npm - ai-engineering-init - Versions diffs - 1.3.4 → 1.4.1 - Mend

ai-engineering-init 1.3.4 → 1.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (227) hide show

package/.claude/hooks/skill-forced-eval.js +2 -0
package/.claude/settings.json +3 -3
package/.claude/skills/add-skill/SKILL.md +79 -32
package/.claude/skills/api-development/SKILL.md +83 -377
package/.claude/skills/architecture-design/SKILL.md +138 -632
package/.claude/skills/backend-annotations/SKILL.md +134 -506
package/.claude/skills/banana-image/SKILL.md +10 -3
package/.claude/skills/brainstorm/SKILL.md +103 -535
package/.claude/skills/bug-detective/SKILL.md +147 -1097
package/.claude/skills/bug-detective/references/error-patterns.md +242 -0
package/.claude/skills/code-patterns/SKILL.md +116 -426
package/.claude/skills/code-patterns/references/leniu-code-patterns.md +87 -0
package/.claude/skills/crud-development/SKILL.md +64 -304
package/.claude/skills/data-permission/SKILL.md +105 -412
package/.claude/skills/data-permission/references/custom-data-scope.md +90 -0
package/.claude/skills/file-oss-management/SKILL.md +106 -714
package/.claude/skills/file-oss-management/references/entities.md +105 -0
package/.claude/skills/file-oss-management/references/service-impl.md +104 -0
package/.claude/skills/leniu-api-development/SKILL.md +142 -626
package/.claude/skills/leniu-api-development/references/real-examples.md +273 -0
package/.claude/skills/leniu-architecture-design/SKILL.md +176 -391
package/.claude/skills/leniu-backend-annotations/SKILL.md +132 -519
package/.claude/skills/leniu-brainstorm/SKILL.md +132 -541
package/.claude/skills/leniu-brainstorm/references/business-scenarios.md +162 -0
package/.claude/skills/leniu-crud-development/SKILL.md +232 -938
package/.claude/skills/leniu-crud-development/references/templates.md +597 -0
package/.claude/skills/leniu-customization-location/SKILL.md +410 -0
package/.claude/skills/leniu-data-permission/SKILL.md +70 -0
package/.claude/skills/leniu-java-entity/SKILL.md +76 -590
package/.claude/skills/leniu-java-entity/references/templates.md +237 -0
package/.claude/skills/leniu-java-export/SKILL.md +94 -379
package/.claude/skills/leniu-java-logging/SKILL.md +106 -709
package/.claude/skills/leniu-java-logging/references/data-mask.md +46 -0
package/.claude/skills/leniu-java-logging/references/logging-scenarios.md +113 -0
package/.claude/skills/leniu-java-mybatis/SKILL.md +73 -446
package/.claude/skills/leniu-java-mybatis/references/report-mapper.md +88 -0
package/.claude/skills/leniu-report-customization/SKILL.md +111 -365
package/.claude/skills/leniu-report-customization/references/table-fields.md +93 -0
package/.claude/skills/leniu-report-standard-customization/SKILL.md +111 -334
package/.claude/skills/leniu-report-standard-customization/references/analysis-module.md +64 -0
package/.claude/skills/leniu-report-standard-customization/references/table-fields.md +113 -0
package/.claude/skills/leniu-security-guard/SKILL.md +133 -347
package/.claude/skills/mysql-debug/SKILL.md +364 -0
package/.claude/skills/openspec-apply-change/SKILL.md +10 -1
package/.claude/skills/openspec-archive-change/SKILL.md +9 -1
package/.claude/skills/openspec-bulk-archive-change/SKILL.md +9 -1
package/.claude/skills/openspec-continue-change/SKILL.md +9 -1
package/.claude/skills/openspec-explore/SKILL.md +10 -1
package/.claude/skills/openspec-ff-change/SKILL.md +9 -1
package/.claude/skills/openspec-new-change/SKILL.md +9 -1
package/.claude/skills/openspec-onboard/SKILL.md +15 -130
package/.claude/skills/openspec-sync-specs/SKILL.md +9 -1
package/.claude/skills/openspec-verify-change/SKILL.md +9 -1
package/.claude/skills/performance-doctor/SKILL.md +110 -434
package/.claude/skills/redis-cache/SKILL.md +89 -595
package/.claude/skills/redis-cache/references/listeners.md +23 -0
package/.claude/skills/scheduled-jobs/SKILL.md +88 -407
package/.claude/skills/security-guard/SKILL.md +137 -532
package/.claude/skills/security-guard/references/encrypt-config.md +103 -0
package/.claude/skills/security-guard/references/sensitive-strategies.md +42 -0
package/.claude/skills/sms-mail/SKILL.md +116 -574
package/.claude/skills/sms-mail/references/mail-config.md +88 -0
package/.claude/skills/sms-mail/references/sms-config.md +74 -0
package/.claude/skills/social-login/SKILL.md +112 -514
package/.claude/skills/social-login/references/provider-configs.md +118 -0
package/.claude/skills/tenant-management/SKILL.md +129 -444
package/.claude/skills/tenant-management/references/tenant-scenarios.md +91 -0
package/.claude/skills/test-development/SKILL.md +86 -540
