@tachybase/module-auth 1.6.1 → 1.6.2

package/dist/locale/zh-CN.json

@@ -1,56 +1,63 @@
-{
-  "Allow to sign in with": "允许使用以下方式登录",
-  "Allow to sign up": "允许注册",
-  "Are you sure to unbind this authenticator?": "确定要解绑该认证器吗？",
-  "Auth Type": "认证类型",
-  "Auth UID": "认证标识",
-  "Authentication": "认证方式",
-  "Authentication login bind": "认证登录绑定",
-  "Authenticators": "认证器",
-  "Bind": "绑定",
-  "Days": "天",
-  "Expired token refresh limit": "过期 Token 刷新时限",
-  "Hours": "小时",
-  "Minutes": "分钟",
-  "No authentication methods available.": "没有可用的认证方式。",
-  "Not a valid cellphone number, please re-enter": "不是有效的手机号，请重新输入",
-  "Not allowed to sign up": "禁止注册",
-  "Password is not allowed to be changed": "密码不允许修改",
-  "Please enter a valid email": "请输入有效的邮箱",
-  "Please enter a valid username": "请输入有效的用户名",
-  "Please enter your username or email": "请输入用户名或邮箱",
-  "Please keep and enable at least one authenticator": "请至少保留并启用一个认证器",
-  "SMS": "短信",
-  "Saved successfully!": "保存成功！",
-  "Seconds": "秒",
-  "Session validity period": "会话有效期",
-  "Sign in via email": "邮箱登录",
-  "Sign in via password": "密码登录",
-  "Sign-in": "登录",
-  "The authentication allows users to sign in via username or email.": "该认证方式支持用户通过用户名或邮箱登录。",
-  "The maximum time limit allowed for refreshing a Token after it expires. After this time limit, the token cannot be automatically renewed, and the user needs to log in again.": "Token 过期后允许刷新的最大时限，超过此时限后，Token 无法自动更新，用户需重新登录。",
-  "The maximum valid time for each user login. During the session validity, the Token will be automatically updated. After the timeout, the user is required to log in again.": "用户每次登录的最长有效时间，在会话有效期内，Token 会自动更新，超时后要求用户重新登录。",
-  "The password is inconsistent, please re-enter": "密码不一致，请重新输入",
-  "The password is incorrect, please re-enter": "密码有误，请重新输入",
-  "The phone number has been registered, please login directly": "手机号已注册，请直接登录",
-  "The phone number is not registered, please register first": "手机号未注册，请先注册",
-  "The username or email is incorrect, please re-enter": "用户名或邮箱有误，请重新输入",
-  "The validity period of each issued API Token. After the Token expires, if it is within the session validity period and has not exceeded the refresh limit, the server will automatically issue a new Token to maintain the user session, otherwise the user is required to log in again. (Each Token can only be refreshed once)": "每次签发的 API Token 的有效期。Token 过期后，如果处于会话有效期内，并且没有超过刷新时限，服务端将自动签发新 Token 以保持用户会话，否则要求用户重新登录。（每个 Token 只能被刷新一次）",
-  "Token policy": "Token 策略",
-  "Token validity period": "Token 有效期",
-  "Token validity period must be less than session validity period!": "Token 有效期必须小于会话有效期！",
-  "Unauthenticated. Please sign in to continue.": "未认证。请登录以继续。",
-  "Unbind": "解绑",
-  "User can bind or unbind the sign in type": "用户可以绑定或解绑登录方式",
-  "User not found. Please sign in again to continue.": "用户不存在。请重新登录以继续。",
-  "Username/Email": "用户名/邮箱",
-  "WeChat": "微信",
-  "Your account has been disabled, please contact administrator if you have any questions": "您的账户已被停用，如有疑问请联系管理员",
-  "Your account has been locked due to multiple failed login attempts. Please try again later.": "您的账户因多次登录失败已被锁定，请稍后再试",
-  "Your account is under review, please wait for administrator approval": "您的账户正在审核中，请等待管理员审核通过",
-  "Your session has expired. Please sign in again.": "您的会话已过期，请重新登录。",
-  "gitea": "Gitea 验证登录",
-  "sms": "短信验证",
-  "wechat": "微信登录",
-  "work-wechat": "企业微信登录"
-}
+{
+  "Allow to sign in with": "允许使用以下方式登录",
+  "Allow to sign up": "允许注册",
+  "Are you sure to unbind this authenticator?": "确定要解绑该认证器吗？",
