v1.23.1

.github/workflows/build-image.yml

@@ -61,7 +61,7 @@ jobs:
       - name: Build and push
         uses: docker/build-push-action@v6.5.0
         with:
-          platforms: linux/amd64,linux/arm64,linux/arm/v7
+          platforms: linux/amd64,linux/arm64
           push: true
           context: ./packages/ui/
           tags: |

CHANGELOG.md

@@ -3,6 +3,46 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+### Bug Fixes
+
+* 修复模糊查询无效的bug ([9355917](https://github.com/certd/certd/commit/93559174c780173f0daec7cdbd1f72f8d5c504d5))
+
+### Performance Improvements
+
+* 优化插件字段的default value ([24c7be2](https://github.com/certd/certd/commit/24c7be2c9cb39c14f7a97b674127c88033280b02))
+* 优化默认值设置 ([1af19f0](https://github.com/certd/certd/commit/1af19f0ac053fe109782882964533636b5969d6b))
+
+# [1.23.0](https://github.com/certd/certd/compare/v1.22.9...v1.23.0) (2024-08-05)
+
+### Bug Fixes
+
+* 修复环境变量多个下划线不生效的bug ([7ec2218](https://github.com/certd/certd/commit/7ec2218c9fee5bee2bf0aa31f3e3a4301575f247))
+
+### Features
+
+* use node 20 ([e8ed972](https://github.com/certd/certd/commit/e8ed97206bf28e83f942db2ef4ea07fa76fd3567))
+
+## [1.22.9](https://github.com/certd/certd/compare/v1.22.8...v1.22.9) (2024-08-05)
+
+### Performance Improvements
+
+* 优化定时任务 ([87e440e](https://github.com/certd/certd/commit/87e440ee2a8b10dc571ce619f28bc83c1e5eb147))
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+### Performance Improvements
+
+* 修复删除历史记录没有删除log的bug，新增history管理页面，演示站点启动时不自动启动非管理员用户的定时任务 ([f78ae93](https://github.com/certd/certd/commit/f78ae93eedfe214008c3d071ca3d77c962137a64))
+* 优化pipeline删除时，删除其他history ([b425203](https://github.com/certd/certd/commit/b4252033d56a9ad950f3e204ff021497c3978015))
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+### Bug Fixes
+
+* 修复保存配置报id不能为空的bug ([367f807](https://github.com/certd/certd/commit/367f80731396003416665c22853dfbc09c2c03a0))
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 ### Bug Fixes

README.md

@@ -5,6 +5,17 @@ CertD 是一个免费全自动申请和自动部署更新SSL证书的工具。
 
 关键字：证书自动申请、证书自动更新、证书自动续期、证书自动续签
 
+************************
+支持开源，为爱发电，我已入驻爱发电   
+https://afdian.com/a/greper
+
+发电权益：
+1. 可加入发电专属群（先加我好友，发送发电截图，我拉你进群）
+2. 你的需求优先实现
+3. 可以获得作者一对一技术支持
+4. 更多权益陆续增加中...
+************************
+
 ## 一、特性
 本项目不仅支持证书申请过程自动化，还可以自动化部署更新证书，让你的证书永不过期。     
 
@@ -22,7 +33,7 @@ CertD 是一个免费全自动申请和自动部署更新SSL证书的工具。
 
 https://certd.handsfree.work/
 
-> 注意数据将不定期清理，生产使用请自行部署    
+> 注意数据将不定期清理，不定期停止定时任务，生产使用请自行部署    
 > 包含敏感信息，务必自己本地部署进行生产使用
 
 ## 三、使用教程

build.trigger

@@ -1 +1 @@
-23:16
+2

lerna.json

@@ -9,5 +9,5 @@
     }
   },
   "npmClient": "pnpm",
-  "version": "1.22.6"
+  "version": "1.23.1"
 }

package.json

@@ -12,9 +12,10 @@
   "scripts": {
     "start": "lerna bootstrap --hoist",
     "i-all": "lerna link && lerna exec npm install  ",
-    "publish": "npm run prepublishOnly1  && lerna publish --conventional-commits --create-release github && npm run afterpublishOnly",
+    "publish": "npm run prepublishOnly2  && lerna publish --conventional-commits --create-release github && npm run afterpublishOnly",
     "afterpublishOnly": "time /t >build.trigger && git add ./build.trigger && git commit -m \"build: trigger build image\" && TIMEOUT /T 10 && git push",
-    "prepublishOnly1": "npm run check && npm run before-build && lerna run build ",
+    "prepublishOnly1": "npm run check && lerna run build ",
+    "prepublishOnly2": "npm run check && npm run before-build && lerna run build ",
     "before-build": "cd ./packages/core/pipeline && time /t >build.md && git add ./build.md && git commit -m \"build: prepare to build\"",
     "deploy1": "node --experimental-json-modules deploy.js ",
     "check": "node --experimental-json-modules publish-check.js",

