| |
|
| | from flask import request
|
| | from flask_restful import Resource
|
| | from flask_jwt_extended import create_access_token
|
| | from datetime import datetime, timedelta
|
| |
|
| | from app import db
|
| | from app.models import Customer, SendCode
|
| | from app.utils.security import hash_password, verify_password
|
| | from app.utils.response import APIResponse
|
| | from app.utils.mail_service import EmailService
|
| | import random
|
| |
|
| | from app.utils.validators import (
|
| | validate_verification_code,
|
| | validate_password_confirmation
|
| | )
|
| |
|
| |
|
| |
|
| |
|
| | class SendRegisterCodeResource(Resource):
|
| | def post(self):
|
| | """发送注册验证码接口[^1]"""
|
| | email = request.form.get('email')
|
| | if Customer.query.filter_by(email=email).first():
|
| | return APIResponse.error('邮箱已存在', 400)
|
| |
|
| | code = ''.join(random.choices('0123456789', k=6))
|
| | send_code = SendCode(
|
| | send_type=1,
|
| | send_to=email,
|
| | code=code,
|
| | created_at=datetime.utcnow()
|
| | )
|
| | db.session.add(send_code)
|
| | try:
|
| | EmailService.send_verification_code(email, code)
|
| | db.session.commit()
|
| | return APIResponse.success()
|
| | except Exception as e:
|
| | db.session.rollback()
|
| | return APIResponse.error('邮件发送失败', 500)
|
| |
|
| |
|
| | class UserRegisterResource(Resource):
|
| | def post(self):
|
| | """用户注册接口[^2]"""
|
| | data = request.form
|
| |
|
| | required_fields = ['email', 'password', 'code']
|
| | if not all(field in data for field in required_fields):
|
| | return APIResponse.error('缺少必要参数', 400)
|
| |
|
| |
|
| | is_valid, msg = validate_verification_code(
|
| | data['email'], data['code'], 1
|
| | )
|
| | if not is_valid:
|
| | return APIResponse.error(msg, 400)
|
| |
|
| | customer = Customer(
|
| | email=data['email'],
|
| | password=hash_password(data['password']),
|
| | created_at=datetime.utcnow(),
|
| | updated_at=datetime.utcnow()
|
| | )
|
| | db.session.add(customer)
|
| | db.session.commit()
|
| |
|
| |
|
| |
|
| | return APIResponse.success(message='注册成功!',data={
|
| |
|
| | 'email': data['email']
|
| | })
|
| |
|
| |
|
| | class UserLoginResource(Resource):
|
| | def post(self):
|
| | """用户登录接口[^3]"""
|
| | data = request.form
|
| | customer = Customer.query.filter_by(email=data['email']).first()
|
| |
|
| | if not customer or not verify_password(customer.password, data['password']):
|
| | return APIResponse.error('账号或密码错误')
|
| |
|
| | access_token = create_access_token(identity=str(customer.id))
|
| | return APIResponse.success({
|
| | 'token': access_token,
|
| | 'email': data['email'],
|
| | 'level': customer.level
|
| | })
|
| |
|
| |
|
| | class SendResetCodeResource(Resource):
|
| | def post(self):
|
| | """发送密码重置验证码接口[^4]"""
|
| | email = request.form.get('email')
|
| | if not Customer.query.filter_by(email=email).first():
|
| | return APIResponse.not_found('用户不存在')
|
| |
|
| | code = ''.join(random.choices('0123456789', k=6))
|
| | send_code = SendCode(
|
| | send_type=2,
|
| | send_to=email,
|
| | code=code,
|
| | created_at=datetime.utcnow()
|
| | )
|
| | db.session.add(send_code)
|
| | try:
|
| | EmailService.send_verification_code(email, code)
|
| | db.session.commit()
|
| | return APIResponse.success()
|
| | except Exception as e:
|
| | db.session.rollback()
|
| | return APIResponse.error('邮件发送失败', 500)
|
| |
|
| |
|
| | class ResetPasswordResource(Resource):
|
| | def post(self):
|
| | """重置密码接口[^5]"""
|
| | data = request.form
|
| |
|
| |
|
| | is_valid, msg = validate_password_confirmation(data)
|
| | if not is_valid:
|
| | return APIResponse.error(msg, 400)
|
| |
|
| |
|
| | is_valid, msg = validate_verification_code(
|
| | data['email'], data['code'], 2
|
| | )
|
| | if not is_valid:
|
| | return APIResponse.error(msg, 400)
|
| |
|
| | customer = Customer.query.filter_by(email=data['email']).first()
|
| | customer.password = hash_password(data['password'])
|
| | customer.updated_at = datetime.utcnow()
|
| | db.session.commit()
|
| | return APIResponse.success()
|
| |
|
| |
|
