@seasonkoh/webaz 0.1.24 → 0.1.26

package/dist/pwa/routes/admin-users-query.js

@@ -1,7 +1,9 @@
+import { dbOne, dbAll, dbRun } from '../../layer0-foundation/L0-1-database/db.js'; // RFC-016 异步 DB seam
 export function registerAdminUsersQueryRoutes(app, deps) {
-    const { db, requireUsersAdmin, adminCanOperateOn, isRootAdmin, isAllowedSponsor, maskApiKey, computeLightTags, getAdminScope, getSellerDailyLimit, todayStartISO, broadcastSystemEvent, INTERNAL_AUDITOR_ID } = deps;
+    // db 已全量走 RFC-016 异步 seam(dbOne/dbAll/dbRun),不再直接用 deps.db
+    const { requireUsersAdmin, adminCanOperateOn, isRootAdmin, isAllowedSponsor, maskApiKey, computeLightTags, getAdminScope, getSellerDailyLimit, todayStartISO, broadcastSystemEvent, INTERNAL_AUDITOR_ID, logAdminAction } = deps;
     // P1-1: 按 handle / id 任意角色查找
-    app.get('/api/admin/users/lookup', (req, res) => {
+    app.get('/api/admin/users/lookup', async (req, res) => {
         const admin = requireUsersAdmin(req, res);
         if (!admin)
             return;
@@ -9,15 +11,15 @@ export function registerAdminUsersQueryRoutes(app, deps) {
         if (!raw)
             return void res.status(400).json({ error: 'q 必填（user_id 或 handle）' });
         const term = raw.replace(/^@/, '');
-        let user = db.prepare("SELECT id, name, handle, role, created_at FROM users WHERE handle = ? AND id NOT IN ('sys_protocol', ?)").get(term, INTERNAL_AUDITOR_ID);
+        let user = await dbOne("SELECT id, name, handle, role, created_at FROM users WHERE handle = ? AND id NOT IN ('sys_protocol', ?)", [term, INTERNAL_AUDITOR_ID]);
         if (!user)
-            user = db.prepare("SELECT id, name, handle, role, created_at FROM users WHERE id = ? AND id NOT IN ('sys_protocol', ?)").get(term, INTERNAL_AUDITOR_ID);
+            user = await dbOne("SELECT id, name, handle, role, created_at FROM users WHERE id = ? AND id NOT IN ('sys_protocol', ?)", [term, INTERNAL_AUDITOR_ID]);
         if (!user)
             return void res.status(404).json({ error: '用户不存在' });
         res.json({ user });
     });
     // Wave F-3: 完整事件流
-    app.get('/api/admin/users/:id/timeline', (req, res) => {
+    app.get('/api/admin/users/:id/timeline', async (req, res) => {
         const admin = requireUsersAdmin(req, res);
         if (!admin)
             return;
@@ -29,52 +31,52 @@ export function registerAdminUsersQueryRoutes(app, deps) {
                 return;
             events.push({ ts, type, icon, summary, ref_id: refId || null, ref_type: refType || null, amount: amount ?? null });
         };
-        db.prepare(`SELECT id, status, total_amount, created_at, buyer_id, seller_id, logistics_id FROM orders WHERE buyer_id=? OR seller_id=? OR logistics_id=? ORDER BY created_at DESC LIMIT 100`).all(id, id, id).forEach(o => {
+        (await dbAll(`SELECT id, status, total_amount, created_at, buyer_id, seller_id, logistics_id FROM orders WHERE buyer_id=? OR seller_id=? OR logistics_id=? ORDER BY created_at DESC LIMIT 100`, [id, id, id])).forEach(o => {
             const role = o.buyer_id === id ? '买家' : o.seller_id === id ? '卖家' : '物流';
             push(o.created_at, 'order', '📦', `订单 (${role}) ${o.id} · ${o.total_amount} WAZ · ${o.status}`, o.id, 'order', o.total_amount);
         });
-        db.prepare(`SELECT order_id, stars, comment, created_at, buyer_id, seller_id FROM order_ratings WHERE buyer_id=? OR seller_id=? ORDER BY created_at DESC LIMIT 50`).all(id, id).forEach(r => {
+        (await dbAll(`SELECT order_id, stars, comment, created_at, buyer_id, seller_id FROM order_ratings WHERE buyer_id=? OR seller_id=? ORDER BY created_at DESC LIMIT 50`, [id, id])).forEach(r => {
             const role = r.buyer_id === id ? '给出' : '收到';
             push(r.created_at, 'rating', '⭐', `${role} ${r.stars} 星评价 (订单 ${r.order_id})`, r.order_id, 'order');
         });
-        db.prepare(`SELECT id, order_id, reason, refund_amount, status, created_at, buyer_id, seller_id FROM return_requests WHERE buyer_id=? OR seller_id=? ORDER BY created_at DESC LIMIT 50`).all(id, id).forEach(r => {
+        (await dbAll(`SELECT id, order_id, reason, refund_amount, status, created_at, buyer_id, seller_id FROM return_requests WHERE buyer_id=? OR seller_id=? ORDER BY created_at DESC LIMIT 50`, [id, id])).forEach(r => {
             const role = r.buyer_id === id ? '发起' : '收到';
             push(r.created_at, 'return', '↩', `${role} 退货 (${r.status}, ${r.refund_amount} WAZ, ${r.reason})`, r.order_id, 'order', r.refund_amount);
