[feature/backend] implement /users handler + switch to username + add display name + user management cli

2025-02-21 04:30:07 +08:00 · 2025-02-21 04:30:07 +08:00 · 86ab334bc9
commit 86ab334bc9
parent 1d712d4e6c
38 changed files with 1851 additions and 506 deletions
--- a/backend/internal/handler/auth_handler_test.go
+++ b/backend/internal/handler/auth_handler_test.go
@ -3,10 +3,11 @@ package handler
 import (
 	"bytes"
 	"encoding/json"
-	"errors"
+	"fmt"
 	"net/http"
 	"net/http/httptest"
 	"testing"
+
 	"tss-rocks-be/ent"
 	"tss-rocks-be/internal/config"
 	"tss-rocks-be/internal/service/mock"
@ -14,6 +15,7 @@ import (
 	"github.com/gin-gonic/gin"
 	"github.com/stretchr/testify/suite"
 	"go.uber.org/mock/gomock"
+	"golang.org/x/crypto/bcrypt"
 )

 type AuthHandlerTestSuite struct {
@ -54,20 +56,21 @@ func (s *AuthHandlerTestSuite) TestRegister() {
 		{
 			name: "成功注册",
 			request: RegisterRequest{
+				Username: "testuser",
 				Email:    "test@example.com",
 				Password: "password123",
 				Role:     "contributor",
 			},
 			setupMock: func() {
-				user := &ent.User{
-					ID:    1,
-					Email: "test@example.com",
-				}
 				s.service.EXPECT().
-					CreateUser(gomock.Any(), "test@example.com", "password123", "contributor").
-					Return(user, nil)
+					CreateUser(gomock.Any(), "testuser", "test@example.com", "password123", "contributor").
+					Return(&ent.User{
+						ID:       1,
+						Username: "testuser",
+						Email:    "test@example.com",
+					}, nil)
 				s.service.EXPECT().
-					GetUserRoles(gomock.Any(), user.ID).
+					GetUserRoles(gomock.Any(), 1).
 					Return([]*ent.Role{{ID: 1, Name: "contributor"}}, nil)
 			},
 			expectedStatus: http.StatusCreated,
@ -75,6 +78,7 @@ func (s *AuthHandlerTestSuite) TestRegister() {
 		{
 			name: "无效的邮箱格式",
 			request: RegisterRequest{
+				Username: "testuser",
 				Email:    "invalid-email",
 				Password: "password123",
 				Role:     "contributor",
@ -86,6 +90,7 @@ func (s *AuthHandlerTestSuite) TestRegister() {
 		{
 			name: "密码太短",
 			request: RegisterRequest{
+				Username: "testuser",
 				Email:    "test@example.com",
 				Password: "short",
 				Role:     "contributor",
@ -97,6 +102,7 @@ func (s *AuthHandlerTestSuite) TestRegister() {
 		{
 			name: "无效的角色",
 			request: RegisterRequest{
+				Username: "testuser",
 				Email:    "test@example.com",
 				Password: "password123",
 				Role:     "invalid-role",
@ -151,91 +157,95 @@ func (s *AuthHandlerTestSuite) TestLogin() {
 		{
 			name: "成功登录",
 			request: LoginRequest{
-				Email:    "test@example.com",
+				Username: "testuser",
 				Password: "password123",
 			},
 			setupMock: func() {
+				// 使用 bcrypt 生成正确的密码哈希
+				hashedPassword, _ := bcrypt.GenerateFromPassword([]byte("password123"), bcrypt.DefaultCost)
 				user := &ent.User{
-					ID:    1,
-					Email: "test@example.com",
+					ID:           1,
+					Username:     "testuser",
+					PasswordHash: string(hashedPassword),
 				}
 				s.service.EXPECT().
-					GetUserByEmail(gomock.Any(), "test@example.com").
+					GetUserByUsername(gomock.Any(), "testuser").
 					Return(user, nil)
-				s.service.EXPECT().
-					ValidatePassword(gomock.Any(), user, "password123").
