@tachybase/module-auth 1.6.1 → 1.6.3

package/dist/externalVersion.js

@@ -1,14 +1,14 @@
 module.exports = {
   "react": "18.3.1",
-  "@tachybase/client": "1.6.1",
+  "@tachybase/client": "1.6.3",
   "react-router-dom": "6.28.1",
-  "@tego/client": "1.6.0-alpha.9",
+  "@tego/client": "1.6.1",
   "axios": "1.13.0",
   "lodash": "4.17.21",
-  "@tego/server": "1.6.0-alpha.9",
-  "@tachybase/test": "1.6.0-alpha.9",
+  "@tego/server": "1.6.1",
+  "@tachybase/test": "1.6.1",
   "antd": "5.22.5",
-  "@tachybase/schema": "1.6.0-alpha.9",
+  "@tachybase/schema": "1.6.1",
   "react-i18next": "16.2.1",
   "@ant-design/icons": "6.1.0"
 };

package/dist/locale/en-US.json

@@ -12,6 +12,7 @@
   "Expired token refresh limit": "Expired token refresh limit",
   "Hours": "Hours",
   "In configuration mode, the entire column becomes transparent. In non-configuration mode, the entire column will be hidden. Even if the entire column is hidden, its configured default values and other settings will still take effect.": "In configuration mode, the entire column becomes transparent. In non-configuration mode, the entire column will be hidden. Even if the entire column is hidden, its configured default values and other settings will still take effect.",
+  "Invalid status": "Invalid status",
   "Minutes": "Minutes",
   "No authentication methods available.": "No authentication methods available.",
   "Not a valid cellphone number, please re-enter": "Not a valid cellphone number, please re-enter",
@@ -28,6 +29,8 @@
   "Sign in via email": "Sign in via email",
   "Sign in via password": "Sign in via password",
   "Sign-in": "Sign-in",
+  "Status expired, auto restored": "Status expired, auto restored",
+  "System error, please contact administrator": "System error, please contact administrator",
   "The authentication allows users to sign in via username or email.": "The authentication allows users to sign in via username or email.",
   "The maximum time limit allowed for refreshing a Token after it expires. After this time limit, the token cannot be automatically renewed, and the user needs to log in again.": "The maximum time limit allowed for refreshing a Token after it expires. After this time limit, the token cannot be automatically renewed, and the user needs to log in again.",
   "The maximum valid time for each user login. During the session validity, the Token will be automatically updated. After the timeout, the user is required to log in again.": "The maximum valid time for each user login. During the session validity, the Token will be automatically updated. After the timeout, the user is required to log in again.",
@@ -42,12 +45,16 @@
   "Token validity period must be less than session validity period!": "Token validity period must be less than session validity period!",
   "Unauthenticated. Please sign in to continue.": "Unauthenticated. Please sign in to continue.",
   "Unbind": "Unbind",
+  "Unknown status": "Unknown status",
   "User can bind or unbind the sign in type": "User can bind or unbind the sign in type",
   "User not found. Please sign in again to continue.": "User not found. Please sign in again to continue.",
+  "User status does not allow login": "User status does not allow login",
+  "User status is invalid, please contact administrator": "User status is invalid, please contact administrator",
   "Username/Email": "Username/Email",
   "Your account has been disabled, please contact administrator if you have any questions": "Your account has been disabled, please contact administrator if you have any questions",
   "Your account has been locked due to multiple failed login attempts. Please try again later.": "Your account has been locked due to multiple failed login attempts. Please try again later.",
   "Your account is under review, please wait for administrator approval": "Your account is under review, please wait for administrator approval",
+  "Your account status has changed. Please sign in again.": "Your account status has changed. Please sign in again.",
   "Your session has expired. Please sign in again.": "Your session has expired. Please sign in again.",
   "gitea": "Gitea",
   "sms": "SMS",

package/dist/locale/ko_KR.json

@@ -5,6 +5,7 @@
   "Auth UID": "인증 UID",
   "Authentication": "인증",
   "Authenticators": "인증기",
+  "Invalid status": "상태 오류",
   "No authentication methods available.": "사용 가능한 인증 방법이 없습니다.",
   "Not a valid cellphone number, please re-enter": "유효하지 않은 휴대폰 번호입니다. 다시 입력하세요.",
   "Not allowed to sign up": "가입할 수 없음",
@@ -16,14 +17,20 @@
   "Sign in via email": "이메일로 로그인",
   "Sign in via password": "비밀번호로 로그인",
   "Sign-in": "로그인",
+  "Status expired, auto restored": "상태가 만료되었습니다. 자동으로 복구되었습니다.",
+  "System error, please contact administrator": "시스템 오류입니다. 관리자에게 문의하세요.",
   "The authentication allows users to sign in via username or email.": "이 인증 방식을 사용하면 사용자가 사용자 이름 또는 이메일로 로그인할 수 있습니다.",
   "The password is inconsistent, please re-enter": "비밀번호가 일치하지 않습니다. 다시 입력하세요.",
   "The password is incorrect, please re-enter": "비밀번호가 잘못되었습니다. 다시 입력하세요.",
   "The phone number has been registered, please login directly": "전화번호가 이미 등록되어 있습니다. 직접 로그인하세요.",
   "The phone number is not registered, please register first": "전화번호가 등록되어 있지 않습니다. 먼저 등록하세요.",
   "The username or email is incorrect, please re-enter": "사용자 이름 또는 이메일이 잘못되었습니다. 다시 입력하세요.",
+  "Unknown status": "알 수 없는 상태",
+  "User status does not allow login": "사용자 상태가 로그인을 허용하지 않습니다.",
+  "User status is invalid, please contact administrator": "사용자 상태가 오류입니다. 관리자에게 문의하세요.",
   "Username/Email": "사용자 이름/이메일",
   "Your account has been disabled, please contact administrator if you have any questions": "Your account has been disabled, please contact administrator if you have any questions",
   "Your account has been locked due to multiple failed login attempts. Please try again later.": "Your account has been locked due to multiple failed login attempts. Please try again later.",
-  "Your account is under review, please wait for administrator approval": "Your account is under review, please wait for administrator approval"
+  "Your account is under review, please wait for administrator approval": "Your account is under review, please wait for administrator approval",
+  "Your account status has changed. Please sign in again.": "사용자 상태가 변경되었습니다. 다시 로그인하세요."
 }

