, cfg); err != nil {
+			return err
+		}
+		s.registrationConfig = cfg
+		return nil
+	}
+	var cfg RegistrationConfig
+	if err := readJSONFile(s.registrationPath, &cfg); err != nil {
+		return err
+	}
+	if cfg.Invites == nil {
+		cfg.Invites = []InviteEntry{}
+	}
+	s.registrationConfig = cfg
+	return nil
+}
+
+func (s *Store) persistRegistrationConfigLocked() error {
+	return writeJSONFile(s.registrationPath, s.registrationConfig)
+}
+
+// RegistrationRequireInvite 是否强制要求邀请码才能发起注册（发邮件验证码）。
+func (s *Store) RegistrationRequireInvite() bool {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	return s.registrationConfig.RequireInviteCode
+}
+
+// GetRegistrationConfig 返回配置副本（管理端）。
+func (s *Store) GetRegistrationConfig() RegistrationConfig {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	out := s.registrationConfig
+	out.Invites = append([]InviteEntry(nil), s.registrationConfig.Invites...)
+	return out
+}
+
+// SetRegistrationRequireInvite 更新是否强制邀请码。
+func (s *Store) SetRegistrationRequireInvite(require bool) error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	s.registrationConfig.RequireInviteCode = require
+	return s.persistRegistrationConfigLocked()
+}
+
+func inviteEntryValid(e *InviteEntry) error {
+	if strings.TrimSpace(e.ExpiresAt) != "" {
+		t, err := time.Parse(time.RFC3339, e.ExpiresAt)
+		if err == nil && time.Now().After(t) {
+			return errors.New("invite code expired")
+		}
+	}
+	if e.MaxUses > 0 && e.Uses >= e.MaxUses {
+		return errors.New("invite code has been fully used")
+	}
+	return nil
+}
+
+// ValidateInviteForRegister 校验邀请码是否可用（发验证码前，不扣次）。
+func (s *Store) ValidateInviteForRegister(code string) error {
+	n := normalizeInviteCode(code)
+	if n == "" {
+		return errors.New("invite code is required")
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	for i := range s.registrationConfig.Invites {
+		e := &s.registrationConfig.Invites[i]
+		if strings.EqualFold(e.Code, n) {
+			return inviteEntryValid(e)
+		}
+	}
+	return errors.New("invalid invite code")
+}
+
+// RedeemInvite 邮箱验证通过创建用户后扣减邀请码使用次数。
+func (s *Store) RedeemInvite(code string) error {
+	n := normalizeInviteCode(code)
+	if n == "" {
+		return nil
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	for i := range s.registrationConfig.Invites {
+		e := &s.registrationConfig.Invites[i]
+		if strings.EqualFold(e.Code, n) {
+			if err := inviteEntryValid(e); err != nil {
+				return err
+			}
+			e.Uses++
+			return s.persistRegistrationConfigLocked()
+		}
+	}
+	return errors.New("invalid invite code")
+}
+
+const inviteCodeAlphabet = "ABCDEFGHJKLMNPQRSTUVWXYZ23456789"
+
+func randomInviteToken(n int) (string, error) {
+	b := make([]byte, n)
+	if _, err := rand.Read(b); err != nil {
+		return "", err
+	}
+	var sb strings.Builder
+	sb.Grow(n)
+	for i := 0; i < n; i++ {
+		sb.WriteByte(inviteCodeAlphabet[int(b[i])%len(inviteCodeAlphabet)])
+	}
+	return sb.String(), nil
+}
+
+// AddInviteEntry 生成新邀请码并写入配置。
+func (s *Store) AddInviteEntry(note string, maxUses int, expiresAt string) (InviteEntry, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var code string
+	for attempt := 0; attempt < 24; attempt++ {
+		c, err := randomInviteToken(8)
+		if err != nil {
+			return InviteEntry{}, err
