chore: 初始化TikTok短剧后端项目基础架构

创建了完整的NestJS项目结构,包含配置文件、核心模块、工具类、拦截器、过滤器等基础代码,实现了健康检查、用户认证、管理员RBAC、剧集管理、订单支付、媒体管理等核心功能的基础框架,配置了ESLint、TypeScript、Jest等开发工具链。
This commit is contained in:
2026-07-01 13:55:37 +08:00
commit ef8c31d3be
92 changed files with 11462 additions and 0 deletions

10
.env Normal file
View File

@@ -0,0 +1,10 @@
PORT=3030
JWT_SECRET=change-me
# MySQL settings for the production TypeORM layer.
# The current scaffold defines entities and API boundaries; repository persistence can be enabled when the database is ready.
DB_HOST=sh-cdb-kksiutuw.sql.tencentcdb.com
DB_PORT=22246
DB_USERNAME=root
DB_PASSWORD=zhxiao1124..
DB_DATABASE=onion_tiktok

13
.env.example Normal file
View File

@@ -0,0 +1,13 @@
PORT=3000
JWT_SECRET=change-me
ADMIN_JWT_SECRET=change-me-admin
ADMIN_USERNAME=admin
ADMIN_PASSWORD=admin123
# MySQL settings for the production TypeORM layer.
# The current scaffold defines entities and API boundaries; repository persistence can be enabled when the database is ready.
DB_HOST=127.0.0.1
DB_PORT=3306
DB_USERNAME=root
DB_PASSWORD=
DB_DATABASE=cth_tk_backend

24
.gitignore vendored Normal file
View File

@@ -0,0 +1,24 @@
# Logs
logs
*.log
npm-debug.log*
yarn-debug.log*
yarn-error.log*
pnpm-debug.log*
lerna-debug.log*
node_modules
dist
dist-ssr
*.local
# Editor directories and files
.vscode/*
!.vscode/extensions.json
.idea
.DS_Store
*.suo
*.ntvs*
*.njsproj
*.sln
*.sw?

78
README.md Normal file
View File

@@ -0,0 +1,78 @@
# TikTok Short Drama Backend
NestJS backend API for a TikTok Minis short drama app.
## API Contract
All endpoints must follow [docs/api-standard.md](./docs/api-standard.md).
Response shape:
```json
{
"code": 0,
"data": {},
"message": "success",
"timestamp": "2026-06-30T00:00:00.000Z",
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"cost": "3ms"
}
```
Paginated list shape:
```json
{
"code": 0,
"data": {
"list": [],
"pagination": {
"page": 1,
"pageSize": 20,
"total": 100
}
},
"message": "success",
"timestamp": "2026-06-30T00:00:00.000Z",
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"cost": "3ms"
}
```
## Implemented Modules
- `health`: app health check.
- `logs`: request log lookup by `requestId` and playback error reporting.
- `dramas`: admin drama and episode configuration, app published content listing.
- `auth`: TikTok login placeholder that returns a business JWT.
- `orders`: paid episode orders, TikTok payment webhook, and playback unlock checks.
- `admin`: admin login, RBAC permissions, roles, and admin user management.
- `users`: app user listing, detail, and status management for admins.
## Commands
```bash
pnpm install
pnpm run start:dev
pnpm run build
pnpm run test:e2e
```
Swagger is available at:
```text
http://localhost:3000/api/docs
```
Default admin account for local development:
```text
username: admin
password: admin123
```
## Notes
- The project currently uses in-memory services so the API contract can be developed and tested before MySQL credentials are available.
- TypeORM entity classes are included for the planned MySQL persistence layer.
- Replace the TikTok login placeholder with official TikTok Minis login exchange once app credentials are ready.

225
docs/api-standard.md Normal file
View File

@@ -0,0 +1,225 @@
# API Standard
This document defines the API contract for the TikTok short drama backend.
All current and future endpoints must follow this standard.
## Base Rules
- API style: RESTful API.
- Response content type: `application/json`.
- All responses must include `requestId`.
- `requestId` must be UUID v4.
- The client may pass `X-Request-Id`; if it is a valid UUID v4, the server reuses it.
- If `X-Request-Id` is missing or invalid, the server generates a new UUID v4.
- `requestId` is the primary lookup key for request logs.
- `cost` is the server-side request duration, formatted as a string such as `3ms`.
- `timestamp` is the server response time in ISO 8601 format.
- `data` must always exist. Use `{}` for empty object responses. Paginated list responses must use `data.list`.
## Success Response
```json
{
"code": 0,
"data": {},
"message": "success",
"timestamp": "2026-06-30T00:00:00.000Z",
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"cost": "3ms"
}
```
## List Response
```json
{
"code": 0,
"data": {
"list": [],
"pagination": {
"page": 1,
"pageSize": 20,
"total": 100
}
},
"message": "success",
"timestamp": "2026-06-30T00:00:00.000Z",
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"cost": "3ms"
}
```
## Error Response
```json
{
"code": 403,
"data": {},
"message": "No permission",
"timestamp": "2026-06-30T00:00:00.000Z",
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"cost": "3ms"
}
```
## Code Rules
- `0`: success.
- `400`: invalid request parameters.
- `401`: not authenticated.
- `403`: no permission.
- `404`: resource not found.
- `409`: conflict, duplicate operation, or invalid state transition.
- `422`: business validation failed.
- `429`: too many requests.
- `500`: internal server error.
HTTP status codes should match the response `code` for errors.
For successful responses, use the correct HTTP status code such as `200` or `201`, while response `code` remains `0`.
## Request Log Rules
Every API request must create one request log record.
The request log must include:
- `requestId`
- `method`
- `path`
- `query`
- `body`
- `statusCode`
- `responseCode`
- `message`
- `costMs`
- `userId`
- `adminId`
- `ip`
- `userAgent`
- `errorStack`
- `createdAt`
`requestId` must have a unique index in the request log table.
Admin log endpoints:
- `GET /api/admin/v1/logs/requests`
- `GET /api/admin/v1/logs/requests/:requestId`
## Playback Error Log Rules
The app must be able to report video playback errors.
Endpoint:
- `POST /api/app/v1/logs/playback-errors`
Request body:
```json
{
"requestId": "0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2",
"dramaId": 1,
"episodeId": 10,
"playUrl": "https://cdn.example.com/video.mp4",
"playerErrorCode": "MEDIA_DECODE_ERROR",
"message": "Video decode failed",
"progressSeconds": 128,
"networkType": "wifi",
"device": {
"platform": "ios",
"model": "iPhone",
"systemVersion": "17.0",
"appVersion": "1.0.0"
},
"occurredAt": "2026-06-30T00:00:00.000Z"
}
```
The playback error log must include:
- `id`
- `requestId`
- `userId`
- `dramaId`
- `episodeId`
- `playUrl`
- `playerErrorCode`
- `message`
- `progressSeconds`
- `networkType`
- `device`
- `occurredAt`
- `createdAt`
`PlaybackErrorLog.requestId` must have a normal index so playback errors can be linked with request logs.
Admin playback error endpoints:
- `GET /api/admin/v1/logs/playback-errors`
- `GET /api/admin/v1/logs/playback-errors/:id`
## Implementation Requirements
The NestJS implementation must include:
- `RequestIdMiddleware` to generate or validate `requestId`.
- A global response interceptor to wrap successful responses.
- A global exception filter to wrap error responses.
- A request logging interceptor or middleware to write request logs.
- DTO validation with `class-validator`.
- Swagger/OpenAPI definitions for all endpoints.
- Tests that verify every endpoint includes `code`, `data`, `message`, `timestamp`, `requestId`, and `cost`.
## Admin Permission Rules
Admin APIs under `/api/admin/v1/*` must require an admin bearer token, except `/api/admin/v1/auth/login`.
The backend uses RBAC:
- `Permission`: atomic capability, such as `drama:create`.
- `Role`: a group of permissions.
- `AdminUser`: an admin account with one or more roles.
- Super admin accounts bypass permission checks.
Default local super admin:
```text
username: admin
password: admin123
```
Core admin endpoints:
- `POST /api/admin/v1/auth/login`
- `GET /api/admin/v1/auth/profile`
- `GET /api/admin/v1/permissions`
- `POST /api/admin/v1/permissions`
- `GET /api/admin/v1/roles`
- `POST /api/admin/v1/roles`
- `GET /api/admin/v1/admin-users`
- `POST /api/admin/v1/admin-users`
- `PATCH /api/admin/v1/admin-users/:id/status`
- `GET /api/admin/v1/users`
- `GET /api/admin/v1/users/:id`
- `PATCH /api/admin/v1/users/:id/status`
## Core Domain Modules
The backend is organized around these modules:
- `auth`: TikTok code exchange placeholder, local `user_id` binding, app access token issuing.
- `drama`: album list, episode list, free or paid state, review and publish state.
- `media`: cover records, video upload jobs, BytePlus `vid`, TikTok album or episode sync placeholders.
- `payment`: SKU or unlock price, trade order, TikTok order id, webhook status, unlock records.
- `player`: album id, episode id, BytePlus vid, play auth token, and playback permission checks.
- `admin`: drama upload, episode edits, review submit, publish or offline, order and playback data.
Core table targets:
- `users`: `id`, `tiktok_open_id`, `nickname`, `avatar`, `created_at`.
- `drama_albums`: `id`, `tiktok_album_id`, `title`, `description`, `cover_id`, `cover_url`, `status`, `online_version`.
- `drama_episodes`: `id`, `album_id`, `tiktok_episode_id`, `seq`, `title`, `byteplus_vid`, `cover_id`, `free_type`, `price`, `review_status`, `publish_status`.
- `orders`: `id`, `user_id`, `album_id`, `episode_id`, `tiktok_order_id`, `trade_order_id`, `amount`, `status`.
- `unlock_records`: `id`, `user_id`, `episode_id`, `source`, `created_at`.
- `media_upload_jobs`: `id`, `job_id`, `byteplus_vid`, `status`, `raw_response`.

17
eslint.config.mjs Normal file
View File

@@ -0,0 +1,17 @@
import eslint from '@eslint/js';
import tseslint from 'typescript-eslint';
export default tseslint.config(
eslint.configs.recommended,
...tseslint.configs.recommended,
{
files: ['src/**/*.ts', 'test/**/*.ts'],
rules: {
'@typescript-eslint/no-explicit-any': 'off',
'@typescript-eslint/no-unsafe-assignment': 'off',
'@typescript-eslint/no-unsafe-member-access': 'off',
'@typescript-eslint/no-unsafe-argument': 'off',
'@typescript-eslint/no-unsafe-return': 'off'
}
}
);

5
nest-cli.json Normal file
View File

@@ -0,0 +1,5 @@
{
"$schema": "https://json.schemastore.org/nest-cli",
"collection": "@nestjs/schematics",
"sourceRoot": "src"
}

58
package.json Normal file
View File

@@ -0,0 +1,58 @@
{
"name": "cth-tk-backend",
"version": "0.1.0",
"private": true,
"scripts": {
"build": "nest build",
"start": "nest start",
"start:dev": "nest start --watch",
"test": "jest",
"test:e2e": "jest --config ./test/jest-e2e.json",
"lint": "eslint \"{src,test}/**/*.ts\""
},
"dependencies": {
"@nestjs/common": "^11.0.0",
"@nestjs/config": "^4.0.0",
"@nestjs/core": "^11.0.0",
"@nestjs/jwt": "^11.0.0",
"@nestjs/mapped-types": "^2.1.0",
"@nestjs/passport": "^11.0.0",
"@nestjs/platform-express": "^11.0.0",
"@nestjs/swagger": "^11.0.0",
"@nestjs/typeorm": "^11.0.0",
"bcrypt": "^6.0.0",
"class-transformer": "^0.5.1",
"class-validator": "^0.14.0",
"mysql2": "^3.0.0",
"passport": "^0.7.0",
"passport-jwt": "^4.0.1",
"reflect-metadata": "^0.2.2",
"rxjs": "^7.8.0",
"typeorm": "^0.3.0",
"uuid": "^11.0.0"
},
"devDependencies": {
"@eslint/eslintrc": "^3.0.0",
"@eslint/js": "^9.0.0",
"@nestjs/cli": "^11.0.0",
"@nestjs/schematics": "^11.0.0",
"@nestjs/testing": "^11.0.0",
"@types/bcrypt": "^5.0.2",
"@types/express": "^5.0.0",
"@types/jest": "^30.0.0",
"@types/node": "^24.0.0",
"@types/passport-jwt": "^4.0.1",
"@types/supertest": "^6.0.0",
"@types/uuid": "^10.0.0",
"eslint": "^9.0.0",
"jest": "^30.0.0",
"source-map-support": "^0.5.21",
"supertest": "^7.0.0",
"ts-jest": "^29.0.0",
"ts-loader": "^9.5.0",
"ts-node": "^10.9.0",
"tsconfig-paths": "^4.2.0",
"typescript": "^5.8.0",
"typescript-eslint": "^8.0.0"
}
}

6929
pnpm-lock.yaml generated Normal file

File diff suppressed because it is too large Load Diff

4
pnpm-workspace.yaml Normal file
View File

@@ -0,0 +1,4 @@
allowBuilds:
'@scarf/scarf': true
bcrypt: true
unrs-resolver: true

27
src/app.module.ts Normal file
View File

@@ -0,0 +1,27 @@
import { Module } from '@nestjs/common';
import { ConfigModule } from '@nestjs/config';
import { AdminModule } from './modules/admin/admin.module';
import { AuthModule } from './modules/auth/auth.module';
import { DramasModule } from './modules/dramas/dramas.module';
import { HealthModule } from './modules/health/health.module';
import { LogsModule } from './modules/logs/logs.module';
import { MediaModule } from './modules/media/media.module';
import { OrdersModule } from './modules/orders/orders.module';
import { PlayerModule } from './modules/player/player.module';
@Module({
imports: [
ConfigModule.forRoot({
isGlobal: true,
}),
AdminModule,
HealthModule,
LogsModule,
DramasModule,
MediaModule,
AuthModule,
OrdersModule,
PlayerModule,
],
})
export class AppModule {}