package/.claude/skills/test-development/references/parameterized-examples.md +119 -0
package/.claude/skills/utils-toolkit/SKILL.md +52 -305
package/.claude/skills/utils-toolkit/references/redis-utils-api.md +56 -0
package/.claude/skills/websocket-sse/SKILL.md +105 -550
package/.claude/skills/workflow-engine/SKILL.md +147 -502
package/.codex/skills/add-skill/SKILL.md +79 -32
package/.codex/skills/api-development/SKILL.md +172 -599
package/.codex/skills/architecture-design/SKILL.md +138 -504
package/.codex/skills/backend-annotations/SKILL.md +134 -496
package/.codex/skills/banana-image/SKILL.md +10 -3
package/.codex/skills/brainstorm/SKILL.md +103 -535
package/.codex/skills/bug-detective/SKILL.md +147 -1097
package/.codex/skills/bug-detective/references/error-patterns.md +242 -0
package/.codex/skills/code-patterns/SKILL.md +120 -282
package/.codex/skills/code-patterns/references/leniu-code-patterns.md +87 -0
package/.codex/skills/crud-development/SKILL.md +64 -292
package/.codex/skills/data-permission/SKILL.md +108 -407
package/.codex/skills/data-permission/references/custom-data-scope.md +90 -0
package/.codex/skills/database-ops/SKILL.md +8 -154
package/.codex/skills/error-handler/SKILL.md +10 -0
package/.codex/skills/file-oss-management/SKILL.md +106 -714
package/.codex/skills/file-oss-management/references/entities.md +105 -0
package/.codex/skills/file-oss-management/references/service-impl.md +104 -0
package/.codex/skills/git-workflow/SKILL.md +27 -5
package/.codex/skills/leniu-api-development/SKILL.md +142 -626
package/.codex/skills/leniu-api-development/references/real-examples.md +273 -0
package/.codex/skills/leniu-architecture-design/SKILL.md +176 -391
package/.codex/skills/leniu-backend-annotations/SKILL.md +132 -519
package/.codex/skills/leniu-brainstorm/SKILL.md +132 -541
package/.codex/skills/leniu-brainstorm/references/business-scenarios.md +162 -0
package/.codex/skills/leniu-crud-development/SKILL.md +232 -938
package/.codex/skills/leniu-crud-development/references/templates.md +597 -0
package/.codex/skills/leniu-customization-location/SKILL.md +410 -0
package/.codex/skills/leniu-data-permission/SKILL.md +70 -0
package/.codex/skills/leniu-java-code-style/SKILL.md +510 -0
package/.codex/skills/leniu-java-entity/SKILL.md +76 -590
package/.codex/skills/leniu-java-entity/references/templates.md +237 -0
package/.codex/skills/leniu-java-export/SKILL.md +94 -379
package/.codex/skills/leniu-java-logging/SKILL.md +106 -709
package/.codex/skills/leniu-java-logging/references/data-mask.md +46 -0
package/.codex/skills/leniu-java-logging/references/logging-scenarios.md +113 -0
package/.codex/skills/leniu-java-mybatis/SKILL.md +73 -446
package/.codex/skills/leniu-java-mybatis/references/report-mapper.md +88 -0
package/.codex/skills/leniu-report-customization/SKILL.md +111 -365
package/.codex/skills/leniu-report-customization/references/table-fields.md +93 -0
package/.codex/skills/leniu-report-standard-customization/SKILL.md +111 -334
package/.codex/skills/leniu-report-standard-customization/references/analysis-module.md +64 -0
package/.codex/skills/leniu-report-standard-customization/references/table-fields.md +113 -0
package/.codex/skills/leniu-security-guard/SKILL.md +133 -347
package/.codex/skills/mysql-debug/SKILL.md +364 -0
package/.codex/skills/openspec-apply-change/SKILL.md +10 -1
package/.codex/skills/openspec-archive-change/SKILL.md +9 -1
package/.codex/skills/openspec-bulk-archive-change/SKILL.md +9 -1
package/.codex/skills/openspec-continue-change/SKILL.md +9 -1
package/.codex/skills/openspec-explore/SKILL.md +10 -1
package/.codex/skills/openspec-ff-change/SKILL.md +9 -1
package/.codex/skills/openspec-new-change/SKILL.md +9 -1
package/.codex/skills/openspec-onboard/SKILL.md +15 -130
package/.codex/skills/openspec-sync-specs/SKILL.md +9 -1
package/.codex/skills/openspec-verify-change/SKILL.md +9 -1
package/.codex/skills/performance-doctor/SKILL.md +110 -434
package/.codex/skills/project-navigator/SKILL.md +20 -1
package/.codex/skills/redis-cache/SKILL.md +93 -589
package/.codex/skills/redis-cache/references/listeners.md +23 -0
package/.codex/skills/scheduled-jobs/SKILL.md +88 -407
package/.codex/skills/security-guard/SKILL.md +141 -527
package/.codex/skills/security-guard/references/encrypt-config.md +103 -0
package/.codex/skills/security-guard/references/sensitive-strategies.md +42 -0
package/.codex/skills/sms-mail/SKILL.md +116 -574
package/.codex/skills/sms-mail/references/mail-config.md +88 -0
package/.codex/skills/sms-mail/references/sms-config.md +74 -0
