sumor 3.3.2 → 3.3.4

package/README.md

@@ -445,6 +445,43 @@ OAUTH_MOCK_USER_IS_VERIFIED=1
 
 ### Example Mock Setup
 
+#### Mock Users List
+
+To populate the `getUserInfo()`, `getUsersInfo()`, and `searchUsers()` methods with test data, configure the `OAUTH_MOCK_USERS` environment variable with a JSON array of user objects.
+
+**User object properties:**
+
+```typescript
+interface MockUser {
+  userId: string // Required: unique user identifier
+  username?: string // Optional: defaults to `user_{userId}`
+  email?: string // Optional: defaults to `{userId}@example.com`
+  name?: string // Optional: defaults to `User {userId}`
+  avatar?: string // Optional: avatar URL
+  phone?: string // Optional: phone number
+  createdAt?: string // Optional: ISO 8601 timestamp
+  updatedAt?: string // Optional: ISO 8601 timestamp
+  isActive?: boolean // Optional: defaults to `true`
+}
+```
+
+**Behavior:**
+
+- `getUserInfo('user001')` returns the configured user object if it exists, otherwise generates a default user
+- `getUsersInfo(['user001', 'unknown'])` returns configured users for known IDs and generated users for unknown IDs
+- `searchUsers('alice')` searches configured users by userId, username, name, or email and returns matches
+
+**Configuration example:**
+
+```bash
+export OAUTH_MOCK_USERS='[
+  {"userId": "user001", "username": "alice", "email": "alice@example.com", "name": "Alice Wang"},
+  {"userId": "user002", "username": "bob", "email": "bob@example.com", "name": "Bob Smith"}
+]'
+```
+
+For comprehensive examples and usage patterns, refer to [Mock Users List Usage Guide](server/services/oauth/MOCK_USERS_USAGE.md).
+
 **.env.development:**
 
 ```bash
@@ -453,6 +490,22 @@ OAUTH_MOCK_USER_ID=dev-user-1
 OAUTH_MOCK_USER_ROLES=admin
 OAUTH_MOCK_USER_PERMISSIONS=posts:view,posts:edit,posts:delete
 OAUTH_MOCK_USER_IS_VERIFIED=1
+OAUTH_MOCK_USERS='[
+  {
+    "userId": "user001",
+    "username": "alice",
+    "email": "alice@example.com",
+    "name": "Alice Wang",
+    "avatar": "https://api.example.com/avatars/alice.jpg",
+    "isActive": true
+  },
+  {
+    "userId": "user002",
+    "username": "bob",
+    "email": "bob@example.com",
+    "name": "Bob Smith"
+  }
+]'
 ```
 
 No changes are needed in application code — the same `oauthRoutes`, `loadJwtUserMiddleware`, `login()`, and `logout()` calls work in both mock and production modes.

package/README.zh-CN.md

@@ -425,13 +425,14 @@ OAUTH_MOCK_USER_PERMISSIONS=
 OAUTH_MOCK_USER_IS_VERIFIED=1
 ```
 
-| 变量                          | 默认值          | 说明                        |
-| ----------------------------- | --------------- | --------------------------- |
-| `OAUTH_MOCK`                  | `false`         | 设为 `true` 启用 Mock 模式  |
-| `OAUTH_MOCK_USER_ID`          | `mock-user-001` | Mock 用户 ID                |
-| `OAUTH_MOCK_USER_ROLES`       | `admin`         | 逗号分隔的 Mock 角色        |
-| `OAUTH_MOCK_USER_PERMISSIONS` | _（空）_        | 逗号分隔的 Mock 权限        |
-| `OAUTH_MOCK_USER_IS_VERIFIED` | `1`             | Mock 认证状态（`0` 或 `1`） |
+| 变量                          | 默认值          | 说明                                        |
+| ----------------------------- | --------------- | ------------------------------------------- |
+| `OAUTH_MOCK`                  | `false`         | 设为 `true` 启用 Mock 模式                  |
+| `OAUTH_MOCK_USER_ID`          | `mock-user-001` | Mock 用户 ID                                |
+| `OAUTH_MOCK_USER_ROLES`       | `admin`         | 逗号分隔的 Mock 角色                        |
+| `OAUTH_MOCK_USER_PERMISSIONS` | _（空）_        | 逗号分隔的 Mock 权限                        |
