117-template-77
/
d8d-admin-mobile-starter-public
haarautettu lähteestä d8dfun/d8d-admin-mobile-starter-public


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424
							import { Hono } from 'hono'
import type { Variables, WithAuth } from "./middlewares.ts";

export function createUserRoutes(withAuth: WithAuth) {
  const usersRoutes = new Hono<{ Variables: Variables }>()
  
  // 获取用户列表
  usersRoutes.get('/', withAuth, async (c) => {
    try {
      const apiClient = c.get('apiClient')
      
      const page = Number(c.req.query('page')) || 1
      const pageSize = Number(c.req.query('pageSize')) || 10
      const offset = (page - 1) * pageSize
      
      const search = c.req.query('search') || ''
      
      let query = apiClient.database.table('users')
        .orderBy('id', 'desc')
      
      if (search) {
        query = query.where((builder) => {
          builder.where('username', 'like', `%${search}%`)
              .orWhere('nickname', 'like', `%${search}%`)
              .orWhere('email', 'like', `%${search}%`)
        })
      }
      
      const total = await query.clone().count()
      const users = await query.select('id', 'username', 'nickname', 'email', 'phone', 'role', 'created_at') 
        .limit(pageSize).offset(offset)
      
      return c.json({
        data: users,
        pagination: {
          total: Number(total),
          current: page,
          pageSize
        }
      })
    } catch (error) {
      console.error('获取用户列表失败:', error)
      return c.json({ error: '获取用户列表失败'}, 500)
    }
  })
  
  // 获取单个用户详情
  usersRoutes.get('/:id', withAuth, async (c) => {
    try {
      const id = Number(c.req.param('id'))
      
      if (!id || isNaN(id)) {
        return c.json({ error: '无效的用户ID' }, 400)
      }
      
      const apiClient = c.get('apiClient')
      const user = await apiClient.database.table('users')
        .where('id', id)
        .select('id', 'username', 'nickname', 'email', 'phone', 'role', 'created_at')
        .first()
      
      if (!user) {
        return c.json({ error: '用户不存在' }, 404)
      }
      
      return c.json({
        data: user,
        message: '获取用户详情成功'
      })
    } catch (error) {
      console.error('获取用户详情失败:', error)
      return c.json({ error: '获取用户详情失败' }, 500)
    }
  })

  // 创建用户
  usersRoutes.post('/', withAuth, async (c) => {
    try {
      const apiClient = c.get('apiClient')
      const body = await c.req.json()
      
      // 验证必填字段
      const { username, nickname, email, password, role } = body
      if (!username || !nickname || !email || !password || !role) {
        return c.json({ error: '缺少必要的用户信息' }, 400)
      }

      // 检查用户名是否已存在
      const existingUser = await apiClient.database.table('users')
        .where('username', username)
        .first()
      
      if (existingUser) {
        return c.json({ error: '用户名已存在' }, 400)
      }

      // 创建用户
      const [id] = await apiClient.database.table('users').insert({
        username,
        nickname,
        email,
        password: password, // 加密密码
        role,
        created_at: new Date(),
        updated_at: new Date()
      })

      const newUser = await apiClient.database.table('users')
        .where('id', id)
        .select('id', 'username', 'nickname', 'email', 'role', 'created_at')
        .first()

      return c.json({
        data: newUser,
        message: '创建用户成功'
      })
    } catch (error) {
      console.error('创建用户失败:', error)
      return c.json({ error: '创建用户失败' }, 500)
    }
  })

  // 更新用户
  usersRoutes.put('/:id', withAuth, async (c) => {
    try {
      const id = Number(c.req.param('id'))
      if (!id || isNaN(id)) {
        return c.json({ error: '无效的用户ID' }, 400)
      }

      const apiClient = c.get('apiClient')
      const body = await c.req.json()
      
      // 验证必填字段
      const { username, nickname, email, role } = body
      if (!username || !nickname || !email || !role) {
        return c.json({ error: '缺少必要的用户信息' }, 400)
      }

      // 检查用户是否存在
      const existingUser = await apiClient.database.table('users')
        .where('id', id)
        .first()
      
      if (!existingUser) {
        return c.json({ error: '用户不存在' }, 404)
      }

      // 如果修改了用户名，检查新用户名是否已被使用
      if (username !== existingUser.username) {
        const userWithSameName = await apiClient.database.table('users')
          .where('username', username)
          .whereNot('id', id.toString())
          .first()
        
        if (userWithSameName) {
          return c.json({ error: '用户名已存在' }, 400)
        }
      }

      // 更新用户信息
      const updateData: any = {
        username,
        nickname,
        email,
        role,
        updated_at: new Date()
      }

      // 如果提供了新密码，则更新密码
      if (body.password) {
        updateData.password = body.password
      }

      await apiClient.database.table('users')
        .where('id', id)
        .update(updateData)

      const updatedUser = await apiClient.database.table('users')
        .where('id', id)
        .select('id', 'username', 'nickname', 'email', 'role', 'created_at')
        .first()

      return c.json({
        data: updatedUser,
        message: '更新用户成功'
      })
    } catch (error) {
      console.error('更新用户失败:', error)
      return c.json({ error: '更新用户失败' }, 500)
    }
  })

  // 删除用户
  usersRoutes.delete('/:id', withAuth, async (c) => {
    try {
      const id = Number(c.req.param('id'))
      if (!id || isNaN(id)) {
        return c.json({ error: '无效的用户ID' }, 400)
      }

      const apiClient = c.get('apiClient')
      
