sumor 3.3.2 → 3.3.4

package/dist/server/mock/mockConfig.js.map

@@ -1 +1 @@
-{"version":3,"file":"mockConfig.js","sourceRoot":"","sources":["../../../server/mock/mockConfig.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;GAUG;;AAmBH,gCAEC;AAKD,sCAaC;AAKD,oDAEC;AAhCD,IAAI,gBAAgB,GAAsB,IAAI,CAAA;AAE9C;;GAEG;AACH,SAAgB,UAAU;IACxB,OAAO,OAAO,CAAC,GAAG,CAAC,UAAU,KAAK,MAAM,CAAA;AAC1C,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa;IAC3B,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACtB,gBAAgB,GAAG;YACjB,OAAO,EAAE,UAAU,EAAE;YACrB,IAAI,EAAE;gBACJ,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,eAAe;gBACzD,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,OAAO;gBACnD,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE;gBAC1D,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,GAAG,EAAE,EAAE,CAAC;aACzE;SACF,CAAA;IACH,CAAC;IACD,OAAO,gBAAgB,CAAA;AACzB,CAAC;AAED;;GAEG;AACH,SAAgB,oBAAoB;IAClC,gBAAgB,GAAG,IAAI,CAAA;AACzB,CAAC"}
+{"version":3,"file":"mockConfig.js","sourceRoot":"","sources":["../../../server/mock/mockConfig.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;GAUG;;AAkBH,gCAEC;AAMD,sCAUC;AAtBD;;;GAGG;AACH,SAAgB,UAAU;IACxB,OAAO,OAAO,CAAC,GAAG,CAAC,UAAU,KAAK,MAAM,CAAA;AAC1C,CAAC;AAED;;;GAGG;AACH,SAAgB,aAAa;IAC3B,OAAO;QACL,OAAO,EAAE,UAAU,EAAE;QACrB,IAAI,EAAE;YACJ,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,eAAe;YACzD,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,OAAO;YACnD,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE;YAC1D,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,GAAG,EAAE,EAAE,CAAC;SACzE;KACF,CAAA;AACH,CAAC"}

package/dist/server/mock/mockRoutes.d.ts

@@ -1,8 +1,18 @@
 /**
- * Mock OAuth 路由（替换 /api/oauth/* 下的真实路由）
+ * Mock OAuth 路由
  *
- * 在 OAUTH_MOCK=true 模式下挂载，替代真实 OAuth 流程。
- * PUT /token 会在响应中携带 isMock: true，web SDK 据此走纯前端 mock 路径。
+ * 始终注册，非 mock 模式下所有处理器调用 next() 透传到真实路由。
+ * PUT /token 在 mock 模式下响应中携带 isMock: true，web SDK 据此走纯前端 mock 路径。
+ *
+ * Mock API 路由（挂载到 /mock）
+ *
+ * mock 模式下提供给 web SDK 直接调用的接口，无需页面跳转。
+ *
+ * 路由列表：
+ *   POST /mock/login          - 签发 mock token，返回用户信息
+ *   POST /mock/logout         - 清除 mock token cookie
+ *   GET  /mock/avatar/:id     - 返回 404（mock 模式无头像服务）
+ *   GET  /mock/nav/:target    - 导航占位页（home/site/user/feedback）
  */
 declare const mockRoutes: import("express-serve-static-core").Router;
 export default mockRoutes;

package/dist/server/mock/mockRoutes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mockRoutes.d.ts","sourceRoot":"","sources":["../../../server/mock/mockRoutes.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAYH,QAAA,MAAM,UAAU,4CAAmB,CAAA;AAsFnC,eAAe,UAAU,CAAA"}
+{"version":3,"file":"mockRoutes.d.ts","sourceRoot":"","sources":["../../../server/mock/mockRoutes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AASH,QAAA,MAAM,UAAU,4CAAmB,CAAA;AASnC,eAAe,UAAU,CAAA"}

