ANGJustinl/whale-town-end
1
0
Fork 0
forked from datawhale/whale-town-end
Code Pull Requests Activity
Files
master
whale-town-end/docs/api/api-documentation.md
moyin 946d328be6 docs:更新登录验证码邮件模板修复相关文档 
- 在API文档重要提醒中添加邮件模板修复说明
- 更新OpenAPI文档版本号至1.1.3
- 增强发送登录验证码接口的描述,明确说明使用专门的登录验证码模板
2025-12-25 20:40:45 +08:00

964 lines
18 KiB
Markdown
Raw Permalink Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# Pixel Game Server API 文档
**版本**: 1.1.1
**更新时间**: 2025-12-25
## 🚨 后端对前端的提示与注意点
### 重要提醒
1. **邮箱冲突检测**: 发送邮箱验证码前会检查邮箱是否已被注册已注册邮箱返回409状态码
2. **HTTP状态码**: 所有接口根据业务结果返回正确状态码409冲突、400参数错误、401认证失败等
3. **验证码有效期**: 所有验证码有效期为5分钟
4. **频率限制**: 验证码发送限制1次/分钟注册限制10次/5分钟
5. **测试模式**: 开发环境下邮件服务返回206状态码验证码在响应中返回
6. **冷却时间自动清除**: 注册、密码重置、验证码登录成功后会自动清除验证码冷却时间,方便后续操作
7. **邮件模板修复**: 登录验证码现在使用正确的邮件模板,内容为"登录验证码"而非"密码重置"
### 错误处理规范
- **409 Conflict**: 资源冲突(用户名、邮箱已存在)
- **400 Bad Request**: 参数错误、验证码错误
- **401 Unauthorized**: 认证失败、密码错误
- **429 Too Many Requests**: 频率限制
- **206 Partial Content**: 测试模式(验证码未真实发送)
### 前端开发建议
1. 根据HTTP状态码进行错误处理不要只依赖success字段
2. 邮箱注册流程:先发送验证码 → 检查409冲突 → 使用验证码注册
3. 测试模式下验证码在响应中返回,生产环境需用户查收邮件
4. 实现重试机制处理429频率限制错误
5. 注册/重置密码成功后,验证码冷却时间会自动清除,可立即发送新验证码
---
## 📋 API接口列表
### 应用状态接口
- `GET /` - 获取应用状态
### 用户认证接口
- `POST /auth/login` - 用户登录
- `POST /auth/register` - 用户注册
- `POST /auth/github` - GitHub OAuth登录
- `POST /auth/verification-code-login` - 验证码登录
- `POST /auth/send-login-verification-code` - 发送登录验证码
- `POST /auth/forgot-password` - 发送密码重置验证码
- `POST /auth/reset-password` - 重置密码
- `PUT /auth/change-password` - 修改密码
- `POST /auth/send-email-verification` - 发送邮箱验证码
- `POST /auth/verify-email` - 验证邮箱验证码
- `POST /auth/resend-email-verification` - 重新发送邮箱验证码
### 管理员接口
- `POST /admin/auth/login` - 管理员登录
- `GET /admin/users` - 获取用户列表
- `GET /admin/users/:id` - 获取用户详情
- `POST /admin/users/:id/reset-password` - 管理员重置用户密码
- `GET /admin/logs/runtime` - 获取运行时日志
- `GET /admin/logs/archive` - 获取归档日志
### 用户管理接口
- `PUT /admin/users/:id/status` - 修改用户状态
- `POST /admin/users/batch-status` - 批量修改用户状态
- `GET /admin/users/status-stats` - 获取用户状态统计
---
## 🧪 API接口详细说明与测试用例
### 1. 获取应用状态
**接口**: `GET /`
#### 成功响应 (200)
```json
{
"service": "Pixel Game Server",
"version": "1.1.1",
"status": "running",
"timestamp": "2025-12-25T10:27:44.352Z",
"uptime": 8,
"environment": "development",
"storage_mode": "database"
}
```
---
### 2. 用户登录
**接口**: `POST /auth/login`
#### 请求体
```json
{
"identifier": "testuser",
"password": "password123"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"user": {
"id": "1",
"username": "testuser",
"nickname": "测试用户",
"email": "test@example.com",
"phone": null,
"avatar_url": null,
"role": 1,
"created_at": "2025-12-17T10:00:00.000Z"
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"is_new_user": false,
"message": "登录成功"
},
"message": "登录成功"
}
```
#### 认证失败响应 (401)
```json
{
"success": false,
"message": "用户名、邮箱或手机号不存在",
"error_code": "LOGIN_FAILED"
}
```
#### 密码错误响应 (401)
```json
{
"success": false,
"message": "密码错误",
"error_code": "LOGIN_FAILED"
}
```
---
### 3. 用户注册
**接口**: `POST /auth/register`
#### 请求体(无邮箱)
```json
{
"username": "newuser",
"password": "password123",
"nickname": "新用户"
}
```
#### 请求体(带邮箱验证)
```json
{
"username": "newuser",
"password": "password123",
"nickname": "新用户",
"email": "newuser@example.com",
"email_verification_code": "123456"
}
```
#### 成功响应 (201)
```json
{
"success": true,
"data": {
"user": {
"id": "2",
"username": "newuser",
