perf: 证书仓库

2026-04-23 19:57:27 +08:00 · 2025-01-15 01:05:34 +08:00
parent 52a4fd3318
commit 91e7f45a1c
48 changed files with 615 additions and 130 deletions
@@ -0,0 +1,48 @@
+import { Controller, Get, Inject, Provide } from '@midwayjs/core';
+import { BaseController, Constants, FileService, SysSettingsService, SysSiteInfo } from '@certd/lib-server';
+import { http, logger } from '@certd/basic';
+import { isComm } from '@certd/plus-core';
+
+/**
+ */
+@Provide()
+@Controller('/api/app/')
+export class AppController extends BaseController {
+  @Inject()
+  sysSettingsService: SysSettingsService;
+  @Inject()
+  fileService: FileService;
+
+  @Get('/latest', { summary: Constants.per.authOnly })
+  async latest(): Promise<any> {
+    const res = await http.request({
+      url: 'https://registry.npmmirror.com/@certd/pipeline',
+      method: 'get',
+      logRes: false,
+    });
+    try {
+      const latest = res['dist-tags'].latest;
+      return this.ok(latest);
+    } catch (e: any) {
+      logger.error(e);
+      return this.ok('');
+    }
+  }
+
+  @Get('/favicon', { summary: Constants.per.guest })
+  public async getFavicon() {
+    if (isComm()) {
+      const siteInfo = await this.sysSettingsService.getSetting<SysSiteInfo>(SysSiteInfo);
+      const favicon = siteInfo.logo;
+      if (favicon) {
+        const redirect = '/api/basic/file/download?key=' + favicon;
+        this.ctx.response.redirect(redirect);
+        this.ctx.response.set('Cache-Control', 'public,max-age=25920');
+        return;
+      }
+    }
+    const redirect = '/static/images/logo/logo.svg';
+    this.ctx.response.redirect(redirect);
+    this.ctx.response.set('Cache-Control', 'public,max-age=25920');
+  }
+}
@@ -0,0 +1,20 @@
+import { Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController } from '@certd/lib-server';
+import { EmailService } from '../../../modules/basic/service/email-service.js';
+import { Constants } from '@certd/lib-server';
+
+/**
+ */
+@Provide()
+@Controller('/api/basic/email')
+export class EmailController extends BaseController {
+  @Inject()
+  emailService: EmailService;
+
+  @Post('/test', { summary: Constants.per.authOnly })
+  public async test(@Body('receiver') receiver) {
+    const userId = super.getUserId();
+    await this.emailService.test(userId, receiver);
+    return this.ok({});
+  }
+}
@@ -0,0 +1,47 @@
+import { Controller, Fields, Files, Get, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { BaseController, Constants, FileService, UploadFileItem, uploadTmpFileCacheKey } from '@certd/lib-server';
+import send from 'koa-send';
+import { nanoid } from 'nanoid';
+import { cache } from '@certd/basic';
+import { UploadFileInfo } from '@midwayjs/upload';
+
+/**
+ */
+@Provide()
+@Controller('/api/basic/file')
+export class FileController extends BaseController {
+  @Inject()
+  fileService: FileService;
+
+  @Post('/upload', { summary: Constants.per.authOnly })
+  async upload(@Files() files: UploadFileInfo<string>[], @Fields() fields: any) {
+    console.log('files', files, fields);
+    const cacheKey = uploadTmpFileCacheKey + nanoid();
+    const file = files[0];
+    cache.set(
+      cacheKey,
+      {
+        filename: file.filename,
+        tmpFilePath: file.data,
+      } as UploadFileItem,
+      {
+        ttl: 1000 * 60 * 60,
+      }
+    );
+    return this.ok({
+      key: cacheKey,
+    });
+  }
+
+  @Get('/download', { summary: Constants.per.guest })
+  async download(@Query('key') key: string) {
+    let userId: any = null;
+    if (!key.startsWith('/public')) {
+      userId = this.getUserId();
+    }
+    const filePath = this.fileService.getFile(key, userId);
+    this.ctx.response.attachment(filePath);
+    this.ctx.response.set('Cache-Control', 'public,max-age=2592000');
+    await send(this.ctx, filePath);
+  }
+}
@@ -0,0 +1,15 @@
+import { Controller, Get, Inject, MidwayEnvironmentService, Provide } from '@midwayjs/core';
+import { logger } from '@certd/basic';
+import { Constants } from '@certd/lib-server';
+
+@Provide()
+@Controller('/home')
+export class HomeController {
+  @Inject()
+  environmentService: MidwayEnvironmentService;
+  @Get('/', { summary: Constants.per.guest })
+  async home(): Promise<string> {
+    logger.info('当前环境：', this.environmentService.getCurrentEnvironment()); // prod
+    return 'Hello Midwayjs!';
+  }
+}
@@ -0,0 +1,90 @@
+import { Config, Controller, Get, Inject, Provide } from '@midwayjs/core';
+import {
+  BaseController,
+  Constants,
+  SysHeaderMenus,
+  SysInstallInfo,
+  SysPublicSettings,
+  SysSettingsService,
+  SysSiteEnv,
+  SysSiteInfo,
+  SysSuiteSetting,
+} from '@certd/lib-server';
+import { AppKey, getPlusInfo, isComm } from '@certd/plus-core';
+
+/**
+ */
+@Provide()
+@Controller('/api/basic/settings')
+export class BasicSettingsController extends BaseController {
+  @Inject()
+  sysSettingsService: SysSettingsService;
+  @Config('account.server.baseUrl')
+  accountServerBaseUrl: any;
+
+  @Config('agent')
+  agentConfig: SysSiteEnv['agent'];
+
+  public async getSysPublic() {
+    return await this.sysSettingsService.getSetting(SysPublicSettings);
+  }
+
+  public async getInstallInfo() {