+  "Auth Type": "认证类型",
+  "Auth UID": "认证标识",
+  "Authentication": "认证方式",
+  "Authentication login bind": "认证登录绑定",
+  "Authenticators": "认证器",
+  "Bind": "绑定",
+  "Days": "天",
+  "Expired token refresh limit": "过期 Token 刷新时限",
+  "Hours": "小时",
+  "Invalid status": "状态异常",
+  "Minutes": "分钟",
+  "No authentication methods available.": "没有可用的认证方式。",
+  "Not a valid cellphone number, please re-enter": "不是有效的手机号，请重新输入",
+  "Not allowed to sign up": "禁止注册",
+  "Password is not allowed to be changed": "密码不允许修改",
+  "Please enter a valid email": "请输入有效的邮箱",
+  "Please enter a valid username": "请输入有效的用户名",
+  "Please enter your username or email": "请输入用户名或邮箱",
+  "Please keep and enable at least one authenticator": "请至少保留并启用一个认证器",
+  "SMS": "短信",
+  "Saved successfully!": "保存成功！",
+  "Seconds": "秒",
+  "Session validity period": "会话有效期",
+  "Sign in via email": "邮箱登录",
+  "Sign in via password": "密码登录",
+  "Sign-in": "登录",
+  "Status expired, auto restored": "状态已过期，自动恢复",
+  "System error, please contact administrator": "系统错误，请联系管理员",
+  "The authentication allows users to sign in via username or email.": "该认证方式支持用户通过用户名或邮箱登录。",
+  "The maximum time limit allowed for refreshing a Token after it expires. After this time limit, the token cannot be automatically renewed, and the user needs to log in again.": "Token 过期后允许刷新的最大时限，超过此时限后，Token 无法自动更新，用户需重新登录。",
+  "The maximum valid time for each user login. During the session validity, the Token will be automatically updated. After the timeout, the user is required to log in again.": "用户每次登录的最长有效时间，在会话有效期内，Token 会自动更新，超时后要求用户重新登录。",
+  "The password is inconsistent, please re-enter": "密码不一致，请重新输入",
+  "The password is incorrect, please re-enter": "密码有误，请重新输入",
+  "The phone number has been registered, please login directly": "手机号已注册，请直接登录",
+  "The phone number is not registered, please register first": "手机号未注册，请先注册",
+  "The username or email is incorrect, please re-enter": "用户名或邮箱有误，请重新输入",
+  "The validity period of each issued API Token. After the Token expires, if it is within the session validity period and has not exceeded the refresh limit, the server will automatically issue a new Token to maintain the user session, otherwise the user is required to log in again. (Each Token can only be refreshed once)": "每次签发的 API Token 的有效期。Token 过期后，如果处于会话有效期内，并且没有超过刷新时限，服务端将自动签发新 Token 以保持用户会话，否则要求用户重新登录。（每个 Token 只能被刷新一次）",
+  "Token policy": "Token 策略",
+  "Token validity period": "Token 有效期",
+  "Token validity period must be less than session validity period!": "Token 有效期必须小于会话有效期！",
+  "Unauthenticated. Please sign in to continue.": "未认证。请登录以继续。",
+  "Unbind": "解绑",
+  "Unknown status": "未知状态",
+  "User can bind or unbind the sign in type": "用户可以绑定或解绑登录方式",
+  "User not found. Please sign in again to continue.": "用户不存在。请重新登录以继续。",
+  "User status does not allow login": "用户状态不允许登录",
+  "User status is invalid, please contact administrator": "用户状态异常，请联系管理员",
+  "Username/Email": "用户名/邮箱",
+  "WeChat": "微信",
+  "Your account has been disabled, please contact administrator if you have any questions": "您的账户已被停用，如有疑问请联系管理员",
+  "Your account has been locked due to multiple failed login attempts. Please try again later.": "您的账户因多次登录失败已被锁定，请稍后再试",
+  "Your account is under review, please wait for administrator approval": "您的账户正在审核中，请等待管理员审核通过",
+  "Your account status has changed. Please sign in again.": "您的账号状态已变更，请重新登录",
+  "Your session has expired. Please sign in again.": "您的会话已过期，请重新登录。",
+  "gitea": "Gitea 验证登录",
+  "sms": "短信验证",
+  "wechat": "微信登录",
+  "work-wechat": "企业微信登录"
+}