         });
-        db.prepare(`SELECT id, category, subject, status, created_at FROM feedback_tickets WHERE user_id=? ORDER BY created_at DESC LIMIT 30`).all(id).forEach(f => {
+        (await dbAll(`SELECT id, category, subject, status, created_at FROM feedback_tickets WHERE user_id=? ORDER BY created_at DESC LIMIT 30`, [id])).forEach(f => {
             push(f.created_at, 'feedback', '💬', `反馈 (${f.category}/${f.status}): ${f.subject}`, f.id, 'feedback');
         });
-        db.prepare(`SELECT checkin_date, reward, streak, created_at FROM daily_checkins WHERE user_id=? ORDER BY created_at DESC LIMIT 30`).all(id).forEach(c => {
+        (await dbAll(`SELECT checkin_date, reward, streak, created_at FROM daily_checkins WHERE user_id=? ORDER BY created_at DESC LIMIT 30`, [id])).forEach(c => {
             push(c.created_at, 'checkin', '📅', `签到 ${c.checkin_date} · streak ${c.streak} · +${c.reward} WAZ`, null, null, c.reward);
         });
-        db.prepare(`SELECT task_key, reward, claimed_at FROM task_completions WHERE user_id=? AND claimed_at IS NOT NULL ORDER BY claimed_at DESC LIMIT 30`).all(id).forEach(tc => {
+        (await dbAll(`SELECT task_key, reward, claimed_at FROM task_completions WHERE user_id=? AND claimed_at IS NOT NULL ORDER BY claimed_at DESC LIMIT 30`, [id])).forEach(tc => {
             push(tc.claimed_at, 'task', '🎁', `任务 ${tc.task_key} 领取 +${tc.reward} WAZ`, null, null, tc.reward);
         });
-        db.prepare(`SELECT amount, source, ref, created_at FROM platform_reward_log WHERE user_id=? ORDER BY created_at DESC LIMIT 50`).all(id).forEach(p => {
+        (await dbAll(`SELECT amount, source, ref, created_at FROM platform_reward_log WHERE user_id=? ORDER BY created_at DESC LIMIT 50`, [id])).forEach(p => {
             push(p.created_at, 'reward', '💰', `平台拨付 (${p.source}${p.ref ? '/' + p.ref : ''}) +${p.amount} WAZ`, null, null, p.amount);
         });
-        db.prepare(`SELECT followee_id, created_at FROM follows WHERE follower_id=? ORDER BY created_at DESC LIMIT 20`).all(id).forEach(f => {
+        (await dbAll(`SELECT followee_id, created_at FROM follows WHERE follower_id=? ORDER BY created_at DESC LIMIT 20`, [id])).forEach(f => {
             push(f.created_at, 'follow', '🤝', `关注 ${f.followee_id}`, f.followee_id, 'user');
         });
-        db.prepare(`SELECT product_id, created_at FROM user_wishlist WHERE user_id=? ORDER BY created_at DESC LIMIT 20`).all(id).forEach(w => {
+        (await dbAll(`SELECT product_id, created_at FROM user_wishlist WHERE user_id=? ORDER BY created_at DESC LIMIT 20`, [id])).forEach(w => {
             push(w.created_at, 'wishlist', '❤', `加入心愿单 ${w.product_id}`, w.product_id, 'product');
         });
-        db.prepare(`SELECT product_id, created_at FROM product_waitlist WHERE user_id=? ORDER BY created_at DESC LIMIT 20`).all(id).forEach(w => {
+        (await dbAll(`SELECT product_id, created_at FROM product_waitlist WHERE user_id=? ORDER BY created_at DESC LIMIT 20`, [id])).forEach(w => {
             push(w.created_at, 'waitlist', '⏰', `加入补货提醒 ${w.product_id}`, w.product_id, 'product');
         });
-        db.prepare(`SELECT id, status, ruling_type, created_at, resolved_at, initiator_id, defendant_id FROM disputes WHERE initiator_id=? OR defendant_id=? ORDER BY created_at DESC LIMIT 30`).all(id, id).forEach(d => {
+        (await dbAll(`SELECT id, status, ruling_type, created_at, resolved_at, initiator_id, defendant_id FROM disputes WHERE initiator_id=? OR defendant_id=? ORDER BY created_at DESC LIMIT 30`, [id, id])).forEach(d => {
             const role = d.initiator_id === id ? '发起' : '被诉';
             push(d.created_at, 'dispute_open', '⚖', `${role} 争议 ${d.id} (${d.status})`, d.id, 'dispute');
             if (d.resolved_at)
                 push(d.resolved_at, 'dispute_resolved', '⚖', `争议 ${d.id} 结案 (${d.ruling_type || '—'})`, d.id, 'dispute');
         });
-        const userRow = db.prepare(`SELECT created_at, name, role FROM users WHERE id=?`).get(id);
+        const userRow = await dbOne(`SELECT created_at, name, role FROM users WHERE id=?`, [id]);
         if (userRow)
             push(userRow.created_at, 'register', '🎉', `注册账号 ${userRow.name} (${userRow.role})`, null, null);
         events.sort((a, b) => String(b.ts).localeCompare(String(a.ts)));
         res.json({ items: events.slice(0, limit), total: events.length });
     });
-    app.post('/api/admin/users/batch-action', (req, res) => {