"nickname": "新用户",
"email": "newuser@example.com",
"phone": null,
"avatar_url": null,
"role": 1,
"created_at": "2025-12-17T10:00:00.000Z"
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"is_new_user": true,
"message": "注册成功"
},
"message": "注册成功"
}
```
#### 用户名冲突响应 (409)
```json
{
"success": false,
"message": "用户名已存在",
"error_code": "REGISTER_FAILED"
}
```
#### 邮箱冲突响应 (409)
```json
{
"success": false,
"message": "邮箱已存在",
"error_code": "REGISTER_FAILED"
}
```
#### 验证码错误响应 (400)
```json
{
"success": false,
"message": "验证码不存在或已过期",
"error_code": "REGISTER_FAILED"
}
```
---
### 4. 发送邮箱验证码
**接口**: `POST /auth/send-email-verification`
#### 请求体
```json
{
"email": "test@example.com"
}
```
#### 成功响应 (200) - 生产环境
```json
{
"success": true,
"data": {
"is_test_mode": false
},
"message": "验证码已发送,请查收邮件"
}
```
#### 测试模式响应 (206) - 开发环境
```json
{
"success": false,
"data": {
"verification_code": "123456",
"is_test_mode": true
},
"message": "⚠️ 测试模式:验证码已生成但未真实发送。请在控制台查看验证码,或配置邮件服务以启用真实发送。",
"error_code": "TEST_MODE_ONLY"
}
```
#### 邮箱冲突响应 (409)
```json
{
"success": false,
"message": "邮箱已被注册,请使用其他邮箱或直接登录",
"error_code": "SEND_EMAIL_VERIFICATION_FAILED"
}
```
#### 频率限制响应 (429)
```json
{
"success": false,
"message": "验证码发送过于频繁请1分钟后再试",
"error_code": "TOO_MANY_REQUESTS",
"throttle_info": {
"limit": 1,
"window_seconds": 60,
"current_requests": 1,
"reset_time": "2025-12-25T10:07:37.056Z"
}
}
```
---
### 5. 验证码登录
**接口**: `POST /auth/verification-code-login`
#### 请求体
```json
{
"identifier": "test@example.com",
"verification_code": "123456"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"user": {
"id": "1",
"username": "testuser",
"nickname": "测试用户",
"email": "test@example.com",
"phone": null,
"avatar_url": null,
"role": 1,
"created_at": "2025-12-17T10:00:00.000Z"
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"is_new_user": false,
"message": "验证码登录成功"
},
"message": "验证码登录成功"
}
```
#### 验证码错误响应 (401)
```json
{
"success": false,
"message": "验证码验证失败",
"error_code": "VERIFICATION_CODE_LOGIN_FAILED"
}
```
#### 用户不存在响应 (404)
```json
{
"success": false,
"message": "用户不存在,请先注册账户",
"error_code": "VERIFICATION_CODE_LOGIN_FAILED"
}
```
---
### 6. 发送登录验证码
**接口**: `POST /auth/send-login-verification-code`
#### 请求体
```json
{
"identifier": "test@example.com"
}
```
#### 成功响应 (200) - 生产环境
```json
{
"success": true,
"data": {
"is_test_mode": false
},
"message": "验证码已发送,请查收"
}
```
#### 测试模式响应 (206) - 开发环境
```json
{
"success": false,
"data": {
"verification_code": "654321",
"is_test_mode": true
},
"message": "⚠️ 测试模式:验证码已生成但未真实发送。请在控制台查看验证码,或配置邮件服务以启用真实发送。",
"error_code": "TEST_MODE_ONLY"
}
```
#### 用户不存在响应 (404)
```json
{
"success": false,
"message": "用户不存在",
"error_code": "SEND_LOGIN_CODE_FAILED"
}
```
---
### 7. 发送密码重置验证码
**接口**: `POST /auth/forgot-password`
#### 请求体
```json
{
"identifier": "test@example.com"
}
```
#### 成功响应 (200) - 生产环境
```json
{
"success": true,
"data": {
"is_test_mode": false
},
"message": "验证码已发送,请查收"
}
```
#### 测试模式响应 (206) - 开发环境
```json
{
"success": false,
"data": {
"verification_code": "789012",
"is_test_mode": true
},
"message": "⚠️ 测试模式:验证码已生成但未真实发送。请在控制台查看验证码,或配置邮件服务以启用真实发送。",
"error_code": "TEST_MODE_ONLY"
}
```
#### 用户不存在响应 (404)
```json
{
"success": false,
"message": "用户不存在",
"error_code": "SEND_CODE_FAILED"
}
```
---
### 8. 重置密码
**接口**: `POST /auth/reset-password`
#### 请求体
```json
{
"identifier": "test@example.com",
"verification_code": "789012",
