323 lines
9.3 KiB
Go
323 lines
9.3 KiB
Go
|
package handlers
|
|||
|
|
|
|||
|
|
import (
|
|||
|
|
"encoding/json"
|
|||
|
|
"strconv"
|
|||
|
|
"time"
|
|||
|
|
"tyapi-server/internal/application/api"
|
|||
|
|
"tyapi-server/internal/application/api/commands"
|
|||
|
|
"tyapi-server/internal/application/api/dto"
|
|||
|
|
"tyapi-server/internal/shared/crypto"
|
|||
|
|
"tyapi-server/internal/shared/interfaces"
|
|||
|
|
|
|||
|
|
"github.com/gin-gonic/gin"
|
|||
|
|
"go.uber.org/zap"
|
|||
|
|
)
|
|||
|
|
|
|||
|
|
// ApiHandler API调用HTTP处理器
|
|||
|
|
type ApiHandler struct {
|
|||
|
|
appService api.ApiApplicationService
|
|||
|
|
responseBuilder interfaces.ResponseBuilder
|
|||
|
|
validator interfaces.RequestValidator
|
|||
|
|
logger *zap.Logger
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// NewApiHandler 创建API调用HTTP处理器
|
|||
|
|
func NewApiHandler(
|
|||
|
|
appService api.ApiApplicationService,
|
|||
|
|
responseBuilder interfaces.ResponseBuilder,
|
|||
|
|
validator interfaces.RequestValidator,
|
|||
|
|
logger *zap.Logger,
|
|||
|
|
) *ApiHandler {
|
|||
|
|
return &ApiHandler{
|
|||
|
|
appService: appService,
|
|||
|
|
responseBuilder: responseBuilder,
|
|||
|
|
validator: validator,
|
|||
|
|
logger: logger,
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// HandleApiCall 统一API调用入口
|
|||
|
|
// @Summary API调用
|
|||
|
|
// @Description 统一API调用入口,参数加密传输
|
|||
|
|
// @Tags API调用
|
|||
|
|
// @Accept json
|
|||
|
|
// @Produce json
|
|||
|
|
// @Param request body commands.ApiCallCommand true "API调用请求"
|
|||
|
|
// @Success 200 {object} dto.ApiCallResponse "调用成功"
|
|||
|
|
// @Failure 400 {object} dto.ApiCallResponse "请求参数错误"
|
|||
|
|
// @Failure 401 {object} dto.ApiCallResponse "未授权"
|
|||
|
|
// @Failure 429 {object} dto.ApiCallResponse "请求过于频繁"
|
|||
|
|
// @Failure 500 {object} dto.ApiCallResponse "服务器内部错误"
|
|||
|
|
// @Router /api/v1/:api_name [post]
|
|||
|
|
func (h *ApiHandler) HandleApiCall(c *gin.Context) {
|
|||
|
|
// 1. 基础参数校验
|
|||
|
|
accessId := c.GetHeader("Access-Id")
|
|||
|
|
if accessId == "" {
|
|||
|
|
response := dto.NewErrorResponse(1005, "缺少Access-Id", "")
|
|||
|
|
c.JSON(200, response)
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 2. 绑定和校验请求参数
|
|||
|
|
var cmd commands.ApiCallCommand
|
|||
|
|
cmd.ClientIP = c.ClientIP()
|
|||
|
|
cmd.AccessId = accessId
|
|||
|
|
cmd.ApiName = c.Param("api_name")
|
|||
|
|
if err := h.validator.BindAndValidate(c, &cmd); err != nil {
|
|||
|
|
response := dto.NewErrorResponse(1003, "请求参数结构不正确", "")
|
|||
|
|
c.JSON(200, response)
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 3. 调用应用服务
|
|||
|
|
transactionId, encryptedResp, err := h.appService.CallApi(c.Request.Context(), &cmd)
|
|||
|
|
if err != nil {
|
|||
|
|
// 根据错误类型返回对应的错误码
|
|||
|
|
errorCode := api.GetErrorCode(err)
|
|||
|
|
response := dto.NewErrorResponse(errorCode, err.Error(), transactionId)
|
|||
|
|
c.JSON(200, response) // API调用接口统一返回200状态码
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 4. 返回成功响应
|
|||
|
|
response := dto.NewSuccessResponse(transactionId, encryptedResp)
|
|||
|
|
c.JSON(200, response)
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// GetUserApiKeys 获取用户API密钥
|
|||
|
|
func (h *ApiHandler) GetUserApiKeys(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
result, err := h.appService.GetUserApiKeys(c.Request.Context(), userID)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("获取用户API密钥失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, err.Error())
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
h.responseBuilder.Success(c, result, "获取API密钥成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// GetUserWhiteList 获取用户白名单列表