+    app.post('/api/admin/users/batch-action', async (req, res) => {
         const admin = requireUsersAdmin(req, res);
         if (!admin)
             return;
@@ -94,13 +96,12 @@ export function registerAdminUsersQueryRoutes(app, deps) {
                     continue;
                 }
                 if (action === 'suspend') {
-                    db.prepare(`INSERT INTO user_moderation (user_id, suspended, reason, suspended_by, suspended_at)
+                    await dbRun(`INSERT INTO user_moderation (user_id, suspended, reason, suspended_by, suspended_at)
             VALUES (?, 1, ?, ?, datetime('now'))
-            ON CONFLICT(user_id) DO UPDATE SET suspended = 1, reason = excluded.reason, suspended_by = excluded.suspended_by, suspended_at = excluded.suspended_at`)
-                        .run(uid, reasonStr, admin.id);
+            ON CONFLICT(user_id) DO UPDATE SET suspended = 1, reason = excluded.reason, suspended_by = excluded.suspended_by, suspended_at = excluded.suspended_at`, [uid, reasonStr, admin.id]);
                 }
                 else {
-                    db.prepare(`UPDATE user_moderation SET suspended = 0 WHERE user_id = ?`).run(uid);
+                    await dbRun(`UPDATE user_moderation SET suspended = 0 WHERE user_id = ?`, [uid]);
                 }
                 results.push({ user_id: uid, status: 'ok' });
             }
@@ -109,13 +110,24 @@ export function registerAdminUsersQueryRoutes(app, deps) {
             }
         }
         const ok = results.filter(r => r.status === 'ok').length;
+        try {
+            // 防审计行膨胀:批量上限本就 ≤200,但仍只记前 50 个 id + 计数(truncated 标记),保证单行有界。
+            const okIds = results.filter(r => r.status === 'ok').map(r => r.user_id);
+            logAdminAction(admin.id, 'users_batch_' + String(action), 'user', null, {
+                action, reason: reasonStr, applied: ok, requested: user_ids.length,
+                user_ids: okIds.slice(0, 50), user_ids_truncated: okIds.length > 50,
+            });
+        }
+        catch (e) {
+            console.error('[users_batch audit]', e);
+        }
         try {
             broadcastSystemEvent('admin_bulk_' + action, '🛡', `${admin.id} 批量${action === 'suspend' ? '暂停' : '解封'} ${ok} 用户`, null);
         }
         catch { }
         res.json({ success: true, applied: ok, results });
     });
-    app.get('/api/admin/users', (req, res) => {
+    app.get('/api/admin/users', async (req, res) => {
         const admin = requireUsersAdmin(req, res);
         if (!admin)
             return;
@@ -175,7 +187,7 @@ export function registerAdminUsersQueryRoutes(app, deps) {
             }
         }
         sql += ` ORDER BY u.created_at DESC LIMIT 100`;
-        const rows = db.prepare(sql).all(...params);
+        const rows = await dbAll(sql, params);
         res.json({
             match_mode,
             my_admin_type: admin.admin_type || 'root',
@@ -208,21 +220,21 @@ export function registerAdminUsersQueryRoutes(app, deps) {
         });
     });
     // 完整档案聚合
-    app.get('/api/admin/users/:id/profile', (req, res) => {
+    app.get('/api/admin/users/:id/profile', async (req, res) => {
         const admin = requireUsersAdmin(req, res);
         if (!admin)
             return;
         if (!adminCanOperateOn(admin, req.params.id, res))
             return;
         const id = req.params.id;
-        const user = db.prepare("SELECT * FROM users WHERE id = ?").get(id);
+        const user = await dbOne("SELECT * FROM users WHERE id = ?", [id]);
         if (!user)
             return void res.json({ error: '用户不存在' });
-        const wallet = db.prepare("SELECT balance, staked, escrowed, earned, deposit_address FROM wallets WHERE user_id = ?").get(id);
-        const mod = db.prepare("SELECT suspended, reason, suspended_by, suspended_at FROM user_moderation WHERE user_id = ?").get(id);
-        const vw = db.prepare("SELECT tier, daily_quota, tasks_today, quota_reset_at, granted_by, stake_amount, cooldown_until, error_count_180d, is_system, added_at FROM verifier_whitelist WHERE user_id = ?").get(id);
-        const vs = db.prepare("SELECT verify_rights, tasks_done, tasks_correct, tasks_wrong, suspended_until FROM verifier_stats WHERE user_id = ?").get(id);
-        const vAppPending = !!db.prepare("SELECT 1 FROM verifier_applications WHERE user_id = ? AND status='pending' LIMIT 1").get(id);
+        const wallet = await dbOne("SELECT balance, staked, escrowed, earned, deposit_address FROM wallets WHERE user_id = ?", [id]);
