refactor: MySQL改密逻辑

2026-02-04 11:27:17 +08:00 · 2024-06-24 21:52:46 +08:00
parent 7b80f034ea
commit dfa14c3fd4
8 changed files with 317 additions and 142 deletions
--- a/pkg/db/mysql.go
+++ b/pkg/db/mysql.go
@@ -0,0 +1,173 @@
+package db
+
+import (
+	"database/sql"
+	"fmt"
+
+	_ "github.com/go-sql-driver/mysql"
+
+	"github.com/TheTNB/panel/pkg/types"
+)
+
+type MySQL struct {
+	db       *sql.DB
+	username string
+	password string
+	address  string
+}
+
+func NewMySQL(username, password, address string, typ ...string) (*MySQL, error) {
+	dsn := fmt.Sprintf("%s:%s@tcp(%s)/", username, password, address)
+	if len(typ) > 0 && typ[0] == "unix" {
+		dsn = fmt.Sprintf("%s:%s@unix(%s)/", username, password, address)
+	}
+	db, err := sql.Open("mysql", dsn)
+	if err != nil {
+		return nil, fmt.Errorf("初始化MySQL连接失败: %w", err)
+	}
+	if db.Ping() != nil {
+		return nil, fmt.Errorf("连接MySQL失败: %w", err)
+	}
+	return &MySQL{
+		db:       db,
+		username: username,
+		password: password,
+		address:  address,
+	}, nil
+}
+
+func (m *MySQL) Close() error {
+	return m.db.Close()
+}
+
+func (m *MySQL) Ping() error {
+	return m.db.Ping()
+}
+
+func (m *MySQL) Query(query string, args ...any) (*sql.Rows, error) {
+	return m.db.Query(query, args...)
+}
+
+func (m *MySQL) QueryRow(query string, args ...any) *sql.Row {
+	return m.db.QueryRow(query, args...)
+}
+
+func (m *MySQL) Exec(query string, args ...any) (sql.Result, error) {
+	return m.db.Exec(query, args...)
+}
+
+func (m *MySQL) Prepare(query string) (*sql.Stmt, error) {
+	return m.db.Prepare(query)
+}
+
+func (m *MySQL) DatabaseCreate(name string) error {
+	_, err := m.Exec(fmt.Sprintf("CREATE DATABASE IF NOT EXISTS %s", name))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) DatabaseDrop(name string) error {
+	_, err := m.Exec(fmt.Sprintf("DROP DATABASE IF EXISTS %s", name))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) UserCreate(user, password string) error {
+	_, err := m.Exec(fmt.Sprintf("CREATE USER IF NOT EXISTS '%s'@'localhost' IDENTIFIED BY '%s'", user, password))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) UserDrop(user string) error {
+	_, err := m.Exec(fmt.Sprintf("DROP USER IF EXISTS '%s'@'localhost'", user))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) UserPassword(user, password string) error {
+	_, err := m.Exec(fmt.Sprintf("ALTER USER '%s'@'localhost' IDENTIFIED BY '%s'", user, password))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) PrivilegesGrant(user, database string) error {
+	_, err := m.Exec(fmt.Sprintf("GRANT ALL PRIVILEGES ON %s.* TO '%s'@'localhost'", database, user))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) PrivilegesRevoke(user, database string) error {
+	_, err := m.Exec(fmt.Sprintf("REVOKE ALL PRIVILEGES ON %s.* FROM '%s'@'localhost'", database, user))
+	m.flushPrivileges()
+	return err
+}
+
+func (m *MySQL) Users() ([]types.MySQLUser, error) {
+	rows, err := m.Query("SELECT user, host FROM mysql.user")
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+
+	var users []types.MySQLUser
+	for rows.Next() {
+		var user, host string
+		if err := rows.Scan(&user, &host); err != nil {
+			continue
+		}
+		grants, err := m.userGrants(user, host)
+		if err != nil {
+			continue
+		}
+
+		users = append(users, types.MySQLUser{
+			User:   user,
+			Host:   host,
+			Grants: grants,
+		})
+	}
+
+	return users, nil
+}
+
+func (m *MySQL) Databases() ([]types.MySQLDatabase, error) {
+	rows, err := m.Query("SHOW DATABASES")
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+
+	var databases []types.MySQLDatabase
+	for rows.Next() {
+		var database string
+		if err := rows.Scan(&database); err != nil {
+			continue
+		}
+		databases = append(databases, types.MySQLDatabase{
+			Name: database,
+		})
+	}
+	return databases, nil
+}
+
+func (m *MySQL) userGrants(user, host string) ([]string, error) {
+	rows, err := m.Query(fmt.Sprintf("SHOW GRANTS FOR '%s'@'%s'", user, host))
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+
+	var grants []string
+	for rows.Next() {
+		var grant string
+		if err := rows.Scan(&grant); err != nil {
+			continue
+		}
+		grants = append(grants, grant)
+	}
+	return grants, nil
+}
+
+func (m *MySQL) flushPrivileges() {
+	_, _ = m.Exec("FLUSH PRIVILEGES")
+}
--- a/pkg/db/mysql_tools.go
+++ b/pkg/db/mysql_tools.go
@@ -0,0 +1,33 @@
+package db
+
+import (
+	"errors"
+	"fmt"
+
+	"github.com/TheTNB/panel/pkg/shell"
+	"github.com/TheTNB/panel/pkg/systemctl"
+)
+
+// MySQLResetRootPassword 重置 MySQL root密码
+func MySQLResetRootPassword(password string) error {
+	_ = systemctl.Stop("mysqld")
+	if run, err := systemctl.Status("mysqld"); err != nil || run {
+		return fmt.Errorf("停止MySQL失败: %w", err)
+	}
+	_, _ = shell.Execf(`systemctl set-environment MYSQLD_OPTS="--skip-grant-tables --skip-networking"`)
+	if err := systemctl.Start("mysqld"); err != nil {
+		return fmt.Errorf("以安全模式启动MySQL失败: %w", err)
+	}
+	if _, err := shell.Execf(`mysql -uroot -e "FLUSH PRIVILEGES;UPDATE mysql.user SET authentication_string=null WHERE user='root' AND host='localhost';ALTER USER 'root'@'localhost' IDENTIFIED BY '%s';FLUSH PRIVILEGES;"`, password); err != nil {
+		return errors.New("设置root密码失败")
+	}
+	if err := systemctl.Stop("mysqld"); err != nil {
+		return fmt.Errorf("停止MySQL失败: %w", err)
+	}
+	_, _ = shell.Execf(`systemctl unset-environment MYSQLD_OPTS`)
+	if err := systemctl.Start("mysqld"); err != nil {
+		return fmt.Errorf("启动MySQL失败: %w", err)
+	}
+
+	return nil
+}