控制器中间件授权改造完成

2026-04-21 18:44:24 +08:00 · 2025-08-26 14:22:14 +08:00
parent 728de61bd6
commit b6d81890cf
23 changed files with 168 additions and 334 deletions
--- a/api/handler/admin/admin_handler.go
+++ b/api/handler/admin/admin_handler.go
@@ -54,11 +54,11 @@ func (h *ManagerHandler) RegisterRoutes() {
 	// 公开接口，不需要授权
 	group.POST("login", h.Login)
 	group.GET("logout", h.Logout)
-	group.GET("session", h.Session)

 	// 需要管理员授权的接口
 	group.Use(middleware.AdminAuthMiddleware(h.App.Config.AdminSession.SecretKey, h.App.Redis))
 	{
+		group.GET("session", h.Session)
 		group.GET("list", h.List)
 		group.POST("save", h.Save)
 		group.POST("enable", h.Enable)
@@ -157,16 +157,15 @@ func (h *ManagerHandler) Logout(c *gin.Context) {

 // Session 会话检测
 func (h *ManagerHandler) Session(c *gin.Context) {
-	id := h.GetLoginUserId(c)
-	key := fmt.Sprintf("admin/%d", id)
-	if _, err := h.redis.Get(context.Background(), key).Result(); err != nil {
-		resp.NotAuth(c)
+	id := h.GetAdminId(c)
+	if id == 0 {
+		resp.NotAuth(c, "当前用户已退出登录")
 		return
 	}
 	var manager model.AdminUser
-	res := h.DB.Where("id", id).First(&manager)
-	if res.Error != nil {
-		resp.NotAuth(c)
+	err := h.DB.Where("id", id).First(&manager).Error
+	if err != nil {
+		resp.NotAuth(c, "当前用户已退出登录")
 		return
 	}

--- a/api/handler/admin/api_key_handler.go
+++ b/api/handler/admin/api_key_handler.go
@@ -33,7 +33,7 @@ func NewApiKeyHandler(app *core.AppServer, db *gorm.DB) *ApiKeyHandler {

 // RegisterRoutes 注册路由
 func (h *ApiKeyHandler) RegisterRoutes() {
-	group := h.App.Engine.Group("/api/admin/apiKey/")
+	group := h.App.Engine.Group("/api/admin/apikey/")

 	// 需要管理员授权的接口
 	group.Use(middleware.AdminAuthMiddleware(h.App.Config.AdminSession.SecretKey, h.App.Redis))
--- a/api/handler/admin/chat_app_handler.go
+++ b/api/handler/admin/chat_app_handler.go
@@ -33,7 +33,7 @@ func NewChatAppHandler(app *core.AppServer, db *gorm.DB) *ChatAppHandler {

 // RegisterRoutes 注册路由
 func (h *ChatAppHandler) RegisterRoutes() {
-	group := h.App.Engine.Group("/api/admin/app/")
+	group := h.App.Engine.Group("/api/admin/role/")

 	// 需要管理员授权的接口
 	group.Use(middleware.AdminAuthMiddleware(h.App.Config.AdminSession.SecretKey, h.App.Redis))
--- a/api/handler/admin/config_handler.go
+++ b/api/handler/admin/config_handler.go
@@ -44,12 +44,12 @@ func NewConfigHandler(app *core.AppServer, db *gorm.DB, levelDB *store.LevelDB,
 // RegisterRoutes 注册路由
 func (h *ConfigHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/admin/config/")
+	group.GET("get", h.Get)

 	// 需要管理员授权的接口
 	group.Use(middleware.AdminAuthMiddleware(h.App.Config.AdminSession.SecretKey, h.App.Redis))
 	{
 		group.POST("update", h.Update)
-		group.GET("get", h.Get)
 		group.POST("active", h.Active)
 		group.POST("test", h.Test)
 		group.GET("license", h.GetLicense)
--- a/api/handler/base_handler.go
+++ b/api/handler/base_handler.go
@@ -15,9 +15,10 @@ import (
 	logger2 "geekai/logger"
 	"geekai/store/model"
 	"geekai/utils"
-	"gorm.io/gorm"
 	"strings"

+	"gorm.io/gorm"
+
 	"github.com/gin-gonic/gin"
 )

@@ -69,6 +70,14 @@ func (h *BaseHandler) GetLoginUserId(c *gin.Context) uint {
 	return uint(utils.IntValue(utils.InterfaceToString(userId), 0))
 }

+func (h *BaseHandler) GetAdminId(c *gin.Context) uint {
+	userId, ok := c.Get(types.AdminUserID)
+	if !ok {
+		return 0
+	}
+	return uint(utils.IntValue(utils.InterfaceToString(userId), 0))
+}
+
 func (h *BaseHandler) IsLogin(c *gin.Context) bool {
 	return h.GetLoginUserId(c) > 0
 }
--- a/api/handler/captcha_handler.go
+++ b/api/handler/captcha_handler.go
@@ -9,7 +9,6 @@ package handler

 import (
 	"geekai/core"
-	"geekai/core/middleware"
 	"geekai/core/types"
 	"geekai/service"
 	"geekai/utils/resp"
@@ -33,14 +32,11 @@ func NewCaptchaHandler(app *core.AppServer, s *service.CaptchaService, sysConfig
 func (h *CaptchaHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/captcha/")