+        const mod = await dbOne("SELECT suspended, reason, suspended_by, suspended_at FROM user_moderation WHERE user_id = ?", [id]);
+        const vw = await dbOne("SELECT tier, daily_quota, tasks_today, quota_reset_at, granted_by, stake_amount, cooldown_until, error_count_180d, is_system, added_at FROM verifier_whitelist WHERE user_id = ?", [id]);
+        const vs = await dbOne("SELECT verify_rights, tasks_done, tasks_correct, tasks_wrong, suspended_until FROM verifier_stats WHERE user_id = ?", [id]);
+        const vAppPending = !!(await dbOne("SELECT 1 FROM verifier_applications WHERE user_id = ? AND status='pending' LIMIT 1", [id]));
         const roleSet = new Set((() => { try {
             return JSON.parse(user.roles || '[]');
         }
@@ -231,20 +243,20 @@ export function registerAdminUsersQueryRoutes(app, deps) {
         } })());
         const kpis = {};
         if (roleSet.has('seller')) {
-            const p = db.prepare(`SELECT COUNT(*) as total,
+            const p = (await dbOne(`SELECT COUNT(*) as total,
                                    SUM(CASE WHEN status='active' THEN 1 ELSE 0 END) as active,
                                    SUM(CASE WHEN status='paused' THEN 1 ELSE 0 END) as paused,
                                    SUM(CASE WHEN status='deleted'THEN 1 ELSE 0 END) as deleted
-                            FROM products WHERE seller_id = ?`).get(id);
-            const o = db.prepare(`SELECT COUNT(*) as total,
+                            FROM products WHERE seller_id = ?`, [id]));
+            const o = (await dbOne(`SELECT COUNT(*) as total,
                                    SUM(CASE WHEN status='completed' THEN 1 ELSE 0 END) as completed,
                                    COALESCE(SUM(CASE WHEN status='completed' THEN total_amount ELSE 0 END),0) as total_sales
-                            FROM orders WHERE seller_id = ?`).get(id);
-            const d = db.prepare(`SELECT COUNT(*) as defendant_count,
+                            FROM orders WHERE seller_id = ?`, [id]));
+            const d = (await dbOne(`SELECT COUNT(*) as defendant_count,
                                    SUM(CASE WHEN ruling_type IN ('refund_buyer','partial_refund') THEN 1 ELSE 0 END) as lost
-                            FROM disputes WHERE defendant_id = ?`).get(id);
+                            FROM disputes WHERE defendant_id = ?`, [id]));
             const today = todayStartISO();
-            const todayCount = db.prepare("SELECT COUNT(*) as n FROM products WHERE seller_id = ? AND created_at >= ?").get(id, today).n;
+            const todayCount = (await dbOne("SELECT COUNT(*) as n FROM products WHERE seller_id = ? AND created_at >= ?", [id, today])).n;
             const dailyLimit = getSellerDailyLimit({ id, created_at: user.created_at });
             kpis.seller = {
                 products_total: p.total, products_active: p.active, products_paused: p.paused, products_deleted: p.deleted,
@@ -257,20 +269,20 @@ export function registerAdminUsersQueryRoutes(app, deps) {
             };
         }
         if (roleSet.has('buyer')) {
-            const o = db.prepare(`SELECT COUNT(*) as total,
+            const o = (await dbOne(`SELECT COUNT(*) as total,
                                    SUM(CASE WHEN status='completed' THEN 1 ELSE 0 END) as completed,
                                    COALESCE(SUM(CASE WHEN status='completed' THEN total_amount ELSE 0 END),0) as total_spent,
                                    MAX(created_at) as last_order_at
-                            FROM orders WHERE buyer_id = ?`).get(id);
+                            FROM orders WHERE buyer_id = ?`, [id]));
             kpis.buyer = {
                 orders_total: o.total, orders_completed: o.completed,
                 total_spent: o.total_spent, last_order_at: o.last_order_at,
             };
         }
         if (roleSet.has('logistics')) {
-            const o = db.prepare(`SELECT COUNT(*) as total,
+            const o = (await dbOne(`SELECT COUNT(*) as total,
                                    SUM(CASE WHEN status='completed' THEN 1 ELSE 0 END) as completed
-                            FROM orders WHERE logistics_id = ?`).get(id);
+                            FROM orders WHERE logistics_id = ?`, [id]));
             kpis.logistics = { deliveries_total: o.total, deliveries_completed: o.completed };
         }
         if (roleSet.has('verifier') && vw) {
