feat: 新增授予管理员功能

Author: Eagle233Fake

api/handler/auth.go

@@ -58,9 +58,33 @@ func IsAdmin(c *gin.Context) {
 	var err error
 	var resp *dto.IsAdminResp
 
-	tokenStr, _ := token.ExtractToken(c.Request.Header)
-	c.Set(consts.CtxToken, tokenStr)
+	c.Set(consts.CtxUserID, token.GetUserID(c))
 
 	resp, err = provider.Get().AuthService.IsAdmin(c)
 	PostProcess(c, nil, resp, err)
 }
+
+// GrantAdmin godoc
+// @Summary 授予管理员权限
+// @Description 授予指定用户管理员权限
+// @Tags auth
+// @Accept json
+// @Produce json
+// @Param body body dto.GrantAdminReq true "GrantAdminReq"
+// @Success 200 {object} dto.GrantAdminResp
+// @Router /api/auth/grant_admin [post]
+func GrantAdmin(c *gin.Context) {
+	var err error
+	var req dto.GrantAdminReq
+	var resp *dto.GrantAdminResp
+
+	if err = c.ShouldBindJSON(&req); err != nil {
+		PostProcess(c, &req, nil, err)
+		return
+	}
+
+	c.Set(consts.CtxUserID, token.GetUserID(c))
+
+	resp, err = provider.Get().AuthService.GrantAdmin(c, &req)
+	PostProcess(c, &req, resp, err)
+}

api/router/register.go

@@ -44,6 +44,7 @@ func SetupRoutes() *gin.Engine {
 	{
 		authGroup.POST("/sign_in", handler.SignIn) // 初始化时的登录、授权
 		authGroup.GET("/is_admin", handler.IsAdmin)
+		authGroup.POST("/grant_admin", handler.GrantAdmin)
 	}
 
 	// LikeApi

application/dto/auth.go

@@ -34,3 +34,14 @@ type IsAdminResp struct {
 	*Resp
 	IsAdmin bool `json:"isAdmin"`
 }
+
+// GrantAdminReq 授予管理员权限的请求体
+type GrantAdminReq struct {
+	UserID     string `json:"userId"`
+	VerifyCode string `json:"verifyCode"`
+}
+
+// GrantAdminResp 授予管理员权限的响应体
+type GrantAdminResp struct {
+	*Resp
+}

application/service/auth.go

@@ -38,6 +38,7 @@ var _ IAuthService = (*AuthService)(nil)
 type IAuthService interface {
 	SignIn(ctx context.Context, req *dto.SignInReq) (resp *dto.SignInResp, err error)
 	IsAdmin(ctx context.Context) (resp *dto.IsAdminResp, err error)
+	GrantAdmin(ctx context.Context, req *dto.GrantAdminReq) (resp *dto.GrantAdminResp, err error)
 }
 
 type AuthService struct {
@@ -150,3 +151,33 @@ func (s *AuthService) IsAdmin(ctx context.Context) (resp *dto.IsAdminResp, err e
 		Resp:    dto.Success(),
 	}, nil
 }
+
+func (s *AuthService) GrantAdmin(ctx context.Context, req *dto.GrantAdminReq) (resp *dto.GrantAdminResp, err error) {
+	// 鉴权
+	userId, ok := ctx.Value(consts.CtxUserID).(string)
+	if !ok || userId == "" {
+		return nil, errorx.New(errno.ErrUserNotLogin)
+	}
+
+	// 判断用户是否为管理员
+	admin, err := s.UserRepo.IsAdminByID(ctx, req.UserID)
+	if err != nil {
+		return nil, errorx.WrapByCode(err, errno.ErrUserFindFailed,
+			errorx.KV("key", consts.CtxUserID), errorx.KV("value", req.UserID),
+		)
+	}
+	if admin {
+		return nil, errorx.New(errno.ErrUserAlreadyAdmin, errorx.KV("id", req.UserID))
+	}
+
+	// 添加管理员
+	if err = s.UserRepo.Update(ctx, &model.User{ID: req.UserID, Admin: true}); err != nil {
+		return nil, errorx.WrapByCode(err, errno.ErrUserUpdateFailed,
+			errorx.KV("key", consts.CtxUserID), errorx.KV("value", req.UserID),
+		)
+	}
+
+	return &dto.GrantAdminResp{
+		Resp: dto.Success(),
+	}, nil
+}