package/dist/locale/zh-CN.json

@@ -11,6 +11,7 @@
   "Days": "天",
   "Expired token refresh limit": "过期 Token 刷新时限",
   "Hours": "小时",
+  "Invalid status": "状态异常",
   "Minutes": "分钟",
   "No authentication methods available.": "没有可用的认证方式。",
   "Not a valid cellphone number, please re-enter": "不是有效的手机号，请重新输入",
@@ -27,6 +28,8 @@
   "Sign in via email": "邮箱登录",
   "Sign in via password": "密码登录",
   "Sign-in": "登录",
+  "Status expired, auto restored": "状态已过期，自动恢复",
+  "System error, please contact administrator": "系统错误，请联系管理员",
   "The authentication allows users to sign in via username or email.": "该认证方式支持用户通过用户名或邮箱登录。",
   "The maximum time limit allowed for refreshing a Token after it expires. After this time limit, the token cannot be automatically renewed, and the user needs to log in again.": "Token 过期后允许刷新的最大时限，超过此时限后，Token 无法自动更新，用户需重新登录。",
   "The maximum valid time for each user login. During the session validity, the Token will be automatically updated. After the timeout, the user is required to log in again.": "用户每次登录的最长有效时间，在会话有效期内，Token 会自动更新，超时后要求用户重新登录。",
@@ -41,13 +44,17 @@
   "Token validity period must be less than session validity period!": "Token 有效期必须小于会话有效期！",
   "Unauthenticated. Please sign in to continue.": "未认证。请登录以继续。",
   "Unbind": "解绑",
+  "Unknown status": "未知状态",
   "User can bind or unbind the sign in type": "用户可以绑定或解绑登录方式",
   "User not found. Please sign in again to continue.": "用户不存在。请重新登录以继续。",
+  "User status does not allow login": "用户状态不允许登录",
+  "User status is invalid, please contact administrator": "用户状态异常，请联系管理员",
   "Username/Email": "用户名/邮箱",
   "WeChat": "微信",
   "Your account has been disabled, please contact administrator if you have any questions": "您的账户已被停用，如有疑问请联系管理员",
   "Your account has been locked due to multiple failed login attempts. Please try again later.": "您的账户因多次登录失败已被锁定，请稍后再试",
   "Your account is under review, please wait for administrator approval": "您的账户正在审核中，请等待管理员审核通过",
+  "Your account status has changed. Please sign in again.": "您的账号状态已变更，请重新登录",
   "Your session has expired. Please sign in again.": "您的会话已过期，请重新登录。",
   "gitea": "Gitea 验证登录",
   "sms": "短信验证",

package/dist/node_modules/cron/package.json

@@ -1 +1 @@
-{"name":"cron","description":"Cron jobs for your node","version":"3.3.1","author":"Nick Campbell <nicholas.j.campbell@gmail.com> (https://github.com/ncb000gt)","bugs":{"url":"https://github.com/kelektiv/node-cron/issues"},"repository":{"type":"git","url":"https://github.com/kelektiv/node-cron.git"},"main":"dist/index.js","types":"dist/index.d.ts","scripts":{"build":"tsc -b tsconfig.build.json","lint:eslint":"eslint src/ tests/","lint:prettier":"prettier ./**/*.{json,md,yml} --check","lint":"npm run lint:eslint && npm run lint:prettier","lint:fix":"npm run lint:eslint -- --fix && npm run lint:prettier -- --write","test":"jest --coverage","test:watch":"jest --watch --coverage","test:fuzz":"jest  --testMatch='**/*.fuzz.ts' --coverage=false --testTimeout=120000","prepare":"husky"},"dependencies":{"@types/luxon":"~3.4.0","luxon":"~3.5.0"},"devDependencies":{"@commitlint/cli":"19.6.0","@eslint/js":"^9.14.0","@fast-check/jest":"2.0.3","@insurgent/commitlint-config":"20.0.0","@insurgent/conventional-changelog-preset":"10.0.0","@semantic-release/changelog":"6.0.3","@semantic-release/commit-analyzer":"13.0.0","@semantic-release/git":"10.0.1","@semantic-release/github":"11.0.1","@semantic-release/npm":"12.0.1","@semantic-release/release-notes-generator":"14.0.1","@types/jest":"29.5.14","@types/node":"20.17.9","@types/sinon":"17.0.3","chai":"4.5.0","eslint":"8.57.1","eslint-config-prettier":"9.1.0","eslint-plugin-jest":"27.9.0","eslint-plugin-prettier":"5.2.1","husky":"9.1.7","jest":"29.7.0","lint-staged":"15.2.10","prettier":"3.3.3","semantic-release":"24.2.0","sinon":"17.0.2","ts-jest":"29.2.5","typescript":"5.7.2","typescript-eslint":"^7.2.0"},"keywords":["cron","node cron","node-cron","schedule","scheduler","cronjob","cron job"],"license":"MIT","contributors":["Brandon der Blätter <https://interlucid.com/contact/> (https://github.com/intcreator)","Pierre Cavin <me@sherlox.io> (https://github.com/sheerlox)","Romain Beauxis <toots@rastageeks.org> (https://github.com/toots)","James Padolsey <> (https://github.com/jamespadolsey)","Finn Herpich <fh@three-heads.de> (https://github.com/ErrorProne)","Clifton Cunningham <clifton.cunningham@gmail.com> (https://github.com/cliftonc)","Eric Abouaf <eric.abouaf@gmail.com> (https://github.com/neyric)","humanchimp <morphcham@gmail.com> (https://github.com/humanchimp)","Craig Condon <craig@spiceapps.com> (https://github.com/spiceapps)","Dan Bear <daniel@hulu.com> (https://github.com/danhbear)","Vadim Baryshev <vadimbaryshev@gmail.com> (https://github.com/baryshev)","Leandro Ferrari <lfthomaz@gmail.com> (https://github.com/lfthomaz)","Gregg Zigler <greggzigler@gmail.com> (https://github.com/greggzigler)","Jordan Abderrachid <jabderrachid@gmail.com> (https://github.com/jordanabderrachid)","Masakazu Matsushita <matsukaz@gmail.com> (matsukaz)","Christopher Lunt <me@kirisu.co.uk> (https://github.com/kirisu)"],"files":["dist/**/*.js","dist/**/*.d.ts","CHANGELOG.md","LICENSE","README.md"],"lint-staged":{"*.ts":"eslint src/ tests/ --fix","*.{json,md,yml}":"prettier ./**/*.{json,md,yml} --check --write"},"_lastModified":"2025-12-05T07:09:26.013Z"}
+{"name":"cron","description":"Cron jobs for your node","version":"3.3.1","author":"Nick Campbell <nicholas.j.campbell@gmail.com> (https://github.com/ncb000gt)","bugs":{"url":"https://github.com/kelektiv/node-cron/issues"},"repository":{"type":"git","url":"https://github.com/kelektiv/node-cron.git"},"main":"dist/index.js","types":"dist/index.d.ts","scripts":{"build":"tsc -b tsconfig.build.json","lint:eslint":"eslint src/ tests/","lint:prettier":"prettier ./**/*.{json,md,yml} --check","lint":"npm run lint:eslint && npm run lint:prettier","lint:fix":"npm run lint:eslint -- --fix && npm run lint:prettier -- --write","test":"jest --coverage","test:watch":"jest --watch --coverage","test:fuzz":"jest  --testMatch='**/*.fuzz.ts' --coverage=false --testTimeout=120000","prepare":"husky"},"dependencies":{"@types/luxon":"~3.4.0","luxon":"~3.5.0"},"devDependencies":{"@commitlint/cli":"19.6.0","@eslint/js":"^9.14.0","@fast-check/jest":"2.0.3","@insurgent/commitlint-config":"20.0.0","@insurgent/conventional-changelog-preset":"10.0.0","@semantic-release/changelog":"6.0.3","@semantic-release/commit-analyzer":"13.0.0","@semantic-release/git":"10.0.1","@semantic-release/github":"11.0.1","@semantic-release/npm":"12.0.1","@semantic-release/release-notes-generator":"14.0.1","@types/jest":"29.5.14","@types/node":"20.17.9","@types/sinon":"17.0.3","chai":"4.5.0","eslint":"8.57.1","eslint-config-prettier":"9.1.0","eslint-plugin-jest":"27.9.0","eslint-plugin-prettier":"5.2.1","husky":"9.1.7","jest":"29.7.0","lint-staged":"15.2.10","prettier":"3.3.3","semantic-release":"24.2.0","sinon":"17.0.2","ts-jest":"29.2.5","typescript":"5.7.2","typescript-eslint":"^7.2.0"},"keywords":["cron","node cron","node-cron","schedule","scheduler","cronjob","cron job"],"license":"MIT","contributors":["Brandon der Blätter <https://interlucid.com/contact/> (https://github.com/intcreator)","Pierre Cavin <me@sherlox.io> (https://github.com/sheerlox)","Romain Beauxis <toots@rastageeks.org> (https://github.com/toots)","James Padolsey <> (https://github.com/jamespadolsey)","Finn Herpich <fh@three-heads.de> (https://github.com/ErrorProne)","Clifton Cunningham <clifton.cunningham@gmail.com> (https://github.com/cliftonc)","Eric Abouaf <eric.abouaf@gmail.com> (https://github.com/neyric)","humanchimp <morphcham@gmail.com> (https://github.com/humanchimp)","Craig Condon <craig@spiceapps.com> (https://github.com/spiceapps)","Dan Bear <daniel@hulu.com> (https://github.com/danhbear)","Vadim Baryshev <vadimbaryshev@gmail.com> (https://github.com/baryshev)","Leandro Ferrari <lfthomaz@gmail.com> (https://github.com/lfthomaz)","Gregg Zigler <greggzigler@gmail.com> (https://github.com/greggzigler)","Jordan Abderrachid <jabderrachid@gmail.com> (https://github.com/jordanabderrachid)","Masakazu Matsushita <matsukaz@gmail.com> (matsukaz)","Christopher Lunt <me@kirisu.co.uk> (https://github.com/kirisu)"],"files":["dist/**/*.js","dist/**/*.d.ts","CHANGELOG.md","LICENSE","README.md"],"lint-staged":{"*.ts":"eslint src/ tests/ --fix","*.{json,md,yml}":"prettier ./**/*.{json,md,yml} --check --write"},"_lastModified":"2025-12-26T04:40:08.648Z"}