package/.codex/skills/social-login/SKILL.md +112 -514
package/.codex/skills/social-login/references/provider-configs.md +118 -0
package/.codex/skills/store-pc/SKILL.md +258 -383
package/.codex/skills/tenant-management/SKILL.md +129 -444
package/.codex/skills/tenant-management/references/tenant-scenarios.md +91 -0
package/.codex/skills/test-development/SKILL.md +86 -540
package/.codex/skills/test-development/references/parameterized-examples.md +119 -0
package/.codex/skills/ui-pc/SKILL.md +350 -387
package/.codex/skills/utils-toolkit/SKILL.md +52 -283
package/.codex/skills/utils-toolkit/references/redis-utils-api.md +56 -0
package/.codex/skills/websocket-sse/SKILL.md +105 -550
package/.codex/skills/workflow-engine/SKILL.md +147 -502
package/.cursor/hooks/cursor-skill-eval.js +53 -1
package/.cursor/hooks.json +3 -3
package/.cursor/skills/add-skill/SKILL.md +79 -32
package/.cursor/skills/api-development/SKILL.md +83 -377
package/.cursor/skills/architecture-design/SKILL.md +138 -632
package/.cursor/skills/backend-annotations/SKILL.md +134 -506
package/.cursor/skills/banana-image/SKILL.md +10 -3
package/.cursor/skills/brainstorm/SKILL.md +103 -535
package/.cursor/skills/bug-detective/SKILL.md +147 -1097
package/.cursor/skills/bug-detective/references/error-patterns.md +242 -0
package/.cursor/skills/code-patterns/SKILL.md +116 -426
package/.cursor/skills/code-patterns/references/leniu-code-patterns.md +87 -0
package/.cursor/skills/crud-development/SKILL.md +64 -304
package/.cursor/skills/data-permission/SKILL.md +105 -412
package/.cursor/skills/data-permission/references/custom-data-scope.md +90 -0
package/.cursor/skills/file-oss-management/SKILL.md +106 -714
package/.cursor/skills/file-oss-management/references/entities.md +105 -0
package/.cursor/skills/file-oss-management/references/service-impl.md +104 -0
package/.cursor/skills/git-workflow/SKILL.md +27 -5
package/.cursor/skills/leniu-api-development/SKILL.md +142 -626
package/.cursor/skills/leniu-api-development/references/real-examples.md +273 -0
package/.cursor/skills/leniu-architecture-design/SKILL.md +176 -391
package/.cursor/skills/leniu-backend-annotations/SKILL.md +132 -519
package/.cursor/skills/leniu-brainstorm/SKILL.md +132 -541
package/.cursor/skills/leniu-brainstorm/references/business-scenarios.md +162 -0
package/.cursor/skills/leniu-crud-development/SKILL.md +232 -938
package/.cursor/skills/leniu-crud-development/references/templates.md +597 -0
package/.cursor/skills/leniu-customization-location/SKILL.md +410 -0
package/.cursor/skills/leniu-data-permission/SKILL.md +70 -0
package/.cursor/skills/leniu-java-code-style/SKILL.md +510 -0
package/.cursor/skills/leniu-java-entity/SKILL.md +76 -590
package/.cursor/skills/leniu-java-entity/references/templates.md +237 -0
package/.cursor/skills/leniu-java-export/SKILL.md +94 -379
package/.cursor/skills/leniu-java-logging/SKILL.md +106 -709
package/.cursor/skills/leniu-java-logging/references/data-mask.md +46 -0
package/.cursor/skills/leniu-java-logging/references/logging-scenarios.md +113 -0
package/.cursor/skills/leniu-java-mybatis/SKILL.md +73 -446
package/.cursor/skills/leniu-java-mybatis/references/report-mapper.md +88 -0
package/.cursor/skills/leniu-report-customization/SKILL.md +111 -365
package/.cursor/skills/leniu-report-customization/references/table-fields.md +93 -0
package/.cursor/skills/leniu-report-standard-customization/SKILL.md +111 -334
package/.cursor/skills/leniu-report-standard-customization/references/analysis-module.md +64 -0
package/.cursor/skills/leniu-report-standard-customization/references/table-fields.md +113 -0
package/.cursor/skills/leniu-security-guard/SKILL.md +133 -347
package/.cursor/skills/mysql-debug/SKILL.md +364 -0
package/.cursor/skills/openspec-apply-change/SKILL.md +10 -1
package/.cursor/skills/openspec-archive-change/SKILL.md +9 -1
package/.cursor/skills/openspec-bulk-archive-change/SKILL.md +9 -1
package/.cursor/skills/openspec-continue-change/SKILL.md +9 -1
package/.cursor/skills/openspec-explore/SKILL.md +10 -1
package/.cursor/skills/openspec-ff-change/SKILL.md +9 -1
package/.cursor/skills/openspec-new-change/SKILL.md +9 -1
package/.cursor/skills/openspec-onboard/SKILL.md +15 -130
package/.cursor/skills/openspec-sync-specs/SKILL.md +9 -1
package/.cursor/skills/openspec-verify-change/SKILL.md +9 -1
package/.cursor/skills/performance-doctor/SKILL.md +110 -434
package/.cursor/skills/redis-cache/SKILL.md +89 -595
package/.cursor/skills/redis-cache/references/listeners.md +23 -0
package/.cursor/skills/scheduled-jobs/SKILL.md +88 -407
