zzy/zzyxyz_go_api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(bookmark): 添加 401 和 403 响应引用并完善错误定义

Browse Source 
在 bookmark.yaml 配置文件中,为多个接口路径添加了 '401' 和 '403' 状态码的响应引用,
分别指向 components 中定义的 Unauthorized 和 Forbidden 响应。同时在 components
部分补充了 Forbidden 响应的定义,增强了 API 文档的完整性与规范性。

feat(user_np): 新增用户信息接口与基础错误结构定义

在 user_np.yaml 中新增了 /auth/info 路径下的 GET 和 PUT 接口,用于获取和保存用户信息。
同时,在 components 中定义了 ServerInternalError 响应和 Error 结构体,统一错误返回格式,
提升接口一致性与可维护性。

feat(vfs): 调整内容类型为 text/plain 并增强节点名称校验逻辑

将 vfs.yaml 中涉及二进制流传输的内容类型由 application/octet-stream 修改为 text/plain,
简化数据处理方式。同时在 vfs.go 模型中新增 CheckNameValid 方法,用于校验节点名称合法性,
防止非法字符(如斜杠)造成路径问题。

refactor(bookmark): 优化 API Key 验证逻辑并暴露更新时间字段

重构 BookMarksImpl 的 validateApiKey 函数,简化认证判断流程,并将 adminToken 从指针改为字符串常量。
此外,在 bookmarkModel2Res 函数中新增 UpdatedAt 字段,使书签响应包含更新时间信息。

feat(user_np): 实现用户信息相关接口占位函数

在 UserNPImpl 中新增 GetUserInfo 和 SaveUserInfo 两个方法的占位实现,为后续业务逻辑开发做好准备。

refactor(vfs): 使用文本请求体并加强服务节点操作校验

修改 vfs_impl.go 中读取请求体的方式,由 io.Reader 改为直接解引用文本内容,提升处理效率。
更新 CreateVFSNode、GetVFSNode 和 UpdateVFSNode 方法中对请求体和响应体的处理逻辑,
统一使用文本格式,增强代码一致性与健壮性。

feat(vfs): 为书签代理服务添加认证 Token 支持

在 vfs_bookmark.go 中为 VfsBookMarkService 结构体增加 token 字段,并在调用 bookmark 服务各接口时,
通过 HTTP 请求头设置 X-BookMark-Token,确保服务间通信的安全性与权限控制。
This commit is contained in:
zzy
2025-09-26 14:42:22 +08:00
parent 72bd01d23b
commit 9cab95c0f7
8 changed files with 160 additions and 65 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
config/bookmark/bookmark.yaml
View File

@ -48,6 +48,10 @@ paths:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/Error' $ref: '#/components/schemas/Error'
'401':
$ref: '#/components/responses/Unauthorized'
'403':
$ref: '#/components/responses/Forbidden'
'500': '500':
$ref: '#/components/responses/ServerInternalError' $ref: '#/components/responses/ServerInternalError'
@ -69,6 +73,12 @@ paths:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/Error' $ref: '#/components/schemas/Error'
'401':
$ref: '#/components/responses/Unauthorized'
'403':
$ref: '#/components/responses/Forbidden'
'500':
$ref: '#/components/responses/ServerInternalError'
put: put:
summary: 更新书签 summary: 更新书签
@ -100,6 +110,10 @@ paths:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/Error' $ref: '#/components/schemas/Error'
'401':
$ref: '#/components/responses/Unauthorized'
'403':
$ref: '#/components/responses/Forbidden'
'500': '500':
$ref: '#/components/responses/ServerInternalError' $ref: '#/components/responses/ServerInternalError'
@ -117,6 +131,10 @@ paths:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/Error' $ref: '#/components/schemas/Error'
'401':
$ref: '#/components/responses/Unauthorized'
'403':
$ref: '#/components/responses/Forbidden'
'500': '500':
$ref: '#/components/responses/ServerInternalError' $ref: '#/components/responses/ServerInternalError'
@ -139,6 +157,12 @@ components:
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/Error' $ref: '#/components/schemas/Error'
Forbidden:
description: 无权限
content:
application/json:
schema:
$ref: '#/components/schemas/Error'
schemas: schemas:
BookmarkRequest: BookmarkRequest:
type: object type: object