packages/core/pipeline/CHANGELOG.md

@@ -3,6 +3,20 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+### Performance Improvements
+
+* 优化pipeline删除时，删除其他history ([b425203](https://github.com/certd/certd/commit/b4252033d56a9ad950f3e204ff021497c3978015))
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+**Note:** Version bump only for package @certd/pipeline
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 ### Bug Fixes

packages/core/pipeline/build.md

@@ -1 +1 @@
-02:51
+11:38

packages/core/pipeline/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/pipeline",
   "private": false,
-  "version": "1.22.6",
+  "version": "1.23.1",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",

packages/core/pipeline/src/core/file-store.ts

@@ -18,7 +18,9 @@ export interface IFileStore {
 
 export class FileStore {
   rootDir: string;
+  // pipelineId
   scope: string;
+  // historyId
   parent: string;
   constructor(options?: FileStoreOptions) {
     this.rootDir = fileUtils.getFileRootDir(options?.rootDir);

packages/libs/lib-k8s/CHANGELOG.md

@@ -3,6 +3,18 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 **Note:** Version bump only for package @certd/lib-k8s

packages/libs/lib-k8s/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/lib-k8s",
   "private": false,
-  "version": "1.22.6",
+  "version": "1.23.1",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -17,7 +17,7 @@
     "shelljs": "^0.8.5"
   },
   "devDependencies": {
-    "@certd/pipeline": "^1.22.6",
+    "@certd/pipeline": "^1.23.1",
     "@rollup/plugin-commonjs": "^23.0.4",
     "@rollup/plugin-json": "^6.0.0",
     "@rollup/plugin-node-resolve": "^15.0.1",

packages/libs/lib-k8s/src/lib/k8s.client.ts

@@ -1,7 +1,7 @@
 import kubernetesClient from 'kubernetes-client';
 //@ts-ignore
 import dns from 'dns';
-import { logger } from '@certd/pipeline';
+import { ILogger } from '@certd/pipeline';
 
 //@ts-ignore
 const { KubeConfig, Client, Request } = kubernetesClient;
@@ -10,8 +10,10 @@ export class K8sClient {
   kubeConfigStr: string;
   lookup!: any;
   client!: any;
-  constructor(kubeConfigStr: string) {
+  logger: ILogger;
+  constructor(kubeConfigStr: string, logger: ILogger) {
     this.kubeConfigStr = kubeConfigStr;
+    this.logger = logger;
     this.init();
   }
 
@@ -33,9 +35,9 @@ export class K8sClient {
    */
   setLookup(localRecords: { [key: string]: { ip: string } }) {
     this.lookup = (hostnameReq: any, options: any, callback: any) => {
-      logger.info('custom lookup', hostnameReq, localRecords);
+      this.logger.info('custom lookup', hostnameReq, localRecords);
       if (localRecords[hostnameReq]) {
-        logger.info('local record', hostnameReq, localRecords[hostnameReq]);
+        this.logger.info('local record', hostnameReq, localRecords[hostnameReq]);
         callback(null, localRecords[hostnameReq].ip, 4);
       } else {
         dns.lookup(hostnameReq, options, callback);
@@ -64,7 +66,7 @@ export class K8sClient {
     const created = await this.client.api.v1.namespaces(namespace).secrets.post({
       body: opts.body,
     });
-    logger.info('new secrets:', created);
+    this.logger.info('new secrets:', created);
     return created;
   }
 

packages/plugins/plugin-cert/CHANGELOG.md

@@ -3,6 +3,20 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+### Performance Improvements
+
+* 优化插件字段的default value ([24c7be2](https://github.com/certd/certd/commit/24c7be2c9cb39c14f7a97b674127c88033280b02))
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+**Note:** Version bump only for package @certd/plugin-cert
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+**Note:** Version bump only for package @certd/plugin-cert
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 ### Performance Improvements

packages/plugins/plugin-cert/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/plugin-cert",
   "private": false,
-  "version": "1.22.6",
+  "version": "1.23.1",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -14,7 +14,7 @@
   },
   "dependencies": {
     "@certd/acme-client": "^1.22.6",
-    "@certd/pipeline": "^1.22.6",
+    "@certd/pipeline": "^1.23.1",
     "jszip": "^3.10.1",
     "node-forge": "^0.10.0",
     "psl": "^1.9.0"

packages/plugins/plugin-cert/src/plugin/cert-plugin/index.ts

@@ -27,7 +27,7 @@ export type { CertInfo };
 export class CertApplyPlugin extends CertApplyBasePlugin {
   @TaskInput({
     title: "证书提供商",
-    default: "letsencrypt",
+    value: "letsencrypt",
     component: {
       name: "a-select",
       vModel: "value",
@@ -82,7 +82,7 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
 