42
src/bootstrap.ts Normal file
View File

@@ -0,0 +1,42 @@
import { INestApplication, ValidationPipe } from "@nestjs/common";
import { Reflector } from "@nestjs/core";
import { DocumentBuilder, SwaggerModule } from "@nestjs/swagger";
import { HttpExceptionFilter } from "./common/filters/http-exception.filter";
import { RequestLoggingInterceptor } from "./common/interceptors/request-logging.interceptor";
import { ResponseInterceptor } from "./common/interceptors/response.interceptor";
import { RequestIdMiddleware } from "./common/middleware/request-id.middleware";
import { LogsService } from "./modules/logs/logs.service";
export function bootstrapApp(app: INestApplication) {
app.enableCors({
origin: process.env.CORS_ORIGIN?.split(',') ?? [
'http://localhost:5173',
'http://127.0.0.1:5173',
],
credentials: true,
});
app.use(RequestIdMiddleware);
app.useGlobalPipes(
new ValidationPipe({
whitelist: true,
transform: true,
forbidNonWhitelisted: true,
}),
);
const logsService = app.get(LogsService);
app.useGlobalFilters(new HttpExceptionFilter(logsService));
app.useGlobalInterceptors(
new RequestLoggingInterceptor(logsService, app.get(Reflector)),
new ResponseInterceptor(),
);
const config = new DocumentBuilder()
.setTitle("TikTok Short Drama Backend")
.setDescription("RESTful API for TikTok short drama backend services.")
.setVersion("1.0")
.addBearerAuth()
.build();
const document = SwaggerModule.createDocument(app, config);
SwaggerModule.setup("/api/docs", app, document);
}

View File

@@ -0,0 +1 @@
export const SUCCESS_MESSAGE = 'success';

View File

@@ -0,0 +1,6 @@
import { SetMetadata } from '@nestjs/common';
export const API_MESSAGE_METADATA = 'api:message';
export const ApiMessage = (message: string) =>
SetMetadata(API_MESSAGE_METADATA, message);

View File

@@ -0,0 +1,10 @@
export interface PaginationMeta {
page: number;
pageSize: number;
total: number;
}
export interface PaginatedResponse<T> {
list: T[];
pagination: PaginationMeta;
}

View File

@@ -0,0 +1,79 @@
import {
ArgumentsHost,
Catch,
ExceptionFilter,
HttpException,
HttpStatus,
} from '@nestjs/common';
import { Request, Response } from 'express';
import { LogsService } from '../../modules/logs/logs.service';
import { getRequestCost } from '../utils/request-context.util';
@Catch()
export class HttpExceptionFilter implements ExceptionFilter {
constructor(private readonly logsService: LogsService) {}
catch(exception: unknown, host: ArgumentsHost) {
const ctx = host.switchToHttp();
const request = ctx.getRequest<
Request & { requestId?: string; adminId?: number; user?: { id: number } }
>();
const response = ctx.getResponse<Response>();
const statusCode =
exception instanceof HttpException
? exception.getStatus()
: HttpStatus.INTERNAL_SERVER_ERROR;
const message = this.getMessage(exception, statusCode);
const requestId = request.requestId ?? '';
const costMs = getRequestCost(request);
this.logsService.recordRequest({
requestId,
method: request.method,
path: request.originalUrl ?? request.url,
query: request.query,
body: request.body,
statusCode,
responseCode: statusCode,
message,
costMs,
userId: request.user?.id,
adminId: request.adminId,
ip: request.ip,
userAgent: request.get('user-agent'),
errorStack: exception instanceof Error ? exception.stack : undefined,
});
response.status(statusCode).json({
code: statusCode,
data: {},
message,
timestamp: Date.now(),
requestId,
cost: `${costMs}ms`,
});
}
private getMessage(exception: unknown, statusCode: number): string {
if (exception instanceof HttpException) {
const response = exception.getResponse();
if (typeof response === 'string') {
return response;
}
if (
response &&
typeof response === 'object' &&
'message' in response
) {
const message = (response as { message: string | string[] }).message;
return Array.isArray(message) ? message.join('; ') : message;
}
}
if (exception instanceof Error && statusCode === HttpStatus.INTERNAL_SERVER_ERROR) {
return exception.message || 'Internal server error';
}
return 'Internal server error';
}
}

View File

@@ -0,0 +1,55 @@
import {
CallHandler,
ExecutionContext,
Injectable,
NestInterceptor,
} from '@nestjs/common';
import { Reflector } from '@nestjs/core';
import { Request, Response } from 'express';
import { Observable, tap } from 'rxjs';
import {
API_MESSAGE_METADATA,
} from '../decorators/api-message.decorator';
import { SUCCESS_MESSAGE } from '../constants/response-message.constants';
import { getRequestCost } from '../utils/request-context.util';
import { LogsService } from '../../modules/logs/logs.service';
@Injectable()
export class RequestLoggingInterceptor implements NestInterceptor {
constructor(
private readonly logsService: LogsService,
private readonly reflector: Reflector,
) {}
intercept(context: ExecutionContext, next: CallHandler): Observable<unknown> {
const http = context.switchToHttp();
const request = http.getRequest<
Request & { requestId?: string; adminId?: number; user?: { id: number } }
>();
const response = http.getResponse<Response>();
const message =
this.reflector.get<string>(API_MESSAGE_METADATA, context.getHandler()) ??
SUCCESS_MESSAGE;
return next.handle().pipe(
tap(() => {
this.logsService.recordRequest({
requestId: request.requestId ?? '',
method: request.method,
path: request.originalUrl ?? request.url,
query: request.query,
body: request.body,
statusCode: response.statusCode,
responseCode: 0,
message,
costMs: getRequestCost(request),
userId: request.user?.id,
adminId: request.adminId,
ip: request.ip,
userAgent: request.get('user-agent'),
errorStack: undefined,
});
}),
);
}
}

View File

@@ -0,0 +1,39 @@
import {
CallHandler,
ExecutionContext,
Injectable,
NestInterceptor,
} from '@nestjs/common';
import { Reflector } from '@nestjs/core';
import { Request } from 'express';
import { map, Observable } from 'rxjs';
import { SUCCESS_MESSAGE } from '../constants/response-message.constants';
import {
API_MESSAGE_METADATA,
} from '../decorators/api-message.decorator';
import { getRequestCost } from '../utils/request-context.util';
@Injectable()
export class ResponseInterceptor implements NestInterceptor {
constructor(private readonly reflector = new Reflector()) {}
intercept(context: ExecutionContext, next: CallHandler): Observable<unknown> {
const request = context
.switchToHttp()
.getRequest<Request & { requestId?: string }>();
const message =
this.reflector.get<string>(API_MESSAGE_METADATA, context.getHandler()) ??
SUCCESS_MESSAGE;
return next.handle().pipe(
map((data) => ({
code: 0,
data: data ?? {},
message,
timestamp: Date.now(),
requestId: request.requestId,
cost: `${getRequestCost(request)}ms`,
})),
);
}
}

View File

@@ -0,0 +1,21 @@
import { NextFunction, Request, Response } from 'express';
import { validate as validateUuid, version as uuidVersion, v4 as uuidv4 } from 'uuid';
export function RequestIdMiddleware(
request: Request & { requestId?: string; startTime?: bigint },
response: Response,
next: NextFunction,
) {
const incomingRequestId = request.get('x-request-id');
const requestId =
incomingRequestId &&
validateUuid(incomingRequestId) &&
uuidVersion(incomingRequestId) === 4
? incomingRequestId
: uuidv4();
request.requestId = requestId;
request.startTime = process.hrtime.bigint();
response.setHeader('X-Request-Id', requestId);
next();
}

View File

@@ -0,0 +1,10 @@
import { Request } from 'express';
export function getRequestCost(request: Request & { startTime?: bigint }) {
if (!request.startTime) {
return 0;
}
const diff = process.hrtime.bigint() - request.startTime;
return Number(diff / BigInt(1_000_000));
}

11
src/main.ts Normal file
View File

@@ -0,0 +1,11 @@
import { NestFactory } from '@nestjs/core';
import { AppModule } from './app.module';
import { bootstrapApp } from './bootstrap';
async function bootstrap() {
const app = await NestFactory.create(AppModule);
bootstrapApp(app);
await app.listen(process.env.PORT ?? 3000);
}
void bootstrap();

View File

@@ -0,0 +1,146 @@
import { Body, Controller, Get, Param, Patch, Post, Query, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { CurrentAdmin } from './decorators/current-admin.decorator';
import { RequirePermissions } from './decorators/require-permissions.decorator';
import { AdminLoginDto } from './dto/admin-login.dto';
import { ChangeAdminPasswordDto } from './dto/change-admin-password.dto';
import { CreateAdminUserDto } from './dto/create-admin-user.dto';
import { CreatePermissionDto } from './dto/create-permission.dto';
import { CreateRoleDto } from './dto/create-role.dto';
import { UpdateAdminProfileDto } from './dto/update-admin-profile.dto';
import { UpdateAdminRolesDto } from './dto/update-admin-roles.dto';
import { UpdateAdminStatusDto } from './dto/update-admin-status.dto';
import { UpdateRolePermissionsDto } from './dto/update-role-permissions.dto';
import { AdminJwtAuthGuard } from './guards/admin-jwt-auth.guard';
import { PermissionsGuard } from './guards/permissions.guard';
import { AdminUserRecord } from './interfaces/admin-records.interface';
import { AdminService } from './admin.service';
@ApiTags('Admin')
@Controller('/api/admin/v1')
export class AdminController {
constructor(private readonly adminService: AdminService) {}
@Post('/auth/login')
login(@Body() dto: AdminLoginDto) {
return this.adminService.login(dto);
}
@Get('/auth/profile')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard)
getProfile(@CurrentAdmin() admin: AdminUserRecord) {
return this.adminService.toAdminView(admin);
}
@Patch('/auth/profile')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard)
updateProfile(
@CurrentAdmin() admin: AdminUserRecord,
@Body() dto: UpdateAdminProfileDto,
) {
return this.adminService.updateProfile(admin.id, dto);
}
@Patch('/auth/password')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard)
changePassword(
@CurrentAdmin() admin: AdminUserRecord,
@Body() dto: ChangeAdminPasswordDto,
) {
return this.adminService.changePassword(
admin.id,
dto.oldPassword,
dto.newPassword,
);
}
@Get('/permissions')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('permission:read')
listPermissions(@Query('page') page?: string, @Query('pageSize') pageSize?: string) {
return this.adminService.listPermissions({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Post('/permissions')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('permission:create')
createPermission(@Body() dto: CreatePermissionDto) {
return this.adminService.createPermission(dto);
}
@Get('/roles')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('role:read')
listRoles(@Query('page') page?: string, @Query('pageSize') pageSize?: string) {
return this.adminService.listRoles({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Post('/roles')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('role:create')
createRole(@Body() dto: CreateRoleDto) {
return this.adminService.createRole(dto);
}
@Patch('/roles/:id/permissions')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('role:update')
updateRolePermissions(
@Param('id') id: string,
@Body() dto: UpdateRolePermissionsDto,
) {
return this.adminService.updateRolePermissions(
Number(id),
dto.permissionIds,
);
}
@Get('/admin-users')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('admin-user:read')
listAdminUsers(@Query('page') page?: string, @Query('pageSize') pageSize?: string) {
return this.adminService.listAdminUsers({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Post('/admin-users')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('admin-user:create')
createAdminUser(@Body() dto: CreateAdminUserDto) {
return this.adminService.createAdminUser(dto);
}
@Patch('/admin-users/:id/roles')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('admin-user:update')
updateAdminRoles(@Param('id') id: string, @Body() dto: UpdateAdminRolesDto) {
return this.adminService.updateAdminRoles(Number(id), dto.roleIds);
}
@Patch('/admin-users/:id/status')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('admin-user:update')
updateAdminStatus(@Param('id') id: string, @Body() dto: UpdateAdminStatusDto) {
return this.adminService.updateAdminStatus(Number(id), dto.status);
}
}

View File

@@ -0,0 +1,20 @@
import { Global, Module } from '@nestjs/common';
import { JwtModule } from '@nestjs/jwt';
import { AdminController } from './admin.controller';
import { AdminService } from './admin.service';
import { AdminJwtAuthGuard } from './guards/admin-jwt-auth.guard';
import { PermissionsGuard } from './guards/permissions.guard';
@Global()
@Module({
imports: [
JwtModule.register({
secret: process.env.ADMIN_JWT_SECRET ?? process.env.JWT_SECRET ?? 'development-secret',
signOptions: { expiresIn: '12h' },
}),
],
controllers: [AdminController],
providers: [AdminService, AdminJwtAuthGuard, PermissionsGuard],
exports: [JwtModule, AdminService, AdminJwtAuthGuard, PermissionsGuard],
})
export class AdminModule {}