55
config/user_np/user_np.yaml
View File

@ -72,7 +72,46 @@ paths:
'401': '401':
description: 认证失败 description: 认证失败
/auth/info:
get:
summary: 获取用户信息
description: 获取用户信息 json object
operationId: getUserInfo
tags: [auth]
responses:
'200':
description: 用户信息
content:
application/json:
schema:
type: object
'500':
$ref: '#/components/responses/ServerInternalError'
put:
summary: 保存用户信息
description: 保存用户信息 json object
operationId: saveUserInfo
tags: [auth]
requestBody:
required: true
content:
application/json:
schema:
type: object
responses:
'200':
description: 保存成功
'500':
$ref: '#/components/responses/ServerInternalError'
components: components:
responses:
ServerInternalError:
description: 服务器内部错误
content:
application/json:
schema:
$ref: '#/components/schemas/Error'
schemas: schemas:
LoginRequest: LoginRequest:
type: object type: object
@ -121,6 +160,22 @@ components:
user_name: user_name:
type: string type: string
Error:
type: object
description: 错误信息
properties:
errtype:
type: string
example: "ParameterError"
description: 错误类型
message:
example: "传递的第一个参数错误"
type: string
description: 错误信息
required:
- errtype
- message
securitySchemes: securitySchemes:
ApiKeyAuth: ApiKeyAuth:
type: apiKey type: apiKey

15
config/vfs/vfs.yaml
View File

@ -104,11 +104,9 @@ paths:
type: array type: array
items: items:
$ref: '#/components/schemas/VFSDirectoryEntry' $ref: '#/components/schemas/VFSDirectoryEntry'
application/octet-stream: text/plain:
schema: schema:
description: 文件或服务的二进制内容
type: string type: string
format: binary
'400': '400':
$ref: '#/components/responses/ParameterError' $ref: '#/components/responses/ParameterError'
'401': '401':
@ -128,20 +126,16 @@ paths:
requestBody: requestBody:
required: false required: false
content: content:
application/octet-stream: text/plain:
schema: schema:
description: 文件或服务的二进制内容
type: string type: string
format: byte
responses: responses:
'201': '201':
description: 创建成功 description: 创建成功
content: content:
application/octet-stream: text/plain:
schema: schema:
description: 文件或服务的二进制内容
type: string type: string
format: byte
application/json: application/json:
schema: schema:
$ref: '#/components/schemas/VFSNodeResponse' $ref: '#/components/schemas/VFSNodeResponse'
@ -177,6 +171,9 @@ paths:
type: string type: string
description: 目的文件夹路径 / 文件名路径 description: 目的文件夹路径 / 文件名路径
example: "/home/" example: "/home/"
text/plain:
schema:
type: string
responses: responses:
'200': '200':
description: 操作成功 description: 操作成功

11
internal/bookmarks/bookmark.go
View File

@ -17,14 +17,10 @@ type BookMarksImpl struct {
db *gorm.DB db *gorm.DB
} }
var adminToken *string var adminToken string = "random_token"
func validateApiKey(apiKey string) bool { func validateApiKey(apiKey string) bool {
if adminToken != nil && apiKey == *adminToken { return apiKey == adminToken
return true
}
return false
} }
func AuthMiddleware() api.MiddlewareFunc { func AuthMiddleware() api.MiddlewareFunc {
@ -35,7 +31,7 @@ func AuthMiddleware() api.MiddlewareFunc {
apiKey := c.GetHeader("X-BookMark-Token") apiKey := c.GetHeader("X-BookMark-Token")
// 验证 API Key您需要实现这个逻辑 // 验证 API Key您需要实现这个逻辑
if apiKey == "" || !validateApiKey(apiKey) { if !validateApiKey(apiKey) {
c.JSON(http.StatusUnauthorized, api.Error{ c.JSON(http.StatusUnauthorized, api.Error{
Errtype: "Unauthorized", Errtype: "Unauthorized",
Message: "Invalid or missing API key", Message: "Invalid or missing API key",
@ -232,6 +228,7 @@ func bookmarkModel2Res(bookmark models.Bookmark) api.BookmarkResponse {
Detail: bookmark.Detail, Detail: bookmark.Detail,
Description: bookmark.Description, Description: bookmark.Description,
CreatedAt: bookmark.CreatedAt, CreatedAt: bookmark.CreatedAt,
UpdatedAt: bookmark.UpdatedAt,
} }
} }

10
internal/bookmarks/user_np.go
View File

@ -205,5 +205,15 @@ func (u *UserNPImpl) PutAuthPassword(c *gin.Context) {
c.JSON(http.StatusOK, nil) c.JSON(http.StatusOK, nil)
} }
// GetUserInfo implements server.ServerInterface.
func (u *UserNPImpl) GetUserInfo(c *gin.Context) {
panic("unimplemented")
}
// SaveUserInfo implements server.ServerInterface.
func (u *UserNPImpl) SaveUserInfo(c *gin.Context) {
panic("unimplemented")
}
// Make sure we conform to ServerInterface // Make sure we conform to ServerInterface
var _ api.ServerInterface = (*UserNPImpl)(nil) var _ api.ServerInterface = (*UserNPImpl)(nil)