      // 检查用户是否存在
      const existingUser = await apiClient.database.table('users')
        .where('id', id)
        .first()
      
      if (!existingUser) {
        return c.json({ error: '用户不存在' }, 404)
      }

      // 检查是否为最后一个管理员
      if (existingUser.role === 'admin') {
        const adminCount = await apiClient.database.table('users')
          .where('role', 'admin')
          .count()
        
        if (Number(adminCount) <= 1) {
          return c.json({ error: '不能删除最后一个管理员' }, 400)
        }
      }

      // 删除用户
      await apiClient.database.table('users')
        .where('id', id)
        .delete()

      return c.json({
        message: '删除用户成功',
        id
      })
    } catch (error) {
      console.error('删除用户失败:', error)
      return c.json({ error: '删除用户失败' }, 500)
    }
  })

  // 获取当前用户信息
  usersRoutes.get('/me/profile', withAuth, async (c) => {
    try {
      const user = c.get('user')!
      
      const apiClient = c.get('apiClient')
      const userData = await apiClient.database.table('users')
        .where('id', user.id)
        .select('id', 'username', 'nickname', 'email', 'phone', 'created_at')
        .first()
      
      if (!user) {
        return c.json({ error: '用户不存在' }, 404)
      }
      
      return c.json({
        data: userData,
        message: '获取用户详情成功'
      })
    } catch (error) {
      console.error('获取当前用户信息失败:', error)
      return c.json({ error: '获取当前用户信息失败' }, 500)
    }
  })

  // 更新当前用户信息
  usersRoutes.put('/me/profile', withAuth, async (c) => {
    try {
      const user = c.get('user')!
      const apiClient = c.get('apiClient')
      const body = await c.req.json()
      
      // 验证必填字段
      const { nickname, email, phone } = body
      if (!nickname || !email) {
        return c.json({ error: '缺少必要的用户信息' }, 400)
      }

      // 更新用户信息
      const updateData: any = {
        nickname,
        email,
        phone: phone || null,
        updated_at: new Date()
      }

      // 如果提供了新密码，则更新密码
      if (body.password) {
        updateData.password = body.password
      }

      await apiClient.database.table('users')
        .where('id', user.id)
        .update(updateData)

      const updatedUser = await apiClient.database.table('users')
        .where('id', user.id)
        .select('id', 'username', 'nickname', 'email', 'phone', 'created_at')
        .first()

      return c.json({
        data: updatedUser,
        message: '更新用户信息成功'
      })
    } catch (error) {
      console.error('更新当前用户信息失败:', error)
      return c.json({ error: '更新当前用户信息失败' }, 500)
    }
  })

  /**
   * 将粉丝用户转换为学员并设置有效期
   * @param {number} id - 用户ID
   * @param {string} expiresAt - 有效期截止日期 (ISO格式)
   * @returns {object} 转换后的用户信息
   */
  usersRoutes.post('/:id/convert-to-student', withAuth, async (c) => {
    try {
      const user = c.get('user')!
      
      // 检查是否为管理员或老师
      if (user.role !== 'admin' && user.role !== 'teacher') {
        return c.json({ error: '无权执行此操作' }, 403)
      }

      const id = Number(c.req.param('id'))
      if (!id || isNaN(id)) {
        return c.json({ error: '无效的用户ID' }, 400)
      }

      const apiClient = c.get('apiClient')
      const body = await c.req.json()
      
      // 验证必填字段
      const { expiresAt } = body
      if (!expiresAt) {
        return c.json({ error: '缺少有效期参数' }, 400)
      }

      // 检查用户是否存在且为粉丝
      const existingUser = await apiClient.database.table('users')
        .where('id', id)
        .first()
      
      if (!existingUser) {
        return c.json({ error: '用户不存在' }, 404)
      }

      if (existingUser.role !== 'fan') {
        return c.json({ error: '只能将粉丝转为学员' }, 400)
      }

      // 更新用户角色和有效期
      await apiClient.database.table('users')
        .where('id', id)
        .update({
          role: 'student',
          student_expires_at: expiresAt,
          updated_at: new Date()
        })

      const updatedUser = await apiClient.database.table('users')
        .where('id', id)
        .select('id', 'username', 'nickname', 'role', 'student_expires_at')
        .first()

      return c.json({
        data: updatedUser,
        message: '用户已成功转为学员'
      })
    } catch (error) {
      console.error('转换用户角色失败:', error)
      return c.json({ error: '转换用户角色失败' }, 500)
    }
  })

  /**
   * 检查并转换过期学员
   * @returns {object} 转换结果统计
   */
  usersRoutes.get('/check-expired', withAuth, async (c) => {
    try {
      const apiClient = c.get('apiClient')
      const now = new Date().toISOString()
      
      // 查找所有已过期的学员
      const expiredStudents = await apiClient.database.table('users')
        .where('role', 'student')
        .where('student_expires_at', '<', now)
        .select('id', 'username', 'student_expires_at')
      
      if (expiredStudents.length === 0) {
        return c.json({
          data: {
            count: 0,
            users: []
          },
          message: '没有过期学员需要转换'
        })
      }

      // 批量转换过期学员为粉丝
      const userIds = expiredStudents.map(user => user.id)
      await apiClient.database.table('users')
        .whereIn('id', userIds)
        .update({
          role: 'follower',
          student_expires_at: null,
          updated_at: new Date()
        })

      return c.json({
        data: {
          count: expiredStudents.length,
          users: expiredStudents
        },
        message: '过期学员已成功转为粉丝'
      })
    } catch (error) {
      console.error('检查过期学员失败:', error)
      return c.json({ error: '检查过期学员失败' }, 500)
    }
  })

  return usersRoutes
}