npm - mm_os - Versions diffs - 3.3.1 → 4.0.1 - Mend

mm_os 3.3.1 → 4.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (380) hide show

package/LICENSE +21 -201
package/README.md +498 -99
package/README_EN.md +505 -0
package/adapter/adapter.js +431 -0
package/adapter/custom_persistence.js +660 -0
package/adapter/mqtt.js +273 -0
package/adapter/socket.js +113 -0
package/adapter/web.js +67 -0
package/adapter/websocket.js +146 -0
package/com/api/com.json +5 -0
package/{core/com → com}/api/config.tpl.json +8 -8
package/com/api/drive.js +708 -0
package/com/api/index.js +198 -0
package/com/api/oauth.js +200 -0
package/com/api/script.tpl.js +32 -0
package/com/cmd/README.md +11 -0
package/com/cmd/com.json +5 -0
package/com/cmd/config.tpl.json +122 -0
package/com/cmd/drive.js +1548 -0
package/com/cmd/index.js +1066 -0
package/com/cmd/msg.json +48 -0
package/com/cmd/nlp.js +525 -0
package/com/cmd/script.tpl.js +32 -0
package/com/db/com.json +5 -0
package/com/db/drive.js +1999 -0
package/com/db/index.js +242 -0
package/{core/com → com}/event/README.md +4 -4
package/com/event/com.json +5 -0
package/{core/com → com}/event/config.tpl.json +18 -18
package/com/event/drive.js +59 -0
package/com/event/index.js +409 -0
package/com/event/script.tpl.js +23 -0
package/com/mqtt/com.json +5 -0
package/{core/com → com}/mqtt/config.tpl.json +3 -5
package/com/mqtt/drive.js +676 -0
package/com/mqtt/index.js +822 -0
package/com/mqtt/mm_mqtt.js +425 -0
package/com/mqtt/script.tpl.js +723 -0
package/com/nav/com.json +5 -0
package/com/nav/config.tpl.json +84 -0
package/com/nav/drive.js +702 -0
package/com/nav/index.js +231 -0
package/{core/com → com}/nav/tpl/admin_pc/page_config.vue +280 -280
package/{core/com → com}/nav/tpl/admin_pc/page_config_form.vue +194 -194
package/com/nav/tpl/admin_pc/page_form.vue +180 -0
package/com/nav/tpl/admin_pc/page_view.vue +124 -0
package/com/nav/tpl/dev_pc/page_default.vue +247 -0
package/com/nav/tpl/dev_pc/page_type.vue +313 -0
package/com/nav/tpl/home_pc/page_default.vue +234 -0
package/com/nav/tpl/home_pc/page_form.vue +137 -0
package/com/nav/tpl/home_pc/page_list.vue +234 -0
package/com/nav/tpl/home_pc/page_nav.vue +221 -0
package/com/nav/tpl/home_pc/page_type.vue +234 -0
package/com/nav/tpl/home_pc/page_view.vue +125 -0
package/com/nav/tpl/home_phone/page_channel.vue +234 -0
package/com/nav/tpl/home_phone/page_default.vue +234 -0
package/com/nav/tpl/home_phone/page_form.vue +137 -0
package/com/nav/tpl/home_phone/page_nav.vue +237 -0
package/com/nav/tpl/home_phone/page_type.vue +234 -0
package/com/nav/tpl/home_phone/page_view.vue +125 -0
package/com/nav/viewmodel.js +446 -0
package/com/param/com.json +5 -0
package/{core/com → com}/param/config.tpl.json +7 -1
package/com/param/drive.js +502 -0
package/com/param/index.js +155 -0
package/com/param/script.tpl.js +12 -0
package/com/pendant/com.json +5 -0
package/{core/com/component → com/pendant}/config.tpl.json +15 -13
package/com/pendant/drive.js +204 -0
package/com/pendant/index.js +441 -0
package/com/pendant/pendant.html +16 -0
package/com/pendant/script.tpl.js +18 -0
package/com/socket/com.json +5 -0
package/com/socket/config.tpl.json +12 -0
package/com/socket/drive.js +651 -0
package/com/socket/index.js +351 -0
package/com/socket/script.tpl.js +41 -0
package/com/sql/com.json +5 -0
package/{core/com → com}/sql/config.tpl.json +13 -9
package/com/sql/drive.js +1259 -0
package/com/sql/index.js +150 -0
package/com/sql/script.tpl.js +47 -0
package/com/static/com.json +5 -0
package/{core/com → com}/static/config.tpl.json +10 -6
package/com/static/drive.js +194 -0
package/com/static/index.js +226 -0
package/com/static/script.tpl.js +28 -0
package/com/task/com.json +5 -0
package/{core/com → com}/task/config.tpl.json +4 -6
package/com/task/drive.js +405 -0
package/com/task/index.js +148 -0
package/com/task/script.tpl.js +37 -0
package/com/template/com.json +5 -0
package/com/template/config.tpl.json +16 -0
package/com/template/drive.js +80 -0
package/com/template/index.js +141 -0
package/com.js +156 -0
package/common/README.md +2 -0
package/common/handler/msg/handler.json +22 -0
package/common/handler/msg/index.js +23 -0
package/common/handler/player/handler.json +22 -0