package/dist/node_modules/cron/package.json

@@ -1 +1 @@
-{"name":"cron","description":"Cron jobs for your node","version":"3.3.1","author":"Nick Campbell <nicholas.j.campbell@gmail.com> (https://github.com/ncb000gt)","bugs":{"url":"https://github.com/kelektiv/node-cron/issues"},"repository":{"type":"git","url":"https://github.com/kelektiv/node-cron.git"},"main":"dist/index.js","types":"dist/index.d.ts","scripts":{"build":"tsc -b tsconfig.build.json","lint:eslint":"eslint src/ tests/","lint:prettier":"prettier ./**/*.{json,md,yml} --check","lint":"npm run lint:eslint && npm run lint:prettier","lint:fix":"npm run lint:eslint -- --fix && npm run lint:prettier -- --write","test":"jest --coverage","test:watch":"jest --watch --coverage","test:fuzz":"jest  --testMatch='**/*.fuzz.ts' --coverage=false --testTimeout=120000","prepare":"husky"},"dependencies":{"@types/luxon":"~3.4.0","luxon":"~3.5.0"},"devDependencies":{"@commitlint/cli":"19.6.0","@eslint/js":"^9.14.0","@fast-check/jest":"2.0.3","@insurgent/commitlint-config":"20.0.0","@insurgent/conventional-changelog-preset":"10.0.0","@semantic-release/changelog":"6.0.3","@semantic-release/commit-analyzer":"13.0.0","@semantic-release/git":"10.0.1","@semantic-release/github":"11.0.1","@semantic-release/npm":"12.0.1","@semantic-release/release-notes-generator":"14.0.1","@types/jest":"29.5.14","@types/node":"20.17.9","@types/sinon":"17.0.3","chai":"4.5.0","eslint":"8.57.1","eslint-config-prettier":"9.1.0","eslint-plugin-jest":"27.9.0","eslint-plugin-prettier":"5.2.1","husky":"9.1.7","jest":"29.7.0","lint-staged":"15.2.10","prettier":"3.3.3","semantic-release":"24.2.0","sinon":"17.0.2","ts-jest":"29.2.5","typescript":"5.7.2","typescript-eslint":"^7.2.0"},"keywords":["cron","node cron","node-cron","schedule","scheduler","cronjob","cron job"],"license":"MIT","contributors":["Brandon der Blätter <https://interlucid.com/contact/> (https://github.com/intcreator)","Pierre Cavin <me@sherlox.io> (https://github.com/sheerlox)","Romain Beauxis <toots@rastageeks.org> (https://github.com/toots)","James Padolsey <> (https://github.com/jamespadolsey)","Finn Herpich <fh@three-heads.de> (https://github.com/ErrorProne)","Clifton Cunningham <clifton.cunningham@gmail.com> (https://github.com/cliftonc)","Eric Abouaf <eric.abouaf@gmail.com> (https://github.com/neyric)","humanchimp <morphcham@gmail.com> (https://github.com/humanchimp)","Craig Condon <craig@spiceapps.com> (https://github.com/spiceapps)","Dan Bear <daniel@hulu.com> (https://github.com/danhbear)","Vadim Baryshev <vadimbaryshev@gmail.com> (https://github.com/baryshev)","Leandro Ferrari <lfthomaz@gmail.com> (https://github.com/lfthomaz)","Gregg Zigler <greggzigler@gmail.com> (https://github.com/greggzigler)","Jordan Abderrachid <jabderrachid@gmail.com> (https://github.com/jordanabderrachid)","Masakazu Matsushita <matsukaz@gmail.com> (matsukaz)","Christopher Lunt <me@kirisu.co.uk> (https://github.com/kirisu)"],"files":["dist/**/*.js","dist/**/*.d.ts","CHANGELOG.md","LICENSE","README.md"],"lint-staged":{"*.ts":"eslint src/ tests/ --fix","*.{json,md,yml}":"prettier ./**/*.{json,md,yml} --check --write"},"_lastModified":"2025-12-05T07:09:26.013Z"}
