mirror of
https://github.com/acepanel/panel.git
synced 2026-02-04 06:40:59 +08:00
f2e41a3364
* Initial plan * feat: 添加操作日志记录功能和前端日志查看页面 Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * fix: 修复 HttpLog 中 IP 字符串处理的类型安全问题 Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * fix: lint * feat: 完善面板内日志记录,添加网站/数据库/项目/计划任务/备份CRUD日志 Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * feat: 完善更多模块的日志记录(证书/SSH/Webhook/用户/设置/安全) Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * fix: 改进cert_dns删除方法,在删除前获取实体信息用于日志记录 Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * fix: lint * feat: 从session获取操作员ID并在前端显示用户名 Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> * fix: lint --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: devhaozi <115467771+devhaozi@users.noreply.github.com> Co-authored-by: 耗子 <haozi@loli.email>
285 lines
6.8 KiB
Go
285 lines
6.8 KiB
Go
package data
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"log/slog"
|
|
"slices"
|
|
|
|
"github.com/leonelquinteros/gotext"
|
|
"gorm.io/gorm"
|
|
|
|
"github.com/acepanel/panel/internal/biz"
|
|
"github.com/acepanel/panel/internal/http/request"
|
|
"github.com/acepanel/panel/pkg/db"
|
|
)
|
|
|
|
type databaseUserRepo struct {
|
|
t *gotext.Locale
|
|
db *gorm.DB
|
|
log *slog.Logger
|
|
server biz.DatabaseServerRepo
|
|
}
|
|
|
|
func NewDatabaseUserRepo(t *gotext.Locale, db *gorm.DB, log *slog.Logger, server biz.DatabaseServerRepo) biz.DatabaseUserRepo {
|
|
return &databaseUserRepo{
|
|
t: t,
|
|
db: db,
|
|
log: log,
|
|
server: server,
|
|
}
|
|
}
|
|
|
|
func (r *databaseUserRepo) Count() (int64, error) {
|
|
var count int64
|
|
if err := r.db.Model(&biz.DatabaseUser{}).Count(&count).Error; err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
return count, nil
|
|
}
|
|
|
|
func (r *databaseUserRepo) List(page, limit uint) ([]*biz.DatabaseUser, int64, error) {
|
|
user := make([]*biz.DatabaseUser, 0)
|
|
var total int64
|
|
err := r.db.Model(&biz.DatabaseUser{}).Preload("Server").Order("id desc").Count(&total).Offset(int((page - 1) * limit)).Limit(int(limit)).Find(&user).Error
|
|
|
|
for u := range slices.Values(user) {
|
|
r.fillUser(u)
|
|
}
|
|
|
|
return user, total, err
|
|
}
|
|
|
|
func (r *databaseUserRepo) Get(id uint) (*biz.DatabaseUser, error) {
|
|
user := new(biz.DatabaseUser)
|
|
if err := r.db.Preload("Server").Where("id = ?", id).First(user).Error; err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
r.fillUser(user)
|
|
|
|
return user, nil
|
|
}
|
|
|
|
func (r *databaseUserRepo) Create(ctx context.Context, req *request.DatabaseUserCreate) error {
|
|
server, err := r.server.Get(req.ServerID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
operator, err := r.getOperator(server)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer operator.Close()
|
|
|
|
// 创建用户
|
|
if err = operator.UserCreate(req.Username, req.Password, req.Host); err != nil {
|
|
return err
|
|
}
|
|
|
|
// 创建数据库并授权
|
|
for name := range slices.Values(req.Privileges) {
|
|
if err = operator.DatabaseCreate(name); err != nil {
|
|
return err
|
|
}
|
|
if err = operator.PrivilegesGrant(req.Username, name, req.Host); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
user := &biz.DatabaseUser{
|
|
ServerID: req.ServerID,
|
|
Username: req.Username,
|
|
Host: req.Host,
|
|
Password: req.Password,
|
|
Remark: req.Remark,
|
|
}
|
|
|
|
if err = r.db.FirstOrInit(user, user).Error; err != nil {
|
|
return err
|
|
}
|
|
|
|
if err = r.db.Save(user).Error; err != nil {
|
|
return err
|
|
}
|
|
|
|
// 记录日志
|
|
r.log.Info("database user created", slog.String("type", biz.OperationTypeDatabaseUser), slog.Uint64("operator_id", getOperatorID(ctx)), slog.String("username", req.Username), slog.Uint64("server_id", uint64(req.ServerID)))
|
|
|
|
return nil
|
|
}
|
|
|
|
func (r *databaseUserRepo) Update(req *request.DatabaseUserUpdate) error {
|
|
user, err := r.Get(req.ID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
server, err := r.server.Get(user.ServerID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
operator, err := r.getOperator(server)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer operator.Close()
|
|
|
|
// 更新密码
|
|
if req.Password != "" {
|
|
if err = operator.UserPassword(user.Username, req.Password, user.Host); err != nil {
