sumor 3.3.3 → 3.3.4

package/README.md

@@ -445,6 +445,43 @@ OAUTH_MOCK_USER_IS_VERIFIED=1
 
 ### Example Mock Setup
 
+#### Mock Users List
+
+To populate the `getUserInfo()`, `getUsersInfo()`, and `searchUsers()` methods with test data, configure the `OAUTH_MOCK_USERS` environment variable with a JSON array of user objects.
+
+**User object properties:**
+
+```typescript
+interface MockUser {
+  userId: string // Required: unique user identifier
+  username?: string // Optional: defaults to `user_{userId}`
+  email?: string // Optional: defaults to `{userId}@example.com`
+  name?: string // Optional: defaults to `User {userId}`
+  avatar?: string // Optional: avatar URL
+  phone?: string // Optional: phone number
+  createdAt?: string // Optional: ISO 8601 timestamp
+  updatedAt?: string // Optional: ISO 8601 timestamp
+  isActive?: boolean // Optional: defaults to `true`
+}
+```
+
+**Behavior:**
+
+- `getUserInfo('user001')` returns the configured user object if it exists, otherwise generates a default user
+- `getUsersInfo(['user001', 'unknown'])` returns configured users for known IDs and generated users for unknown IDs
+- `searchUsers('alice')` searches configured users by userId, username, name, or email and returns matches
+
+**Configuration example:**
+
+```bash
+export OAUTH_MOCK_USERS='[
+  {"userId": "user001", "username": "alice", "email": "alice@example.com", "name": "Alice Wang"},
+  {"userId": "user002", "username": "bob", "email": "bob@example.com", "name": "Bob Smith"}
+]'
+```
+
+For comprehensive examples and usage patterns, refer to [Mock Users List Usage Guide](server/services/oauth/MOCK_USERS_USAGE.md).
+
 **.env.development:**
 
 ```bash
@@ -453,6 +490,22 @@ OAUTH_MOCK_USER_ID=dev-user-1
 OAUTH_MOCK_USER_ROLES=admin
 OAUTH_MOCK_USER_PERMISSIONS=posts:view,posts:edit,posts:delete
 OAUTH_MOCK_USER_IS_VERIFIED=1
+OAUTH_MOCK_USERS='[
+  {
+    "userId": "user001",
+    "username": "alice",
+    "email": "alice@example.com",
+    "name": "Alice Wang",
+    "avatar": "https://api.example.com/avatars/alice.jpg",
+    "isActive": true
+  },
+  {
+    "userId": "user002",
+    "username": "bob",
+    "email": "bob@example.com",
+    "name": "Bob Smith"
+  }
+]'
 ```
 
 No changes are needed in application code — the same `oauthRoutes`, `loadJwtUserMiddleware`, `login()`, and `logout()` calls work in both mock and production modes.

package/README.zh-CN.md

@@ -425,13 +425,14 @@ OAUTH_MOCK_USER_PERMISSIONS=
 OAUTH_MOCK_USER_IS_VERIFIED=1
 ```
 
-| 变量                          | 默认值          | 说明                        |
-| ----------------------------- | --------------- | --------------------------- |
-| `OAUTH_MOCK`                  | `false`         | 设为 `true` 启用 Mock 模式  |
-| `OAUTH_MOCK_USER_ID`          | `mock-user-001` | Mock 用户 ID                |
-| `OAUTH_MOCK_USER_ROLES`       | `admin`         | 逗号分隔的 Mock 角色        |
-| `OAUTH_MOCK_USER_PERMISSIONS` | _（空）_        | 逗号分隔的 Mock 权限        |
-| `OAUTH_MOCK_USER_IS_VERIFIED` | `1`             | Mock 认证状态（`0` 或 `1`） |
+| 变量                          | 默认值          | 说明                                        |
+| ----------------------------- | --------------- | ------------------------------------------- |
+| `OAUTH_MOCK`                  | `false`         | 设为 `true` 启用 Mock 模式                  |
+| `OAUTH_MOCK_USER_ID`          | `mock-user-001` | Mock 用户 ID                                |
+| `OAUTH_MOCK_USER_ROLES`       | `admin`         | 逗号分隔的 Mock 角色                        |
+| `OAUTH_MOCK_USER_PERMISSIONS` | _（空）_        | 逗号分隔的 Mock 权限                        |
+| `OAUTH_MOCK_USER_IS_VERIFIED` | `1`             | Mock 认证状态（`0` 或 `1`）                 |
+| `OAUTH_MOCK_USERS`            | _（空）_        | JSON 数组格式的 Mock 用户列表用于搜索和查询 |
 
 ### Mock 专用路由（仅在 `OAUTH_MOCK=true` 时注册）
 
@@ -444,6 +445,43 @@ OAUTH_MOCK_USER_IS_VERIFIED=1
 
 ### Mock 模式示例配置
 
+#### Mock 用户列表
+
+通过配置 `OAUTH_MOCK_USERS` 环境变量为 `getUserInfo()`、`getUsersInfo()` 和 `searchUsers()` 方法提供测试数据，无需真实 OAuth 服务。
+
+**用户对象属性：**
+
+```typescript
+interface MockUser {
+  userId: string // 必需：用户唯一标识
+  username?: string // 可选：默认为 `user_{userId}`
+  email?: string // 可选：默认为 `{userId}@example.com`