@@ -296,28 +308,28 @@ export function registerAdminUsersQueryRoutes(app, deps) {
                 return;
             events.push({ ts, type, icon, summary, ref_id: refId, ref_type: refType });
         };
-        db.prepare(`SELECT id, total_amount, product_id, status, created_at FROM orders WHERE buyer_id = ? ORDER BY created_at DESC LIMIT 10`).all(id).forEach(o => pushEvt(o.created_at, 'order_buy', '🛒', `下单 ${o.total_amount} WAZ (${o.status})`, o.id, 'order'));
-        db.prepare(`SELECT id, total_amount, status, created_at FROM orders WHERE seller_id = ? ORDER BY created_at DESC LIMIT 10`).all(id).forEach(o => pushEvt(o.created_at, 'order_sell', '💰', `售出 ${o.total_amount} WAZ (${o.status})`, o.id, 'order'));
-        db.prepare(`SELECT id, title, status, created_at FROM products WHERE seller_id = ? ORDER BY created_at DESC LIMIT 10`).all(id).forEach(p => pushEvt(p.created_at, 'product_listed', '🏪', `上架商品 ${(p.title || '').slice(0, 30)}`, p.id, 'product'));
-        db.prepare(`SELECT id, task_id, verdict, claimed_at, submitted_at FROM verify_submissions WHERE verifier_id = ? ORDER BY claimed_at DESC LIMIT 10`).all(id).forEach(s => {
+        (await dbAll(`SELECT id, total_amount, product_id, status, created_at FROM orders WHERE buyer_id = ? ORDER BY created_at DESC LIMIT 10`, [id])).forEach(o => pushEvt(o.created_at, 'order_buy', '🛒', `下单 ${o.total_amount} WAZ (${o.status})`, o.id, 'order'));
+        (await dbAll(`SELECT id, total_amount, status, created_at FROM orders WHERE seller_id = ? ORDER BY created_at DESC LIMIT 10`, [id])).forEach(o => pushEvt(o.created_at, 'order_sell', '💰', `售出 ${o.total_amount} WAZ (${o.status})`, o.id, 'order'));
+        (await dbAll(`SELECT id, title, status, created_at FROM products WHERE seller_id = ? ORDER BY created_at DESC LIMIT 10`, [id])).forEach(p => pushEvt(p.created_at, 'product_listed', '🏪', `上架商品 ${(p.title || '').slice(0, 30)}`, p.id, 'product'));
+        (await dbAll(`SELECT id, task_id, verdict, claimed_at, submitted_at FROM verify_submissions WHERE verifier_id = ? ORDER BY claimed_at DESC LIMIT 10`, [id])).forEach(s => {
             pushEvt(s.claimed_at, 'verify_claimed', '🔍', `认领验证任务`, s.task_id, 'task');
             if (s.submitted_at) {
                 const icon = s.verdict === 'correct' ? '✓' : s.verdict === 'wrong' ? '✗' : '⏳';
                 pushEvt(s.submitted_at, 'verify_submitted', icon, `提交验证 (${s.verdict || 'pending'})`, s.task_id, 'task');
             }
         });
-        db.prepare(`SELECT id, status, ruling_type, created_at, resolved_at, initiator_id, defendant_id FROM disputes WHERE initiator_id = ? OR defendant_id = ? ORDER BY created_at DESC LIMIT 10`).all(id, id).forEach(d => {
+        (await dbAll(`SELECT id, status, ruling_type, created_at, resolved_at, initiator_id, defendant_id FROM disputes WHERE initiator_id = ? OR defendant_id = ? ORDER BY created_at DESC LIMIT 10`, [id, id])).forEach(d => {
             const role = d.initiator_id === id ? '发起' : '被告';
             pushEvt(d.created_at, 'dispute_init', '⚖', `争议 ${role} (${d.status})`, d.id, 'dispute');
             if (d.resolved_at)
                 pushEvt(d.resolved_at, 'dispute_resolved', '⚖', `争议结案 (${d.ruling_type || '—'})`, d.id, 'dispute');
         });
-        db.prepare(`SELECT id, status, decision_note, applied_at, reviewed_at FROM verifier_applications WHERE user_id = ? ORDER BY applied_at DESC LIMIT 5`).all(id).forEach(a => {
+        (await dbAll(`SELECT id, status, decision_note, applied_at, reviewed_at FROM verifier_applications WHERE user_id = ? ORDER BY applied_at DESC LIMIT 5`, [id])).forEach(a => {
             pushEvt(a.applied_at, 'verifier_apply', '📥', `提交审核员申请`, a.id, 'verifier_app');
             if (a.reviewed_at)
                 pushEvt(a.reviewed_at, 'verifier_review', a.status === 'approved' ? '✅' : '❌', `申请${a.status === 'approved' ? '获批' : a.status === 'rejected' ? '被拒' : a.status}`, a.id, 'verifier_app');
         });
-        db.prepare(`SELECT id, status, created_at, reviewed_at FROM verifier_appeals WHERE user_id = ? ORDER BY created_at DESC LIMIT 5`).all(id).forEach(a => {
+        (await dbAll(`SELECT id, status, created_at, reviewed_at FROM verifier_appeals WHERE user_id = ? ORDER BY created_at DESC LIMIT 5`, [id])).forEach(a => {
             pushEvt(a.created_at, 'appeal_submitted', '📩', `提交申诉`, a.id, 'appeal');
             if (a.reviewed_at)
                 pushEvt(a.reviewed_at, 'appeal_decided', a.status === 'accepted' ? '✅' : '❌', `申诉${a.status === 'accepted' ? '成立' : '驳回'}`, a.id, 'appeal');
