package controllers
import (
"encoding/json"
"html/template"
"regexp"
"strings"
"github.com/astaxie/beego"
"github.com/astaxie/beego/logs"
"github.com/astaxie/beego/orm"
"github.com/lifei6671/mindoc/conf"
"github.com/lifei6671/mindoc/models"
"github.com/lifei6671/mindoc/utils"
"path/filepath"
"strconv"
"github.com/lifei6671/mindoc/utils/pagination"
)
type ManagerController struct {
BaseController
}
func (c *ManagerController) Prepare() {
c.BaseController.Prepare()
if !c.Member.IsAdministrator() {
c.Abort("403")
}
}
func (c *ManagerController) Index() {
c.TplName = "manager/index.tpl"
c.Data["Model"] = models.NewDashboard().Query()
}
// 用户列表.
func (c *ManagerController) Users() {
c.Prepare()
c.TplName = "manager/users.tpl"
pageIndex, _ := c.GetInt("page", 0)
members, totalCount, err := models.NewMember().FindToPager(pageIndex, conf.PageSize)
if err != nil {
c.Data["ErrorMessage"] = err.Error()
return
}
if totalCount > 0 {
pager := pagination.NewPagination(c.Ctx.Request,totalCount,conf.PageSize)
c.Data["PageHtml"] = pager.HtmlPages()
} else {
c.Data["PageHtml"] = ""
}
b, err := json.Marshal(members)
if err != nil {
c.Data["Result"] = template.JS("[]")
} else {
c.Data["Result"] = template.JS(string(b))
}
}
// 添加用户.
func (c *ManagerController) CreateMember() {
c.Prepare()
account := strings.TrimSpace(c.GetString("account"))
password1 := strings.TrimSpace(c.GetString("password1"))
password2 := strings.TrimSpace(c.GetString("password2"))
email := strings.TrimSpace(c.GetString("email"))
phone := strings.TrimSpace(c.GetString("phone"))
role, _ := c.GetInt("role", 1)
status, _ := c.GetInt("status", 0)
if ok, err := regexp.MatchString(conf.RegexpAccount, account); account == "" || !ok || err != nil {
c.JsonResult(6001, "账号只能由英文字母数字组成,且在3-50个字符")
}
if l := strings.Count(password1, ""); password1 == "" || l > 50 || l < 6 {
c.JsonResult(6002, "密码必须在6-50个字符之间")
}
if password1 != password2 {
c.JsonResult(6003, "确认密码不正确")
}
if ok, err := regexp.MatchString(conf.RegexpEmail, email); !ok || err != nil || email == "" {
c.JsonResult(6004, "邮箱格式不正确")
}
if role != 0 && role != 1 && role != 2 {
role = 1
}
if status != 0 && status != 1 {
status = 0
}
member := models.NewMember()
if _, err := member.FindByAccount(account); err == nil && member.MemberId > 0 {
c.JsonResult(6005, "账号已存在")
}
member.Account = account
member.Password = password1
member.Role = role
member.Avatar = conf.GetDefaultAvatar()
member.CreateAt = c.Member.MemberId
member.Email = email
member.RealName = strings.TrimSpace(c.GetString("real_name",""))
if phone != "" {
member.Phone = phone
}
if err := member.Add(); err != nil {
c.JsonResult(6006, err.Error())
}
c.JsonResult(0, "ok", member)
}
//更新用户状态.
func (c *ManagerController) UpdateMemberStatus() {
c.Prepare()
member_id, _ := c.GetInt("member_id", 0)
status, _ := c.GetInt("status", 0)
if member_id <= 0 {
c.JsonResult(6001, "参数错误")
}
if status != 0 && status != 1 {
status = 0
}
member := models.NewMember()
if _, err := member.Find(member_id); err != nil {
c.JsonResult(6002, "用户不存在")
}
if member.MemberId == c.Member.MemberId {
c.JsonResult(6004, "不能变更自己的状态")
}
if member.Role == conf.MemberSuperRole {
c.JsonResult(6005, "不能变更超级管理员的状态")
}
member.Status = status
if err := member.Update(); err != nil {
logs.Error("", err)
c.JsonResult(6003, "用户状态设置失败")
}
c.JsonResult(0, "ok", member)
}
//变更用户权限.