+    const settings: SysInstallInfo = await this.sysSettingsService.getSetting(SysInstallInfo);
+    settings.accountServerBaseUrl = this.accountServerBaseUrl;
+    settings.appKey = AppKey;
+    return settings;
+  }
+
+  public async getSiteInfo() {
+    return await this.sysSettingsService.getSetting(SysSiteInfo);
+  }
+
+  public async getHeaderMenus() {
+    return await this.sysSettingsService.getSetting(SysHeaderMenus);
+  }
+
+  public async getSuiteSetting() {
+    if (!isComm()) {
+      return { enabled: false };
+    }
+    const setting = await this.sysSettingsService.getSetting<SysSuiteSetting>(SysSuiteSetting);
+    return {
+      enabled: setting.enabled,
+    };
+  }
+
+  public async getSiteEnv() {
+    const env: SysSiteEnv = {
+      agent: this.agentConfig,
+    };
+    return env;
+  }
+
+  async plusInfo() {
+    return getPlusInfo();
+  }
+
+  @Get('/all', { summary: Constants.per.guest })
+  async getAllSettings() {
+    const sysPublic = await this.getSysPublic();
+    const installInfo = await this.getInstallInfo();
+    let siteInfo = {};
+    if (isComm()) {
+      siteInfo = await this.getSiteInfo();
+    }
+    const siteEnv = await this.getSiteEnv();
+    const plusInfo = await this.plusInfo();
+    const headerMenus = await this.getHeaderMenus();
+    const suiteSetting = await this.getSuiteSetting();
+    return this.ok({
+      sysPublic,
+      installInfo,
+      siteInfo,
+      siteEnv,
+      plusInfo,
+      headerMenus,
+      suiteSetting,
+    });
+  }
+}
@@ -0,0 +1,28 @@
+import { ALL, Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController, Constants } from '@certd/lib-server';
+import { CnameRecordService } from '../../../modules/cname/service/cname-record-service.js';
+import { CnameProviderService } from '../../../modules/cname/service/cname-provider-service.js';
+
+/**
+ * 授权
+ */
+@Provide()
+@Controller('/api/cname/provider')
+export class CnameProviderController extends BaseController {
+  @Inject()
+  service: CnameRecordService;
+  @Inject()
+  providerService: CnameProviderService;
+
+  getService(): CnameRecordService {
+    return this.service;
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    const res = await this.providerService.list({});
+    return this.ok(res);
+  }
+}
@@ -0,0 +1,94 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController } from '@certd/lib-server';
+import { CnameRecordService } from '../../../modules/cname/service/cname-record-service.js';
+
+/**
+ * 授权
+ */
+@Provide()
+@Controller('/api/cname/record')
+export class CnameRecordController extends CrudController<CnameRecordService> {
+  @Inject()
+  service: CnameRecordService;
+
+  getService(): CnameRecordService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    const domain = body.query.domain;
+    delete body.query.domain;
+
+    const bq = qb => {
+      if (domain) {
+        qb.andWhere('domain like :domain', { domain: `%${domain}%` });
+      }
+    };
+
+    const pageRet = await this.getService().page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+      buildQuery: bq,
+    });
+    return this.ok(pageRet);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    const list = await this.getService().list(body);
+    return this.ok(list);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean: any) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    return super.update(bean);
+  }
+
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.delete(id);
+  }
+
+  @Post('/deleteByIds', { summary: Constants.per.authOnly })
+  async deleteByIds(@Body(ALL) body: any) {
+    await this.service.delete(body.ids, {
+      userId: this.getUserId(),
+    });
+    return this.ok();
+  }
+  @Post('/getByDomain', { summary: Constants.per.authOnly })
+  async getByDomain(@Body(ALL) body: { domain: string; createOnNotFound: boolean }) {
+    const userId = this.getUserId();
+    const res = await this.service.getByDomain(body.domain, userId, body.createOnNotFound);
+    return this.ok(res);
+  }
+
+  @Post('/verify', { summary: Constants.per.authOnly })
+  async verify(@Body(ALL) body: { id: string }) {
+    const userId = this.getUserId();
+    await this.service.checkUserId(body.id, userId);
+    const res = await this.service.verify(body.id);
+    return this.ok(res);
+  }
+}
@@ -0,0 +1,47 @@
+import { Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController, Constants } from '@certd/lib-server';
+import { UserService } from '../../../modules/sys/authority/service/user-service.js';
+import { RoleService } from '../../../modules/sys/authority/service/role-service.js';
+import { PipelineService } from '../../../modules/pipeline/service/pipeline-service.js';
+import { HistoryService } from '../../../modules/pipeline/service/history-service.js';
+
+export type ChartItem = {
+  name: string;
+  value: number;
+};
+export type UserStatisticCount = {
+  pipelineCount?: number;
+  pipelineStatusCount?: ChartItem[];
+  historyCountPerDay: ChartItem[];
+  expiringList: any[];
+};
+/**
+ */
+@Provide()
+@Controller('/api/statistic/')
+export class StatisticController extends BaseController {
+  @Inject()
+  userService: UserService;
+  @Inject()