package/dist/node_modules/ms/package.json

@@ -1 +1 @@
-{"name":"ms","version":"2.1.3","description":"Tiny millisecond conversion utility","repository":"vercel/ms","main":"./index","files":["index.js"],"scripts":{"precommit":"lint-staged","lint":"eslint lib/* bin/*","test":"mocha tests.js"},"eslintConfig":{"extends":"eslint:recommended","env":{"node":true,"es6":true}},"lint-staged":{"*.js":["npm run lint","prettier --single-quote --write","git add"]},"license":"MIT","devDependencies":{"eslint":"4.18.2","expect.js":"0.3.1","husky":"0.14.3","lint-staged":"5.0.0","mocha":"4.0.1","prettier":"2.0.5"},"_lastModified":"2025-12-05T07:09:26.116Z"}
+{"name":"ms","version":"2.1.3","description":"Tiny millisecond conversion utility","repository":"vercel/ms","main":"./index","files":["index.js"],"scripts":{"precommit":"lint-staged","lint":"eslint lib/* bin/*","test":"mocha tests.js"},"eslintConfig":{"extends":"eslint:recommended","env":{"node":true,"es6":true}},"lint-staged":{"*.js":["npm run lint","prettier --single-quote --write","git add"]},"license":"MIT","devDependencies":{"eslint":"4.18.2","expect.js":"0.3.1","husky":"0.14.3","lint-staged":"5.0.0","mocha":"4.0.1","prettier":"2.0.5"},"_lastModified":"2025-12-26T04:40:08.750Z"}

package/dist/server/basic-auth.js

@@ -36,7 +36,8 @@ var import_preset = require("../preset");
 class BasicAuth extends import_server.BaseAuth {
   constructor(config) {
     const userCollection = config.ctx.db.getCollection("users");
-    super({ ...config, userCollection });
+    const userStatusCollection = config.ctx.db.getCollection("userStatuses");
+    super({ ...config, userCollection, userStatusCollection });
   }
   async validate() {
     const ctx = this.ctx;

package/dist/server/locale/en-US.d.ts

@@ -6,13 +6,5 @@ declare const _default: {
     'The phone number has been registered, please login directly': string;
     'The phone number is not registered, please register first': string;
     'The username, email or password is incorrect, please re-enter': string;
-    'Invalid status': string;
-    'User status is invalid, please contact administrator': string;
-    'User status does not allow login': string;
-    'Your account is under review, please wait for administrator approval': string;
-    'Your account has been disabled, please contact administrator if you have any questions': string;
-    'Unknown status': string;
-    'System error, please contact administrator': string;
-    'Your account status has changed. Please sign in again.': string;
 };
 export default _default;

package/dist/server/locale/en-US.js

@@ -27,13 +27,5 @@ var en_US_default = {
   "Not a valid cellphone number, please re-enter": "Not a valid cellphone number, please re-enter",
   "The phone number has been registered, please login directly": "The phone number has been registered, please login directly",
   "The phone number is not registered, please register first": "The phone number is not registered, please register first",
-  "The username, email or password is incorrect, please re-enter": "The username, email or password is incorrect, please re-enter",
-  "Invalid status": "Invalid status",
-  "User status is invalid, please contact administrator": "User status is invalid, please contact administrator",
-  "User status does not allow login": "User status does not allow login",
-  "Your account is under review, please wait for administrator approval": "Your account is under review, please wait for administrator approval",
-  "Your account has been disabled, please contact administrator if you have any questions": "Your account has been disabled, please contact administrator if you have any questions",
-  "Unknown status": "Unknown status",
-  "System error, please contact administrator": "System error, please contact administrator",
-  "Your account status has changed. Please sign in again.": "Your account status has changed. Please sign in again."
+  "The username, email or password is incorrect, please re-enter": "The username, email or password is incorrect, please re-enter"
 };

package/dist/server/locale/zh-CN.d.ts

@@ -8,13 +8,5 @@ declare const _default: {
     'Please enter your username or email': string;
     'Please enter a valid username': string;
     'The username, email or password is incorrect, please re-enter': string;
-    'Invalid status': string;
-    'User status is invalid, please contact administrator': string;
-    'User status does not allow login': string;
-    'Your account is under review, please wait for administrator approval': string;
-    'Your account has been disabled, please contact administrator if you have any questions': string;
-    'Unknown status': string;
-    'System error, please contact administrator': string;
-    'Your account status has changed. Please sign in again.': string;
 };
 export default _default;