   @TaskInput({
     title: "使用代理",
-    default: false,
+    value: false,
     component: {
       name: "a-switch",
       vModel: "checked",
@@ -93,7 +93,7 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
 
   @TaskInput({
     title: "跳过本地校验DNS",
-    default: false,
+    value: false,
     component: {
       name: "a-switch",
       vModel: "checked",

packages/ui/.dockerignore

@@ -0,0 +1,19 @@
+logs/
+npm-debug.log
+yarn-error.log
+node_modules/
+package-lock.json
+yarn.lock
+coverage/
+!dist/
+.idea/
+run/
+.DS_Store
+*.sw*
+*.un~
+.tsbuildinfo
+.tsbuildinfo.*
+/data/db.sqlite
+*/node_modules
+certd-server/tools/windows/
+

packages/ui/Dockerfile

@@ -1,15 +1,15 @@
-FROM node:18-alpine AS builder
+FROM node:20-alpine AS builder
 EXPOSE 7001
 WORKDIR /workspace/
 COPY . /workspace/
-RUN npm install -g pnpm@8.15.7
+RUN npm install -g pnpm
 
 #RUN cd /workspace/certd-client && pnpm install && npm run build
 RUN cp /workspace/certd-client/dist/* /workspace/certd-server/public/ -rf
 RUN cd /workspace/certd-server && pnpm install && npm run build-on-docker
 
 
-FROM node:18-alpine
+FROM node:20-alpine
 WORKDIR /app/
 COPY --from=builder /workspace/certd-server/ /app/
 RUN chmod +x /app/tools/linux/*

packages/ui/certd-client/CHANGELOG.md

@@ -3,6 +3,34 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+### Performance Improvements
+
+* 优化默认值设置 ([1af19f0](https://github.com/certd/certd/commit/1af19f0ac053fe109782882964533636b5969d6b))
+
+# [1.23.0](https://github.com/certd/certd/compare/v1.22.9...v1.23.0) (2024-08-05)
+
+### Features
+
+* use node 20 ([e8ed972](https://github.com/certd/certd/commit/e8ed97206bf28e83f942db2ef4ea07fa76fd3567))
+
+## [1.22.9](https://github.com/certd/certd/compare/v1.22.8...v1.22.9) (2024-08-05)
+
+### Performance Improvements
+
+* 优化定时任务 ([87e440e](https://github.com/certd/certd/commit/87e440ee2a8b10dc571ce619f28bc83c1e5eb147))
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+### Performance Improvements
+
+* 修复删除历史记录没有删除log的bug，新增history管理页面，演示站点启动时不自动启动非管理员用户的定时任务 ([f78ae93](https://github.com/certd/certd/commit/f78ae93eedfe214008c3d071ca3d77c962137a64))
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+**Note:** Version bump only for package @certd/ui-client
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 ### Bug Fixes

packages/ui/certd-client/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/ui-client",
-  "version": "1.22.6",
+  "version": "1.23.1",
   "private": true,
   "scripts": {
     "dev": "vite --open",
@@ -24,10 +24,10 @@
   "dependencies": {
     "@ant-design/colors": "^7.0.2",
     "@ant-design/icons-vue": "^7.0.1",
-    "@fast-crud/fast-crud": "^1.21.1",
-    "@fast-crud/fast-extends": "^1.21.1",
-    "@fast-crud/ui-antdv4": "^1.21.1",
-    "@fast-crud/ui-interface": "^1.21.1",
+    "@fast-crud/fast-crud": "^1.21.2",
+    "@fast-crud/fast-extends": "^1.21.2",
+    "@fast-crud/ui-antdv4": "^1.21.2",
+    "@fast-crud/ui-interface": "^1.21.2",
     "@iconify/vue": "^4.1.1",
     "@soerenmartius/vue3-clipboard": "^0.1.2",
     "ant-design-vue": "^4.1.2",
@@ -57,7 +57,7 @@
     "vuedraggable": "^2.24.3"
   },
   "devDependencies": {
-    "@certd/pipeline": "^1.22.6",
+    "@certd/pipeline": "^1.23.1",
     "@rollup/plugin-commonjs": "^25.0.7",
     "@rollup/plugin-node-resolve": "^15.2.3",
     "@types/chai": "^4.3.12",