View File

@@ -0,0 +1,318 @@
import {
ConflictException,
Injectable,
NotFoundException,
UnauthorizedException,
UnprocessableEntityException,
} from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';
import * as bcrypt from 'bcrypt';
import { PaginatedResponse } from '../../common/dto/paginated-response.dto';
import { AdminLoginDto } from './dto/admin-login.dto';
import { CreateAdminUserDto } from './dto/create-admin-user.dto';
import { CreatePermissionDto } from './dto/create-permission.dto';
import { CreateRoleDto } from './dto/create-role.dto';
import { UpdateAdminProfileDto } from './dto/update-admin-profile.dto';
import {
AdminUserRecord,
AdminUserView,
PermissionRecord,
RoleRecord,
} from './interfaces/admin-records.interface';
interface PaginationInput {
page: number;
pageSize: number;
}
@Injectable()
export class AdminService {
private permissionSequence = 1;
private roleSequence = 1;
private adminSequence = 1;
private readonly permissions: PermissionRecord[] = [];
private readonly roles: RoleRecord[] = [];
private readonly admins: AdminUserRecord[] = [];
constructor(private readonly jwtService: JwtService) {
this.seed();
}
async login(dto: AdminLoginDto) {
const admin = this.admins.find((item) => item.username === dto.username);
if (
!admin ||
admin.status !== 'active' ||
!bcrypt.compareSync(dto.password, admin.passwordHash)
) {
throw new UnauthorizedException('Invalid username or password');
}
return {
accessToken: await this.jwtService.signAsync({
sub: admin.id,
username: admin.username,
type: 'admin',
}),
admin: this.toAdminView(admin),
};
}
createPermission(dto: CreatePermissionDto): PermissionRecord {
if (this.permissions.some((item) => item.code === dto.code)) {
throw new ConflictException('Permission code already exists');
}
const now = new Date().toISOString();
const permission: PermissionRecord = {
id: this.permissionSequence++,
code: dto.code,
name: dto.name,
description: dto.description,
createdAt: now,
updatedAt: now,
};
this.permissions.push(permission);
return permission;
}
listPermissions(
pagination: PaginationInput,
): PaginatedResponse<PermissionRecord> {
return this.paginate([...this.permissions], pagination);
}
createRole(dto: CreateRoleDto): RoleRecord {
if (this.roles.some((item) => item.code === dto.code)) {
throw new ConflictException('Role code already exists');
}
const now = new Date().toISOString();
const permissionIds = dto.permissionIds ?? [];
const role: RoleRecord = {
id: this.roleSequence++,
code: dto.code,
name: dto.name,
description: dto.description,
permissionIds,
permissions: this.permissions.filter((permission) =>
permissionIds.includes(permission.id),
),
createdAt: now,
updatedAt: now,
};
this.roles.push(role);
return role;
}
listRoles(pagination: PaginationInput): PaginatedResponse<RoleRecord> {
return this.paginate([...this.roles], pagination);
}
updateRolePermissions(id: number, permissionIds: number[]): RoleRecord {
const role = this.roles.find((item) => item.id === id);
if (!role) {
throw new NotFoundException('Role not found');
}
const uniquePermissionIds = [...new Set(permissionIds)];
role.permissionIds = uniquePermissionIds;
role.permissions = this.permissions.filter((permission) =>
uniquePermissionIds.includes(permission.id),
);
role.updatedAt = new Date().toISOString();
return role;
}
createAdminUser(dto: CreateAdminUserDto): AdminUserView {
if (this.admins.some((item) => item.username === dto.username)) {
throw new ConflictException('Admin username already exists');
}
const now = new Date().toISOString();
const admin: AdminUserRecord = {
id: this.adminSequence++,
username: dto.username,
passwordHash: bcrypt.hashSync(dto.password, 10),
nickname: dto.nickname,
email: dto.email,
status: 'active',
isSuperAdmin: false,
roleIds: dto.roleIds ?? [],
createdAt: now,
updatedAt: now,
};
this.admins.push(admin);
return this.toAdminView(admin);
}
listAdminUsers(
pagination: PaginationInput,
): PaginatedResponse<AdminUserView> {
return this.paginate(
this.admins.map((admin) => this.toAdminView(admin)),
pagination,
);
}
updateAdminStatus(
id: number,
status: 'active' | 'disabled',
): AdminUserView {
const admin = this.findAdminById(id);
if (!admin) {
throw new NotFoundException('Admin user not found');
}
admin.status = status;
admin.updatedAt = new Date().toISOString();
return this.toAdminView(admin);
}
updateAdminRoles(id: number, roleIds: number[]): AdminUserView {
const admin = this.findAdminById(id);
if (!admin) {
throw new NotFoundException('Admin user not found');
}
admin.roleIds = [...new Set(roleIds)];
admin.updatedAt = new Date().toISOString();
return this.toAdminView(admin);
}
updateProfile(
adminId: number,
dto: UpdateAdminProfileDto,
): AdminUserView {
const admin = this.findAdminById(adminId);
if (!admin) {
throw new NotFoundException('Admin user not found');
}
admin.nickname = dto.nickname;
admin.email = dto.email;
admin.updatedAt = new Date().toISOString();
return this.toAdminView(admin);
}
changePassword(
adminId: number,
oldPassword: string,
newPassword: string,
): Record<string, never> {
const admin = this.findAdminById(adminId);
if (!admin) {
throw new NotFoundException('Admin user not found');
}
if (!bcrypt.compareSync(oldPassword, admin.passwordHash)) {
throw new UnprocessableEntityException('Old password is incorrect');
}
admin.passwordHash = bcrypt.hashSync(newPassword, 10);
admin.updatedAt = new Date().toISOString();
return {};
}
findAdminById(id: number) {
return this.admins.find((admin) => admin.id === id);
}
getPermissionCodesForAdmin(adminId: number) {
const admin = this.findAdminById(adminId);
if (!admin) {
return [];
}
if (admin.isSuperAdmin) {
return ['*'];
}
return this.roles
.filter((role) => admin.roleIds.includes(role.id))
.flatMap((role) => role.permissions.map((permission) => permission.code));
}
toAdminView(admin: AdminUserRecord): AdminUserView {
const roles = this.roles.filter((role) => admin.roleIds.includes(role.id));
const permissions: PermissionRecord[] | ['*'] = admin.isSuperAdmin
? ['*']
: roles.flatMap((role) => role.permissions);
return {
id: admin.id,
username: admin.username,
nickname: admin.nickname,
email: admin.email,
status: admin.status,
isSuperAdmin: admin.isSuperAdmin,
roles,
permissions,
createdAt: admin.createdAt,
updatedAt: admin.updatedAt,
};
}
private seed() {
const codes = [
['permission:read', '查看权限'],
['permission:create', '创建权限'],
['role:read', '查看角色'],
['role:create', '创建角色'],
['role:update', '更新角色'],
['admin-user:read', '查看人员'],
['admin-user:create', '创建人员'],
['admin-user:update', '更新人员'],
['user:read', '查看用户'],
['user:update', '更新用户'],
['drama:read', '查看短剧'],
['drama:create', '创建短剧'],
['drama:update', '更新短剧'],
['episode:create', '创建剧集'],
['episode:update', '更新剧集'],
['media:read', '查看媒体'],
['media:create', '创建媒体'],
['payment:read', '查看支付记录'],
['log:read', '查看日志'],
];
for (const [code, name] of codes) {
this.createPermission({ code, name });
}
const now = new Date().toISOString();
this.admins.push({
id: this.adminSequence++,
username: process.env.ADMIN_USERNAME ?? 'admin',
passwordHash: bcrypt.hashSync(process.env.ADMIN_PASSWORD ?? 'admin123', 10),
nickname: 'Super Admin',
email: process.env.ADMIN_EMAIL ?? 'admin@example.com',
status: 'active',
isSuperAdmin: true,
roleIds: [],
createdAt: now,
updatedAt: now,
});
}
private paginate<T>(
records: T[],
input: PaginationInput,
): PaginatedResponse<T> {
const page = Math.max(input.page, 1);
const pageSize = Math.min(Math.max(input.pageSize, 1), 100);
const start = (page - 1) * pageSize;
return {
list: records.slice(start, start + pageSize),
pagination: {
page,
pageSize,
total: records.length,
},
};
}
}

View File

@@ -0,0 +1,12 @@
import { createParamDecorator, ExecutionContext } from '@nestjs/common';
import { Request } from 'express';
import { AdminUserRecord } from '../interfaces/admin-records.interface';
export const CurrentAdmin = createParamDecorator(
(_data: unknown, ctx: ExecutionContext): AdminUserRecord | undefined => {
const request = ctx
.switchToHttp()
.getRequest<Request & { adminUser?: AdminUserRecord }>();
return request.adminUser;
},
);

View File

@@ -0,0 +1,6 @@
import { SetMetadata } from '@nestjs/common';
export const REQUIRED_PERMISSIONS_METADATA = 'admin:required-permissions';
export const RequirePermissions = (...permissions: string[]) =>
SetMetadata(REQUIRED_PERMISSIONS_METADATA, permissions);

View File

@@ -0,0 +1,13 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsString, MinLength } from 'class-validator';
export class AdminLoginDto {
@ApiProperty()
@IsString()
username: string;
@ApiProperty()
@IsString()
@MinLength(6)
password: string;
}

View File

@@ -0,0 +1,13 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsString, MinLength } from 'class-validator';
export class ChangeAdminPasswordDto {
@ApiProperty()
@IsString()
oldPassword: string;
@ApiProperty()
@IsString()
@MinLength(6)
newPassword: string;
}

View File

@@ -0,0 +1,38 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import {
IsArray,
IsEmail,
IsInt,
IsOptional,
IsString,
Min,
MinLength,
} from 'class-validator';
export class CreateAdminUserDto {
@ApiProperty()
@IsString()
username: string;
@ApiProperty()
@IsString()
@MinLength(6)
password: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
nickname?: string;
@ApiPropertyOptional()
@IsOptional()
@IsEmail()
email?: string;
@ApiPropertyOptional({ type: [Number] })
@IsOptional()
@IsArray()
@IsInt({ each: true })
@Min(1, { each: true })
roleIds?: number[];
}

View File

@@ -0,0 +1,17 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import { IsOptional, IsString } from 'class-validator';
export class CreatePermissionDto {
@ApiProperty()
@IsString()
code: string;
@ApiProperty()
@IsString()
name: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
description?: string;
}

View File

@@ -0,0 +1,30 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import {
IsArray,
IsInt,
IsOptional,
IsString,
Min,
} from 'class-validator';
export class CreateRoleDto {
@ApiProperty()
@IsString()
code: string;
@ApiProperty()
@IsString()
name: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
description?: string;
@ApiPropertyOptional({ type: [Number] })
@IsOptional()
@IsArray()
@IsInt({ each: true })
@Min(1, { each: true })
permissionIds?: number[];
}

View File

@@ -0,0 +1,14 @@
import { ApiPropertyOptional } from '@nestjs/swagger';
import { IsEmail, IsOptional, IsString } from 'class-validator';
export class UpdateAdminProfileDto {
@ApiPropertyOptional()
@IsOptional()
@IsString()
nickname?: string;
@ApiPropertyOptional()
@IsOptional()
@IsEmail()
email?: string;
}

View File

@@ -0,0 +1,10 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsArray, IsInt, Min } from 'class-validator';
export class UpdateAdminRolesDto {
@ApiProperty({ type: [Number] })
@IsArray()
@IsInt({ each: true })
@Min(1, { each: true })
roleIds: number[];
}

View File

@@ -0,0 +1,8 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsIn } from 'class-validator';
export class UpdateAdminStatusDto {
@ApiProperty({ enum: ['active', 'disabled'] })
@IsIn(['active', 'disabled'])
status: 'active' | 'disabled';
}

View File

@@ -0,0 +1,10 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsArray, IsInt, Min } from 'class-validator';
export class UpdateRolePermissionsDto {
@ApiProperty({ type: [Number] })
@IsArray()
@IsInt({ each: true })
@Min(1, { each: true })
permissionIds: number[];
}

View File

@@ -0,0 +1,39 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('admin_users')
export class AdminUser {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 64 })
username: string;
@Column({ type: 'varchar', length: 255 })
passwordHash: string;
@Column({ type: 'varchar', length: 128, nullable: true })
nickname?: string;
@Column({ type: 'varchar', length: 32, default: 'active' })
status: string;
@Column({ type: 'boolean', default: false })
isSuperAdmin: boolean;
@Column({ type: 'json', nullable: true })
roleIds?: number[];
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,30 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('permissions')
export class Permission {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 128 })
code: string;
@Column({ type: 'varchar', length: 128 })
name: string;
@Column({ type: 'varchar', length: 512, nullable: true })
description?: string;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,33 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('roles')
export class Role {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 128 })
code: string;
@Column({ type: 'varchar', length: 128 })
name: string;
@Column({ type: 'varchar', length: 512, nullable: true })
description?: string;
@Column({ type: 'json', nullable: true })
permissionIds?: number[];
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,53 @@
import {
CanActivate,
ExecutionContext,
Injectable,
UnauthorizedException,
} from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';
import { Request } from 'express';
import { AdminUserRecord } from '../interfaces/admin-records.interface';
import { AdminService } from '../admin.service';
@Injectable()
export class AdminJwtAuthGuard implements CanActivate {
constructor(
private readonly jwtService: JwtService,
private readonly adminService: AdminService,
) {}
async canActivate(context: ExecutionContext): Promise<boolean> {
const request = context
.switchToHttp()
.getRequest<Request & { adminUser?: AdminUserRecord; adminId?: number }>();
const authHeader = request.get('authorization');
const token = authHeader?.startsWith('Bearer ')
? authHeader.slice('Bearer '.length)
: undefined;
if (!token) {
throw new UnauthorizedException('Admin not authenticated');
}
try {
const payload = await this.jwtService.verifyAsync<{
sub: number;
type: string;
}>(token);
if (payload.type !== 'admin') {
throw new UnauthorizedException('Admin not authenticated');
}
const adminUser = this.adminService.findAdminById(payload.sub);
if (!adminUser || adminUser.status !== 'active') {
throw new UnauthorizedException('Admin not authenticated');
}
request.adminUser = adminUser;
request.adminId = adminUser.id;
return true;
} catch {
throw new UnauthorizedException('Admin not authenticated');
}
}
}

View File

@@ -0,0 +1,52 @@
import { CanActivate, ExecutionContext, ForbiddenException, Injectable } from '@nestjs/common';
import { Reflector } from '@nestjs/core';
import { Request } from 'express';
import {
REQUIRED_PERMISSIONS_METADATA,
} from '../decorators/require-permissions.decorator';
import { AdminUserRecord } from '../interfaces/admin-records.interface';
import { AdminService } from '../admin.service';
@Injectable()
export class PermissionsGuard implements CanActivate {
constructor(
private readonly reflector: Reflector,
private readonly adminService: AdminService,
) {}
canActivate(context: ExecutionContext): boolean {
const required =
this.reflector.getAllAndOverride<string[]>(
REQUIRED_PERMISSIONS_METADATA,
[context.getHandler(), context.getClass()],
) ?? [];
if (required.length === 0) {
return true;
}
const request = context
.switchToHttp()
.getRequest<Request & { adminUser?: AdminUserRecord }>();
const adminUser = request.adminUser;
if (!adminUser) {
throw new ForbiddenException('No permission');
}
if (adminUser.isSuperAdmin) {
return true;
}
const permissions = this.adminService.getPermissionCodesForAdmin(adminUser.id);
const allowed = required.every((permission) =>
permissions.includes(permission),
);
if (!allowed) {
throw new ForbiddenException('No permission');
}
return true;
}
}