package/dist/server/locale/zh-CN.js

@@ -29,13 +29,5 @@ var zh_CN_default = {
   "Please keep and enable at least one authenticator": "\u8BF7\u81F3\u5C11\u4FDD\u7559\u5E76\u542F\u7528\u4E00\u4E2A\u8BA4\u8BC1\u5668",
   "Please enter your username or email": "\u8BF7\u8F93\u5165\u7528\u6237\u540D\u6216\u90AE\u7BB1",
   "Please enter a valid username": "\u8BF7\u8F93\u5165\u6709\u6548\u7684\u7528\u6237\u540D",
-  "The username, email or password is incorrect, please re-enter": "\u7528\u6237\u540D\u90AE\u7BB1\u6216\u8005\u5BC6\u7801\u6709\u8BEF,\u8BF7\u91CD\u65B0\u8F93\u5165",
-  "Invalid status": "\u72B6\u6001\u5F02\u5E38",
-  "User status is invalid, please contact administrator": "\u7528\u6237\u72B6\u6001\u5F02\u5E38\uFF0C\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "User status does not allow login": "\u7528\u6237\u72B6\u6001\u4E0D\u5141\u8BB8\u767B\u5F55",
-  "Your account is under review, please wait for administrator approval": "\u60A8\u7684\u8D26\u53F7\u6B63\u5728\u5BA1\u6838\u4E2D\uFF0C\u8BF7\u7B49\u5F85\u7BA1\u7406\u5458\u6279\u51C6",
-  "Your account has been disabled, please contact administrator if you have any questions": "\u60A8\u7684\u8D26\u53F7\u5DF2\u88AB\u7981\u7528\uFF0C\u5982\u6709\u7591\u95EE\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "Unknown status": "\u672A\u77E5\u72B6\u6001",
-  "System error, please contact administrator": "\u7CFB\u7EDF\u9519\u8BEF\uFF0C\u8BF7\u8054\u7CFB\u7BA1\u7406\u5458",
-  "Your account status has changed. Please sign in again.": "\u60A8\u7684\u8D26\u53F7\u72B6\u6001\u5DF2\u53D8\u66F4\uFF0C\u8BF7\u91CD\u65B0\u767B\u5F55"
+  "The username, email or password is incorrect, please re-enter": "\u7528\u6237\u540D\u90AE\u7BB1\u6216\u8005\u5BC6\u7801\u6709\u8BEF,\u8BF7\u91CD\u65B0\u8F93\u5165"
 };

package/dist/server/plugin.js

@@ -46,23 +46,27 @@ var import_user_status = require("./user-status");
 class PluginAuthServer extends import_server.Plugin {
   afterAdd() {
     this.app.on("afterLoad", async () => {
-      if (this.app.authManager.tokenController) {
-        return;
-      }
-      const cache = await this.app.cacheManager.createCache({
-        name: "auth-token-controller",
-        prefix: "auth-token-controller"
-      });
-      const tokenController = new import_token_controller.TokenController({ cache, app: this.app, logger: this.app.logger });
-      this.app.authManager.setTokenControlService(tokenController);
-      const tokenPolicyRepo = this.app.db.getRepository(import_constants.tokenPolicyCollectionName);
-      try {
-        const res = await tokenPolicyRepo.findOne({ filterByTk: import_constants.tokenPolicyRecordKey });
-        if (res) {
-          this.app.authManager.tokenController.setConfig(res.config);
+      if (!this.app.authManager.tokenController) {
+        const cache = await this.app.cacheManager.createCache({
+          name: "auth-token-controller",
+          prefix: "auth-token-controller"
+        });
+        const tokenController = new import_token_controller.TokenController({ cache, app: this.app, logger: this.app.logger });
+        this.app.authManager.setTokenControlService(tokenController);
+        const tokenPolicyRepo = this.app.db.getRepository(import_constants.tokenPolicyCollectionName);
+        try {
+          const res = await tokenPolicyRepo.findOne({ filterByTk: import_constants.tokenPolicyRecordKey });
+          if (res) {
+            this.app.authManager.tokenController.setConfig(res.config);
+          }
+        } catch (error) {
+          this.app.logger.warn("access control config not exist, use default value");
         }
-      } catch (error) {
-        this.app.logger.warn("access control config not exist, use default value");
+      }
+      if (!this.app.authManager.userStatusService) {
+        this.app.authManager.setUserStatusService(
+          new import_user_status.UserStatusService({ cache: this.cache, app: this.app, logger: this.app.logger })
+        );
       }
     });
   }
@@ -72,10 +76,6 @@ class PluginAuthServer extends import_server.Plugin {
     this.app.db.registerModels({ AuthModel: import_authenticator.AuthModel });
   }
   async load() {
-    this.userStatusService = new import_user_status.UserStatusService(this.app);
-    this.app.userStatusService = this.userStatusService;
-    this.userStatusService.injectLoginCheck();
-    this.userStatusService.registerStatusChangeInterceptor();
     this.cache = await this.app.cacheManager.createCache({
       name: "auth",
       prefix: "auth",

package/dist/server/user-status.d.ts

@@ -1,106 +1,45 @@
-import { Application } from '@tego/server';
+import { Application, Cache, Collection, SystemLogger, type IUserStatusService, type UserStatusCache, type UserStatusCheckResult } from '@tego/server';
 /**
- * 用户状态检查结果
+ * 基础用户状态服务实现
  */
-export interface UserStatusCheckResult {
-    allowed: boolean;
-    status: string;
-    statusInfo?: {
-        title: string;
-        color: string;
-        allowLogin: boolean;
-        loginErrorMessage?: string;
-    };
-    errorMessage?: string;
-    isExpired?: boolean;
-}
-/**
- * 修改用户状态的选项
- */
-export interface ChangeUserStatusOptions {
-    expireAt?: Date;
-    reason?: string;
-    operationType: 'manual' | 'auto' | 'system';
-    operatorId?: number;
-}
-/**
- * 状态注册配置
- */
-export interface StatusConfig {
-    key: string;
-    title: string;
-    color?: string;
-    allowLogin: boolean;
-    loginErrorMessage?: string;
-    packageName: string;
-    description?: string;
-    sort?: number;
-    config?: Record<string, any>;
-}
-declare module '@tego/server' {
-    interface BaseAuth {
-        checkUserStatusInContext?(userId: number): Promise<UserStatusCheckResult>;
-    }
-}
-/**
- * 用户状态管理服务
- * 负责用户状态的检查、变更、恢复等核心业务逻辑
- */
-export declare class UserStatusService {
-    private db;
-    private app;
-    private cache;
-    private logger;
-    constructor(app: Application);
-    /**
-     * 获取用户状态缓存键
-     */
-    private getUserStatusCacheKey;
-    /**
-     * 从缓存获取用户状态
-     */
-    private getUserStatusFromCache;
-    /**
-     * 设置用户状态缓存
-     */
-    private setUserStatusCache;
-    /**
-     * 清除用户状态缓存
-     */
-    private clearUserStatusCache;
-    /**
-     * 检查用户状态是否允许登录
-     * @param userId 用户ID
-     * @returns 检查结果
-     */
+export declare class UserStatusService implements IUserStatusService {
+    protected cache: Cache;
+    protected app: Application;
+    protected logger: SystemLogger;
+    protected userCollection: Collection;
+    protected userStatusCollection: Collection;
+    protected userStatusHistoryCollection: Collection;
+    constructor({ cache, app, logger }: {
+        cache: Cache;
+        app: Application;
+        logger: SystemLogger;
+    });
+    get userRepository(): import("@tego/server").Repository<any, any>;
+    get userStatusRepository(): import("@tego/server").Repository<any, any>;
+    get userStatusHistoryRepository(): import("@tego/server").Repository<any, any>;
+    /**
+     * 翻译消息
+     */
+    private t;
     checkUserStatus(userId: number): Promise<UserStatusCheckResult>;
-    /**
-     * 记录状态变更历史（如果不存在相同记录）
-     * @param params 状态变更参数
-     */
-    private recordStatusHistoryIfNotExists;
-    /**
-     * 恢复过期的用户状态
-     * @param userId 用户ID
-     */
+    setUserStatusCache(userId: number, data: UserStatusCache): Promise<void>;
+    getUserStatusFromCache(userId: number): Promise<UserStatusCache | null>;
+    getUserStatusCacheKey(userId: number): string;
     restoreUserStatus(userId: number): Promise<void>;
-    /**
-     * 注册新的用户状态(供插件使用)
-     * @param config 状态配置
-     */
-    registerStatus(config: StatusConfig): Promise<void>;
-    /**
-     * 获取每个状态的用户数量统计
-     */
-    getStatusStatistics(): Promise<Record<string, number>>;
-    /**
-     * 注入登录检查
-     */
-    injectLoginCheck(): void;
+    clearUserStatusCache(userId: number): Promise<void>;
+    recordStatusHistoryIfNotExists(params: {
+        userId: number;
+        fromStatus: string;
+        toStatus: string;
+        reason: string | null;
+        expireAt: Date | null;
+        operationType: 'manual' | 'auto' | 'system';
+        createdBy: number | null;
+        transaction?: any;
+    }): Promise<void>;
     /**
      * 注册用户状态变更拦截器
      * 拦截 users:update 请求,自动记录状态变更历史
      */
-    registerStatusChangeInterceptor(): void;
+    private registerStatusChangeInterceptor;
 }
-export default UserStatusService;