+  name?: string // 可选：默认为 `User {userId}`
+  avatar?: string // 可选：头像 URL
+  phone?: string // 可选：电话号码
+  createdAt?: string // 可选：ISO 8601 时间戳
+  updatedAt?: string // 可选：ISO 8601 时间戳
+  isActive?: boolean // 可选：默认为 `true`
+}
+```
+
+**行为说明：**
+
+- `getUserInfo('user001')` 返回配置的用户对象，不存在则生成默认用户
+- `getUsersInfo(['user001', 'unknown'])` 返回已配置用户及动态生成的未知用户
+- `searchUsers('alice')` 在配置用户中按 userId、username、name、email 模糊搜索并返回结果
+
+**配置示例：**
+
+```bash
+export OAUTH_MOCK_USERS='[
+  {"userId": "user001", "username": "alice", "email": "alice@example.com", "name": "Alice Wang"},
+  {"userId": "user002", "username": "bob", "email": "bob@example.com", "name": "Bob Smith"}
+]'
+```
+
+更详细的配置示例和使用模式参考 [Mock 用户列表使用指南](server/services/oauth/MOCK_USERS_USAGE.md)。
+
 **.env.development：**
 
 ```bash
@@ -452,6 +490,22 @@ OAUTH_MOCK_USER_ID=dev-user-1
 OAUTH_MOCK_USER_ROLES=admin
 OAUTH_MOCK_USER_PERMISSIONS=posts:view,posts:edit,posts:delete
 OAUTH_MOCK_USER_IS_VERIFIED=1
+OAUTH_MOCK_USERS='[
+  {
+    "userId": "user001",
+    "username": "alice",
+    "email": "alice@example.com",
+    "name": "Alice Wang",
+    "avatar": "https://api.example.com/avatars/alice.jpg",
+    "isActive": true
+  },
+  {
+    "userId": "user002",
+    "username": "bob",
+    "email": "bob@example.com",
+    "name": "Bob Smith"
+  }
+]'
 ```
 
 应用代码无需任何修改 —— 相同的 `oauthRoutes`、`loadJwtUserMiddleware`、`login()` 和 `logout()` 调用在 Mock 模式和生产模式下均正常工作。

package/dist/server/controllers/logoutController.js

@@ -7,7 +7,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.logout = logout;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const jsonwebtoken_1 = require("jsonwebtoken");
 /**
  * 用户登出
@@ -42,7 +42,7 @@ async function logout(req, res) {
                 const decoded = (0, jsonwebtoken_1.decode)(accessToken);
                 const sessionId = decoded?.sessionId;
                 if (sessionId) {
-                    const oauthService = new oauthService_1.default();
+                    const oauthService = new OAuthService_1.default();
                     await oauthService.revokeSession(sessionId);
                 }
             }

package/dist/server/controllers/oauthCallbackController.js

@@ -11,7 +11,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = oauthCallbackController;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const tokenModel_1 = require("../models/tokenModel");
 const config_1 = require("../utils/config");
 const oauthTokenUtils_1 = require("../utils/oauthTokenUtils");
@@ -30,7 +30,7 @@ async function exchangeCodeForToken(code, codeVerifier) {
     // 使用配置中的 redirectUri
     const oauthConfig = (0, config_1.getOAuthConfig)();
     const uri = oauthConfig.redirectUri;
-    const oauthService = new oauthService_1.default();
+    const oauthService = new OAuthService_1.default();
     const data = await oauthService.exchangeCode('authorization_code', code, uri, verifier);
     // 验证响应数据的完整性
     if (!data || !data.accessToken || !data.tokenType || typeof data.expiresIn !== 'number') {

package/dist/server/controllers/tokenRefreshController.js

@@ -10,7 +10,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = tokenRefreshController;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 const oauthTokenUtils_1 = require("../utils/oauthTokenUtils");
 const tokenModel_1 = require("../models/tokenModel");
 const config_1 = require("../utils/config");
@@ -55,7 +55,7 @@ async function tokenRefreshController(req, res) {
             // 如果有有效的 refreshToken，进行刷新
             if (refreshToken) {
                 // 使用 OAuthService 调用 OAuth API
-                const oauthService = new oauthService_1.default();
+                const oauthService = new OAuthService_1.default();
                 const tokenData = await oauthService.refreshAccessToken(refreshToken);
                 // 使用公用的 token 设置函数
                 // 设置新的 accessToken

package/dist/server/index.d.ts

@@ -2,7 +2,7 @@
  * Sumor OAuth 暴露接口
  * 导出所需的中间件、路由和服务供客户端使用
  */
-import OAuthService from './services/oauthService';
+import OAuthService from './services/OAuthService';
 import oauthRoutes from './routes';
 import { loadJwtUserMiddleware } from './middlewares/loadJwtUserMiddleware';
 /**