+{"name":"cron","description":"Cron jobs for your node","version":"3.3.1","author":"Nick Campbell <nicholas.j.campbell@gmail.com> (https://github.com/ncb000gt)","bugs":{"url":"https://github.com/kelektiv/node-cron/issues"},"repository":{"type":"git","url":"https://github.com/kelektiv/node-cron.git"},"main":"dist/index.js","types":"dist/index.d.ts","scripts":{"build":"tsc -b tsconfig.build.json","lint:eslint":"eslint src/ tests/","lint:prettier":"prettier ./**/*.{json,md,yml} --check","lint":"npm run lint:eslint && npm run lint:prettier","lint:fix":"npm run lint:eslint -- --fix && npm run lint:prettier -- --write","test":"jest --coverage","test:watch":"jest --watch --coverage","test:fuzz":"jest  --testMatch='**/*.fuzz.ts' --coverage=false --testTimeout=120000","prepare":"husky"},"dependencies":{"@types/luxon":"~3.4.0","luxon":"~3.5.0"},"devDependencies":{"@commitlint/cli":"19.6.0","@eslint/js":"^9.14.0","@fast-check/jest":"2.0.3","@insurgent/commitlint-config":"20.0.0","@insurgent/conventional-changelog-preset":"10.0.0","@semantic-release/changelog":"6.0.3","@semantic-release/commit-analyzer":"13.0.0","@semantic-release/git":"10.0.1","@semantic-release/github":"11.0.1","@semantic-release/npm":"12.0.1","@semantic-release/release-notes-generator":"14.0.1","@types/jest":"29.5.14","@types/node":"20.17.9","@types/sinon":"17.0.3","chai":"4.5.0","eslint":"8.57.1","eslint-config-prettier":"9.1.0","eslint-plugin-jest":"27.9.0","eslint-plugin-prettier":"5.2.1","husky":"9.1.7","jest":"29.7.0","lint-staged":"15.2.10","prettier":"3.3.3","semantic-release":"24.2.0","sinon":"17.0.2","ts-jest":"29.2.5","typescript":"5.7.2","typescript-eslint":"^7.2.0"},"keywords":["cron","node cron","node-cron","schedule","scheduler","cronjob","cron job"],"license":"MIT","contributors":["Brandon der Blätter <https://interlucid.com/contact/> (https://github.com/intcreator)","Pierre Cavin <me@sherlox.io> (https://github.com/sheerlox)","Romain Beauxis <toots@rastageeks.org> (https://github.com/toots)","James Padolsey <> (https://github.com/jamespadolsey)","Finn Herpich <fh@three-heads.de> (https://github.com/ErrorProne)","Clifton Cunningham <clifton.cunningham@gmail.com> (https://github.com/cliftonc)","Eric Abouaf <eric.abouaf@gmail.com> (https://github.com/neyric)","humanchimp <morphcham@gmail.com> (https://github.com/humanchimp)","Craig Condon <craig@spiceapps.com> (https://github.com/spiceapps)","Dan Bear <daniel@hulu.com> (https://github.com/danhbear)","Vadim Baryshev <vadimbaryshev@gmail.com> (https://github.com/baryshev)","Leandro Ferrari <lfthomaz@gmail.com> (https://github.com/lfthomaz)","Gregg Zigler <greggzigler@gmail.com> (https://github.com/greggzigler)","Jordan Abderrachid <jabderrachid@gmail.com> (https://github.com/jordanabderrachid)","Masakazu Matsushita <matsukaz@gmail.com> (matsukaz)","Christopher Lunt <me@kirisu.co.uk> (https://github.com/kirisu)"],"files":["dist/**/*.js","dist/**/*.d.ts","CHANGELOG.md","LICENSE","README.md"],"lint-staged":{"*.ts":"eslint src/ tests/ --fix","*.{json,md,yml}":"prettier ./**/*.{json,md,yml} --check --write"},"_lastModified":"2025-12-05T11:14:22.671Z"}