package/dist/server/mock/mockRoutes.js

@@ -1,97 +1,35 @@
 "use strict";
 /**
- * Mock OAuth 路由（替换 /api/oauth/* 下的真实路由）
+ * Mock OAuth 路由
  *
- * 在 OAUTH_MOCK=true 模式下挂载，替代真实 OAuth 流程。
- * PUT /token 会在响应中携带 isMock: true，web SDK 据此走纯前端 mock 路径。
+ * 始终注册，非 mock 模式下所有处理器调用 next() 透传到真实路由。
+ * PUT /token 在 mock 模式下响应中携带 isMock: true，web SDK 据此走纯前端 mock 路径。
+ *
+ * Mock API 路由（挂载到 /mock）
+ *
+ * mock 模式下提供给 web SDK 直接调用的接口，无需页面跳转。
+ *
+ * 路由列表：
+ *   POST /mock/login          - 签发 mock token，返回用户信息
+ *   POST /mock/logout         - 清除 mock token cookie
+ *   GET  /mock/avatar/:id     - 返回 404（mock 模式无头像服务）
+ *   GET  /mock/nav/:target    - 导航占位页（home/site/user/feedback）
  */
 var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 const express_1 = __importDefault(require("express"));
-const mockConfig_1 = require("./mockConfig");
-const mockTokenUtils_1 = require("./mockTokenUtils");
-const oauthTokenUtils_1 = require("../utils/oauthTokenUtils");
+const tokenController_1 = require("../controllers/mock/tokenController");
+const loginController_1 = require("../controllers/mock/loginController");
+const logoutController_1 = require("../controllers/mock/logoutController");
+const avatarController_1 = require("../controllers/mock/avatarController");
+const navController_1 = require("../controllers/mock/navController");
 const mockRoutes = express_1.default.Router();
-/**
- * PUT /token
- * 验证 mock token 并返回用户信息，响应中包含 isMock: true
- */
-mockRoutes.put('/token', (req, res) => {
-    const { user } = (0, mockConfig_1.getMockConfig)();
-    const cookies = parseCookies(req.headers.cookie);
-    const accessTokenRaw = cookies.access_token || '';
-    const refreshTokenRaw = cookies.refresh_token || '';
-    // 先验证 access_token
-    if (accessTokenRaw && (0, mockTokenUtils_1.isMockToken)(accessTokenRaw)) {
-        try {
-            const claims = (0, mockTokenUtils_1.verifyMockToken)(accessTokenRaw);
-            if (claims.sub) {
-                return res.json({
-                    code: 'OK',
-                    message: 'Token 仍然有效',
-                    data: {
-                        isMock: true,
-                        user: {
-                            id: claims.sub,
-                            isVerified: claims.isVerified ?? user.isVerified,
-                            roles: claims.roles ?? user.roles,
-                            permissions: claims.permissions ?? user.permissions
-                        }
-                    }
-                });
-            }
-        }
-        catch {
-            // access_token 过期，继续尝试 refresh_token
-        }
-    }
-    // 使用 refresh_token 重签 access_token
-    if (refreshTokenRaw && (0, mockTokenUtils_1.isMockToken)(refreshTokenRaw)) {
-        try {
-            (0, mockTokenUtils_1.verifyMockToken)(refreshTokenRaw);
-            const newAccessToken = (0, mockTokenUtils_1.generateMockAccessToken)(user);
-            (0, oauthTokenUtils_1.setOAuthTokenCookie)(res, newAccessToken, mockTokenUtils_1.MOCK_ACCESS_TOKEN_EXPIRES_IN, 'access');
-            return res.json({
-                code: 'OK',
-                message: 'Token 刷新成功',
-                data: {
-                    isMock: true,
-                    user: {
-                        id: user.userId,
-                        isVerified: user.isVerified,
-                        roles: user.roles,
-                        permissions: user.permissions
-                    }
-                }
-            });
-        }
-        catch {
-            // refresh_token 也过期了
-        }
-    }
-    // 未登录
-    return res.json({
-        code: 'OK',
-        message: '未登录',
-        data: {
-            isMock: true,
-            user: null
-        }
-    });
-});
-function parseCookies(cookieString) {
-    const cookies = {};
-    if (!cookieString)
-        return cookies;
-    cookieString.split(';').forEach(cookie => {
-        const [name, value] = cookie.split('=');
-        if (name && value) {
-            cookies[name.trim()] = value.trim();
-        }
-    });
-    return cookies;
-}
+mockRoutes.put('/token', tokenController_1.tokenController);
+mockRoutes.post('/mock/login', loginController_1.loginController);
+mockRoutes.post('/mock/logout', logoutController_1.logoutController);
+mockRoutes.get('/mock/avatar/:id', avatarController_1.avatarController);
+mockRoutes.get('/mock/nav/:target', navController_1.navController);
 exports.default = mockRoutes;
 //# sourceMappingURL=mockRoutes.js.map