package/dist/server/index.js

@@ -8,8 +8,8 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.oauthRoutes = exports.loadJwtUserMiddleware = exports.OAuthService = void 0;
-const oauthService_1 = __importDefault(require("./services/oauthService"));
-exports.OAuthService = oauthService_1.default;
+const OAuthService_1 = __importDefault(require("./services/OAuthService"));
+exports.OAuthService = OAuthService_1.default;
 const routes_1 = __importDefault(require("./routes"));
 exports.oauthRoutes = routes_1.default;
 const loadJwtUserMiddleware_1 = require("./middlewares/loadJwtUserMiddleware");

package/dist/server/models/blacklistModel.js

@@ -14,7 +14,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.BlacklistModel = void 0;
 exports.getBlacklistModel = getBlacklistModel;
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 /**
  * 黑名单查询模型
  */
@@ -81,7 +81,7 @@ class BlacklistModel {
      */
     async performSessionIdCheck(sessionId) {
         try {
-            const oauthService = new oauthService_1.default();
+            const oauthService = new OAuthService_1.default();
             const response = await oauthService.checkBlacklist(sessionId);
             const isBlacklisted = response.data?.isBlacklisted || false;
             return isBlacklisted;

package/dist/server/models/jwksModel.js

@@ -12,7 +12,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getPublicKey = getPublicKey;
 const crypto_1 = __importDefault(require("crypto"));
-const oauthService_1 = __importDefault(require("../services/oauthService"));
+const OAuthService_1 = __importDefault(require("../services/OAuthService"));
 let cachedPublicKey = null;
 /**
  * 获取用于验证 Token 的公钥（PEM 格式）
@@ -32,7 +32,7 @@ async function getPublicKey() {
         return cachedPublicKey;
     }
     // 获取 JWKS
-    const oauthService = new oauthService_1.default();
+    const oauthService = new OAuthService_1.default();
     const jwks = await oauthService.getJWKS();
     if (!jwks.keys || jwks.keys.length === 0) {
         throw new Error('JWKS 中无可用的密钥');

package/dist/server/services/OAuthService.d.ts

@@ -0,0 +1,24 @@
+/**
+ * OAuth 服务层
+ *
+ * 提供 OAuth 相关的业务操作，包括 Token 管理、黑名单检查等。
+ * 使用工厂模式自动区分 Mock 和 Production 环境：
+ * new OAuthService() 会自动根据 isMockMode() 返回正确的实例实现
+ */
+import { OAuthProductionService } from './oauth/OAuthProductionService';
+import { OAuthMockService } from './oauth/OAuthMockService';
+export { OAuthServiceError } from './oauth/OAuthServiceError';
+type OAuthServiceType = OAuthProductionService | OAuthMockService;
+/**
+ * OAuth 服务工厂函数
+ * 支持 both function call 和 new 调用:
+ * - OAuthService() or new OAuthService() 都返回正确的实例
+ * - 根据 isMockMode() 返回 OAuthMockService 或 OAuthProductionService
+ */
+interface OAuthServiceConstructor {
+    (): OAuthServiceType;
+    new (): OAuthServiceType;
+}
+declare const OAuthService: OAuthServiceConstructor;
+export default OAuthService;
+//# sourceMappingURL=OAuthService.d.ts.map

package/dist/server/services/OAuthService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthService.d.ts","sourceRoot":"","sources":["../../../server/services/OAuthService.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAA;AACvE,OAAO,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAA;AAE3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAA;AAE7D,KAAK,gBAAgB,GAAG,sBAAsB,GAAG,gBAAgB,CAAA;AAEjE;;;;;GAKG;AACH,UAAU,uBAAuB;IAC/B,IAAI,gBAAgB,CAAA;IACpB,QAAQ,gBAAgB,CAAA;CACzB;AAED,QAAA,MAAM,YAAY,yBAiBd,CAAA;AAEJ,eAAe,YAAY,CAAA"}

package/dist/server/services/OAuthService.js

@@ -0,0 +1,32 @@
+"use strict";
+/**
+ * OAuth 服务层
+ *
+ * 提供 OAuth 相关的业务操作，包括 Token 管理、黑名单检查等。
+ * 使用工厂模式自动区分 Mock 和 Production 环境：
+ * new OAuthService() 会自动根据 isMockMode() 返回正确的实例实现
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthServiceError = void 0;
+const mockConfig_1 = require("../mock/mockConfig");
+const OAuthProductionService_1 = require("./oauth/OAuthProductionService");
+const OAuthMockService_1 = require("./oauth/OAuthMockService");
+var OAuthServiceError_1 = require("./oauth/OAuthServiceError");
+Object.defineProperty(exports, "OAuthServiceError", { enumerable: true, get: function () { return OAuthServiceError_1.OAuthServiceError; } });