+| `OAUTH_MOCK_USER_IS_VERIFIED` | `1`             | Mock 认证状态（`0` 或 `1`）                 |
+| `OAUTH_MOCK_USERS`            | _（空）_        | JSON 数组格式的 Mock 用户列表用于搜索和查询 |
 
 ### Mock 专用路由（仅在 `OAUTH_MOCK=true` 时注册）
 
@@ -444,6 +445,43 @@ OAUTH_MOCK_USER_IS_VERIFIED=1
 
 ### Mock 模式示例配置
 
+#### Mock 用户列表
+
+通过配置 `OAUTH_MOCK_USERS` 环境变量为 `getUserInfo()`、`getUsersInfo()` 和 `searchUsers()` 方法提供测试数据，无需真实 OAuth 服务。
+
+**用户对象属性：**
+
+```typescript
+interface MockUser {
+  userId: string // 必需：用户唯一标识
+  username?: string // 可选：默认为 `user_{userId}`
+  email?: string // 可选：默认为 `{userId}@example.com`
+  name?: string // 可选：默认为 `User {userId}`
+  avatar?: string // 可选：头像 URL
+  phone?: string // 可选：电话号码
+  createdAt?: string // 可选：ISO 8601 时间戳
+  updatedAt?: string // 可选：ISO 8601 时间戳
+  isActive?: boolean // 可选：默认为 `true`
+}
+```
+
+**行为说明：**
+
+- `getUserInfo('user001')` 返回配置的用户对象，不存在则生成默认用户
+- `getUsersInfo(['user001', 'unknown'])` 返回已配置用户及动态生成的未知用户
+- `searchUsers('alice')` 在配置用户中按 userId、username、name、email 模糊搜索并返回结果
+
+**配置示例：**
+
+```bash
+export OAUTH_MOCK_USERS='[
+  {"userId": "user001", "username": "alice", "email": "alice@example.com", "name": "Alice Wang"},
+  {"userId": "user002", "username": "bob", "email": "bob@example.com", "name": "Bob Smith"}
+]'
+```
+
+更详细的配置示例和使用模式参考 [Mock 用户列表使用指南](server/services/oauth/MOCK_USERS_USAGE.md)。
+
 **.env.development：**
 
 ```bash
@@ -452,6 +490,22 @@ OAUTH_MOCK_USER_ID=dev-user-1
 OAUTH_MOCK_USER_ROLES=admin
 OAUTH_MOCK_USER_PERMISSIONS=posts:view,posts:edit,posts:delete
 OAUTH_MOCK_USER_IS_VERIFIED=1
+OAUTH_MOCK_USERS='[
+  {
+    "userId": "user001",
+    "username": "alice",
+    "email": "alice@example.com",
+    "name": "Alice Wang",
+    "avatar": "https://api.example.com/avatars/alice.jpg",
+    "isActive": true
+  },
+  {
+    "userId": "user002",
+    "username": "bob",
+    "email": "bob@example.com",
+    "name": "Bob Smith"
+  }
+]'
 ```
 
 应用代码无需任何修改 —— 相同的 `oauthRoutes`、`loadJwtUserMiddleware`、`login()` 和 `logout()` 调用在 Mock 模式和生产模式下均正常工作。

package/dist/server/controllers/logoutController.js

@@ -7,7 +7,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.logout = logout;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const jsonwebtoken_1 = require("jsonwebtoken");
 /**
  * 用户登出
@@ -42,7 +42,7 @@ async function logout(req, res) {
                 const decoded = (0, jsonwebtoken_1.decode)(accessToken);
                 const sessionId = decoded?.sessionId;
                 if (sessionId) {
-                    const oauthService = new oauthService_1.default();
+                    const oauthService = new OAuthService_1.default();
                     await oauthService.revokeSession(sessionId);
                 }
             }

package/dist/server/controllers/mock/avatarController.d.ts

@@ -0,0 +1,8 @@
+import { NextFunction, Request, Response } from 'express';
+/**
+ * GET /api/oauth/mock/avatar/:id
+ * mock 模式：无头像服务，直接返回 404
+ * 非 mock 模式：透传
+ */
+export declare function avatarController(_req: Request, res: Response, next: NextFunction): void;
+//# sourceMappingURL=avatarController.d.ts.map

package/dist/server/controllers/mock/avatarController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"avatarController.d.ts","sourceRoot":"","sources":["../../../../server/controllers/mock/avatarController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAGzD;;;;GAIG;AACH,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,QAIhF"}

package/dist/server/controllers/mock/avatarController.js

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.avatarController = avatarController;
+const mockConfig_1 = require("../../mock/mockConfig");
+/**
+ * GET /api/oauth/mock/avatar/:id