package/.cursor/skills/security-guard/SKILL.md +137 -532
package/.cursor/skills/security-guard/references/encrypt-config.md +103 -0
package/.cursor/skills/security-guard/references/sensitive-strategies.md +42 -0
package/.cursor/skills/sms-mail/SKILL.md +116 -574
package/.cursor/skills/sms-mail/references/mail-config.md +88 -0
package/.cursor/skills/sms-mail/references/sms-config.md +74 -0
package/.cursor/skills/social-login/SKILL.md +112 -514
package/.cursor/skills/social-login/references/provider-configs.md +118 -0
package/.cursor/skills/tenant-management/SKILL.md +129 -444
package/.cursor/skills/tenant-management/references/tenant-scenarios.md +91 -0
package/.cursor/skills/test-development/SKILL.md +86 -540
package/.cursor/skills/test-development/references/parameterized-examples.md +119 -0
package/.cursor/skills/utils-toolkit/SKILL.md +52 -305
package/.cursor/skills/utils-toolkit/references/redis-utils-api.md +56 -0
package/.cursor/skills/websocket-sse/SKILL.md +105 -550
package/.cursor/skills/workflow-engine/SKILL.md +147 -502
package/package.json +1 -1

package/.codex/skills/social-login/SKILL.md CHANGED Viewed

@@ -16,277 +16,108 @@ description: |
 # 第三方登录开发指南（JustAuth）
 > **适用模块**：`ruoyi-common-social`（基于 JustAuth）
+> **特性**：Sa-Token 认证集成、Redis 状态缓存（防 CSRF）、多租户支持、账号绑定机制
-## 概述
+## 一、支持平台
-本框架基于 **JustAuth** 实现第三方登录，支持 20+ 种社交平台的 OAuth2 授权登录。
+| 平台 | source 标识 | 平台 | source 标识 |
+|------|------------|------|------------|
+| 钉钉 | `dingtalk` | GitHub | `github` |
+| Gitee | `gitee` | 微博 | `weibo` |
+| 支付宝 | `alipay_wallet` | QQ | `qq` |
+| 微信开放平台 | `wechat_open` | 微信公众号 | `wechat_mp` |
+| 企业微信 | `wechat_enterprise` | 抖音 | `douyin` |
+| 华为 | `huawei` | 微软 | `microsoft` |
+| MaxKey | `maxkey` | TopIAM | `topiam` |
+| GitLab | `gitlab` | Gitea | `gitea` |
-**核心特性**：
-- ✅ 开箱即用，配置即生效
-- ✅ 支持 20+ 社交平台
-- ✅ Redis 状态缓存（防 CSRF）
-- ✅ 多租户支持
-- ✅ 账号绑定机制
+完整平台列表及特殊配置详见 `references/provider-configs.md`。
 ---
-## 一、支持的第三方平台
-### 1.1 已集成平台列表
-| 平台 | source 标识 | 说明 |
-|------|------------|------|
-| 钉钉 | `dingtalk` | 钉钉扫码登录（V2） |
-| 百度 | `baidu` | 百度账号登录 |
-| GitHub | `github` | GitHub OAuth |
-| Gitee | `gitee` | 码云账号登录 |
-| 微博 | `weibo` | 新浪微博登录 |
-| Coding | `coding` | Coding 账号登录 |
-| 开源中国 | `oschina` | OSChina 账号登录 |
-| 支付宝 | `alipay_wallet` | 支付宝钱包登录 |
-| QQ | `qq` | QQ 互联登录 |
-| 微信开放平台 | `wechat_open` | 微信扫码登录 |
-| 微信公众号 | `wechat_mp` | 微信公众号授权 |
-| 企业微信 | `wechat_enterprise` | 企业微信扫码登录 |
-| 淘宝 | `taobao` | 淘宝账号登录 |
-| 抖音 | `douyin` | 抖音账号登录 |
-| LinkedIn | `linkedin` | 领英账号登录 |
-| Microsoft | `microsoft` | 微软账号登录 |
-| 人人网 | `renren` | 人人网账号登录 |
-| StackOverflow | `stack_overflow` | StackOverflow 登录 |
-| 华为 | `huawei` | 华为账号登录（V3） |
-| GitLab | `gitlab` | GitLab 账号登录 |
-| 阿里云 | `aliyun` | 阿里云账号登录 |
-| MaxKey | `maxkey` | MaxKey 单点登录 |
-| TopIAM | `topiam` | TopIAM 单点登录 |
-| Gitea | `gitea` | Gitea 账号登录 |
----
-## 二、配置第三方登录
-### 2.1 基础配置
+## 二、基础配置
 ```yaml
-# application.yml
 justauth:
+  address: https://your-domain.com    # 回调地址前缀
   type:
-    # GitHub 登录配置
     github:
-      client-id: ${GITHUB_CLIENT_ID}
-      client-secret: ${GITHUB_CLIENT_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=github
-    # Gitee 登录配置
+      client-id: ${GITHUB_CLIENT_ID:}
+      client-secret: ${GITHUB_CLIENT_SECRET:}
+      redirect-uri: ${justauth.address}/social-callback?source=github
     gitee:
-      client-id: ${GITEE_CLIENT_ID}
-      client-secret: ${GITEE_CLIENT_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=gitee
-    # 钉钉登录配置
+      client-id: ${GITEE_CLIENT_ID:}
+      client-secret: ${GITEE_CLIENT_SECRET:}
+      redirect-uri: ${justauth.address}/social-callback?source=gitee
     dingtalk:
-      client-id: ${DINGTALK_APP_KEY}
-      client-secret: ${DINGTALK_APP_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=dingtalk
-    # 微信开放平台配置
-    wechat_open:
-      client-id: ${WECHAT_APP_ID}
-      client-secret: ${WECHAT_APP_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=wechat_open
-    # QQ 登录配置
-    qq:
-      client-id: ${QQ_APP_ID}
-      client-secret: ${QQ_APP_KEY}
-      redirect-uri: ${server.url}/social-callback?source=qq
-      union-id: true  # 是否获取 unionId
-```
-### 2.2 特殊平台配置
-#### 微软登录（需要 tenantId）
-```yaml
-justauth:
-  type:
-    microsoft:
-      client-id: ${MICROSOFT_CLIENT_ID}
-      client-secret: ${MICROSOFT_CLIENT_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=microsoft
-      tenant-id: common  # common、organizations、consumers 或具体租户ID
-```
-#### 企业微信（需要 agentId）
-```yaml
-justauth:
-  type:
-    wechat_enterprise:
-      client-id: ${WECHAT_CORP_ID}
