const API = require("../../../lib/API"); const db = require("../../../plugin/DataBase/db"); const AccessControl = require("../../../lib/AccessControl"); const { BaseStdResponse } = require("../../../BaseStdResponse"); class DeleteAccount extends API { constructor() { super(); this.setPath('/Lepao/Account') this.setMethod('DELETE') } async onRequest(req, res) { let { uuid, session, id } = req.body if ([uuid, session, id].some(value => value === '' || value === null || value === undefined)) return res.json({ ...BaseStdResponse.MISSING_PARAMETER }) // 检查 session if (!await AccessControl.checkSession(uuid, session)) return res.status(401).json({ ...BaseStdResponse.ACCESS_DENIED }) let selectSql = 'SELECT create_user FROM lepao_account WHERE id = ?' let selectRows = await db.query(selectSql, [id]) if (!selectRows || selectRows.length === 0) return res.json({ ...BaseStdResponse.ERR, msg: '解绑账号失败!未找到账户信息' }) if (selectRows[0].create_user !== uuid) { let permission = await AccessControl.getPermission(uuid) if (!permission.includes("admin") && !permission.includes("service")) return res.json({ ...BaseStdResponse.ERR, msg: '解绑账号失败!未找到账户信息' }) } let sql = 'DELETE FROM lepao_account WHERE id = ?' let r = await db.query(sql, [id]) try { if (r && r.affectedRows > 0) { res.json({ ...BaseStdResponse.OK }) } else { return res.json({ ...BaseStdResponse.ERR, msg: '解绑账号失败!数据库错误' }) } } catch (err) { this.logger.error(`解绑账号失败!${err.stack}`) res.json({ ...BaseStdResponse.ERR, msg: "解绑账号失败!", }); } } } module.exports.DeleteAccount = DeleteAccount