feat: add email verification and password reset functionality

- Introduced environment variables for database and email configurations. - Implemented email verification code generation and validation. - Added password reset feature with email verification. - Updated user registration and profile management APIs. - Refactored user security settings to include email and password updates. - Enhanced console layout with internationalization support. - Removed deprecated settings page and integrated global settings. - Added new reset password page and form components. - Updated localization files for new features and translations.
2025-09-26 11:06:23 +00:00 · 2025-09-23 00:33:34 +08:00
parent c9db6795b2
commit b0b32c93d1
32 changed files with 888 additions and 345 deletions
--- a/internal/router/apiv1/user.go
+++ b/internal/router/apiv1/user.go
@ -7,10 +7,11 @@ import (
 )

 func registerUserRoutes(group *route.RouterGroup) {
+	const userRoute = "/user"
 	userController := v1.NewUserController()
-	userGroup := group.Group("/user").Use(middleware.UseAuth(true))
-	userGroupWithoutAuth := group.Group("/user").Use(middleware.UseAuth(false))
-	userGroupWithoutAuthNeedsCaptcha := group.Group("/user").Use(middleware.UseCaptcha())
+	userGroup := group.Group(userRoute).Use(middleware.UseAuth(true))
+	userGroupWithoutAuth := group.Group(userRoute).Use(middleware.UseAuth(false))
+	userGroupWithoutAuthNeedsCaptcha := group.Group(userRoute).Use(middleware.UseCaptcha())
 	{
 		userGroupWithoutAuthNeedsCaptcha.POST("/login", userController.Login)
 		userGroupWithoutAuthNeedsCaptcha.POST("/register", userController.Register)
@ -20,10 +21,11 @@ func registerUserRoutes(group *route.RouterGroup) {
 		userGroupWithoutAuth.GET("/oidc/login/:name", userController.OidcLogin)
 		userGroupWithoutAuth.GET("/u/:id", userController.GetUser)
 		userGroupWithoutAuth.GET("/username/:username", userController.GetUserByUsername)
+		userGroup.POST("/logout", userController.Logout)
 		userGroup.GET("/me", userController.GetUser)
-		userGroupWithoutAuth.POST("/logout", userController.Logout)
 		userGroup.PUT("/u/:id", userController.UpdateUser)
 		userGroup.PUT("/password/edit", userController.ChangePassword)
-		userGroup.PUT("/email/edit", userController.ChangeEmail)
+		group.Group(userRoute).Use(middleware.UseEmailVerify()).PUT("/password/reset", userController.ResetPassword) // 不需要登录
+		group.Group(userRoute).Use(middleware.UseAuth(true), middleware.UseEmailVerify()).PUT("/email/edit", userController.ChangeEmail)
 	}
 }