package/common/handler/player/index.js +287 -0
package/common/handler/user/handler.json +22 -0
package/common/handler/user/index.js +23 -0
package/common/middleware/web_after/index.js +29 -0
package/common/middleware/web_after/middleware.json +9 -0
package/common/middleware/web_base/index.js +113 -0
package/common/middleware/web_base/middleware.json +19 -0
package/common/middleware/web_before/index.js +33 -0
package/common/middleware/web_before/middleware.json +9 -0
package/common/middleware/web_cors/index.js +87 -0
package/common/middleware/web_cors/middleware.json +24 -0
package/common/middleware/web_error/index.js +119 -0
package/common/middleware/web_error/middleware.json +18 -0
package/common/middleware/web_ip/index.js +15 -0
package/common/middleware/web_ip/middleware.json +14 -0
package/common/middleware/web_logger/index.js +156 -0
package/common/middleware/web_logger/middleware.json +14 -0
package/common/middleware/web_main/index.js +24 -0
package/common/middleware/web_main/middleware.json +9 -0
package/common/middleware/web_static/index.js +73 -0
package/common/middleware/web_static/middleware.json +54 -0
package/common/middleware/web_waf/index.js +385 -0
package/common/middleware/web_waf/middleware.json +13 -0
package/common/model/msg/index.js +88 -0
package/common/model/msg/model.json +401 -0
package/common/model/player/index.js +63 -0
package/common/model/player/model.json +185 -0
package/common/model/user/index.js +11 -0
package/common/model/user/model.json +219 -0
package/core/app/config.tpl.json +67 -0
package/core/app/index.js +632 -0
package/core/app/script.tpl.js +52 -0
package/core/channel/index.js +899 -0
package/core/channel/matcher.js +585 -0
package/core/com/config.tpl.json +16 -0
package/core/com/index.js +74 -0
package/core/com/script.tpl.js +5 -0
package/core/component/component.js +42 -0
package/core/component/config.tpl.json +63 -0
package/core/component/index.js +273 -0
package/core/component/script.tpl.js +19 -0
package/core/controller/config.tpl.json +14 -0
package/core/controller/index.js +373 -0
package/core/controller/script.tpl.js +27 -0
package/core/factory/config.tpl.json +14 -0
package/core/factory/entity.js +275 -0
package/core/factory/index.js +241 -0
package/core/factory/script.tpl.js +16 -0
package/core/game/bat/index.js +137 -0
package/core/game/bat/world.js +622 -0
package/core/game/config.tpl.json +16 -0
package/core/game/entity_admin.js +230 -0
package/core/game/index.js +186 -0
package/core/handler/config.tpl.json +22 -0
package/core/handler/index.js +181 -0
package/core/handler/script.tpl.js +23 -0
package/core/logic/config.tpl.json +14 -0
package/core/logic/index.js +59 -0
package/core/logic/script.tpl.js +19 -0
package/core/middleware/config.tpl.json +16 -0
package/core/middleware/index.js +125 -0
package/core/middleware/script.tpl.js +37 -0
package/core/mod/config.tpl.json +22 -0
package/core/mod/index.js +130 -0
package/core/mod/script.tpl.js +34 -0
package/core/model/config.tpl.json +219 -0
package/core/model/index.js +272 -0
package/core/model/model.js +27 -0
package/core/model/script.tpl.js +20 -0
package/core/notifier/config.tpl.json +14 -0
package/core/notifier/index.js +77 -0
package/core/notifier/script.tpl.js +20 -0
package/core/plugin/config.tpl.json +24 -0
package/core/plugin/index.js +232 -0
package/core/plugin/script.tpl.js +51 -0
package/core/pusher/config.tpl.json +14 -0
package/core/pusher/index.js +161 -0
package/core/pusher/script.tpl.js +20 -0
package/core/room/bat/index.js +170 -0
package/core/room/bat/room.js +524 -0
package/core/room/config.tpl.json +20 -0
package/core/room/index.js +249 -0
package/core/room/room.js +61 -0
package/core/scene/config.tpl.json +14 -0
package/core/scene/index.js +466 -0
package/core/scene/loop.js +1255 -0
package/core/scene/map.js +28 -0
package/core/scene/script.tpl.js +22 -0
package/core/sender/config.tpl.json +14 -0
package/core/sender/index.js +79 -0
package/core/sender/script.tpl.js +20 -0
package/core/service/config.tpl.json +14 -0
package/core/service/index.js +100 -0
package/core/service/script.tpl.js +25 -0
package/core/store/config.tpl.json +26 -0
package/core/store/index.js +1755 -0
package/core/store/script.tpl.js +22 -0
package/core/store/sql.js +1464 -0
package/core/system/config.tpl.json +18 -0
package/core/system/index.js +312 -0
package/core/system/script.tpl.js +77 -0
package/core/view/config.tpl.json +14 -0
package/core/view/index.js +91 -0
package/core/view/script.tpl.js +20 -0
package/core/zone/bat/index.js +725 -0
package/core/zone/config.tpl.json +54 -0
package/core/zone/index.js +614 -0
package/core/zone/script.tpl.js +10 -0
package/core/zone/zone_bat.js +136 -0
package/core//345/237/272/347/261/273/346/250/241/345/235/227/346/270/205/345/215/225.md +24 -0
package/index.js +17 -333
package/os.js +57 -0
package/package.json +65 -55
package/server.js +598 -0
package/README.en.md +0 -36
package/conf.json +0 -3
package/core/base/mqtt/index.js +0 -1110
package/core/base/mqtt/lib.js +0 -40
package/core/base/web/index.js +0 -245
package/core/com/api/com.json +0 -4
package/core/com/api/drive.js +0 -668
package/core/com/api/index.js +0 -108
package/core/com/api/oauth.js +0 -158
package/core/com/api/script.js +0 -32
package/core/com/app/README.md +0 -3
package/core/com/app/com.json +0 -4
package/core/com/app/config.tpl.json +0 -16
package/core/com/app/drive.js +0 -309
package/core/com/app/index.js +0 -211
package/core/com/app/script.js +0 -155
package/core/com/cmd/com.json +0 -4
package/core/com/cmd/config.tpl.json +0 -66
package/core/com/cmd/drive.js +0 -513
package/core/com/cmd/index.js +0 -354
package/core/com/cmd/old/5w2h.js +0 -54
package/core/com/cmd/old/drive.js +0 -423
package/core/com/cmd/script.js +0 -11
package/core/com/component/README.md +0 -3
package/core/com/component/com.json +0 -4
package/core/com/component/component.html +0 -16
package/core/com/component/drive.js +0 -197
package/core/com/component/index.js +0 -312
package/core/com/component/script.js +0 -18
package/core/com/db/com.json +0 -4
package/core/com/db/drive.js +0 -1160
package/core/com/db/index.js +0 -176
package/core/com/event/com.json +0 -4
package/core/com/event/drive.js +0 -133
package/core/com/event/index.js +0 -345
package/core/com/event/script.js +0 -26
package/core/com/eventer/com.js +0 -477
package/core/com/eventer/com.json +0 -4
package/core/com/middleware/com.js +0 -154
package/core/com/middleware/com.json +0 -4
package/core/com/middleware/config.tpl.json +0 -8
package/core/com/middleware/script.js +0 -9
package/core/com/mqtt/com.json +0 -4
package/core/com/mqtt/drive.js +0 -600
package/core/com/mqtt/index.js +0 -572
package/core/com/mqtt/mm_mqtt.js +0 -330
package/core/com/mqtt/script.js +0 -604
package/core/com/msg/com.js +0 -296
package/core/com/msg/com.json +0 -4
package/core/com/nav/com.json +0 -4
package/core/com/nav/config.tpl.json +0 -75
package/core/com/nav/drive.js +0 -549
package/core/com/nav/index.js +0 -182
package/core/com/nav/tpl/admin_pc/page_form.vue +0 -180
package/core/com/nav/tpl/admin_pc/page_view.vue +0 -124
package/core/com/nav/tpl/dev_pc/page_default.vue +0 -247
package/core/com/nav/tpl/dev_pc/page_type.vue +0 -313
package/core/com/nav/tpl/home_pc/page_default.vue +0 -234
package/core/com/nav/tpl/home_pc/page_form.vue +0 -137
package/core/com/nav/tpl/home_pc/page_list.vue +0 -234
package/core/com/nav/tpl/home_pc/page_nav.vue +0 -221
package/core/com/nav/tpl/home_pc/page_type.vue +0 -234
package/core/com/nav/tpl/home_pc/page_view.vue +0 -125
package/core/com/nav/tpl/home_phone/page_channel.vue +0 -234
package/core/com/nav/tpl/home_phone/page_default.vue +0 -234
package/core/com/nav/tpl/home_phone/page_form.vue +0 -137
package/core/com/nav/tpl/home_phone/page_nav.vue +0 -237
package/core/com/nav/tpl/home_phone/page_type.vue +0 -234
package/core/com/nav/tpl/home_phone/page_view.vue +0 -125
package/core/com/nav/viewmodel.js +0 -296
package/core/com/param/drive.js +0 -366
package/core/com/param/index.js +0 -80
package/core/com/param/script.js +0 -12
package/core/com/param/test.js +0 -98
package/core/com/plugin/README.md +0 -3
package/core/com/plugin/com.json +0 -4
package/core/com/plugin/config.tpl.json +0 -26
package/core/com/plugin/drive.js +0 -536
package/core/com/plugin/index.js +0 -259
package/core/com/plugin/script.js +0 -213
