OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v3
v2
v1.0.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'ec47bcc192'
${ noResults }
OneAuth/api/oauth/providers/create.go

47 lines
1.1 KiB
Go
Raw Normal View History Unescape Escape

refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 - 新增验证模块(api/verification),统一处理短信和邮件验证码发送 - 新增邮件发送功能(libs/email),支持 SMTP 协议 - 重构短信模块(libs/sms),简化阿里云和腾讯云短信接口 - 新增 OAuth 提供商管理 API(api/oauth/providers),支持 CRUD 操作 - 新增系统设置管理 API(api/settings),支持动态配置更新 - 重构认证方式管理(api/auth/methods),支持启用/禁用多种登录方式 - 删除旧的 sms_providers 和 sms API 模块,迁移至新验证体系 - 新增数据库模型:verification、email、oauth_provider、oauth_templates、setting - 更新配置文档,增加新功能的使用说明
1 week ago
//
// Copyright (C) 2024 veypi <i@veypi.com>
// 2025-03-04 16:08:06
// Distributed under terms of the MIT license.
//
package providers
import (
"github.com/veypi/vbase/cfg"
"github.com/veypi/vbase/models"
"github.com/veypi/vigo"
)
// create 创建 OAuth 提供商
func create(x *vigo.X, req *models.OAuthProvider) (*models.OAuthProvider, error) {
db := cfg.DB()
// 检查 code 是否已存在
var count int64
if err := db.Model(&models.OAuthProvider{}).Where("code = ?", req.Code).Count(&count).Error; err != nil {
return nil, vigo.ErrInternalServer.WithError(err)
}
if count > 0 {
return nil, vigo.ErrInvalidArg.WithString("provider code already exists")
}
// 标记为非内置
req.IsBuiltIn = false
fix(api/oauth): encrypt ClientSecret in database Encrypt OAuth Provider ClientSecret before storing in database to prevent sensitive credential exposure in case of database breach. - Encrypt ClientSecret on create using cfg.Config.Key.Encrypt() - Encrypt ClientSecret on update when provided - Decrypt ClientSecret before use in OAuth token exchange - Add AES-GCM encryption/decryption functions to crypto package - Gracefully handle legacy plaintext secrets during transition
1 week ago
// 加密 ClientSecret
if req.ClientSecret != "" {
refactor: Rename Config to Global and simplify app initialization - Rename cfg.Config to cfg.Global for consistency - Simplify cli/main.go to use vbase.App.Run() pattern - Update init.go to create app with vigo.New and Init function - Update all references from cfg.Config to cfg.Global across api, libs, models, and tests - Fix VBase constructor parameter order in ui/vbase.js - Update ui/env.js to use new VBase('vb', '/') initialization
5 days ago
encrypted, err := cfg.Global.Key.Encrypt(req.ClientSecret)
fix(api/oauth): encrypt ClientSecret in database Encrypt OAuth Provider ClientSecret before storing in database to prevent sensitive credential exposure in case of database breach. - Encrypt ClientSecret on create using cfg.Config.Key.Encrypt() - Encrypt ClientSecret on update when provided - Decrypt ClientSecret before use in OAuth token exchange - Add AES-GCM encryption/decryption functions to crypto package - Gracefully handle legacy plaintext secrets during transition
1 week ago
if err != nil {
return nil, vigo.ErrInternalServer.WithString("failed to encrypt client secret")
}
req.ClientSecret = encrypted
}
refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 - 新增验证模块(api/verification),统一处理短信和邮件验证码发送 - 新增邮件发送功能(libs/email),支持 SMTP 协议 - 重构短信模块(libs/sms),简化阿里云和腾讯云短信接口 - 新增 OAuth 提供商管理 API(api/oauth/providers),支持 CRUD 操作 - 新增系统设置管理 API(api/settings),支持动态配置更新 - 重构认证方式管理(api/auth/methods),支持启用/禁用多种登录方式 - 删除旧的 sms_providers 和 sms API 模块,迁移至新验证体系 - 新增数据库模型:verification、email、oauth_provider、oauth_templates、setting - 更新配置文档,增加新功能的使用说明
1 week ago
// 创建
if err := db.Create(req).Error; err != nil {
return nil, vigo.ErrInternalServer.WithError(err)
}
return req, nil
}