packages/ui/certd-client/src/api/modules/api.basic.ts

@@ -1,9 +1,9 @@
 import { request } from "../service";
 
 export type SysPublicSetting = {
-  registerEnabled:boolean
-}
-
+  registerEnabled: boolean;
+  managerOtherUserPipeline: boolean;
+};
 
 export async function getSysPublicSettings(): Promise<SysPublicSetting> {
   return await request({

packages/ui/certd-client/src/api/modules/api.user.ts

@@ -18,6 +18,7 @@ export interface UserInfoRes {
   id: string | number;
   username: string;
   nickName: string;
+  roles: number[];
 }
 
 export interface LoginRes {

packages/ui/certd-client/src/router/source/modules/certd.ts

@@ -27,6 +27,15 @@ export const certdResources = [
           isMenu: false
         }
       },
+      {
+        title: "执行历史记录",
+        name: "pipelineHistory",
+        path: "/certd/history",
+        component: "/certd/history/index.vue",
+        meta: {
+          icon: "ion:timer-outline"
+        }
+      },
       {
         title: "授权管理",
         name: "access",

packages/ui/certd-client/src/store/modules/settings.ts

@@ -4,9 +4,8 @@ import _ from "lodash-es";
 // @ts-ignore
 import { LocalStorage } from "/src/utils/util.storage";
 
+import * as basicApi from "/@/api/modules/api.basic";
 import { SysPublicSetting } from "/@/api/modules/api.basic";
-import * as basicApi from '/@/api/modules/api.basic'
-import _ from "lodash-es";
 
 export type ThemeToken = {
   token: {
@@ -21,7 +20,7 @@ export type ThemeConfig = {
 export interface SettingState {
   themeConfig?: ThemeConfig;
   themeToken: ThemeToken;
-  sysPublic?: SysPublicSetting
+  sysPublic?: SysPublicSetting;
 }
 
 const defaultThemeConfig = {
@@ -38,21 +37,22 @@ export const useSettingStore = defineStore({
       algorithm: theme.defaultAlgorithm
     },
     sysPublic: {
-      registerEnabled: false
+      registerEnabled: false,
+      managerOtherUserPipeline: false
     }
   }),
   getters: {
     getThemeConfig(): any {
       return this.themeConfig || _.merge({}, defaultThemeConfig, LocalStorage.get(SETTING_THEME_KEY) || {});
     },
-    getSysPublic():SysPublicSetting{
-      return this.sysPublic
+    getSysPublic(): SysPublicSetting {
+      return this.sysPublic;
     }
   },
   actions: {
-    async loadSysSettings(){
-      const settings = await basicApi.getSysPublicSettings()
-      _.merge(this.sysPublic,settings)
+    async loadSysSettings() {
+      const settings = await basicApi.getSysPublicSettings();
+      _.merge(this.sysPublic, settings);
     },
     persistThemeConfig() {
       LocalStorage.set(SETTING_THEME_KEY, this.getThemeConfig);
@@ -92,7 +92,7 @@ export const useSettingStore = defineStore({
     },
     async init() {
       await this.setThemeConfig(this.getThemeConfig);
-      await this.loadSysSettings()
+      await this.loadSysSettings();
     }
   }
 });

packages/ui/certd-client/src/store/modules/user.ts

@@ -34,6 +34,9 @@ export const useUserStore = defineStore({
     },
     getToken(): string {
       return this.token || LocalStorage.get(TOKEN_KEY);
+    },
+    isAdmin(): boolean {
+      return this.getUserInfo?.id === 1;
     }
   },
   actions: {

packages/ui/certd-client/src/views/certd/history/api.ts

@@ -0,0 +1,59 @@
+import { request } from "/src/api/service";
+
+const apiPrefix = "/pi/history";
+
+export function GetList(query: any) {
+  return request({
+    url: apiPrefix + "/page",
+    method: "post",
+    data: query
+  });
+}
+
+export function AddObj(obj: any) {
+  return request({
+    url: apiPrefix + "/add",
+    method: "post",
+    data: obj
+  });
+}
+
+export function UpdateObj(obj: any) {
+  return request({
+    url: apiPrefix + "/update",
+    method: "post",
+    data: obj
+  });
+}
+
+export function DelObj(id: any) {
+  return request({
+    url: apiPrefix + "/delete",
+    method: "post",
+    params: { id }
+  });
+}
+
+export function GetObj(id: any) {
+  return request({
+    url: apiPrefix + "/info",
+    method: "post",
+    params: { id }
+  });
+}
+
+export function GetDetail(id: any) {
+  return request({
+    url: apiPrefix + "/detail",
+    method: "post",
+    params: { id }
+  });
+}
+
+export function DeleteBatch(ids: any[]) {
+  return request({
+    url: apiPrefix + "/deleteByIds",
+    method: "post",
+    data: { ids }
+  });
+}

