zhlgd-cli 1.0.0

package/CLAUDE.md

@@ -0,0 +1,43 @@
+# CLAUDE.md
+
+This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
+
+## Project Overview
+
+zhlgd-cli is a Node.js CLI tool for 武汉理工大学 (Wuhan University of Technology) campus network management. It's published as the `zhlgd` command and currently supports campus network login via the `zhlgd login` command.
+
+## Build & Run Commands
+
+- **Install dependencies:** `npm install`
+- **Run CLI locally:** `node bin/index.js <command>` (e.g., `node bin/index.js login -u <学号> -p <密码>`)
+- **Link globally for development:** `npm link` then use `zhlgd` directly
+- **Tests:** No test framework configured yet (`npm test` is a placeholder)
+
+## Architecture
+
+**Entry point:** `bin/index.js` — sets up a `commander` CLI program, registers all command modules, and parses args.
+
+**Command pattern:** Each command lives in `src/commands/<name>.js` and exports a default function that receives the commander `program` instance and registers its subcommand via `program.command()`. New commands follow this pattern:
+
+```js
+// src/commands/example.js
+export default (program) => {
+    program
+        .command('example')
+        .description('...')
+        .action(async (options) => { ... });
+};
+```
+
+Then register it in `bin/index.js`: `import exampleCommand from '../src/commands/example.js'; exampleCommand(program);`
+
+**Shared utilities:** `src/utils/` — currently referenced but not yet created (e.g., `prompt.js` for interactive input). Place reusable logic here.
+
+**Campus network API:** The login endpoint is `http://10.0.0.1/login` (POST with `{username, password}`). All network requests use `axios`.
+
+## Key Conventions
+
+- ESM modules throughout (`"type": "module"` in package.json) — use `import`/`export`, not `require()`
+- CLI UI text is in Chinese (中文)
+- User-facing output uses emoji prefixes (📶 🔐 ✅ ❌)
+- Interactive prompts fall back gracefully: CLI flags (`-u`, `-p`) override interactive input

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Kmoon
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,29 @@
+# zhlgd-cli
+
+武汉理工大学智慧理工大命令行工具。
+
+## 安装
+
+```bash
+npm install -g zhlgd
+```
+
+## 命令
+
+| 命令 | 说明 |
+|------|------|
+| `zhlgd login` | 校园网登录（`-u` 学号 `-p` 密码，省略则交互输入） |
+| `zhlgd msg` | 查看我的消息 |
+| `zhlgd news` | 查看校园新闻 |
+| `zhlgd whoami` | 查看登录状态 |
+| `zhlgd logout` | 退出登录 |
+
+登录后 Cookie 自动保存至 `~/.zhlgd/cookies.json`，其他命令自动鉴权。
+
+## 贡献
+
+欢迎 Issue 和 PR。
+
+## License
+
+[MIT](LICENSE)

package/bin/index.js

@@ -0,0 +1,23 @@
+#!/usr/bin/env node
+
+import { Command } from 'commander';
+import loginCommand from '../src/commands/login.js';
+import logoutCommand from '../src/commands/logout.js';
+import whoamiCommand from '../src/commands/whoami.js';
+import msgCommand from '../src/commands/msg.js';
+import newsCommand from '../src/commands/news.js';
+
+const program = new Command();
+
+program
+    .name('zhlgd')
+    .version('1.0.0', '-v, --version')
+    .description('智慧理工大 CLI 工具');
+
+loginCommand(program);
+logoutCommand(program);
+whoamiCommand(program);
+msgCommand(program);
+newsCommand(program);
+
+program.parse();

package/package.json

@@ -0,0 +1,29 @@
+{
+  "name": "zhlgd-cli",
+  "bin": {
+    "zhlgd": "bin/index.js"
+  },
+  "version": "1.0.0",
+  "description": "武汉理工大学智慧理工大命令行工具",
+  "homepage": "https://github.com/kmoonn/zhlgd-cli#readme",
+  "bugs": {
+    "url": "https://github.com/kmoonn/zhlgd-cli/issues"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/kmoonn/zhlgd-cli.git"
+  },
+  "keywords": ["whut", "zhlgd", "cli", "武汉理工大学", "智慧理工大"],
+  "license": "MIT",
+  "author": "Kmoon",
+  "type": "module",
+  "main": "./bin/index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "dependencies": {
+    "axios": "^1.17.0",
+    "commander": "^15.0.0",
+    "node-forge": "^1.4.0"
+  }
+}

package/src/commands/login.js

@@ -0,0 +1,120 @@
+import axios from 'axios';
+import { prompt } from '../utils/prompt.js';
+import { rsaEncrypt } from '../utils/rsa.js';
+import { saveCookies, cookieHeader, collectCookies } from '../utils/session.js';
+import { BASE_URL, UA } from '../utils/config.js';
+
+const RSA_URL = `${BASE_URL}/tpass/rsa?skipWechat=true`;
+const LOGIN_URL = `${BASE_URL}/tpass/login`;
+const SERVICE = `${BASE_URL}/tp_up_new/`;
+
+const UA_JSON = JSON.stringify({
+    ua: UA,
+    browser: { name: 'Chrome', version: '148.0.0.0', major: '148' },
+    cpu: {},
+    device: { model: 'Macintosh', vendor: 'Apple' },
+    engine: { name: 'Blink', version: '148.0.0.0' },
+    os: { name: 'macOS', version: '10.15.7' },
+});
+
+function extractHiddenFields(html) {
+    const lt = html.match(/name="lt" value="(.*?)"/)?.[1];
+    const execution = html.match(/name="execution" value="(.*?)"/)?.[1];
+    if (!lt || !execution) throw new Error('无法从登录页提取隐藏字段');
+    return { lt, execution };
+}
+
+function extractTicket(redirectUrl) {
+    const ticket = new URL(redirectUrl).searchParams.get('ticket');
+    if (!ticket) throw new Error('重定向 URL 中未找到 ticket');
+    return ticket;
+}
+
+async function followRedirects(url, cookieJar, headers, maxHops = 10) {
+    let currentUrl = url;
+    for (let i = 0; i < maxHops; i++) {
+        const resp = await axios.get(currentUrl, {
+            headers: { ...headers, Cookie: cookieHeader(cookieJar) },
+            maxRedirects: 0,
+            validateStatus: () => true,
+        });
+        collectCookies(resp.headers['set-cookie'], cookieJar);
+        if (resp.status >= 300 && resp.status < 400 && resp.headers.location) {
+            currentUrl = new URL(resp.headers.location, currentUrl).href;
+            continue;
+        }
+        return resp;
+    }
+    throw new Error('重定向次数过多');
+}
+
+export default (program) => {
+    program
+        .command('login')
+        .description('校园网登录')
+        .option('-u, --username <account>', '学号')
+        .option('-p, --password <pwd>', '密码')
+        .action(async (options) => {
+            const username = options.username || await prompt('请输入学号：');
+            const password = options.password || await prompt('请输入密码：', true);
+
+            const cookieJar = {};
+            const commonHeaders = {
+                'User-Agent': UA,
+                'Referer': `${LOGIN_URL}?service=${SERVICE}`,
+                'Origin': BASE_URL,
+            };
+
+            try {
+                // 1. 获取 RSA 公钥
+                const rsaResp = await axios.post(RSA_URL, null, {
+                    headers: { ...commonHeaders, Cookie: cookieHeader(cookieJar) },
+                    maxRedirects: 0, validateStatus: () => true,
+                });
+                collectCookies(rsaResp.headers['set-cookie'], cookieJar);
+
+                // 2. RSA 加密
+                const ul = rsaEncrypt(username, rsaResp.data.publicKey);
+                const pl = rsaEncrypt(password, rsaResp.data.publicKey);
+
+                // 3. 获取 lt、execution
+                const loginPageResp = await axios.get(`${LOGIN_URL}?service=${SERVICE}`, {
+                    headers: { ...commonHeaders, Cookie: cookieHeader(cookieJar) },
+                    maxRedirects: 0, validateStatus: () => true,
+                });
+                collectCookies(loginPageResp.headers['set-cookie'], cookieJar);
+                const { lt, execution } = extractHiddenFields(loginPageResp.data);
+
+                // 4. 提交登录
+                const loginResp = await axios.post(
+                    LOGIN_URL,
+                    new URLSearchParams({
+                        ua: UA_JSON, visitorId: 'bc2f5efc890459a98f7cf9a753e6e6d1',
+                        rsa: '', ul, pl, lt, execution, _eventId: 'submit',
+                    }).toString(),
+                    {
+                        params: { service: SERVICE },
+                        headers: { ...commonHeaders, Cookie: cookieHeader(cookieJar), 'Content-Type': 'application/x-www-form-urlencoded' },
+                        maxRedirects: 0, validateStatus: () => true,
+                    },
+                );
+                collectCookies(loginResp.headers['set-cookie'], cookieJar);
+
+                if (loginResp.status !== 302) {
+                    console.log('❌ 登录失败');
+                    return;
+                }
+
+                // 5. 用 ST 换取完整 Cookie
+                const st = extractTicket(loginResp.headers.location);
+                await followRedirects(`${SERVICE}?ticket=${st}`, cookieJar, commonHeaders);
+
+                // 6. 保存
+                saveCookies(cookieJar);
+                console.log('✅ 登录成功');
+
+            } catch (err) {
+                console.log('❌ 登录失败：', err.message);
+            }
+        });
+};

package/src/commands/logout.js

@@ -0,0 +1,15 @@
+import { isLoggedIn, clearCookies } from '../utils/session.js';
+
+export default (program) => {
+    program
+        .command('logout')
+        .description('退出登录')
+        .action(() => {
+            if (!isLoggedIn()) {
+                console.log('⚠️  当前未登录');
+                return;
+            }
+            clearCookies();
+            console.log('✅ 已退出登录');
+        });
+};

package/src/commands/msg.js

@@ -0,0 +1,51 @@
+import { apiRequest, formatDateTime } from '../utils/api.js';
+import { BASE_URL } from '../utils/config.js';
+
+const C = {
+    reset: '\x1b[0m',
+    bold: '\x1b[1m',
+    dim: '\x1b[2m',
+    cyan: '\x1b[36m',
+    yellow: '\x1b[33m',
+    gray: '\x1b[90m',
+};
+
+export default (program) => {
+    program
+        .command('msg')
+        .description('查看我的消息')
+        .action(async () => {
+            try {
+                const data = await apiRequest(
+                    `${BASE_URL}/tp_up_new/up/newhome/getFpMsgList`,
+                    { MSG_TYPE: '3' },
+                );
+
+                if (!data?.length) {
+                    console.log(`${C.dim}  暂无消息${C.reset}`);
+                    return;
+                }
+
+                const padLen = String(data.length).length;
+
+                data.forEach((item, i) => {
+                    if (i > 0) console.log();
+
+                    const idx = String(i + 1).padStart(padLen);
+                    const indent = ' '.repeat(padLen + 2);
+
+                    // 序号 + 内容
+                    console.log(`  ${C.cyan}${C.bold}${idx}.${C.reset} ${C.bold}${item.content.replace(/\n/g, ' ')}${C.reset}`);
+
+                    // 来源 · 时间
+                    console.log(`${indent}${C.yellow}${item.sysName}${C.reset} ${C.gray}·${C.reset} ${C.dim}${formatDateTime(item.sendTime)}${C.reset}`);
+                });
+
+                console.log();
+                console.log(`${C.dim}  共 ${data.length} 条${C.reset}`);
+
+            } catch (err) {
+                console.log('❌', err.response?.status === 401 ? '登录已过期，请重新执行 zhlgd login' : err.message);
+            }
+        });
+};

package/src/commands/news.js

@@ -0,0 +1,27 @@
+import { apiRequest, formatDate } from '../utils/api.js';
+import { BASE_URL } from '../utils/config.js';
+import { renderNewsList } from '../utils/display.js';
+
+export default (program) => {
+    program
+        .command('news')
+        .description('查看校园新闻')
+        .action(async () => {
+            try {
+                const data = await apiRequest(
+                    `${BASE_URL}/tp_up_new/up/newhome/getNewsNotice`,
+                    { channel: '13962' },
+                );
+
+                renderNewsList(data, (item) => ({
+                    title: item.PIM_TITLE,
+                    tag: item.CHNLDESC,
+                    time: formatDate(item.OPT_DATE),
+                    url: item.URL,
+                }));
+
+            } catch (err) {
+                console.log('❌', err.response?.status === 401 ? '登录已过期，请重新执行 zhlgd login' : err.message);
+            }
+        });
+};

package/src/commands/whoami.js

@@ -0,0 +1,14 @@
+import { isLoggedIn } from '../utils/session.js';
+
+export default (program) => {
+    program
+        .command('whoami')
+        .description('查看登录状态')
+        .action(() => {
+            if (!isLoggedIn()) {
+                console.log('⚠️  未登录，请先执行 zhlgd login');
+                return;
+            }
+            console.log('✅ 已登录');
+        });
+};

package/src/utils/api.js

@@ -0,0 +1,40 @@
+import axios from 'axios';
+import { isLoggedIn, loadCookies, cookieHeader } from './session.js';
+import { UA, API_HEADERS } from './config.js';
+
+/**
+ * 带鉴权的 API 请求，未登录时自动提示
+ */
+export async function apiRequest(url, body) {
+    if (!isLoggedIn()) {
+        console.log('⚠️  未登录，请先执行 zhlgd login');
+        process.exit(1);
+    }
+    const cookies = loadCookies();
+    const resp = await axios.post(url, body, {
+        headers: {
+            ...API_HEADERS,
+            'cookie': cookieHeader(cookies),
+            'User-Agent': UA,
+        },
+    });
+    return resp.data;
+}
+
+/**
+ * 格式化时间戳为日期字符串
+ */
+export function formatDate(ts) {
+    const d = new Date(ts);
+    const pad = (n) => String(n).padStart(2, '0');
+    return `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())}`;
+}
+
+/**
+ * 格式化时间戳为日期时间字符串
+ */
+export function formatDateTime(ts) {
+    const d = new Date(ts);
+    const pad = (n) => String(n).padStart(2, '0');
+    return `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())} ${pad(d.getHours())}:${pad(d.getMinutes())}`;
+}

package/src/utils/config.js

@@ -0,0 +1,10 @@
+export const BASE_URL = 'https://zhlgd.whut.edu.cn';
+
+export const UA = 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Safari/537.36';
+
+export const API_HEADERS = {
+    'accept': 'application/json, text/javascript, */*; q=0.01',
+    'content-type': 'application/json;charset=UTF-8',
+    'x-requested-with': 'XMLHttpRequest',
+    'Referer': 'https://zhlgd.whut.edu.cn/tp_up_new/view?m=up',
+};

package/src/utils/display.js

@@ -0,0 +1,139 @@
+/**
+ * 终端美化输出工具
+ */
+
+import process from 'process';
+
+// ANSI 颜色
+const C = {
+    reset: '\x1b[0m',
+    bold: '\x1b[1m',
+    dim: '\x1b[2m',
+    cyan: '\x1b[36m',
+    yellow: '\x1b[33m',
+    blue: '\x1b[34m',
+    gray: '\x1b[90m',
+};
+
+/**
+ * 去除 ANSI 转义序列
+ */
+function stripAnsi(str) {
+    return str.replace(/\x1b\[[0-9;]*m/g, '');
+}
+
+/**
+ * 计算字符串的显示宽度（忽略 ANSI，中文占2列）
+ */
+function displayWidth(str) {
+    let w = 0;
+    for (const ch of stripAnsi(str)) w += ch.charCodeAt(0) > 127 ? 2 : 1;
+    return w;
+}
+
+/**
+ * 获取内容区宽度（终端宽度 - 边框和缩进）
+ */
+function contentWidth() {
+    return (process.stdout.columns || 80) - 6;
+}
+
+/**
+ * 文本按 maxWidth 折行（中英混排，URL 不折行）
+ */
+export function wrapText(text, maxWidth) {
+    const lines = [];
+    for (const paragraph of text.split('\n')) {
+        const parts = paragraph.split(/(https?:\/\/\S+)/g);
+        let line = '';
+        let width = 0;
+
+        for (const part of parts) {
+            if (/^https?:\/\//.test(part)) {
+                if (width > 0) { lines.push(line); line = ''; width = 0; }
+                lines.push(part);
+            } else {
+                for (const char of part) {
+                    width += char.charCodeAt(0) > 127 ? 2 : 1;
+                    line += char;
+                    if (width >= maxWidth) { lines.push(line); line = ''; width = 0; }
+                }
+            }
+        }
+        if (line) lines.push(line);
+    }
+    return lines;
+}
+
+/**
+ * 输出消息列表（带边框卡片）
+ */
+export function renderList(items, mapper) {
+    if (!items?.length) {
+        console.log(`${C.dim}  暂无内容${C.reset}`);
+        return;
+    }
+
+    const cw = contentWidth();
+    const hLine = '─'.repeat(cw);
+
+    items.forEach((item, i) => {
+        const { title, time, body } = mapper(item);
+        if (i > 0) console.log();
+
+        // 边框
+        console.log(`  ${C.dim}┌${hLine}┐${C.reset}`);
+
+        // 标题行
+        const titleRaw = ` ${title}  ${time}`;
+        const titleStyled = ` ${C.cyan}${C.bold}${title}${C.reset}  ${C.gray}${time}${C.reset}`;
+        const pad = ' '.repeat(Math.max(0, cw - displayWidth(titleRaw)));
+        console.log(`  ${C.dim}│${C.reset}${titleStyled}${pad}${C.dim}│${C.reset}`);
+
+        // 分隔线
+        console.log(`  ${C.dim}├${hLine}┤${C.reset}`);
+
+        // 内容
+        const wrapped = wrapText(body, cw - 2);
+        for (const line of wrapped) {
+            const dw = displayWidth(line);
+            if (dw <= cw - 2) {
+                console.log(`  ${C.dim}│${C.reset} ${line}${' '.repeat(cw - 2 - dw)} ${C.dim}│${C.reset}`);
+            } else {
+                console.log(`  ${C.dim}│${C.reset} ${line}`);
+            }
+        }
+
+        console.log(`  ${C.dim}└${hLine}┘${C.reset}`);
+    });
+
+    console.log();
+    console.log(`${C.dim}  共 ${items.length} 条${C.reset}`);
+}
+
+/**
+ * 输出新闻列表
+ */
+export function renderNewsList(items, mapper) {
+    if (!items?.length) {
+        console.log(`${C.dim}  暂无内容${C.reset}`);
+        return;
+    }
+
+    const padLen = String(items.length).length;
+
+    items.forEach((item, i) => {
+        const { title, tag, time, url } = mapper(item);
+        if (i > 0) console.log();
+
+        const idx = String(i + 1).padStart(padLen);
+        const indent = ' '.repeat(padLen + 2);
+
+        console.log(`  ${C.cyan}${C.bold}${idx}.${C.reset} ${C.bold}${title}${C.reset}`);
+        console.log(`${indent}${C.yellow}${tag}${C.reset} ${C.gray}·${C.reset} ${C.dim}${time}${C.reset}`);
+        console.log(`${indent}${C.blue}${C.dim}${url}${C.reset}`);
+    });
+
+    console.log();
+    console.log(`${C.dim}  共 ${items.length} 条${C.reset}`);
+}

package/src/utils/prompt.js

@@ -0,0 +1,58 @@
+import * as readline from 'readline';
+
+/**
+ * 交互式命令行输入
+ * @param {string} question - 提示文字
+ * @param {boolean} [hidden=false] - 是否隐藏输入（用于密码）
+ * @returns {Promise<string>}
+ */
+export function prompt(question, hidden = false) {
+    // hidden 且在 TTY 终端下：用 rawMode 逐字符读取，不回显
+    if (hidden && process.stdin.isTTY) {
+        return new Promise((resolve) => {
+            process.stdout.write(question);
+            process.stdin.setRawMode(true);
+            process.stdin.resume();
+            process.stdin.setEncoding('utf8');
+
+            let input = '';
+            const onData = (char) => {
+                switch (char) {
+                    case '\n':
+                    case '\r':
+                    case '': // Ctrl+D
+                        process.stdin.setRawMode(false);
+                        process.stdin.pause();
+                        process.stdin.removeListener('data', onData);
+                        process.stdout.write('\n');
+                        resolve(input);
+                        break;
+                    case '': // Ctrl+C
+                        process.stdout.write('\n');
+                        process.exit(1);
+                        break;
+                    case '': // 退格
+                    case '\b':
+                        input = input.slice(0, -1);
+                        break;
+                    default:
+                        input += char;
+                        break;
+                }
+            };
+            process.stdin.on('data', onData);
+        });
+    }
+
+    // 普通输入 或 非TTY管道输入：使用 readline
+    const rl = readline.createInterface({
+        input: process.stdin,
+        output: process.stdout,
+    });
+    return new Promise((resolve) => {
+        rl.question(question, (answer) => {
+            rl.close();
+            resolve(answer);
+        });
+    });
+}

package/src/utils/rsa.js

@@ -0,0 +1,20 @@
+import forge from 'node-forge';
+
+/**
+ * RSA PKCS1 v1.5 加密（与 Python Crypto.Cipher.PKCS1_v1_5 对齐）
+ * @param {string} plaintext - 明文
+ * @param {string} publicKeyB64 - Base64 编码的 RSA 公钥（不含头尾）
+ * @returns {string} Base64 编码的密文
+ */
+export function rsaEncrypt(plaintext, publicKeyB64) {
+    const pubKeyPem = [
+        '-----BEGIN PUBLIC KEY-----',
+        publicKeyB64,
+        '-----END PUBLIC KEY-----',
+    ].join('\n');
+
+    const publicKey = forge.pki.publicKeyFromPem(pubKeyPem);
+
+    const encrypted = publicKey.encrypt(plaintext, 'RSAES-PKCS1-V1_5');
+    return forge.util.encode64(encrypted);
+}

package/src/utils/session.js

@@ -0,0 +1,70 @@
+import fs from 'fs';
+import os from 'os';
+import path from 'path';
+
+const CONFIG_DIR = path.join(os.homedir(), '.zhlgd');
+const COOKIE_FILE = path.join(CONFIG_DIR, 'cookies.json');
+
+function ensureDir() {
+    if (!fs.existsSync(CONFIG_DIR)) {
+        fs.mkdirSync(CONFIG_DIR, { recursive: true });
+    }
+}
+
+/**
+ * 保存 Cookie 到本地文件
+ */
+export function saveCookies(cookieJar) {
+    ensureDir();
+    fs.writeFileSync(COOKIE_FILE, JSON.stringify(cookieJar, null, 2), 'utf-8');
+}
+
+/**
+ * 从本地文件读取 Cookie
+ */
+export function loadCookies() {
+    try {
+        if (!fs.existsSync(COOKIE_FILE)) return {};
+        return JSON.parse(fs.readFileSync(COOKIE_FILE, 'utf-8'));
+    } catch {
+        return {};
+    }
+}
+
+/**
+ * 清除本地 Cookie
+ */
+export function clearCookies() {
+    try {
+        if (fs.existsSync(COOKIE_FILE)) fs.unlinkSync(COOKIE_FILE);
+    } catch { /* ignore */ }
+}
+
+/**
+ * 是否已登录
+ */
+export function isLoggedIn() {
+    return Object.keys(loadCookies()).length > 0;
+}
+
+/**
+ * 将 cookie jar 拼成 Cookie 请求头
+ */
+export function cookieHeader(cookieJar) {
+    return Object.entries(cookieJar).map(([k, v]) => `${k}=${v}`).join('; ');
+}
+
+/**
+ * 从响应的 Set-Cookie 头收集 cookie 并更新 jar
+ */
+export function collectCookies(setCookieHeaders, cookieJar) {
+    if (!setCookieHeaders) return;
+    const headers = Array.isArray(setCookieHeaders) ? setCookieHeaders : [setCookieHeaders];
+    for (const raw of headers) {
+        const [kv] = raw.split(';');
+        const eqIdx = kv.indexOf('=');
+        if (eqIdx > 0) {
+            cookieJar[kv.substring(0, eqIdx).trim()] = kv.substring(eqIdx + 1).trim();
+        }
+    }
+}