+const OAuthService = (function () {
+    const factory = () => {
+        if ((0, mockConfig_1.isMockMode)()) {
+            return new OAuthMockService_1.OAuthMockService();
+        }
+        return new OAuthProductionService_1.OAuthProductionService();
+    };
+    // 同时支持函数调用和 new 调用
+    const Fn = function () {
+        return factory();
+    };
+    // 也支持 new 调用
+    Fn.prototype.constructor = factory;
+    return Fn;
+})();
+exports.default = OAuthService;
+//# sourceMappingURL=OAuthService.js.map

package/dist/server/services/OAuthService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthService.js","sourceRoot":"","sources":["../../../server/services/OAuthService.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AAEH,mDAA+C;AAC/C,2EAAuE;AACvE,+DAA2D;AAE3D,+DAA6D;AAApD,sHAAA,iBAAiB,OAAA;AAe1B,MAAM,YAAY,GAAG,CAAC;IACpB,MAAM,OAAO,GAAG,GAAqB,EAAE;QACrC,IAAI,IAAA,uBAAU,GAAE,EAAE,CAAC;YACjB,OAAO,IAAI,mCAAgB,EAAE,CAAA;QAC/B,CAAC;QACD,OAAO,IAAI,+CAAsB,EAAE,CAAA;IACrC,CAAC,CAAA;IAED,mBAAmB;IACnB,MAAM,EAAE,GAAG;QACT,OAAO,OAAO,EAAE,CAAA;IAClB,CAAmC,CAAA;IAEnC,aAAa;IACb,EAAE,CAAC,SAAS,CAAC,WAAW,GAAG,OAAO,CAAA;IAElC,OAAO,EAAE,CAAA;AACX,CAAC,CAAC,EAAE,CAAA;AAEJ,kBAAe,YAAY,CAAA"}

package/dist/server/services/oauth/MockDataGenerator.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Mock 数据生成工具
+ * 参考 ITS 项目最佳实践，生成更真实的测试数据
+ */
+export declare class MockDataGenerator {
+    static generateAccessToken(): string;
+    static generateRefreshToken(): string;
+    static generateJti(): string;
+    static generateMsgId(): number;
+    static generateOpenId(): string;
+    static generateRandomBase64(): string;
+    static generateRSAKeyPair(): {
+        publicKey: string;
+        privateKey: string;
+        kid: string;
+    };
+}
+//# sourceMappingURL=MockDataGenerator.d.ts.map

package/dist/server/services/oauth/MockDataGenerator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"MockDataGenerator.d.ts","sourceRoot":"","sources":["../../../../server/services/oauth/MockDataGenerator.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,qBAAa,iBAAiB;IAC5B,MAAM,CAAC,mBAAmB,IAAI,MAAM;IAIpC,MAAM,CAAC,oBAAoB,IAAI,MAAM;IAIrC,MAAM,CAAC,WAAW,IAAI,MAAM;IAI5B,MAAM,CAAC,aAAa,IAAI,MAAM;IAI9B,MAAM,CAAC,cAAc,IAAI,MAAM;IAI/B,MAAM,CAAC,oBAAoB,IAAI,MAAM;IAIrC,MAAM,CAAC,kBAAkB,IAAI;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE;CAWpF"}

package/dist/server/services/oauth/MockDataGenerator.js

@@ -0,0 +1,39 @@
+"use strict";
+/**
+ * Mock 数据生成工具
+ * 参考 ITS 项目最佳实践，生成更真实的测试数据
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MockDataGenerator = void 0;
+const crypto_1 = require("crypto");
+class MockDataGenerator {
+    static generateAccessToken() {
+        return `eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IiR7cmFuZG9tVVVJRCgpfSJ9.${this.generateRandomBase64()}`;
+    }
+    static generateRefreshToken() {
+        return `refresh_${(0, crypto_1.randomUUID)().replace(/-/g, '')}`;
+    }
+    static generateJti() {
+        return (0, crypto_1.randomUUID)();
+    }
+    static generateMsgId() {
+        return Math.floor(Math.random() * 9000000000) + 1000000000;
+    }
+    static generateOpenId() {
+        return `openid_${(0, crypto_1.randomBytes)(16).toString('hex')}`;
+    }
+    static generateRandomBase64() {
+        return (0, crypto_1.randomBytes)(32).toString('base64').replace(/[+/]/g, '').substring(0, 43);
+    }
+    static generateRSAKeyPair() {
+        const { publicKey, privateKey } = (0, crypto_1.generateKeyPairSync)('rsa', {
+            modulusLength: 2048,
+            publicKeyEncoding: { type: 'spki', format: 'pem' },
+            privateKeyEncoding: { type: 'pkcs8', format: 'pem' }
+        });
+        const kid = `mock_${Date.now().toString(36)}_${(0, crypto_1.randomBytes)(4).toString('hex')}`;
+        return { publicKey, privateKey, kid };
+    }
+}
+exports.MockDataGenerator = MockDataGenerator;
+//# sourceMappingURL=MockDataGenerator.js.map

package/dist/server/services/oauth/MockDataGenerator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"MockDataGenerator.js","sourceRoot":"","sources":["../../../../server/services/oauth/MockDataGenerator.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,mCAAqE;AAErE,MAAa,iBAAiB;IAC5B,MAAM,CAAC,mBAAmB;QACxB,OAAO,wEAAwE,IAAI,CAAC,oBAAoB,EAAE,EAAE,CAAA;IAC9G,CAAC;IAED,MAAM,CAAC,oBAAoB;QACzB,OAAO,WAAW,IAAA,mBAAU,GAAE,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,CAAA;IACpD,CAAC;IAED,MAAM,CAAC,WAAW;QAChB,OAAO,IAAA,mBAAU,GAAE,CAAA;IACrB,CAAC;IAED,MAAM,CAAC,aAAa;QAClB,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,UAAU,CAAC,GAAG,UAAU,CAAA;IAC5D,CAAC;IAED,MAAM,CAAC,cAAc;QACnB,OAAO,UAAU,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAA;IACpD,CAAC;IAED,MAAM,CAAC,oBAAoB;QACzB,OAAO,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;IACjF,CAAC;IAED,MAAM,CAAC,kBAAkB;QACvB,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,IAAA,4BAAmB,EAAC,KAAK,EAAE;YAC3D,aAAa,EAAE,IAAI;YACnB,iBAAiB,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE;YAClD,kBAAkB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE;SACrD,CAAC,CAAA;QAEF,MAAM,GAAG,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAA,oBAAW,EAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAA;QAE/E,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,EAAE,CAAA;IACvC,CAAC;CACF;AApCD,8CAoCC"}

package/dist/server/services/oauth/OAuthMockService.d.ts

@@ -0,0 +1,28 @@
+/**
+ * OAuth Mock 服务
+ * 用于测试环境，返回真实格式的模拟数据
+ * 参考 ITS 项目实现，使用加密生成和随机数据
+ */
+import type { ITokenResponse, IJWKSResponse, IBlacklistCheckResponse, ISendWechatMessageResponse, IBroadcastWechatMessageResponse } from '../../types/oauth';
+export declare class OAuthMockService {
+    private mockUsers;
+    constructor();
+    private loadMockUsers;
+    private getMockUser;
+    private generateDefaultUser;
+    exchangeCode(grantType: string, code: string, redirectUri: string, codeVerifier: string): Promise<ITokenResponse>;
+    getJWKS(): Promise<IJWKSResponse>;
+    checkBlacklist(sessionId: string): Promise<IBlacklistCheckResponse>;
+    revokeSession(sessionId: string): Promise<void>;
+    refreshAccessToken(refreshToken: string): Promise<ITokenResponse>;
+    sendWechatMessage(templateId: string, userId: string, data: Record<string, any>, url?: string): Promise<ISendWechatMessageResponse>;
+    broadcastWechatMessage(templateId: string, data: Record<string, {
+        value: string;
+    }>, roleIds: string[], url?: string): Promise<IBroadcastWechatMessageResponse>;
+    getUserInfo(userId: string): Promise<any>;
+    getUsersInfo(userIds: string[]): Promise<(any | null)[]>;
+    searchUsers(searchTerm: string, limit?: number): Promise<any[]>;
+    getPermissions(): Promise<any>;
+    updatePermissions(permissionsConfig: any): Promise<any>;
+}
+//# sourceMappingURL=OAuthMockService.d.ts.map

package/dist/server/services/oauth/OAuthMockService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthMockService.d.ts","sourceRoot":"","sources":["../../../../server/services/oauth/OAuthMockService.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,OAAO,KAAK,EACV,cAAc,EACd,aAAa,EACb,uBAAuB,EACvB,0BAA0B,EAC1B,+BAA+B,EAChC,MAAM,mBAAmB,CAAA;AAc1B,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,SAAS,CAAoC;;IAMrD,OAAO,CAAC,aAAa;IA4BrB,OAAO,CAAC,WAAW;IAQnB,OAAO,CAAC,mBAAmB;IAarB,YAAY,CAChB,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,MAAM,EACZ,WAAW,EAAE,MAAM,EACnB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,cAAc,CAAC;IAWpB,OAAO,IAAI,OAAO,CAAC,aAAa,CAAC;IAiBjC,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAUnE,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAE/C,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAWjE,iBAAiB,CACrB,UAAU,EAAE,MAAM,EAClB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,GAAG,CAAC,EAAE,MAAM,GACX,OAAO,CAAC,0BAA0B,CAAC;IAUhC,sBAAsB,CAC1B,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,EACvC,OAAO,EAAE,MAAM,EAAE,EACjB,GAAG,CAAC,EAAE,MAAM,GACX,OAAO,CAAC,+BAA+B,CAAC;IAoBrC,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IASzC,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,EAAE,CAAC;IAexD,WAAW,CAAC,UAAU,EAAE,MAAM,EAAE,KAAK,GAAE,MAAW,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IA8BnE,cAAc,IAAI,OAAO,CAAC,GAAG,CAAC;IAI9B,iBAAiB,CAAC,iBAAiB,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;CAG9D"}

package/dist/server/services/oauth/OAuthMockService.js

@@ -0,0 +1,184 @@