+		}
+		dup := false
+		for _, ex := range s.registrationConfig.Invites {
+			if strings.EqualFold(ex.Code, c) {
+				dup = true
+				break
+			}
+		}
+		if !dup {
+			code = c
+			break
+		}
+	}
+	if code == "" {
+		return InviteEntry{}, errors.New("failed to generate unique invite code")
+	}
+	expiresAt = strings.TrimSpace(expiresAt)
+	if expiresAt != "" {
+		if _, err := time.Parse(time.RFC3339, expiresAt); err != nil {
+			return InviteEntry{}, errors.New("invalid expiresAt (use RFC3339)")
+		}
+	}
+	if maxUses < 0 {
+		maxUses = 0
+	}
+	entry := InviteEntry{
+		Code:      code,
+		Note:      strings.TrimSpace(note),
+		MaxUses:   maxUses,
+		Uses:      0,
+		ExpiresAt: expiresAt,
+		CreatedAt: models.NowISO(),
+	}
+	s.registrationConfig.Invites = append(s.registrationConfig.Invites, entry)
+	if err := s.persistRegistrationConfigLocked(); err != nil {
+		s.registrationConfig.Invites = s.registrationConfig.Invites[:len(s.registrationConfig.Invites)-1]
+		return InviteEntry{}, err
+	}
+	return entry, nil
+}
+
+// DeleteInviteEntry 按码删除（大小写不敏感）。
+func (s *Store) DeleteInviteEntry(code string) error {
+	n := normalizeInviteCode(code)
+	if n == "" {
+		return errors.New("code is required")
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	for i, e := range s.registrationConfig.Invites {
+		if strings.EqualFold(e.Code, n) {
+			s.registrationConfig.Invites = append(s.registrationConfig.Invites[:i], s.registrationConfig.Invites[i+1:]...)
+			return s.persistRegistrationConfigLocked()
+		}
+	}
+	return errors.New("invite not found")
+}
--- a/sproutgate-backend/internal/storage/storage.go
+++ b/sproutgate-backend/internal/storage/storage.go
@@ -32,6 +32,10 @@ type EmailConfig struct {
 	Encryption  string `json:"encryption"`
 }

+type CheckInConfig struct {
+	RewardCoins int `json:"rewardCoins"`
+}
+
 type Store struct {
 	dataDir         string
 	usersDir        string
@@ -41,10 +45,14 @@ type Store struct {
 	adminConfigPath string
 	authConfigPath  string
 	emailConfigPath string
+	checkInPath       string
+	registrationPath  string
+	registrationConfig RegistrationConfig
 	adminToken      string
 	jwtSecret       []byte
 	issuer          string
 	emailConfig     EmailConfig
+	checkInConfig   CheckInConfig
 	mu              sync.Mutex
 }

@@ -85,6 +93,8 @@ func NewStore(dataDir string) (*Store, error) {
 		adminConfigPath: filepath.Join(configDir, "admin.json"),
 		authConfigPath:  filepath.Join(configDir, "auth.json"),
 		emailConfigPath: filepath.Join(configDir, "email.json"),
+		checkInPath:        filepath.Join(configDir, "checkin.json"),
+		registrationPath:   filepath.Join(configDir, "registration.json"),
 	}
 	if err := store.loadOrCreateAdminConfig(); err != nil {
 		return nil, err
@@ -95,6 +105,12 @@ func NewStore(dataDir string) (*Store, error) {
 	if err := store.loadOrCreateEmailConfig(); err != nil {
 		return nil, err
 	}
+	if err := store.loadOrCreateCheckInConfig(); err != nil {
+		return nil, err
+	}
+	if err := store.loadOrCreateRegistrationConfig(); err != nil {
+		return nil, err
+	}
 	return store, nil
 }

@@ -118,6 +134,29 @@ func (s *Store) EmailConfig() EmailConfig {
 	return s.emailConfig
 }