+  roleService: RoleService;
+
+  @Inject()
+  pipelineService: PipelineService;
+  @Inject()
+  historyService: HistoryService;
+
+  @Post('/count', { summary: Constants.per.authOnly })
+  public async count() {
+    const pipelineCount = await this.pipelineService.count({ userId: this.getUserId() });
+    const pipelineStatusCount = await this.pipelineService.statusCount({ userId: this.getUserId() });
+    const historyCount = await this.historyService.countPerDay({ userId: this.getUserId(), days: 7 });
+    const expiringList = await this.pipelineService.latestExpiringList({ userId: this.getUserId(), count: 5 });
+    const count: UserStatisticCount = {
+      pipelineCount,
+      pipelineStatusCount,
+      historyCountPerDay: historyCount,
+      expiringList,
+    };
+    return this.ok(count);
+  }
+}
@@ -0,0 +1,60 @@
+import { ALL, Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { LoginService } from '../../../modules/login/service/login-service.js';
+import { BaseController, Constants, SysPublicSettings, SysSettingsService } from '@certd/lib-server';
+import { CodeService } from '../../../modules/basic/service/code-service.js';
+import { checkComm } from '@certd/plus-core';
+
+/**
+ */
+@Provide()
+@Controller('/api/')
+export class LoginController extends BaseController {
+  @Inject()
+  loginService: LoginService;
+  @Inject()
+  codeService: CodeService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
+  @Post('/login', { summary: Constants.per.guest })
+  public async login(
+    @Body(ALL)
+    user: any
+  ) {
+    const token = await this.loginService.loginByPassword(user);
+    this.ctx.cookies.set('token', token.token, {
+      maxAge: 1000 * token.expire,
+    });
+
+    return this.ok(token);
+  }
+
+  @Post('/loginBySms', { summary: Constants.per.guest })
+  public async loginBySms(
+    @Body(ALL)
+    body: any
+  ) {
+    const settings = await this.sysSettingsService.getSetting<SysPublicSettings>(SysPublicSettings);
+    if (settings.smsLoginEnabled !== true) {
+      throw new Error('当前站点禁止短信验证码登录');
+    }
+    checkComm();
+
+    const token = await this.loginService.loginBySmsCode({
+      phoneCode: body.phoneCode,
+      mobile: body.mobile,
+      smsCode: body.smsCode,
+      randomStr: body.randomStr,
+    });
+
+    this.ctx.cookies.set('token', token.token, {
+      maxAge: 1000 * token.expire,
+    });
+
+    return this.ok(token);
+  }
+
+  @Post('/logout', { summary: Constants.per.authOnly })
+  public logout() {}
+}
@@ -0,0 +1,90 @@
+import { ALL, Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController, Constants, SysSettingsService } from '@certd/lib-server';
+import { RegisterType, UserService } from '../../../modules/sys/authority/service/user-service.js';
+import { CodeService } from '../../../modules/basic/service/code-service.js';
+import { checkComm, checkPlus } from '@certd/plus-core';
+
+export type RegisterReq = {
+  type: RegisterType;
+  username: string;
+  password: string;
+  mobile: string;
+  email: string;
+  phoneCode?: string;
+
+  validateCode: string;
+  imgCode: string;
+  randomStr: string;
+};
+
+/**
+ */
+@Provide()
+@Controller('/api/')
+export class RegisterController extends BaseController {
+  @Inject()
+  userService: UserService;
+  @Inject()
+  codeService: CodeService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
+  @Post('/register', { summary: Constants.per.guest })
+  public async register(
+    @Body(ALL)
+    body: RegisterReq
+  ) {
+    const sysPublicSettings = await this.sysSettingsService.getPublicSettings();
+    if (sysPublicSettings.registerEnabled === false) {
+      throw new Error('当前站点已禁止自助注册功能');
+    }
+
+    if (body.type === 'username') {
+      if (sysPublicSettings.usernameRegisterEnabled === false) {
+        throw new Error('当前站点已禁止用户名注册功能');
+      }
+      await this.codeService.checkCaptcha(body.randomStr, body.imgCode);
+      const newUser = await this.userService.register(body.type, {
+        username: body.username,
+        password: body.password,
+      } as any);
+      return this.ok(newUser);
+    } else if (body.type === 'mobile') {
+      if (sysPublicSettings.mobileRegisterEnabled === false) {
+        throw new Error('当前站点已禁止手机号注册功能');
+      }
+      checkComm();
+      //验证短信验证码
+      await this.codeService.checkSmsCode({
+        mobile: body.mobile,
+        phoneCode: body.phoneCode,
+        smsCode: body.validateCode,
+        randomStr: body.randomStr,
+        throwError: true,
+      });
+      const newUser = await this.userService.register(body.type, {
+        phoneCode: body.phoneCode,
+        mobile: body.mobile,
+        password: body.password,
+      } as any);
+      return this.ok(newUser);
+    } else if (body.type === 'email') {
+      if (sysPublicSettings.emailRegisterEnabled === false) {
+        throw new Error('当前站点已禁止Email注册功能');
+      }
+      checkPlus();
+      this.codeService.checkEmailCode({
+        email: body.email,
+        randomStr: body.randomStr,
+        validateCode: body.validateCode,
+        throwError: true,
+      });
+      const newUser = await this.userService.register(body.type, {
+        email: body.email,