package/dist/server/mock/mockRoutes.js.map

@@ -1 +1 @@
-{"version":3,"file":"mockRoutes.js","sourceRoot":"","sources":["../../../server/mock/mockRoutes.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;AAEH,sDAAoD;AACpD,6CAA4C;AAC5C,qDAKyB;AACzB,8DAA8D;AAE9D,MAAM,UAAU,GAAG,iBAAO,CAAC,MAAM,EAAE,CAAA;AAEnC;;;GAGG;AACH,UAAU,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;IACvD,MAAM,EAAE,IAAI,EAAE,GAAG,IAAA,0BAAa,GAAE,CAAA;IAEhC,MAAM,OAAO,GAAG,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IAChD,MAAM,cAAc,GAAG,OAAO,CAAC,YAAY,IAAI,EAAE,CAAA;IACjD,MAAM,eAAe,GAAG,OAAO,CAAC,aAAa,IAAI,EAAE,CAAA;IAEnD,mBAAmB;IACnB,IAAI,cAAc,IAAI,IAAA,4BAAW,EAAC,cAAc,CAAC,EAAE,CAAC;QAClD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAA,gCAAe,EAAC,cAAc,CAAC,CAAA;YAC9C,IAAI,MAAM,CAAC,GAAG,EAAE,CAAC;gBACf,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,IAAI;oBACV,OAAO,EAAE,YAAY;oBACrB,IAAI,EAAE;wBACJ,MAAM,EAAE,IAAI;wBACZ,IAAI,EAAE;4BACJ,EAAE,EAAE,MAAM,CAAC,GAAG;4BACd,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,IAAI,CAAC,UAAU;4BAChD,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK;4BACjC,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,IAAI,CAAC,WAAW;yBACpD;qBACF;iBACF,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,qCAAqC;QACvC,CAAC;IACH,CAAC;IAED,mCAAmC;IACnC,IAAI,eAAe,IAAI,IAAA,4BAAW,EAAC,eAAe,CAAC,EAAE,CAAC;QACpD,IAAI,CAAC;YACH,IAAA,gCAAe,EAAC,eAAe,CAAC,CAAA;YAEhC,MAAM,cAAc,GAAG,IAAA,wCAAuB,EAAC,IAAI,CAAC,CAAA;YACpD,IAAA,qCAAmB,EAAC,GAAG,EAAE,cAAc,EAAE,6CAA4B,EAAE,QAAQ,CAAC,CAAA;YAEhF,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,IAAI,EAAE,IAAI;gBACV,OAAO,EAAE,YAAY;gBACrB,IAAI,EAAE;oBACJ,MAAM,EAAE,IAAI;oBACZ,IAAI,EAAE;wBACJ,EAAE,EAAE,IAAI,CAAC,MAAM;wBACf,UAAU,EAAE,IAAI,CAAC,UAAU;wBAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;wBACjB,WAAW,EAAE,IAAI,CAAC,WAAW;qBAC9B;iBACF;aACF,CAAC,CAAA;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB;QACvB,CAAC;IACH,CAAC;IAED,MAAM;IACN,OAAO,GAAG,CAAC,IAAI,CAAC;QACd,IAAI,EAAE,IAAI;QACV,OAAO,EAAE,KAAK;QACd,IAAI,EAAE;YACJ,MAAM,EAAE,IAAI;YACZ,IAAI,EAAE,IAAI;SACX;KACF,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,SAAS,YAAY,CAAC,YAAqB;IACzC,MAAM,OAAO,GAA2B,EAAE,CAAA;IAC1C,IAAI,CAAC,YAAY;QAAE,OAAO,OAAO,CAAA;IACjC,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;QACvC,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QACvC,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAA;QACrC,CAAC;IACH,CAAC,CAAC,CAAA;IACF,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,kBAAe,UAAU,CAAA"}
+{"version":3,"file":"mockRoutes.js","sourceRoot":"","sources":["../../../server/mock/mockRoutes.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;;;AAEH,sDAA6B;AAC7B,yEAAqE;AACrE,yEAAqE;AACrE,2EAAuE;AACvE,2EAAuE;AACvE,qEAAiE;AAEjE,MAAM,UAAU,GAAG,iBAAO,CAAC,MAAM,EAAE,CAAA;AAEnC,UAAU,CAAC,GAAG,CAAC,QAAQ,EAAE,iCAAe,CAAC,CAAA;AAEzC,UAAU,CAAC,IAAI,CAAC,aAAa,EAAE,iCAAe,CAAC,CAAA;AAC/C,UAAU,CAAC,IAAI,CAAC,cAAc,EAAE,mCAAgB,CAAC,CAAA;AACjD,UAAU,CAAC,GAAG,CAAC,kBAAkB,EAAE,mCAAgB,CAAC,CAAA;AACpD,UAAU,CAAC,GAAG,CAAC,mBAAmB,EAAE,6BAAa,CAAC,CAAA;AAElD,kBAAe,UAAU,CAAA"}

package/dist/server/models/blacklistModel.js

@@ -14,7 +14,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.BlacklistModel = void 0;
 exports.getBlacklistModel = getBlacklistModel;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 /**
  * 黑名单查询模型
  */
@@ -81,7 +81,7 @@ class BlacklistModel {
      */
     async performSessionIdCheck(sessionId) {
         try {
-            const oauthService = new oauthService_1.default();
+            const oauthService = new OAuthService_1.default();
             const response = await oauthService.checkBlacklist(sessionId);
             const isBlacklisted = response.data?.isBlacklisted || false;
             return isBlacklisted;

package/dist/server/models/jwksModel.js

@@ -12,7 +12,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getPublicKey = getPublicKey;
 const crypto_1 = __importDefault(require("crypto"));
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 let cachedPublicKey = null;
 /**
  * 获取用于验证 Token 的公钥（PEM 格式）
@@ -32,7 +32,7 @@ async function getPublicKey() {
         return cachedPublicKey;
     }
     // 获取 JWKS
-    const oauthService = new oauthService_1.default();
+    const oauthService = new OAuthService_1.default();
     const jwks = await oauthService.getJWKS();
     if (!jwks.keys || jwks.keys.length === 0) {
         throw new Error('JWKS 中无可用的密钥');