+func (s *Store) CheckInConfig() CheckInConfig {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	cfg := s.checkInConfig
+	if cfg.RewardCoins <= 0 {
+		cfg.RewardCoins = 1
+	}
+	return cfg
+}
+
+func (s *Store) UpdateCheckInConfig(cfg CheckInConfig) error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	if cfg.RewardCoins <= 0 {
+		cfg.RewardCoins = 1
+	}
+	if err := writeJSONFile(s.checkInPath, cfg); err != nil {
+		return err
+	}
+	s.checkInConfig = cfg
+	return nil
+}
+
 func (s *Store) loadOrCreateAdminConfig() error {
 	if _, err := os.Stat(s.adminConfigPath); errors.Is(err, os.ErrNotExist) {
 		token, err := generateToken()
@@ -244,6 +283,29 @@ func (s *Store) loadOrCreateEmailConfig() error {
 	return nil
 }

+func (s *Store) loadOrCreateCheckInConfig() error {
+	if _, err := os.Stat(s.checkInPath); errors.Is(err, os.ErrNotExist) {
+		cfg := CheckInConfig{RewardCoins: 1}
+		if err := writeJSONFile(s.checkInPath, cfg); err != nil {
+			return err
+		}
+		s.checkInConfig = cfg
+		return nil
+	}
+	var cfg CheckInConfig
+	if err := readJSONFile(s.checkInPath, &cfg); err != nil {
+		return err
+	}
+	if cfg.RewardCoins <= 0 {
+		cfg.RewardCoins = 1
+		if err := writeJSONFile(s.checkInPath, cfg); err != nil {
+			return err
+		}
+	}
+	s.checkInConfig = cfg
+	return nil
+}
+
 func generateSecret() ([]byte, error) {
 	secret := make([]byte, 32)
 	_, err := rand.Read(secret)
@@ -319,6 +381,176 @@ func (s *Store) SaveUser(record models.UserRecord) error {
 	return writeJSONFile(path, record)
 }

+// RecordAuthClient 在成功认证后记录第三方应用标识（clientID 须已规范化）。
+func (s *Store) RecordAuthClient(account string, clientID string, displayName string) (models.UserRecord, error) {
+	if clientID == "" {
+		return models.UserRecord{}, errors.New("client id required")
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	path := s.userFilePath(account)
+	var record models.UserRecord
+	if err := readJSONFile(path, &record); err != nil {
+		if errors.Is(err, os.ErrNotExist) {
+			return models.UserRecord{}, os.ErrNotExist
+		}
+		return models.UserRecord{}, err
+	}
+	now := models.NowISO()
+	displayName = models.ClampAuthClientName(displayName)
+	found := false
+	for i := range record.AuthClients {
+		if record.AuthClients[i].ClientID == clientID {
+			record.AuthClients[i].LastSeenAt = now
+			if displayName != "" {
+				record.AuthClients[i].DisplayName = displayName
+			}
+			found = true
+			break
+		}
+	}
+	if !found {
+		record.AuthClients = append(record.AuthClients, models.AuthClientEntry{
+			ClientID:    clientID,
+			DisplayName: displayName,
+			FirstSeenAt: now,
+			LastSeenAt:  now,
+		})
+	}
+	record.UpdatedAt = now
+	if err := writeJSONFile(path, &record); err != nil {
+		return models.UserRecord{}, err
+	}
+	return record, nil
+}
+
+func (s *Store) RecordVisit(account string, today string, at string) (models.UserRecord, bool, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	path := s.userFilePath(account)
+	if _, err := os.Stat(path); errors.Is(err, os.ErrNotExist) {
+		return models.UserRecord{}, false, os.ErrNotExist
+	}
+
+	var record models.UserRecord
+	if err := readJSONFile(path, &record); err != nil {
+		return models.UserRecord{}, false, err
+	}
+
+	if record.LastVisitDate == today || models.HasActivityDate(record.VisitTimes, today) {