8
internal/vfs/models/vfs.go
View File

@ -7,6 +7,7 @@ import (
"errors" "errors"
"fmt" "fmt"
"path" "path"
"strings"
"time" "time"
_ "github.com/mattn/go-sqlite3" _ "github.com/mattn/go-sqlite3"
@ -438,6 +439,13 @@ func (v *Vfs) MoveToPath(node *VfsNode, destPath string) error {
return nil return nil
} }
func (v *Vfs) CheckNameValid(name string) error {
if name == "" || strings.Contains(name, "/") {
return fmt.Errorf("invalid node name")
}
return nil
}
func (v *Vfs) CreateVFSNode(p *VfsNode) error { func (v *Vfs) CreateVFSNode(p *VfsNode) error {
_, err := v.DB.Exec(` _, err := v.DB.Exec(`
INSERT INTO vfs_nodes (name, parent_id, type, created_at, updated_at) INSERT INTO vfs_nodes (name, parent_id, type, created_at, updated_at)

59
internal/vfs/vfs_impl.go
View File

@ -1,10 +1,8 @@
package vfs package vfs
import ( import (
"bytes"
"context" "context"
"fmt" "fmt"
"io"
"log" "log"
"net/http" "net/http"
@ -12,6 +10,8 @@ import (
"git.zzyxyz.com/zzy/zzyxyz_go_api/internal/vfs/models" "git.zzyxyz.com/zzy/zzyxyz_go_api/internal/vfs/models"
) )
// TODO 重命名名称冲突以及合法名称检测以及JSONBody and TextBody的检测
// CreateVFSNode implements server.StrictServerInterface. // CreateVFSNode implements server.StrictServerInterface.
func (v *VfsImpl) CreateVFSNode(ctx context.Context, request api.CreateVFSNodeRequestObject) (api.CreateVFSNodeResponseObject, error) { func (v *VfsImpl) CreateVFSNode(ctx context.Context, request api.CreateVFSNodeRequestObject) (api.CreateVFSNodeResponseObject, error) {
// 解析路径组件 // 解析路径组件
@ -27,18 +27,7 @@ func (v *VfsImpl) CreateVFSNode(ctx context.Context, request api.CreateVFSNodeRe
// 读取请求体数据 // 读取请求体数据
// FIXME: 使用stream可能更好 // FIXME: 使用stream可能更好
var content []byte var content []byte = []byte(*request.Body)
if request.Body != nil {
content, err = io.ReadAll(request.Body)
if err != nil {
return api.CreateVFSNode500JSONResponse{
ServerInternalErrorJSONResponse: api.ServerInternalErrorJSONResponse{
Errtype: api.ErrorErrtypeInternalServerError,
Message: "Failed to read request body: " + err.Error(),
},
}, nil
}
}
// 创建节点 (可能需要传递content数据到vfs层) // 创建节点 (可能需要传递content数据到vfs层)
node, err := v.vfs.CreateNodeByComponents(parentPath, nodeName, nodeType) node, err := v.vfs.CreateNodeByComponents(parentPath, nodeName, nodeType)
@ -56,18 +45,21 @@ func (v *VfsImpl) CreateVFSNode(ctx context.Context, request api.CreateVFSNodeRe
// 这里可能需要将content传递给服务处理 // 这里可能需要将content传递给服务处理
if result, err := v.StrictProxy2Service(http.MethodPost, content, node); err != nil { if result, err := v.StrictProxy2Service(http.MethodPost, content, node); err != nil {
// 回滚操作 // 回滚操作
err := v.vfs.DeleteVFSNode(node) delete_err := v.vfs.DeleteVFSNode(node)
if err != nil { log.Printf("service node: %s, err %s", node.Name, err.Error())
if delete_err != nil {
// FIXME: 需要解决这种原子性 // FIXME: 需要解决这种原子性
return nil, fmt.Errorf("consistency error: %w", err) return nil, fmt.Errorf("consistency error: %w", err)
} }
return nil, err return api.CreateVFSNode500JSONResponse{
ServerInternalErrorJSONResponse: api.ServerInternalErrorJSONResponse{
Errtype: api.ErrorErrtypeServiceProxyError,
Message: err.Error(),
},
}, nil