-      client-secret: ${WECHAT_CORP_SECRET}
-      redirect-uri: ${server.url}/social-callback?source=wechat_enterprise
-      agent-id: ${WECHAT_AGENT_ID}
+      client-id: ${DINGTALK_APP_KEY:}
+      client-secret: ${DINGTALK_APP_SECRET:}
+      redirect-uri: ${justauth.address}/social-callback?source=dingtalk
 ```
-#### 支付宝（需要公钥）
-```yaml
-justauth:
-  type:
-    alipay_wallet:
-      client-id: ${ALIPAY_APP_ID}
-      client-secret: ${ALIPAY_PRIVATE_KEY}
-      redirect-uri: ${server.url}/social-callback?source=alipay_wallet
-      alipay-public-key: ${ALIPAY_PUBLIC_KEY}
-```
+> 各平台特殊配置（微软 tenantId、企业微信 agentId、支付宝公钥等）详见 `references/provider-configs.md`。
 ---
 ## 三、核心 API
-### 3.1 SocialUtils 工具类
+### 3.1 SocialUtils
 **位置**：`org.dromara.common.social.utils.SocialUtils`
 ```java
 import org.dromara.common.social.utils.SocialUtils;
-import org.dromara.common.social.config.properties.SocialProperties;
 import me.zhyd.oauth.model.AuthResponse;
 import me.zhyd.oauth.model.AuthUser;
 import me.zhyd.oauth.request.AuthRequest;
-// ========== 获取授权请求 ==========
-// 1. 获取指定平台的授权请求对象
+// 获取授权请求对象
 AuthRequest authRequest = SocialUtils.getAuthRequest("github", socialProperties);
-// 2. 生成授权 URL（跳转到第三方登录页）
-String authorizeUrl = authRequest.authorize("随机state");
-// ========== 处理回调登录 ==========
+// 生成授权 URL
+String authorizeUrl = authRequest.authorize(state);
-// 3. 处理第三方回调，获取用户信息
+// 处理回调登录
 AuthResponse<AuthUser> response = SocialUtils.loginAuth(
-    "github",           // 平台标识
-    code,               // 授权码
-    state,              // 状态码（防 CSRF）
-    socialProperties    // 配置属性
+    "github", code, state, socialProperties
 );
-// 4. 检查登录结果
 if (response.ok()) {
-    AuthUser authUser = response.getData();
-    String openId = authUser.getUuid();       // 用户唯一标识
-    String nickname = authUser.getNickname(); // 昵称
-    String avatar = authUser.getAvatar();     // 头像
-    String source = authUser.getSource();     // 来源平台
+    AuthUser user = response.getData();
+    String openId = user.getUuid();       // 唯一标识
+    String nickname = user.getNickname(); // 昵称
+    String source = user.getSource();     // 来源平台
 }
 ```
-### 3.2 AuthUser 用户信息
+### 3.2 AuthUser 关键字段
-```java
-// JustAuth 返回的用户信息
-public class AuthUser {
-    private String uuid;        // 第三方平台用户唯一ID
-    private String username;    // 用户名
-    private String nickname;    // 昵称
-    private String avatar;      // 头像
-    private String blog;        // 博客地址
-    private String company;     // 公司
-    private String location;    // 位置
-    private String email;       // 邮箱
-    private String remark;      // 备注
-    private AuthUserGender gender;  // 性别
-    private String source;      // 来源平台（github、gitee 等）
-    private AuthToken token;    // Token 信息
-    private Map<String, Object> rawUserInfo;  // 原始用户信息
-}
-```
+| 属性 | 说明 | 属性 | 说明 |
+|------|------|------|------|
+| `uuid` | 平台用户唯一ID | `username` | 用户名 |
+| `nickname` | 昵称 | `avatar` | 头像 |
+| `email` | 邮箱 | `source` | 来源平台 |
+| `token` | Token 信息 | `rawUserInfo` | 原始数据(Map) |
-### 3.3 状态缓存（AuthRedisStateCache）
+### 3.3 状态缓存
-**位置**：`org.dromara.common.social.utils.AuthRedisStateCache`
-框架使用 Redis 缓存 OAuth2 state 参数，防止 CSRF 攻击：
-```java
-// 自动注入，无需手动操作
-// 授权 URL 生成时自动存入 state
-// 回调验证时自动校验 state
-// 默认过期时间：3 分钟
-```
+`AuthRedisStateCache` 自动管理 OAuth2 state 参数（Redis 缓存，3分钟过期），无需手动操作。
 ---
-## 四、完整登录流程
-### 4.1 流程图
+## 四、后端实现
-```
-┌─────────────┐     1. 点击第三方登录      ┌─────────────┐
-│   前端页面   │ ────────────────────────→ │   后端服务   │
-└─────────────┘                           └─────────────┘
-                                                 │
-                                    2. 生成授权 URL（含 state）
-                                                 │
-                                                 ▼
-┌─────────────┐     3. 跳转授权页面       ┌─────────────┐
-│   前端页面   │ ←─────────────────────── │   后端服务   │
-└─────────────┘                           └─────────────┘
-       │
-       │ 4. 用户在第三方平台授权
-       ▼
-┌─────────────┐     5. 回调（code+state）  ┌─────────────┐
-│  第三方平台  │ ────────────────────────→ │   后端服务   │
-└─────────────┘                           └─────────────┘
-                                                 │
-                                    6. 用 code 换取用户信息
-                                                 │
-                                    7. 查找绑定关系 / 创建用户
-                                                 │
-                                    8. 生成系统 Token
-                                                 ▼
-┌─────────────┐     9. 返回登录结果        ┌─────────────┐