View File

@@ -0,0 +1,45 @@
export interface PermissionRecord {
id: number;
code: string;
name: string;
description?: string;
createdAt: string;
updatedAt: string;
}
export interface RoleRecord {
id: number;
code: string;
name: string;
description?: string;
permissionIds: number[];
permissions: PermissionRecord[];
createdAt: string;
updatedAt: string;
}
export interface AdminUserRecord {
id: number;
username: string;
passwordHash: string;
nickname?: string;
email?: string;
status: 'active' | 'disabled';
isSuperAdmin: boolean;
roleIds: number[];
createdAt: string;
updatedAt: string;
}
export interface AdminUserView {
id: number;
username: string;
nickname?: string;
email?: string;
status: 'active' | 'disabled';
isSuperAdmin: boolean;
roles: RoleRecord[];
permissions: PermissionRecord[] | ['*'];
createdAt: string;
updatedAt: string;
}

View File

@@ -0,0 +1,15 @@
import { Body, Controller, Post } from '@nestjs/common';
import { ApiTags } from '@nestjs/swagger';
import { AuthService } from './auth.service';
import { TikTokLoginDto } from './dto/tiktok-login.dto';
@ApiTags('Auth')
@Controller('/api/app/v1/auth')
export class AuthController {
constructor(private readonly authService: AuthService) {}
@Post('/tiktok-login')
loginWithTikTok(@Body() dto: TikTokLoginDto) {
return this.authService.loginWithTikTok(dto);
}
}

View File

@@ -0,0 +1,20 @@
import { Module } from '@nestjs/common';
import { JwtModule } from '@nestjs/jwt';
import { UsersModule } from '../users/users.module';
import { AuthController } from './auth.controller';
import { AuthService } from './auth.service';
import { JwtAuthGuard } from './guards/jwt-auth.guard';
@Module({
imports: [
UsersModule,
JwtModule.register({
secret: process.env.JWT_SECRET ?? 'development-secret',
signOptions: { expiresIn: '30d' },
}),
],
controllers: [AuthController],
providers: [AuthService, JwtAuthGuard],
exports: [JwtModule, JwtAuthGuard],
})
export class AuthModule {}

View File

@@ -0,0 +1,39 @@
import { Injectable, UnprocessableEntityException } from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';
import { UsersService } from '../users/users.service';
import { TikTokLoginDto } from './dto/tiktok-login.dto';
@Injectable()
export class AuthService {
constructor(
private readonly jwtService: JwtService,
private readonly usersService: UsersService,
) {}
async loginWithTikTok(dto: TikTokLoginDto) {
const tiktokOpenId = dto.mockOpenId ?? this.resolveOpenIdFromCode(dto.code);
const result = this.usersService.upsertTikTokUser({
tiktokOpenId,
tiktokUnionId: dto.tiktokUnionId,
nickname: dto.nickname,
avatarUrl: dto.avatarUrl,
});
return {
accessToken: await this.jwtService.signAsync({
sub: result.user.id,
tiktokOpenId: result.user.tiktokOpenId,
}),
user: result.user,
isNewUser: result.isNewUser,
};
}
private resolveOpenIdFromCode(code: string) {
if (!code) {
throw new UnprocessableEntityException('TikTok login code is required');
}
return `mock-${code}`;
}
}

View File

@@ -0,0 +1,10 @@
import { createParamDecorator, ExecutionContext } from '@nestjs/common';
import { Request } from 'express';
import { UserRecord } from '../../users/interfaces/user-record.interface';
export const CurrentUser = createParamDecorator(
(_data: unknown, ctx: ExecutionContext): UserRecord | undefined => {
const request = ctx.switchToHttp().getRequest<Request & { user?: UserRecord }>();
return request.user;
},
);

View File

@@ -0,0 +1,30 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import { IsOptional, IsString } from 'class-validator';
export class TikTokLoginDto {
@ApiProperty()
@IsString()
code: string;
@ApiPropertyOptional({
description: 'Development-only mock open id until TikTok app credentials are configured.',
})
@IsOptional()
@IsString()
mockOpenId?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
tiktokUnionId?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
nickname?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
avatarUrl?: string;
}

View File

@@ -0,0 +1,42 @@
import {
CanActivate,
ExecutionContext,
Injectable,
UnauthorizedException,
} from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';
import { Request } from 'express';
import { UsersService } from '../../users/users.service';
@Injectable()
export class JwtAuthGuard implements CanActivate {
constructor(
private readonly jwtService: JwtService,
private readonly usersService: UsersService,
) {}
async canActivate(context: ExecutionContext): Promise<boolean> {
const request = context.switchToHttp().getRequest<Request & { user?: unknown }>();
const authHeader = request.get('authorization');
const token = authHeader?.startsWith('Bearer ')
? authHeader.slice('Bearer '.length)
: undefined;
if (!token) {
throw new UnauthorizedException('Not authenticated');
}
try {
const payload = await this.jwtService.verifyAsync<{ sub: number }>(token);
const user = this.usersService.findById(payload.sub);
if (!user || user.status !== 'active') {
throw new UnauthorizedException('Not authenticated');
}
request.user = user;
return true;
} catch {
throw new UnauthorizedException('Not authenticated');
}
}
}

View File

@@ -0,0 +1,6 @@
export enum PublishStatus {
Draft = 'draft',
Scheduled = 'scheduled',
Published = 'published',
Offline = 'offline',
}

View File

@@ -0,0 +1,87 @@
import { Body, Controller, Get, Param, Patch, Post, Query, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { RequirePermissions } from '../admin/decorators/require-permissions.decorator';
import { AdminJwtAuthGuard } from '../admin/guards/admin-jwt-auth.guard';
import { PermissionsGuard } from '../admin/guards/permissions.guard';
import { CreateDramaDto } from './dto/create-drama.dto';
import { CreateEpisodeDto } from './dto/create-episode.dto';
import { DramasService } from './dramas.service';
import { PublishStatus } from './drama-status.enum';
@ApiTags('Dramas')
@Controller()
export class DramasController {
constructor(private readonly dramasService: DramasService) {}
@Post('/api/admin/v1/dramas')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('drama:create')
createDrama(@Body() dto: CreateDramaDto) {
return this.dramasService.createDrama(dto);
}
@Get('/api/admin/v1/dramas')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('drama:read')
listAdminDramas(@Query('page') page?: string, @Query('pageSize') pageSize?: string) {
return this.dramasService.listAdminDramas({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Post('/api/admin/v1/episodes')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('episode:create')
createEpisode(@Body() dto: CreateEpisodeDto) {
return this.dramasService.createEpisode(dto);
}
@Post('/api/admin/v1/dramas/:id/submit-review')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('drama:update')
submitReview(@Param('id') id: string) {
return this.dramasService.submitReview(Number(id));
}
@Patch('/api/admin/v1/episodes/:id/publish-status')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('episode:update')
updatePublishStatus(
@Param('id') id: string,
@Body() dto: { publishStatus: PublishStatus },
) {
return this.dramasService.updateEpisodePublishStatus(
Number(id),
dto.publishStatus,
);
}
@Get('/api/app/v1/dramas')
listPublishedDramas(
@Query('page') page?: string,
@Query('pageSize') pageSize?: string,
) {
return this.dramasService.listPublishedDramas({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Get('/api/app/v1/dramas/:id/episodes')
listPublishedEpisodes(
@Param('id') id: string,
@Query('page') page?: string,
@Query('pageSize') pageSize?: string,
) {
return this.dramasService.listPublishedEpisodes(Number(id), {
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
}

View File

@@ -0,0 +1,12 @@
import { Module } from '@nestjs/common';
import { AdminModule } from '../admin/admin.module';
import { DramasController } from './dramas.controller';
import { DramasService } from './dramas.service';
@Module({
imports: [AdminModule],
controllers: [DramasController],
providers: [DramasService],
exports: [DramasService],
})
export class DramasModule {}

View File

@@ -0,0 +1,221 @@
import {
ConflictException,
Injectable,
NotFoundException,
} from '@nestjs/common';
import { PaginatedResponse } from '../../common/dto/paginated-response.dto';
import { CreateDramaDto } from './dto/create-drama.dto';
import { CreateEpisodeDto } from './dto/create-episode.dto';
import { PublishStatus } from './drama-status.enum';
import {
DramaRecord,
EpisodeRecord,
} from './interfaces/drama-records.interface';
interface PaginationInput {
page: number;
pageSize: number;
}
@Injectable()
export class DramasService {
private dramaSequence = 1;
private episodeSequence = 1;
private readonly dramas: DramaRecord[] = [];
private readonly episodes: EpisodeRecord[] = [];
createDrama(dto: CreateDramaDto): DramaRecord {
const now = new Date().toISOString();
const drama: DramaRecord = {
id: this.dramaSequence++,
tiktokAlbumId: dto.tiktokAlbumId,
title: dto.title,
description: dto.description,
coverId: dto.coverId,
coverUrl: dto.coverUrl,
portraitCoverUrl: dto.portraitCoverUrl,
landscapeCoverUrl: dto.landscapeCoverUrl,
type: dto.type,
tags: dto.tags ?? [],
region: dto.region,
language: dto.language,
year: dto.year,
status: dto.status ?? PublishStatus.Draft,
sortOrder: dto.sortOrder ?? 0,
isRecommended: dto.isRecommended ?? false,
onlineVersion: dto.onlineVersion ?? 1,
createdAt: now,
updatedAt: now,
};
this.dramas.push(drama);
return drama;
}
listAdminDramas(pagination: PaginationInput): PaginatedResponse<DramaRecord> {
return this.paginate(this.sortDramas(this.dramas), pagination);
}
createEpisode(dto: CreateEpisodeDto): EpisodeRecord {
const dramaId = dto.dramaId ?? dto.albumId;
const episodeNo = dto.episodeNo ?? dto.seq;
if (!dramaId || !episodeNo) {
throw new NotFoundException('Drama not found');
}
const drama = this.dramas.find((item) => item.id === dramaId);
if (!drama) {
throw new NotFoundException('Drama not found');
}
const duplicate = this.episodes.some(
(item) =>
item.dramaId === dramaId && item.episodeNo === episodeNo,
);
if (duplicate) {
throw new ConflictException('Episode number already exists in this drama');
}
const now = new Date().toISOString();
const freeType = dto.freeType ?? (dto.isPaid ? 'paid' : 'free');
const price = dto.price ?? dto.unlockPrice ?? 0;
const episode: EpisodeRecord = {
id: this.episodeSequence++,
dramaId,
albumId: dramaId,
tiktokEpisodeId: dto.tiktokEpisodeId,
episodeNo,
seq: episodeNo,
title: dto.title,
description: dto.description,
byteplusVid: dto.byteplusVid,
coverId: dto.coverId,
coverUrl: dto.coverUrl,
videoUrl: dto.videoUrl,
trialDurationSeconds: dto.trialDurationSeconds,
durationSeconds: dto.durationSeconds,
isPaid: freeType === 'paid',
freeType,
unlockPrice: price,
price,
publishAt: dto.publishAt,
nextReleaseAt: dto.nextReleaseAt,
status: dto.status ?? dto.publishStatus ?? PublishStatus.Draft,
reviewStatus: dto.reviewStatus ?? 'pending',
publishStatus: dto.publishStatus ?? dto.status ?? PublishStatus.Draft,
createdAt: now,
updatedAt: now,
};
this.episodes.push(episode);
return episode;
}
listPublishedDramas(
pagination: PaginationInput,
): PaginatedResponse<DramaRecord> {
return this.paginate(
this.sortDramas(
this.dramas.filter((item) => item.status === PublishStatus.Published),
),
pagination,
);
}
listPublishedEpisodes(
dramaId: number,
pagination: PaginationInput,
): PaginatedResponse<EpisodeRecord> {
const drama = this.dramas.find((item) => item.id === dramaId);
if (!drama || drama.status !== PublishStatus.Published) {
throw new NotFoundException('Drama not found');
}
const episodes = this.episodes
.filter(
(item) =>
item.dramaId === dramaId && item.status === PublishStatus.Published,
)
.sort((left, right) => left.episodeNo - right.episodeNo);
return this.paginate(episodes, pagination);
}
getPublishedEpisodeOrThrow(episodeId: number): EpisodeRecord {
const episode = this.episodes.find((item) => item.id === episodeId);
if (!episode || episode.status !== PublishStatus.Published) {
throw new NotFoundException('Episode not found');
}
const drama = this.dramas.find((item) => item.id === episode.dramaId);
if (!drama || drama.status !== PublishStatus.Published) {
throw new NotFoundException('Episode not found');
}
return episode;
}
getEpisodeOrThrow(episodeId: number): EpisodeRecord {
const episode = this.episodes.find((item) => item.id === episodeId);
if (!episode) {
throw new NotFoundException('Episode not found');
}
return episode;
}
submitReview(albumId: number) {
const album = this.dramas.find((item) => item.id === albumId);
if (!album) {
throw new NotFoundException('Drama not found');
}
this.episodes
.filter((episode) => episode.albumId === albumId)
.forEach((episode) => {
episode.reviewStatus = 'pending';
episode.updatedAt = new Date().toISOString();
});
return {
albumId,
reviewStatus: 'pending',
};
}
updateEpisodePublishStatus(episodeId: number, publishStatus: PublishStatus) {
const episode = this.getEpisodeOrThrow(episodeId);
episode.publishStatus = publishStatus;
episode.status = publishStatus;
episode.updatedAt = new Date().toISOString();
return episode;
}
private sortDramas(records: DramaRecord[]) {
return [...records].sort((left, right) => {
if (right.sortOrder !== left.sortOrder) {
return right.sortOrder - left.sortOrder;
}
return right.id - left.id;
});
}
private paginate<T>(
records: T[],
input: PaginationInput,
): PaginatedResponse<T> {
const page = Math.max(input.page, 1);
const pageSize = Math.min(Math.max(input.pageSize, 1), 100);
const start = (page - 1) * pageSize;
return {
list: records.slice(start, start + pageSize),
pagination: {
page,
pageSize,
total: records.length,
},
};
}
}