package/dist/server/user-status.js

@@ -17,79 +17,57 @@ var __copyProps = (to, from, except, desc) => {
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var user_status_exports = {};
 __export(user_status_exports, {
-  UserStatusService: () => UserStatusService,
-  default: () => user_status_default
+  UserStatusService: () => UserStatusService
 });
 module.exports = __toCommonJS(user_status_exports);
-var import_server = require("@tego/server");
 var import_preset = require("../preset");
+const localeNamespace = import_preset.namespace;
 class UserStatusService {
-  constructor(app) {
+  constructor({ cache, app, logger }) {
+    this.cache = cache;
     this.app = app;
-    this.db = app.db;
-    this.cache = app.cache;
-    this.logger = app.logger;
+    this.logger = logger;
+    this.userCollection = app.db.getCollection("users");
+    this.userStatusCollection = app.db.getCollection("userStatuses");
+    this.userStatusHistoryCollection = app.db.getCollection("userStatusHistories");
+    this.registerStatusChangeInterceptor();
   }
-  /**
-   * 获取用户状态缓存键
-   */
-  getUserStatusCacheKey(userId) {
-    return `userStatus:${userId}`;
+  get userRepository() {
+    return this.userCollection.repository;
   }
-  /**
-   * 从缓存获取用户状态
-   */
-  async getUserStatusFromCache(userId) {
-    try {
-      const cacheKey = this.getUserStatusCacheKey(userId);
-      const cached = await this.cache.get(cacheKey);
-      return cached ? JSON.parse(cached) : null;
-    } catch (error) {
-      this.logger.error("Error getting user status from cache:", error);
-      return null;
-    }
+  get userStatusRepository() {
+    return this.userStatusCollection.repository;
   }
-  /**
-   * 设置用户状态缓存
-   */
-  async setUserStatusCache(userId, data) {
-    try {
-      const cacheKey = this.getUserStatusCacheKey(userId);
-      await this.cache.set(cacheKey, JSON.stringify(data), 300 * 1e3);
-    } catch (error) {
-      this.logger.error("Error setting user status cache:", error);
-    }
+  get userStatusHistoryRepository() {
+    return this.userStatusHistoryCollection.repository;
   }
   /**
-   * 清除用户状态缓存
+   * 翻译消息
    */
-  async clearUserStatusCache(userId) {
-    try {
-      const cacheKey = this.getUserStatusCacheKey(userId);
-      await this.cache.del(cacheKey);
-    } catch (error) {
-      this.logger.error("Error clearing user status cache:", error);
-    }
+  t(key, options) {
+    var _a, _b;
+    const language = (options == null ? void 0 : options.lng) || ((_a = this.app.i18n) == null ? void 0 : _a.language) || "en-US";
+    return ((_b = this.app.i18n) == null ? void 0 : _b.t(key, { ...options, lng: language })) || key;
   }
-  /**
-   * 检查用户状态是否允许登录
-   * @param userId 用户ID
-   * @returns 检查结果
-   */
   async checkUserStatus(userId) {
     try {
       let cached = await this.getUserStatusFromCache(userId);
       if (!cached) {
-        const userRepo = this.db.getRepository("users");
-        const user = await userRepo.findOne({
-          filterByTk: userId,
+        const user = await this.userRepository.findOne({
+          filter: { id: userId },
           fields: ["id", "status", "statusExpireAt", "previousStatus"]
         });
         if (!user) {
           return {
             allowed: false,
             status: "unknown",
-            errorMessage: this.app.i18n.t("User not found")
+            statusInfo: {
+              title: this.t("User not found. Please sign in again to continue.", { ns: localeNamespace }),
+              color: "red",
+              allowLogin: false
+            },
+            errorMessage: this.t("User not found. Please sign in again to continue.", { ns: localeNamespace }),
+            isExpired: false
           };
         }
         cached = {
@@ -103,9 +81,8 @@ class UserStatusService {
       }
       if (cached.expireAt && new Date(cached.expireAt) <= /* @__PURE__ */ new Date()) {
         await this.restoreUserStatus(userId);
-        const userRepo = this.db.getRepository("users");
-        const user = await userRepo.findOne({
-          filterByTk: userId,
+        const user = await this.userRepository.findOne({
+          filter: { id: userId },
           fields: ["status"]
         });
         cached.status = user.status || "active";
@@ -113,9 +90,8 @@ class UserStatusService {
         cached.previousStatus = null;
         await this.setUserStatusCache(userId, cached);
       }
-      const statusRepo = this.db.getRepository("userStatuses");
-      const statusInfo = await statusRepo.findOne({
-        filterByTk: cached.status
+      const statusInfo = await this.userStatusRepository.findOne({
+        filter: { key: cached.status }
       });
       if (!statusInfo) {
         this.logger.warn(`Status definition not found: ${cached.status}`);
@@ -123,36 +99,34 @@ class UserStatusService {
           allowed: false,
           status: cached.status,
           statusInfo: {
-            title: this.app.i18n.t("Invalid status", { ns: import_preset.namespace }),
+            title: this.t("Invalid status", { ns: localeNamespace }),
             color: "red",
-            allowLogin: false,
-            loginErrorMessage: this.app.i18n.t("User status is invalid, please contact administrator", {
-              ns: import_preset.namespace
-            })
+            allowLogin: false
           },
-          errorMessage: this.app.i18n.t("User status is invalid, please contact administrator", { ns: import_preset.namespace })
+          errorMessage: this.t("User status is invalid, please contact administrator", { ns: localeNamespace }),
+          isExpired: true
         };
       }
       const translateMessage = (message) => {
         if (!message) return "";
         const match = message.match(/\{\{t\("([^"]+)"\)\}\}/);
         if (match && match[1]) {
-          return this.app.i18n.t(match[1], { ns: import_preset.namespace });
+          return this.t(match[1], { ns: localeNamespace });
         }
         return message;
       };
       const translatedTitle = translateMessage(statusInfo.title);
-      const translatedLoginErrorMessage = translateMessage(statusInfo.loginErrorMessage);
+      const translatedLoginErrorMessage = translateMessage(statusInfo.loginErrorMessage) || this.t("User status does not allow login", { ns: localeNamespace });
       return {
         allowed: statusInfo.allowLogin,
         status: cached.status,
         statusInfo: {
           title: translatedTitle,
           color: statusInfo.color,
-          allowLogin: statusInfo.allowLogin,
-          loginErrorMessage: translatedLoginErrorMessage
+          allowLogin: statusInfo.allowLogin
         },
-        errorMessage: !statusInfo.allowLogin ? translatedLoginErrorMessage || this.app.i18n.t("User status does not allow login", { ns: import_preset.namespace }) : void 0
+        errorMessage: statusInfo.allowLogin ? null : translatedLoginErrorMessage || null,
+        isExpired: false
       };
     } catch (error) {
       this.logger.error(`Error checking user status for userId=${userId}: ${error}`);
@@ -160,106 +134,73 @@ class UserStatusService {
         allowed: false,
         status: "unknown",
         statusInfo: {
-          title: this.app.i18n.t("Unknown status", { ns: import_preset.namespace }),
+          title: this.t("Unknown status", { ns: localeNamespace }),
           color: "red",
-          allowLogin: false,
-          loginErrorMessage: this.app.i18n.t("System error, please contact administrator", { ns: import_preset.namespace })
+          allowLogin: false
         },
-        errorMessage: this.app.i18n.t("System error, please contact administrator", { ns: import_preset.namespace })
+        errorMessage: this.t("System error, please contact administrator", { ns: localeNamespace }),
+        isExpired: false
       };
     }
   }
-  /**
-   * 记录状态变更历史（如果不存在相同记录）
-   * @param params 状态变更参数
-   */
-  async recordStatusHistoryIfNotExists(params) {
-    const { userId, fromStatus, toStatus, reason, expireAt, operationType, createdBy, transaction } = params;
+  async setUserStatusCache(userId, data) {
     try {
-      const historyRepo = this.db.getRepository("userStatusHistories");
-      const fiveSecondsAgo = new Date(Date.now() - 5e3);
-      const existing = await historyRepo.findOne({
-        filter: {
-          userId,
-          fromStatus,
-          toStatus,
-          createdAt: {
-            $gte: fiveSecondsAgo
-          }
-        },
-        sort: ["-createdAt"],
-        transaction
-      });
-      if (existing) {
-        this.logger.warn(
-          `Skipping duplicate history record: userId=${userId}, ${fromStatus} \u2192 ${toStatus}, operationType=${operationType}`
-        );
-        return;
-      }
-      await historyRepo.create({
-        values: {
-          userId,
-          fromStatus,
-          toStatus,
-          reason,
-          expireAt,
-          operationType,
-          createdBy
-        },
-        transaction
-      });
-      this.logger.debug(
-        `History recorded: userId=${userId}, ${fromStatus} \u2192 ${toStatus}, operationType=${operationType}`