package/dist/node_modules/ms/package.json

@@ -1 +1 @@
-{"name":"ms","version":"2.1.3","description":"Tiny millisecond conversion utility","repository":"vercel/ms","main":"./index","files":["index.js"],"scripts":{"precommit":"lint-staged","lint":"eslint lib/* bin/*","test":"mocha tests.js"},"eslintConfig":{"extends":"eslint:recommended","env":{"node":true,"es6":true}},"lint-staged":{"*.js":["npm run lint","prettier --single-quote --write","git add"]},"license":"MIT","devDependencies":{"eslint":"4.18.2","expect.js":"0.3.1","husky":"0.14.3","lint-staged":"5.0.0","mocha":"4.0.1","prettier":"2.0.5"},"_lastModified":"2025-12-05T07:09:26.116Z"}
+{"name":"ms","version":"2.1.3","description":"Tiny millisecond conversion utility","repository":"vercel/ms","main":"./index","files":["index.js"],"scripts":{"precommit":"lint-staged","lint":"eslint lib/* bin/*","test":"mocha tests.js"},"eslintConfig":{"extends":"eslint:recommended","env":{"node":true,"es6":true}},"lint-staged":{"*.js":["npm run lint","prettier --single-quote --write","git add"]},"license":"MIT","devDependencies":{"eslint":"4.18.2","expect.js":"0.3.1","husky":"0.14.3","lint-staged":"5.0.0","mocha":"4.0.1","prettier":"2.0.5"},"_lastModified":"2025-12-05T11:14:22.773Z"}

package/dist/server/basic-auth.js

@@ -36,7 +36,8 @@ var import_preset = require("../preset");
 class BasicAuth extends import_server.BaseAuth {
   constructor(config) {
     const userCollection = config.ctx.db.getCollection("users");
-    super({ ...config, userCollection });
+    const userStatusCollection = config.ctx.db.getCollection("userStatuses");
+    super({ ...config, userCollection, userStatusCollection });
   }
   async validate() {
     const ctx = this.ctx;

package/dist/server/locale/en-US.d.ts

@@ -6,13 +6,5 @@ declare const _default: {
     'The phone number has been registered, please login directly': string;
     'The phone number is not registered, please register first': string;
     'The username, email or password is incorrect, please re-enter': string;
-    'Invalid status': string;
-    'User status is invalid, please contact administrator': string;
-    'User status does not allow login': string;
-    'Your account is under review, please wait for administrator approval': string;
-    'Your account has been disabled, please contact administrator if you have any questions': string;
-    'Unknown status': string;
-    'System error, please contact administrator': string;
-    'Your account status has changed. Please sign in again.': string;
 };
 export default _default;

package/dist/server/locale/en-US.js

@@ -27,13 +27,5 @@ var en_US_default = {
   "Not a valid cellphone number, please re-enter": "Not a valid cellphone number, please re-enter",
   "The phone number has been registered, please login directly": "The phone number has been registered, please login directly",
   "The phone number is not registered, please register first": "The phone number is not registered, please register first",
-  "The username, email or password is incorrect, please re-enter": "The username, email or password is incorrect, please re-enter",
-  "Invalid status": "Invalid status",
-  "User status is invalid, please contact administrator": "User status is invalid, please contact administrator",
-  "User status does not allow login": "User status does not allow login",
-  "Your account is under review, please wait for administrator approval": "Your account is under review, please wait for administrator approval",
-  "Your account has been disabled, please contact administrator if you have any questions": "Your account has been disabled, please contact administrator if you have any questions",
-  "Unknown status": "Unknown status",
-  "System error, please contact administrator": "System error, please contact administrator",
-  "Your account status has changed. Please sign in again.": "Your account status has changed. Please sign in again."
+  "The username, email or password is incorrect, please re-enter": "The username, email or password is incorrect, please re-enter"
 };

package/dist/server/locale/zh-CN.d.ts

@@ -8,13 +8,5 @@ declare const _default: {
     'Please enter your username or email': string;
     'Please enter a valid username': string;
     'The username, email or password is incorrect, please re-enter': string;
-    'Invalid status': string;
-    'User status is invalid, please contact administrator': string;
-    'User status does not allow login': string;
-    'Your account is under review, please wait for administrator approval': string;
-    'Your account has been disabled, please contact administrator if you have any questions': string;
-    'Unknown status': string;
-    'System error, please contact administrator': string;
-    'Your account status has changed. Please sign in again.': string;
 };
 export default _default;

