package controllers import ( "encoding/json" "html/template" "regexp" "strings" "math" "path/filepath" "strconv" "github.com/astaxie/beego" "github.com/astaxie/beego/logs" "github.com/astaxie/beego/orm" "github.com/lifei6671/mindoc/conf" "github.com/lifei6671/mindoc/models" "github.com/lifei6671/mindoc/utils" "github.com/lifei6671/mindoc/utils/filetil" "github.com/lifei6671/mindoc/utils/pagination" "gopkg.in/russross/blackfriday.v2" "time" ) type ManagerController struct { BaseController } func (c *ManagerController) Prepare() { c.BaseController.Prepare() if !c.Member.IsAdministrator() { c.ShowErrorPage(403,"用户权限不足") } } func (c *ManagerController) Index() { c.Prepare() c.TplName = "manager/index.tpl" c.Data["Model"] = models.NewDashboard().Query() } // 用户列表. func (c *ManagerController) Users() { c.Prepare() c.TplName = "manager/users.tpl" pageIndex, _ := c.GetInt("page", 0) members, totalCount, err := models.NewMember().FindToPager(pageIndex, conf.PageSize) if err != nil { c.Data["ErrorMessage"] = err.Error() return } if totalCount > 0 { pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() for _,item := range members { item.Avatar = conf.URLForWithCdnImage(item.Avatar) } } else { c.Data["PageHtml"] = "" } b, err := json.Marshal(members) if err != nil { c.Data["Result"] = template.JS("[]") } else { c.Data["Result"] = template.JS(string(b)) } } // 添加用户. func (c *ManagerController) CreateMember() { c.Prepare() account := strings.TrimSpace(c.GetString("account")) password1 := strings.TrimSpace(c.GetString("password1")) password2 := strings.TrimSpace(c.GetString("password2")) email := strings.TrimSpace(c.GetString("email")) phone := strings.TrimSpace(c.GetString("phone")) role, _ := c.GetInt("role", 1) status, _ := c.GetInt("status", 0) if ok, err := regexp.MatchString(conf.RegexpAccount, account); account == "" || !ok || err != nil { c.JsonResult(6001, "账号只能由英文字母数字组成,且在3-50个字符") } if l := strings.Count(password1, ""); password1 == "" || l > 50 || l < 6 { c.JsonResult(6002, "密码必须在6-50个字符之间") } if password1 != password2 { c.JsonResult(6003, "确认密码不正确") } if ok, err := regexp.MatchString(conf.RegexpEmail, email); !ok || err != nil || email == "" { c.JsonResult(6004, "邮箱格式不正确") } if role != 0 && role != 1 && role != 2 { role = 1 } if status != 0 && status != 1 { status = 0 } member := models.NewMember() if _, err := member.FindByAccount(account); err == nil && member.MemberId > 0 { c.JsonResult(6005, "账号已存在") } member.Account = account member.Password = password1 member.Role = role member.Avatar = conf.GetDefaultAvatar() member.CreateAt = c.Member.MemberId member.Email = email member.RealName = strings.TrimSpace(c.GetString("real_name", "")) if phone != "" { member.Phone = phone } if err := member.Add(); err != nil { c.JsonResult(6006, err.Error()) } c.JsonResult(0, "ok", member) } //更新用户状态. func (c *ManagerController) UpdateMemberStatus() { c.Prepare() member_id, _ := c.GetInt("member_id", 0) status, _ := c.GetInt("status", 0) if member_id <= 0 { c.JsonResult(6001, "参数错误") } if status != 0 && status != 1 { status = 0 } member := models.NewMember() if _, err := member.Find(member_id); err != nil { c.JsonResult(6002, "用户不存在") } if member.MemberId == c.Member.MemberId { c.JsonResult(6004, "不能变更自己的状态") } if member.Role == conf.MemberSuperRole { c.JsonResult(6005, "不能变更超级管理员的状态") } member.Status = status if err := member.Update(); err != nil { logs.Error("", err) c.JsonResult(6003, "用户状态设置失败") } c.JsonResult(0, "ok", member) } //变更用户权限. func (c *ManagerController) ChangeMemberRole() { c.Prepare() member_id, _ := c.GetInt("member_id", 0) role, _ := c.GetInt("role", 0) if member_id <= 0 { c.JsonResult(6001, "参数错误") } if role != conf.MemberAdminRole && role != conf.MemberGeneralRole { c.JsonResult(6001, "用户权限不正确") } member := models.NewMember() if _, err := member.Find(member_id); err != nil { c.JsonResult(6002, "用户不存在") } if member.MemberId == c.Member.MemberId { c.JsonResult(6004, "不能变更自己的权限") } if member.Role == conf.MemberSuperRole { c.JsonResult(6005, "不能变更超级管理员的权限") } member.Role = role if err := member.Update(); err != nil { c.JsonResult(6003, "用户权限设置失败") } member.ResolveRoleName() c.JsonResult(0, "ok", member) } //编辑用户信息. func (c *ManagerController) EditMember() { c.Prepare() c.TplName = "manager/edit_users.tpl" member_id, _ := c.GetInt(":id", 0) if member_id <= 0 { c.Abort("404") } member, err := models.NewMember().Find(member_id) if err != nil { beego.Error(err) c.Abort("404") } if c.Ctx.Input.IsPost() { password1 := c.GetString("password1") password2 := c.GetString("password2") email := c.GetString("email") phone := c.GetString("phone") description := c.GetString("description") member.Email = email member.Phone = phone member.Description = description member.RealName = c.GetString("real_name") if password1 != "" && password2 != password1 { c.JsonResult(6001, "确认密码不正确") } if password1 != "" && member.AuthMethod != conf.AuthMethodLDAP { member.Password = password1 } if err := member.Valid(password1 == ""); err != nil { c.JsonResult(6002, err.Error()) } if password1 != "" { password, err := utils.PasswordHash(password1) if err != nil { beego.Error(err) c.JsonResult(6003, "对用户密码加密时出错") } member.Password = password } if err := member.Update(); err != nil { c.JsonResult(6004, err.Error()) } c.JsonResult(0, "ok") } c.Data["Model"] = member } //删除一个用户,并将该用户的所有信息转移到超级管理员上. func (c *ManagerController) DeleteMember() { c.Prepare() memberId, _ := c.GetInt("id", 0) if memberId <= 0 { c.JsonResult(404, "参数错误") } member, err := models.NewMember().Find(memberId) if err != nil { beego.Error(err) c.JsonResult(500, "用户不存在") } if member.Role == conf.MemberSuperRole { c.JsonResult(500, "不能删除超级管理员") } superMember, err := models.NewMember().FindByFieldFirst("role", 0) if err != nil { beego.Error(err) c.JsonResult(5001, "未能找到超级管理员") } err = models.NewMember().Delete(memberId, superMember.MemberId) if err != nil { beego.Error(err) c.JsonResult(5002, "删除失败") } c.JsonResult(0, "ok") } //项目列表. func (c *ManagerController) Books() { c.Prepare() c.TplName = "manager/books.tpl" pageIndex, _ := c.GetInt("page", 1) books, totalCount, err := models.NewBookResult().FindToPager(pageIndex, conf.PageSize) if err != nil { c.Abort("500") } if totalCount > 0 { //html := utils.GetPagerHtml(c.Ctx.Request.RequestURI, pageIndex, 8, totalCount) pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() } else { c.Data["PageHtml"] = "" } for i, book := range books { books[i].Description = utils.StripTags(string(blackfriday.Run([]byte(book.Description)))) books[i].ModifyTime = book.ModifyTime.Local() books[i].CreateTime = book.CreateTime.Local() } c.Data["Lists"] = books } //编辑项目. func (c *ManagerController) EditBook() { c.Prepare() c.TplName = "manager/edit_book.tpl" identify := c.GetString(":key") if identify == "" { c.Abort("404") } book, err := models.NewBook().FindByFieldFirst("identify", identify) if err != nil { c.Abort("500") } if c.Ctx.Input.IsPost() { bookName := strings.TrimSpace(c.GetString("book_name")) description := strings.TrimSpace(c.GetString("description", "")) commentStatus := c.GetString("comment_status") tag := strings.TrimSpace(c.GetString("label")) orderIndex, _ := c.GetInt("order_index", 0) isDownload := strings.TrimSpace(c.GetString("is_download")) == "on" enableShare := strings.TrimSpace(c.GetString("enable_share")) == "on" isUseFirstDocument := strings.TrimSpace(c.GetString("is_use_first_document")) == "on" autoRelease := strings.TrimSpace(c.GetString("auto_release")) == "on" publisher := strings.TrimSpace(c.GetString("publisher")) historyCount, _ := c.GetInt("history_count", 0) if strings.Count(description, "") > 500 { c.JsonResult(6004, "项目描述不能大于500字") } if commentStatus != "open" && commentStatus != "closed" && commentStatus != "group_only" && commentStatus != "registered_only" { commentStatus = "closed" } if tag != "" { tags := strings.Split(tag, ";") if len(tags) > 10 { c.JsonResult(6005, "最多允许添加10个标签") } } book.Publisher = publisher book.HistoryCount = historyCount book.BookName = bookName book.Description = description book.CommentStatus = commentStatus book.Label = tag book.OrderIndex = orderIndex if autoRelease { book.AutoRelease = 1 } else { book.AutoRelease = 0 } if isDownload { book.IsDownload = 0 } else { book.IsDownload = 1 } if enableShare { book.IsEnableShare = 0 } else { book.IsEnableShare = 1 } if isUseFirstDocument { book.IsUseFirstDocument = 1 } else { book.IsUseFirstDocument = 0 } if err := book.Update(); err != nil { c.JsonResult(6006, "保存失败") } c.JsonResult(0, "ok") } if book.PrivateToken != "" { book.PrivateToken = conf.URLFor("DocumentController.Index", ":key", book.Identify, "token", book.PrivateToken) } bookResult := models.NewBookResult() bookResult.ToBookResult(*book) c.Data["Model"] = bookResult } // 删除项目. func (c *ManagerController) DeleteBook() { c.Prepare() bookId, _ := c.GetInt("book_id", 0) if bookId <= 0 { c.JsonResult(6001, "参数错误") } book := models.NewBook() err := book.ThoroughDeleteBook(bookId) if err == orm.ErrNoRows { c.JsonResult(6002, "项目不存在") } if err != nil { logs.Error("DeleteBook => ", err) c.JsonResult(6003, "删除失败") } c.JsonResult(0, "ok") } // CreateToken 创建访问来令牌. func (c *ManagerController) CreateToken() { c.Prepare() action := c.GetString("action") identify := c.GetString("identify") book, err := models.NewBook().FindByFieldFirst("identify", identify) if err != nil { c.JsonResult(6001, "项目不存在") } if action == "create" { if book.PrivatelyOwned == 0 { c.JsonResult(6001, "公开项目不能创建阅读令牌") } book.PrivateToken = string(utils.Krand(conf.GetTokenSize(), utils.KC_RAND_KIND_ALL)) if err := book.Update(); err != nil { logs.Error("生成阅读令牌失败 => ", err) c.JsonResult(6003, "生成阅读令牌失败") } c.JsonResult(0, "ok", conf.URLFor("DocumentController.Index", ":key", book.Identify, "token", book.PrivateToken)) } else { book.PrivateToken = "" if err := book.Update(); err != nil { logs.Error("CreateToken => ", err) c.JsonResult(6004, "删除令牌失败") } c.JsonResult(0, "ok", "") } } //项目设置. func (c *ManagerController) Setting() { c.Prepare() c.TplName = "manager/setting.tpl" options, err := models.NewOption().All() if c.Ctx.Input.IsPost() { for _, item := range options { item.OptionValue = c.GetString(item.OptionName) item.InsertOrUpdate() } c.JsonResult(0, "ok") } if err != nil { c.Abort("500") } c.Data["SITE_TITLE"] = c.Option["SITE_NAME"] for _, item := range options { c.Data[item.OptionName] = item.OptionValue } } // Transfer 转让项目. func (c *ManagerController) Transfer() { c.Prepare() account := c.GetString("account") if account == "" { c.JsonResult(6004, "接受者账号不能为空") } member, err := models.NewMember().FindByAccount(account) if err != nil { logs.Error("FindByAccount => ", err) c.JsonResult(6005, "接受用户不存在") } if member.Status != 0 { c.JsonResult(6006, "接受用户已被禁用") } if !c.Member.IsAdministrator() { c.Abort("403") } identify := c.GetString("identify") book, err := models.NewBook().FindByFieldFirst("identify", identify) if err != nil { c.JsonResult(6001, err.Error()) } rel, err := models.NewRelationship().FindFounder(book.BookId) if err != nil { beego.Error("FindFounder => ", err) c.JsonResult(6009, "查询项目创始人失败") } if member.MemberId == rel.MemberId { c.JsonResult(6007, "不能转让给自己") } err = models.NewRelationship().Transfer(book.BookId, rel.MemberId, member.MemberId) if err != nil { logs.Error("Transfer => ", err) c.JsonResult(6008, err.Error()) } c.JsonResult(0, "ok") } func (c *ManagerController) Comments() { c.Prepare() c.TplName = "manager/comments.tpl" if !c.Member.IsAdministrator() { c.Abort("403") } } //DeleteComment 标记评论为已删除 func (c *ManagerController) DeleteComment() { c.Prepare() comment_id, _ := c.GetInt("comment_id", 0) if comment_id <= 0 { c.JsonResult(6001, "参数错误") } comment := models.NewComment() if _, err := comment.Find(comment_id); err != nil { c.JsonResult(6002, "评论不存在") } comment.Approved = 3 if err := comment.Update("approved"); err != nil { c.JsonResult(6003, "删除评论失败") } c.JsonResult(0, "ok", comment) } //设置项目私有状态. func (c *ManagerController) PrivatelyOwned() { c.Prepare() status := c.GetString("status") identify := c.GetString("identify") if status != "open" && status != "close" { c.JsonResult(6003, "参数错误") } state := 0 if status == "open" { state = 0 } else { state = 1 } if !c.Member.IsAdministrator() { c.Abort("403") } book, err := models.NewBook().FindByFieldFirst("identify", identify) if err != nil { c.JsonResult(6001, err.Error()) } book.PrivatelyOwned = state logs.Info("", state, status) err = book.Update() if err != nil { logs.Error("PrivatelyOwned => ", err) c.JsonResult(6004, "保存失败") } c.JsonResult(0, "ok") } //附件列表. func (c *ManagerController) AttachList() { c.Prepare() c.TplName = "manager/attach_list.tpl" pageIndex, _ := c.GetInt("page", 1) attachList, totalCount, err := models.NewAttachment().FindToPager(pageIndex, conf.PageSize) if err != nil { c.Abort("500") } if totalCount > 0 { pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() } else { c.Data["PageHtml"] = "" } for _, item := range attachList { p := filepath.Join(conf.WorkingDirectory, item.FilePath) item.IsExist = filetil.FileExists(p) } c.Data["Lists"] = attachList } //附件详情. func (c *ManagerController) AttachDetailed() { c.Prepare() c.TplName = "manager/attach_detailed.tpl" attach_id, _ := strconv.Atoi(c.Ctx.Input.Param(":id")) if attach_id <= 0 { c.Abort("404") } attach, err := models.NewAttachmentResult().Find(attach_id) if err != nil { beego.Error("AttachDetailed => ", err) if err == orm.ErrNoRows { c.Abort("404") } else { c.Abort("500") } } attach.FilePath = filepath.Join(conf.WorkingDirectory, attach.FilePath) attach.HttpPath = conf.URLForWithCdnImage(attach.HttpPath) attach.IsExist = filetil.FileExists(attach.FilePath) c.Data["Model"] = attach } //删除附件. func (c *ManagerController) AttachDelete() { c.Prepare() attachId, _ := c.GetInt("attach_id") if attachId <= 0 { c.Abort("404") } attach, err := models.NewAttachment().Find(attachId) if err != nil { beego.Error("AttachDelete => ", err) c.JsonResult(6001, err.Error()) } if err := attach.Delete(); err != nil { beego.Error("AttachDelete => ", err) c.JsonResult(6002, err.Error()) } c.JsonResult(0, "ok") } //标签列表 func (c *ManagerController) LabelList() { c.Prepare() c.TplName = "manager/label_list.tpl" pageIndex, _ := c.GetInt("page", 1) labels, totalCount, err := models.NewLabel().FindToPager(pageIndex, conf.PageSize) if err != nil { c.ShowErrorPage(50001, err.Error()) } if totalCount > 0 { pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() } else { c.Data["PageHtml"] = "" } c.Data["TotalPages"] = int(math.Ceil(float64(totalCount) / float64(conf.PageSize))) c.Data["Lists"] = labels } //删除标签 func (c *ManagerController) LabelDelete() { labelId, err := strconv.Atoi(c.Ctx.Input.Param(":id")) if err != nil { beego.Error("获取删除标签参数时出错:", err) c.JsonResult(50001, "参数错误") } if