-│   前端页面   │ ←─────────────────────── │   后端服务   │
-└─────────────┘                           └─────────────┘
-```
-### 4.2 后端实现示例
-#### 步骤1：生成授权 URL
+### 4.1 生成授权 URL
 ```java
-@RestController
-@RequestMapping("/auth")
-@RequiredArgsConstructor
-public class AuthController {
-    private final SocialProperties socialProperties;
-    /**
-     * 获取第三方登录授权 URL
-     *
-     * @param source 平台标识（github、gitee、dingtalk 等）
-     */
-    @GetMapping("/binding/{source}")
-    public R<String> authBinding(@PathVariable String source) {
-        // 获取授权请求对象
-        AuthRequest authRequest = SocialUtils.getAuthRequest(source, socialProperties);
-        // 生成随机 state（自动存入 Redis）
-        String state = AuthStateUtils.createState();
-        // 生成授权 URL
-        String authorizeUrl = authRequest.authorize(state);
-        return R.ok("操作成功", authorizeUrl);
-    }
+@GetMapping("/binding/{source}")
+public R<String> authBinding(@PathVariable String source) {
+    AuthRequest authRequest = SocialUtils.getAuthRequest(source, socialProperties);
+    String state = AuthStateUtils.createState();
+    return R.ok("操作成功", authRequest.authorize(state));
 }
 ```
-#### 步骤2：处理回调登录
+### 4.2 回调登录（SocialAuthStrategy）
 ```java
 @Slf4j
@@ -294,43 +125,28 @@ public class AuthController {
 @RequiredArgsConstructor
 public class SocialAuthStrategy implements IAuthStrategy {
-    private final SocialProperties socialProperties;
-    private final ISysSocialService sysSocialService;
-    private final SysUserMapper userMapper;
-    private final SysLoginService loginService;
     @Override
     public LoginVo login(String body, SysClientVo client) {
         SocialLoginBody loginBody = JsonUtils.parseObject(body, SocialLoginBody.class);
         ValidatorUtils.validate(loginBody);
-        // 1. 调用第三方登录，获取用户信息
+        // 1. 获取第三方用户信息
         AuthResponse<AuthUser> response = SocialUtils.loginAuth(
-            loginBody.getSource(),
-            loginBody.getSocialCode(),
-            loginBody.getSocialState(),
-            socialProperties
-        );
+            loginBody.getSource(), loginBody.getSocialCode(),
+            loginBody.getSocialState(), socialProperties);
         if (!response.ok()) {
             throw new ServiceException(response.getMsg());
         }
-        AuthUser authUserData = response.getData();
-        // 2. 根据 authId 查找绑定关系
-        String authId = authUserData.getSource() + authUserData.getUuid();
+        // 2. 查找绑定关系
+        String authId = response.getData().getSource() + response.getData().getUuid();
         List<SysSocialVo> list = sysSocialService.selectByAuthId(authId);
         if (CollUtil.isEmpty(list)) {
             throw new ServiceException("你还没有绑定第三方账号，绑定后才可以登录！");
         }
-        // 3. 加载系统用户并生成 Token
-        SysSocialVo social = list.get(0);
-        LoginUser loginUser = loginService.buildLoginUser(loadUser(social.getUserId()));
-        // 4. 登录并返回 Token
+        // 3. 生成系统 Token
+        LoginUser loginUser = loginService.buildLoginUser(loadUser(list.get(0).getUserId()));
         LoginHelper.login(loginUser, new SaLoginParameter()
             .setDeviceType(client.getDeviceType())
             .setTimeout(client.getTimeout())
@@ -344,81 +160,32 @@ public class SocialAuthStrategy implements IAuthStrategy {
 }
 ```
-### 4.3 账号绑定实现
-绑定入口：`AuthController.socialCallback()` → `SysLoginService.socialRegister()`
+### 4.3 账号绑定
 ```java
-// 位置：ruoyi-admin/.../web/controller/AuthController.java
-/**
- * 前端回调绑定授权(需要token)
- */
+// 绑定：AuthController.socialCallback() → SysLoginService.socialRegister()
 @PostMapping("/social/callback")
 public R<Void> socialCallback(@RequestBody SocialLoginBody loginBody) {
     StpUtil.checkLogin();
-    AuthResponse<AuthUser> response = SocialUtils.loginAuth(
-        loginBody.getSource(), loginBody.getSocialCode(),
-        loginBody.getSocialState(), socialProperties);
-    if (!response.ok()) {
-        return R.fail(response.getMsg());
-    }
+    AuthResponse<AuthUser> response = SocialUtils.loginAuth(...);
+    if (!response.ok()) return R.fail(response.getMsg());
     loginService.socialRegister(response.getData());
     return R.ok();
 }
-```
-```java
-// 位置：ruoyi-admin/.../web/service/SysLoginService.java
-/**
- * 绑定第三方用户
- */
-@Lock4j
-public void socialRegister(AuthUser authUserData) {
-    String authId = authUserData.getSource() + authUserData.getUuid();
-    // 第三方用户信息转 BO
-    SysSocialBo bo = BeanUtil.toBean(authUserData, SysSocialBo.class);
-    BeanUtil.copyProperties(authUserData.getToken(), bo);
-    Long userId = LoginHelper.getUserId();
