@zhangxm2512/xm2512todoserver 1.0.0

package/CHANGELOG.md

@@ -0,0 +1,2 @@
+**v1.0.0（2026.6.7）**  
+1.`A` 第一版本

package/README.md

@@ -0,0 +1,10 @@
+本包是轩铭智能待办官方开发的基于Nodejs的团队服务端。  
+**一、脚本**  
+安装：[https://www.zhangls2512.cn/xm2512todoserver-install.sh](https://www.zhangls2512.cn/xm2512todoserver-install.sh)  
+启动：[https://www.zhangls2512.cn/xm2512todoserver-start.sh](https://www.zhangls2512.cn/xm2512todoserver-start.sh)  
+停止：[https://www.zhangls2512.cn/xm2512todoserver-stop.sh](https://www.zhangls2512.cn/xm2512todoserver-stop.sh)  
+更新：[https://www.zhangls2512.cn/xm2512todoserver-update.sh](https://www.zhangls2512.cn/xm2512todoserver-update.sh)  
+**二、开发者联系方式**  
+微信：gerenyinsi_z07x17m  
+QQ：2300990296  
+邮箱：2300990296@qq.com

package/api/completeTodo.js

@@ -0,0 +1,90 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  if (typeof (requestdata.id) != 'string' || requestdata.id.length != 36) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    const todores = await db.collection('todo').where({
+      teamId: team.teamId,
+      id: requestdata.id
+    }).get()
+    if (todores.length == 0) {
+      return {
+        code: 400,
+        msg: '待办不存在'
+      }
+    }
+    const todo = todores[0]
+    if (!todo.allowCompleteUids.includes(account.userId)) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    const recentCompleteTime = todo.recentCompleteTime
+    const reviewRecentCompleteTime = todo.reviewRecentCompleteTime
+    const recentCompleteTimeIndex = recentCompleteTime.findIndex(item => item.uid == account.userId)
+    const reviewRecentCompleteTimeIndex = reviewRecentCompleteTime.findIndex(item => item.uid == account.userId)
+    if (recentCompleteTimeIndex == -1 && reviewRecentCompleteTimeIndex == -1) {
+      if (todo.completeMode == 'single' && recentCompleteTime.length > 0) {
+        return {
+          code: 400,
+          msg: '已完成'
+        }
+      }
+      const completeTime = Date.now()
+      if (todo.startTime > completeTime) {
+        return {
+          code: 400,
+          msg: '未到开始时间'
+        }
+      }
+      if (todo.endTime < completeTime && todo.endTime != -1) {
+        return {
+          code: 400,
+          msg: '已过结束时间'
+        }
+      }
+      if (todo.allowReviewUids.length == 0) {
+        recentCompleteTime.push({
+          uid: account.userId,
+          time: completeTime
+        })
+      }
+      if (todo.allowReviewUids.length > 0) {
+        reviewRecentCompleteTime.push({
+          uid: account.userId,
+          time: completeTime
+        })
+      }
+    } else {
+      if (recentCompleteTimeIndex != -1) {
+        recentCompleteTime.splice(recentCompleteTimeIndex, 1)
+      }
+      if (reviewRecentCompleteTimeIndex != -1) {
+        reviewRecentCompleteTime.splice(reviewRecentCompleteTimeIndex, 1)
+      }
+    }
+    await db.collection('todo').where({
+      teamId: team.teamId,
+      id: requestdata.id
+    }).update({
+      recentCompleteTime: recentCompleteTime,
+      reviewRecentCompleteTime: reviewRecentCompleteTime
+    })
+    return {
+      code: 0,
+      msg: '成功'
+    }
+  }
+}

package/api/deleteTeam.js

@@ -0,0 +1,54 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (!account.admin) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    const viplogres = await db.collection('viplog').where({
+      product: 'todoteam',
+      uid: team.teamId
+    }).count()
+    if (viplogres.total > 0) {
+      return {
+        code: 400,
+        msg: '存在付费开通记录'
+      }
+    }
+    const accountres = await db.collection('account').where({
+      teamId: team.teamId,
+      admin: false
+    }).count()
+    if (accountres.total > 0) {
+      return {
+        code: 400,
+        msg: '用户未清空'
+      }
+    }
+    const todores = await db.collection('todo').where({
+      teamId: team.teamId
+    }).count()
+    if (todores.total > 0) {
+      return {
+        code: 400,
+        msg: '待办未清空'
+      }
+    }
+    await db.collection('account').where({
+      teamId: team.teamId,
+      admin: true
+    }).remove()
+    return {
+      code: 0,
+      msg: '成功'
+    }
+  }
+}