+        password: body.password,
+      } as any);
+      return this.ok(newUser);
+    }
+  }
+}
@@ -0,0 +1,35 @@
+import { ALL, Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController, Constants } from '@certd/lib-server';
+import { UserService } from '../../../modules/sys/authority/service/user-service.js';
+import { RoleService } from '../../../modules/sys/authority/service/role-service.js';
+
+/**
+ */
+@Provide()
+@Controller('/api/mine')
+export class MineController extends BaseController {
+  @Inject()
+  userService: UserService;
+  @Inject()
+  roleService: RoleService;
+  @Post('/info', { summary: Constants.per.authOnly })
+  public async info() {
+    const userId = this.getUserId();
+    const user = await this.userService.info(userId);
+    const isWeak = await this.userService.checkPassword('123456', user.password, user.passwordVersion);
+    if (isWeak) {
+      //@ts-ignore
+      user.isWeak = true;
+    }
+    user.roleIds = await this.roleService.getRoleIdsByUserId(userId);
+    delete user.password;
+    return this.ok(user);
+  }
+
+  @Post('/changePassword', { summary: Constants.per.authOnly })
+  public async changePassword(@Body(ALL) body: any) {
+    const userId = this.getUserId();
+    await this.userService.changePassword(userId, body);
+    return this.ok({});
+  }
+}
@@ -0,0 +1,69 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { CrudController } from '@certd/lib-server';
+import { Constants } from '@certd/lib-server';
+import { UserSettingsService } from '../../../modules/mine/service/user-settings-service.js';
+import { UserSettingsEntity } from '../../../modules/mine/entity/user-settings.js';
+
+/**
+ */
+@Provide()
+@Controller('/api/user/settings')
+export class UserSettingsController extends CrudController<UserSettingsService> {
+  @Inject()
+  service: UserSettingsService;
+
+  getService() {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return super.page(body);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean) {
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    return super.update(bean);
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.delete(id);
+  }
+
+  @Post('/save', { summary: Constants.per.authOnly })
+  async save(@Body(ALL) bean: UserSettingsEntity) {
+    bean.userId = this.getUserId();
+    await this.service.save(bean);
+    return this.ok({});
+  }
+
+  @Post('/get', { summary: Constants.per.authOnly })
+  async get(@Query('key') key: string) {
+    const entity = await this.service.getByKey(key, this.getUserId());
+    return this.ok(entity);
+  }
+}
@@ -0,0 +1,87 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController } from '@certd/lib-server';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { CertInfoService } from '../../../modules/monitor/index.js';
+import { PipelineService } from '../../../modules/pipeline/service/pipeline-service.js';
+
+/**
+ */
+@Provide()
+@Controller('/api/monitor/cert')
+export class CertInfoController extends CrudController<CertInfoService> {
+  @Inject()
+  service: CertInfoService;
+  @Inject()
+  authService: AuthService;
+  @Inject()
+  pipelineService: PipelineService;
+
+  getService(): CertInfoService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+    });
+
+    const records = res.records;
+    const pipelineIds = records.map(r => r.pipelineId);
+    const pipelines = await this.pipelineService.getSimplePipelines(pipelineIds);
+    const pMap = new Map();
+    for (const p of pipelines) {
+      pMap.set(p.id, p);
+    }
+    for (const record of records) {
+      record.pipeline = pMap.get(record.pipelineId);
+    }
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return await super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    return await super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    return await super.update(bean);
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.delete(id);
+  }
+
+  @Post('/all', { summary: Constants.per.authOnly })
+  async all() {
+    const list: any = await this.service.find({
+      where: {
+        userId: this.getUserId(),
+      },
+    });
+    return this.ok(list);
+  }
+}
@@ -0,0 +1,80 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController } from '@certd/lib-server';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { SiteInfoService } from '../../../modules/monitor/service/site-info-service.js';
+
+/**
+ */
+@Provide()
+@Controller('/api/monitor/site')
+export class SiteInfoController extends CrudController<SiteInfoService> {
+  @Inject()
+  service: SiteInfoService;
+  @Inject()
+  authService: AuthService;
+
+  getService(): SiteInfoService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+    });
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return await super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    const res = await this.service.add(bean);
+    await this.service.check(res.id, false, 0);
+    return this.ok(res);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    await this.service.update(bean);
+    await this.service.check(bean.id, false, 0);
+    return this.ok();
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.delete(id);
