feat: 完成B端认证系统和商户管理模块测试补全

主要变更： - 新增B端认证系统（后台+H5）：登录、登出、Token刷新、密码修改 - 完善商户管理和商户账号管理功能 - 补全单元测试（ShopService: 72.5%, ShopAccountService: 79.8%） - 新增集成测试（商户管理+商户账号管理） - 归档OpenSpec提案（add-shop-account-management, implement-b-end-auth-system） - 完善文档（使用指南、API文档、认证架构说明）测试统计： - 13个测试套件，37个测试用例，100%通过率 - 平均覆盖率76.2%，达标 OpenSpec验证：通过（strict模式）
2026-01-15 18:15:17 +08:00
parent 7ccd3d146c
commit 18f35f3ef4
64 changed files with 11875 additions and 242 deletions
--- a/internal/handler/admin/auth.go
+++ b/internal/handler/admin/auth.go
@@ -0,0 +1,143 @@
+package admin
+
+import (
+	"github.com/break/junhong_cmp_fiber/internal/model"
+	"github.com/break/junhong_cmp_fiber/internal/service/auth"
+	"github.com/break/junhong_cmp_fiber/pkg/errors"
+	"github.com/break/junhong_cmp_fiber/pkg/middleware"
+	"github.com/break/junhong_cmp_fiber/pkg/response"
+	"github.com/go-playground/validator/v10"
+	"github.com/gofiber/fiber/v2"
+)
+
+// AuthHandler 后台认证处理器
+type AuthHandler struct {
+	authService *auth.Service
+	validator   *validator.Validate
+}
+
+// NewAuthHandler 创建后台认证处理器
+func NewAuthHandler(authService *auth.Service, validator *validator.Validate) *AuthHandler {
+	return &AuthHandler{
+		authService: authService,
+		validator:   validator,
+	}
+}
+
+// Login 后台登录
+func (h *AuthHandler) Login(c *fiber.Ctx) error {
+	var req model.LoginRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	clientIP := c.IP()
+	ctx := c.UserContext()
+
+	resp, err := h.authService.Login(ctx, &req, clientIP)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, resp)
+}
+
+// Logout 后台登出
+func (h *AuthHandler) Logout(c *fiber.Ctx) error {
+	auth := c.Get("Authorization")
+	accessToken := ""
+	if len(auth) > 7 && auth[:7] == "Bearer " {
+		accessToken = auth[7:]
+	}
+
+	refreshToken := ""
+	var req model.RefreshTokenRequest
+	if err := c.BodyParser(&req); err == nil {
+		refreshToken = req.RefreshToken
+	}
+
+	ctx := c.UserContext()
+
+	if err := h.authService.Logout(ctx, accessToken, refreshToken); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
+
+// RefreshToken 刷新访问令牌
+func (h *AuthHandler) RefreshToken(c *fiber.Ctx) error {
+	var req model.RefreshTokenRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	ctx := c.UserContext()
+
+	newAccessToken, err := h.authService.RefreshToken(ctx, req.RefreshToken)
+	if err != nil {
+		return err
+	}
+
+	resp := &model.RefreshTokenResponse{
+		AccessToken: newAccessToken,
+		ExpiresIn:   86400,
+	}
+
+	return response.Success(c, resp)
+}
+
+// GetMe 获取当前用户信息
+func (h *AuthHandler) GetMe(c *fiber.Ctx) error {
+	userID := middleware.GetUserIDFromContext(c.UserContext())
+	if userID == 0 {
+		return errors.New(errors.CodeUnauthorized, "未授权访问")
+	}
+
+	ctx := c.UserContext()
+
+	userInfo, permissions, err := h.authService.GetCurrentUser(ctx, userID)
+	if err != nil {
+		return err
+	}
+
+	data := map[string]interface{}{
+		"user":        userInfo,
+		"permissions": permissions,
+	}
+
+	return response.Success(c, data)
+}
+
+// ChangePassword 修改密码
+func (h *AuthHandler) ChangePassword(c *fiber.Ctx) error {
+	userID := middleware.GetUserIDFromContext(c.UserContext())
+	if userID == 0 {
+		return errors.New(errors.CodeUnauthorized, "未授权访问")
+	}
+
+	var req model.ChangePasswordRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	ctx := c.UserContext()
+
+	if err := h.authService.ChangePassword(ctx, userID, req.OldPassword, req.NewPassword); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
--- a/internal/handler/admin/shop.go
+++ b/internal/handler/admin/shop.go
@@ -0,0 +1,80 @@
+package admin
+
+import (
+	"strconv"
+
+	"github.com/gofiber/fiber/v2"
+
+	"github.com/break/junhong_cmp_fiber/internal/model"