packages/ui/certd-client/src/views/certd/history/crud.tsx

@@ -0,0 +1,154 @@
+import * as api from "./api";
+import { useI18n } from "vue-i18n";
+import { computed, Ref, ref } from "vue";
+import { useRouter } from "vue-router";
+import { AddReq, CreateCrudOptionsProps, CreateCrudOptionsRet, DelReq, EditReq, UserPageQuery, UserPageRes, utils } from "@fast-crud/fast-crud";
+import { useUserStore } from "/@/store/modules/user";
+import { useSettingStore } from "/@/store/modules/settings";
+
+export default function ({ crudExpose, context }: CreateCrudOptionsProps): CreateCrudOptionsRet {
+  const router = useRouter();
+  const { t } = useI18n();
+  const pageRequest = async (query: UserPageQuery): Promise<UserPageRes> => {
+    return await api.GetList(query);
+  };
+  const editRequest = async ({ form, row }: EditReq) => {
+    form.id = row.id;
+    const res = await api.UpdateObj(form);
+    return res;
+  };
+  const delRequest = async ({ row }: DelReq) => {
+    return await api.DelObj(row.id);
+  };
+
+  const addRequest = async ({ form }: AddReq) => {
+    form.content = JSON.stringify({
+      title: form.title
+    });
+    const res = await api.AddObj(form);
+    return res;
+  };
+
+  const userStore = useUserStore();
+  const settingStore = useSettingStore();
+  const selectedRowKeys: Ref<any[]> = ref([]);
+  context.selectedRowKeys = selectedRowKeys;
+
+  return {
+    crudOptions: {
+      settings: {
+        plugins: {
+          //这里使用行选择插件，生成行选择crudOptions配置，最终会与crudOptions合并
+          rowSelection: {
+            enabled: true,
+            order: -2,
+            before: true,
+            // handle: (pluginProps,useCrudProps)=>CrudOptions,
+            props: {
+              multiple: true,
+              crossPage: true,
+              selectedRowKeys
+            }
+          }
+        }
+      },
+      request: {
+        pageRequest,
+        addRequest,
+        editRequest,
+        delRequest
+      },
+      actionbar: {
+        buttons: {
+          add: {
+            show: false
+          }
+        }
+      },
+      rowHandle: {
+        minWidth: 200,
+        fixed: "right",
+        buttons: {
+          edit: {
+            show: false
+          }
+        }
+      },
+      columns: {
+        id: {
+          title: "ID",
+          key: "id",
+          type: "number",
+          column: {
+            width: 100
+          },
+          form: {
+            show: false
+          }
+        },
+        userId: {
+          title: "用户Id",
+          type: "number",
+          search: {
+            show: computed(() => {
+              return userStore.isAdmin && settingStore.sysPublic.managerOtherUserPipeline;
+            })
+          },
+          form: {
+            show: false
+          },
+          column: {
+            show: computed(() => {
+              return userStore.isAdmin && settingStore.sysPublic.managerOtherUserPipeline;
+            })
+          }
+        },
+        pipelineId: {
+          title: "流水线Id",
+          type: "number",
+          search: {
+            show: true
+          },
+          form: {
+            show: false
+          }
+        },
+        pipelineTitle: {
+          title: "流水线名称",
+          type: "link",
+          search: {
+            show: true,
+            component: {
+              name: "a-input"
+            }
+          },
+          column: {
+            width: 200
+          }
+        },
+        createTime: {
+          title: "创建时间",
+          type: "datetime",
+          form: {
+            show: false
+          },
+          column: {
+            sorter: true,
+            width: 125,
+            align: "center"
+          }
+        },
+        updateTime: {
+          title: "更新时间",
+          type: "datetime",
+          form: {
+            show: false
+          },
+          column: {
+            show: true
+          }
+        }
+      }
+    }
+  };
+}