|
|||
|
|
func (h *ApiHandler) GetUserWhiteList(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
result, err := h.appService.GetUserWhiteList(c.Request.Context(), userID)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("获取用户白名单失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, err.Error())
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
h.responseBuilder.Success(c, result, "获取白名单成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// AddWhiteListIP 添加白名单IP
|
|||
|
|
func (h *ApiHandler) AddWhiteListIP(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
var req dto.WhiteListRequest
|
|||
|
|
if err := c.ShouldBindJSON(&req); err != nil {
|
|||
|
|
h.responseBuilder.BadRequest(c, "请求参数错误")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
err := h.appService.AddWhiteListIP(c.Request.Context(), userID, req.IPAddress)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("添加白名单IP失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, err.Error())
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
h.responseBuilder.Success(c, nil, "添加白名单IP成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// DeleteWhiteListIP 删除白名单IP
|
|||
|
|
func (h *ApiHandler) DeleteWhiteListIP(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
ipAddress := c.Param("ip")
|
|||
|
|
if ipAddress == "" {
|
|||
|
|
h.responseBuilder.BadRequest(c, "IP地址不能为空")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
err := h.appService.DeleteWhiteListIP(c.Request.Context(), userID, ipAddress)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("删除白名单IP失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, err.Error())
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
h.responseBuilder.Success(c, nil, "删除白名单IP成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// EncryptParams 加密参数接口(用于前端调试)
|
|||
|
|
// @Summary 加密参数
|
|||
|
|
// @Description 用于前端调试时加密API调用参数
|
|||
|
|
// @Tags API调试
|
|||
|
|
// @Accept json
|
|||
|
|
// @Produce json
|
|||
|
|
// @Param request body commands.EncryptCommand true "加密请求"
|
|||
|
|
// @Success 200 {object} dto.EncryptResponse "加密成功"
|
|||
|
|
// @Failure 400 {object} dto.EncryptResponse "请求参数错误"
|
|||
|
|
// @Failure 401 {object} dto.EncryptResponse "未授权"
|
|||
|
|
// @Router /api/v1/encrypt [post]
|
|||
|
|
func (h *ApiHandler) EncryptParams(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
var cmd commands.EncryptCommand
|
|||
|
|
if err := h.validator.BindAndValidate(c, &cmd); err != nil {
|
|||
|
|
h.responseBuilder.BadRequest(c, "请求参数错误")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 获取用户的SecretKey
|
|||
|
|
apiKeys, err := h.appService.GetUserApiKeys(c.Request.Context(), userID)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("获取用户API密钥失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, "获取API密钥失败")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 将JSON对象转换为字节数组
|
|||
|
|
jsonData, err := json.Marshal(cmd.Data)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("序列化参数失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, "参数序列化失败")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 加密参数
|
|||
|
|
encryptedData, err := crypto.AesEncrypt(jsonData, apiKeys.SecretKey)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("加密参数失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, "加密参数失败")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
response := dto.EncryptResponse{
|
|||
|
|
EncryptedData: encryptedData,
|
|||
|
|
}
|
|||
|
|
h.responseBuilder.Success(c, response, "加密成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// getCurrentUserID 获取当前用户ID
|
|||
|
|
func (h *ApiHandler) getCurrentUserID(c *gin.Context) string {
|
|||