@@ -332,10 +344,10 @@ export function registerAdminUsersQueryRoutes(app, deps) {
         if (user.locked_until && new Date(user.locked_until).getTime() > Date.now()) {
             risks.push({ severity: 'high', label: '账户已锁定', detail: `解锁: ${user.locked_until}` });
         }
-        const openDisputes = db.prepare("SELECT COUNT(*) as n FROM disputes WHERE defendant_id = ? AND status IN ('open','in_review')").get(id).n;
+        const openDisputes = (await dbOne("SELECT COUNT(*) as n FROM disputes WHERE defendant_id = ? AND status IN ('open','in_review')", [id])).n;
         if (openDisputes > 0)
             risks.push({ severity: 'medium', label: '未结争议作为被告', detail: `${openDisputes} 起` });
-        const lostCount = db.prepare("SELECT COUNT(*) as n FROM disputes WHERE defendant_id = ? AND ruling_type IN ('refund_buyer','partial_refund')").get(id).n;
+        const lostCount = (await dbOne("SELECT COUNT(*) as n FROM disputes WHERE defendant_id = ? AND ruling_type IN ('refund_buyer','partial_refund')", [id])).n;
         if (lostCount > 0)
             risks.push({ severity: 'low', label: '历史仲裁判输', detail: `${lostCount} 次` });
         if (wallet && Number(wallet.staked) > Number(wallet.balance) * 2) {
@@ -345,14 +357,14 @@ export function registerAdminUsersQueryRoutes(app, deps) {
             const ec = Number(vw.error_count_180d);
             risks.push({ severity: ec >= 2 ? 'high' : 'medium', label: '审核员近期错误', detail: `180 天 ${ec} 次` });
         }
-        const audit = db.prepare(`
+        const audit = (await dbAll(`
       SELECT al.id, al.admin_id, al.action, al.detail, al.created_at,
              u.name as admin_name
       FROM admin_audit_log al
       LEFT JOIN users u ON u.id = al.admin_id
       WHERE al.target_type = 'user' AND al.target_id = ?
       ORDER BY al.created_at DESC LIMIT 20
-    `).all(id).map(r => ({
+    `, [id])).map(r => ({
             ...r,
             detail: r.detail ? (() => { try {
                 return JSON.parse(r.detail);

package/dist/pwa/routes/admin-verifier-flow.js

@@ -1,18 +1,21 @@
+import { dbOne, dbAll } from '../../layer0-foundation/L0-1-database/db.js'; // RFC-016 异步 DB seam
 export function registerAdminVerifierFlowRoutes(app, deps) {
+    // 只读站点走 RFC-016 异步 seam;db 保留:approve/reject/decide 含状态翻转 + 退质押 + 补发奖励,
+    // 必须原子(db.transaction + CAS 翻转,退款/奖励仅在本请求真翻转时落),Phase 3 迁 pg 行锁。
     const { db, requireVerifierMgmtAdmin, TIER_QUOTAS, VERIFIER_STAKE_REQUIRED, todayStartISO, logAdminAction } = deps;
-    app.get('/api/admin/verifier-applications', (req, res) => {
+    app.get('/api/admin/verifier-applications', async (req, res) => {
         const admin = requireVerifierMgmtAdmin(req, res);
         if (!admin)
             return;
         const status = req.query.status || 'pending';
-        const rows = db.prepare(`
+        const rows = await dbAll(`
       SELECT va.id, va.user_id, va.status, va.applied_at, va.reviewed_at, va.reviewed_by, va.decision_note, va.snapshot,
              u.name as user_name, u.email
       FROM verifier_applications va
       LEFT JOIN users u ON u.id = va.user_id
       WHERE va.status = ?
       ORDER BY va.applied_at DESC LIMIT 100
-    `).all(status);
+    `, [status]);
         res.json({
             applications: rows.map(r => ({
                 ...r,
@@ -25,59 +28,83 @@ export function registerAdminVerifierFlowRoutes(app, deps) {
             })),
         });
     });
-    app.post('/api/admin/verifier-applications/:id/approve', (req, res) => {
+    app.post('/api/admin/verifier-applications/:id/approve', async (req, res) => {
         const admin = requireVerifierMgmtAdmin(req, res);
         if (!admin)
             return;
         const { tier, note } = req.body;
         const validTier = ['trial-1', 'trial-2', 'trial-3', 'active-1', 'active-2'].includes(tier) ? tier : 'trial-1';
-        const apl = db.prepare("SELECT id, user_id, status FROM verifier_applications WHERE id = ?").get(req.params.id);
+        const apl = await dbOne("SELECT id, user_id, status FROM verifier_applications WHERE id = ?", [req.params.id]);
         if (!apl)
             return void res.json({ error: '申请不存在' });
         if (apl.status !== 'pending')
             return void res.json({ error: '该申请不在待审状态' });
-        db.prepare("UPDATE verifier_applications SET status='approved', reviewed_at=datetime('now'), reviewed_by=?, decision_note=? WHERE id=?")