-	// 需要用户授权的接口
-	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
-	{
-		group.GET("get", h.Get)
-		group.POST("check", h.Check)
-		group.GET("slide/get", h.SlideGet)
-		group.POST("slide/check", h.SlideCheck)
-	}
+	// 无需授权的接口
+	group.GET("get", h.Get)
+	group.POST("check", h.Check)
+	group.GET("slide/get", h.SlideGet)
+	group.POST("slide/check", h.SlideCheck)
 }

 func (h *CaptchaHandler) Get(c *gin.Context) {
--- a/api/handler/chat_role_handler.go
+++ b/api/handler/chat_role_handler.go
@@ -30,7 +30,7 @@ func NewChatRoleHandler(app *core.AppServer, db *gorm.DB) *ChatRoleHandler {

 // RegisterRoutes 注册路由
 func (h *ChatRoleHandler) RegisterRoutes() {
-	group := h.App.Engine.Group("/api/role/")
+	group := h.App.Engine.Group("/api/app/")

 	// 需要用户授权的接口
 	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
--- a/api/handler/config_handler.go
+++ b/api/handler/config_handler.go
@@ -9,7 +9,6 @@ package handler

 import (
 	"geekai/core"
-	"geekai/core/middleware"
 	"geekai/service"
 	"geekai/store/model"
 	"geekai/utils"
@@ -32,12 +31,9 @@ func NewConfigHandler(app *core.AppServer, db *gorm.DB, licenseService *service.
 func (h *ConfigHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/config/")

-	// 需要用户授权的接口
-	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
-	{
-		group.GET("get", h.Get)
-		group.GET("license", h.License)
-	}
+	// 无需授权的接口
+	group.GET("get", h.Get)
+	group.GET("license", h.License)
 }

 // Get 获取指定的系统配置
--- a/api/handler/function_handler.go
+++ b/api/handler/function_handler.go
@@ -58,6 +58,7 @@ func NewFunctionHandler(
 // RegisterRoutes 注册路由
 func (h *FunctionHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/function/")
+	group.GET("list", h.List)

 	// 需要用户授权的接口
 	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
@@ -66,7 +67,6 @@ func (h *FunctionHandler) RegisterRoutes() {
 		group.POST("zaobao", h.ZaoBao)
 		group.POST("dalle3", h.Dall3)
 		group.POST("websearch", h.WebSearch)
-		group.GET("list", h.List)
 	}
 }

--- a/api/handler/menu_handler.go
+++ b/api/handler/menu_handler.go
@@ -9,7 +9,6 @@ package handler

 import (
 	"geekai/core"
-	"geekai/core/middleware"
 	"geekai/store/model"
 	"geekai/store/vo"
 	"geekai/utils"
@@ -30,12 +29,7 @@ func NewMenuHandler(app *core.AppServer, db *gorm.DB) *MenuHandler {
 // RegisterRoutes 注册路由
 func (h *MenuHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/menu/")
-
-	// 需要用户授权的接口
-	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
-	{
-		group.GET("list", h.List)
-	}
+	group.GET("list", h.List)
 }

 // List 数据列表
--- a/api/handler/net_handler.go
+++ b/api/handler/net_handler.go
@@ -35,12 +35,12 @@ func NewNetHandler(app *core.AppServer, db *gorm.DB, manager *oss.UploaderManage

 // RegisterRoutes 注册路由
 func (h *NetHandler) RegisterRoutes() {
-	group := h.App.Engine.Group("/api/upload/")
+	group := h.App.Engine.Group("/api/upload")

 	// 需要用户授权的接口
 	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
 	{
-		group.POST("upload", h.Upload)
+		group.POST("", h.Upload)
 		group.POST("list", h.List)
 		group.GET("remove", h.Remove)
 	}
--- a/api/handler/payment_handler.go
+++ b/api/handler/payment_handler.go
@@ -12,7 +12,7 @@ import (
 	"errors"
 	"fmt"
 	"geekai/core"
-	"geekai/core/midware"
+	"geekai/core/middleware"
 	"geekai/core/types"
 	"geekai/service"
 	"geekai/service/payment"
@@ -81,7 +81,7 @@ func (h *PaymentHandler) RegisterRoutes() {
 	rg.POST("notify/wechat", h.WechatPayNotify)

 	// 需要用户登录的接口
-	rg.Use(midware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
+	rg.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
 	{
 		rg.POST("create", h.Pay)
 	}
--- a/api/handler/sms_handler.go
+++ b/api/handler/sms_handler.go
@@ -9,7 +9,6 @@ package handler

 import (
 	"geekai/core"
-	"geekai/core/middleware"
 	"geekai/core/types"
 	"geekai/service"
 	"geekai/service/sms"
@@ -48,12 +47,8 @@ func NewSmsHandler(
 // RegisterRoutes 注册路由
 func (h *SmsHandler) RegisterRoutes() {
 	group := h.App.Engine.Group("/api/sms/")
-
-	// 需要用户授权的接口
-	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
-	{
-		group.POST("code", h.SendCode)
-	}
+	// 无需授权的接口
+	group.POST("code", h.SendCode)
 }

 // SendCode 发送验证码
--- a/api/handler/user_handler.go
+++ b/api/handler/user_handler.go
@@ -68,12 +68,12 @@ func (h *UserHandler) RegisterRoutes() {
 	group.POST("login", h.Login)
 	group.POST("resetPass", h.ResetPass)
 	group.GET("clogin", h.CLogin)
+	group.GET("logout", h.Logout)
 	group.GET("clogin/callback", h.CLoginCallback)

 	// 需要用户授权的接口
 	group.Use(middleware.UserAuthMiddleware(h.App.Config.Session.SecretKey, h.App.Redis))
 	{
-		group.GET("logout", h.Logout)
 		group.GET("session", h.Session)
 		group.GET("profile", h.Profile)
 		group.POST("profile/update", h.ProfileUpdate)