packages/ui/certd-client/src/views/certd/history/index.vue

@@ -0,0 +1,51 @@
+<template>
+  <fs-page class="page-cert">
+    <template #header>
+      <div class="title">流水线执行记录</div>
+    </template>
+    <fs-crud ref="crudRef" v-bind="crudBinding">
+      <template #pagination-left>
+        <a-tooltip title="批量删除">
+          <fs-button icon="DeleteOutlined" @click="handleBatchDelete"></fs-button>
+        </a-tooltip>
+      </template>
+    </fs-crud>
+  </fs-page>
+</template>
+
+<script lang="ts" setup>
+import { onMounted } from "vue";
+import { useFs } from "@fast-crud/fast-crud";
+import createCrudOptions from "./crud";
+import { message, Modal } from "ant-design-vue";
+import { DeleteBatch } from "/@/views/certd/history/api";
+
+defineOptions({
+  name: "PipelineHistory"
+});
+const { crudBinding, crudRef, crudExpose, context } = useFs({ createCrudOptions });
+
+const selectedRowKeys = context.selectedRowKeys;
+const handleBatchDelete = () => {
+  if (selectedRowKeys.value?.length > 0) {
+    Modal.confirm({
+      title: "确认",
+      content: `确定要批量删除这${selectedRowKeys.value.length}条记录吗`,
+      async onOk() {
+        await DeleteBatch(selectedRowKeys.value);
+        message.info("删除成功");
+        crudExpose.doRefresh();
+        selectedRowKeys.value = [];
+      }
+    });
+  } else {
+    message.error("请先勾选记录");
+  }
+};
+
+// 页面打开后获取列表数据
+onMounted(() => {
+  crudExpose.doRefresh();
+});
+</script>
+<style lang="less"></style>

packages/ui/certd-client/src/views/certd/pipeline/crud.tsx

@@ -1,6 +1,6 @@
 import * as api from "./api";
 import { useI18n } from "vue-i18n";
-import { ref } from "vue";
+import { computed, ref } from "vue";
 import { useRouter } from "vue-router";
 import { AddReq, CreateCrudOptionsProps, CreateCrudOptionsRet, DelReq, dict, EditReq, UserPageQuery, UserPageRes } from "@fast-crud/fast-crud";
 import { statusUtil } from "/@/views/certd/pipeline/pipeline/utils/util.status";
@@ -9,6 +9,7 @@ import { message, Modal } from "ant-design-vue";
 import { env } from "/@/utils/util.env";
 import { useUserStore } from "/@/store/modules/user";
 import dayjs from "dayjs";
+import { useSettingStore } from "/@/store/modules/settings";
 
 export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOptionsProps): CreateCrudOptionsRet {
   const router = useRouter();
@@ -94,6 +95,7 @@ export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOp
     });
   }
   const userStore = useUserStore();
+  const settingStore = useSettingStore();
   return {
     crudOptions: {
       request: {
@@ -185,6 +187,9 @@ export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOp
           title: "ID",
           key: "id",
           type: "number",
+          search: {
+            show: true
+          },
           column: {
             width: 50
           },
@@ -192,6 +197,23 @@ export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOp
             show: false
           }
         },
+        userId: {
+          title: "用户Id",
+          type: "number",
+          search: {
+            show: computed(() => {
+              return userStore.isAdmin && settingStore.sysPublic.managerOtherUserPipeline;
+            })
+          },
+          form: {
+            show: false
+          },
+          column: {
+            show: computed(() => {
+              return userStore.isAdmin && settingStore.sysPublic.managerOtherUserPipeline;
+            })
+          }
+        },
         title: {
           title: "流水线名称",
           type: "link",
@@ -214,6 +236,31 @@ export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOp
             }
           }
         },
+        content: {
+          title: "定时任务数量",
+          type: "number",
+          column: {
+            cellRender({ value }) {
+              if (value && value.triggers) {
+                return value.triggers?.length > 0 ? value.triggers.length : "-";
+              }
+              return "-";
+            }
+          },
+          valueBuilder({ row }) {
+            if (row.content) {
+              row.content = JSON.parse(row.content);
+            }
+          },
+          valueResolve({ row }) {
+            if (row.content) {
+              row.content = JSON.stringify(row.content);
+            }
+          },
+          form: {
+            show: false
+          }
+        },
         lastVars: {
           title: "到期剩余",
           type: "number",
@@ -309,6 +356,9 @@ export default function ({ crudExpose, context: { certdFormRef } }: CreateCrudOp
             sorter: true,
             align: "center",
             width: 80
+          },
+          form: {
+            value: 0
           }
         },
         createTime: {

packages/ui/certd-client/src/views/certd/pipeline/pipeline/component/step-form/index.vue