-            .run(admin.id, note || null, apl.id);
-        db.prepare(`INSERT OR REPLACE INTO verifier_whitelist
-                (user_id, note, tier, daily_quota, tasks_today, quota_reset_at, granted_by, stake_amount, is_system)
-                VALUES (?,?,?,?,0,?,?,?,0)`)
-            .run(apl.user_id, note || `批准为 ${validTier}`, validTier, TIER_QUOTAS[validTier], todayStartISO(), admin.id, VERIFIER_STAKE_REQUIRED);
-        db.prepare("INSERT OR IGNORE INTO verifier_stats (user_id) VALUES (?)").run(apl.user_id);
+        // 原子段:CAS 翻转 pending→approved + 入白名单 + 建 stats(防并发双批准)
+        try {
+            db.transaction(() => {
+                const cas = db.prepare("UPDATE verifier_applications SET status='approved', reviewed_at=datetime('now'), reviewed_by=?, decision_note=? WHERE id=? AND status='pending'")
+                    .run(admin.id, note || null, apl.id);
+                if (cas.changes === 0)
+                    throw new Error('APP_RACE');
+                db.prepare(`INSERT OR REPLACE INTO verifier_whitelist
+                    (user_id, note, tier, daily_quota, tasks_today, quota_reset_at, granted_by, stake_amount, is_system)
+                    VALUES (?,?,?,?,0,?,?,?,0)`)
+                    .run(apl.user_id, note || `批准为 ${validTier}`, validTier, TIER_QUOTAS[validTier], todayStartISO(), admin.id, VERIFIER_STAKE_REQUIRED);
+                db.prepare("INSERT OR IGNORE INTO verifier_stats (user_id) VALUES (?)").run(apl.user_id);
+            })();
+        }
+        catch (e) {
+            if (e.message === 'APP_RACE')
+                return void res.json({ error: '该申请不在待审状态' });
+            console.error('[verifier approve tx]', e.message);
+            return void res.status(500).json({ error: '批准失败,请重试' });
+        }
         logAdminAction(admin.id, 'approve_verifier', 'user', apl.user_id, { tier: validTier, note });
         res.json({ success: true });
     });
-    app.post('/api/admin/verifier-applications/:id/reject', (req, res) => {
+    app.post('/api/admin/verifier-applications/:id/reject', async (req, res) => {
         const admin = requireVerifierMgmtAdmin(req, res);
         if (!admin)
             return;
         const { note } = req.body;
-        const apl = db.prepare("SELECT id, user_id, status FROM verifier_applications WHERE id = ?").get(req.params.id);
+        const apl = await dbOne("SELECT id, user_id, status FROM verifier_applications WHERE id = ?", [req.params.id]);
         if (!apl)
             return void res.json({ error: '申请不存在' });
         if (apl.status !== 'pending')
             return void res.json({ error: '该申请不在待审状态' });
-        db.prepare("UPDATE verifier_applications SET status='rejected', reviewed_at=datetime('now'), reviewed_by=?, decision_note=? WHERE id=?")
-            .run(admin.id, note || null, apl.id);
-        // 退回质押
-        if (VERIFIER_STAKE_REQUIRED > 0) {
-            db.prepare("UPDATE wallets SET balance = balance + ?, staked = staked - ? WHERE user_id = ?")
-                .run(VERIFIER_STAKE_REQUIRED, VERIFIER_STAKE_REQUIRED, apl.user_id);
+        // 原子段:CAS 翻转 pending→rejected + 退质押仅在本请求真翻转时(防并发双拒双退)
+        try {
+            db.transaction(() => {
+                const cas = db.prepare("UPDATE verifier_applications SET status='rejected', reviewed_at=datetime('now'), reviewed_by=?, decision_note=? WHERE id=? AND status='pending'")
+                    .run(admin.id, note || null, apl.id);
+                if (cas.changes === 0)
+                    throw new Error('APP_RACE');
+                if (VERIFIER_STAKE_REQUIRED > 0) {
+                    db.prepare("UPDATE wallets SET balance = balance + ?, staked = staked - ? WHERE user_id = ?").run(VERIFIER_STAKE_REQUIRED, VERIFIER_STAKE_REQUIRED, apl.user_id);
+                }
+            })();
+        }
+        catch (e) {
+            if (e.message === 'APP_RACE')
+                return void res.json({ error: '该申请不在待审状态' });
+            console.error('[verifier reject tx]', e.message);
+            return void res.status(500).json({ error: '拒绝失败,请重试' });
         }
         logAdminAction(admin.id, 'reject_verifier', 'user', apl.user_id, { note });
         res.json({ success: true });
     });
-    app.get('/api/admin/verifier-appeals', (req, res) => {
+    app.get('/api/admin/verifier-appeals', async (req, res) => {
         const admin = requireVerifierMgmtAdmin(req, res);
         if (!admin)
             return;
         const status = req.query.status || 'pending';
-        const rows = db.prepare(`
+        const rows = await dbAll(`
       SELECT va.id, va.user_id, va.task_id, va.submission_id, va.reason, va.evidence_urls, va.status,
              va.admin_note, va.reviewed_by, va.reviewed_at, va.created_at, u.name as user_name
       FROM verifier_appeals va LEFT JOIN users u ON u.id = va.user_id
       WHERE va.status = ?