+ * mock 模式：无头像服务，直接返回 404
+ * 非 mock 模式：透传
+ */
+function avatarController(_req, res, next) {
+    if (!(0, mockConfig_1.isMockMode)())
+        return next();
+    res.status(404).end();
+}
+//# sourceMappingURL=avatarController.js.map

package/dist/server/controllers/mock/avatarController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"avatarController.js","sourceRoot":"","sources":["../../../../server/controllers/mock/avatarController.ts"],"names":[],"mappings":";;AAQA,4CAIC;AAXD,sDAAkD;AAElD;;;;GAIG;AACH,SAAgB,gBAAgB,CAAC,IAAa,EAAE,GAAa,EAAE,IAAkB;IAC/E,IAAI,CAAC,IAAA,uBAAU,GAAE;QAAE,OAAO,IAAI,EAAE,CAAA;IAEhC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAA;AACvB,CAAC"}

package/dist/server/controllers/mock/loginController.d.ts

@@ -0,0 +1,8 @@
+import { NextFunction, Request, Response } from 'express';
+/**
+ * POST /api/oauth/mock/login
+ * mock 模式：直接签发 mock token，写入 HttpOnly Cookie，并返回用户信息
+ * 非 mock 模式：透传
+ */
+export declare function loginController(_req: Request, res: Response, next: NextFunction): void | Response<any, Record<string, any>>;
+//# sourceMappingURL=loginController.d.ts.map

package/dist/server/controllers/mock/loginController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"loginController.d.ts","sourceRoot":"","sources":["../../../../server/controllers/mock/loginController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAUzD;;;;GAIG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,6CAwB/E"}

package/dist/server/controllers/mock/loginController.js

@@ -0,0 +1,34 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.loginController = loginController;
+const mockConfig_1 = require("../../mock/mockConfig");
+const mockTokenUtils_1 = require("../../mock/mockTokenUtils");
+const oauthTokenUtils_1 = require("../../utils/oauthTokenUtils");
+/**
+ * POST /api/oauth/mock/login
+ * mock 模式：直接签发 mock token，写入 HttpOnly Cookie，并返回用户信息
+ * 非 mock 模式：透传
+ */
+function loginController(_req, res, next) {
+    if (!(0, mockConfig_1.isMockMode)())
+        return next();
+    const { user } = (0, mockConfig_1.getMockConfig)();
+    const accessToken = (0, mockTokenUtils_1.generateMockAccessToken)(user);
+    const refreshToken = (0, mockTokenUtils_1.generateMockRefreshToken)(user);
+    (0, oauthTokenUtils_1.setOAuthTokenCookie)(res, accessToken, mockTokenUtils_1.MOCK_ACCESS_TOKEN_EXPIRES_IN, 'access');
+    (0, oauthTokenUtils_1.setOAuthTokenCookie)(res, refreshToken, mockTokenUtils_1.MOCK_REFRESH_TOKEN_EXPIRES_IN, 'refresh');
+    return res.json({
+        code: 'OK',
+        message: '登录成功',
+        data: {
+            isMock: true,
+            user: {
+                id: user.userId,
+                isVerified: user.isVerified,
+                roles: user.roles,
+                permissions: user.permissions
+            }
+        }
+    });
+}
+//# sourceMappingURL=loginController.js.map

package/dist/server/controllers/mock/loginController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"loginController.js","sourceRoot":"","sources":["../../../../server/controllers/mock/loginController.ts"],"names":[],"mappings":";;AAeA,0CAwBC;AAtCD,sDAAiE;AACjE,8DAKkC;AAClC,iEAAiE;AAEjE;;;;GAIG;AACH,SAAgB,eAAe,CAAC,IAAa,EAAE,GAAa,EAAE,IAAkB;IAC9E,IAAI,CAAC,IAAA,uBAAU,GAAE;QAAE,OAAO,IAAI,EAAE,CAAA;IAEhC,MAAM,EAAE,IAAI,EAAE,GAAG,IAAA,0BAAa,GAAE,CAAA;IAEhC,MAAM,WAAW,GAAG,IAAA,wCAAuB,EAAC,IAAI,CAAC,CAAA;IACjD,MAAM,YAAY,GAAG,IAAA,yCAAwB,EAAC,IAAI,CAAC,CAAA;IAEnD,IAAA,qCAAmB,EAAC,GAAG,EAAE,WAAW,EAAE,6CAA4B,EAAE,QAAQ,CAAC,CAAA;IAC7E,IAAA,qCAAmB,EAAC,GAAG,EAAE,YAAY,EAAE,8CAA6B,EAAE,SAAS,CAAC,CAAA;IAEhF,OAAO,GAAG,CAAC,IAAI,CAAC;QACd,IAAI,EAAE,IAAI;QACV,OAAO,EAAE,MAAM;QACf,IAAI,EAAE;YACJ,MAAM,EAAE,IAAI;YACZ,IAAI,EAAE;gBACJ,EAAE,EAAE,IAAI,CAAC,MAAM;gBACf,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,WAAW,EAAE,IAAI,CAAC,WAAW;aAC9B;SACF;KACF,CAAC,CAAA;AACJ,CAAC"}