func (c *ManagerController) ChangeMemberRole() {
c.Prepare()
member_id, _ := c.GetInt("member_id", 0)
role, _ := c.GetInt("role", 0)
if member_id <= 0 {
c.JsonResult(6001, "参数错误")
}
if role != conf.MemberAdminRole && role != conf.MemberGeneralRole {
c.JsonResult(6001, "用户权限不正确")
}
member := models.NewMember()
if _, err := member.Find(member_id); err != nil {
c.JsonResult(6002, "用户不存在")
}
if member.MemberId == c.Member.MemberId {
c.JsonResult(6004, "不能变更自己的权限")
}
if member.Role == conf.MemberSuperRole {
c.JsonResult(6005, "不能变更超级管理员的权限")
}
member.Role = role
if err := member.Update(); err != nil {
logs.Error("", err)
c.JsonResult(6003, "用户权限设置失败")
}
member.ResolveRoleName()
c.JsonResult(0, "ok", member)
}
//编辑用户信息.
func (c *ManagerController) EditMember() {
c.Prepare()
c.TplName = "manager/edit_users.tpl"
member_id, _ := c.GetInt(":id", 0)
if member_id <= 0 {
c.Abort("404")
}
member, err := models.NewMember().Find(member_id)
if err != nil {
beego.Error(err)
c.Abort("404")
}
if c.Ctx.Input.IsPost() {
password1 := c.GetString("password1")
password2 := c.GetString("password2")
email := c.GetString("email")
phone := c.GetString("phone")
description := c.GetString("description")
member.Email = email
member.Phone = phone
member.Description = description
member.RealName = c.GetString("real_name")
if password1 != "" && password2 != password1 {
c.JsonResult(6001, "确认密码不正确")
}
if password1 != "" && member.AuthMethod != conf.AuthMethodLDAP {
member.Password = password1
}
if err := member.Valid(password1 == ""); err != nil {
c.JsonResult(6002, err.Error())
}
if password1 != "" {
password, err := utils.PasswordHash(password1)
if err != nil {
beego.Error(err)
c.JsonResult(6003, "对用户密码加密时出错")
}
member.Password = password
}
if err := member.Update(); err != nil {
beego.Error(err)
c.JsonResult(6004, "保存失败")
}
c.JsonResult(0, "ok")
}
c.Data["Model"] = member
}
//删除一个用户,并将该用户的所有信息转移到超级管理员上.
func (c *ManagerController) DeleteMember() {
c.Prepare()
member_id, _ := c.GetInt("id", 0)
if member_id <= 0 {
c.JsonResult(404, "参数错误")
}
member, err := models.NewMember().Find(member_id)
if err != nil {
beego.Error(err)
c.JsonResult(500, "用户不存在")
}
if member.Role == conf.MemberSuperRole {
c.JsonResult(500, "不能删除超级管理员")
}
superMember, err := models.NewMember().FindByFieldFirst("role", 0)
if err != nil {
beego.Error(err)
c.JsonResult(5001, "未能找到超级管理员")
}
err = models.NewMember().Delete(member_id, superMember.MemberId)
if err != nil {
beego.Error(err)
c.JsonResult(5002, "删除失败")
}
c.JsonResult(0, "ok")
}
//项目列表.
func (c *ManagerController) Books() {
c.Prepare()
c.TplName = "manager/books.tpl"
pageIndex, _ := c.GetInt("page", 1)
books, totalCount, err := models.NewBookResult().FindToPager(pageIndex, conf.PageSize)
if err != nil {
c.Abort("500")
}
if totalCount > 0 {
//html := utils.GetPagerHtml(c.Ctx.Request.RequestURI, pageIndex, 8, totalCount)
pager := pagination.NewPagination(c.Ctx.Request,totalCount,conf.PageSize)
c.Data["PageHtml"] = pager.HtmlPages()
} else {
c.Data["PageHtml"] = ""
}
c.Data["Lists"] = books
}
//编辑项目.