docs/docs.go

@@ -29,6 +29,40 @@ const docTemplate = `{
     "host": "{{.Host}}",
     "basePath": "{{.BasePath}}",
     "paths": {
+        "/api/auth/grant_admin": {
+            "post": {
+                "description": "授予指定用户管理员权限",
+                "consumes": [
+                    "application/json"
+                ],
+                "produces": [
+                    "application/json"
+                ],
+                "tags": [
+                    "auth"
+                ],
+                "summary": "授予管理员权限",
+                "parameters": [
+                    {
+                        "description": "GrantAdminReq",
+                        "name": "body",
+                        "in": "body",
+                        "required": true,
+                        "schema": {
+                            "$ref": "#/definitions/dto.GrantAdminReq"
+                        }
+                    }
+                ],
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/dto.GrantAdminResp"
+                        }
+                    }
+                }
+            }
+        },
         "/api/auth/is_admin": {
             "get": {
                 "description": "判断当前用户是否具有管理员权限",
@@ -1191,6 +1225,28 @@ const docTemplate = `{
                 }
             }
         },
+        "dto.GrantAdminReq": {
+            "type": "object",
+            "properties": {
+                "userId": {
+                    "type": "string"
+                },
+                "verifyCode": {
+                    "type": "string"
+                }
+            }
+        },
+        "dto.GrantAdminResp": {
+            "type": "object",
+            "properties": {
+                "code": {
+                    "type": "integer"
+                },
+                "msg": {
+                    "type": "string"
+                }
+            }
+        },
         "dto.IsAdminResp": {
             "type": "object",
             "properties": {

docs/swagger.json

@@ -8,6 +8,40 @@
     },
     "basePath": "/",
     "paths": {
+        "/api/auth/grant_admin": {
+            "post": {
+                "description": "授予指定用户管理员权限",
+                "consumes": [
+                    "application/json"
+                ],
+                "produces": [
+                    "application/json"
+                ],
+                "tags": [
+                    "auth"
+                ],
+                "summary": "授予管理员权限",
+                "parameters": [
+                    {
+                        "description": "GrantAdminReq",
+                        "name": "body",
+                        "in": "body",
+                        "required": true,
+                        "schema": {
+                            "$ref": "#/definitions/dto.GrantAdminReq"
+                        }
+                    }
+                ],
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/dto.GrantAdminResp"
+                        }
+                    }
+                }
+            }
+        },
         "/api/auth/is_admin": {
             "get": {
                 "description": "判断当前用户是否具有管理员权限",
@@ -1170,6 +1204,28 @@
                 }
             }
         },
+        "dto.GrantAdminReq": {
+            "type": "object",
+            "properties": {
+                "userId": {
+                    "type": "string"
+                },
+                "verifyCode": {
+                    "type": "string"
+                }
+            }
+        },
+        "dto.GrantAdminResp": {
+            "type": "object",
+            "properties": {
+                "code": {
+                    "type": "integer"
+                },
+                "msg": {
+                    "type": "string"
+                }
+            }
+        },
         "dto.IsAdminResp": {
             "type": "object",
             "properties": {

docs/swagger.yaml

@@ -316,6 +316,20 @@ definitions:
       msg:
         type: string
     type: object
+  dto.GrantAdminReq:
+    properties:
+      userId:
+        type: string
+      verifyCode:
+        type: string
+    type: object
+  dto.GrantAdminResp:
+    properties:
+      code:
+        type: integer
+      msg:
+        type: string
+    type: object
   dto.IsAdminResp:
     properties:
       code:
@@ -518,6 +532,28 @@ info:
   title: Meowpick Backend API
   version: "1.0"
 paths:
+  /api/auth/grant_admin:
+    post:
+      consumes:
+      - application/json
+      description: 授予指定用户管理员权限
+      parameters:
+      - description: GrantAdminReq
+        in: body
+        name: body
+        required: true
+        schema:
+          $ref: '#/definitions/dto.GrantAdminReq'
+      produces:
+      - application/json
+      responses:
+        "200":
+          description: OK
+          schema:
+            $ref: '#/definitions/dto.GrantAdminResp'
+      summary: 授予管理员权限
+      tags:
+      - auth
   /api/auth/is_admin:
     get:
       description: 判断当前用户是否具有管理员权限

infra/config/config.go

@@ -45,9 +45,10 @@ type Config struct {
 		URL string
 		DB  string
 	}
-	Cache cache.CacheConf
-	Redis *redis.RedisConf
-	WeApp WeApp
+	Cache         cache.CacheConf
+	Redis         *redis.RedisConf
+	WeApp         WeApp
+	AdminGrantKey string
 }
 
 func NewConfig() (*Config, error) {
@@ -70,4 +71,4 @@ func NewConfig() (*Config, error) {
 
 func GetConfig() *Config {
 	return config
-}
+}

provider/wire_gen.go

@@ -25,6 +25,8 @@ const (
 	ErrUserNotFound     = 100000004
 	ErrUserInsertFailed = 100000005
 	ErrUserNotOwner     = 100000006
+	ErrUserAlreadyAdmin = 100000007
+	ErrUserUpdateFailed = 100000008
 )
 
 func init() {
@@ -58,4 +60,14 @@ func init() {
 		"user not owner: {id}",
 		code.WithAffectStability(false),
 	)
+	code.Register(
+		ErrUserAlreadyAdmin,
+		"user already admin: {id}",
+		code.WithAffectStability(false),
+	)
+	code.Register(
+		ErrUserUpdateFailed,
+		"failed to update user: {id}",
+		code.WithAffectStability(false),
+	)
 }