"new_password": "newpassword123"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"message": "密码重置成功"
}
```
#### 验证码错误响应 (400)
```json
{
"success": false,
"message": "验证码验证失败",
"error_code": "RESET_PASSWORD_FAILED"
}
```
---
### 9. 修改密码
**接口**: `PUT /auth/change-password`
#### 请求体
```json
{
"user_id": "1",
"old_password": "oldpassword123",
"new_password": "newpassword123"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"message": "密码修改成功"
}
```
#### 旧密码错误响应 (401)
```json
{
"success": false,
"message": "旧密码错误",
"error_code": "CHANGE_PASSWORD_FAILED"
}
```
---
### 10. GitHub OAuth登录
**接口**: `POST /auth/github`
#### 请求体
```json
{
"github_id": "12345678",
"username": "octocat",
"nickname": "The Octocat",
"email": "octocat@github.com",
"avatar_url": "https://github.com/images/error/octocat_happy.gif"
}
```
#### 成功响应 (200) - 已存在用户
```json
{
"success": true,
"data": {
"user": {
"id": "3",
"username": "octocat",
"nickname": "The Octocat",
"email": "octocat@github.com",
"phone": null,
"avatar_url": "https://github.com/images/error/octocat_happy.gif",
"role": 1,
"created_at": "2025-12-17T10:00:00.000Z"
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"is_new_user": false,
"message": "GitHub登录成功"
},
"message": "GitHub登录成功"
}
```
#### 成功响应 (200) - 新用户注册
```json
{
"success": true,
"data": {
"user": {
"id": "4",
"username": "octocat_1",
"nickname": "The Octocat",
"email": "octocat@github.com",
"phone": null,
"avatar_url": "https://github.com/images/error/octocat_happy.gif",
"role": 1,
"created_at": "2025-12-17T10:00:00.000Z"
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"is_new_user": true,
"message": "GitHub账户绑定成功"
},
"message": "GitHub账户绑定成功"
}
```
---
### 11. 验证邮箱验证码
**接口**: `POST /auth/verify-email`
#### 请求体
```json
{
"email": "test@example.com",
"verification_code": "123456"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"message": "邮箱验证成功"
}
```
#### 验证码错误响应 (400)
```json
{
"success": false,
"message": "验证码错误",
"error_code": "EMAIL_VERIFICATION_FAILED"
}
```
---
### 12. 重新发送邮箱验证码
**接口**: `POST /auth/resend-email-verification`
#### 请求体
```json
{
"email": "test@example.com"
}
```
#### 成功响应 (200) - 生产环境
```json
{
"success": true,
"data": {
"is_test_mode": false
},
"message": "验证码已重新发送,请查收邮件"
}
```
#### 测试模式响应 (206) - 开发环境
```json
{
"success": false,
"data": {
"verification_code": "456789",
"is_test_mode": true
},
"message": "⚠️ 测试模式:验证码已生成但未真实发送。请在控制台查看验证码,或配置邮件服务以启用真实发送。",
"error_code": "TEST_MODE_ONLY"
}
```
#### 邮箱已验证响应 (400)
```json
{
"success": false,
"message": "邮箱已验证,无需重复验证",
"error_code": "RESEND_EMAIL_VERIFICATION_FAILED"
}
```
---
### 13. 管理员登录
**接口**: `POST /admin/auth/login`
#### 请求体
```json
{
"username": "admin",
"password": "Admin123456"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"admin": {
"id": "1",
"username": "admin",
"nickname": "管理员",
"role": 0
},
"access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"expires_in": 28800,
"message": "管理员登录成功"
},
"message": "管理员登录成功"
}
```
#### 认证失败响应 (401)
```json
{
"success": false,
"message": "用户名或密码错误",
"error_code": "ADMIN_LOGIN_FAILED"
}
```
#### 权限不足响应 (403)
```json
{
"success": false,
"message": "权限不足,需要管理员权限",
"error_code": "ADMIN_LOGIN_FAILED"
}
```
---
### 14. 获取用户列表
**接口**: `GET /admin/users`
#### 查询参数
- `page`: 页码可选默认1
- `limit`: 每页数量可选默认10
- `status`: 用户状态筛选(可选)
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"users": [
{
"id": "1",
"username": "testuser",
"nickname": "测试用户",