-					Return(true)
 				s.service.EXPECT().
 					GetUserRoles(gomock.Any(), user.ID).
-					Return([]*ent.Role{{ID: 1, Name: "contributor"}}, nil)
+					Return([]*ent.Role{{Name: "admin"}}, nil)
 			},
 			expectedStatus: http.StatusOK,
 		},
 		{
-			name: "无效的邮箱格式",
+			name: "无效的用户名",
 			request: LoginRequest{
-				Email:    "invalid-email",
+				Username: "invalid",
 				Password: "password123",
 			},
-			setupMock:      func() {},
-			expectedStatus: http.StatusBadRequest,
-			expectedError:  "Key: 'LoginRequest.Email' Error:Field validation for 'Email' failed on the 'email' tag",
+			setupMock: func() {
+				s.service.EXPECT().
+					GetUserByUsername(gomock.Any(), "invalid").
+					Return(nil, fmt.Errorf("user not found"))
+			},
+			expectedStatus: http.StatusUnauthorized,
+			expectedError:  "Invalid username or password",
 		},
 		{
 			name: "用户不存在",
 			request: LoginRequest{
-				Email:    "nonexistent@example.com",
+				Username: "nonexistent",
 				Password: "password123",
 			},
 			setupMock: func() {
 				s.service.EXPECT().
-					GetUserByEmail(gomock.Any(), "nonexistent@example.com").
-					Return(nil, errors.New("user not found"))
+					GetUserByUsername(gomock.Any(), "nonexistent").
+					Return(nil, fmt.Errorf("user not found"))
 			},
 			expectedStatus: http.StatusUnauthorized,
-			expectedError:  "Invalid credentials",
+			expectedError:  "Invalid username or password",
 		},
 		{
 			name: "密码错误",
 			request: LoginRequest{
-				Email:    "test@example.com",
+				Username: "testuser",
 				Password: "wrong-password",
 			},
 			setupMock: func() {
+				// 使用 bcrypt 生成正确的密码哈希
+				hashedPassword, _ := bcrypt.GenerateFromPassword([]byte("password123"), bcrypt.DefaultCost)
 				user := &ent.User{
-					ID:    1,
-					Email: "test@example.com",
+					ID:           1,
+					Username:     "testuser",
+					PasswordHash: string(hashedPassword),
 				}
 				s.service.EXPECT().
-					GetUserByEmail(gomock.Any(), "test@example.com").
+					GetUserByUsername(gomock.Any(), "testuser").
 					Return(user, nil)
-				s.service.EXPECT().
-					ValidatePassword(gomock.Any(), user, "wrong-password").
-					Return(false)
 			},
 			expectedStatus: http.StatusUnauthorized,
-			expectedError:  "Invalid credentials",
+			expectedError:  "Invalid username or password",
 		},
 		{
 			name: "获取用户角色失败",
 			request: LoginRequest{
-				Email:    "test@example.com",
+				Username: "testuser",
 				Password: "password123",
 			},
 			setupMock: func() {
+				// 使用 bcrypt 生成正确的密码哈希
+				hashedPassword, _ := bcrypt.GenerateFromPassword([]byte("password123"), bcrypt.DefaultCost)
 				user := &ent.User{
-					ID:    1,
-					Email: "test@example.com",
+					ID:           1,
+					Username:     "testuser",
+					PasswordHash: string(hashedPassword),
 				}
 				s.service.EXPECT().
-					GetUserByEmail(gomock.Any(), "test@example.com").
+					GetUserByUsername(gomock.Any(), "testuser").
 					Return(user, nil)
-				s.service.EXPECT().
-					ValidatePassword(gomock.Any(), user, "password123").
-					Return(true)
 				s.service.EXPECT().
 					GetUserRoles(gomock.Any(), user.ID).
-					Return(nil, errors.New("failed to get roles"))
+					Return(nil, fmt.Errorf("failed to get roles"))
 			},
 			expectedStatus: http.StatusInternalServerError,
 			expectedError:  "Failed to get user roles",