package/dist/server/controllers/mock/logoutController.d.ts

@@ -0,0 +1,8 @@
+import { NextFunction, Request, Response } from 'express';
+/**
+ * POST /api/oauth/mock/logout
+ * mock 模式：清除 mock token cookie
+ * 非 mock 模式：透传
+ */
+export declare function logoutController(_req: Request, res: Response, next: NextFunction): void | Response<any, Record<string, any>>;
+//# sourceMappingURL=logoutController.d.ts.map

package/dist/server/controllers/mock/logoutController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logoutController.d.ts","sourceRoot":"","sources":["../../../../server/controllers/mock/logoutController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAGzD;;;;GAIG;AACH,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,6CAOhF"}

package/dist/server/controllers/mock/logoutController.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.logoutController = logoutController;
+const mockConfig_1 = require("../../mock/mockConfig");
+/**
+ * POST /api/oauth/mock/logout
+ * mock 模式：清除 mock token cookie
+ * 非 mock 模式：透传
+ */
+function logoutController(_req, res, next) {
+    if (!(0, mockConfig_1.isMockMode)())
+        return next();
+    res.clearCookie('access_token');
+    res.clearCookie('refresh_token');
+    return res.json({ code: 'OK', message: '登出成功' });
+}
+//# sourceMappingURL=logoutController.js.map

package/dist/server/controllers/mock/logoutController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logoutController.js","sourceRoot":"","sources":["../../../../server/controllers/mock/logoutController.ts"],"names":[],"mappings":";;AAQA,4CAOC;AAdD,sDAAkD;AAElD;;;;GAIG;AACH,SAAgB,gBAAgB,CAAC,IAAa,EAAE,GAAa,EAAE,IAAkB;IAC/E,IAAI,CAAC,IAAA,uBAAU,GAAE;QAAE,OAAO,IAAI,EAAE,CAAA;IAEhC,GAAG,CAAC,WAAW,CAAC,cAAc,CAAC,CAAA;IAC/B,GAAG,CAAC,WAAW,CAAC,eAAe,CAAC,CAAA;IAEhC,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAA;AAClD,CAAC"}

package/dist/server/controllers/mock/navController.d.ts

@@ -0,0 +1,8 @@
+import { NextFunction, Request, Response } from 'express';
+/**
+ * GET /api/oauth/mock/nav/:target
+ * mock 模式：导航占位页，展示目标页面名称并提供回退按钮
+ * 非 mock 模式：透传
+ */
+export declare function navController(req: Request, res: Response, next: NextFunction): void;
+//# sourceMappingURL=navController.d.ts.map

package/dist/server/controllers/mock/navController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"navController.d.ts","sourceRoot":"","sources":["../../../../server/controllers/mock/navController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAUzD;;;;GAIG;AACH,wBAAgB,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,QA6E5E"}

package/dist/server/controllers/mock/navController.js

@@ -0,0 +1,93 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.navController = navController;
+const mockConfig_1 = require("../../mock/mockConfig");
+const NAV_LABELS = {
+    home: '首页',
+    site: '站点管理',
+    user: '用户中心',
+    feedback: '意见反馈'
+};
+/**
+ * GET /api/oauth/mock/nav/:target
+ * mock 模式：导航占位页，展示目标页面名称并提供回退按钮
+ * 非 mock 模式：透传
+ */
+function navController(req, res, next) {
+    if (!(0, mockConfig_1.isMockMode)())
+        return next();
+    const target = req.params['target'];
+    const label = NAV_LABELS[target] || target;
+    res.setHeader('Content-Type', 'text/html; charset=utf-8');
+    res.send(`<!DOCTYPE html>
+<html lang="zh-CN">
+<head>
+  <meta charset="UTF-8" />
+  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+  <title>[Mock] ${label}</title>