package/core/com/rpc/com.json +0 -4
package/core/com/rpc/drive.js +0 -160
package/core/com/rpc/index.js +0 -87
package/core/com/rpc/rpc.js +0 -118
package/core/com/socket/com.json +0 -4
package/core/com/socket/config.tpl.json +0 -14
package/core/com/socket/drive.js +0 -403
package/core/com/socket/index.js +0 -62
package/core/com/socket/script.js +0 -42
package/core/com/sql/drive.js +0 -1087
package/core/com/sql/index.js +0 -83
package/core/com/sql/script.js +0 -48
package/core/com/static/com.json +0 -4
package/core/com/static/drive.js +0 -220
package/core/com/static/index.js +0 -149
package/core/com/static/script.js +0 -28
package/core/com/task/com.json +0 -4
package/core/com/task/drive.js +0 -403
package/core/com/task/index.js +0 -110
package/core/com/task/script.js +0 -37
package/core/com/timer/com.js +0 -217
package/core/com/timer/com.json +0 -4
package/core/com/tpl/com.js +0 -19
package/core/com/tpl/com.json +0 -4
package/lib/actions.js +0 -50
package/lib/base.js +0 -361
package/lib/com.js +0 -29
package/lib/ref.js +0 -121
package/middleware/cors/index.js +0 -119
package/middleware/cors/middleware.json +0 -20
package/middleware/csrf/index.js +0 -202
package/middleware/csrf/middleware.json +0 -24
package/middleware/ip_firewall/index.js +0 -476
package/middleware/ip_firewall/middleware.json +0 -109
package/middleware/mqtt_base/index.js +0 -10
package/middleware/mqtt_base/middleware.json +0 -11
package/middleware/security_audit/index.js +0 -543
package/middleware/security_audit/middleware.json +0 -48
package/middleware/waf/index.js +0 -343
package/middleware/waf/middleware.json +0 -10
package/middleware/waf_ddos/index.js +0 -520
package/middleware/waf_ddos/middleware.json +0 -38
package/middleware/waf_xss/index.js +0 -269
package/middleware/waf_xss/middleware.json +0 -18
package/middleware/web_after/index.js +0 -33
package/middleware/web_after/middleware.json +0 -10
package/middleware/web_base/index.js +0 -90
package/middleware/web_base/middleware.json +0 -10
package/middleware/web_before/index.js +0 -27
package/middleware/web_before/middleware.json +0 -10
package/middleware/web_check/index.js +0 -28
package/middleware/web_check/middleware.json +0 -10
package/middleware/web_main/index.js +0 -28
package/middleware/web_main/middleware.json +0 -10
package/middleware/web_proxy/index.js +0 -37
package/middleware/web_proxy/middleware.json +0 -10
package/middleware/web_render/index.js +0 -87
package/middleware/web_render/middleware.json +0 -10
package/middleware/web_socket/index.js +0 -34
package/middleware/web_socket/middleware.json +0 -10
package/middleware/web_static/index.js +0 -115
package/middleware/web_static/middleware.json +0 -10
/package/{core/com → com}/api/README.md +0 -0
/package/{core/com → com}/db/README.md +0 -0
/package/{core/com → com}/mqtt/README.md +0 -0
/package/{core/com → com}/nav/README.md +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_channel.vue +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_default.vue +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_lang.vue +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_nav.vue +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_table.vue +0 -0
/package/{core/com → com}/nav/tpl/admin_pc/page_type.vue +0 -0
/package/{core/com → com}/nav/tpl/dev_pc/page_channel.vue +0 -0
/package/{core/com → com}/nav/tpl/dev_pc/page_config.vue +0 -0
/package/{core/com → com}/nav/tpl/dev_pc/page_form.vue +0 -0
/package/{core/com → com}/nav/tpl/dev_pc/page_nav.vue +0 -0
/package/{core/com → com}/nav/tpl/dev_pc/page_table.vue +0 -0
/package/{core/com → com}/nav/tpl/home_pc/page_channel.vue +0 -0
/package/{core/com → com}/nav/tpl/home_phone/page_list.vue +0 -0
/package/{core/com → com}/param/README.md +0 -0
/package/{core/com/cmd → com/pendant}/README.md +0 -0
/package/{core/com → com}/socket/README.md +0 -0
/package/{core/com → com}/sql/README.md +0 -0
/package/{core/com → com}/static/README.md +0 -0
/package/{core/com → com}/task/README.md +0 -0

package/middleware/security_audit/index.js DELETED Viewed

@@ -1,543 +0,0 @@
-const path = require('path');
-const fs = require('fs');
-/**
- * 综合日志审计系统中间件
- * 合并了原log中间件的轻量级HTTP日志和security_audit的安全审计功能