package/dist/server/routes.d.ts

@@ -1,7 +1,6 @@
 /**
  * Sumor OAuth 路由
- * 处理与 Sumor OAuth 服务器的交互以及相关操作
- * 当 OAUTH_MOCK=true 时，挂载 mock 路由替代真实 OAuth 流程
+ * 所有路由始终注册，在处理器内部根据 mock 模式决定具体行为。
  */
 declare const oauthRoutes: import("express-serve-static-core").Router;
 export default oauthRoutes;

package/dist/server/routes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../../server/routes.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAUH,QAAA,MAAM,WAAW,4CAAmB,CAAA;AA6BpC,eAAe,WAAW,CAAA"}
+{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../../server/routes.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAQH,QAAA,MAAM,WAAW,4CAAmB,CAAA;AA0BpC,eAAe,WAAW,CAAA"}

package/dist/server/routes.js

@@ -1,45 +1,37 @@
 "use strict";
 /**
  * Sumor OAuth 路由
- * 处理与 Sumor OAuth 服务器的交互以及相关操作
- * 当 OAUTH_MOCK=true 时，挂载 mock 路由替代真实 OAuth 流程
+ * 所有路由始终注册，在处理器内部根据 mock 模式决定具体行为。
  */
 var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 const express_1 = __importDefault(require("express"));
-const mockConfig_1 = require("./mock/mockConfig");
 const mockRoutes_1 = __importDefault(require("./mock/mockRoutes"));
-const mockApiRoutes_1 = __importDefault(require("./mock/mockApiRoutes"));
 const tokenRefreshController_1 = __importDefault(require("./controllers/tokenRefreshController"));
 const oauthCallbackController_1 = __importDefault(require("./controllers/oauthCallbackController"));
 const logoutController_1 = require("./controllers/logoutController");
 const oauthRoutes = express_1.default.Router();
-if ((0, mockConfig_1.isMockMode)()) {
-    /**
-     * Mock 模式：token 刷新由 mockRoutes 处理
-     * mock login/logout 挂载到 /mock 下（即 /api/oauth/mock/*）
-     */
-    oauthRoutes.use('/', mockRoutes_1.default);
-    oauthRoutes.use('/mock', mockApiRoutes_1.default);
-}
-else {
-    /**
-     * Token 刷新端点
-     * PUT /api/oauth/token
-     */
-    oauthRoutes.put('/token', tokenRefreshController_1.default);
-    /**
-     * OAuth 授权回调处理
-     * GET /api/oauth/callback
-     */
-    oauthRoutes.get('/callback', oauthCallbackController_1.default);
-    /**
-     * 用户登出 - 需要有效的 Token
-     * POST /api/oauth/logout
-     */
-    oauthRoutes.post('/logout', logoutController_1.logout);
-}
+/**
+ * Mock token 路由（PUT /token、GET /authorize 等）
+ * mock 模式下由 mockRoutes 处理，否则透传到后续真实路由
+ */
+oauthRoutes.use('/', mockRoutes_1.default);
+/**
+ * Token 刷新端点
+ * PUT /token
+ */
+oauthRoutes.put('/token', tokenRefreshController_1.default);
+/**
+ * OAuth 授权回调处理
+ * GET /callback
+ */
+oauthRoutes.get('/callback', oauthCallbackController_1.default);
+/**
+ * 用户登出
+ * POST /logout
+ */
+oauthRoutes.post('/logout', logoutController_1.logout);
 exports.default = oauthRoutes;
 //# sourceMappingURL=routes.js.map

package/dist/server/routes.js.map

@@ -1 +1 @@
-{"version":3,"file":"routes.js","sourceRoot":"","sources":["../../server/routes.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;;;AAEH,sDAA6B;AAC7B,kDAA8C;AAC9C,mEAA0C;AAC1C,yEAAgD;AAChD,kGAAyE;AACzE,oGAA2E;AAC3E,qEAAuD;AAEvD,MAAM,WAAW,GAAG,iBAAO,CAAC,MAAM,EAAE,CAAA;AAEpC,IAAI,IAAA,uBAAU,GAAE,EAAE,CAAC;IACjB;;;OAGG;IACH,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,oBAAU,CAAC,CAAA;IAChC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,uBAAa,CAAC,CAAA;AACzC,CAAC;KAAM,CAAC;IACN;;;OAGG;IACH,WAAW,CAAC,GAAG,CAAC,QAAQ,EAAE,gCAAsB,CAAC,CAAA;IAEjD;;;OAGG;IACH,WAAW,CAAC,GAAG,CAAC,WAAW,EAAE,iCAAuB,CAAC,CAAA;IAErD;;;OAGG;IACH,WAAW,CAAC,IAAI,CAAC,SAAS,EAAE,yBAAM,CAAC,CAAA;AACrC,CAAC;AAED,kBAAe,WAAW,CAAA"}
+{"version":3,"file":"routes.js","sourceRoot":"","sources":["../../server/routes.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;AAEH,sDAA6B;AAC7B,mEAA0C;AAC1C,kGAAyE;AACzE,oGAA2E;AAC3E,qEAAuD;AAEvD,MAAM,WAAW,GAAG,iBAAO,CAAC,MAAM,EAAE,CAAA;AAEpC;;;GAGG;AACH,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,oBAAU,CAAC,CAAA;AAEhC;;;GAGG;AACH,WAAW,CAAC,GAAG,CAAC,QAAQ,EAAE,gCAAsB,CAAC,CAAA;AAEjD;;;GAGG;AACH,WAAW,CAAC,GAAG,CAAC,WAAW,EAAE,iCAAuB,CAAC,CAAA;AAErD;;;GAGG;AACH,WAAW,CAAC,IAAI,CAAC,SAAS,EAAE,yBAAM,CAAC,CAAA;AAEnC,kBAAe,WAAW,CAAA"}