+"use strict";
+/**
+ * OAuth Mock 服务
+ * 用于测试环境，返回真实格式的模拟数据
+ * 参考 ITS 项目实现，使用加密生成和随机数据
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthMockService = void 0;
+const crypto_1 = require("crypto");
+const MockDataGenerator_1 = require("./MockDataGenerator");
+class OAuthMockService {
+    constructor() {
+        this.mockUsers = new Map();
+        this.loadMockUsers();
+    }
+    loadMockUsers() {
+        const mockUsersJson = process.env.OAUTH_MOCK_USERS;
+        if (mockUsersJson) {
+            try {
+                const users = JSON.parse(mockUsersJson);
+                users.forEach(user => {
+                    if (user.userId) {
+                        this.mockUsers.set(user.userId, {
+                            userId: user.userId,
+                            username: user.username || `user_${user.userId}`,
+                            email: user.email || `${user.userId}@example.com`,
+                            name: user.name || `User ${user.userId}`,
+                            avatar: user.avatar || `https://api.example.com/avatar/${user.userId}`,
+                            phone: user.phone || `1${Math.floor(Math.random() * 9000000000 + 1000000000)}`,
+                            createdAt: user.createdAt ||
+                                new Date(Date.now() - Math.random() * 86400000 * 365).toISOString(),
+                            updatedAt: user.updatedAt || new Date().toISOString(),
+                            isActive: user.isActive !== false
+                        });
+                    }
+                });
+            }
+            catch (error) {
+                console.warn('Failed to parse OAUTH_MOCK_USERS environment variable:', error);
+            }
+        }
+    }
+    getMockUser(userId) {
+        if (this.mockUsers.has(userId)) {
+            return this.mockUsers.get(userId) || null;
+        }
+        return null;
+    }
+    generateDefaultUser(userId) {
+        return {
+            userId,
+            username: `user_${userId}`,
+            email: `${userId}@example.com`,
+            name: `User ${userId}`,
+            avatar: `https://api.example.com/avatar/${userId}`,
+            phone: `1${Math.floor(Math.random() * 9000000000 + 1000000000)}`,
+            createdAt: new Date(Date.now() - Math.random() * 86400000 * 365).toISOString(),
+            updatedAt: new Date().toISOString(),
+            isActive: true
+        };
+    }
+    async exchangeCode(grantType, code, redirectUri, codeVerifier) {
+        return {
+            accessToken: MockDataGenerator_1.MockDataGenerator.generateAccessToken(),
+            refreshToken: MockDataGenerator_1.MockDataGenerator.generateRefreshToken(),
+            tokenType: 'Bearer',
+            expiresIn: 3600,
+            jti: MockDataGenerator_1.MockDataGenerator.generateJti(),
+            sessionId: (0, crypto_1.randomUUID)()
+        };
+    }
+    async getJWKS() {
+        const { publicKey, kid } = MockDataGenerator_1.MockDataGenerator.generateRSAKeyPair();
+        return {
+            keys: [
+                {
+                    kty: 'RSA',
+                    use: 'sig',
+                    kid,
+                    n: (0, crypto_1.randomBytes)(256).toString('base64'),
+                    e: 'AQAB',
+                    alg: 'RS256'
+                }
+            ]
+        };
+    }
+    async checkBlacklist(sessionId) {
+        return {
+            code: '0',
+            data: {
+                sessionId,
+                isBlacklisted: false
+            }
+        };
+    }
+    async revokeSession(sessionId) { }
+    async refreshAccessToken(refreshToken) {
+        return {
+            accessToken: MockDataGenerator_1.MockDataGenerator.generateAccessToken(),
+            refreshToken: MockDataGenerator_1.MockDataGenerator.generateRefreshToken(),
+            tokenType: 'Bearer',
+            expiresIn: 3600,
+            jti: MockDataGenerator_1.MockDataGenerator.generateJti(),
+            sessionId: (0, crypto_1.randomUUID)()
+        };
+    }
+    async sendWechatMessage(templateId, userId, data, url) {
+        return {
+            code: '0',
+            message: 'success',