|
|
return err
|
|
}
|
|
user.Password = req.Password
|
|
}
|
|
|
|
// 创建数据库并授权
|
|
for name := range slices.Values(req.Privileges) {
|
|
if err = operator.DatabaseCreate(name); err != nil {
|
|
return err
|
|
}
|
|
if err = operator.PrivilegesGrant(user.Username, name, user.Host); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
user.Remark = req.Remark
|
|
|
|
return r.db.Save(user).Error
|
|
}
|
|
|
|
func (r *databaseUserRepo) UpdateRemark(req *request.DatabaseUserUpdateRemark) error {
|
|
user, err := r.Get(req.ID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
user.Remark = req.Remark
|
|
|
|
return r.db.Save(user).Error
|
|
}
|
|
|
|
func (r *databaseUserRepo) Delete(ctx context.Context, id uint) error {
|
|
user, err := r.Get(id)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
server, err := r.server.Get(user.ServerID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
operator, err := r.getOperator(server)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer operator.Close()
|
|
|
|
_ = operator.UserDrop(user.Username, user.Host)
|
|
|
|
if err = r.db.Where("id = ?", id).Delete(&biz.DatabaseUser{}).Error; err != nil {
|
|
return err
|
|
}
|
|
|
|
// 记录日志
|
|
r.log.Info("database user deleted", slog.String("type", biz.OperationTypeDatabaseUser), slog.Uint64("operator_id", getOperatorID(ctx)), slog.Uint64("id", uint64(id)), slog.String("username", user.Username))
|
|
|
|
return nil
|
|
}
|
|
|
|
func (r *databaseUserRepo) DeleteByNames(serverID uint, names []string) error {
|
|
server, err := r.server.Get(serverID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
operator, err := r.getOperator(server)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer operator.Close()
|
|
|
|
switch server.Type {
|
|
case biz.DatabaseTypeMysql:
|
|
users := make([]*biz.DatabaseUser, 0)
|
|
if err = r.db.Where("server_id = ? AND username IN ?", serverID, names).Find(&users).Error; err != nil {
|
|
return err
|
|
}
|
|
for name := range slices.Values(names) {
|
|
host := "localhost"
|
|
for u := range slices.Values(users) {
|
|
if u.Username == name {
|
|
host = u.Host
|
|
break
|
|
}
|
|
}
|
|
_ = operator.UserDrop(name, host)
|
|
}
|
|
case biz.DatabaseTypePostgresql:
|
|
for name := range slices.Values(names) {
|
|
_ = operator.UserDrop(name)
|
|
}
|
|
}
|
|
|
|
return r.db.Where("server_id = ? AND username IN ?", serverID, names).Delete(&biz.DatabaseUser{}).Error
|
|
}
|
|
|
|
func (r *databaseUserRepo) fillUser(user *biz.DatabaseUser) {
|
|
server, err := r.server.Get(user.ServerID)
|
|
if err == nil {
|
|
operator, err := r.getOperator(server)
|
|
if err == nil {
|
|
defer operator.Close()
|
|
switch server.Type {
|
|
case biz.DatabaseTypeMysql:
|
|
privileges, _ := operator.UserPrivileges(user.Username, user.Host)
|
|
user.Privileges = privileges
|
|
if mysql2, err := db.NewMySQL(user.Username, user.Password, fmt.Sprintf("%s:%d", server.Host, server.Port)); err == nil {
|
|
mysql2.Close()
|
|
user.Status = biz.DatabaseUserStatusValid
|
|
} else {
|
|
user.Status = biz.DatabaseUserStatusInvalid
|
|
}
|
|
case biz.DatabaseTypePostgresql:
|
|
privileges, _ := operator.UserPrivileges(user.Username)
|
|
user.Privileges = privileges
|
|
if postgres2, err := db.NewPostgres(user.Username, user.Password, server.Host, server.Port); err == nil {
|
|
postgres2.Close()
|
|
user.Status = biz.DatabaseUserStatusValid
|
|
} else {
|
|
user.Status = biz.DatabaseUserStatusInvalid
|
|
}
|
|
}
|
|
} else {
|
|
user.Status = biz.DatabaseUserStatusInvalid
|
|
}
|
|
}
|
|
// 初始化,防止 nil
|
|
if user.Privileges == nil {
|
|
user.Privileges = make([]string, 0)
|
|
}
|
|
}
|
|
|
|
func (r *databaseUserRepo) getOperator(server *biz.DatabaseServer) (db.Operator, error) {
|
|
switch server.Type {
|
|
case biz.DatabaseTypeMysql:
|
|
mysql, err := db.NewMySQL(server.Username, server.Password, fmt.Sprintf("%s:%d", server.Host, server.Port))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return mysql, nil
|
|
case biz.DatabaseTypePostgresql:
|
|
postgres, err := db.NewPostgres(server.Username, server.Password, server.Host, server.Port)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return postgres, nil
|
|
default:
|
|
return nil, fmt.Errorf("unsupported database type: %s", server.Type)
|
|
}
|
|
}
|