- */
-class Middleware {
-    /**
-     * 构造函数
-     */
-    constructor() {
-        this.logFiles = new Map();
-        this.default = {
-            // 启用日志审计
-            enable: true,
-            // 日志模式: 'light'（轻量模式，仅记录基本HTTP信息）, 'full'（完整审计模式）
-            log_mode: 'light',
-            // 日志级别: debug, info, warn, error, critical
-            log_level: 'info',
-            // 日志输出方式: file, database, both
-            output: 'file',
-            // 文件日志配置
-            file: {
-                // 日志目录
-                dir: './log/security',
-                // 是否按日期分割日志
-                daily_rotate: true,
-                // 日志保留天数
-                max_days: 30,
-                // 是否压缩旧日志
-                compress: true
-            },
-            // 数据库日志配置
-            database: {
-                // 数据库类型: mongodb, mysql
-                type: 'mysql',
-                // 表名或集合名
-                collection: 'sys_audit_log'
-            },
-            // 需要审计的事件类型（仅在full模式下有效）
-            events: {
-                // 认证事件
-                authentication: true,
-                // 授权事件
-                authorization: true,
-                // 数据访问事件
-                data_access: true,
-                // 数据修改事件
-                data_modification: true,
-                // 系统事件
-                system: true,
-                // 安全事件
-                security: true,
-                // API访问事件
-                api_access: true
-            },
-            // 忽略的路径
-            ignore_paths: ['/health', '/favicon.ico'],
-            // 敏感数据字段列表，记录时会被脱敏
-            sensitive_fields: [
-                'password', 'passwd', 'pwd',
-                'token', 'key', 'secret',
-                'credit_card', 'cc', 'cvv',
-                'phone', 'mobile',
-                'id_card', 'ssn', 'social'
-            ],
-            // 最大日志大小(字节)
-            max_log_size: 10485760, // 10MB
-            // 是否记录请求体
-            log_request_body: true,
-            // 是否记录响应体
-            log_response_body: false,
-            // 是否记录详细的用户信息
-            log_user_details: true,
-            // 是否记录IP地址
-            log_ip_address: true,
-            // 是否记录User-Agent
-            log_user_agent: true,
-            // 轻量模式下请求体最大长度
-            light_log_max_body_length: 1024
-        };
-    }
-    /**
-     * 初始化中间件
-     * @param {Object} config 配置项
-     * @param {Object} next 下一个中间件
-     */
-    init(config, next) {
-        config = Object.assign({}, this.default, config);
-        this.config = config;
-        // 只有在非轻量模式或输出到文件时才创建日志目录和启动轮转检查
-        if (config.enable && config.log_mode !== 'light' &&
-            (config.output === 'file' || config.output === 'both')) {
-            this.ensureLogDirExists();
-            this.startLogRotationCheck();
-        }
-        return next(config);
-    }
-    /**
-     * 执行中间件
-     * @param {Object} ctx Koa上下文
-     * @param {Function} next 下一个中间件
-     */
-    async run(ctx, next) {
-        const config = this.config;
-        if (!config.enable) {
-            return await next();
-        }
-        const path = ctx.path;
-        // 检查是否应该忽略该路径
-        if (config.ignore_paths.some(p => path.startsWith(p))) {
-            return await next();
-        }
-        // 根据日志模式执行不同的处理逻辑
-        if (config.log_mode === 'light') {
-            // 轻量模式：仅记录基本HTTP信息（合并了原log中间件的功能）
-            await this.handleLightLog(ctx, next);
-        } else {
-            // 完整审计模式：记录详细的安全审计日志
-            await this.handleFullAudit(ctx, next);
-        }
-    }
-    /**
-     * 处理轻量级日志（原log中间件功能）
-     * @param {Object} ctx Koa上下文
-     * @param {Function} next 下一个中间件
-     */
-    async handleLightLog(ctx, next) {
-        try {
-            const config = this.config;
-            const url = ctx.path + ctx.querystring;
-            let body = "";
-            if (config.log_request_body && ctx.request.body) {
-                try {
-                    body = JSON.stringify(ctx.request.body);
-                    if (body.length > config.light_log_max_body_length) {
-                        body = body.substring(0, config.light_log_max_body_length) + "..."