-      );
-      await this.clearUserStatusCache(userId);
-      this.logger.debug(`Cache cleared for userId=${userId}`);
+      const cacheKey = this.getUserStatusCacheKey(userId);
+      await this.cache.set(cacheKey, JSON.stringify(data), 300 * 1e3);
     } catch (error) {
-      this.logger.error("Failed to record status history:", error);
-      throw error;
+      this.logger.error("Error setting user status cache:", error);
     }
   }
-  /**
-   * 恢复过期的用户状态
-   * @param userId 用户ID
-   */
+  async getUserStatusFromCache(userId) {
+    try {
+      const cacheKey = this.getUserStatusCacheKey(userId);
+      const cached = await this.cache.get(cacheKey);
+      return cached ? JSON.parse(cached) : null;
+    } catch (error) {
+      this.logger.error("Error getting user status from cache:", error);
+      return null;
+    }
+  }
+  getUserStatusCacheKey(userId) {
+    return `userStatus:${userId}`;
+  }
   async restoreUserStatus(userId) {
     try {
-      const userRepo = this.db.getRepository("users");
-      const user = await userRepo.findOne({
-        filterByTk: userId,
+      const user = await this.userRepository.findOne({
+        filter: { id: userId },
         fields: ["id", "status", "statusExpireAt", "previousStatus"]
       });
       if (!user) {
-        throw new Error(this.app.i18n.t("User not found"));
+        throw new Error(this.t("User not found. Please sign in again to continue.", { ns: localeNamespace }));
       }
       if (!user.statusExpireAt || new Date(user.statusExpireAt) > /* @__PURE__ */ new Date()) {
         return;
       }
       const oldStatus = user.status;
       const restoreToStatus = user.previousStatus || "active";
-      await this.db.sequelize.transaction(async (transaction) => {
+      await this.app.db.sequelize.transaction(async (transaction) => {
         await this.recordStatusHistoryIfNotExists({
           userId,
           fromStatus: oldStatus,
           toStatus: restoreToStatus,
-          reason: this.app.i18n.t("Status expired, auto restored"),
+          reason: this.t("Status expired, auto restored", { ns: localeNamespace }),
           operationType: "auto",
           createdBy: null,
           expireAt: null,
           transaction
         });
-        await userRepo.update({
-          filterByTk: userId,
+        await this.userRepository.update({
+          filter: { id: userId },
           values: {
             status: restoreToStatus,
             statusExpireAt: null,
             previousStatus: null,
-            statusReason: this.app.i18n.t("Status expired, auto restored")
+            statusReason: this.t("Status expired, auto restored", { ns: localeNamespace })
           },
           transaction
         });
       });
-      this.app.emitAsync("user:statusRestored", {
+      await this.app.emitAsync("user:statusRestored", {
         userId,
         fromStatus: oldStatus,
         toStatus: restoreToStatus
@@ -270,321 +211,57 @@ class UserStatusService {
       throw error;
     }
   }
-  /**
-   * 注册新的用户状态(供插件使用)
-   * @param config 状态配置
-   */
-  async registerStatus(config) {
+  async clearUserStatusCache(userId) {
     try {
-      const statusRepo = this.db.getRepository("userStatuses");
-      const existing = await statusRepo.findOne({
-        filterByTk: config.key
-      });
-      if (existing) {
-        if (existing.packageName === config.packageName) {
-          await statusRepo.update({
-            filterByTk: config.key,
-            values: {
-              title: config.title,
-              color: config.color || "default",
-              allowLogin: config.allowLogin,
-              loginErrorMessage: config.loginErrorMessage || null,
-              description: config.description || null,
-              sort: config.sort || 0,
-              config: config.config || {}
-            }
-          });
-          this.logger.info(`Updated status: ${config.key} by ${config.packageName}`);
-        } else {
-          this.logger.warn(`Status ${config.key} already registered by ${existing.packageName}, skipping`);
-        }
-        return;
-      }
-      await statusRepo.create({
-        values: {
-          key: config.key,
-          title: config.title,
-          color: config.color || "default",
-          allowLogin: config.allowLogin,
-          loginErrorMessage: config.loginErrorMessage || null,
-          isSystemDefined: false,
-          // 插件注册的状态不是系统内置
-          packageName: config.packageName,
-          description: config.description || null,
-          sort: config.sort || 0,
-          config: config.config || {}
-        }
-      });
-      this.logger.info(`Registered new status: ${config.key} by ${config.packageName}`);
+      const cacheKey = this.getUserStatusCacheKey(userId);
+      await this.cache.del(cacheKey);
     } catch (error) {
-      this.logger.error("Error registering status:", error);
-      throw error;
+      this.logger.error("Error clearing user status cache:", error);
     }
   }
-  /**
-   * 获取每个状态的用户数量统计
-   */
-  async getStatusStatistics() {
+  async recordStatusHistoryIfNotExists(params) {
+    const { userId, fromStatus, toStatus, reason, expireAt, operationType, createdBy, transaction } = params;
     try {
-      const userRepo = this.db.getRepository("users");
-      const result = await userRepo.find({
-        attributes: ["status", [this.db.sequelize.fn("COUNT", "id"), "count"]],
-        group: ["status"],
-        raw: true
+      const fiveSecondsAgo = new Date(Date.now() - 5e3);
+      const existing = await this.userStatusHistoryRepository.findOne({
+        filter: {
+          userId,
+          fromStatus,
+          toStatus,
+          createdAt: {
+            $gte: fiveSecondsAgo
+          }
+        },
+        sort: ["-createdAt"],
+        transaction
       });
-      const statistics = {};
-      for (const row of result) {
-        statistics[row.status] = parseInt(row.count, 10);
+      if (existing) {
+        this.logger.warn(
+          `Skipping duplicate history record: userId=${userId}, ${fromStatus} \u2192 ${toStatus}, operationType=${operationType}`
+        );
+        return;
       }
-      return statistics;
-    } catch (error) {
-      this.logger.error("Error getting status statistics:", error);
-      return {};
-    }
-  }
-  /**
-   * 注入登录检查
-   */
-  injectLoginCheck() {
-    const userStatusService = this;
-    import_server.BaseAuth.prototype.signNewToken = async function(userId, options) {
-      const user = await this.userRepository.findOne({
-        filter: { id: userId },
-        fields: ["id", "status"]
-      });
-      const userStatus = (user == null ? void 0 : user.status) || "active";
-      const tokenInfo = await this.tokenController.add({ userId });
-      const expiresIn = Math.floor((await this.tokenController.getConfig()).tokenExpirationTime / 1e3);
-      const token = this.jwt.sign(
-        {
+      await this.userStatusHistoryRepository.create({
+        values: {
           userId,
-          userStatus,
-          // 将用户状态写入 JWT payload
-          temp: true,
-          iat: Math.floor(tokenInfo.issuedTime / 1e3),
-          signInTime: tokenInfo.signInTime
+          fromStatus,
+          toStatus,
+          reason,
+          expireAt,
+          operationType,
+          createdBy
         },
-        {
-          jwtid: tokenInfo.jti,
-          expiresIn
-        }
+        transaction
+      });
+      this.logger.debug(
+        `History recorded: userId=${userId}, ${fromStatus} \u2192 ${toStatus}, operationType=${operationType}`
       );
-      userStatusService.logger.debug(`[signNewToken] userId=${userId}, userStatus=${userStatus}, jti=${tokenInfo.jti}`);
-      return token;
-    };
-    import_server.BaseAuth.prototype.signIn = async function() {
-      let user;
-      try {
-        user = await this.validate();
-      } catch (err) {
-        this.ctx.throw(err.status || 401, err.message, {
-          ...err
-        });
-      }
-      if (!user) {
-        this.ctx.throw(401, {
-          message: this.ctx.t("User not found. Please sign in again to continue.", { ns: import_preset.namespace }),
-          code: import_server.AuthErrorCode.NOT_EXIST_USER
-        });
-      }
-      const statusCheckResult = await userStatusService.checkUserStatus(user.id);
-      if (!statusCheckResult.allowed) {
-        this.ctx.throw(403, {
-          message: this.ctx.t(statusCheckResult.statusInfo.loginErrorMessage, { ns: import_preset.namespace }),
-          code: import_server.AuthErrorCode.INVALID_TOKEN
-        });
-      }
-      const token = await this.signNewToken(user.id);
-      return {
-        user,
-        token
-      };
-    };
-    const originalCheck = import_server.BaseAuth.prototype.check;
-    import_server.BaseAuth.prototype.check = async function() {
-      const user = await originalCheck.call(this);
-      if (!user) {
-        return null;
-      }
-      const token = this.ctx.getBearerToken();
-      if (!token) {