labelId <= 0 { c.JsonResult(50001, "参数错误") } label, err := models.NewLabel().FindFirst("label_id", labelId) if err != nil { beego.Error("查询标签时出错:", err) c.JsonResult(50001, "查询标签时出错:"+err.Error()) } if err := label.Delete(); err != nil { c.JsonResult(50002, "删除失败:"+err.Error()) } else { c.JsonResult(0, "ok") } } // 用户组列表 func (c *ManagerController) MemberGroupList() { c.Prepare() c.TplName = "manager/member_group_list.tpl" pageIndex, _ := c.GetInt("page", 1) memberGroupList ,totalCount,err := models.NewMemberGroup().FindByPager(pageIndex,conf.PageSize) if err != nil { c.ShowErrorPage(50001,"获取用户组失败") } if totalCount > 0 { pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() } else { c.Data["PageHtml"] = "" } c.Data["TotalPages"] = int(math.Ceil(float64(totalCount) / float64(conf.PageSize))) b, err := json.Marshal(memberGroupList) if err != nil { c.Data["Result"] = template.JS("[]") } else { c.Data["Result"] = template.JS(string(b)) } } //编辑或添加用户组 func (c *ManagerController) MemberGroupEdit() { c.Prepare() c.TplName = "manager/member_group_edit.tpl" if c.Member.Role != 0 { c.ShowErrorPage(500,"只有超级管理员才能编辑或添加用户组") } groupId,_ := strconv.Atoi(c.Ctx.Input.Param(":id")) memberGroup := models.NewMemberGroup() var err error if c.Ctx.Input.IsPost() { groupId,_ := c.GetInt("group_id",0) groupName := strings.TrimSpace(c.GetString("group_name")) if groupName == "" { if c.Ctx.Input.IsAjax() { c.JsonResult(6002,"用户组名称不能为空") }else{ c.ShowErrorPage(500,"用户组名称不能为空") } } if groupId > 0 { memberGroup,err = models.NewMemberGroup().FindFirst(groupId) if err != nil { beego.Error("查询用户组失败",err) if c.Ctx.Input.IsAjax() { c.JsonResult(6001,"未查到指定的用户组信息") }else{ c.ShowErrorPage(500,"用户组名称不能为空") } } memberGroup.GroupName = groupName memberGroup.ModifyAt = c.Member.MemberId }else{ memberGroup.GroupName = groupName memberGroup.CreateTime = time.Now() memberGroup.CreateAt = c.Member.MemberId } if err := memberGroup.InsertOrUpdate(); err != nil { beego.Error("保存用户组失败 =>",err) c.JsonResult(500,"保存失败") }else{ c.JsonResult(0,"保存成功",memberGroup) } } if groupId > 0 { memberGroup,err = memberGroup.FindFirst(groupId) if err != nil { c.ShowErrorPage(500,"查询用户组失败") } } c.Data["Model"] = memberGroup } //删除用户组 func (c *ManagerController) MemberGroupDelete() { c.Prepare() if c.Member.Role != 0 { c.JsonResult(5001,"只有超级管理员才能删除用户组") } groupId,err := c.GetInt("group_id",0) if err != nil { beego.Error("获取参数失败 =>",err) c.JsonResult(5001,"获取用户组参数失败") } err = models.NewMemberGroup().Delete(groupId) if err != nil { beego.Error("删除用户组失败 =>",err) c.JsonResult(5001,"删除用户组失败") } c.JsonResult(0,"删除成功") } //用户组成员列表 func (c *ManagerController) MemberGroupMemberList() { c.Prepare() c.TplName = "manager/member_group_member_list.tpl" pageIndex, _ := c.GetInt("page", 1) groupId,_ := strconv.Atoi(c.Ctx.Input.Param(":id")) if groupId <= 0 { c.ShowErrorPage(404,"用户组参数不能为空") } memberGroup,err := models.NewMemberGroup().FindFirst(groupId) if err != nil { c.ShowErrorPage(404,"用户组不存在") } memberGroupMemberList ,totalCount,err := models.NewMemberGroupMembers().FindToPager(pageIndex,conf.PageSize,groupId) if err != nil { c.ShowErrorPage(50001,"获取用户组失败") } if totalCount > 0 { pager := pagination.NewPagination(c.Ctx.Request, totalCount, conf.PageSize, c.BaseUrl()) c.Data["PageHtml"] = pager.HtmlPages() } else { c.Data["PageHtml"] = "" } c.Data["TotalPages"] = int(math.Ceil(float64(totalCount) / float64(conf.PageSize))) b, err := json.Marshal(memberGroupMemberList) if err != nil { c.Data["Result"] = template.JS("[]") } else { c.Data["Result"] = template.JS(string(b)) } c.Data["Model"] = memberGroup } //添加用户组成员 func (c *ManagerController) MemberGroupMemberEdit() { c.Prepare() }