package/dist/server/services/OAuthService.d.ts

@@ -0,0 +1,24 @@
+/**
+ * OAuth 服务层
+ *
+ * 提供 OAuth 相关的业务操作，包括 Token 管理、黑名单检查等。
+ * 使用工厂模式自动区分 Mock 和 Production 环境：
+ * new OAuthService() 会自动根据 isMockMode() 返回正确的实例实现
+ */
+import { OAuthProductionService } from './oauth/OAuthProductionService';
+import { OAuthMockService } from './oauth/OAuthMockService';
+export { OAuthServiceError } from './oauth/OAuthServiceError';
+type OAuthServiceType = OAuthProductionService | OAuthMockService;
+/**
+ * OAuth 服务工厂函数
+ * 支持 both function call 和 new 调用:
+ * - OAuthService() or new OAuthService() 都返回正确的实例
+ * - 根据 isMockMode() 返回 OAuthMockService 或 OAuthProductionService
+ */
+interface OAuthServiceConstructor {
+    (): OAuthServiceType;
+    new (): OAuthServiceType;
+}
+declare const OAuthService: OAuthServiceConstructor;
+export default OAuthService;
+//# sourceMappingURL=OAuthService.d.ts.map

package/dist/server/services/OAuthService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthService.d.ts","sourceRoot":"","sources":["../../../server/services/OAuthService.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAA;AACvE,OAAO,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAA;AAE3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAA;AAE7D,KAAK,gBAAgB,GAAG,sBAAsB,GAAG,gBAAgB,CAAA;AAEjE;;;;;GAKG;AACH,UAAU,uBAAuB;IAC/B,IAAI,gBAAgB,CAAA;IACpB,QAAQ,gBAAgB,CAAA;CACzB;AAED,QAAA,MAAM,YAAY,yBAiBd,CAAA;AAEJ,eAAe,YAAY,CAAA"}

package/dist/server/services/OAuthService.js

@@ -0,0 +1,32 @@
+"use strict";
+/**
+ * OAuth 服务层
+ *
+ * 提供 OAuth 相关的业务操作，包括 Token 管理、黑名单检查等。
+ * 使用工厂模式自动区分 Mock 和 Production 环境：
+ * new OAuthService() 会自动根据 isMockMode() 返回正确的实例实现
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthServiceError = void 0;
+const mockConfig_1 = require("../mock/mockConfig");
+const OAuthProductionService_1 = require("./oauth/OAuthProductionService");
+const OAuthMockService_1 = require("./oauth/OAuthMockService");
+var OAuthServiceError_1 = require("./oauth/OAuthServiceError");
+Object.defineProperty(exports, "OAuthServiceError", { enumerable: true, get: function () { return OAuthServiceError_1.OAuthServiceError; } });
+const OAuthService = (function () {
+    const factory = () => {
+        if ((0, mockConfig_1.isMockMode)()) {
+            return new OAuthMockService_1.OAuthMockService();
+        }
+        return new OAuthProductionService_1.OAuthProductionService();
+    };
+    // 同时支持函数调用和 new 调用
+    const Fn = function () {
+        return factory();
+    };
+    // 也支持 new 调用
+    Fn.prototype.constructor = factory;
+    return Fn;
+})();
+exports.default = OAuthService;
+//# sourceMappingURL=OAuthService.js.map

package/dist/server/services/OAuthService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthService.js","sourceRoot":"","sources":["../../../server/services/OAuthService.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AAEH,mDAA+C;AAC/C,2EAAuE;AACvE,+DAA2D;AAE3D,+DAA6D;AAApD,sHAAA,iBAAiB,OAAA;AAe1B,MAAM,YAAY,GAAG,CAAC;IACpB,MAAM,OAAO,GAAG,GAAqB,EAAE;QACrC,IAAI,IAAA,uBAAU,GAAE,EAAE,CAAC;YACjB,OAAO,IAAI,mCAAgB,EAAE,CAAA;QAC/B,CAAC;QACD,OAAO,IAAI,+CAAsB,EAAE,CAAA;IACrC,CAAC,CAAA;IAED,mBAAmB;IACnB,MAAM,EAAE,GAAG;QACT,OAAO,OAAO,EAAE,CAAA;IAClB,CAAmC,CAAA;IAEnC,aAAa;IACb,EAAE,CAAC,SAAS,CAAC,WAAW,GAAG,OAAO,CAAA;IAElC,OAAO,EAAE,CAAA;AACX,CAAC,CAAC,EAAE,CAAA;AAEJ,kBAAe,YAAY,CAAA"}