-    bo.setUserId(userId);
-    bo.setAuthId(authId);
-    bo.setOpenId(authUserData.getUuid());
-    bo.setUserName(authUserData.getUsername());
-    bo.setNickName(authUserData.getNickname());
-    // 检查是否已被其他用户绑定
-    List<SysSocialVo> checkList = sysSocialService.selectByAuthId(authId);
-    if (CollUtil.isNotEmpty(checkList)) {
-        throw new ServiceException("此三方账号已经被绑定!");
-    }
-    // 查询当前用户是否已绑定该平台
-    SysSocialBo params = new SysSocialBo();
-    params.setUserId(userId);
-    params.setSource(bo.getSource());
-    List<SysSocialVo> list = sysSocialService.queryList(params);
-    if (CollUtil.isEmpty(list)) {
-        sysSocialService.insertByBo(bo);    // 新增绑定
-    } else {
-        bo.setId(list.get(0).getId());
-        sysSocialService.updateByBo(bo);    // 更新绑定
-    }
-}
+// socialRegister 核心逻辑：
+// 1. 生成 authId = source + uuid
+// 2. 检查 authId 是否已被其他用户绑定
+// 3. 查询当前用户是否已绑定该平台 -> 新增或更新
 ```
-解绑入口：`AuthController.unlockSocial()`
+### 4.4 解绑
 ```java
-// 位置：ruoyi-admin/.../web/controller/AuthController.java
-/**
- * 取消授权(需要token)
- */
-@DeleteMapping(value = "/unlock/{socialId}")
+@DeleteMapping("/unlock/{socialId}")
 public R<Void> unlockSocial(@PathVariable Long socialId) {
     StpUtil.checkLogin();
-    Boolean rows = socialUserService.deleteWithValidById(socialId);
-    return rows ? R.ok() : R.fail("取消授权失败");
+    return socialUserService.deleteWithValidById(socialId) ? R.ok() : R.fail("取消授权失败");
 }
 ```
@@ -426,243 +193,74 @@ public R<Void> unlockSocial(@PathVariable Long socialId) {
 ## 五、前端集成
-### 5.1 跳转第三方授权
 ```javascript
-// 获取授权 URL
-async function getSocialLoginUrl(source) {
-    const { data } = await request.get(`/auth/binding/${source}`);
-    // 跳转到第三方授权页面
-    window.location.href = data;
-}
-// 点击登录按钮
-function handleGitHubLogin() {
-    getSocialLoginUrl('github');
-}
-function handleWeChatLogin() {
-    getSocialLoginUrl('wechat_open');
-}
-```
-### 5.2 处理回调
-```javascript
-// 回调页面 social-callback.vue
-export default {
-    async mounted() {
-        const { source, code, state } = this.$route.query;
-        if (!code || !state) {
-            this.$message.error('授权失败');
-            return;
-        }
-        try {
-            // 调用后端登录接口
-            const { data } = await request.post('/auth/login', {
-                grantType: 'social',
-                source: source,
-                socialCode: code,
-                socialState: state,
-                clientId: 'your-client-id'
-            });
-            // 保存 Token
-            setToken(data.accessToken);
-            // 跳转首页
-            this.$router.push('/');
-        } catch (error) {
-            this.$message.error(error.message || '登录失败');
-        }
-    }
-}
+// 跳转授权
+const { data } = await request.get(`/auth/binding/${source}`);
+window.location.href = data;
+// 回调页面处理
+const { source, code, state } = this.$route.query;
+const { data } = await request.post('/auth/login', {
+    grantType: 'social',
+    source, socialCode: code, socialState: state,
+    clientId: 'your-client-id'
+});
+setToken(data.accessToken);
 ```
 ---
-## 六、常见错误与最佳实践
-### ❌ 错误1：回调地址配置错误
+## 六、常见错误
 ```yaml
-# ❌ 错误：回调地址与第三方平台配置不一致
-justauth:
-  type:
-    github:
-      redirect-uri: http://localhost:8080/callback  # 本地地址
-# ✅ 正确：使用与第三方平台一致的回调地址
-justauth:
-  type:
-    github:
-      redirect-uri: https://your-domain.com/social-callback?source=github
-```
-### ❌ 错误2：未处理 state 验证失败
-```java
-// ❌ 错误：不检查响应结果
-AuthResponse<AuthUser> response = SocialUtils.loginAuth(...);
-AuthUser user = response.getData();  // 可能为 null
-// ✅ 正确：先检查响应状态
-AuthResponse<AuthUser> response = SocialUtils.loginAuth(...);
-if (!response.ok()) {
-    throw new ServiceException("授权失败：" + response.getMsg());
-}
-AuthUser user = response.getData();
-```
-### ❌ 错误3：未处理账号未绑定情况
+# ❌ 回调地址与第三方平台配置不一致
+redirect-uri: http://localhost:8080/callback
-```java
-// ❌ 错误：直接使用绑定关系
-List<SysSocialVo> list = sysSocialService.selectByAuthId(authId);
-SysSocialVo social = list.get(0);  // 可能 IndexOutOfBoundsException
-// ✅ 正确：检查是否已绑定
-List<SysSocialVo> list = sysSocialService.selectByAuthId(authId);
-if (CollUtil.isEmpty(list)) {
-    throw new ServiceException("请先绑定第三方账号");
-}
-SysSocialVo social = list.get(0);
+# ✅ 使用与第三方平台一致的地址
+redirect-uri: https://your-domain.com/social-callback?source=github
 ```
-### ❌ 错误4：source 标识拼写错误
 ```java
-// ❌ 错误：使用错误的 source 标识
-SocialUtils.getAuthRequest("wechat", socialProperties);  // 不存在
-// ✅ 正确：使用正确的 source 标识
-SocialUtils.getAuthRequest("wechat_open", socialProperties);   // 微信开放平台