func (c *ManagerController) EditBook() {
c.Prepare()
c.TplName = "manager/edit_book.tpl"
identify := c.GetString(":key")
if identify == "" {
c.Abort("404")
}
book, err := models.NewBook().FindByFieldFirst("identify", identify)
if err != nil {
c.Abort("500")
}
if c.Ctx.Input.IsPost() {
book_name := strings.TrimSpace(c.GetString("book_name"))
description := strings.TrimSpace(c.GetString("description", ""))
comment_status := c.GetString("comment_status")
tag := strings.TrimSpace(c.GetString("label"))
order_index, _ := c.GetInt("order_index", 0)
if strings.Count(description, "") > 500 {
c.JsonResult(6004, "项目描述不能大于500字")
}
if comment_status != "open" && comment_status != "closed" && comment_status != "group_only" && comment_status != "registered_only" {
comment_status = "closed"
}
if tag != "" {
tags := strings.Split(tag, ";")
if len(tags) > 10 {
c.JsonResult(6005, "最多允许添加10个标签")
}
}
book.BookName = book_name
book.Description = description
book.CommentStatus = comment_status
book.Label = tag
book.OrderIndex = order_index
if err := book.Update(); err != nil {
c.JsonResult(6006, "保存失败")
}
c.JsonResult(0, "ok")
}
if book.PrivateToken != "" {
book.PrivateToken = c.BaseUrl() + beego.URLFor("DocumentController.Index", ":key", book.Identify, "token", book.PrivateToken)
}
c.Data["Model"] = book
}
// 删除项目.
func (c *ManagerController) DeleteBook() {
c.Prepare()
book_id, _ := c.GetInt("book_id", 0)
if book_id <= 0 {
c.JsonResult(6001, "参数错误")
}
book := models.NewBook()
err := book.ThoroughDeleteBook(book_id)
if err == orm.ErrNoRows {
c.JsonResult(6002, "项目不存在")
}
if err != nil {
logs.Error("DeleteBook => ", err)
c.JsonResult(6003, "删除失败")
}
c.JsonResult(0, "ok")
}
// CreateToken 创建访问来令牌.
func (c *ManagerController) CreateToken() {
c.Prepare()
action := c.GetString("action")
identify := c.GetString("identify")
book, err := models.NewBook().FindByFieldFirst("identify", identify)
if err != nil {
c.JsonResult(6001, "项目不存在")
}
if action == "create" {
if book.PrivatelyOwned == 0 {
c.JsonResult(6001, "公开项目不能创建阅读令牌")
}
book.PrivateToken = string(utils.Krand(conf.GetTokenSize(), utils.KC_RAND_KIND_ALL))
if err := book.Update(); err != nil {
logs.Error("生成阅读令牌失败 => ", err)
c.JsonResult(6003, "生成阅读令牌失败")
}
c.JsonResult(0, "ok", c.BaseUrl()+beego.URLFor("DocumentController.Index", ":key", book.Identify, "token", book.PrivateToken))
} else {
book.PrivateToken = ""
if err := book.Update(); err != nil {
logs.Error("CreateToken => ", err)
c.JsonResult(6004, "删除令牌失败")
}
c.JsonResult(0, "ok", "")
}
}
//项目设置.
func (c *ManagerController) Setting() {
c.Prepare()
c.TplName = "manager/setting.tpl"
options, err := models.NewOption().All()
if c.Ctx.Input.IsPost() {
for _, item := range options {
item.OptionValue = c.GetString(item.OptionName)
item.InsertOrUpdate()
}
c.JsonResult(0, "ok")
}
if err != nil {
c.Abort("500")
}
c.Data["SITE_TITLE"] = c.Option["SITE_NAME"]
for _, item := range options {
c.Data[item.OptionName] = item
}
}
// Transfer 转让项目.