+  <style>
+    *, *::before, *::after { box-sizing: border-box; margin: 0; padding: 0; }
+    body {
+      min-height: 100vh;
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif;
+      background: #f5f5f5;
+      color: #333;
+    }
+    .card {
+      background: #fff;
+      border-radius: 12px;
+      box-shadow: 0 4px 24px rgba(0,0,0,.08);
+      padding: 48px 56px;
+      text-align: center;
+      max-width: 420px;
+      width: 90%;
+    }
+    .badge {
+      display: inline-block;
+      background: #fff3cd;
+      color: #856404;
+      font-size: 12px;
+      font-weight: 600;
+      letter-spacing: .5px;
+      padding: 3px 10px;
+      border-radius: 99px;
+      margin-bottom: 20px;
+    }
+    h1 {
+      font-size: 24px;
+      font-weight: 700;
+      margin-bottom: 8px;
+    }
+    p {
+      font-size: 14px;
+      color: #888;
+      margin-bottom: 32px;
+      line-height: 1.6;
+    }
+    button {
+      background: #333;
+      color: #fff;
+      border: none;
+      border-radius: 8px;
+      padding: 10px 28px;
+      font-size: 14px;
+      cursor: pointer;
+      transition: background .15s;
+    }
+    button:hover { background: #555; }
+  </style>
+</head>
+<body>
+  <div class="card">
+    <span class="badge">MOCK</span>
+    <h1>${label}</h1>
+    <p>当前处于 Mock 模式，此页面为占位页。<br/>真实环境中将跳转到 OAuth 服务的「${label}」页面。</p>
+    <button onclick="history.back()">返回上一页</button>
+  </div>
+</body>
+</html>`);
+}
+//# sourceMappingURL=navController.js.map

package/dist/server/controllers/mock/navController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"navController.js","sourceRoot":"","sources":["../../../../server/controllers/mock/navController.ts"],"names":[],"mappings":";;AAeA,sCA6EC;AA3FD,sDAAkD;AAElD,MAAM,UAAU,GAA2B;IACzC,IAAI,EAAE,IAAI;IACV,IAAI,EAAE,MAAM;IACZ,IAAI,EAAE,MAAM;IACZ,QAAQ,EAAE,MAAM;CACjB,CAAA;AAED;;;;GAIG;AACH,SAAgB,aAAa,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAC3E,IAAI,CAAC,IAAA,uBAAU,GAAE;QAAE,OAAO,IAAI,EAAE,CAAA;IAEhC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAW,CAAA;IAC7C,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC,IAAI,MAAM,CAAA;IAE1C,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAA;IACzD,GAAG,CAAC,IAAI,CAAC;;;;;kBAKO,KAAK;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;UA2Db,KAAK;uDACwC,KAAK;;;;QAIpD,CAAC,CAAA;AACT,CAAC"}

package/dist/server/controllers/mock/tokenController.d.ts

@@ -0,0 +1,8 @@
+import { NextFunction, Request, Response } from 'express';
+/**
+ * PUT /token
+ * mock 模式：验证 mock token 并返回用户信息，响应中包含 isMock: true
+ * 非 mock 模式：透传到真实的 tokenRefreshController
+ */
+export declare function tokenController(req: Request, res: Response, next: NextFunction): void | Response<any, Record<string, any>>;
+//# sourceMappingURL=tokenController.d.ts.map

package/dist/server/controllers/mock/tokenController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokenController.d.ts","sourceRoot":"","sources":["../../../../server/controllers/mock/tokenController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAsBzD;;;;GAIG;AACH,wBAAgB,eAAe,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,6CAoE9E"}

package/dist/server/controllers/mock/tokenController.js

@@ -0,0 +1,89 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.tokenController = tokenController;
+const mockConfig_1 = require("../../mock/mockConfig");
+const mockTokenUtils_1 = require("../../mock/mockTokenUtils");
+const oauthTokenUtils_1 = require("../../utils/oauthTokenUtils");
+function parseCookies(cookieString) {
+    const cookies = {};
+    if (!cookieString)
+        return cookies;