@@ -148,15 +148,8 @@ export default {
         // 给step的input设置默认值
         changeCurrentPlugin(currentStep.value);
 
-        //赋初始值
+        //合并默认值
         _.merge(currentStep.value, { input: {}, strategy: { runStrategy: 0 } }, currentPlugin.value.default, currentStep.value);
-
-        for (const key in currentPlugin.value.input) {
-          const input = currentPlugin.value.input[key];
-          if (input.default != null) {
-            currentStep.value.input[key] = input.default ?? input.value;
-          }
-        }
       };
 
       const stepDrawerShow = () => {
@@ -229,7 +222,7 @@ export default {
               }
             }
             //设置初始值
-            if (input.default != null && currentStep.value.input[key] == null) {
+            if ((input.default != null || input.value != null) && currentStep.value.input[key] == null) {
               currentStep.value.input[key] = input.default ?? input.value;
             }
           }

packages/ui/certd-client/src/views/framework/login/index.vue

@@ -1,6 +1,15 @@
 <template>
   <div class="main">
-    <a-form ref="formRef" class="user-layout-login" name="custom-validation" :model="formState" :rules="rules" v-bind="layout" @finish="handleFinish" @finishFailed="handleFinishFailed">
+    <a-form
+      ref="formRef"
+      class="user-layout-login"
+      name="custom-validation"
+      :model="formState"
+      :rules="rules"
+      v-bind="layout"
+      @finish="handleFinish"
+      @finish-failed="handleFinishFailed"
+    >
       <!--      <div class="login-title">登录</div>-->
       <a-tabs :active-key="formState.loginType" :tab-bar-style="{ textAlign: 'center', borderBottom: 'unset' }">
         <a-tab-pane key="password" tab="用户名密码登录">
@@ -55,7 +64,13 @@
                 </a-input>
               </a-col>
               <a-col class="gutter-row" :span="8">
-                <a-button class="getCaptcha" tabindex="-1" :disabled="smsSendBtnDisabled" @click="sendSmsCode" v-text="smsTime <= 0 ? '发送' : smsTime + ' s'"></a-button>
+                <a-button
+                  class="getCaptcha"
+                  tabindex="-1"
+                  :disabled="smsSendBtnDisabled"
+                  @click="sendSmsCode"
+                  v-text="smsTime <= 0 ? '发送' : smsTime + ' s'"
+                ></a-button>
               </a-col>
             </a-row>
           </a-form-item>
@@ -75,13 +90,13 @@
 import { defineComponent, reactive, ref, toRaw, computed } from "vue";
 import { useUserStore } from "/src/store/modules/user";
 import { useSettingStore } from "/@/store/modules/settings";
-import {utils} from "@fast-crud/fast-crud";
+import { utils } from "@fast-crud/fast-crud";
 export default defineComponent({
   name: "LoginPage",
   setup() {
     const loading = ref(false);
     const userStore = useUserStore();
-    const settingStore = useSettingStore()
+    const settingStore = useSettingStore();
     const formRef = ref();
     const formState = reactive({
       username: "",
@@ -168,7 +183,7 @@ export default defineComponent({
     function sendSmsCode() {
       //api.sendSmsCode();
     }
-    const sysPublicSettings = settingStore.getSysPublic
+    const sysPublicSettings = settingStore.getSysPublic;
     return {
       loading,
       formState,

packages/ui/certd-client/src/views/framework/register/index.vue

@@ -1,6 +1,16 @@
 <template>
   <div class="main">
-    <a-form ref="formRef" class="user-layout-register" name="custom-validation" :model="formState" :rules="rules" v-bind="layout" @finish="handleFinish" @finishFailed="handleFinishFailed">
+    <a-form
+      ref="formRef"
+      class="user-layout-register"
+      name="custom-validation"
+      :model="formState"
+      :rules="rules"
+      v-bind="layout"
+      :label-col="{ span: 5 }"
+      @finish="handleFinish"
+      @finish-failed="handleFinishFailed"
+    >
       <a-tabs :tab-bar-style="{ textAlign: 'center', borderBottom: 'unset' }">
         <a-tab-pane key="register" tab="用户注册"> </a-tab-pane>
       </a-tabs>
@@ -39,7 +49,7 @@
 <script lang="ts">
 import { defineComponent, reactive, ref, toRaw } from "vue";
 import { useUserStore } from "/src/store/modules/user";
-import {utils} from "@fast-crud/fast-crud";
+import { utils } from "@fast-crud/fast-crud";
 export default defineComponent({
   name: "RegisterPage",
   setup() {

packages/ui/certd-client/src/views/sys/settings/api.ts

@@ -4,8 +4,7 @@ const apiPrefix = "/sys/settings";
 
 export const SettingKeys = {
   SysPublic: "sys.public",
-  SysPrivate: "sys.private",
-
+  SysPrivate: "sys.private"
 };
 export async function SettingsGet(key: string) {
   return await request({
@@ -17,22 +16,28 @@ export async function SettingsGet(key: string) {
   });
 }
 