View File

@@ -0,0 +1,96 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import {
IsArray,
IsBoolean,
IsEnum,
IsInt,
IsOptional,
IsString,
IsUrl,
Min,
} from 'class-validator';
import { PublishStatus } from '../drama-status.enum';
export class CreateDramaDto {
@ApiPropertyOptional()
@IsOptional()
@IsString()
tiktokAlbumId?: string;
@ApiProperty()
@IsString()
title: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
description?: string;
@ApiProperty()
@IsOptional()
@IsUrl({ require_tld: false })
coverUrl: string;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1)
coverId?: number;
@ApiPropertyOptional()
@IsOptional()
@IsUrl({ require_tld: false })
portraitCoverUrl?: string;
@ApiPropertyOptional()
@IsOptional()
@IsUrl({ require_tld: false })
landscapeCoverUrl?: string;
@ApiProperty()
@IsString()
type: string;
@ApiPropertyOptional({ type: [String] })
@IsOptional()
@IsArray()
@IsString({ each: true })
tags?: string[];
@ApiPropertyOptional()
@IsOptional()
@IsString()
region?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
language?: string;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1900)
year?: number;
@ApiPropertyOptional({ enum: PublishStatus })
@IsOptional()
@IsEnum(PublishStatus)
status?: PublishStatus;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
sortOrder?: number;
@ApiPropertyOptional()
@IsOptional()
@IsBoolean()
isRecommended?: boolean;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1)
onlineVersion?: number;
}

View File

@@ -0,0 +1,131 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import {
IsBoolean,
IsDateString,
IsEnum,
IsInt,
IsOptional,
IsString,
IsUrl,
Min,
} from 'class-validator';
import { PublishStatus } from '../drama-status.enum';
export class CreateEpisodeDto {
@ApiProperty()
@IsOptional()
@IsInt()
@Min(1)
dramaId?: number;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1)
albumId?: number;
@ApiPropertyOptional()
@IsOptional()
@IsString()
tiktokEpisodeId?: string;
@ApiProperty()
@IsOptional()
@IsInt()
@Min(1)
episodeNo?: number;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1)
seq?: number;
@ApiProperty()
@IsString()
title: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
description?: string;
@ApiProperty()
@IsOptional()
@IsUrl({ require_tld: false })
coverUrl: string;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(1)
coverId?: number;
@ApiProperty()
@IsOptional()
@IsUrl({ require_tld: false })
videoUrl?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
byteplusVid?: string;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(0)
trialDurationSeconds?: number;
@ApiProperty()
@IsInt()
@Min(1)
durationSeconds: number;
@ApiPropertyOptional()
@IsOptional()
@IsBoolean()
isPaid?: boolean;
@ApiPropertyOptional({ enum: ['free', 'paid'] })
@IsOptional()
@IsString()
freeType?: 'free' | 'paid';
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(0)
unlockPrice?: number;
@ApiPropertyOptional()
@IsOptional()
@IsInt()
@Min(0)
price?: number;
@ApiPropertyOptional()
@IsOptional()
@IsDateString()
publishAt?: string;
@ApiPropertyOptional()
@IsOptional()
@IsDateString()
nextReleaseAt?: string;
@ApiPropertyOptional({ enum: PublishStatus })
@IsOptional()
@IsEnum(PublishStatus)
status?: PublishStatus;
@ApiPropertyOptional({ enum: ['pending', 'approved', 'rejected'] })
@IsOptional()
@IsString()
reviewStatus?: 'pending' | 'approved' | 'rejected';
@ApiPropertyOptional({ enum: PublishStatus })
@IsOptional()
@IsEnum(PublishStatus)
publishStatus?: PublishStatus;
}

View File

@@ -0,0 +1,59 @@
import {
Column,
CreateDateColumn,
Entity,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
import { PublishStatus } from '../drama-status.enum';
@Entity('dramas')
export class Drama {
@PrimaryGeneratedColumn()
id: number;
@Column({ type: 'varchar', length: 255 })
title: string;
@Column({ type: 'text', nullable: true })
description?: string;
@Column({ type: 'varchar', length: 1024 })
coverUrl: string;
@Column({ type: 'varchar', length: 1024, nullable: true })
portraitCoverUrl?: string;
@Column({ type: 'varchar', length: 1024, nullable: true })
landscapeCoverUrl?: string;
@Column({ type: 'varchar', length: 128 })
type: string;
@Column({ type: 'json', nullable: true })
tags?: string[];
@Column({ type: 'varchar', length: 64, nullable: true })
region?: string;
@Column({ type: 'varchar', length: 32, nullable: true })
language?: string;
@Column({ type: 'int', nullable: true })
year?: number;
@Column({ type: 'varchar', length: 32, default: PublishStatus.Draft })
status: PublishStatus;
@Column({ type: 'int', default: 0 })
sortOrder: number;
@Column({ type: 'boolean', default: false })
isRecommended: boolean;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,61 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
import { PublishStatus } from '../drama-status.enum';
@Entity('episodes')
@Index(['dramaId', 'episodeNo'], { unique: true })
export class Episode {
@PrimaryGeneratedColumn()
id: number;
@Column({ type: 'bigint' })
dramaId: number;
@Column({ type: 'int' })
episodeNo: number;
@Column({ type: 'varchar', length: 255 })
title: string;
@Column({ type: 'text', nullable: true })
description?: string;
@Column({ type: 'varchar', length: 1024 })
coverUrl: string;
@Column({ type: 'varchar', length: 1024 })
videoUrl: string;
@Column({ type: 'int', nullable: true })
trialDurationSeconds?: number;
@Column({ type: 'int' })
durationSeconds: number;
@Column({ type: 'boolean', default: false })
isPaid: boolean;
@Column({ type: 'int', nullable: true })
unlockPrice?: number;
@Column({ type: 'datetime', nullable: true })
publishAt?: Date;
@Column({ type: 'datetime', nullable: true })
nextReleaseAt?: Date;
@Column({ type: 'varchar', length: 32, default: PublishStatus.Draft })
status: PublishStatus;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,51 @@
import { PublishStatus } from '../drama-status.enum';
export interface DramaRecord {
id: number;
tiktokAlbumId?: string;
title: string;
description?: string;
coverId?: number;
coverUrl: string;
portraitCoverUrl?: string;
landscapeCoverUrl?: string;
type: string;
tags: string[];
region?: string;
language?: string;
year?: number;
status: PublishStatus;
sortOrder: number;
isRecommended: boolean;
onlineVersion: number;
createdAt: string;
updatedAt: string;
}
export interface EpisodeRecord {
id: number;
dramaId: number;
albumId: number;
tiktokEpisodeId?: string;
episodeNo: number;
seq: number;
title: string;
description?: string;
byteplusVid?: string;
coverId?: number;
coverUrl: string;
videoUrl?: string;
trialDurationSeconds?: number;
durationSeconds: number;
isPaid: boolean;
freeType: 'free' | 'paid';
unlockPrice?: number;
price: number;
publishAt?: string;
nextReleaseAt?: string;
status: PublishStatus;
reviewStatus: 'pending' | 'approved' | 'rejected';
publishStatus: PublishStatus;
createdAt: string;
updatedAt: string;
}

View File

@@ -0,0 +1,11 @@
import { Controller, Get } from '@nestjs/common';
import { ApiTags } from '@nestjs/swagger';
@ApiTags('Health')
@Controller('/api/app/v1/health')
export class HealthController {
@Get()
getHealth() {
return { status: 'ok' };
}
}

View File

@@ -0,0 +1,7 @@
import { Module } from '@nestjs/common';
import { HealthController } from './health.controller';
@Module({
controllers: [HealthController],
})
export class HealthModule {}

View File

@@ -0,0 +1,12 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsString, IsUrl } from 'class-validator';
export class CreateCoverDto {
@ApiProperty()
@IsString()
fileName: string;
@ApiProperty()
@IsUrl({ require_tld: false })
url: string;
}

View File

@@ -0,0 +1,22 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import { IsObject, IsOptional, IsString } from 'class-validator';
export class CreateUploadJobDto {
@ApiProperty()
@IsString()
jobId: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
byteplusVid?: string;
@ApiProperty()
@IsString()
status: string;
@ApiPropertyOptional()
@IsOptional()
@IsObject()
rawResponse?: Record<string, unknown>;
}

View File

@@ -0,0 +1,34 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('media_upload_jobs')
export class MediaUploadJob {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 128 })
jobId: string;
@Index()
@Column({ type: 'varchar', length: 128, nullable: true })
byteplusVid?: string;
@Column({ type: 'varchar', length: 64 })
status: string;
@Column({ type: 'json', nullable: true })
rawResponse?: Record<string, unknown>;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,16 @@
export interface CoverRecord {
id: number;
fileName: string;
url: string;
createdAt: string;
}
export interface MediaUploadJobRecord {
id: number;
jobId: string;
byteplusVid?: string;
status: string;
rawResponse?: Record<string, unknown>;
createdAt: string;
updatedAt: string;
}

View File

@@ -0,0 +1,40 @@
import { Body, Controller, Get, Post, Query, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { RequirePermissions } from '../admin/decorators/require-permissions.decorator';
import { AdminJwtAuthGuard } from '../admin/guards/admin-jwt-auth.guard';
import { PermissionsGuard } from '../admin/guards/permissions.guard';
import { CreateCoverDto } from './dto/create-cover.dto';
import { CreateUploadJobDto } from './dto/create-upload-job.dto';
import { MediaService } from './media.service';
@ApiTags('Media')
@Controller('/api/admin/v1/media')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
export class MediaController {
constructor(private readonly mediaService: MediaService) {}
@Post('/covers')
@RequirePermissions('media:create')
createCover(@Body() dto: CreateCoverDto) {
return this.mediaService.createCover(dto);
}
@Post('/upload-jobs')
@RequirePermissions('media:create')
createUploadJob(@Body() dto: CreateUploadJobDto) {
return this.mediaService.createUploadJob(dto);
}
@Get('/upload-jobs')
@RequirePermissions('media:read')
listUploadJobs(
@Query('page') page?: string,
@Query('pageSize') pageSize?: string,
) {
return this.mediaService.listUploadJobs({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
}

View File

@@ -0,0 +1,12 @@
import { Module } from '@nestjs/common';
import { AdminModule } from '../admin/admin.module';
import { MediaController } from './media.controller';
import { MediaService } from './media.service';
@Module({
imports: [AdminModule],
controllers: [MediaController],
providers: [MediaService],
exports: [MediaService],
})
export class MediaModule {}

View File

@@ -0,0 +1,65 @@
import { Injectable } from '@nestjs/common';
import { PaginatedResponse } from '../../common/dto/paginated-response.dto';
import { CreateCoverDto } from './dto/create-cover.dto';
import { CreateUploadJobDto } from './dto/create-upload-job.dto';
import {
CoverRecord,
MediaUploadJobRecord,
} from './interfaces/media-records.interface';
interface PaginationInput {
page: number;
pageSize: number;
}
@Injectable()
export class MediaService {
private coverSequence = 1;
private uploadJobSequence = 1;
private readonly covers: CoverRecord[] = [];
private readonly uploadJobs: MediaUploadJobRecord[] = [];
createCover(dto: CreateCoverDto): CoverRecord {
const cover: CoverRecord = {
id: this.coverSequence++,
fileName: dto.fileName,
url: dto.url,
createdAt: new Date().toISOString(),
};
this.covers.push(cover);
return cover;
}
createUploadJob(dto: CreateUploadJobDto): MediaUploadJobRecord {
const now = new Date().toISOString();
const job: MediaUploadJobRecord = {
id: this.uploadJobSequence++,
jobId: dto.jobId,
byteplusVid: dto.byteplusVid,
status: dto.status,
rawResponse: dto.rawResponse,
createdAt: now,
updatedAt: now,
};
this.uploadJobs.push(job);
return job;
}
listUploadJobs(
input: PaginationInput,
): PaginatedResponse<MediaUploadJobRecord> {
const page = Math.max(input.page, 1);
const pageSize = Math.min(Math.max(input.pageSize, 1), 100);
const start = (page - 1) * pageSize;
const records = [...this.uploadJobs].reverse();
return {
list: records.slice(start, start + pageSize),
pagination: {
page,
pageSize,
total: records.length,
},
};
}
}

View File

@@ -0,0 +1,9 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsInt, Min } from 'class-validator';
export class CreateOrderDto {
@ApiProperty()
@IsInt()
@Min(1)
episodeId: number;
}

View File

@@ -0,0 +1,32 @@
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
import { IsIn, IsOptional, IsString } from 'class-validator';
export class TikTokPaymentWebhookDto {
@ApiPropertyOptional()
@IsOptional()
@IsString()
orderNo?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
tradeOrderId?: string;
@ApiPropertyOptional()
@IsOptional()
@IsString()
tiktokOrderId?: string;
@ApiProperty()
@IsString()
providerTransactionId: string;
@ApiProperty({ enum: ['paid', 'failed'] })
@IsIn(['paid', 'failed'])
status: 'paid' | 'failed';
@ApiPropertyOptional()
@IsOptional()
@IsString()
signature?: string;
}

View File

@@ -0,0 +1,49 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('orders')
export class Order {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 64 })
orderNo: string;
@Index({ unique: true })
@Column({ type: 'varchar', length: 64 })
tradeOrderId: string;
@Column({ type: 'bigint' })
userId: number;
@Column({ type: 'bigint' })
albumId: number;
@Column({ type: 'bigint' })
episodeId: number;
@Column({ type: 'int' })
amount: number;
@Column({ type: 'varchar', length: 32 })
status: string;
@Column({ type: 'varchar', length: 128, nullable: true })
providerTransactionId?: string;
@Column({ type: 'varchar', length: 128, nullable: true })
tiktokOrderId?: string;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,29 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
} from 'typeorm';
@Entity('user_episode_unlocks')
@Index(['userId', 'episodeId'], { unique: true })
export class UserEpisodeUnlock {
@PrimaryGeneratedColumn()
id: number;
@Column({ type: 'bigint' })
userId: number;
@Column({ type: 'bigint' })
episodeId: number;
@Column({ type: 'varchar', length: 64 })
orderNo: string;
@Column({ type: 'varchar', length: 32 })
source: string;
@CreateDateColumn()
createdAt: Date;
}

View File

@@ -0,0 +1,25 @@
export type OrderStatus = 'pending' | 'paid' | 'failed';
export interface OrderRecord {
id: number;
orderNo: string;
tradeOrderId: string;
userId: number;
albumId: number;
episodeId: number;
tiktokOrderId?: string;
amount: number;
status: OrderStatus;
providerTransactionId?: string;
createdAt: string;
updatedAt: string;
}
export interface UserEpisodeUnlockRecord {
id: number;
userId: number;
episodeId: number;
source: 'payment' | 'admin' | 'free';
orderNo: string;
createdAt: string;
}