-SocialUtils.getAuthRequest("wechat_mp", socialProperties);     // 微信公众号
-SocialUtils.getAuthRequest("wechat_enterprise", socialProperties);  // 企业微信
-```
----
-## 七、API 速查表
-### SocialUtils 方法
-| 方法 | 说明 |
-|------|------|
-| `getAuthRequest(source, properties)` | 获取指定平台的授权请求对象 |
-| `loginAuth(source, code, state, properties)` | 处理回调登录，获取用户信息 |
-### AuthRequest 方法
-| 方法 | 说明 |
-|------|------|
-| `authorize(state)` | 生成授权 URL |
-| `login(callback)` | 执行登录，获取用户信息 |
-| `refresh(token)` | 刷新 Token |
-| `revoke(token)` | 撤销授权 |
-### AuthUser 属性
-| 属性 | 说明 |
-|------|------|
-| `uuid` | 第三方平台用户唯一ID |
-| `username` | 用户名 |
-| `nickname` | 昵称 |
-| `avatar` | 头像 URL |
-| `email` | 邮箱 |
-| `source` | 来源平台标识 |
-| `token` | Token 信息（accessToken、refreshToken 等） |
-| `rawUserInfo` | 原始用户信息（Map） |
----
+// ❌ 不检查响应结果
+AuthUser user = response.getData();  // 可能 null
-## 八、配置参考
+// ✅ 先检查状态
+if (!response.ok()) throw new ServiceException(response.getMsg());
-### 完整配置示例
-```yaml
-justauth:
-  type:
-    github:
-      client-id: ${GITHUB_CLIENT_ID:}
-      client-secret: ${GITHUB_CLIENT_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=github
-    gitee:
-      client-id: ${GITEE_CLIENT_ID:}
-      client-secret: ${GITEE_CLIENT_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=gitee
-    dingtalk:
-      client-id: ${DINGTALK_APP_KEY:}
-      client-secret: ${DINGTALK_APP_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=dingtalk
+// ❌ source 标识拼写错误
+SocialUtils.getAuthRequest("wechat", props);       // 不存在
-    qq:
-      client-id: ${QQ_APP_ID:}
-      client-secret: ${QQ_APP_KEY:}
-      redirect-uri: ${justauth.address}/social-callback?source=qq
-      union-id: true
-    wechat_open:
-      client-id: ${WECHAT_OPEN_APP_ID:}
-      client-secret: ${WECHAT_OPEN_APP_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=wechat_open
-    wechat_mp:
-      client-id: ${WECHAT_MP_APP_ID:}
-      client-secret: ${WECHAT_MP_APP_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=wechat_mp
-    maxkey:
-      client-id: ${MAXKEY_CLIENT_ID:}
-      client-secret: ${MAXKEY_CLIENT_SECRET:}
-      redirect-uri: ${justauth.address}/social-callback?source=maxkey
-      server-url: ${MAXKEY_SERVER_URL:}
-  # 授权回调地址前缀
-  address: https://your-domain.com
+// ✅ 正确标识
+SocialUtils.getAuthRequest("wechat_open", props);   // 微信开放平台
+SocialUtils.getAuthRequest("wechat_mp", props);     // 微信公众号
 ```
 ---
-## 九、参考代码位置
-| 类型 | 位置 |
-|------|------|
-| 社交登录工具类 | `ruoyi-common/ruoyi-common-social/src/main/java/org/dromara/common/social/utils/SocialUtils.java` |
-| 状态缓存 | `ruoyi-common/ruoyi-common-social/src/main/java/org/dromara/common/social/utils/AuthRedisStateCache.java` |
-| 配置属性 | `ruoyi-common/ruoyi-common-social/src/main/java/org/dromara/common/social/config/properties/SocialProperties.java` |
-| 登录配置属性 | `ruoyi-common/ruoyi-common-social/src/main/java/org/dromara/common/social/config/properties/SocialLoginConfigProperties.java` |
-| 社交登录策略 | `ruoyi-admin/src/main/java/org/dromara/web/service/impl/SocialAuthStrategy.java` |
-| 认证控制器 | `ruoyi-admin/src/main/java/org/dromara/web/controller/AuthController.java` |
-| 社交绑定服务 | `ruoyi-modules/ruoyi-system/src/main/java/org/dromara/system/service/ISysSocialService.java` |
----
-## 十、扩展：自定义第三方平台
-如需接入框架未支持的第三方平台，可参考 `AuthGiteaRequest` 实现：
+## 七、扩展自定义平台
 ```java
 public class AuthCustomRequest extends AuthDefaultRequest {
     public AuthCustomRequest(AuthConfig config, AuthStateCache stateCache) {
         super(config, AuthCustomSource.CUSTOM, stateCache);
     }
     @Override
-    protected AuthToken getAccessToken(AuthCallback authCallback) {
-        // 实现获取 Token 的逻辑
-    }
+    protected AuthToken getAccessToken(AuthCallback authCallback) { ... }
     @Override
-    protected AuthUser getUserInfo(AuthToken authToken) {
-        // 实现获取用户信息的逻辑
-    }
+    protected AuthUser getUserInfo(AuthToken authToken) { ... }
 }
+// 然后在 SocialUtils.getAuthRequest() 中添加对应 case
 ```
-然后在 `SocialUtils.getAuthRequest()` 中添加对应的 case 分支。
+---
+## 八、参考代码位置
+| 类型 | 位置 |
+|------|------|
+| SocialUtils | `ruoyi-common/ruoyi-common-social/.../utils/SocialUtils.java` |
+| AuthRedisStateCache | `ruoyi-common/ruoyi-common-social/.../utils/AuthRedisStateCache.java` |
+| SocialProperties | `ruoyi-common/ruoyi-common-social/.../config/properties/SocialProperties.java` |
+| SocialAuthStrategy | `ruoyi-admin/.../web/service/impl/SocialAuthStrategy.java` |
+| AuthController | `ruoyi-admin/.../web/controller/AuthController.java` |
+| ISysSocialService | `ruoyi-modules/ruoyi-system/.../service/ISysSocialService.java` |