File size: 6,154 Bytes
0994949 da96133 0994949 da96133 0994949 | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 | // 认证相关:登录、登出、OAuth
let authToken = localStorage.getItem('authToken');
let oauthPort = null;
const CLIENT_ID = '1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com';
const SCOPES = [
'https://www.googleapis.com/auth/cloud-platform',
'https://www.googleapis.com/auth/userinfo.email',
'https://www.googleapis.com/auth/userinfo.profile',
'https://www.googleapis.com/auth/cclog',
'https://www.googleapis.com/auth/experimentsandconfigs'
].join(' ');
// 封装fetch,自动处理401
const authFetch = async (url, options = {}) => {
const response = await fetch(url, options);
if (response.status === 401) {
silentLogout();
showToast('登录已过期,请重新登录', 'warning');
throw new Error('Unauthorized');
}
return response;
};
function showMainContent() {
document.documentElement.classList.add('logged-in');
document.getElementById('loginForm').classList.add('hidden');
document.getElementById('mainContent').classList.remove('hidden');
}
function silentLogout() {
localStorage.removeItem('authToken');
authToken = null;
document.documentElement.classList.remove('logged-in');
document.getElementById('loginForm').classList.remove('hidden');
document.getElementById('mainContent').classList.add('hidden');
}
async function logout() {
const confirmed = await showConfirm('确定要退出登录吗?', '退出确认');
if (!confirmed) return;
silentLogout();
showToast('已退出登录', 'info');
}
function getOAuthUrl() {
if (!oauthPort) oauthPort = Math.floor(Math.random() * 10000) + 50000;
const redirectUri = `http://localhost:${oauthPort}/oauth-callback`;
return `https://accounts.google.com/o/oauth2/v2/auth?` +
`access_type=offline&client_id=${CLIENT_ID}&prompt=consent&` +
`redirect_uri=${encodeURIComponent(redirectUri)}&response_type=code&` +
`scope=${encodeURIComponent(SCOPES)}&state=${Date.now()}`;
}
function openOAuthWindow() {
window.open(getOAuthUrl(), '_blank');
}
function copyOAuthUrl() {
const url = getOAuthUrl();
navigator.clipboard.writeText(url).then(() => {
showToast('授权链接已复制', 'success');
}).catch(() => {
showToast('复制失败', 'error');
});
}
function showOAuthModal() {
showToast('点击后请在新窗口完成授权', 'info');
const modal = document.createElement('div');
modal.className = 'modal form-modal';
modal.innerHTML = `
<div class="modal-content">
<div class="modal-title">🔐 OAuth授权登录</div>
<div class="oauth-steps">
<p><strong>📝 授权流程:</strong></p>
<p>1️⃣ 点击下方按钮打开Google授权页面</p>
<p>2️⃣ 完成授权后,复制浏览器地址栏的完整URL</p>
<p>3️⃣ 粘贴URL到下方输入框并提交</p>
</div>
<div style="display: flex; gap: 8px; margin-bottom: 12px;">
<button type="button" onclick="openOAuthWindow()" class="btn btn-success" style="flex: 1;">🔐 打开授权页面</button>
<button type="button" onclick="copyOAuthUrl()" class="btn btn-info" style="flex: 1;">📋 复制授权链接</button>
</div>
<input type="text" id="modalCallbackUrl" placeholder="粘贴完整的回调URL (http://localhost:xxxxx/oauth-callback?code=...)">
<div class="modal-actions">
<button class="btn btn-secondary" onclick="this.closest('.modal').remove()">取消</button>
<button class="btn btn-success" onclick="processOAuthCallbackModal()">✅ 提交</button>
</div>
</div>
`;
document.body.appendChild(modal);
modal.onclick = (e) => { if (e.target === modal) modal.remove(); };
}
async function processOAuthCallbackModal() {
const modal = document.querySelector('.form-modal');
const callbackUrl = document.getElementById('modalCallbackUrl').value.trim();
if (!callbackUrl) {
showToast('请输入回调URL', 'warning');
return;
}
showLoading('正在处理授权...');
try {
const url = new URL(callbackUrl);
const code = url.searchParams.get('code');
const port = new URL(url.origin).port || (url.protocol === 'https:' ? 443 : 80);
if (!code) {
hideLoading();
showToast('URL中未找到授权码', 'error');
return;
}
const response = await authFetch('/admin/oauth/exchange', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
'Authorization': `Bearer ${authToken}`
},
body: JSON.stringify({ code, port })
});
const result = await response.json();
if (result.success) {
const account = result.data;
const addResponse = await authFetch('/admin/tokens', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
'Authorization': `Bearer ${authToken}`
},
body: JSON.stringify(account)
});
const addResult = await addResponse.json();
hideLoading();
if (addResult.success) {
modal.remove();
const message = result.fallbackMode
? 'Token添加成功(该账号无资格,已自动使用随机ProjectId)'
: 'Token添加成功';
showToast(message, result.fallbackMode ? 'warning' : 'success');
loadTokens();
} else {
showToast('添加失败: ' + addResult.message, 'error');
}
} else {
hideLoading();
showToast('交换失败: ' + result.message, 'error');
}
} catch (error) {
hideLoading();
showToast('处理失败: ' + error.message, 'error');
}
}
|