View File

@@ -0,0 +1,50 @@
import { Body, Controller, Get, Param, Post, Query, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { RequirePermissions } from '../admin/decorators/require-permissions.decorator';
import { AdminJwtAuthGuard } from '../admin/guards/admin-jwt-auth.guard';
import { PermissionsGuard } from '../admin/guards/permissions.guard';
import { CurrentUser } from '../auth/decorators/current-user.decorator';
import { JwtAuthGuard } from '../auth/guards/jwt-auth.guard';
import { UserRecord } from '../users/interfaces/user-record.interface';
import { CreateOrderDto } from './dto/create-order.dto';
import { TikTokPaymentWebhookDto } from './dto/tiktok-payment-webhook.dto';
import { OrdersService } from './orders.service';
@ApiTags('Orders')
@Controller()
export class OrdersController {
constructor(private readonly ordersService: OrdersService) {}
@Post('/api/app/v1/orders')
@ApiBearerAuth()
@UseGuards(JwtAuthGuard)
createOrder(@CurrentUser() user: UserRecord, @Body() dto: CreateOrderDto) {
return this.ordersService.createOrder(user, dto);
}
@Get('/api/app/v1/episodes/:id/play')
@ApiBearerAuth()
@UseGuards(JwtAuthGuard)
getPlayback(@CurrentUser() user: UserRecord, @Param('id') id: string) {
return this.ordersService.getPlayback(user, Number(id));
}
@Post('/api/webhooks/tiktok/payments')
handlePaymentWebhook(@Body() dto: TikTokPaymentWebhookDto) {
return this.ordersService.handlePaymentWebhook(dto);
}
@Get('/api/admin/v1/unlock-records')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
@RequirePermissions('payment:read')
listUnlockRecords(
@Query('page') page?: string,
@Query('pageSize') pageSize?: string,
) {
return this.ordersService.listUnlockRecords({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
}

View File

@@ -0,0 +1,15 @@
import { Module } from '@nestjs/common';
import { AuthModule } from '../auth/auth.module';
import { AdminModule } from '../admin/admin.module';
import { DramasModule } from '../dramas/dramas.module';
import { UsersModule } from '../users/users.module';
import { OrdersController } from './orders.controller';
import { OrdersService } from './orders.service';
@Module({
imports: [AdminModule, AuthModule, DramasModule, UsersModule],
controllers: [OrdersController],
providers: [OrdersService],
exports: [OrdersService],
})
export class OrdersModule {}

View File

@@ -0,0 +1,147 @@
import {
Injectable,
NotFoundException,
UnprocessableEntityException,
} from '@nestjs/common';
import { PaginatedResponse } from '../../common/dto/paginated-response.dto';
import { DramasService } from '../dramas/dramas.service';
import { UserRecord } from '../users/interfaces/user-record.interface';
import { CreateOrderDto } from './dto/create-order.dto';
import { TikTokPaymentWebhookDto } from './dto/tiktok-payment-webhook.dto';
import {
OrderRecord,
UserEpisodeUnlockRecord,
} from './interfaces/order-records.interface';
@Injectable()
export class OrdersService {
private orderSequence = 1;
private unlockSequence = 1;
private readonly orders: OrderRecord[] = [];
private readonly unlocks: UserEpisodeUnlockRecord[] = [];
constructor(private readonly dramasService: DramasService) {}
createOrder(user: UserRecord, dto: CreateOrderDto): OrderRecord {
const episode = this.dramasService.getPublishedEpisodeOrThrow(dto.episodeId);
if (!episode.isPaid) {
throw new UnprocessableEntityException('Episode is free');
}
const now = new Date().toISOString();
const order: OrderRecord = {
id: this.orderSequence++,
orderNo: this.createOrderNo(),
tradeOrderId: this.createTradeOrderId(),
userId: user.id,
albumId: episode.albumId,
episodeId: episode.id,
amount: episode.price ?? episode.unlockPrice ?? 0,
status: 'pending',
createdAt: now,
updatedAt: now,
};
this.orders.push(order);
return order;
}
getPlayback(user: UserRecord, episodeId: number) {
const episode = this.dramasService.getPublishedEpisodeOrThrow(episodeId);
const isUnlocked =
!episode.isPaid ||
this.unlocks.some(
(unlock) => unlock.userId === user.id && unlock.episodeId === episodeId,
);
return {
episodeId: episode.id,
dramaId: episode.dramaId,
albumId: episode.albumId,
isLocked: !isUnlocked,
isPaid: episode.isPaid,
trialDurationSeconds: episode.trialDurationSeconds,
durationSeconds: episode.durationSeconds,
videoUrl: isUnlocked ? episode.videoUrl : null,
};
}
handlePaymentWebhook(dto: TikTokPaymentWebhookDto) {
const order = this.orders.find(
(item) =>
item.orderNo === dto.orderNo || item.tradeOrderId === dto.tradeOrderId,
);
if (!order) {
throw new NotFoundException('Order not found');
}
if (order.status === 'paid') {
return {
orderNo: order.orderNo,
status: order.status,
unlocked: this.isUnlocked(order.userId, order.episodeId),
};
}
order.providerTransactionId = dto.providerTransactionId;
order.tiktokOrderId = dto.tiktokOrderId ?? order.tiktokOrderId;
order.status = dto.status;
order.updatedAt = new Date().toISOString();
if (dto.status === 'paid' && !this.isUnlocked(order.userId, order.episodeId)) {
this.unlocks.push({
id: this.unlockSequence++,
userId: order.userId,
episodeId: order.episodeId,
source: 'payment',
orderNo: order.orderNo,
createdAt: new Date().toISOString(),
});
}
return {
orderNo: order.orderNo,
tradeOrderId: order.tradeOrderId,
status: order.status,
unlocked: this.isUnlocked(order.userId, order.episodeId),
};
}
hasEpisodePermission(userId: number, episodeId: number) {
const episode = this.dramasService.getPublishedEpisodeOrThrow(episodeId);
return !episode.isPaid || this.isUnlocked(userId, episodeId);
}
listUnlockRecords(input: {
page: number;
pageSize: number;
}): PaginatedResponse<UserEpisodeUnlockRecord> {
const page = Math.max(input.page, 1);
const pageSize = Math.min(Math.max(input.pageSize, 1), 100);
const start = (page - 1) * pageSize;
const records = [...this.unlocks].reverse();
return {
list: records.slice(start, start + pageSize),
pagination: {
page,
pageSize,
total: records.length,
},
};
}
private isUnlocked(userId: number, episodeId: number) {
return this.unlocks.some(
(unlock) => unlock.userId === userId && unlock.episodeId === episodeId,
);
}
private createOrderNo() {
return `ORD${Date.now()}${String(this.orderSequence).padStart(6, '0')}`;
}
private createTradeOrderId() {
return `TRADE${Date.now()}${String(this.orderSequence).padStart(6, '0')}`;
}
}

View File

@@ -0,0 +1,19 @@
import { Controller, Get, Param, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { CurrentUser } from '../auth/decorators/current-user.decorator';
import { JwtAuthGuard } from '../auth/guards/jwt-auth.guard';
import { UserRecord } from '../users/interfaces/user-record.interface';
import { PlayerService } from './player.service';
@ApiTags('Player')
@Controller('/api/app/v1/player')
export class PlayerController {
constructor(private readonly playerService: PlayerService) {}
@Get('/episodes/:id')
@ApiBearerAuth()
@UseGuards(JwtAuthGuard)
getEpisodePlayer(@CurrentUser() user: UserRecord, @Param('id') id: string) {
return this.playerService.getEpisodePlayer(user, Number(id));
}
}

View File

@@ -0,0 +1,14 @@
import { Module } from '@nestjs/common';
import { AuthModule } from '../auth/auth.module';
import { DramasModule } from '../dramas/dramas.module';
import { OrdersModule } from '../orders/orders.module';
import { UsersModule } from '../users/users.module';
import { PlayerController } from './player.controller';
import { PlayerService } from './player.service';
@Module({
imports: [AuthModule, DramasModule, OrdersModule, UsersModule],
controllers: [PlayerController],
providers: [PlayerService],
})
export class PlayerModule {}

View File

@@ -0,0 +1,30 @@
import { Injectable } from '@nestjs/common';
import { DramasService } from '../dramas/dramas.service';
import { OrdersService } from '../orders/orders.service';
import { UserRecord } from '../users/interfaces/user-record.interface';
@Injectable()
export class PlayerService {
constructor(
private readonly dramasService: DramasService,
private readonly ordersService: OrdersService,
) {}
getEpisodePlayer(user: UserRecord, episodeId: number) {
const episode = this.dramasService.getPublishedEpisodeOrThrow(episodeId);
const hasPermission = this.ordersService.hasEpisodePermission(
user.id,
episode.id,
);
return {
albumId: episode.albumId,
episodeId: episode.id,
vid: episode.byteplusVid,
hasPermission,
playAuthToken: hasPermission
? `play_auth_${episode.byteplusVid ?? episode.id}_${user.id}`
: null,
};
}
}

View File

@@ -0,0 +1,8 @@
import { ApiProperty } from '@nestjs/swagger';
import { IsIn } from 'class-validator';
export class UpdateUserStatusDto {
@ApiProperty({ enum: ['active', 'disabled'] })
@IsIn(['active', 'disabled'])
status: 'active' | 'disabled';
}

View File

@@ -0,0 +1,37 @@
import {
Column,
CreateDateColumn,
Entity,
Index,
PrimaryGeneratedColumn,
UpdateDateColumn,
} from 'typeorm';
@Entity('users')
export class User {
@PrimaryGeneratedColumn()
id: number;
@Index({ unique: true })
@Column({ type: 'varchar', length: 128 })
tiktokOpenId: string;
@Index()
@Column({ type: 'varchar', length: 128, nullable: true })
tiktokUnionId?: string;
@Column({ type: 'varchar', length: 128, nullable: true })
nickname?: string;
@Column({ type: 'varchar', length: 1024, nullable: true })
avatarUrl?: string;
@Column({ type: 'varchar', length: 32, default: 'active' })
status: string;
@CreateDateColumn()
createdAt: Date;
@UpdateDateColumn()
updatedAt: Date;
}

View File

@@ -0,0 +1,10 @@
export interface UserRecord {
id: number;
tiktokOpenId: string;
tiktokUnionId?: string;
nickname?: string;
avatarUrl?: string;
status: 'active' | 'disabled';
createdAt: string;
updatedAt: string;
}

View File

@@ -0,0 +1,36 @@
import { Body, Controller, Get, Param, Patch, Query, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
import { RequirePermissions } from '../admin/decorators/require-permissions.decorator';
import { AdminJwtAuthGuard } from '../admin/guards/admin-jwt-auth.guard';
import { PermissionsGuard } from '../admin/guards/permissions.guard';
import { UpdateUserStatusDto } from './dto/update-user-status.dto';
import { UsersService } from './users.service';
@ApiTags('Users')
@Controller('/api/admin/v1/users')
@ApiBearerAuth()
@UseGuards(AdminJwtAuthGuard, PermissionsGuard)
export class UsersController {
constructor(private readonly usersService: UsersService) {}
@Get()
@RequirePermissions('user:read')
listUsers(@Query('page') page?: string, @Query('pageSize') pageSize?: string) {
return this.usersService.listUsers({
page: Number(page) || 1,
pageSize: Number(pageSize) || 20,
});
}
@Get('/:id')
@RequirePermissions('user:read')
getUser(@Param('id') id: string) {
return this.usersService.getUserOrThrow(Number(id));
}
@Patch('/:id/status')
@RequirePermissions('user:update')
updateStatus(@Param('id') id: string, @Body() dto: UpdateUserStatusDto) {
return this.usersService.updateStatus(Number(id), dto.status);
}
}

View File

@@ -0,0 +1,12 @@
import { Module } from '@nestjs/common';
import { AdminModule } from '../admin/admin.module';
import { UsersController } from './users.controller';
import { UsersService } from './users.service';
@Module({
imports: [AdminModule],
controllers: [UsersController],
providers: [UsersService],
exports: [UsersService],
})
export class UsersModule {}

View File

@@ -0,0 +1,92 @@
import { Injectable, NotFoundException } from '@nestjs/common';
import { PaginatedResponse } from '../../common/dto/paginated-response.dto';
import { UserRecord } from './interfaces/user-record.interface';
interface UpsertTikTokUserInput {
tiktokOpenId: string;
tiktokUnionId?: string;
nickname?: string;
avatarUrl?: string;
}
interface PaginationInput {
page: number;
pageSize: number;
}
@Injectable()
export class UsersService {
private userSequence = 1;
private readonly users: UserRecord[] = [];
upsertTikTokUser(input: UpsertTikTokUserInput) {
const existing = this.users.find(
(user) => user.tiktokOpenId === input.tiktokOpenId,
);
const now = new Date().toISOString();
if (existing) {
existing.tiktokUnionId = input.tiktokUnionId ?? existing.tiktokUnionId;
existing.nickname = input.nickname ?? existing.nickname;
existing.avatarUrl = input.avatarUrl ?? existing.avatarUrl;
existing.updatedAt = now;
return { user: existing, isNewUser: false };
}
const user: UserRecord = {
id: this.userSequence++,
tiktokOpenId: input.tiktokOpenId,
tiktokUnionId: input.tiktokUnionId,
nickname: input.nickname,
avatarUrl: input.avatarUrl,
status: 'active',
createdAt: now,
updatedAt: now,
};
this.users.push(user);
return { user, isNewUser: true };
}
findById(id: number) {
return this.users.find((user) => user.id === id);
}
listUsers(pagination: PaginationInput): PaginatedResponse<UserRecord> {
return this.paginate([...this.users].reverse(), pagination);
}
getUserOrThrow(id: number) {
const user = this.findById(id);
if (!user) {
throw new NotFoundException('User not found');
}
return user;
}
updateStatus(id: number, status: 'active' | 'disabled') {
const user = this.getUserOrThrow(id);
user.status = status;
user.updatedAt = new Date().toISOString();
return user;
}
private paginate<T>(
records: T[],
input: PaginationInput,
): PaginatedResponse<T> {
const page = Math.max(input.page, 1);
const pageSize = Math.min(Math.max(input.pageSize, 1), 100);
const start = (page - 1) * pageSize;
return {
list: records.slice(start, start + pageSize),
pagination: {
page,
pageSize,
total: records.length,
},
};
}
}