package/api/deleteTodo.js

@@ -0,0 +1,42 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  if (typeof (requestdata.id) != 'string' || requestdata.id.length != 36) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    const todores = await db.collection('todo').where({
+      teamId: team.teamId,
+      id: requestdata.id
+    }).get()
+    if (todores.length == 0) {
+      return {
+        code: 400,
+        msg: '待办不存在'
+      }
+    }
+    if (!account.admin && todores[0].uid != account.userId) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    await db.collection('todo').where({
+      teamId: team.teamId,
+      id: requestdata.id
+    }).remove()
+    return {
+      code: 0,
+      msg: '成功'
+    }
+  }
+}

package/api/deleteUser.js

@@ -0,0 +1,49 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  if (typeof (requestdata.id) != 'string' || requestdata.id.length != 8) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (!account.admin) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    const todores = await db.collection('todo').where({
+      teamId: team.teamId,
+      uid: requestdata.id
+    }).count()
+    if (todores.total > 0) {
+      return {
+        code: 400,
+        msg: '其管理的待办未清空'
+      }
+    }
+    const accountres = await db.collection('account').where({
+      teamId: team.teamId,
+      userId: requestdata.id,
+      admin: false
+    }).remove()
+    if (accountres.deleted == 0) {
+      return {
+        code: 400,
+        msg: '用户不存在'
+      }
+    }
+    return {
+      code: 0,
+      msg: '成功'
+    }
+  }
+}

package/api/getTeamInfo.js

@@ -0,0 +1,34 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (!account.admin) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    const accountres = await db.collection('account').where({
+      teamId: team.teamId
+    }).count()
+    const todores = await db.collection('todo').where({
+      teamId: team.teamId
+    }).count()
+    return {
+      code: 0,
+      msg: '成功',
+      data: {
+        teamId: team.teamId,
+        teamName: team.teamName,
+        userCount: accountres.total,
+        todoCount: todores.total,
+        teamSetting: team.teamSetting
+      }
+    }
+  }
+}