} else { } else {
// 返回二进制数据响应 // 返回二进制数据响应
return api.CreateVFSNode201ApplicationoctetStreamResponse{ return api.CreateVFSNode201TextResponse(result), nil
Body: bytes.NewReader(result),
ContentLength: int64(len(result)),
}, nil
} }
} }
@ -217,10 +209,7 @@ func (v *VfsImpl) GetVFSNode(ctx context.Context, request api.GetVFSNodeRequestO
}, nil }, nil
} }
return api.GetVFSNode200ApplicationoctetStreamResponse{ return api.GetVFSNode200TextResponse(result), nil
Body: bytes.NewReader(result),
ContentLength: int64(len(result)),
}, nil
default: default:
return api.GetVFSNode400JSONResponse{ return api.GetVFSNode400JSONResponse{
@ -249,7 +238,7 @@ func (v *VfsImpl) UpdateVFSNode(ctx context.Context, request api.UpdateVFSNodeRe
switch request.Params.Op { switch request.Params.Op {
case api.Rename: case api.Rename:
// 检查请求体 // 检查请求体
if request.Body == nil { if request.JSONBody == nil {
return api.UpdateVFSNode400JSONResponse{ return api.UpdateVFSNode400JSONResponse{
ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{ ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{
Errtype: api.ErrorErrtypeParameterError, Errtype: api.ErrorErrtypeParameterError,
@ -258,12 +247,12 @@ func (v *VfsImpl) UpdateVFSNode(ctx context.Context, request api.UpdateVFSNodeRe
}, nil }, nil
} }
newName := string(*request.Body) newName := string(*request.JSONBody)
if newName == "" { if err := v.vfs.CheckNameValid(newName); err != nil {
return api.UpdateVFSNode400JSONResponse{ return api.UpdateVFSNode400JSONResponse{
ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{ ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{
Errtype: api.ErrorErrtypeParameterError, Errtype: api.ErrorErrtypeParameterError,
Message: "New name cannot be empty", Message: err.Error(),
}, },
}, nil }, nil
} }
@ -297,11 +286,9 @@ func (v *VfsImpl) UpdateVFSNode(ctx context.Context, request api.UpdateVFSNodeRe
}, nil }, nil
} }
// FIXME: 性能问题 // 读取请求体数据
var content []byte // FIXME: 使用stream可能更好
if request.Body != nil { var content []byte = []byte(*request.TextBody)
content = []byte(*request.Body)
}
// 对于服务节点,通过代理发送变更 // 对于服务节点,通过代理发送变更
if node.Type == models.VfsNodeTypeService { if node.Type == models.VfsNodeTypeService {
@ -327,7 +314,7 @@ func (v *VfsImpl) UpdateVFSNode(ctx context.Context, request api.UpdateVFSNodeRe
case api.Move: case api.Move:
// FIXME: 需要添加权限控制 // FIXME: 需要添加权限控制
if request.Body == nil { if request.JSONBody == nil {
return api.UpdateVFSNode400JSONResponse{ return api.UpdateVFSNode400JSONResponse{
ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{ ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{
Errtype: api.ErrorErrtypeParameterError, Errtype: api.ErrorErrtypeParameterError,
@ -336,7 +323,7 @@ func (v *VfsImpl) UpdateVFSNode(ctx context.Context, request api.UpdateVFSNodeRe
}, nil }, nil
} }
targetPath := string(*request.Body) targetPath := string(*request.JSONBody)
if targetPath == "" { if targetPath == "" {
return api.UpdateVFSNode400JSONResponse{ return api.UpdateVFSNode400JSONResponse{
ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{ ParameterErrorJSONResponse: api.ParameterErrorJSONResponse{