View File

@@ -0,0 +1,375 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('Admin permissions and user management', () => {
let app: INestApplication;
let superAdminToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
superAdminToken = await loginAdmin(app);
});
afterAll(async () => {
await app.close();
});
it('requires admin authentication for admin APIs', async () => {
const response = await request(app.getHttpServer())
.get('/api/admin/v1/users')
.expect(401);
expect(response.body).toMatchObject({
code: 401,
data: {},
message: 'Admin not authenticated',
});
});
it('creates permissions, roles, admin users, and enforces permission checks', async () => {
const permissions = await request(app.getHttpServer())
.get('/api/admin/v1/permissions')
.set('Authorization', `Bearer ${superAdminToken}`)
.expect(200);
expect(permissions.body.data.list).toEqual(
expect.arrayContaining([
expect.objectContaining({
code: 'permission:read',
name: '查看权限',
}),
expect.objectContaining({
code: 'permission:create',
name: '创建权限',
}),
]),
);
const dramaReadPermission = permissions.body.data.list.find(
(permission: { code: string }) => permission.code === 'drama:read',
);
const role = await request(app.getHttpServer())
.post('/api/admin/v1/roles')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
code: 'drama_viewer',
name: 'Drama Viewer',
description: 'Can only view dramas',
permissionIds: [dramaReadPermission.id],
})
.expect(201);
const admin = await request(app.getHttpServer())
.post('/api/admin/v1/admin-users')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
username: 'viewer',
password: 'viewer123',
nickname: 'Viewer',
email: 'viewer@example.com',
roleIds: [role.body.data.id],
})
.expect(201);
expect(admin.body.data).toMatchObject({
username: 'viewer',
nickname: 'Viewer',
email: 'viewer@example.com',
status: 'active',
roles: [expect.objectContaining({ code: 'drama_viewer' })],
});
expect(admin.body.data.passwordHash).toBeUndefined();
const viewerLogin = await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({ username: 'viewer', password: 'viewer123' })
.expect(201);
await request(app.getHttpServer())
.get('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${viewerLogin.body.data.accessToken}`)
.expect(200);
const forbidden = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${viewerLogin.body.data.accessToken}`)
.send({
title: 'Forbidden Create',
coverUrl: 'https://cdn.example.com/forbidden.jpg',
type: 'test',
status: 'draft',
})
.expect(403);
expect(forbidden.body).toMatchObject({
code: 403,
data: {},
message: 'No permission',
});
});
it('updates role permissions from the role permission assignment endpoint', async () => {
const permissions = await request(app.getHttpServer())
.get('/api/admin/v1/permissions')
.set('Authorization', `Bearer ${superAdminToken}`)
.expect(200);
const dramaReadPermission = permissions.body.data.list.find(
(permission: { code: string }) => permission.code === 'drama:read',
);
const role = await request(app.getHttpServer())
.post('/api/admin/v1/roles')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
code: 'assignable_role',
name: 'Assignable Role',
description: 'Role permissions can be assigned later',
permissionIds: [],
})
.expect(201);
const updatedRole = await request(app.getHttpServer())
.patch(`/api/admin/v1/roles/${role.body.data.id}/permissions`)
.set('Authorization', `Bearer ${superAdminToken}`)
.send({ permissionIds: [dramaReadPermission.id] })
.expect(200);
expect(updatedRole.body.data).toMatchObject({
id: role.body.data.id,
permissionIds: [dramaReadPermission.id],
permissions: [expect.objectContaining({ code: 'drama:read' })],
});
});
it('creates roles with assigned permissions and rejects duplicate role codes', async () => {
const permissions = await request(app.getHttpServer())
.get('/api/admin/v1/permissions')
.set('Authorization', `Bearer ${superAdminToken}`)
.expect(200);
const roleReadPermission = permissions.body.data.list.find(
(permission: { code: string }) => permission.code === 'role:read',
);
const roleCreatePermission = permissions.body.data.list.find(
(permission: { code: string }) => permission.code === 'role:create',
);
const createdRole = await request(app.getHttpServer())
.post('/api/admin/v1/roles')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
code: 'system_operator',
name: 'System Operator',
description: 'Can manage system roles',
permissionIds: [roleReadPermission.id, roleCreatePermission.id],
})
.expect(201);
expect(createdRole.body.data).toMatchObject({
code: 'system_operator',
name: 'System Operator',
permissionIds: [roleReadPermission.id, roleCreatePermission.id],
permissions: [
expect.objectContaining({ code: 'role:read' }),
expect.objectContaining({ code: 'role:create' }),
],
});
const duplicate = await request(app.getHttpServer())
.post('/api/admin/v1/roles')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
code: 'system_operator',
name: 'Duplicated System Operator',
})
.expect(409);
expect(duplicate.body).toMatchObject({
code: 409,
data: {},
message: 'Role code already exists',
});
});
it('allows the current admin to change password with the old password', async () => {
const admin = await request(app.getHttpServer())
.post('/api/admin/v1/admin-users')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
username: 'password-user',
password: 'oldpass123',
nickname: 'Password User',
email: 'password-user@example.com',
})
.expect(201);
expect(admin.body.data.passwordHash).toBeUndefined();
const login = await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({ username: 'password-user', password: 'oldpass123' })
.expect(201);
await request(app.getHttpServer())
.patch('/api/admin/v1/auth/password')
.set('Authorization', `Bearer ${login.body.data.accessToken}`)
.send({ oldPassword: 'wrongpass', newPassword: 'newpass123' })
.expect(422);
const changed = await request(app.getHttpServer())
.patch('/api/admin/v1/auth/password')
.set('Authorization', `Bearer ${login.body.data.accessToken}`)
.send({ oldPassword: 'oldpass123', newPassword: 'newpass123' })
.expect(200);
expect(changed.body.data).toEqual({});
await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({ username: 'password-user', password: 'oldpass123' })
.expect(401);
await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({ username: 'password-user', password: 'newpass123' })
.expect(201);
});
it('allows the current admin to view and update profile information', async () => {
await request(app.getHttpServer())
.post('/api/admin/v1/admin-users')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
username: 'profile-user',
password: 'profile123',
nickname: 'Profile User',
email: 'profile-user@example.com',
})
.expect(201);
const login = await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({ username: 'profile-user', password: 'profile123' })
.expect(201);
const updated = await request(app.getHttpServer())
.patch('/api/admin/v1/auth/profile')
.set('Authorization', `Bearer ${login.body.data.accessToken}`)
.send({
nickname: 'Updated Profile User',
email: 'updated-profile-user@example.com',
})
.expect(200);
expect(updated.body.data).toMatchObject({
username: 'profile-user',
nickname: 'Updated Profile User',
email: 'updated-profile-user@example.com',
});
expect(updated.body.data.passwordHash).toBeUndefined();
const profile = await request(app.getHttpServer())
.get('/api/admin/v1/auth/profile')
.set('Authorization', `Bearer ${login.body.data.accessToken}`)
.expect(200);
expect(profile.body.data).toMatchObject({
username: 'profile-user',
nickname: 'Updated Profile User',
email: 'updated-profile-user@example.com',
});
});
it('assigns roles to existing admin users', async () => {
const permissions = await request(app.getHttpServer())
.get('/api/admin/v1/permissions')
.set('Authorization', `Bearer ${superAdminToken}`)
.expect(200);
const userReadPermission = permissions.body.data.list.find(
(permission: { code: string }) => permission.code === 'user:read',
);
const role = await request(app.getHttpServer())
.post('/api/admin/v1/roles')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
code: 'user_reader',
name: 'User Reader',
permissionIds: [userReadPermission.id],
})
.expect(201);
const admin = await request(app.getHttpServer())
.post('/api/admin/v1/admin-users')
.set('Authorization', `Bearer ${superAdminToken}`)
.send({
username: 'role-assignee',
password: 'assign123',
nickname: 'Role Assignee',
email: 'role-assignee@example.com',
roleIds: [],
})
.expect(201);
const assigned = await request(app.getHttpServer())
.patch(`/api/admin/v1/admin-users/${admin.body.data.id}/roles`)
.set('Authorization', `Bearer ${superAdminToken}`)
.send({ roleIds: [role.body.data.id] })
.expect(200);
expect(assigned.body.data).toMatchObject({
id: admin.body.data.id,
roles: [expect.objectContaining({ code: 'user_reader' })],
});
});
it('lists and updates app users from admin APIs', async () => {
await request(app.getHttpServer())
.post('/api/app/v1/auth/tiktok-login')
.send({
code: 'user-management-code',
mockOpenId: 'open-user-management',
nickname: 'Managed User',
})
.expect(201);
const users = await request(app.getHttpServer())
.get('/api/admin/v1/users')
.set('Authorization', `Bearer ${superAdminToken}`)
.expect(200);
expect(users.body.data.list).toEqual(
expect.arrayContaining([
expect.objectContaining({
tiktokOpenId: 'open-user-management',
nickname: 'Managed User',
status: 'active',
}),
]),
);
const managedUser = users.body.data.list.find(
(user: { tiktokOpenId: string }) =>
user.tiktokOpenId === 'open-user-management',
);
const disabled = await request(app.getHttpServer())
.patch(`/api/admin/v1/users/${managedUser.id}/status`)
.set('Authorization', `Bearer ${superAdminToken}`)
.send({ status: 'disabled' })
.expect(200);
expect(disabled.body.data).toMatchObject({
id: managedUser.id,
status: 'disabled',
});
});
});

View File

@@ -0,0 +1,111 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { validate as validateUuid, version as uuidVersion } from 'uuid';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('API standard', () => {
let app: INestApplication;
let adminToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
adminToken = await loginAdmin(app);
});
afterAll(async () => {
await app.close();
});
it('wraps successful responses with code, data, message, timestamp, requestId and cost', async () => {
const response = await request(app.getHttpServer())
.get('/api/app/v1/health')
.expect(200);
expect(response.body).toEqual({
code: 0,
data: { status: 'ok' },
message: 'success',
timestamp: expect.any(Number),
requestId: expect.any(String),
cost: expect.stringMatching(/^\d+ms$/),
});
expect(validateUuid(response.body.requestId)).toBe(true);
expect(uuidVersion(response.body.requestId)).toBe(4);
});
it('reuses a valid X-Request-Id header', async () => {
const requestId = '0f5c2e16-1e44-4d55-93a4-ef7c66d9d1f2';
const response = await request(app.getHttpServer())
.get('/api/app/v1/health')
.set('X-Request-Id', requestId)
.expect(200);
expect(response.body.requestId).toBe(requestId);
});
it('wraps errors in the standard response shape', async () => {
const response = await request(app.getHttpServer())
.get('/api/app/v1/missing')
.expect(404);
expect(response.body).toEqual({
code: 404,
data: {},
message: expect.any(String),
timestamp: expect.any(Number),
requestId: expect.any(String),
cost: expect.stringMatching(/^\d+ms$/),
});
});
it('returns paginated lists using data.list and data.pagination', async () => {
const response = await request(app.getHttpServer())
.get('/api/admin/v1/logs/requests')
.set('Authorization', `Bearer ${adminToken}`)
.expect(200);
expect(response.body.code).toBe(0);
expect(response.body.data).toEqual({
list: expect.any(Array),
pagination: {
page: 1,
pageSize: 20,
total: expect.any(Number),
},
});
});
it('can query a request log by requestId', async () => {
const requestId = '180facd4-68f9-48c9-b6b1-3d8eab56a681';
await request(app.getHttpServer())
.get('/api/app/v1/health')
.set('X-Request-Id', requestId)
.expect(200);
const response = await request(app.getHttpServer())
.get(`/api/admin/v1/logs/requests/${requestId}`)
.set('Authorization', `Bearer ${adminToken}`)
.expect(200);
expect(response.body.data).toMatchObject({
requestId,
method: 'GET',
path: '/api/app/v1/health',
statusCode: 200,
responseCode: 0,
message: 'success',
});
expect(response.body.data.costMs).toEqual(expect.any(Number));
});
});

