Pchen0
/
ic-ctbu-backend


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148
							const API = require("../../../lib/API.js")
const db = require("../../../plugin/DataBase/db.js")
const { BaseStdResponse } = require("../../../BaseStdResponse.js")
const AccessControl = require("../../../lib/AccessControl.js")

function parseBookList(value) {
    if (value === null || value === undefined || value === '') return []
    if (Array.isArray(value)) return value
    try {
        const parsed = JSON.parse(value)
        return Array.isArray(parsed) ? parsed : []
    } catch {
        return []
    }
}

function extractClassName(bookList) {
    if (!Array.isArray(bookList) || bookList.length === 0) return ''
    const book = bookList.find(b => b && b.className)
    return book?.className ?? ''
}

class AdminQxsAccountList extends API {
    constructor() {
        super()
        this.setPath('/Admin/QXS/Account/List')
        this.setMethod('GET')
    }

    async onRequest(req, res) {
        let {
            uuid,
            session,
            username,
            realname,
            email,
            mobile,
            termName,
            className,
            queryTime,
            pagesize,
            current
        } = req.query

        if ([uuid, session, pagesize, current].some(v => v === '' || v === null || v === undefined))
            return res.json({ ...BaseStdResponse.MISSING_PARAMETER })
        if (isNaN(pagesize) || Number(pagesize) <= 0 || isNaN(current) || Number(current) <= 0)
            return res.json({ ...BaseStdResponse.ERR, msg: '参数错误' })

        if (!await AccessControl.checkSession(uuid, session))
            return res.status(401).json({ ...BaseStdResponse.ACCESS_DENIED })

        const permission = await AccessControl.getPermission(uuid)
        if (!permission.includes('admin') && !permission.includes('server') && !permission.includes('service'))
            return res.json({ ...BaseStdResponse.PERMISSION_DENIED })

        const offset = (Number(current) - 1) * Number(pagesize)
        const where = ['1 = 1']
        const params = []
        const countParams = []

        if (username) {
            where.push('qa.username COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%${username}%`)
            countParams.push(`%${username}%`)
        }
        if (realname) {
            where.push('qa.realname COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%${realname}%`)
            countParams.push(`%${realname}%`)
        }
        if (email) {
            where.push('qa.email COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%${email}%`)
            countParams.push(`%${email}%`)
        }
        if (mobile) {
            where.push('qa.mobile COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%${mobile}%`)
            countParams.push(`%${mobile}%`)
        }
        if (termName) {
            where.push('qa.termName COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%${termName}%`)
            countParams.push(`%${termName}%`)
        }
        if (className) {
            where.push('qa.book_list COLLATE utf8mb4_general_ci LIKE (CONVERT(? USING utf8mb4) COLLATE utf8mb4_general_ci)')
            params.push(`%"className"%${className}%`)
            countParams.push(`%"className"%${className}%`)
        }
        if (Array.isArray(queryTime) && queryTime.length === 2) {
            where.push('qa.create_time >= ? AND qa.create_time < ?')
            params.push(queryTime[0], queryTime[1])
            countParams.push(queryTime[0], queryTime[1])
        }

        const whereSql = where.join(' AND ')
        const listSql = `
            SELECT
                qa.id,
                qa.username,
                qa.create_time,
                qa.realname,
                qa.email,
                qa.mobile,
                qa.termName,
                qa.book_list
            FROM qsx_account qa
            WHERE ${whereSql}
            ORDER BY qa.id DESC
            LIMIT ? OFFSET ?
        `
        const countSql = `SELECT COUNT(*) AS total FROM qsx_account qa WHERE ${whereSql}`
        params.push(String(pagesize), String(offset))

        const rows = await db.query(listSql, params)
        const countRows = await db.query(countSql, countParams)
        if (!rows || !countRows) return res.json({ ...BaseStdResponse.DATABASE_ERR })

        const data = rows.map(item => {
            const bookList = parseBookList(item.book_list)
            return {
                id: item.id,
                username: item.username,
                create_time: item.create_time,
                realname: item.realname,
                email: item.email,
                mobile: item.mobile,
                termName: item.termName,
                className: extractClassName(bookList),
                book_count: bookList.length
            }
        })

        return res.json({
            ...BaseStdResponse.OK,
            data,
            pagination: {
                current: Number(current),
                pagesize: Number(pagesize),
                total: countRows[0]?.total || 0
            }
        })
    }
}

module.exports.AdminQxsAccountList = AdminQxsAccountList