package/dist/server/services/oauth/MockDataGenerator.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Mock 数据生成工具
+ * 参考 ITS 项目最佳实践，生成更真实的测试数据
+ */
+export declare class MockDataGenerator {
+    static generateAccessToken(): string;
+    static generateRefreshToken(): string;
+    static generateJti(): string;
+    static generateMsgId(): number;
+    static generateOpenId(): string;
+    static generateRandomBase64(): string;
+    static generateRSAKeyPair(): {
+        publicKey: string;
+        privateKey: string;
+        kid: string;
+    };
+}
+//# sourceMappingURL=MockDataGenerator.d.ts.map

package/dist/server/services/oauth/MockDataGenerator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"MockDataGenerator.d.ts","sourceRoot":"","sources":["../../../../server/services/oauth/MockDataGenerator.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,qBAAa,iBAAiB;IAC5B,MAAM,CAAC,mBAAmB,IAAI,MAAM;IAIpC,MAAM,CAAC,oBAAoB,IAAI,MAAM;IAIrC,MAAM,CAAC,WAAW,IAAI,MAAM;IAI5B,MAAM,CAAC,aAAa,IAAI,MAAM;IAI9B,MAAM,CAAC,cAAc,IAAI,MAAM;IAI/B,MAAM,CAAC,oBAAoB,IAAI,MAAM;IAIrC,MAAM,CAAC,kBAAkB,IAAI;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE;CAWpF"}

package/dist/server/services/oauth/MockDataGenerator.js

@@ -0,0 +1,39 @@
+"use strict";
+/**
+ * Mock 数据生成工具
+ * 参考 ITS 项目最佳实践，生成更真实的测试数据
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MockDataGenerator = void 0;
+const crypto_1 = require("crypto");
+class MockDataGenerator {
+    static generateAccessToken() {
+        return `eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IiR7cmFuZG9tVVVJRCgpfSJ9.${this.generateRandomBase64()}`;
+    }
+    static generateRefreshToken() {
+        return `refresh_${(0, crypto_1.randomUUID)().replace(/-/g, '')}`;
+    }
+    static generateJti() {
+        return (0, crypto_1.randomUUID)();
+    }
+    static generateMsgId() {
+        return Math.floor(Math.random() * 9000000000) + 1000000000;
+    }
+    static generateOpenId() {
+        return `openid_${(0, crypto_1.randomBytes)(16).toString('hex')}`;
+    }
+    static generateRandomBase64() {
+        return (0, crypto_1.randomBytes)(32).toString('base64').replace(/[+/]/g, '').substring(0, 43);
+    }
+    static generateRSAKeyPair() {
+        const { publicKey, privateKey } = (0, crypto_1.generateKeyPairSync)('rsa', {
+            modulusLength: 2048,
+            publicKeyEncoding: { type: 'spki', format: 'pem' },
+            privateKeyEncoding: { type: 'pkcs8', format: 'pem' }
+        });
+        const kid = `mock_${Date.now().toString(36)}_${(0, crypto_1.randomBytes)(4).toString('hex')}`;
+        return { publicKey, privateKey, kid };
+    }
+}
+exports.MockDataGenerator = MockDataGenerator;
+//# sourceMappingURL=MockDataGenerator.js.map

package/dist/server/services/oauth/MockDataGenerator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"MockDataGenerator.js","sourceRoot":"","sources":["../../../../server/services/oauth/MockDataGenerator.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,mCAAqE;AAErE,MAAa,iBAAiB;IAC5B,MAAM,CAAC,mBAAmB;QACxB,OAAO,wEAAwE,IAAI,CAAC,oBAAoB,EAAE,EAAE,CAAA;IAC9G,CAAC;IAED,MAAM,CAAC,oBAAoB;QACzB,OAAO,WAAW,IAAA,mBAAU,GAAE,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,CAAA;IACpD,CAAC;IAED,MAAM,CAAC,WAAW;QAChB,OAAO,IAAA,mBAAU,GAAE,CAAA;IACrB,CAAC;IAED,MAAM,CAAC,aAAa;QAClB,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,UAAU,CAAC,GAAG,UAAU,CAAA;IAC5D,CAAC;IAED,MAAM,CAAC,cAAc;QACnB,OAAO,UAAU,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAA;IACpD,CAAC;IAED,MAAM,CAAC,oBAAoB;QACzB,OAAO,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;IACjF,CAAC;IAED,MAAM,CAAC,kBAAkB;QACvB,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,IAAA,4BAAmB,EAAC,KAAK,EAAE;YAC3D,aAAa,EAAE,IAAI;YACnB,iBAAiB,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE;YAClD,kBAAkB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE;SACrD,CAAC,CAAA;QAEF,MAAM,GAAG,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAA,oBAAW,EAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAA;QAE/E,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,EAAE,CAAA;IACvC,CAAC;CACF;AApCD,8CAoCC"}