View File

@@ -0,0 +1,237 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('Core drama platform modules', () => {
let app: INestApplication;
let adminToken: string;
let userToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
adminToken = await loginAdmin(app);
const login = await request(app.getHttpServer())
.post('/api/app/v1/auth/tiktok-login')
.send({
code: 'core-modules-code',
mockOpenId: 'core-open-id',
nickname: 'Core User',
avatarUrl: 'https://cdn.example.com/avatar.png',
})
.expect(201);
userToken = login.body.data.accessToken;
});
afterAll(async () => {
await app.close();
});
it('creates albums and episodes with TikTok, media, review, publish, and pricing fields', async () => {
const cover = await request(app.getHttpServer())
.post('/api/admin/v1/media/covers')
.set('Authorization', `Bearer ${adminToken}`)
.send({
fileName: 'cover.jpg',
url: 'https://cdn.example.com/cover.jpg',
})
.expect(201);
const uploadJob = await request(app.getHttpServer())
.post('/api/admin/v1/media/upload-jobs')
.set('Authorization', `Bearer ${adminToken}`)
.send({
jobId: 'job-001',
byteplusVid: 'v02-byteplus-001',
status: 'completed',
rawResponse: { provider: 'byteplus' },
})
.expect(201);
expect(uploadJob.body.data).toMatchObject({
id: expect.any(Number),
jobId: 'job-001',
byteplusVid: 'v02-byteplus-001',
status: 'completed',
rawResponse: { provider: 'byteplus' },
});
const album = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
tiktokAlbumId: 'tk-album-001',
title: 'Core Album',
description: 'Album for core schema.',
coverId: cover.body.data.id,
coverUrl: cover.body.data.url,
type: 'revenge',
status: 'draft',
onlineVersion: 1,
})
.expect(201);
expect(album.body.data).toMatchObject({
id: expect.any(Number),
tiktokAlbumId: 'tk-album-001',
title: 'Core Album',
coverId: cover.body.data.id,
coverUrl: 'https://cdn.example.com/cover.jpg',
status: 'draft',
onlineVersion: 1,
});
const episode = await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
albumId: album.body.data.id,
tiktokEpisodeId: 'tk-episode-001',
seq: 1,
title: 'Core Episode 1',
byteplusVid: 'v02-byteplus-001',
coverId: cover.body.data.id,
coverUrl: cover.body.data.url,
videoUrl: 'https://cdn.example.com/episode.mp4',
freeType: 'paid',
price: 299,
reviewStatus: 'pending',
publishStatus: 'draft',
durationSeconds: 300,
})
.expect(201);
expect(episode.body.data).toMatchObject({
id: expect.any(Number),
albumId: album.body.data.id,
tiktokEpisodeId: 'tk-episode-001',
seq: 1,
byteplusVid: 'v02-byteplus-001',
coverId: cover.body.data.id,
freeType: 'paid',
price: 299,
reviewStatus: 'pending',
publishStatus: 'draft',
});
});
it('supports review submission, publish status changes, player auth, trade orders, webhook unlocks, and unlock records', async () => {
const album = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'Player Album',
coverUrl: 'https://cdn.example.com/player-cover.jpg',
type: 'player',
status: 'published',
onlineVersion: 1,
})
.expect(201);
const episode = await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
albumId: album.body.data.id,
seq: 1,
title: 'Paid Player Episode',
byteplusVid: 'v02-player-001',
coverUrl: 'https://cdn.example.com/player-episode.jpg',
videoUrl: 'https://cdn.example.com/player-episode.mp4',
freeType: 'paid',
price: 399,
reviewStatus: 'approved',
publishStatus: 'published',
durationSeconds: 300,
})
.expect(201);
await request(app.getHttpServer())
.post(`/api/admin/v1/dramas/${album.body.data.id}/submit-review`)
.set('Authorization', `Bearer ${adminToken}`)
.expect(201);
await request(app.getHttpServer())
.patch(`/api/admin/v1/episodes/${episode.body.data.id}/publish-status`)
.set('Authorization', `Bearer ${adminToken}`)
.send({ publishStatus: 'published' })
.expect(200);
const lockedPlayer = await request(app.getHttpServer())
.get(`/api/app/v1/player/episodes/${episode.body.data.id}`)
.set('Authorization', `Bearer ${userToken}`)
.expect(200);
expect(lockedPlayer.body.data).toMatchObject({
albumId: album.body.data.id,
episodeId: episode.body.data.id,
vid: 'v02-player-001',
hasPermission: false,
playAuthToken: null,
});
const order = await request(app.getHttpServer())
.post('/api/app/v1/orders')
.set('Authorization', `Bearer ${userToken}`)
.send({ episodeId: episode.body.data.id })
.expect(201);
expect(order.body.data).toMatchObject({
id: expect.any(Number),
albumId: album.body.data.id,
episodeId: episode.body.data.id,
tradeOrderId: expect.stringMatching(/^TRADE/),
amount: 399,
status: 'pending',
});
await request(app.getHttpServer())
.post('/api/webhooks/tiktok/payments')
.send({
tradeOrderId: order.body.data.tradeOrderId,
tiktokOrderId: 'tk-order-001',
providerTransactionId: 'txn-core-001',
status: 'paid',
signature: 'dev-signature',
})
.expect(201);
const unlockedPlayer = await request(app.getHttpServer())
.get(`/api/app/v1/player/episodes/${episode.body.data.id}`)
.set('Authorization', `Bearer ${userToken}`)
.expect(200);
expect(unlockedPlayer.body.data).toMatchObject({
albumId: album.body.data.id,
episodeId: episode.body.data.id,
vid: 'v02-player-001',
hasPermission: true,
playAuthToken: expect.stringMatching(/^play_auth_/),
});
const unlocks = await request(app.getHttpServer())
.get('/api/admin/v1/unlock-records')
.set('Authorization', `Bearer ${adminToken}`)
.expect(200);
expect(unlocks.body.data.list).toEqual(
expect.arrayContaining([
expect.objectContaining({
userId: expect.any(Number),
episodeId: episode.body.data.id,
source: 'payment',
}),
]),
);
});
});

200
test/dramas.e2e-spec.ts Normal file
View File

@@ -0,0 +1,200 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('Dramas and episodes', () => {
let app: INestApplication;
let adminToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
adminToken = await loginAdmin(app);
});
afterAll(async () => {
await app.close();
});
it('allows admin APIs to create a drama and episodes with release metadata', async () => {
const dramaResponse = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'City Revenge',
description: 'A short drama series.',
coverUrl: 'https://cdn.example.com/cover.jpg',
portraitCoverUrl: 'https://cdn.example.com/portrait.jpg',
landscapeCoverUrl: 'https://cdn.example.com/landscape.jpg',
type: 'revenge',
tags: ['urban', 'revenge'],
region: 'US',
language: 'en',
year: 2026,
status: 'published',
sortOrder: 10,
isRecommended: true,
})
.expect(201);
expect(dramaResponse.body.data).toMatchObject({
id: expect.any(Number),
title: 'City Revenge',
status: 'published',
type: 'revenge',
});
const dramaId = dramaResponse.body.data.id;
const episodeResponse = await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
dramaId,
episodeNo: 1,
title: 'Episode 1',
description: 'Opening episode.',
coverUrl: 'https://cdn.example.com/ep1.jpg',
videoUrl: 'https://cdn.example.com/ep1.mp4',
trialDurationSeconds: 60,
durationSeconds: 300,
isPaid: true,
unlockPrice: 199,
publishAt: '2026-07-01T00:00:00.000Z',
nextReleaseAt: '2026-07-02T00:00:00.000Z',
status: 'published',
})
.expect(201);
expect(episodeResponse.body.data).toMatchObject({
id: expect.any(Number),
dramaId,
episodeNo: 1,
nextReleaseAt: '2026-07-02T00:00:00.000Z',
});
});
it('rejects duplicate episode numbers under the same drama', async () => {
const drama = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'Duplicate Episode Test',
coverUrl: 'https://cdn.example.com/cover.jpg',
type: 'romance',
status: 'draft',
})
.expect(201);
const payload = {
dramaId: drama.body.data.id,
episodeNo: 1,
title: 'Episode 1',
coverUrl: 'https://cdn.example.com/ep1.jpg',
videoUrl: 'https://cdn.example.com/ep1.mp4',
durationSeconds: 300,
status: 'draft',
};
await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send(payload)
.expect(201);
const duplicate = await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send(payload)
.expect(409);
expect(duplicate.body).toMatchObject({
code: 409,
data: {},
message: 'Episode number already exists in this drama',
});
});
it('returns only published dramas and published episodes to app APIs', async () => {
const published = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'Published Drama',
coverUrl: 'https://cdn.example.com/pub.jpg',
type: 'action',
status: 'published',
})
.expect(201);
await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'Draft Drama',
coverUrl: 'https://cdn.example.com/draft.jpg',
type: 'action',
status: 'draft',
})
.expect(201);
await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
dramaId: published.body.data.id,
episodeNo: 1,
title: 'Published Episode',
coverUrl: 'https://cdn.example.com/ep1.jpg',
videoUrl: 'https://cdn.example.com/ep1.mp4',
durationSeconds: 300,
status: 'published',
})
.expect(201);
await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
dramaId: published.body.data.id,
episodeNo: 2,
title: 'Draft Episode',
coverUrl: 'https://cdn.example.com/ep2.jpg',
videoUrl: 'https://cdn.example.com/ep2.mp4',
durationSeconds: 300,
status: 'draft',
})
.expect(201);
const dramas = await request(app.getHttpServer())
.get('/api/app/v1/dramas')
.expect(200);
expect(dramas.body.data.list).toEqual(
expect.arrayContaining([
expect.objectContaining({ title: 'Published Drama' }),
]),
);
expect(dramas.body.data.list).not.toEqual(
expect.arrayContaining([expect.objectContaining({ title: 'Draft Drama' })]),
);
const episodes = await request(app.getHttpServer())
.get(`/api/app/v1/dramas/${published.body.data.id}/episodes`)
.expect(200);
expect(episodes.body.data.list).toEqual([
expect.objectContaining({
episodeNo: 1,
title: 'Published Episode',
}),
]);
});
});

10
test/jest-e2e.json Normal file
View File

@@ -0,0 +1,10 @@
{
"moduleFileExtensions": ["js", "json", "ts"],
"rootDir": "..",
"testEnvironment": "node",
"testRegex": ".e2e-spec.ts$",
"watchman": false,
"transform": {
"^.+\\.(t|j)s$": "ts-jest"
}
}

View File

@@ -0,0 +1,131 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('Auth, orders, and playback', () => {
let app: INestApplication;
let adminToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
adminToken = await loginAdmin(app);
});
afterAll(async () => {
await app.close();
});
it('logs in with TikTok identity, creates an order, and unlocks paid playback through an idempotent payment webhook', async () => {
const login = await request(app.getHttpServer())
.post('/api/app/v1/auth/tiktok-login')
.send({
code: 'test-code',
mockOpenId: 'open-user-1',
nickname: 'Tester',
})
.expect(201);
expect(login.body.data).toMatchObject({
accessToken: expect.any(String),
user: {
id: expect.any(Number),
tiktokOpenId: 'open-user-1',
nickname: 'Tester',
},
isNewUser: true,
});
const token = login.body.data.accessToken;
const drama = await request(app.getHttpServer())
.post('/api/admin/v1/dramas')
.set('Authorization', `Bearer ${adminToken}`)
.send({
title: 'Paid Drama',
coverUrl: 'https://cdn.example.com/paid.jpg',
type: 'paid',
status: 'published',
})
.expect(201);
const episode = await request(app.getHttpServer())
.post('/api/admin/v1/episodes')
.set('Authorization', `Bearer ${adminToken}`)
.send({
dramaId: drama.body.data.id,
episodeNo: 1,
title: 'Paid Episode',
coverUrl: 'https://cdn.example.com/paid-ep.jpg',
videoUrl: 'https://cdn.example.com/paid-ep.mp4',
durationSeconds: 300,
isPaid: true,
unlockPrice: 199,
status: 'published',
})
.expect(201);
await request(app.getHttpServer())
.get(`/api/app/v1/episodes/${episode.body.data.id}/play`)
.expect(401);
const lockedPlay = await request(app.getHttpServer())
.get(`/api/app/v1/episodes/${episode.body.data.id}/play`)
.set('Authorization', `Bearer ${token}`)
.expect(200);
expect(lockedPlay.body.data).toMatchObject({
episodeId: episode.body.data.id,
isLocked: true,
videoUrl: null,
});
const order = await request(app.getHttpServer())
.post('/api/app/v1/orders')
.set('Authorization', `Bearer ${token}`)
.send({ episodeId: episode.body.data.id })
.expect(201);
expect(order.body.data).toMatchObject({
orderNo: expect.any(String),
status: 'pending',
amount: 199,
});
await request(app.getHttpServer())
.post('/api/webhooks/tiktok/payments')
.send({
orderNo: order.body.data.orderNo,
providerTransactionId: 'txn-1',
status: 'paid',
})
.expect(201);
await request(app.getHttpServer())
.post('/api/webhooks/tiktok/payments')
.send({
orderNo: order.body.data.orderNo,
providerTransactionId: 'txn-1',
status: 'paid',
})
.expect(201);
const unlockedPlay = await request(app.getHttpServer())
.get(`/api/app/v1/episodes/${episode.body.data.id}/play`)
.set('Authorization', `Bearer ${token}`)
.expect(200);
expect(unlockedPlay.body.data).toMatchObject({
episodeId: episode.body.data.id,
isLocked: false,
videoUrl: 'https://cdn.example.com/paid-ep.mp4',
});
});
});

View File

@@ -0,0 +1,77 @@
import { INestApplication } from '@nestjs/common';
import { Test } from '@nestjs/testing';
import * as request from 'supertest';
import { AppModule } from '../src/app.module';
import { bootstrapApp } from '../src/bootstrap';
import { loginAdmin } from './test-helpers';
describe('Playback error logs', () => {
let app: INestApplication;
let adminToken: string;
beforeAll(async () => {
const moduleRef = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleRef.createNestApplication();
bootstrapApp(app);
await app.init();
adminToken = await loginAdmin(app);
});
afterAll(async () => {
await app.close();
});
it('accepts playback error reports and exposes them to admin logs', async () => {
const requestId = 'aac95ef4-c546-427d-88c7-25b15b396b91';
const createResponse = await request(app.getHttpServer())
.post('/api/app/v1/logs/playback-errors')
.set('X-Request-Id', requestId)
.send({
requestId,
dramaId: 1,
episodeId: 10,
playUrl: 'https://cdn.example.com/video.mp4',
playerErrorCode: 'MEDIA_DECODE_ERROR',
message: 'Video decode failed',
progressSeconds: 128,
networkType: 'wifi',
device: {
platform: 'ios',
model: 'iPhone',
systemVersion: '17.0',
appVersion: '1.0.0',
},
occurredAt: '2026-06-30T00:00:00.000Z',
})
.expect(201);
expect(createResponse.body).toMatchObject({
code: 0,
data: {
id: expect.any(Number),
requestId,
},
message: 'success',
requestId,
});
const listResponse = await request(app.getHttpServer())
.get('/api/admin/v1/logs/playback-errors')
.set('Authorization', `Bearer ${adminToken}`)
.expect(200);
expect(listResponse.body.data.list).toEqual(
expect.arrayContaining([
expect.objectContaining({
requestId,
playerErrorCode: 'MEDIA_DECODE_ERROR',
progressSeconds: 128,
}),
]),
);
});
});

14
test/test-helpers.ts Normal file
View File

@@ -0,0 +1,14 @@
import { INestApplication } from '@nestjs/common';
import * as request from 'supertest';
export async function loginAdmin(app: INestApplication) {
const response = await request(app.getHttpServer())
.post('/api/admin/v1/auth/login')
.send({
username: 'admin',
password: 'admin123',
})
.expect(201);
return response.body.data.accessToken as string;
}

4
tsconfig.build.json Normal file
View File

@@ -0,0 +1,4 @@
{
"extends": "./tsconfig.json",
"exclude": ["node_modules", "test", "dist", "**/*spec.ts"]
}

19
tsconfig.json Normal file
View File

@@ -0,0 +1,19 @@
{
"compilerOptions": {
"module": "commonjs",
"declaration": true,
"removeComments": true,
"emitDecoratorMetadata": true,
"experimentalDecorators": true,
"allowSyntheticDefaultImports": true,
"target": "ES2023",
"sourceMap": true,
"outDir": "./dist",
"baseUrl": "./",
"incremental": true,
"strict": true,
"skipLibCheck": true,
"strictPropertyInitialization": false,
"noImplicitAny": false
}
}