+  }
+
+  @Post('/check', { summary: Constants.per.authOnly })
+  async check(@Body('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    await this.service.check(id, false, 0);
+    return this.ok();
+  }
+
+  @Post('/checkAll', { summary: Constants.per.authOnly })
+  async checkAll() {
+    const userId = this.getUserId();
+    await this.service.checkAllByUsers(userId);
+    return this.ok();
+  }
+}
@@ -0,0 +1,64 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController } from '@certd/lib-server';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { OpenKeyService } from '../../../modules/open/service/open-key-service.js';
+
+/**
+ */
+@Provide()
+@Controller('/api/open/key')
+export class OpenKeyController extends CrudController<OpenKeyService> {
+  @Inject()
+  service: OpenKeyService;
+  @Inject()
+  authService: AuthService;
+
+  getService(): OpenKeyService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+    });
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return await super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    const res = await this.service.add(bean);
+    return this.ok(res);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    await this.service.update(bean);
+    return this.ok();
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return await super.delete(id);
+  }
+}
@@ -0,0 +1,101 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController } from '@certd/lib-server';
+import { AccessService } from '@certd/lib-server';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { AccessDefine } from '@certd/pipeline';
+
+/**
+ * 授权
+ */
+@Provide()
+@Controller('/api/pi/access')
+export class AccessController extends CrudController<AccessService> {
+  @Inject()
+  service: AccessService;
+  @Inject()
+  authService: AuthService;
+
+  getService(): AccessService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    delete body.query.userId;
+    const buildQuery = qb => {
+      qb.andWhere('user_id = :userId', { userId: this.getUserId() });
+    };
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+      buildQuery,
+    });
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean) {
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    delete bean.userId;
+    return super.update(bean);
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.delete(id);
+  }
+
+  @Post('/define', { summary: Constants.per.authOnly })
+  async define(@Query('type') type: string) {
+    const access = this.service.getDefineByType(type);
+    return this.ok(access);
+  }
+
+  @Post('/getSecretPlain', { summary: Constants.per.authOnly })
+  async getSecretPlain(@Body(ALL) body: { id: number; key: string }) {
+    const value = await this.service.getById(body.id, this.getUserId());
+    return this.ok(value[body.key]);
+  }
+
+  @Post('/accessTypeDict', { summary: Constants.per.authOnly })
+  async getAccessTypeDict() {
+    const list: AccessDefine[] = this.service.getDefineList();
+    const dict = [];
+    for (const item of list) {
+      dict.push({
+        value: item.name,
+        label: item.title,
+        icon: item.icon,
+      });
+    }
+    return this.ok(dict);
+  }
+
+  @Post('/simpleInfo', { summary: Constants.per.authOnly })
+  async simpleInfo(@Query('id') id: number) {
+    await this.authService.checkEntityUserId(this.ctx, this.service, id);
+    const res = await this.service.getSimpleInfo(id);
+    return this.ok(res);
+  }
+}
@@ -0,0 +1,21 @@
+import { Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { PipelineService } from '../../../modules/pipeline/service/pipeline-service.js';
+import { BaseController, Constants } from '@certd/lib-server';
+import { StorageService } from '../../../modules/pipeline/service/storage-service.js';
+
+@Provide()
+@Controller('/api/pi/cert')
+export class CertController extends BaseController {
+  @Inject()
+  pipelineService: PipelineService;
+  @Inject()
+  storeService: StorageService;
+
+  @Post('/get', { summary: Constants.per.authOnly })
+  async getCert(@Query('id') id: number) {
+    const userId = this.getUserId();
+    await this.pipelineService.checkUserId(id, userId);
+    const privateVars = await this.storeService.getPipelinePrivateVars(id);
+    return this.ok(privateVars.cert);
+  }
+}
@@ -0,0 +1,34 @@
+import { ALL, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { DnsProviderService } from '../../../modules/pipeline/service/dns-provider-service.js';
+import { BaseController } from '@certd/lib-server';
+import { Constants } from '@certd/lib-server';
+
+/**
+ * 插件
+ */
+@Provide()
+@Controller('/api/pi/dnsProvider')
+export class DnsProviderController extends BaseController {
+  @Inject()
+  service: DnsProviderService;
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Query(ALL) query: any) {
+    query.userId = this.getUserId();
+    const list = this.service.getList();
+    return this.ok(list);
+  }
+
+  @Post('/dnsProviderTypeDict', { summary: Constants.per.authOnly })
+  async getDnsProviderTypeDict() {
+    const list = this.service.getList();
+    const dict = [];
+    for (const item of list) {
+      dict.push({
+        value: item.name,
+        label: item.title,