+            data: {
+                msgid: MockDataGenerator_1.MockDataGenerator.generateMsgId()
+            }
+        };
+    }
+    async broadcastWechatMessage(templateId, data, roleIds, url) {
+        const results = roleIds.map(userId => ({
+            userId,
+            openId: MockDataGenerator_1.MockDataGenerator.generateOpenId(),
+            success: true
+        }));
+        return {
+            code: '0',
+            message: 'success',
+            data: {
+                totalUsers: roleIds.length,
+                successCount: roleIds.length,
+                failureCount: 0,
+                successRate: '100%',
+                results
+            }
+        };
+    }
+    async getUserInfo(userId) {
+        if (!userId) {
+            return null;
+        }
+        const mockUser = this.getMockUser(userId);
+        return mockUser || this.generateDefaultUser(userId);
+    }
+    async getUsersInfo(userIds) {
+        if (!userIds || userIds.length === 0) {
+            return [];
+        }
+        return userIds.map(id => {
+            if (!id) {
+                return null;
+            }
+            const mockUser = this.getMockUser(id);
+            return mockUser || this.generateDefaultUser(id);
+        });
+    }
+    async searchUsers(searchTerm, limit = 20) {
+        if (!searchTerm || searchTerm.trim() === '') {
+            return [];
+        }
+        const searchLower = searchTerm.toLowerCase();
+        const matchedUsers = [];
+        this.mockUsers.forEach(user => {
+            if (user.userId.toLowerCase().includes(searchLower) ||
+                user.username?.toLowerCase().includes(searchLower) ||
+                user.name?.toLowerCase().includes(searchLower) ||
+                user.email?.toLowerCase().includes(searchLower)) {
+                matchedUsers.push(user);
+            }
+        });
+        if (matchedUsers.length > 0) {
+            return matchedUsers.slice(0, limit);
+        }
+        const count = Math.min(Math.floor(Math.random() * 5) + 1, limit);
+        return Array.from({ length: count }, (_, i) => {
+            const uid = `${searchTerm}_${i}`;
+            return this.generateDefaultUser(uid);
+        });
+    }
+    async getPermissions() {
+        return {};
+    }
+    async updatePermissions(permissionsConfig) {
+        return;
+    }
+}
+exports.OAuthMockService = OAuthMockService;
+//# sourceMappingURL=OAuthMockService.js.map

package/dist/server/services/oauth/OAuthMockService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthMockService.js","sourceRoot":"","sources":["../../../../server/services/oauth/OAuthMockService.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;AAEH,mCAAgD;AAChD,2DAAuD;AAqBvD,MAAa,gBAAgB;IAG3B;QAFQ,cAAS,GAA2B,IAAI,GAAG,EAAE,CAAA;QAGnD,IAAI,CAAC,aAAa,EAAE,CAAA;IACtB,CAAC;IAEO,aAAa;QACnB,MAAM,aAAa,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAA;QAClD,IAAI,aAAa,EAAE,CAAC;YAClB,IAAI,CAAC;gBACH,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAgB,CAAA;gBACtD,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;oBACnB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;wBAChB,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE;4BAC9B,MAAM,EAAE,IAAI,CAAC,MAAM;4BACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,QAAQ,IAAI,CAAC,MAAM,EAAE;4BAChD,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,GAAG,IAAI,CAAC,MAAM,cAAc;4BACjD,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,QAAQ,IAAI,CAAC,MAAM,EAAE;4BACxC,MAAM,EAAE,IAAI,CAAC,MAAM,IAAI,kCAAkC,IAAI,CAAC,MAAM,EAAE;4BACtE,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,UAAU,GAAG,UAAU,CAAC,EAAE;4BAC9E,SAAS,EACP,IAAI,CAAC,SAAS;gCACd,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,QAAQ,GAAG,GAAG,CAAC,CAAC,WAAW,EAAE;4BACrE,SAAS,EAAE,IAAI,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;4BACrD,QAAQ,EAAE,IAAI,CAAC,QAAQ,KAAK,KAAK;yBAClC,CAAC,CAAA;oBACJ,CAAC;gBACH,CAAC,CAAC,CAAA;YACJ,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC,wDAAwD,EAAE,KAAK,CAAC,CAAA;YAC/E,CAAC;QACH,CAAC;IACH,CAAC;IAEO,WAAW,CAAC,MAAc;QAChC,IAAI,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC/B,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAA;QAC3C,CAAC;QAED,OAAO,IAAI,CAAA;IACb,CAAC;IAEO,mBAAmB,CAAC,MAAc;QACxC,OAAO;YACL,MAAM;YACN,QAAQ,EAAE,QAAQ,MAAM,EAAE;YAC1B,KAAK,EAAE,GAAG,MAAM,cAAc;YAC9B,IAAI,EAAE,QAAQ,MAAM,EAAE;YACtB,MAAM,EAAE,kCAAkC,MAAM,EAAE;YAClD,KAAK,EAAE,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,UAAU,GAAG,UAAU,CAAC,EAAE;YAChE,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,QAAQ,GAAG,GAAG,CAAC,CAAC,WAAW,EAAE;YAC9E,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,QAAQ,EAAE,IAAI;SACf,CAAA;IACH,CAAC;IACD,KAAK,CAAC,YAAY,CAChB,SAAiB,EACjB,IAAY,EACZ,WAAmB,EACnB,YAAoB;QAEpB,OAAO;YACL,WAAW,EAAE,qCAAiB,CAAC,mBAAmB,EAAE;YACpD,YAAY,EAAE,qCAAiB,CAAC,oBAAoB,EAAE;YACtD,SAAS,EAAE,QAAQ;YACnB,SAAS,EAAE,IAAI;YACf,GAAG,EAAE,qCAAiB,CAAC,WAAW,EAAE;YACpC,SAAS,EAAE,IAAA,mBAAU,GAAE;SACxB,CAAA;IACH,CAAC;IAED,KAAK,CAAC,OAAO;QACX,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,qCAAiB,CAAC,kBAAkB,EAAE,CAAA;QAEjE,OAAO;YACL,IAAI,EAAE;gBACJ;oBACE,GAAG,EAAE,KAAK;oBACV,GAAG,EAAE,KAAK;oBACV,GAAG;oBACH,CAAC,EAAE,IAAA,oBAAW,EAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;oBACtC,CAAC,EAAE,MAAM;oBACT,GAAG,EAAE,OAAO;iBACb;aACF;SACF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,SAAiB;QACpC,OAAO;YACL,IAAI,EAAE,GAAG;YACT,IAAI,EAAE;gBACJ,SAAS;gBACT,aAAa,EAAE,KAAK;aACrB;SACF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,SAAiB,IAAkB,CAAC;IAExD,KAAK,CAAC,kBAAkB,CAAC,YAAoB;QAC3C,OAAO;YACL,WAAW,EAAE,qCAAiB,CAAC,mBAAmB,EAAE;YACpD,YAAY,EAAE,qCAAiB,CAAC,oBAAoB,EAAE;YACtD,SAAS,EAAE,QAAQ;YACnB,SAAS,EAAE,IAAI;YACf,GAAG,EAAE,qCAAiB,CAAC,WAAW,EAAE;YACpC,SAAS,EAAE,IAAA,mBAAU,GAAE;SACxB,CAAA;IACH,CAAC;IAED,KAAK,CAAC,iBAAiB,CACrB,UAAkB,EAClB,MAAc,EACd,IAAyB,EACzB,GAAY;QAEZ,OAAO;YACL,IAAI,EAAE,GAAG;YACT,OAAO,EAAE,SAAS;YAClB,IAAI,EAAE;gBACJ,KAAK,EAAE,qCAAiB,CAAC,aAAa,EAAE;aACzC;SACF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,sBAAsB,CAC1B,UAAkB,EAClB,IAAuC,EACvC,OAAiB,EACjB,GAAY;QAEZ,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YACrC,MAAM;YACN,MAAM,EAAE,qCAAiB,CAAC,cAAc,EAAE;YAC1C,OAAO,EAAE,IAAI;SACd,CAAC,CAAC,CAAA;QAEH,OAAO;YACL,IAAI,EAAE,GAAG;YACT,OAAO,EAAE,SAAS;YAClB,IAAI,EAAE;gBACJ,UAAU,EAAE,OAAO,CAAC,MAAM;gBAC1B,YAAY,EAAE,OAAO,CAAC,MAAM;gBAC5B,YAAY,EAAE,CAAC;gBACf,WAAW,EAAE,MAAM;gBACnB,OAAO;aACR;SACF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,MAAc;QAC9B,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,IAAI,CAAA;QACb,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;QACzC,OAAO,QAAQ,IAAI,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAA;IACrD,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,OAAiB;QAClC,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrC,OAAO,EAAE,CAAA;QACX,CAAC;QAED,OAAO,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE;YACtB,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,OAAO,IAAI,CAAA;YACb,CAAC;YAED,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC,CAAA;YACrC,OAAO,QAAQ,IAAI,IAAI,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAA;QACjD,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,UAAkB,EAAE,QAAgB,EAAE;QACtD,IAAI,CAAC,UAAU,IAAI,UAAU,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YAC5C,OAAO,EAAE,CAAA;QACX,CAAC;QAED,MAAM,WAAW,GAAG,UAAU,CAAC,WAAW,EAAE,CAAA;QAC5C,MAAM,YAAY,GAAgB,EAAE,CAAA;QAEpC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC5B,IACE,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAC/C,IAAI,CAAC,QAAQ,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAClD,IAAI,CAAC,IAAI,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAC9C,IAAI,CAAC,KAAK,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,EAC/C,CAAC;gBACD,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACzB,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5B,OAAO,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAA;QACrC,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAA;QAChE,OAAO,KAAK,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;YAC5C,MAAM,GAAG,GAAG,GAAG,UAAU,IAAI,CAAC,EAAE,CAAA;YAChC,OAAO,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAA;QACtC,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,KAAK,CAAC,cAAc;QAClB,OAAO,EAAE,CAAA;IACX,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,iBAAsB;QAC5C,OAAM;IACR,CAAC;CACF;AArND,4CAqNC"}