package/dist/server/services/oauth/OAuthMockService.d.ts

@@ -0,0 +1,28 @@
+/**
+ * OAuth Mock 服务
+ * 用于测试环境，返回真实格式的模拟数据
+ * 参考 ITS 项目实现，使用加密生成和随机数据
+ */
+import type { ITokenResponse, IJWKSResponse, IBlacklistCheckResponse, ISendWechatMessageResponse, IBroadcastWechatMessageResponse } from '../../types/oauth';
+export declare class OAuthMockService {
+    private mockUsers;
+    constructor();
+    private loadMockUsers;
+    private getMockUser;
+    private generateDefaultUser;
+    exchangeCode(grantType: string, code: string, redirectUri: string, codeVerifier: string): Promise<ITokenResponse>;
+    getJWKS(): Promise<IJWKSResponse>;
+    checkBlacklist(sessionId: string): Promise<IBlacklistCheckResponse>;
+    revokeSession(sessionId: string): Promise<void>;
+    refreshAccessToken(refreshToken: string): Promise<ITokenResponse>;
+    sendWechatMessage(templateId: string, userId: string, data: Record<string, any>, url?: string): Promise<ISendWechatMessageResponse>;
+    broadcastWechatMessage(templateId: string, data: Record<string, {
+        value: string;
+    }>, roleIds: string[], url?: string): Promise<IBroadcastWechatMessageResponse>;
+    getUserInfo(userId: string): Promise<any>;
+    getUsersInfo(userIds: string[]): Promise<(any | null)[]>;
+    searchUsers(searchTerm: string, limit?: number): Promise<any[]>;
+    getPermissions(): Promise<any>;
+    updatePermissions(permissionsConfig: any): Promise<any>;
+}
+//# sourceMappingURL=OAuthMockService.d.ts.map

package/dist/server/services/oauth/OAuthMockService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthMockService.d.ts","sourceRoot":"","sources":["../../../../server/services/oauth/OAuthMockService.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,OAAO,KAAK,EACV,cAAc,EACd,aAAa,EACb,uBAAuB,EACvB,0BAA0B,EAC1B,+BAA+B,EAChC,MAAM,mBAAmB,CAAA;AAc1B,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,SAAS,CAAoC;;IAMrD,OAAO,CAAC,aAAa;IA4BrB,OAAO,CAAC,WAAW;IAQnB,OAAO,CAAC,mBAAmB;IAarB,YAAY,CAChB,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,MAAM,EACZ,WAAW,EAAE,MAAM,EACnB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,cAAc,CAAC;IAWpB,OAAO,IAAI,OAAO,CAAC,aAAa,CAAC;IAiBjC,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAUnE,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAE/C,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAWjE,iBAAiB,CACrB,UAAU,EAAE,MAAM,EAClB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,GAAG,CAAC,EAAE,MAAM,GACX,OAAO,CAAC,0BAA0B,CAAC;IAUhC,sBAAsB,CAC1B,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,EACvC,OAAO,EAAE,MAAM,EAAE,EACjB,GAAG,CAAC,EAAE,MAAM,GACX,OAAO,CAAC,+BAA+B,CAAC;IAoBrC,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IASzC,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,EAAE,CAAC;IAexD,WAAW,CAAC,UAAU,EAAE,MAAM,EAAE,KAAK,GAAE,MAAW,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IA8BnE,cAAc,IAAI,OAAO,CAAC,GAAG,CAAC;IAI9B,iBAAiB,CAAC,iBAAiB,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;CAG9D"}