+      });
+    }
+    return this.ok(dict);
+  }
+}
@@ -0,0 +1,127 @@
+import { ALL, Body, Controller, Inject, Post, Provide } from '@midwayjs/core';
+import { BaseController, Constants } from '@certd/lib-server';
+import {
+  AccessRequestHandleReq,
+  ITaskPlugin,
+  newAccess,
+  newNotification,
+  NotificationRequestHandleReq,
+  pluginRegistry,
+  PluginRequestHandleReq,
+  TaskInstanceContext,
+} from '@certd/pipeline';
+import { AccessService, AccessGetter } from '@certd/lib-server';
+import { EmailService } from '../../../modules/basic/service/email-service.js';
+import { http, HttpRequestConfig, logger, mergeUtils, utils } from '@certd/basic';
+import { NotificationService } from '../../../modules/pipeline/service/notification-service.js';
+
+@Provide()
+@Controller('/api/pi/handle')
+export class HandleController extends BaseController {
+  @Inject()
+  accessService: AccessService;
+
+  @Inject()
+  emailService: EmailService;
+
+  @Inject()
+  notificationService: NotificationService;
+
+  @Post('/access', { summary: Constants.per.authOnly })
+  async accessRequest(@Body(ALL) body: AccessRequestHandleReq) {
+    let inputAccess = body.input.access;
+    if (body.input.id > 0) {
+      const oldEntity = await this.accessService.info(body.input.id);
+      if (oldEntity) {
+        if (oldEntity.userId !== this.getUserId()) {
+          throw new Error('access not found');
+        }
+        const param: any = {
+          type: body.typeName,
+          setting: JSON.stringify(body.input.access),
+        };
+        this.accessService.encryptSetting(param, oldEntity);
+        inputAccess = this.accessService.decryptAccessEntity(param);
+      }
+    }
+
+    const access = newAccess(body.typeName, inputAccess);
+
+    const res = await access.onRequest(body);
+
+    return this.ok(res);
+  }
+
+  @Post('/notification', { summary: Constants.per.authOnly })
+  async notificationRequest(@Body(ALL) body: NotificationRequestHandleReq) {
+    const input = body.input.body;
+
+    const notification = await newNotification(body.typeName, input, {
+      http,
+      logger,
+      utils,
+      emailService: this.emailService,
+    });
+
+    const res = await notification.onRequest(body);
+
+    return this.ok(res);
+  }
+
+  @Post('/plugin', { summary: Constants.per.authOnly })
+  async pluginRequest(@Body(ALL) body: PluginRequestHandleReq) {
+    const userId = this.getUserId();
+    const pluginDefine = pluginRegistry.get(body.typeName);
+    const pluginCls = pluginDefine.target;
+    if (pluginCls == null) {
+      throw new Error(`plugin ${body.typeName} not found`);
+    }
+    //实例化access
+    //@ts-ignore
+    const plugin: PluginRequestHandler = new pluginCls();
+    //@ts-ignore
+    const instance = plugin as ITaskPlugin;
+
+    const accessGetter = new AccessGetter(userId, this.accessService.getById.bind(this.accessService));
+
+    const download = async (config: HttpRequestConfig, savePath: string) => {
+      await utils.download({
+        http,
+        logger,
+        config,
+        savePath,
+      });
+    };
+    //@ts-ignore
+    const taskCtx: TaskInstanceContext = {
+      pipeline: undefined,
+      step: undefined,
+      lastStatus: undefined,
+      http,
+      download,
+      logger: logger,
+      inputChanged: true,
+      accessService: accessGetter,
+      emailService: this.emailService,
+      pipelineContext: undefined,
+      userContext: undefined,
+      fileStore: undefined,
+      signal: undefined,
+      // pipelineContext: this.pipelineContext,
+      // userContext: this.contextFactory.getContext('user', this.options.userId),
+      // fileStore: new FileStore({
+      //   scope: this.pipeline.id,
+      //   parent: this.runtime.id,
+      //   rootDir: this.options.fileRootDir,
+      // }),
+      // signal: this.abort.signal,
+      utils,
+    };
+    instance.setCtx(taskCtx);
+    mergeUtils.merge(plugin, body.input);
+    await instance.onInstance();
+    const res = await plugin.onRequest(body);
+
+    return this.ok(res);
+  }
+}
@@ -0,0 +1,214 @@
+import { ALL, Body, Controller, Get, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { CommonException, Constants, CrudController, PermissionException } from '@certd/lib-server';
+import { PipelineEntity } from '../../../modules/pipeline/entity/pipeline.js';
+import { HistoryService } from '../../../modules/pipeline/service/history-service.js';
+import { HistoryLogService } from '../../../modules/pipeline/service/history-log-service.js';
+import { HistoryEntity } from '../../../modules/pipeline/entity/history.js';
+import { HistoryLogEntity } from '../../../modules/pipeline/entity/history-log.js';
+import { PipelineService } from '../../../modules/pipeline/service/pipeline-service.js';
+import * as fs from 'fs';
+import { logger } from '@certd/basic';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { SysSettingsService } from '@certd/lib-server';
+import { In } from 'typeorm';
+
+/**
+ * 证书
+ */
+@Provide()
+@Controller('/api/pi/history')
+export class HistoryController extends CrudController<HistoryService> {
+  @Inject()
+  service: HistoryService;
+  @Inject()