package/dist/server/locale/zh-CN.js

@@ -29,13 +29,5 @@ var zh_CN_default = {
   "Please keep and enable at least one authenticator": "\u8BF7\u81F3\u5C11\u4FDD\u7559\u5E76\u542F\u7528\u4E00\u4E2A\u8BA4\u8BC1\u5668",
   "Please enter your username or email": "\u8BF7\u8F93\u5165\u7528\u6237\u540D\u6216\u90AE\u7BB1",
   "Please enter a valid username": "\u8BF7\u8F93\u5165\u6709\u6548\u7684\u7528\u6237\u540D",
-  "The username, email or password is incorrect, please re-enter": "\u7528\u6237\u540D\u90AE\u7BB1\u6216\u8005\u5BC6\u7801\u6709\u8BEF,\u8BF7\u91CD\u65B0\u8F93\u5165",
-  "Invalid status": "\u72B6\u6001\u5F02\u5E38",
-  "User status is invalid, please contact administrator": "\u7528\u6237\u72B6\u6001\u5F02\u5E38\uFF0C\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "User status does not allow login": "\u7528\u6237\u72B6\u6001\u4E0D\u5141\u8BB8\u767B\u5F55",
-  "Your account is under review, please wait for administrator approval": "\u60A8\u7684\u8D26\u53F7\u6B63\u5728\u5BA1\u6838\u4E2D\uFF0C\u8BF7\u7B49\u5F85\u7BA1\u7406\u5458\u6279\u51C6",
-  "Your account has been disabled, please contact administrator if you have any questions": "\u60A8\u7684\u8D26\u53F7\u5DF2\u88AB\u7981\u7528\uFF0C\u5982\u6709\u7591\u95EE\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "Unknown status": "\u672A\u77E5\u72B6\u6001",
-  "System error, please contact administrator": "\u7CFB\u7EDF\u9519\u8BEF\uFF0C\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "Your account status has changed. Please sign in again.": "\u60A8\u7684\u8D26\u53F7\u72B6\u6001\u5DF2\u53D8\u66F4\uFF0C\u8BF7\u91CD\u65B0\u767B\u5F55"
+  "The username, email or password is incorrect, please re-enter": "\u7528\u6237\u540D\u90AE\u7BB1\u6216\u8005\u5BC6\u7801\u6709\u8BEF,\u8BF7\u91CD\u65B0\u8F93\u5165"
 };

package/dist/server/plugin.js

@@ -46,23 +46,27 @@ var import_user_status = require("./user-status");
 class PluginAuthServer extends import_server.Plugin {
   afterAdd() {
     this.app.on("afterLoad", async () => {
-      if (this.app.authManager.tokenController) {
-        return;
-      }
-      const cache = await this.app.cacheManager.createCache({
-        name: "auth-token-controller",
-        prefix: "auth-token-controller"
-      });
-      const tokenController = new import_token_controller.TokenController({ cache, app: this.app, logger: this.app.logger });
-      this.app.authManager.setTokenControlService(tokenController);
-      const tokenPolicyRepo = this.app.db.getRepository(import_constants.tokenPolicyCollectionName);
-      try {
-        const res = await tokenPolicyRepo.findOne({ filterByTk: import_constants.tokenPolicyRecordKey });
-        if (res) {
-          this.app.authManager.tokenController.setConfig(res.config);
+      if (!this.app.authManager.tokenController) {
+        const cache = await this.app.cacheManager.createCache({
+          name: "auth-token-controller",
+          prefix: "auth-token-controller"
+        });
+        const tokenController = new import_token_controller.TokenController({ cache, app: this.app, logger: this.app.logger });
+        this.app.authManager.setTokenControlService(tokenController);
+        const tokenPolicyRepo = this.app.db.getRepository(import_constants.tokenPolicyCollectionName);
+        try {
+          const res = await tokenPolicyRepo.findOne({ filterByTk: import_constants.tokenPolicyRecordKey });
+          if (res) {
+            this.app.authManager.tokenController.setConfig(res.config);
+          }
+        } catch (error) {
+          this.app.logger.warn("access control config not exist, use default value");
         }
-      } catch (error) {
-        this.app.logger.warn("access control config not exist, use default value");
+      }
+      if (!this.app.authManager.userStatusService) {
+        this.app.authManager.setUserStatusService(
+          new import_user_status.UserStatusService({ cache: this.cache, app: this.app, logger: this.app.logger })
+        );
       }
     });
   }
@@ -72,10 +76,6 @@ class PluginAuthServer extends import_server.Plugin {
     this.app.db.registerModels({ AuthModel: import_authenticator.AuthModel });
   }
   async load() {
-    this.userStatusService = new import_user_status.UserStatusService(this.app);
-    this.app.userStatusService = this.userStatusService;
-    this.userStatusService.injectLoginCheck();
-    this.userStatusService.registerStatusChangeInterceptor();
     this.cache = await this.app.cacheManager.createCache({
       name: "auth",
       prefix: "auth",