       ORDER BY va.created_at DESC LIMIT 100
-    `).all(status);
+    `, [status]);
         res.json({
             appeals: rows.map(r => ({
                 ...r,
@@ -90,35 +117,49 @@ export function registerAdminVerifierFlowRoutes(app, deps) {
             })),
         });
     });
-    app.post('/api/admin/verifier-appeals/:id/decide', (req, res) => {
+    app.post('/api/admin/verifier-appeals/:id/decide', async (req, res) => {
         const admin = requireVerifierMgmtAdmin(req, res);
         if (!admin)
             return;
         const { decision, note } = req.body; // 'accepted' | 'rejected'
         if (!['accepted', 'rejected'].includes(decision))
             return void res.json({ error: 'decision 无效' });
-        const appeal = db.prepare("SELECT id, user_id, status FROM verifier_appeals WHERE id = ?").get(req.params.id);
+        const appeal = await dbOne("SELECT id, user_id, status FROM verifier_appeals WHERE id = ?", [req.params.id]);
         if (!appeal)
             return void res.json({ error: '申诉不存在' });
         if (appeal.status !== 'pending')
             return void res.json({ error: '该申诉已处理' });
-        db.prepare("UPDATE verifier_appeals SET status = ?, admin_note = ?, reviewed_by = ?, reviewed_at = datetime('now') WHERE id = ?")
-            .run(decision, note || null, admin.id, appeal.id);
-        if (decision === 'accepted') {
-            // 解封 + 验证权 +2 + 错误次数 -1
-            db.prepare("UPDATE verifier_stats SET suspended_until = NULL, verify_rights = verify_rights + 2 WHERE user_id = ?").run(appeal.user_id);
-            db.prepare("UPDATE verifier_whitelist SET error_count_180d = MAX(0, error_count_180d - 1) WHERE user_id = ?").run(appeal.user_id);
-            // 完整重审：翻转该 verifier 在该 task 的 verdict + 补发奖励 + 翻回 stats
-            const fullAppeal = db.prepare("SELECT task_id FROM verifier_appeals WHERE id = ?").get(appeal.id);
-            if (fullAppeal?.task_id) {
-                const sub = db.prepare("SELECT vs.id, vs.verdict, vt.reward_per_verifier FROM verify_submissions vs JOIN verify_tasks vt ON vt.id = vs.task_id WHERE vs.task_id = ? AND vs.verifier_id = ?")
-                    .get(fullAppeal.task_id, appeal.user_id);
-                if (sub && sub.verdict === 'wrong') {
-                    db.prepare("UPDATE verify_submissions SET verdict = 'correct' WHERE id = ?").run(sub.id);
-                    db.prepare("UPDATE verifier_stats SET tasks_correct = tasks_correct + 1, tasks_wrong = MAX(0, tasks_wrong - 1), verify_rights = verify_rights + 3 WHERE user_id = ?").run(appeal.user_id);
-                    db.prepare("UPDATE wallets SET balance = balance + ? WHERE user_id = ?").run(sub.reward_per_verifier, appeal.user_id);
+        // 原子段:CAS 翻转 appeal pending→decision + (accepted 时)解封/重审/补发奖励 一起落,
+        // 防并发双裁决导致 verify_rights 多加、verdict 多翻、奖励多发。
+        try {
+            db.transaction(() => {
+                const cas = db.prepare("UPDATE verifier_appeals SET status = ?, admin_note = ?, reviewed_by = ?, reviewed_at = datetime('now') WHERE id = ? AND status = 'pending'")
+                    .run(decision, note || null, admin.id, appeal.id);
+                if (cas.changes === 0)
+                    throw new Error('APPEAL_RACE');
+                if (decision === 'accepted') {
+                    // 解封 + 验证权 +2 + 错误次数 -1
+                    db.prepare("UPDATE verifier_stats SET suspended_until = NULL, verify_rights = verify_rights + 2 WHERE user_id = ?").run(appeal.user_id);
+                    db.prepare("UPDATE verifier_whitelist SET error_count_180d = MAX(0, error_count_180d - 1) WHERE user_id = ?").run(appeal.user_id);
+                    // 完整重审：翻转该 verifier 在该 task 的 verdict + 补发奖励 + 翻回 stats
+                    const fullAppeal = db.prepare("SELECT task_id FROM verifier_appeals WHERE id = ?").get(appeal.id);
+                    if (fullAppeal?.task_id) {
+                        const sub = db.prepare("SELECT vs.id, vs.verdict, vt.reward_per_verifier FROM verify_submissions vs JOIN verify_tasks vt ON vt.id = vs.task_id WHERE vs.task_id = ? AND vs.verifier_id = ?")
+                            .get(fullAppeal.task_id, appeal.user_id);
+                        if (sub && sub.verdict === 'wrong') {
+                            db.prepare("UPDATE verify_submissions SET verdict = 'correct' WHERE id = ?").run(sub.id);
+                            db.prepare("UPDATE verifier_stats SET tasks_correct = tasks_correct + 1, tasks_wrong = MAX(0, tasks_wrong - 1), verify_rights = verify_rights + 3 WHERE user_id = ?").run(appeal.user_id);
+                            db.prepare("UPDATE wallets SET balance = balance + ? WHERE user_id = ?").run(sub.reward_per_verifier, appeal.user_id);
+                        }
+                    }
                 }
-            }
+            })();
+        }
+        catch (e) {
+            if (e.message === 'APPEAL_RACE')
+                return void res.json({ error: '该申诉已处理' });
+            console.error('[verifier appeal decide tx]', e.message);
+            return void res.status(500).json({ error: '裁决失败,请重试' });
         }
         logAdminAction(admin.id, 'decide_appeal', 'user', appeal.user_id, { decision, note: note || null });
         res.json({ success: true });