39
internal/vfs/vfsdriver/vfs_bookmark.go
View File

@ -6,6 +6,7 @@ import (
"context" "context"
"encoding/json" "encoding/json"
"fmt" "fmt"
"net/http"
api "git.zzyxyz.com/zzy/zzyxyz_go_api/gen/bookmarks_client" api "git.zzyxyz.com/zzy/zzyxyz_go_api/gen/bookmarks_client"
"git.zzyxyz.com/zzy/zzyxyz_go_api/internal/vfs" "git.zzyxyz.com/zzy/zzyxyz_go_api/internal/vfs"
@ -14,6 +15,7 @@ import (
type VfsBookMarkService struct { type VfsBookMarkService struct {
client *api.ClientWithResponses client *api.ClientWithResponses
token string
} }
func NewVfsBookMarkService(serverURL string) (*vfs.ProxyEntry, error) { func NewVfsBookMarkService(serverURL string) (*vfs.ProxyEntry, error) {
@ -25,7 +27,10 @@ func NewVfsBookMarkService(serverURL string) (*vfs.ProxyEntry, error) {
ret := vfs.ProxyEntry{ ret := vfs.ProxyEntry{
Name: "bookmark", Name: "bookmark",
MatchExt: "bk", MatchExt: "bk",
Proxy: &VfsBookMarkService{client: client}, Proxy: &VfsBookMarkService{
client: client,
token: "random_token",
},
} }
return &ret, nil return &ret, nil
} }
@ -41,7 +46,10 @@ func (v *VfsBookMarkService) Create(servicePath string, node *models.VfsNode, da
} }
// 调用 bookmark 服务创建书签 // 调用 bookmark 服务创建书签
resp, err := v.client.CreateBookmarkWithResponse(ctx, int64(node.ID), req) resp, err := v.client.CreateBookmarkWithResponse(ctx, int64(node.ID), req, func(ctx context.Context, req *http.Request) error {
req.Header.Set("X-BookMark-Token", v.token)
return nil
})
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -64,7 +72,7 @@ func (v *VfsBookMarkService) Create(servicePath string, node *models.VfsNode, da
return nil, fmt.Errorf("server error: %s", resp.JSON500.Message) return nil, fmt.Errorf("server error: %s", resp.JSON500.Message)
} }
return nil, fmt.Errorf("unknown error") return nil, fmt.Errorf("unknown error: %s %s", resp.HTTPResponse.Status, resp.Body)
} }
// Delete implements ServiceProxy. // Delete implements ServiceProxy.
@ -72,7 +80,10 @@ func (v *VfsBookMarkService) Delete(servicePath string, node *models.VfsNode) er
ctx := context.Background() ctx := context.Background()
// 调用 bookmark 服务删除书签 // 调用 bookmark 服务删除书签
resp, err := v.client.DeleteBookmarkWithResponse(ctx, int64(node.ID)) resp, err := v.client.DeleteBookmarkWithResponse(ctx, int64(node.ID), func(ctx context.Context, req *http.Request) error {
req.Header.Set("X-BookMark-Token", v.token)
return nil
})
if err != nil { if err != nil {
return err return err
} }
@ -99,7 +110,10 @@ func (v *VfsBookMarkService) Get(servicePath string, node *models.VfsNode) ([]by
ctx := context.Background() ctx := context.Background()
// 调用 bookmark 服务获取书签 // 调用 bookmark 服务获取书签
resp, err := v.client.GetBookmarkWithResponse(ctx, int64(node.ID)) resp, err := v.client.GetBookmarkWithResponse(ctx, int64(node.ID), func(ctx context.Context, req *http.Request) error {
req.Header.Set("X-BookMark-Token", v.token)
return nil
})
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -121,11 +135,6 @@ func (v *VfsBookMarkService) Get(servicePath string, node *models.VfsNode) ([]by
return nil, fmt.Errorf("unknown error") return nil, fmt.Errorf("unknown error")
} }
// GetName implements ServiceProxy.
func (v *VfsBookMarkService) GetName() string {
return "bookmark"
}
// Update implements ServiceProxy. // Update implements ServiceProxy.
func (v *VfsBookMarkService) Update(servicePath string, node *models.VfsNode, data []byte) error { func (v *VfsBookMarkService) Update(servicePath string, node *models.VfsNode, data []byte) error {
ctx := context.Background() ctx := context.Background()
@ -137,7 +146,10 @@ func (v *VfsBookMarkService) Update(servicePath string, node *models.VfsNode, da
} }
// 调用 bookmark 服务更新书签 // 调用 bookmark 服务更新书签
resp, err := v.client.UpdateBookmarkWithResponse(ctx, int64(node.ID), req) resp, err := v.client.UpdateBookmarkWithResponse(ctx, int64(node.ID), req, func(ctx context.Context, req *http.Request) error {
req.Header.Set("X-BookMark-Token", v.token)
return nil
})
if err != nil { if err != nil {
return err return err
} }
@ -163,4 +175,9 @@ func (v *VfsBookMarkService) Update(servicePath string, node *models.VfsNode, da
return fmt.Errorf("unknown error") return fmt.Errorf("unknown error")
} }
// GetName implements ServiceProxy.
func (v *VfsBookMarkService) GetName() string {
return "bookmark"
}
var _ vfs.ServiceProxy = (*VfsBookMarkService)(nil) var _ vfs.ServiceProxy = (*VfsBookMarkService)(nil)