"email": "test@example.com",
"phone": null,
"role": 1,
"status": "active",
"email_verified": true,
"created_at": "2025-12-17T10:00:00.000Z",
"updated_at": "2025-12-17T10:00:00.000Z"
}
],
"pagination": {
"page": 1,
"limit": 10,
"total": 1,
"pages": 1
}
},
"message": "用户列表获取成功"
}
```
---
### 15. 获取用户详情
**接口**: `GET /admin/users/:id`
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"user": {
"id": "1",
"username": "testuser",
"nickname": "测试用户",
"email": "test@example.com",
"phone": null,
"role": 1,
"status": "active",
"email_verified": true,
"github_id": null,
"avatar_url": null,
"created_at": "2025-12-17T10:00:00.000Z",
"updated_at": "2025-12-17T10:00:00.000Z"
}
},
"message": "用户详情获取成功"
}
```
#### 用户不存在响应 (404)
```json
{
"success": false,
"message": "用户不存在",
"error_code": "USER_NOT_FOUND"
}
```
---
### 16. 管理员重置用户密码
**接口**: `POST /admin/users/:id/reset-password`
#### 请求体
```json
{
"new_password": "newpassword123"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"message": "用户密码重置成功"
}
```
#### 用户不存在响应 (404)
```json
{
"success": false,
"message": "用户不存在",
"error_code": "USER_NOT_FOUND"
}
```
---
### 17. 修改用户状态
**接口**: `PUT /admin/users/:id/status`
#### 请求体
```json
{
"status": "locked",
"reason": "违规操作"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"user": {
"id": "1",
"username": "testuser",
"status": "locked",
"updated_at": "2025-12-17T10:00:00.000Z"
}
},
"message": "用户状态修改成功"
}
```
#### 状态值无效响应 (400)
```json
{
"success": false,
"message": "无效的用户状态值",
"error_code": "USER_STATUS_UPDATE_FAILED"
}
```
---
### 18. 批量修改用户状态
**接口**: `POST /admin/users/batch-status`
#### 请求体
```json
{
"user_ids": ["1", "2", "3"],
"status": "active",
"reason": "批量激活"
}
```
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"updated_count": 3,
"failed_count": 0,
"results": [
{
"user_id": "1",
"success": true,
"new_status": "active"
},
{
"user_id": "2",
"success": true,
"new_status": "active"
},
{
"user_id": "3",
"success": true,
"new_status": "active"
}
]
},
"message": "批量状态修改完成"
}
```
---
### 19. 获取用户状态统计
**接口**: `GET /admin/users/status-stats`
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"stats": {
"active": 15,
"inactive": 3,
"locked": 2,
"banned": 1,
"deleted": 0,
"pending": 5
},
"total": 26
},
"message": "用户状态统计获取成功"
}
```
---
### 20. 获取运行时日志
**接口**: `GET /admin/logs/runtime`
#### 查询参数
- `lines`: 日志行数可选默认100
- `level`: 日志级别(可选)
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"logs": [
"[2025-12-25 18:27:35] LOG [NestApplication] Nest application successfully started",
"[2025-12-25 18:27:35] LOG [RouterExplorer] Mapped {/, GET} route"
],
"total_lines": 2,
"timestamp": "2025-12-25T10:27:44.352Z"
},
"message": "运行时日志获取成功"
}
```
---
### 21. 获取归档日志
**接口**: `GET /admin/logs/archive`
#### 查询参数
- `date`: 日期YYYY-MM-DD格式可选
- `download`: 是否下载(可选)
#### 成功响应 (200)
```json
{
"success": true,
"data": {
"files": [
{
"filename": "app-2025-12-24.log",
"size": 1024,
"created_at": "2025-12-24T00:00:00.000Z"
}
],
"total_files": 1
},
"message": "归档日志列表获取成功"
}
```
---
## 📊 版本更新记录
### v1.1.2 (2025-12-25)
- **验证码冷却优化**: 注册、密码重置、验证码登录成功后自动清除验证码冷却时间
- **用户体验提升**: 成功操作后可立即发送新的验证码,无需等待冷却时间
- **代码健壮性**: 冷却时间清除失败不影响主要业务流程
### v1.1.1 (2025-12-25)
- **邮箱冲突检测优化**: 发送邮箱验证码前检查邮箱是否已被注册
- **用户体验提升**: 避免向已注册邮箱发送无用验证码
- **错误处理改进**: 返回409 Conflict状态码和明确错误信息
### v1.1.0 (2025-12-25)
- **新增验证码登录功能**: 支持邮箱验证码登录
- **HTTP状态码修复**: 所有接口返回正确的业务状态码
- **完善错误处理**: 统一错误响应格式和错误代码
View Git Blame Copy Permalink