+  pipelineService: PipelineService;
+  @Inject()
+  logService: HistoryLogService;
+
+  @Inject()
+  authService: AuthService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
+  getService(): HistoryService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body: any) {
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    const publicSettings = await this.sysSettingsService.getPublicSettings();
+    const pipelineQuery: any = {};
+    if (!(publicSettings.managerOtherUserPipeline && isAdmin)) {
+      body.query.userId = this.getUserId();
+      pipelineQuery.userId = this.getUserId();
+    }
+
+    let pipelineIds: any = null;
+    const pipelineTitle = body.query?.pipelineTitle;
+    delete body.query.pipelineTitle;
+    if (pipelineTitle) {
+      const pipelines = await this.pipelineService.list({
+        query: pipelineQuery,
+        buildQuery: qb => {
+          qb.andWhere('title like :title', { title: `%${pipelineTitle}%` });
+        },
+      });
+      pipelineIds = pipelines.map(p => p.id);
+    }
+
+    const buildQuery = qb => {
+      if (pipelineIds) {
+        qb.andWhere({
+          pipelineId: In(pipelineIds),
+        });
+      }
+    };
+
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+      buildQuery,
+    });
+
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body) {
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    if (!isAdmin) {
+      body.userId = this.getUserId();
+    }
+    if (body.pipelineId == null) {
+      return this.ok([]);
+    }
+    const buildQuery = qb => {
+      qb.limit(10);
+    };
+    const listRet = await this.getService().list({
+      query: body,
+      sort: { prop: 'id', asc: false },
+      buildQuery,
+    });
+    for (const item of listRet) {
+      if (!item.pipeline) {
+        continue;
+      }
+      const json = JSON.parse(item.pipeline);
+      delete json.stages;
+      item.pipeline = json;
+    }
+    return this.ok(listRet);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean: PipelineEntity) {
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
+    delete bean.userId;
+    return super.update(bean);
+  }
+
+  @Post('/save', { summary: Constants.per.authOnly })
+  async save(@Body(ALL) bean: HistoryEntity) {
+    bean.userId = this.getUserId();
+    if (bean.id > 0) {
+      await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
+    }
+    await this.service.save(bean);
+    return this.ok(bean.id);
+  }
+
+  @Post('/saveLog', { summary: Constants.per.authOnly })
+  async saveLog(@Body(ALL) bean: HistoryLogEntity) {
+    bean.userId = this.getUserId();
+    if (bean.id > 0) {
+      await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
+    }
+    await this.logService.save(bean);
+    return this.ok(bean.id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
+    await super.delete(id);
+    return this.ok();
+  }
+
+  @Post('/deleteByIds', { summary: Constants.per.authOnly })
+  async deleteByIds(@Body(ALL) body: any) {
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), body.ids);
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    const userId = isAdmin ? null : this.getUserId();
+    await this.getService().deleteByIds(body.ids, userId);
+    return this.ok();
+  }
+
+  @Post('/detail', { summary: Constants.per.authOnly })
+  async detail(@Query('id') id: number) {
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
+    const detail = await this.service.detail(id);
+    return this.ok(detail);
+  }
+
+  @Post('/logs', { summary: Constants.per.authOnly })
+  async logs(@Query('id') id: number) {
+    await this.authService.checkEntityUserId(this.ctx, this.logService, id);
+    const logInfo = await this.logService.info(id);
+    return this.ok(logInfo);
+  }
+
+  @Post('/files', { summary: Constants.per.authOnly })
+  async files(@Query('pipelineId') pipelineId: number, @Query('historyId') historyId: number) {
+    await this.authService.checkEntityUserId(this.ctx, this.service, historyId);
+    const files = await this.getFiles(historyId, pipelineId);
+    return this.ok(files);
+  }
+
+  private async getFiles(historyId, pipelineId) {
+    let history = null;
+    if (historyId != null) {
+      // nothing
+      history = await this.service.info(historyId);
+    } else if (pipelineId != null) {
+      history = await this.service.getLastHistory(pipelineId);
+    }
+    if (history == null) {
+      throw new CommonException('historyId is null');
+    }
+    if (history.userId !== this.getUserId()) {
+      throw new PermissionException();
+    }
+    return await this.service.getFiles(history);
+  }
+
+  @Get('/download', { summary: Constants.per.authOnly })
+  async download(@Query('pipelineId') pipelineId: number, @Query('historyId') historyId: number, @Query('fileId') fileId: string) {
+    await this.authService.checkEntityUserId(this.ctx, this.service, historyId);
+    const files = await this.getFiles(historyId, pipelineId);
+    const file = files.find(f => f.id === fileId);
+    if (file == null) {
+      throw new CommonException('file not found');
+    }
+    // koa send file
+    // 下载文件的名称
+    // const filename = file.filename;
+    // 要下载的文件的完整路径