+    cookieString.split(';').forEach(cookie => {
+        const [name, value] = cookie.split('=');
+        if (name && value) {
+            cookies[name.trim()] = value.trim();
+        }
+    });
+    return cookies;
+}
+/**
+ * PUT /token
+ * mock 模式：验证 mock token 并返回用户信息，响应中包含 isMock: true
+ * 非 mock 模式：透传到真实的 tokenRefreshController
+ */
+function tokenController(req, res, next) {
+    if (!(0, mockConfig_1.isMockMode)())
+        return next();
+    const { user } = (0, mockConfig_1.getMockConfig)();
+    const cookies = parseCookies(req.headers.cookie);
+    const accessTokenRaw = cookies.access_token || '';
+    const refreshTokenRaw = cookies.refresh_token || '';
+    // 先验证 access_token
+    if (accessTokenRaw && (0, mockTokenUtils_1.isMockToken)(accessTokenRaw)) {
+        try {
+            const claims = (0, mockTokenUtils_1.verifyMockToken)(accessTokenRaw);
+            if (claims.sub) {
+                return res.json({
+                    code: 'OK',
+                    message: 'Token 仍然有效',
+                    data: {
+                        isMock: true,
+                        user: {
+                            id: claims.sub,
+                            isVerified: claims.isVerified ?? user.isVerified,
+                            roles: claims.roles ?? user.roles,
+                            permissions: claims.permissions ?? user.permissions
+                        }
+                    }
+                });
+            }
+        }
+        catch {
+            // access_token 过期，继续尝试 refresh_token
+        }
+    }
+    // 使用 refresh_token 重签 access_token
+    if (refreshTokenRaw && (0, mockTokenUtils_1.isMockToken)(refreshTokenRaw)) {
+        try {
+            (0, mockTokenUtils_1.verifyMockToken)(refreshTokenRaw);
+            const newAccessToken = (0, mockTokenUtils_1.generateMockAccessToken)(user);
+            (0, oauthTokenUtils_1.setOAuthTokenCookie)(res, newAccessToken, mockTokenUtils_1.MOCK_ACCESS_TOKEN_EXPIRES_IN, 'access');
+            return res.json({
+                code: 'OK',
+                message: 'Token 刷新成功',
+                data: {
+                    isMock: true,
+                    user: {
+                        id: user.userId,
+                        isVerified: user.isVerified,
+                        roles: user.roles,
+                        permissions: user.permissions
+                    }
+                }
+            });
+        }
+        catch {
+            // refresh_token 也过期了
+        }
+    }
+    // 未登录
+    return res.json({
+        code: 'OK',
+        message: '未登录',
+        data: {
+            isMock: true,
+            user: null
+        }
+    });
+}
+//# sourceMappingURL=tokenController.js.map

package/dist/server/controllers/mock/tokenController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokenController.js","sourceRoot":"","sources":["../../../../server/controllers/mock/tokenController.ts"],"names":[],"mappings":";;AA2BA,0CAoEC;AA9FD,sDAAiE;AACjE,8DAKkC;AAClC,iEAAiE;AAEjE,SAAS,YAAY,CAAC,YAAqB;IACzC,MAAM,OAAO,GAA2B,EAAE,CAAA;IAC1C,IAAI,CAAC,YAAY;QAAE,OAAO,OAAO,CAAA;IACjC,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;QACvC,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QACvC,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAA;QACrC,CAAC;IACH,CAAC,CAAC,CAAA;IACF,OAAO,OAAO,CAAA;AAChB,CAAC;AAED;;;;GAIG;AACH,SAAgB,eAAe,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAC7E,IAAI,CAAC,IAAA,uBAAU,GAAE;QAAE,OAAO,IAAI,EAAE,CAAA;IAEhC,MAAM,EAAE,IAAI,EAAE,GAAG,IAAA,0BAAa,GAAE,CAAA;IAEhC,MAAM,OAAO,GAAG,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IAChD,MAAM,cAAc,GAAG,OAAO,CAAC,YAAY,IAAI,EAAE,CAAA;IACjD,MAAM,eAAe,GAAG,OAAO,CAAC,aAAa,IAAI,EAAE,CAAA;IAEnD,mBAAmB;IACnB,IAAI,cAAc,IAAI,IAAA,4BAAW,EAAC,cAAc,CAAC,EAAE,CAAC;QAClD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAA,gCAAe,EAAC,cAAc,CAAC,CAAA;YAC9C,IAAI,MAAM,CAAC,GAAG,EAAE,CAAC;gBACf,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,IAAI;oBACV,OAAO,EAAE,YAAY;oBACrB,IAAI,EAAE;wBACJ,MAAM,EAAE,IAAI;wBACZ,IAAI,EAAE;4BACJ,EAAE,EAAE,MAAM,CAAC,GAAG;4BACd,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,IAAI,CAAC,UAAU;4BAChD,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK;4BACjC,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,IAAI,CAAC,WAAW;yBACpD;qBACF;iBACF,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,qCAAqC;QACvC,CAAC;IACH,CAAC;IAED,mCAAmC;IACnC,IAAI,eAAe,IAAI,IAAA,4BAAW,EAAC,eAAe,CAAC,EAAE,CAAC;QACpD,IAAI,CAAC;YACH,IAAA,gCAAe,EAAC,eAAe,CAAC,CAAA;YAEhC,MAAM,cAAc,GAAG,IAAA,wCAAuB,EAAC,IAAI,CAAC,CAAA;YACpD,IAAA,qCAAmB,EAAC,GAAG,EAAE,cAAc,EAAE,6CAA4B,EAAE,QAAQ,CAAC,CAAA;YAEhF,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,IAAI,EAAE,IAAI;gBACV,OAAO,EAAE,YAAY;gBACrB,IAAI,EAAE;oBACJ,MAAM,EAAE,IAAI;oBACZ,IAAI,EAAE;wBACJ,EAAE,EAAE,IAAI,CAAC,MAAM;wBACf,UAAU,EAAE,IAAI,CAAC,UAAU;wBAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;wBACjB,WAAW,EAAE,IAAI,CAAC,WAAW;qBAC9B;iBACF;aACF,CAAC,CAAA;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB;QACvB,CAAC;IACH,CAAC;IAED,MAAM;IACN,OAAO,GAAG,CAAC,IAAI,CAAC;QACd,IAAI,EAAE,IAAI;QACV,OAAO,EAAE,KAAK;QACd,IAAI,EAAE;YACJ,MAAM,EAAE,IAAI;YACZ,IAAI,EAAE,IAAI;SACX;KACF,CAAC,CAAA;AACJ,CAAC"}

package/dist/server/controllers/oauthCallbackController.js

@@ -11,7 +11,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = oauthCallbackController;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const tokenModel_1 = require("../models/tokenModel");
 const config_1 = require("../utils/config");
 const oauthTokenUtils_1 = require("../utils/oauthTokenUtils");
@@ -30,7 +30,7 @@ async function exchangeCodeForToken(code, codeVerifier) {
     // 使用配置中的 redirectUri
     const oauthConfig = (0, config_1.getOAuthConfig)();
     const uri = oauthConfig.redirectUri;
-    const oauthService = new oauthService_1.default();
+    const oauthService = new OAuthService_1.default();
     const data = await oauthService.exchangeCode('authorization_code', code, uri, verifier);
     // 验证响应数据的完整性
     if (!data || !data.accessToken || !data.tokenType || typeof data.expiresIn !== 'number') {

package/dist/server/controllers/tokenRefreshController.js

@@ -10,7 +10,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = tokenRefreshController;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const oauthTokenUtils_1 = require("../utils/oauthTokenUtils");
 const tokenModel_1 = require("../models/tokenModel");
 const config_1 = require("../utils/config");
@@ -55,7 +55,7 @@ async function tokenRefreshController(req, res) {
             // 如果有有效的 refreshToken，进行刷新
             if (refreshToken) {
                 // 使用 OAuthService 调用 OAuth API
-                const oauthService = new oauthService_1.default();
+                const oauthService = new OAuthService_1.default();
                 const tokenData = await oauthService.refreshAccessToken(refreshToken);
                 // 使用公用的 token 设置函数
                 // 设置新的 accessToken

package/dist/server/index.d.ts

@@ -2,7 +2,7 @@
  * Sumor OAuth 暴露接口
  * 导出所需的中间件、路由和服务供客户端使用
  */
-import OAuthService from './services/oauthService';
+import OAuthService from './services/OAuthService';
 import oauthRoutes from './routes';
 import { loadJwtUserMiddleware } from './middlewares/loadJwtUserMiddleware';
 /**

package/dist/server/index.js

@@ -8,8 +8,8 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.oauthRoutes = exports.loadJwtUserMiddleware = exports.OAuthService = void 0;
-const oauthService_1 = __importDefault(require("./services/oauthService"));
-exports.OAuthService = oauthService_1.default;
+const OAuthService_1 = __importDefault(require("./services/OAuthService"));
+exports.OAuthService = OAuthService_1.default;
 const routes_1 = __importDefault(require("./routes"));
 exports.oauthRoutes = routes_1.default;
 const loadJwtUserMiddleware_1 = require("./middlewares/loadJwtUserMiddleware");

package/dist/server/mock/mockConfig.d.ts

@@ -21,14 +21,12 @@ export interface MockConfig {
 }
 /**
  * 判断是否启用了 Mock 模式
+ * 每次调用都从 process.env 读取，确保 dotenv 初始化后能正确感知
  */
 export declare function isMockMode(): boolean;
 /**
  * 获取 Mock 配置
+ * 每次调用都从 process.env 读取，避免 dotenv 未加载时缓存错误值
  */
 export declare function getMockConfig(): MockConfig;
-/**
- * 重置缓存（测试用）
- */
-export declare function resetMockConfigCache(): void;
 //# sourceMappingURL=mockConfig.d.ts.map

package/dist/server/mock/mockConfig.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mockConfig.d.ts","sourceRoot":"","sources":["../../../server/mock/mockConfig.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAA;IACd,KAAK,EAAE,MAAM,CAAA;IACb,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,EAAE,MAAM,CAAA;CACnB;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,OAAO,CAAA;IAChB,IAAI,EAAE,cAAc,CAAA;CACrB;AAID;;GAEG;AACH,wBAAgB,UAAU,IAAI,OAAO,CAEpC;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,UAAU,CAa1C;AAED;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,IAAI,CAE3C"}
+{"version":3,"file":"mockConfig.d.ts","sourceRoot":"","sources":["../../../server/mock/mockConfig.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAA;IACd,KAAK,EAAE,MAAM,CAAA;IACb,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,EAAE,MAAM,CAAA;CACnB;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,OAAO,CAAA;IAChB,IAAI,EAAE,cAAc,CAAA;CACrB;AAED;;;GAGG;AACH,wBAAgB,UAAU,IAAI,OAAO,CAEpC;AAED;;;GAGG;AACH,wBAAgB,aAAa,IAAI,UAAU,CAU1C"}

package/dist/server/mock/mockConfig.js

@@ -13,35 +13,26 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.isMockMode = isMockMode;
 exports.getMockConfig = getMockConfig;
-exports.resetMockConfigCache = resetMockConfigCache;
-let cachedMockConfig = null;
 /**
  * 判断是否启用了 Mock 模式
+ * 每次调用都从 process.env 读取，确保 dotenv 初始化后能正确感知
  */
 function isMockMode() {
     return process.env.OAUTH_MOCK === 'true';
 }
 /**
  * 获取 Mock 配置
+ * 每次调用都从 process.env 读取，避免 dotenv 未加载时缓存错误值
  */
 function getMockConfig() {
-    if (!cachedMockConfig) {
-        cachedMockConfig = {
-            enabled: isMockMode(),
-            user: {
-                userId: process.env.OAUTH_MOCK_USER_ID || 'mock-user-001',
-                roles: process.env.OAUTH_MOCK_USER_ROLES || 'admin',
-                permissions: process.env.OAUTH_MOCK_USER_PERMISSIONS || '',
-                isVerified: parseInt(process.env.OAUTH_MOCK_USER_IS_VERIFIED || '1', 10)
-            }
-        };
-    }
-    return cachedMockConfig;
-}
-/**
- * 重置缓存（测试用）
- */
-function resetMockConfigCache() {
-    cachedMockConfig = null;
+    return {
+        enabled: isMockMode(),
+        user: {
+            userId: process.env.OAUTH_MOCK_USER_ID || 'mock-user-001',
+            roles: process.env.OAUTH_MOCK_USER_ROLES || 'admin',
+            permissions: process.env.OAUTH_MOCK_USER_PERMISSIONS || '',
+            isVerified: parseInt(process.env.OAUTH_MOCK_USER_IS_VERIFIED || '1', 10)
+        }
+    };
 }
 //# sourceMappingURL=mockConfig.js.map