+		return record, false, nil
+	}
+
+	if strings.TrimSpace(at) == "" {
+		at = models.CurrentActivityTime()
+	}
+	record.LastVisitDate = today
+	record.LastVisitAt = at
+	record.VisitTimes = append(record.VisitTimes, at)
+	if record.CreatedAt == "" {
+		record.CreatedAt = models.NowISO()
+	}
+	record.UpdatedAt = models.NowISO()
+	if err := writeJSONFile(path, record); err != nil {
+		return models.UserRecord{}, false, err
+	}
+	return record, true, nil
+}
+
+const maxLastVisitIPLen = 45
+const maxLastVisitDisplayLocationLen = 512
+
+func clampVisitMeta(ip, displayLocation string) (string, string) {
+	ip = strings.TrimSpace(ip)
+	displayLocation = strings.TrimSpace(displayLocation)
+	if len(ip) > maxLastVisitIPLen {
+		ip = ip[:maxLastVisitIPLen]
+	}
+	if len(displayLocation) > maxLastVisitDisplayLocationLen {
+		displayLocation = displayLocation[:maxLastVisitDisplayLocationLen]
+	}
+	return ip, displayLocation
+}
+
+// UpdateLastVisitMeta 更新用户最近一次访问的客户端 IP 与展示用地理位置（由前端调用地理接口后传入）。
+func (s *Store) UpdateLastVisitMeta(account string, ip string, displayLocation string) (models.UserRecord, error) {
+	ip, displayLocation = clampVisitMeta(ip, displayLocation)
+	if ip == "" && displayLocation == "" {
+		rec, found, err := s.GetUser(account)
+		if err != nil {
+			return models.UserRecord{}, err
+		}
+		if !found {
+			return models.UserRecord{}, os.ErrNotExist
+		}
+		return rec, nil
+	}
+
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	path := s.userFilePath(account)
+	if _, err := os.Stat(path); errors.Is(err, os.ErrNotExist) {
+		return models.UserRecord{}, os.ErrNotExist
+	}
+
+	var record models.UserRecord
+	if err := readJSONFile(path, &record); err != nil {
+		return models.UserRecord{}, err
+	}
+	if ip != "" {
+		record.LastVisitIP = ip
+	}
+	if displayLocation != "" {
+		record.LastVisitDisplayLocation = displayLocation
+	}
+	record.UpdatedAt = models.NowISO()
+	if err := writeJSONFile(path, record); err != nil {
+		return models.UserRecord{}, err
+	}
+	return record, nil
+}
+
+func (s *Store) CheckIn(account string, today string, at string) (models.UserRecord, int, bool, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	path := s.userFilePath(account)
+	if _, err := os.Stat(path); errors.Is(err, os.ErrNotExist) {
+		return models.UserRecord{}, 0, false, os.ErrNotExist
+	}
+
+	var record models.UserRecord
+	if err := readJSONFile(path, &record); err != nil {
+		return models.UserRecord{}, 0, false, err
+	}
+
+	if record.LastCheckInDate == today || models.HasActivityDate(record.CheckInTimes, today) {
+		return record, 0, true, nil
+	}
+
+	reward := s.checkInConfig.RewardCoins
+	if reward <= 0 {
+		reward = 1
+	}
+	record.SproutCoins += reward
+	record.LastCheckInDate = today
+	if strings.TrimSpace(at) == "" {
+		at = models.CurrentActivityTime()
+	}
+	record.LastCheckInAt = at
+	record.CheckInTimes = append(record.CheckInTimes, at)
+	if record.CreatedAt == "" {
+		record.CreatedAt = models.NowISO()
+	}
+	record.UpdatedAt = models.NowISO()
+	if err := writeJSONFile(path, record); err != nil {
+		return models.UserRecord{}, 0, false, err
+	}
+	return record, reward, false, nil
+}
+
 func (s *Store) DeleteUser(account string) error {
 	s.mu.Lock()
 	defer s.mu.Unlock()