package/api/getTodoList.js

@@ -0,0 +1,144 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  const validtypes = ['complete', 'get', 'review', 'create']
+  if (!validtypes.includes(requestdata.type)) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  if (!Number.isInteger(requestdata.time) || requestdata.time < -1) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  let skip = 0
+  let limit = 10
+  if (Number.isInteger(requestdata.skip) && requestdata.skip >= 0) {
+    skip = requestdata.skip
+  }
+  if (Number.isInteger(requestdata.limit) && requestdata.limit > 0 && requestdata.limit <= 20) {
+    limit = requestdata.limit
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (requestdata.type == 'complete') {
+      const todores = await db.collection('todo').where({
+        teamId: team.teamId,
+        startTime: requestdata.time === -1 ? db.command.gte(0) : db.command.lt(requestdata.time + 86400000),
+        allowCompleteUids: db.command.in([account.userId])
+      }).skip(skip).limit(limit).field({
+        _id: false,
+        allowGetUids: false,
+        allowCompleteUids: false,
+        allowReviewUids: false,
+        uid: false,
+        setting: false
+      }).get()
+      const data = todores
+      data.forEach(item => {
+        const recentCompleteTimeIndex = item.recentCompleteTime.findIndex(item => item.uid == account.userId)
+        const reviewRecentCompleteTimeIndex = item.reviewRecentCompleteTime.findIndex(item => item.uid == account.userId)
+        if (item.completeMode == 'single') {
+          if (item.recentCompleteTime.length > 0) {
+            item.status = 'finished'
+            item.recentCompletedTime = item.recentCompleteTime[0].time
+          } else if (reviewRecentCompleteTimeIndex != -1) {
+            item.status = 'reviewing'
+            item.recentCompletedTime = item.reviewRecentCompleteTime[reviewRecentCompleteTimeIndex].time
+          } else {
+            item.status = 'pending'
+            item.recentCompletedTime = -1
+          }
+        }
+        if (item.completeMode == 'multiple') {
+          if (recentCompleteTimeIndex != -1) {
+            item.status = 'finished'
+            item.recentCompletedTime = item.recentCompleteTime[recentCompleteTimeIndex].time
+          } else if (reviewRecentCompleteTimeIndex != -1) {
+            item.status = 'reviewing'
+            item.recentCompletedTime = item.reviewRecentCompleteTime[reviewRecentCompleteTimeIndex].time
+          } else {
+            item.status = 'pending'
+            item.recentCompletedTime = -1
+          }
+        }
+        delete item.recentCompleteTime
+        delete item.reviewRecentCompleteTime
+      })
+      return {
+        code: 0,
+        msg: '成功',
+        data: data
+      }
+    }
+    if (requestdata.type == 'review') {
+      const todores = await db.collection('todo').where({
+        teamId: team.teamId,
+        startTime: requestdata.time === -1 ? db.command.gte(0) : db.command.lt(requestdata.time + 86400000),
+        allowReviewUids: db.command.in([account.userId])
+      }).skip(skip).limit(limit).field({
+        _id: false,
+        allowGetUids: false,
+        allowCompleteUids: false,
+        allowReviewUids: false,
+        uid: false,
+        setting: false
+      }).get()
+      return {
+        code: 0,
+        msg: '成功',
+        data: todores
+      }
+    }
+    if (requestdata.type == 'get') {
+      if (!account.admin && !account.permission.includes('getTodo')) {
+        const todores = await db.collection('todo').where({
+          teamId: team.teamId,
+          startTime: requestdata.time === -1 ? db.command.gte(0) : db.command.lt(requestdata.time + 86400000),
+          allowGetUids: db.command.in([account.userId])
+        }).skip(skip).limit(limit).field({
+          _id: false
+        }).get()
+        return {
+          code: 0,
+          msg: '成功',
+          data: todores
+        }
+      } else {
+        const todores = await db.collection('todo').where({
+          teamId: team.teamId,
+          startTime: requestdata.time === -1 ? db.command.gte(0) : db.command.lt(requestdata.time + 86400000)
+        }).skip(skip).limit(limit).field({
+          _id: false
+        }).get()
+        return {
+          code: 0,
+          msg: '成功',
+          data: todores
+        }
+      }
+    }
+    if (requestdata.type == 'create') {
+      const todores = await db.collection('todo').where({
+        teamId: team.teamId,
+        startTime: requestdata.time === -1 ? db.command.gte(0) : db.command.lt(requestdata.time + 86400000),
+        uid: account.userId
+      }).skip(skip).limit(limit).field({
+        _id: false
+      }).get()
+      return {
+        code: 0,
+        msg: '成功',
+        data: todores
+      }
+    }
+  }
+}

package/api/getUserInfo.js

@@ -0,0 +1,24 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    return {
+      code: 0,
+      msg: '成功',
+      data: {
+        teamId: team.teamId,
+        teamName: team.teamName,
+        userId: account.userId,
+        userName: account.userName,
+        userEnabled: account.userEnabled,
+        admin: account.admin,
+        permission: account.permission,
+        userSetting: account.userSetting
+      }
+    }
+  }
+}

package/api/getUserList.js

@@ -0,0 +1,38 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  let skip = 0
+  let limit = 10
+  if (Number.isInteger(requestdata.skip) && requestdata.skip >= 0) {
+    skip = requestdata.skip
+  }
+  if (Number.isInteger(requestdata.limit) && requestdata.limit > 0 && requestdata.limit <= 20) {
+    limit = requestdata.limit
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (!account.admin && !account.permission.includes('newTodo')) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    const accountres = await db.collection('account').where({
+      teamId: team.teamId
+    }).skip(skip).limit(limit).field({
+      _id: false,
+      password: false,
+      userSetting: false
+    }).get()
+    return {
+      code: 0,
+      msg: '成功',
+      data: accountres
+    }
+  }
+}

package/api/getUserName.js

@@ -0,0 +1,32 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  if (typeof (requestdata.id) != 'string' || requestdata.id.length != 8) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const team = res.team
+    const accountres = await db.collection('account').where({
+      teamId: team.teamId,
+      userId: requestdata.id
+    }).get()
+    if (accountres.length == 0) {
+      return {
+        code: 400,
+        msg: '用户不存在'
+      }
+    }
+    return {
+      code: 0,
+      msg: '成功',
+      name: accountres[0].userName
+    }
+  }
+}

