juwan/juwan-backend
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity

fix: admin 审批链路查询条件缺失与网关路由缺失

Browse Source 
SearchUserVerifications 查询条件硬编码了 user_id=0 导致 admin 查询
始终返回空列表,改为条件构建模式。envoy 缺少 /api/v1/admin 前缀
路由导致审批接口 404。新增 users-rpc 启动时从环境变量自动初始化
管理员账户。
This commit is contained in:
zetaloop
2026-04-05 16:53:15 +08:00
parent 384471edca
commit 4625363d5a
7 changed files with 91 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/user_verifications/rpc/internal/logic/searchUserVerificationsLogic.go
+13 -1
View File
@@ -4,6 +4,7 @@ import (
"context" "context"
"errors" "errors"
"juwan-backend/app/user_verifications/rpc/internal/models" "juwan-backend/app/user_verifications/rpc/internal/models"
"juwan-backend/app/user_verifications/rpc/internal/models/predicate"
"juwan-backend/app/user_verifications/rpc/internal/models/userverifications" "juwan-backend/app/user_verifications/rpc/internal/models/userverifications"
"juwan-backend/app/user_verifications/rpc/internal/svc" "juwan-backend/app/user_verifications/rpc/internal/svc"
"juwan-backend/app/user_verifications/rpc/pb" "juwan-backend/app/user_verifications/rpc/pb"
@@ -31,7 +32,18 @@ func (l *SearchUserVerificationsLogic) SearchUserVerifications(in *pb.SearchUser
logx.Errorf("Limit exceeds max limit: %d", in.Limit) logx.Errorf("Limit exceeds max limit: %d", in.Limit)
return nil, errors.New("limit exceeds max limit") return nil, errors.New("limit exceeds max limit")
} }
verifications, err := l.svcCtx.UserVeriModelRO.Query().Where(userverifications.UserIDEQ(in.UserId)). predicates := make([]predicate.UserVerifications, 0, 3)
if in.UserId != 0 {
predicates = append(predicates, userverifications.UserIDEQ(in.UserId))
}
if in.Role != "" {
predicates = append(predicates, userverifications.RoleEQ(in.Role))
}
if in.Status != "" {
predicates = append(predicates, userverifications.StatusEQ(in.Status))
}
verifications, err := l.svcCtx.UserVeriModelRO.Query().Where(predicates...).
Offset(int(in.Page * in.Limit)). Offset(int(in.Page * in.Limit)).
Limit(int(in.Limit)). Limit(int(in.Limit)).
All(l.ctx) All(l.ctx)
app/users/rpc/admin_init.go
+60
View File
@@ -0,0 +1,60 @@
package main
import (
"context"
"os"
"strings"
"juwan-backend/app/snowflake/rpc/snowflake"
"juwan-backend/app/users/rpc/internal/models/users"
"juwan-backend/app/users/rpc/internal/svc"
"juwan-backend/common/utils/pwdUtils"
"github.com/zeromicro/go-zero/core/logx"
)
func initAdmin(svcCtx *svc.ServiceContext) {
username := strings.TrimSpace(os.Getenv("ADMIN_USERNAME"))
password := strings.TrimSpace(os.Getenv("ADMIN_PASSWORD"))
email := strings.TrimSpace(os.Getenv("ADMIN_EMAIL"))
if username == "" || password == "" || email == "" {
return
}
ctx := context.Background()
exists, _ := svcCtx.UsersModelRW.Users.Query().Where(users.UsernameEQ(username)).Exist(ctx)
if exists {
return
}
hashedPassword, err := pwdUtils.HashPassword(password)
if err != nil {
logx.Errorf("hash admin password: %v", err)
return
}
resp, err := svcCtx.Snowflake.NextId(ctx, &snowflake.NextIdReq{})
if err != nil {
logx.Errorf("generate admin user ID: %v", err)
return
}
_, err = svcCtx.UsersModelRW.Users.Create().
SetID(resp.Id).
SetUsername(username).
SetPasswordHash(hashedPassword).
SetEmail(email).
SetPhone("").
SetBio("").
SetAvatar("").
SetCurrentRole("consumer").
SetNickname(username).
SetIsAdmin(true).
Save(ctx)
if err != nil {
logx.Errorf("create admin user: %v", err)
return
}
logx.Infof("initialized admin user: %s", username)
}
app/users/rpc/internal/logic/updateUsersLogic.go
+2 -1
View File
@@ -29,7 +29,8 @@ func (l *UpdateUsersLogic) UpdateUsers(in *pb.UpdateUsersReq) (*pb.UpdateUsersRe
SetNillableAvatar(in.Avatar). SetNillableAvatar(in.Avatar).
SetNillableBio(in.Bio). SetNillableBio(in.Bio).
SetNillableCurrentRole(in.CurrentRole). SetNillableCurrentRole(in.CurrentRole).
SetNillablePasswordHash(in.PasswordHash) SetNillablePasswordHash(in.PasswordHash).
SetNillableIsAdmin(in.IsAdmin)
if len(in.VerifiedRoles) > 0 { if len(in.VerifiedRoles) > 0 {
verifiedRoles := types.TextArray{Elements: append([]string{}, in.VerifiedRoles...), Valid: true} verifiedRoles := types.TextArray{Elements: append([]string{}, in.VerifiedRoles...), Valid: true}
updater.SetVerifiedRoles(verifiedRoles) updater.SetVerifiedRoles(verifiedRoles)
app/users/rpc/pb.go
+1
View File
@@ -25,6 +25,7 @@ func main() {
var c config.Config var c config.Config
conf.MustLoad(*configFile, &c, conf.UseEnv()) conf.MustLoad(*configFile, &c, conf.UseEnv())
ctx := svc.NewServiceContext(c) ctx := svc.NewServiceContext(c)
initAdmin(ctx)
s := zrpc.MustNewServer(c.RpcServerConf, func(grpcServer *grpc.Server) { s := zrpc.MustNewServer(c.RpcServerConf, func(grpcServer *grpc.Server) {
pb.RegisterUsercenterServer(grpcServer, server.NewUsercenterServer(ctx)) pb.RegisterUsercenterServer(grpcServer, server.NewUsercenterServer(ctx))
deploy/dev/.env
+5
View File
@@ -30,3 +30,8 @@ S3_ACCESS_KEY=changeme
S3_SECRET_KEY=changeme S3_SECRET_KEY=changeme
S3_BUCKET_NAME=dev-bucket S3_BUCKET_NAME=dev-bucket
S3_REGION=auto S3_REGION=auto
# Admin (auto-init on first startup)
ADMIN_USERNAME=admin
ADMIN_PASSWORD=admin123
ADMIN_EMAIL=admin@juwan.dev
deploy/dev/docker-compose.yml
+4
View File
@@ -118,6 +118,10 @@ services:
container_name: juwan-user-rpc container_name: juwan-user-rpc
restart: unless-stopped restart: unless-stopped
env_file: .env env_file: .env
environment:
ADMIN_USERNAME: ${ADMIN_USERNAME}
ADMIN_PASSWORD: ${ADMIN_PASSWORD}
ADMIN_EMAIL: ${ADMIN_EMAIL}
depends_on: depends_on:
postgres: postgres:
condition: service_healthy condition: service_healthy
deploy/dev/envoy.yaml
+6
View File
@@ -235,6 +235,12 @@ static_resources:
cluster: user_api_cluster cluster: user_api_cluster
timeout: 30s timeout: 30s
- match:
prefix: /api/v1/admin
route:
cluster: user_api_cluster
timeout: 30s
- match: - match:
prefix: /api/v1/users prefix: /api/v1/users
route: route: