一阶段ok

2026-06-01 18:59:55 +08:00
commit 9e50d05e71
52 changed files with 6155 additions and 0 deletions
@@ -0,0 +1,435 @@
+package handlers
+
+import (
+	"fmt"
+	"net/http"
+	"strconv"
+
+	"mail_go/internal/db"
+	"mail_go/internal/store"
+
+	"github.com/gin-gonic/gin"
+	"golang.org/x/crypto/bcrypt"
+)
+
+// AdminHandler handles admin-related routes (dashboard, domain/user management).
+type AdminHandler struct {
+	stores *store.Stores
+}
+
+// NewAdminHandler creates a new AdminHandler with the given stores.
+func NewAdminHandler(stores *store.Stores) *AdminHandler {
+	return &AdminHandler{stores: stores}
+}
+
+// Dashboard renders the admin dashboard with summary statistics.
+func (h *AdminHandler) Dashboard(c *gin.Context) {
+	_, domainCount, _ := h.stores.Domains.List(1, 1)
+	_, userCount, _ := h.stores.Users.ListAll(1, 1)
+
+	currentUser, _ := c.Get("currentUser")
+
+	c.HTML(200, "admin_dashboard", gin.H{
+		"currentUser":  currentUser,
+		"domainCount":  domainCount,
+		"userCount":    userCount,
+		"activeFolder": "admin",
+	})
+}
+
+// ListDomains renders the domain list page.
+func (h *AdminHandler) ListDomains(c *gin.Context) {
+	page := getPageParam(c, "page", 1)
+	domains, total, err := h.stores.Domains.List(page, 20)
+	if err != nil {
+		c.String(http.StatusInternalServerError, "加载域名列表失败: %v", err)
+		return
+	}
+
+	currentUser, _ := c.Get("currentUser")
+
+	totalPages := int(total) / 20
+	if int(total)%20 > 0 {
+		totalPages++
+	}
+	if totalPages < 1 {
+		totalPages = 0
+	}
+
+	c.HTML(200, "admin_domains", gin.H{
+		"currentUser":  currentUser,
+		"domains":      domains,
+		"total":        total,
+		"page":         page,
+		"pageSize":     20,
+		"totalPages":   totalPages,
+		"activeFolder": "admin",
+	})
+}
+
+// NewDomain renders the new domain form page.
+func (h *AdminHandler) NewDomain(c *gin.Context) {
+	currentUser, _ := c.Get("currentUser")
+
+	c.HTML(200, "admin_domain_form", gin.H{
+		"currentUser":  currentUser,
+		"activeFolder": "admin",
+		"error":        "",
+		"isEdit":       false,
+		"domain":       &db.Domain{},
+	})
+}
+
+// CreateDomain processes the new domain form submission.
+func (h *AdminHandler) CreateDomain(c *gin.Context) {
+	name := c.PostForm("name")
+	smtpPort := formIntOrDefault(c, "smtp_port", 25)
+	imapPort := formIntOrDefault(c, "imap_port", 143)
+	pop3Port := formIntOrDefault(c, "pop3_port", 110)
+	tlsEnabled := c.PostForm("tls_enabled") == "on"
+
+	if name == "" {
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusBadRequest, "admin_domain_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        "请输入域名",
+			"isEdit":       false,
+			"domain": &db.Domain{
+				Name:       name,
+				SmtpPort:   smtpPort,
+				ImapPort:   imapPort,
+				Pop3Port:   pop3Port,
+				TlsEnabled: tlsEnabled,
+			},
+		})
+		return
+	}
+
+	domain := &db.Domain{
+		Name:       name,
+		SmtpPort:   smtpPort,
+		ImapPort:   imapPort,
+		Pop3Port:   pop3Port,
+		TlsEnabled: tlsEnabled,
+	}
+
+	if err := h.stores.Domains.Create(domain); err != nil {
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusBadRequest, "admin_domain_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        fmt.Sprintf("创建域名失败: %v", err),
+			"isEdit":       false,
+			"domain":       domain,
+		})
+		return
+	}
+
+	c.Redirect(http.StatusFound, "/admin/domains")
+}
+
+// DeleteDomain removes a domain by ID.
+func (h *AdminHandler) DeleteDomain(c *gin.Context) {
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
+	if err != nil {
+		c.String(http.StatusBadRequest, "无效的域名ID")
+		return
+	}
+
+	if err := h.stores.Domains.Delete(uint(id)); err != nil {
+		c.String(http.StatusInternalServerError, "删除域名失败: %v", err)
+		return
+	}
+
+	c.Redirect(http.StatusFound, "/admin/domains")
+}
+
+// DNSHint renders the DNS configuration hints for a specific domain.
+func (h *AdminHandler) DNSHint(c *gin.Context) {
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
+	if err != nil {
+		c.String(http.StatusBadRequest, "无效的域名ID")
+		return
+	}
+
+	domain, err := h.stores.Domains.GetByID(uint(id))
+	if err != nil {
+		c.String(http.StatusNotFound, "域名不存在")
+		return
+	}
+
+	currentUser, _ := c.Get("currentUser")
+
+	c.HTML(200, "admin_dns_hint", gin.H{
+		"currentUser":  currentUser,
+		"activeFolder": "admin",
+		"domain":       domain,
+	})
+}
+
+// ListUsers renders the user list page.
+func (h *AdminHandler) ListUsers(c *gin.Context) {
+	page := getPageParam(c, "page", 1)
+
+	users, total, err := h.stores.Users.ListAll(page, 20)
+	if err != nil {
+		c.String(http.StatusInternalServerError, "加载用户列表失败: %v", err)
+		return
+	}
+
+	// Get all domains for display
+	domains, _, _ := h.stores.Domains.List(1, 1000)
+
+	currentUser, _ := c.Get("currentUser")
+
+	totalPages := int(total) / 20
+	if int(total)%20 > 0 {
+		totalPages++
+	}
+	if totalPages < 1 {
+		totalPages = 0
+	}
+
+	c.HTML(200, "admin_users", gin.H{
+		"currentUser":  currentUser,
+		"users":        users,
+		"domains":      domains,
+		"total":        total,
+		"page":         page,
+		"pageSize":     20,
+		"totalPages":   totalPages,
+		"activeFolder": "admin",
+	})
+}
+
+// NewUser renders the new user form page.
+func (h *AdminHandler) NewUser(c *gin.Context) {
+	domains, _, _ := h.stores.Domains.List(1, 1000)
+
+	currentUser, _ := c.Get("currentUser")
+
+	c.HTML(200, "admin_user_form", gin.H{
+		"currentUser":  currentUser,
+		"activeFolder": "admin",
+		"error":        "",
+		"isEdit":       false,
+		"domains":      domains,
+		"user":         &db.User{},
+	})
+}
+
+// CreateUser processes the new user form submission.
+func (h *AdminHandler) CreateUser(c *gin.Context) {
+	username := c.PostForm("username")
+	password := c.PostForm("password")
+	domainID := formUintOrDefault(c, "domain_id", 0)
+	quotaGB := formIntOrDefault(c, "quota_gb", 5)
+	isAdmin := c.PostForm("is_admin") == "on"
+
+	if username == "" || password == "" || domainID == 0 {
+		domains, _, _ := h.stores.Domains.List(1, 1000)
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusBadRequest, "admin_user_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        "请填写所有必填字段",
+			"isEdit":       false,
+			"domains":      domains,
+			"user": &db.User{
+				Username: username,
+				DomainID: domainID,
+				IsAdmin:  isAdmin,
+			},
+		})
+		return
+	}
+
+	// Hash password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
+	if err != nil {
+		domains, _, _ := h.stores.Domains.List(1, 1000)
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusInternalServerError, "admin_user_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        "密码加密失败",
+			"isEdit":       false,
+			"domains":      domains,
+			"user": &db.User{
+				Username: username,
+				DomainID: domainID,
+				IsAdmin:  isAdmin,
+			},
+		})
+		return
+	}
+
+	quotaBytes := int64(quotaGB) * 1024 * 1024 * 1024
+
+	user := &db.User{
+		Username:     username,
+		PasswordHash: string(hashedPassword),
+		DomainID:     domainID,
+		QuotaBytes:   quotaBytes,
+		UsedBytes:    0,
+		IsActive:     true,
+		IsAdmin:      isAdmin,
+	}
+
+	if err := h.stores.Users.Create(user); err != nil {
+		domains, _, _ := h.stores.Domains.List(1, 1000)
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusBadRequest, "admin_user_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        fmt.Sprintf("创建用户失败: %v", err),
+			"isEdit":       false,
+			"domains":      domains,
+			"user":         user,
+		})
+		return
+	}
+
+	c.Redirect(http.StatusFound, "/admin/users")
+}
+
+// DeleteUser removes a user by ID.
+func (h *AdminHandler) DeleteUser(c *gin.Context) {
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
+	if err != nil {
+		c.String(http.StatusBadRequest, "无效的用户ID")
+		return
+	}
+
+	currentUser, _ := c.Get("currentUser")
+	if currentUser.(*db.User).ID == uint(id) {
+		c.String(http.StatusBadRequest, "不能删除自己的账户")
+		return
+	}
+
+	if err := h.stores.Users.Delete(uint(id)); err != nil {
+		c.String(http.StatusInternalServerError, "删除用户失败: %v", err)
+		return
+	}
+
+	c.Redirect(http.StatusFound, "/admin/users")
+}
+
+// EditUser renders the edit user form page.
+func (h *AdminHandler) EditUser(c *gin.Context) {
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
+	if err != nil {
+		c.String(http.StatusBadRequest, "无效的用户ID")
+		return
+	}
+
+	user, err := h.stores.Users.GetByID(uint(id))
+	if err != nil {
+		c.String(http.StatusNotFound, "用户不存在")
+		return
+	}
+
+	domains, _, _ := h.stores.Domains.List(1, 1000)
+	currentUser, _ := c.Get("currentUser")
+
+	c.HTML(200, "admin_user_form", gin.H{
+		"currentUser":  currentUser,
+		"activeFolder": "admin",
+		"error":        "",
+		"isEdit":       true,
+		"domains":      domains,
+		"user":         user,
+	})
+}
+
+// UpdateUser processes the edit user form submission.
+func (h *AdminHandler) UpdateUser(c *gin.Context) {
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
+	if err != nil {
+		c.String(http.StatusBadRequest, "无效的用户ID")
+		return
+	}
+
+	user, err := h.stores.Users.GetByID(uint(id))
+	if err != nil {
+		c.String(http.StatusNotFound, "用户不存在")
+		return
+	}
+
+	username := c.PostForm("username")
+	domainID := formUintOrDefault(c, "domain_id", user.DomainID)
+	quotaGB := formIntOrDefault(c, "quota_gb", int(user.QuotaBytes/(1024*1024*1024)))
+	isActive := c.PostForm("is_active") == "on"
+	isAdmin := c.PostForm("is_admin") == "on"
+	password := c.PostForm("password")
+
+	if username != "" {
+		user.Username = username
+	}
+	user.DomainID = domainID
+	user.QuotaBytes = int64(quotaGB) * 1024 * 1024 * 1024
+	user.IsActive = isActive
+	user.IsAdmin = isAdmin
+
+	// Update password only if a new one is provided
+	if password != "" {
+		hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
+		if err != nil {
+			domains, _, _ := h.stores.Domains.List(1, 1000)
+			currentUser, _ := c.Get("currentUser")
+			c.HTML(http.StatusInternalServerError, "admin_user_form", gin.H{
+				"currentUser":  currentUser,
+				"activeFolder": "admin",
+				"error":        "密码加密失败",
+				"isEdit":       true,
+				"domains":      domains,
+				"user":         user,
+			})
+			return
+		}
+		user.PasswordHash = string(hashedPassword)
+	}
+
+	if err := h.stores.Users.Update(user); err != nil {
+		domains, _, _ := h.stores.Domains.List(1, 1000)
+		currentUser, _ := c.Get("currentUser")
+		c.HTML(http.StatusBadRequest, "admin_user_form", gin.H{
+			"currentUser":  currentUser,
+			"activeFolder": "admin",
+			"error":        fmt.Sprintf("更新用户失败: %v", err),
+			"isEdit":       true,
+			"domains":      domains,
+			"user":         user,
+		})
+		return
+	}
+
+	c.Redirect(http.StatusFound, "/admin/users")
+}
+
+// formIntOrDefault extracts an integer from a form field, returning the default if missing/invalid.
+func formIntOrDefault(c *gin.Context, key string, defaultVal int) int {
+	val := c.PostForm(key)
+	if val == "" {
+		return defaultVal
+	}
+	n, err := strconv.Atoi(val)
+	if err != nil {
+		return defaultVal
+	}
+	return n
+}
+
+// formUintOrDefault extracts a uint from a form field, returning the default if missing/invalid.
+func formUintOrDefault(c *gin.Context, key string, defaultVal uint) uint {
+	val := c.PostForm(key)
+	if val == "" {
+		return defaultVal
+	}
+	n, err := strconv.ParseUint(val, 10, 64)
+	if err != nil {
+		return defaultVal
+	}
+	return uint(n)
+}