+	shopService "github.com/break/junhong_cmp_fiber/internal/service/shop"
+	"github.com/break/junhong_cmp_fiber/pkg/errors"
+	"github.com/break/junhong_cmp_fiber/pkg/response"
+)
+
+type ShopHandler struct {
+	service *shopService.Service
+}
+
+func NewShopHandler(service *shopService.Service) *ShopHandler {
+	return &ShopHandler{service: service}
+}
+
+func (h *ShopHandler) List(c *fiber.Ctx) error {
+	var req model.ShopListRequest
+	if err := c.QueryParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	shops, total, err := h.service.ListShopResponses(c.UserContext(), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.SuccessWithPagination(c, shops, total, req.Page, req.PageSize)
+}
+
+func (h *ShopHandler) Create(c *fiber.Ctx) error {
+	var req model.CreateShopRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	shop, err := h.service.Create(c.UserContext(), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, shop)
+}
+
+func (h *ShopHandler) Update(c *fiber.Ctx) error {
+	id, err := strconv.ParseUint(c.Params("id"), 10, 64)
+	if err != nil {
+		return errors.New(errors.CodeInvalidParam, "无效的店铺 ID")
+	}
+
+	var req model.UpdateShopRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	shop, err := h.service.Update(c.UserContext(), uint(id), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, shop)
+}
+
+func (h *ShopHandler) Delete(c *fiber.Ctx) error {
+	id, err := strconv.ParseUint(c.Params("id"), 10, 64)
+	if err != nil {
+		return errors.New(errors.CodeInvalidParam, "无效的店铺 ID")
+	}
+
+	if err := h.service.Delete(c.UserContext(), uint(id)); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
--- a/internal/handler/admin/shop_account.go
+++ b/internal/handler/admin/shop_account.go
@@ -0,0 +1,103 @@
+package admin
+
+import (
+	"strconv"
+
+	"github.com/gofiber/fiber/v2"
+
+	"github.com/break/junhong_cmp_fiber/internal/model"
+	shopAccountService "github.com/break/junhong_cmp_fiber/internal/service/shop_account"
+	"github.com/break/junhong_cmp_fiber/pkg/errors"
+	"github.com/break/junhong_cmp_fiber/pkg/response"
+)
+
+type ShopAccountHandler struct {
+	service *shopAccountService.Service
+}
+
+func NewShopAccountHandler(service *shopAccountService.Service) *ShopAccountHandler {
+	return &ShopAccountHandler{service: service}
+}
+
+func (h *ShopAccountHandler) List(c *fiber.Ctx) error {
+	var req model.ShopAccountListRequest
+	if err := c.QueryParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	accounts, total, err := h.service.List(c.UserContext(), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.SuccessWithPagination(c, accounts, total, req.Page, req.PageSize)
+}
+
+func (h *ShopAccountHandler) Create(c *fiber.Ctx) error {
+	var req model.CreateShopAccountRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	account, err := h.service.Create(c.UserContext(), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, account)
+}
+
+func (h *ShopAccountHandler) Update(c *fiber.Ctx) error {
+	id, err := strconv.ParseUint(c.Params("id"), 10, 64)
+	if err != nil {
+		return errors.New(errors.CodeInvalidParam, "无效的账号 ID")
+	}
+
+	var req model.UpdateShopAccountRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	account, err := h.service.Update(c.UserContext(), uint(id), &req)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, account)
+}
+
+func (h *ShopAccountHandler) UpdatePassword(c *fiber.Ctx) error {
+	id, err := strconv.ParseUint(c.Params("id"), 10, 64)
+	if err != nil {
+		return errors.New(errors.CodeInvalidParam, "无效的账号 ID")
+	}
+
+	var req model.UpdateShopAccountPasswordRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.service.UpdatePassword(c.UserContext(), uint(id), &req); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