package/api/newTodo.js

@@ -0,0 +1,107 @@
+'use strict'
+exports.main = async (event, configfilepath) => {
+  const crypto = require('crypto')
+  const db = await (require('../util/db').database(configfilepath))
+  const requestdata = JSON.parse(event.body)
+  let success = true
+  if (typeof (requestdata.content) != 'string' || !requestdata.content) {
+    success = false
+  }
+  if (!Number.isInteger(requestdata.priority) || requestdata.priority < 0 || requestdata.priority > 9) {
+    success = false
+  }
+  if (!Number.isInteger(requestdata.startTime) || requestdata.startTime < 0) {
+    success = false
+  }
+  if (!Number.isInteger(requestdata.endTime) || (requestdata.endTime < requestdata.startTime && requestdata.endTime != -1)) {
+    success = false
+  }
+  if (!Number.isInteger(requestdata.duration) || requestdata.duration < 0) {
+    success = false
+  }
+  if (!Array.isArray(requestdata.tag) || !requestdata.tag.every(item => typeof (item) == 'string' && item)) {
+    success = false
+  }
+  if (!requestdata.location) {
+    success = false
+  }
+  if (typeof (requestdata.location.latitude) != 'number' || requestdata.location.latitude < -90 || requestdata.location.latitude > 90) {
+    success = false
+  }
+  if (typeof (requestdata.location.longitude) != 'number' || requestdata.location.longitude < -180 || requestdata.location.longitude > 180) {
+    success = false
+  }
+  if (typeof (requestdata.location.location) != 'string') {
+    success = false
+  }
+  if (!Array.isArray(requestdata.action)) {
+    success = false
+  }
+  if (typeof (requestdata.bz) != 'string') {
+    success = false
+  }
+  if (!Array.isArray(requestdata.allowGetUids) || !requestdata.allowGetUids.every(item => typeof (item) == 'string' && item.length == 8)) {
+    success = false
+  }
+  if (!Array.isArray(requestdata.allowCompleteUids) || !requestdata.allowCompleteUids.every(item => typeof (item) == 'string' && item.length == 8)) {
+    success = false
+  }
+  if (!Array.isArray(requestdata.allowReviewUids) || !requestdata.allowReviewUids.every(item => typeof (item) == 'string' && item.length == 8)) {
+    success = false
+  }
+  const validcompletemodes = ['single', 'multiple']
+  if (!validcompletemodes.includes(requestdata.completeMode)) {
+    success = false
+  }
+  if (!success) {
+    return {
+      code: 400,
+      msg: '请求参数错误'
+    }
+  }
+  const res = await require('../util/authcheck').main(event.headers, configfilepath)
+  if (res.code != 0) {
+    return res
+  } else {
+    const account = res.account
+    const team = res.team
+    if (!account.admin && !account.permission.includes('newTodo')) {
+      return {
+        code: 403,
+        msg: '无权限'
+      }
+    }
+    await db.collection('todo').add({
+      id: crypto.randomUUID(),
+      teamId: team.teamId,
+      content: requestdata.content,
+      priority: requestdata.priority,
+      startTime: requestdata.startTime,
+      endTime: requestdata.endTime,
+      duration: requestdata.duration,
+      recurrenceRule: '',
+      excludeTime: [],
+      tag: [...new Set(requestdata.tag)],
+      dependency: [],
+      location: {
+        latitude: requestdata.location.latitude,
+        longitude: requestdata.location.longitude,
+        location: requestdata.location.location
+      },
+      action: requestdata.action,
+      bz: requestdata.bz,
+      allowGetUids: [...new Set(requestdata.allowGetUids)],
+      allowCompleteUids: [...new Set(requestdata.allowCompleteUids)],
+      allowReviewUids: [...new Set(requestdata.allowReviewUids)],
+      recentCompleteTime: [],
+      reviewRecentCompleteTime: [],
+      uid: account.userId,
+      completeMode: requestdata.completeMode,
+      updateTime: Date.now()
+    })
+    return {
+      code: 0,
+      msg: '成功'
+    }
+  }
+}