-        return user;
-      }
-      try {
-        const decoded = await this.jwt.decode(token);
-        const tokenUserStatus = decoded.userStatus || "active";
-        const currentUserStatus = user.status || "active";
-        if (tokenUserStatus !== currentUserStatus) {
-          userStatusService.logger.warn(
-            `[check] Status mismatch, userId=${user.id}, token=${tokenUserStatus}, current=${currentUserStatus}`
-          );
-          this.ctx.throw(401, {
-            message: this.ctx.t("Your account status has changed. Please sign in again.", { ns: import_preset.namespace }),
-            code: import_server.AuthErrorCode.INVALID_TOKEN
-          });
-        }
-        const statusCheckResult = await this.checkUserStatusInContext(user.id);
-        if (!statusCheckResult.allowed) {
-          userStatusService.logger.warn(`[check] Status not allowed, userId=${user.id}, status=${currentUserStatus}`);
-          this.ctx.throw(403, {
-            message: this.ctx.t(statusCheckResult.statusInfo.loginErrorMessage, { ns: import_preset.namespace }),
-            code: import_server.AuthErrorCode.INVALID_TOKEN
-          });
-        }
-        userStatusService.logger.debug(`[check] Passed, userId=${user.id}, status=${currentUserStatus}`);
-      } catch (err) {
-        if (err.status) {
-          throw err;
-        }
-        userStatusService.logger.error("[check] Token validation error:", err);
-        throw err;
-      }
-      return user;
-    };
-    import_server.BaseAuth.prototype.checkUserStatusInContext = async function(userId) {
-      try {
-        if (!userStatusService) {
-          throw new Error("userStatusService is undefined");
-        }
-        if (!userStatusService.app) {
-          throw new Error("userStatusService.app is undefined");
-        }
-        if (!userStatusService.app.db) {
-          throw new Error("userStatusService.app.db is undefined");
-        }
-        if (!userStatusService.app.cache) {
-          throw new Error("userStatusService.app.cache is undefined");
-        }
-        const contextDb = userStatusService.app.db;
-        const contextCache = userStatusService.app.cache;
-        let cached = null;
-        try {
-          const cacheKey = `userStatus:${userId}`;
-          const cachedData = await contextCache.get(cacheKey);
-          cached = cachedData ? JSON.parse(cachedData) : null;
-        } catch (error) {
-          userStatusService.logger.error("Error getting user status from cache:", error);
-          cached = null;
-        }
-        if (!cached) {
-          const userRepo = contextDb.getRepository("users");
-          const user = await userRepo.findOne({
-            filterByTk: userId,
-            fields: ["id", "status", "statusExpireAt", "previousStatus"]
-          });
-          if (!user) {
-            return {
-              allowed: false,
-              status: "unknown",
-              errorMessage: userStatusService.app.i18n.t("User not found")
-            };
-          }
-          cached = {
-            userId: user.id,
-            status: user.status || "active",
-            expireAt: user.statusExpireAt,
-            previousStatus: user.previousStatus,
-            lastChecked: /* @__PURE__ */ new Date()
-          };
-          try {
-            const cacheKey = `userStatus:${userId}`;
-            await contextCache.set(cacheKey, JSON.stringify(cached), 300 * 1e3);
-          } catch (error) {
-            userStatusService.logger.error("Error setting user status cache:", error);
-          }
-        }
-        if (cached.expireAt && new Date(cached.expireAt) <= /* @__PURE__ */ new Date()) {
-          const userRepo = contextDb.getRepository("users");
-          const user = await userRepo.findOne({
-            filterByTk: userId,
-            fields: ["id", "status", "statusExpireAt", "previousStatus"]
-          });
-          if (!user) {
-            return {
-              allowed: false,
-              status: "unknown",
-              errorMessage: userStatusService.app.i18n.t("User not found")
-            };
-          }
-          if (!user.statusExpireAt || new Date(user.statusExpireAt) > /* @__PURE__ */ new Date()) {
-            return userStatusService.checkUserStatus(userId);
-          }
-          await userStatusService.restoreUserStatus(userId);
-          const restoredUser = await userRepo.findOne({
-            filterByTk: userId,
-            fields: ["status"]
-          });
-          cached.status = restoredUser.status || "active";
-          cached.expireAt = null;
-          cached.previousStatus = null;
-          try {
-            const cacheKey = `userStatus:${userId}`;
-            await contextCache.set(cacheKey, JSON.stringify(cached), 300 * 1e3);
-          } catch (error) {
-            userStatusService.logger.error("Error setting user status cache:", error);
-          }
-        }
-        const statusRepo = contextDb.getRepository("userStatuses");
-        const statusInfo = await statusRepo.findOne({
-          filterByTk: cached.status
-        });
-        if (!statusInfo) {
-          userStatusService.logger.warn(`Status definition not found: ${cached.status}`);
-          return {
-            allowed: false,
-            status: cached.status,
-            statusInfo: {
-              title: userStatusService.app.i18n.t("Invalid status", { ns: import_preset.namespace }),
-              color: "red",
-              allowLogin: false,
-              loginErrorMessage: userStatusService.app.i18n.t("User status is invalid, please contact administrator", {
-                ns: import_preset.namespace
-              })
-            },
-            errorMessage: userStatusService.app.i18n.t("User status is invalid, please contact administrator", {
-              ns: import_preset.namespace
-            })
-          };
-        }
-        const translateMessage = (message) => {
-          if (!message) return "";
-          const match = message.match(/\{\{t\("([^"]+)"\)\}\}/);
-          if (match && match[1]) {
-            return userStatusService.app.i18n.t(match[1], { ns: import_preset.namespace });
-          }
-          return message;
-        };
-        const translatedTitle = translateMessage(statusInfo.title);
-        const translatedLoginErrorMessage = translateMessage(statusInfo.loginErrorMessage);
-        return {
-          allowed: statusInfo.allowLogin,
-          status: cached.status,
-          statusInfo: {
-            title: translatedTitle,
-            color: statusInfo.color,
-            allowLogin: statusInfo.allowLogin,
-            loginErrorMessage: translatedLoginErrorMessage
-          },
-          errorMessage: !statusInfo.allowLogin ? translatedLoginErrorMessage || userStatusService.app.i18n.t("User status does not allow login", { ns: import_preset.namespace }) : void 0
-        };
-      } catch (error) {
-        userStatusService.logger.error(`Error checking user status for userId=${userId}: ${error}`);
-        return {
-          allowed: false,
-          status: "unknown",
-          statusInfo: {
-            title: userStatusService.app.i18n.t("Unknown status", { ns: import_preset.namespace }),
-            color: "red",
-            allowLogin: false,
-            loginErrorMessage: userStatusService.app.i18n.t("System error, please contact administrator", {
-              ns: import_preset.namespace
-            })
-          },
-          errorMessage: userStatusService.app.i18n.t("System error, please contact administrator", { ns: import_preset.namespace })
-        };
-      }
-    };
-    this.logger.info("signIn, signNewToken and check methods injected with UserStatusService integration");
+      await this.clearUserStatusCache(userId);
+      this.logger.debug(`Cache cleared for userId=${userId}`);
+    } catch (error) {
+      this.logger.error("Failed to record status history:", error);
+      throw error;
+    }
   }
   /**
    * 注册用户状态变更拦截器
@@ -592,7 +269,7 @@ class UserStatusService {
    */
   registerStatusChangeInterceptor() {
     const userStatusService = this;
-    this.db.on("users.beforeUpdate", async (model, options) => {
+    this.app.db.on("users.beforeUpdate", async (model, options) => {
       if (model.changed("status")) {
         const oldStatus = model._previousDataValues.status || "active";
         const newStatus = model.status;
@@ -615,7 +292,7 @@ class UserStatusService {
         }
       }
     });
-    this.db.on("users.afterUpdate", async (model, options) => {
+    this.app.db.on("users.afterUpdate", async (model, options) => {
       var _a, _b, _c, _d, _e;
       const statusChange = (_b = (_a = options == null ? void 0 : options.transaction) == null ? void 0 : _a.__statusChange) == null ? void 0 : _b[model.id];
       if (statusChange) {
@@ -640,7 +317,6 @@ class UserStatusService {
     this.logger.info("User status change interceptor registered");
   }
 }
-var user_status_default = UserStatusService;
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   UserStatusService