func (c *ManagerController) Transfer() {
c.Prepare()
account := c.GetString("account")
if account == "" {
c.JsonResult(6004, "接受者账号不能为空")
}
member, err := models.NewMember().FindByAccount(account)
if err != nil {
logs.Error("FindByAccount => ", err)
c.JsonResult(6005, "接受用户不存在")
}
if member.Status != 0 {
c.JsonResult(6006, "接受用户已被禁用")
}
if !c.Member.IsAdministrator() {
c.Abort("403")
}
identify := c.GetString("identify")
book, err := models.NewBook().FindByFieldFirst("identify", identify)
if err != nil {
c.JsonResult(6001, err.Error())
}
rel, err := models.NewRelationship().FindFounder(book.BookId)
if err != nil {
beego.Error("FindFounder => ", err)
c.JsonResult(6009, "查询项目创始人失败")
}
if member.MemberId == rel.MemberId {
c.JsonResult(6007, "不能转让给自己")
}
err = models.NewRelationship().Transfer(book.BookId, rel.MemberId, member.MemberId)
if err != nil {
logs.Error("Transfer => ", err)
c.JsonResult(6008, err.Error())
}
c.JsonResult(0, "ok")
}
func (c *ManagerController) Comments() {
c.Prepare()
c.TplName = "manager/comments.tpl"
if !c.Member.IsAdministrator() {
c.Abort("403")
}
}
//DeleteComment 标记评论为已删除
func (c *ManagerController) DeleteComment() {
c.Prepare()
comment_id, _ := c.GetInt("comment_id", 0)
if comment_id <= 0 {
c.JsonResult(6001, "参数错误")
}
comment := models.NewComment()
if _, err := comment.Find(comment_id); err != nil {
c.JsonResult(6002, "评论不存在")
}
comment.Approved = 3
if err := comment.Update("approved"); err != nil {
c.JsonResult(6003, "删除评论失败")
}
c.JsonResult(0, "ok", comment)
}
//设置项目私有状态.
func (c *ManagerController) PrivatelyOwned() {
c.Prepare()
status := c.GetString("status")
identify := c.GetString("identify")
if status != "open" && status != "close" {
c.JsonResult(6003, "参数错误")
}
state := 0
if status == "open" {
state = 0
} else {
state = 1
}
if !c.Member.IsAdministrator() {
c.Abort("403")
}
book, err := models.NewBook().FindByFieldFirst("identify", identify)
if err != nil {
c.JsonResult(6001, err.Error())
}
book.PrivatelyOwned = state
logs.Info("", state, status)
err = book.Update()
if err != nil {
logs.Error("PrivatelyOwned => ", err)
c.JsonResult(6004, "保存失败")
}
c.JsonResult(0, "ok")
}
//附件列表.
func (c *ManagerController) AttachList() {
c.Prepare()
c.TplName = "manager/attach_list.tpl"
pageIndex, _ := c.GetInt("page", 1)
attachList, totalCount, err := models.NewAttachment().FindToPager(pageIndex, conf.PageSize)
if err != nil {
c.Abort("500")
}
if totalCount > 0 {
pager := pagination.NewPagination(c.Ctx.Request,totalCount,conf.PageSize)
c.Data["PageHtml"] = pager.HtmlPages()
} else {
c.Data["PageHtml"] = ""
}
for _, item := range attachList {
p := filepath.Join(conf.WorkingDirectory, item.FilePath)
item.IsExist = utils.FileExists(p)
}
c.Data["Lists"] = attachList
}
//附件详情.
func (c *ManagerController) AttachDetailed() {
c.Prepare()
c.TplName = "manager/attach_detailed.tpl"
attach_id, _ := strconv.Atoi(c.Ctx.Input.Param(":id"))
if attach_id <= 0 {
c.Abort("404")
}
attach, err := models.NewAttachmentResult().Find(attach_id)
if err != nil {
beego.Error("AttachDetailed => ", err)
if err == orm.ErrNoRows {
c.Abort("404")
} else {
c.Abort("500")
}
}
attach.FilePath = filepath.Join(conf.WorkingDirectory, attach.FilePath)
attach.HttpPath = c.BaseUrl() + attach.HttpPath
attach.IsExist = utils.FileExists(attach.FilePath)
c.Data["Model"] = attach
}
//删除附件.
func (c *ManagerController) AttachDelete() {
c.Prepare()
attach_id, _ := c.GetInt("attach_id")
if attach_id <= 0 {
c.Abort("404")
}
attach, err := models.NewAttachment().Find(attach_id)
if err != nil {
beego.Error("AttachDelete => ", err)
c.JsonResult(6001, err.Error())
}
if err := attach.Delete(); err != nil {
beego.Error("AttachDelete => ", err)
c.JsonResult(6002, err.Error())
}
c.JsonResult(0, "ok")
}