package/dist/server/user-status.d.ts

@@ -1,106 +1,45 @@
-import { Application } from '@tego/server';
+import { Application, Cache, Collection, SystemLogger, type IUserStatusService, type UserStatusCache, type UserStatusCheckResult } from '@tego/server';
 /**
- * 用户状态检查结果
+ * 基础用户状态服务实现
  */
-export interface UserStatusCheckResult {
-    allowed: boolean;
-    status: string;
-    statusInfo?: {
-        title: string;
-        color: string;
-        allowLogin: boolean;
-        loginErrorMessage?: string;
-    };
-    errorMessage?: string;
-    isExpired?: boolean;
-}
-/**
- * 修改用户状态的选项
- */
-export interface ChangeUserStatusOptions {
-    expireAt?: Date;
-    reason?: string;
-    operationType: 'manual' | 'auto' | 'system';
-    operatorId?: number;
-}
-/**
- * 状态注册配置
- */
-export interface StatusConfig {
-    key: string;
-    title: string;
-    color?: string;
-    allowLogin: boolean;
-    loginErrorMessage?: string;
-    packageName: string;
-    description?: string;
-    sort?: number;
-    config?: Record<string, any>;
-}
-declare module '@tego/server' {
-    interface BaseAuth {
-        checkUserStatusInContext?(userId: number): Promise<UserStatusCheckResult>;
-    }
-}
-/**
- * 用户状态管理服务
- * 负责用户状态的检查、变更、恢复等核心业务逻辑
- */
-export declare class UserStatusService {
-    private db;
-    private app;
-    private cache;
-    private logger;
-    constructor(app: Application);
-    /**
-     * 获取用户状态缓存键
-     */
-    private getUserStatusCacheKey;
-    /**
-     * 从缓存获取用户状态
-     */
-    private getUserStatusFromCache;
-    /**
-     * 设置用户状态缓存
-     */
-    private setUserStatusCache;
-    /**
-     * 清除用户状态缓存
-     */
-    private clearUserStatusCache;
-    /**
-     * 检查用户状态是否允许登录
-     * @param userId 用户ID
-     * @returns 检查结果
-     */
+export declare class UserStatusService implements IUserStatusService {
+    protected cache: Cache;
+    protected app: Application;
+    protected logger: SystemLogger;
+    protected userCollection: Collection;
+    protected userStatusCollection: Collection;
+    protected userStatusHistoryCollection: Collection;
+    constructor({ cache, app, logger }: {
+        cache: Cache;
+        app: Application;
+        logger: SystemLogger;
+    });
+    get userRepository(): import("@tego/server").Repository<any, any>;
+    get userStatusRepository(): import("@tego/server").Repository<any, any>;
+    get userStatusHistoryRepository(): import("@tego/server").Repository<any, any>;
+    /**
+     * 翻译消息
+     */
+    private t;
     checkUserStatus(userId: number): Promise<UserStatusCheckResult>;
-    /**
-     * 记录状态变更历史（如果不存在相同记录）
-     * @param params 状态变更参数
-     */
-    private recordStatusHistoryIfNotExists;
-    /**
-     * 恢复过期的用户状态
-     * @param userId 用户ID
-     */
+    setUserStatusCache(userId: number, data: UserStatusCache): Promise<void>;
+    getUserStatusFromCache(userId: number): Promise<UserStatusCache | null>;
+    getUserStatusCacheKey(userId: number): string;
     restoreUserStatus(userId: number): Promise<void>;
-    /**
-     * 注册新的用户状态(供插件使用)
-     * @param config 状态配置
-     */
-    registerStatus(config: StatusConfig): Promise<void>;
-    /**
-     * 获取每个状态的用户数量统计
-     */
-    getStatusStatistics(): Promise<Record<string, number>>;
-    /**
-     * 注入登录检查
-     */
-    injectLoginCheck(): void;
+    clearUserStatusCache(userId: number): Promise<void>;
+    recordStatusHistoryIfNotExists(params: {
+        userId: number;
+        fromStatus: string;
+        toStatus: string;
+        reason: string | null;
+        expireAt: Date | null;
+        operationType: 'manual' | 'auto' | 'system';
+        createdBy: number | null;
+        transaction?: any;
+    }): Promise<void>;
     /**
      * 注册用户状态变更拦截器
      * 拦截 users:update 请求,自动记录状态变更历史
      */
-    registerStatusChangeInterceptor(): void;
+    private registerStatusChangeInterceptor;
 }
-export default UserStatusService;