package/dist/server/services/oauth/OAuthMockService.js

@@ -0,0 +1,184 @@
+"use strict";
+/**
+ * OAuth Mock 服务
+ * 用于测试环境，返回真实格式的模拟数据
+ * 参考 ITS 项目实现，使用加密生成和随机数据
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthMockService = void 0;
+const crypto_1 = require("crypto");
+const MockDataGenerator_1 = require("./MockDataGenerator");
+class OAuthMockService {
+    constructor() {
+        this.mockUsers = new Map();
+        this.loadMockUsers();
+    }
+    loadMockUsers() {
+        const mockUsersJson = process.env.OAUTH_MOCK_USERS;
+        if (mockUsersJson) {
+            try {
+                const users = JSON.parse(mockUsersJson);
+                users.forEach(user => {
+                    if (user.userId) {
+                        this.mockUsers.set(user.userId, {
+                            userId: user.userId,
+                            username: user.username || `user_${user.userId}`,
+                            email: user.email || `${user.userId}@example.com`,
+                            name: user.name || `User ${user.userId}`,
+                            avatar: user.avatar || `https://api.example.com/avatar/${user.userId}`,
+                            phone: user.phone || `1${Math.floor(Math.random() * 9000000000 + 1000000000)}`,
+                            createdAt: user.createdAt ||
+                                new Date(Date.now() - Math.random() * 86400000 * 365).toISOString(),
+                            updatedAt: user.updatedAt || new Date().toISOString(),
+                            isActive: user.isActive !== false
+                        });
+                    }
+                });
+            }
+            catch (error) {
+                console.warn('Failed to parse OAUTH_MOCK_USERS environment variable:', error);
+            }
+        }
+    }
+    getMockUser(userId) {
+        if (this.mockUsers.has(userId)) {
+            return this.mockUsers.get(userId) || null;
+        }
+        return null;
+    }
+    generateDefaultUser(userId) {
+        return {
+            userId,
+            username: `user_${userId}`,
+            email: `${userId}@example.com`,
+            name: `User ${userId}`,
+            avatar: `https://api.example.com/avatar/${userId}`,
+            phone: `1${Math.floor(Math.random() * 9000000000 + 1000000000)}`,
+            createdAt: new Date(Date.now() - Math.random() * 86400000 * 365).toISOString(),
+            updatedAt: new Date().toISOString(),
+            isActive: true
+        };
+    }
+    async exchangeCode(grantType, code, redirectUri, codeVerifier) {
+        return {
+            accessToken: MockDataGenerator_1.MockDataGenerator.generateAccessToken(),
+            refreshToken: MockDataGenerator_1.MockDataGenerator.generateRefreshToken(),
+            tokenType: 'Bearer',
+            expiresIn: 3600,
+            jti: MockDataGenerator_1.MockDataGenerator.generateJti(),
+            sessionId: (0, crypto_1.randomUUID)()
+        };
+    }
+    async getJWKS() {
+        const { publicKey, kid } = MockDataGenerator_1.MockDataGenerator.generateRSAKeyPair();
+        return {
+            keys: [
+                {
+                    kty: 'RSA',
+                    use: 'sig',
+                    kid,
+                    n: (0, crypto_1.randomBytes)(256).toString('base64'),
+                    e: 'AQAB',
+                    alg: 'RS256'
+                }
+            ]
+        };
+    }
+    async checkBlacklist(sessionId) {
+        return {
+            code: '0',
+            data: {
+                sessionId,
+                isBlacklisted: false
+            }
+        };
+    }
+    async revokeSession(sessionId) { }
+    async refreshAccessToken(refreshToken) {
+        return {
+            accessToken: MockDataGenerator_1.MockDataGenerator.generateAccessToken(),
+            refreshToken: MockDataGenerator_1.MockDataGenerator.generateRefreshToken(),
+            tokenType: 'Bearer',
+            expiresIn: 3600,
+            jti: MockDataGenerator_1.MockDataGenerator.generateJti(),
+            sessionId: (0, crypto_1.randomUUID)()
+        };
+    }
+    async sendWechatMessage(templateId, userId, data, url) {
+        return {
+            code: '0',
+            message: 'success',
+            data: {
+                msgid: MockDataGenerator_1.MockDataGenerator.generateMsgId()
+            }
+        };
+    }
+    async broadcastWechatMessage(templateId, data, roleIds, url) {
+        const results = roleIds.map(userId => ({
+            userId,
+            openId: MockDataGenerator_1.MockDataGenerator.generateOpenId(),
+            success: true
+        }));
+        return {
+            code: '0',
+            message: 'success',
+            data: {
+                totalUsers: roleIds.length,
+                successCount: roleIds.length,
+                failureCount: 0,
+                successRate: '100%',
+                results
+            }
+        };
+    }
+    async getUserInfo(userId) {
+        if (!userId) {
+            return null;
+        }
+        const mockUser = this.getMockUser(userId);
+        return mockUser || this.generateDefaultUser(userId);
+    }
+    async getUsersInfo(userIds) {
+        if (!userIds || userIds.length === 0) {
+            return [];
+        }
+        return userIds.map(id => {
+            if (!id) {
+                return null;
+            }
+            const mockUser = this.getMockUser(id);
+            return mockUser || this.generateDefaultUser(id);
+        });
+    }
+    async searchUsers(searchTerm, limit = 20) {
+        if (!searchTerm || searchTerm.trim() === '') {
+            return [];
+        }
+        const searchLower = searchTerm.toLowerCase();
+        const matchedUsers = [];
+        this.mockUsers.forEach(user => {
+            if (user.userId.toLowerCase().includes(searchLower) ||
+                user.username?.toLowerCase().includes(searchLower) ||
+                user.name?.toLowerCase().includes(searchLower) ||
+                user.email?.toLowerCase().includes(searchLower)) {
+                matchedUsers.push(user);
+            }
+        });
+        if (matchedUsers.length > 0) {
+            return matchedUsers.slice(0, limit);
+        }
+        const count = Math.min(Math.floor(Math.random() * 5) + 1, limit);
+        return Array.from({ length: count }, (_, i) => {
+            const uid = `${searchTerm}_${i}`;
+            return this.generateDefaultUser(uid);
+        });
+    }
+    async getPermissions() {
+        return {};
+    }
+    async updatePermissions(permissionsConfig) {
+        return;
+    }
+}
+exports.OAuthMockService = OAuthMockService;
+//# sourceMappingURL=OAuthMockService.js.map