+
+func (h *ShopAccountHandler) UpdateStatus(c *fiber.Ctx) error {
+	id, err := strconv.ParseUint(c.Params("id"), 10, 64)
+	if err != nil {
+		return errors.New(errors.CodeInvalidParam, "无效的账号 ID")
+	}
+
+	var req model.UpdateShopAccountStatusRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.service.UpdateStatus(c.UserContext(), uint(id), &req); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
--- a/internal/handler/h5/auth.go
+++ b/internal/handler/h5/auth.go
@@ -0,0 +1,143 @@
+package h5
+
+import (
+	"github.com/break/junhong_cmp_fiber/internal/model"
+	"github.com/break/junhong_cmp_fiber/internal/service/auth"
+	"github.com/break/junhong_cmp_fiber/pkg/errors"
+	"github.com/break/junhong_cmp_fiber/pkg/middleware"
+	"github.com/break/junhong_cmp_fiber/pkg/response"
+	"github.com/go-playground/validator/v10"
+	"github.com/gofiber/fiber/v2"
+)
+
+// AuthHandler H5认证处理器
+type AuthHandler struct {
+	authService *auth.Service
+	validator   *validator.Validate
+}
+
+// NewAuthHandler 创建H5认证处理器
+func NewAuthHandler(authService *auth.Service, validator *validator.Validate) *AuthHandler {
+	return &AuthHandler{
+		authService: authService,
+		validator:   validator,
+	}
+}
+
+// Login H5登录
+func (h *AuthHandler) Login(c *fiber.Ctx) error {
+	var req model.LoginRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	clientIP := c.IP()
+	ctx := c.UserContext()
+
+	resp, err := h.authService.Login(ctx, &req, clientIP)
+	if err != nil {
+		return err
+	}
+
+	return response.Success(c, resp)
+}
+
+// Logout H5登出
+func (h *AuthHandler) Logout(c *fiber.Ctx) error {
+	auth := c.Get("Authorization")
+	accessToken := ""
+	if len(auth) > 7 && auth[:7] == "Bearer " {
+		accessToken = auth[7:]
+	}
+
+	refreshToken := ""
+	var req model.RefreshTokenRequest
+	if err := c.BodyParser(&req); err == nil {
+		refreshToken = req.RefreshToken
+	}
+
+	ctx := c.UserContext()
+
+	if err := h.authService.Logout(ctx, accessToken, refreshToken); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}
+
+// RefreshToken 刷新访问令牌
+func (h *AuthHandler) RefreshToken(c *fiber.Ctx) error {
+	var req model.RefreshTokenRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	ctx := c.UserContext()
+
+	newAccessToken, err := h.authService.RefreshToken(ctx, req.RefreshToken)
+	if err != nil {
+		return err
+	}
+
+	resp := &model.RefreshTokenResponse{
+		AccessToken: newAccessToken,
+		ExpiresIn:   86400,
+	}
+
+	return response.Success(c, resp)
+}
+
+// GetMe 获取当前用户信息
+func (h *AuthHandler) GetMe(c *fiber.Ctx) error {
+	userID := middleware.GetUserIDFromContext(c.UserContext())
+	if userID == 0 {
+		return errors.New(errors.CodeUnauthorized, "未授权访问")
+	}
+
+	ctx := c.UserContext()
+
+	userInfo, permissions, err := h.authService.GetCurrentUser(ctx, userID)
+	if err != nil {
+		return err
+	}
+
+	data := map[string]interface{}{
+		"user":        userInfo,
+		"permissions": permissions,
+	}
+
+	return response.Success(c, data)
+}
+
+// ChangePassword 修改密码
+func (h *AuthHandler) ChangePassword(c *fiber.Ctx) error {
+	userID := middleware.GetUserIDFromContext(c.UserContext())
+	if userID == 0 {
+		return errors.New(errors.CodeUnauthorized, "未授权访问")
+	}
+
+	var req model.ChangePasswordRequest
+	if err := c.BodyParser(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "请求参数解析失败")
+	}
+
+	if err := h.validator.Struct(&req); err != nil {
+		return errors.New(errors.CodeInvalidParam, "参数验证失败: "+err.Error())
+	}
+
+	ctx := c.UserContext()
+
+	if err := h.authService.ChangePassword(ctx, userID, req.OldPassword, req.NewPassword); err != nil {
+		return err
+	}
+
+	return response.Success(c, nil)
+}