|
|
if userID, exists := c.Get("user_id"); exists {
|
|||
|
|
if id, ok := userID.(string); ok {
|
|||
|
|
return id
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
return ""
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// GetUserApiCalls 获取用户API调用记录
|
|||
|
|
// @Summary 获取用户API调用记录
|
|||
|
|
// @Description 获取当前用户的API调用记录列表,支持分页和筛选
|
|||
|
|
// @Tags API管理
|
|||
|
|
// @Accept json
|
|||
|
|
// @Produce json
|
|||
|
|
// @Security Bearer
|
|||
|
|
// @Param page query int false "页码" default(1)
|
|||
|
|
// @Param page_size query int false "每页数量" default(10)
|
|||
|
|
// @Param start_time query string false "开始时间 (格式: 2006-01-02 15:04:05)"
|
|||
|
|
// @Param end_time query string false "结束时间 (格式: 2006-01-02 15:04:05)"
|
|||
|
|
// @Param transaction_id query string false "交易ID"
|
|||
|
|
// @Param product_name query string false "产品名称"
|
|||
|
|
// @Param status query string false "状态 (pending/success/failed)"
|
|||
|
|
// @Success 200 {object} dto.ApiCallListResponse "获取成功"
|
|||
|
|
// @Failure 400 {object} map[string]interface{} "请求参数错误"
|
|||
|
|
// @Failure 401 {object} map[string]interface{} "未认证"
|
|||
|
|
// @Failure 500 {object} map[string]interface{} "服务器内部错误"
|
|||
|
|
// @Router /api/v1/my/api-calls [get]
|
|||
|
|
func (h *ApiHandler) GetUserApiCalls(c *gin.Context) {
|
|||
|
|
userID := h.getCurrentUserID(c)
|
|||
|
|
if userID == "" {
|
|||
|
|
h.responseBuilder.Unauthorized(c, "用户未登录")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 解析查询参数
|
|||
|
|
page := h.getIntQuery(c, "page", 1)
|
|||
|
|
pageSize := h.getIntQuery(c, "page_size", 10)
|
|||
|
|
|
|||
|
|
// 构建筛选条件
|
|||
|
|
filters := make(map[string]interface{})
|
|||
|
|
|
|||
|
|
// 时间范围筛选
|
|||
|
|
if startTime := c.Query("start_time"); startTime != "" {
|
|||
|
|
if t, err := time.Parse("2006-01-02 15:04:05", startTime); err == nil {
|
|||
|
|
filters["start_time"] = t
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
if endTime := c.Query("end_time"); endTime != "" {
|
|||
|
|
if t, err := time.Parse("2006-01-02 15:04:05", endTime); err == nil {
|
|||
|
|
filters["end_time"] = t
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 交易ID筛选
|
|||
|
|
if transactionId := c.Query("transaction_id"); transactionId != "" {
|
|||
|
|
filters["transaction_id"] = transactionId
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 产品名称筛选
|
|||
|
|
if productName := c.Query("product_name"); productName != "" {
|
|||
|
|
filters["product_name"] = productName
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 状态筛选
|
|||
|
|
if status := c.Query("status"); status != "" {
|
|||
|
|
filters["status"] = status
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// 构建分页选项
|
|||
|
|
options := interfaces.ListOptions{
|
|||
|
|
Page: page,
|
|||
|
|
PageSize: pageSize,
|
|||
|
|
Sort: "created_at",
|
|||
|
|
Order: "desc",
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
result, err := h.appService.GetUserApiCalls(c.Request.Context(), userID, filters, options)
|
|||
|
|
if err != nil {
|
|||
|
|
h.logger.Error("获取用户API调用记录失败", zap.Error(err))
|
|||
|
|
h.responseBuilder.BadRequest(c, "获取API调用记录失败")
|
|||
|
|
return
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
h.responseBuilder.Success(c, result, "获取API调用记录成功")
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// getIntQuery 获取整数查询参数
|
|||
|
|
func (h *ApiHandler) getIntQuery(c *gin.Context, key string, defaultValue int) int {
|
|||
|
|
if value := c.Query(key); value != "" {
|
|||
|
|
if intValue, err := strconv.Atoi(value); err == nil && intValue > 0 {
|
|||
|
|
return intValue
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
return defaultValue
|
|||
|
|
}
|