-                    }
-                } catch (jsonError) {
-                    body = "[无法序列化请求体]";
-                    if ($.log && $.log.error) {
-                        $.log.error('日志中间件JSON序列化错误:', jsonError);
-                    }
-                }
-            }
-            // 使用系统日志记录HTTP请求
-            if ($.log && $.log.http) {
-                $.log.http(`${ctx.method}\t${url}\t${body}`);
-            }
-            await next();
-        } catch (error) {
-            // 确保请求可以继续处理
-            if ($.log && $.log.error) {
-                $.log.error('log中间件错误:', error);
-            }
-            await next();
-        }
-    }
-    /**
-     * 处理完整审计日志（原security_audit功能）
-     * @param {Object} ctx Koa上下文
-     * @param {Function} next 下一个中间件
-     */
-    async handleFullAudit(ctx, next) {
-        const config = this.config;
-        // 记录请求开始时间
-        const startTime = Date.now();
-        const requestBody = config.log_request_body ? this.sanitizeData(ctx.request.body) : null;
-        try {
-            await next();
-            // 记录API访问事件
-            if (config.events.api_access) {
-                const logData = this.createApiAccessLog(ctx, startTime, requestBody);
-                this.logSecurityEvent('info', 'API_ACCESS', logData);
-            }
-        } catch (error) {
-            // 记录错误事件
-            const errorLog = this.createErrorLog(ctx, error, startTime, requestBody);
-            this.logSecurityEvent('error', 'REQUEST_ERROR', errorLog);
-            throw error;
-        }
-    }
-    /**
-     * 确保日志目录存在
-     */
-    ensureLogDirExists() {
-        const logDir = this.getLogDir();
-        if (!fs.existsSync(logDir)) {
-            try {
-                fs.mkdirSync(logDir, { recursive: true });
-            } catch (error) {
-                // 创建日志目录失败已通过日志系统记录
-            }
-        }
-    }
-    // 其余方法保持不变
-    getLogDir() {
-        const baseDir = this.config.file.dir;
-        return baseDir.startsWith('/') ? baseDir : path.join($.runPath, baseDir);
-    }
-    getLogFileName() {
-        const config = this.config;
-        let fileName = 'security_audit';
-        if (config.file.daily_rotate) {
-            const date = new Date();
-            const dateStr = date.toISOString().split('T')[0];
-            fileName += `_${dateStr}`;
-        }
-        fileName += '.log';
-        return path.join(this.getLogDir(), fileName);
-    }
-    async logSecurityEvent(level, eventType, data) {
-        if (!this.shouldLogLevel(level)) {
-            return;
-        }
-        const logEntry = {
-            timestamp: new Date().toISOString(),
-            level: level,
-            event_type: eventType,
-            ...data
-        };
-        if (this.config.output === 'file' || this.config.output === 'both') {
-            this.writeToFile(logEntry);
-        }
-        if (this.config.output === 'database' || this.config.output === 'both') {
-            await this.writeToDatabase(logEntry);
-        }
-        // 安全审计日志已通过文件或数据库记录，控制台输出已移除
-    }
-    shouldLogLevel(level) {
-        const levels = ['debug', 'info', 'warn', 'error', 'critical'];
-        const configLevelIndex = levels.indexOf(this.config.log_level);
-        const logLevelIndex = levels.indexOf(level);
-        return logLevelIndex >= configLevelIndex;
-    }
-    writeToFile(logEntry) {
-        try {
-            const logFile = this.getLogFileName();
-            const logLine = JSON.stringify(logEntry) + '\n';
-            fs.appendFileSync(logFile, logLine, 'utf8');
-            this.checkLogFileSize(logFile);
-        } catch (error) {
-            // 文件写入错误已通过日志系统记录
-        }
-    }
-    async writeToDatabase(logEntry) {
-        try {
-            const config = this.config.database;
-            if (config.type === 'mongodb' && $.mongodb_admin) {
-                const db = $.mongodb_admin('sys');
-                await db.save(config.collection, logEntry);
-            } else if (config.type === 'mysql' && $.mysql_admin) {
-                const db = $.mysql_admin('sys');
-				db.table = config.collection;
-                await db.add(logEntry);
-            }
-        } catch (error) {
-            // 数据库写入错误已通过日志系统记录
-        }
-    }
-    getClientIp(ctx) {
-        const headers = ctx.headers;
-        const xForwardedFor = headers['x-forwarded-for'];
-        if (xForwardedFor) {
-            const ips = xForwardedFor.split(',').map(ip => ip.trim());
-            for (let i = 0; i < ips.length; i++) {
-                const ip = ips[i];
-                if (ip && ip !== 'unknown' && ip !== '127.0.0.1' && ip !== '::1') {
-                    return ip;
-                }
-            }
-        }
-        return headers['x-real-ip'] ||
-               headers['x-client-ip'] ||
-               headers['cf-connecting-ip'] ||
-               headers['fastly-client-ip'] ||
-               headers['true-client-ip'] ||
-               ctx.ip;
-    }
-    createApiAccessLog(ctx, startTime, requestBody) {
-        const config = this.config;
-        const endTime = Date.now();
-        const responseTime = endTime - startTime;
-        let logData = {
-            request: {
-                method: ctx.method,
-                path: ctx.path,
-                query: this.sanitizeData(ctx.query),
-                headers: this.sanitizeHeaders(ctx.headers),
-                response_time: responseTime
-            },
-            response: {
-                status: ctx.status
-            }
-        };
-        if (requestBody) {
-            logData.request.body = requestBody;
-        }
-        if (config.log_response_body && ctx.body && typeof ctx.body === 'object') {
-            logData.response.body = this.sanitizeData(ctx.body);
-        }
-        if (config.log_ip_address) {
-            logData.client = {
-                ip: this.getClientIp(ctx)
-            };
-        }
-        if (config.log_user_agent && ctx.headers['user-agent']) {
-            if (!logData.client) logData.client = {};
-            logData.client.user_agent = ctx.headers['user-agent'];
-        }
-        if (config.log_user_details && ctx.user) {
-            logData.user = this.sanitizeUserInfo(ctx.user);
-        }
-        return logData;
-    }
-    createErrorLog(ctx, error, startTime, requestBody) {
-        const baseLog = this.createApiAccessLog(ctx, startTime, requestBody);
-        return {
-            ...baseLog,
-            error: {
-                name: error.name,
-                message: error.message,
-                stack: error.stack ? error.stack.substring(0, 1000) : null
-            }
-        };
-    }
-    sanitizeData(data) {
-        if (!data || typeof data !== 'object') {
-            return data;
-        }
-        const sensitiveFields = this.config.sensitive_fields;
-        const result = Array.isArray(data) ? [] : {};
-        for (const key in data) {
-            const value = data[key];
-            const lowerKey = key.toLowerCase();
-            const isSensitive = sensitiveFields.some(field => lowerKey.includes(field));
-            if (isSensitive) {
-                result[key] = this.maskSensitiveValue(value);
-            } else if (typeof value === 'object' && value !== null) {
-                result[key] = this.sanitizeData(value);
-            } else {
-                result[key] = value;
-            }
-        }
-        return result;
-    }
-    maskSensitiveValue(value) {
-        if (typeof value === 'string') {
-            if (value.length <= 4) {
-                return '****';
-            } else if (value.length <= 10) {
-                return value.charAt(0) + '*'.repeat(value.length - 2) + value.charAt(value.length - 1);
-            } else {
-                return value.substring(0, 3) + '*'.repeat(value.length - 6) + value.substring(value.length - 3);
-            }
-        }
-        return '******';
-    }
-    sanitizeHeaders(headers) {
-        if (!headers) return {};
-        const result = {};
-        const sensitiveHeaders = ['authorization', 'cookie', 'x-api-key'];
-        for (const key in headers) {
-            const lowerKey = key.toLowerCase();
-            if (sensitiveHeaders.some(h => lowerKey.includes(h))) {
-                result[key] = '****';
-            } else {
-                result[key] = headers[key];
-            }
-        }
-        return result;
-    }
-    sanitizeUserInfo(userInfo) {
-        return this.sanitizeData(userInfo);
-    }
-    checkLogFileSize(logFile) {
-        try {
-            const stats = fs.statSync(logFile);
-            if (stats.size > this.config.max_log_size) {
-                this.rotateLogFile(logFile);
-            }
-        } catch (error) {
-            // 日志文件大小检查错误已通过日志系统记录
-        }
-    }
-    rotateLogFile(logFile) {
-        try {
-            const timestamp = new Date().getTime();
-            const rotatedFile = `${logFile}.${timestamp}`;
-            fs.renameSync(logFile, rotatedFile);
-            // 日志文件轮转操作已完成
-        } catch (error) {
-            // 日志文件轮转错误已通过日志系统记录
-        }
-    }
-    startLogRotationCheck() {
-        setInterval(() => {
-            this.cleanupOldLogs();
-        }, 3600000);
-    }
-    cleanupOldLogs() {
-        try {
-            const logDir = this.getLogDir();
-            const maxDays = this.config.file.max_days;
-            const now = Date.now();
-            const maxAge = maxDays * 24 * 60 * 60 * 1000;
-            const files = fs.readdirSync(logDir);
-            for (const file of files) {
-                if (file.startsWith('security_audit') && (file.endsWith('.log') || file.endsWith('.log.'))) {
-                    const filePath = path.join(logDir, file);
-                    const stats = fs.statSync(filePath);
-                    if (now - stats.mtimeMs > maxAge) {
-                        fs.unlinkSync(filePath);
-                        // 旧日志文件已清理
-                    }
-                }
-            }
-        } catch (error) {
-            // 旧日志清理错误已通过日志系统记录
-        }
-    }
-    logAuthentication(action, username, success, additionalInfo = {}) {
-        if (this.config.events.authentication) {
-            this.logSecurityEvent(
-                success ? 'info' : 'warn',
-                'AUTHENTICATION',
-                {
-                    action: action,
-                    username: username,
-                    success: success,
-                    ...additionalInfo
-                }
-            );
-        }
-    }
-    logAuthorization(username, resource, action, success, additionalInfo = {}) {
-        if (this.config.events.authorization) {
-            this.logSecurityEvent(
-                success ? 'info' : 'warn',
-                'AUTHORIZATION',
-                {
-                    username: username,
-                    resource: resource,
-                    action: action,
-                    success: success,
-                    ...additionalInfo
-                }
-            );
-        }
-    }
-}
-// 创建中间件实例
-const middleware = new Middleware();
-// 导出符合系统期望的函数
-exports = module.exports = function(server, config) {
-    // 初始化中间件
-    const middlewareHandler = middleware.init(config, function(config) {
-        // 返回中间件的run方法作为实际的处理函数
-        return function(ctx, next) {
-            return middleware.run(ctx, next);
-        };
-    });
-    // 直接使用server.use注册中间件
-    server.use(middlewareHandler);
-    return server;
-};
-// 保留原始审计方法，供其他模块调用
-exports.logAuthentication = middleware.logAuthentication.bind(middleware);
-exports.logAuthorization = middleware.logAuthorization.bind(middleware);
-exports.logSecurityEvent = middleware.logSecurityEvent.bind(middleware);
-exports.middleware = middleware;

package/middleware/security_audit/middleware.json DELETED Viewed

@@ -1,48 +0,0 @@
-{
-  "name": "security_audit",
-  "title": "综合日志审计系统",
-  "type": "security",
-  "state": 1,
-  "sort": 20,
-  "description": "合并了轻量级HTTP请求日志和安全审计功能的综合日志审计系统",
-  "config": {
-    "enable": true,
-    "log_mode": "light",
-    "log_level": "info",
-    "output": "file",
-    "file": {
-      "dir": "./log/security",
-      "daily_rotate": true,
-      "max_days": 30,
-      "compress": true
-    },
-    "database": {
-      "type": "mysql",
-      "collection": "sys_audit_log"
-    },
-    "events": {
-      "authentication": true,
-      "authorization": true,
-      "data_access": true,
-      "data_modification": true,
-      "system": true,
-      "security": true,
-      "api_access": true
-    },
-    "ignore_paths": ["/health", "/favicon.ico", "/static/"],
-    "sensitive_fields": [
-      "password", "passwd", "pwd",
-      "token", "key", "secret",
-      "credit_card", "cc", "cvv",
-      "phone", "mobile",
-      "id_card", "ssn", "social"
-    ],
-    "max_log_size": 10485760,
-    "log_request_body": true,
-    "log_response_body": false,
-    "log_user_details": true,
-    "log_ip_address": true,
-    "log_user_agent": true,
-    "light_log_max_body_length": 1024
-  }
-}