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@tachybase/module-auth",
   "displayName": "Authentication",
-  "version": "1.6.1",
+  "version": "1.6.3",
   "description": "User authentication management, including password, SMS, and support for Single Sign-On (SSO) protocols, with extensibility.",
   "keywords": [
     "Authentication",
@@ -11,10 +11,10 @@
   "dependencies": {},
   "devDependencies": {
     "@ant-design/icons": "^6.1.0",
-    "@tachybase/schema": "1.6.0-alpha.9",
-    "@tachybase/test": "1.6.0-alpha.9",
-    "@tego/client": "1.6.0-alpha.9",
-    "@tego/server": "1.6.0-alpha.9",
+    "@tachybase/schema": "1.6.1",
+    "@tachybase/test": "1.6.1",
+    "@tego/client": "1.6.1",
+    "@tego/server": "1.6.1",
     "antd": "5.22.5",
     "axios": "1.13.0",
     "cron": "^3.3.1",
@@ -23,7 +23,7 @@
     "react": "18.3.1",
     "react-i18next": "16.2.1",
     "react-router-dom": "6.28.1",
-    "@tachybase/client": "1.6.1"
+    "@tachybase/client": "1.6.3"
   },
   "description.zh-CN": "用户认证管理，包括基础的密码认证、短信认证、SSO 协议的认证等，可扩展。",
   "displayName.zh-CN": "用户认证",