+    const path = file.path;
+    logger.info(`download:${path}`);
+    // 以流的形式下载文件
+    this.ctx.attachment(path);
+    this.ctx.set('Content-Type', 'application/octet-stream');
+
+    return fs.createReadStream(path);
+  }
+}
@@ -0,0 +1,163 @@
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from '@midwayjs/core';
+import { Constants, CrudController, ValidateException } from '@certd/lib-server';
+import { NotificationService } from '../../../modules/pipeline/service/notification-service.js';
+import { AuthService } from '../../../modules/sys/authority/service/auth-service.js';
+import { NotificationDefine } from '@certd/pipeline';
+import { checkPlus } from '@certd/plus-core';
+
+/**
+ * 通知
+ */
+@Provide()
+@Controller('/api/pi/notification')
+export class NotificationController extends CrudController<NotificationService> {
+  @Inject()
+  service: NotificationService;
+  @Inject()
+  authService: AuthService;
+
+  getService(): NotificationService {
+    return this.service;
+  }
+
+  @Post('/page', { summary: Constants.per.authOnly })
+  async page(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    delete body.query.userId;
+    const buildQuery = qb => {
+      qb.andWhere('user_id = :userId', { userId: this.getUserId() });
+    };
+    const res = await this.service.page({
+      query: body.query,
+      page: body.page,
+      sort: body.sort,
+      buildQuery,
+    });
+    return this.ok(res);
+  }
+
+  @Post('/list', { summary: Constants.per.authOnly })
+  async list(@Body(ALL) body) {
+    body.query = body.query ?? {};
+    body.query.userId = this.getUserId();
+    return super.list(body);
+  }
+
+  @Post('/add', { summary: Constants.per.authOnly })
+  async add(@Body(ALL) bean) {
+    bean.userId = this.getUserId();
+    const type = bean.type;
+    const define: NotificationDefine = this.service.getDefineByType(type);
+    if (!define) {
+      throw new ValidateException('通知类型不存在');
+    }
+    if (define.needPlus) {
+      checkPlus();
+    }
+    return super.add(bean);
+  }
+
+  @Post('/update', { summary: Constants.per.authOnly })
+  async update(@Body(ALL) bean) {
+    await this.service.checkUserId(bean.id, this.getUserId());
+    const old = await this.service.info(bean.id);
+    if (!old) {
+      throw new ValidateException('通知配置不存在');
+    }
+    if (old.type !== bean.type) {
+      const type = bean.type;
+      const define: NotificationDefine = this.service.getDefineByType(type);
+      if (!define) {
+        throw new ValidateException('通知类型不存在');
+      }
+      if (define.needPlus) {
+        checkPlus();
+      }
+    }
+    delete bean.userId;
+    return super.update(bean);
+  }
+  @Post('/info', { summary: Constants.per.authOnly })
+  async info(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.info(id);
+  }
+
+  @Post('/delete', { summary: Constants.per.authOnly })
+  async delete(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    return super.delete(id);
+  }
+
+  @Post('/define', { summary: Constants.per.authOnly })
+  async define(@Query('type') type: string) {
+    const notification = this.service.getDefineByType(type);
+    return this.ok(notification);
+  }
+
+  @Post('/getTypeDict', { summary: Constants.per.authOnly })
+  async getTypeDict() {
+    const list: any = this.service.getDefineList();
+    let dict = [];
+    for (const item of list) {
+      dict.push({
+        value: item.name,
+        label: item.title,
+        needPlus: item.needPlus ?? false,
+        icon: item.icon,
+      });
+    }
+    dict = dict.sort(a => {
+      return a.needPlus ? 0 : -1;
+    });
+    return this.ok(dict);
+  }
+
+  @Post('/simpleInfo', { summary: Constants.per.authOnly })
+  async simpleInfo(@Query('id') id: number) {
+    if (id === 0) {
+      //获取默认
+      const res = await this.service.getDefault(this.getUserId());
+      if (!res) {
+        throw new ValidateException('默认通知配置不存在');
+      }
+      const simple = await this.service.getSimpleInfo(res.id);
+      return this.ok(simple);
+    }
+    await this.authService.checkEntityUserId(this.ctx, this.service, id);
+    const res = await this.service.getSimpleInfo(id);
+    return this.ok(res);
+  }
+
+  @Post('/getDefaultId', { summary: Constants.per.authOnly })
+  async getDefaultId() {
+    const res = await this.service.getDefault(this.getUserId());
+    return this.ok(res?.id);
+  }
+
+  @Post('/setDefault', { summary: Constants.per.authOnly })
+  async setDefault(@Query('id') id: number) {
+    await this.service.checkUserId(id, this.getUserId());
+    const res = await this.service.setDefault(id, this.getUserId());
+    return this.ok(res);
+  }
+
+  @Post('/getOrCreateDefault', { summary: Constants.per.authOnly })
+  async getOrCreateDefault(@Body('email') email: string) {
+    const res = await this.service.getOrCreateDefault(email, this.getUserId());
+    return this.ok(res);
+  }
+
+  @Post('/options', { summary: Constants.per.authOnly })
+  async options() {
+    const res = await this.service.list({
+      query: {
+        userId: this.getUserId(),
+      },
+    });
+    for (const item of res) {
+      delete item.setting;
+    }
+    return this.ok(res);
+  }
+}