-export async function SettingsSave(key: string,setting: any) {
+export async function SettingsSave(key: string, setting: any) {
   await request({
     url: apiPrefix + "/save",
     method: "post",
     data: {
       key,
-      setting: JSON.stringify(setting),
+      setting: JSON.stringify(setting)
     }
   });
 }
 
-
 export async function PublicSettingsSave(setting: any) {
   await request({
     url: apiPrefix + "/savePublicSettings",
     method: "post",
     data: setting
   });
-}
+}
+
+export async function stopOtherUserTimer() {
+  await request({
+    url: apiPrefix + "/stopOtherUserTimer",
+    method: "post"
+  });
+}

packages/ui/certd-client/src/views/sys/settings/index.vue

@@ -4,14 +4,31 @@
       <div class="title">系统设置</div>
     </template>
     <div class="sys-settings-form">
-      <a-form :model="formState" name="basic" :label-col="{ span: 8 }" :wrapper-col="{ span: 16 }" autocomplete="off" @finish="onFinish" @finish-failed="onFinishFailed">
+      <a-form
+        :model="formState"
+        name="basic"
+        :label-col="{ span: 8 }"
+        :wrapper-col="{ span: 16 }"
+        autocomplete="off"
+        @finish="onFinish"
+        @finish-failed="onFinishFailed"
+      >
         <a-form-item label="开启自助注册" name="registerEnabled">
           <a-switch v-model:checked="formState.registerEnabled" />
         </a-form-item>
+        <a-form-item label="管理其他用户流水线" name="managerOtherUserPipeline">
+          <a-switch v-model:checked="formState.managerOtherUserPipeline" />
+        </a-form-item>
         <a-form-item :wrapper-col="{ offset: 8, span: 16 }">
           <a-button type="primary" html-type="submit">保存</a-button>
         </a-form-item>
       </a-form>
+
+      <!--      <a-descriptions label="系统维护操作">-->
+      <!--        <a-descriptions-item label="自动化任务">-->
+      <!--          <a-button @click="stopOtherUserTimer">停止所有其他用户的定时任务</a-button>-->
+      <!--        </a-descriptions-item>-->
+      <!--      </a-descriptions>-->
     </div>
   </fs-page>
 </template>
@@ -25,11 +42,10 @@ import { useSettingStore } from "/@/store/modules/settings";
 
 interface FormState {
   registerEnabled: boolean;
-
 }
 
 const formState = reactive<Partial<FormState>>({
-  registerEnabled:false
+  registerEnabled: false
 });
 
 async function loadSysPublicSettings() {
@@ -39,11 +55,11 @@ async function loadSysPublicSettings() {
 }
 
 loadSysPublicSettings();
-const settingsStore= useSettingStore()
+const settingsStore = useSettingStore();
 const onFinish = async (form: any) => {
   console.log("Success:", form);
   await api.PublicSettingsSave(form);
-  await settingsStore.loadSysSettings()
+  await settingsStore.loadSysSettings();
   notification.success({
     message: "保存成功"
   });
@@ -53,6 +69,12 @@ const onFinishFailed = (errorInfo: any) => {
   // console.log("Failed:", errorInfo);
 };
 
+async function stopOtherUserTimer() {
+  await api.stopOtherUserTimer();
+  notification.success({
+    message: "停止成功"
+  });
+}
 </script>
 
 <style lang="less">

packages/ui/certd-server/.dockerignore

@@ -14,6 +14,6 @@ run/
 .tsbuildinfo
 .tsbuildinfo.*
 /data/db.sqlite
-
-/tools/windows/
+*/node_modules
+certd-server/tools/windows/
 

packages/ui/certd-server/.env.pgdev.yaml

@@ -13,3 +13,4 @@ typeorm:
       username: postgres
       password: root
       database: postgres
+

packages/ui/certd-server/CHANGELOG.md

@@ -3,6 +3,41 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.23.1](https://github.com/certd/certd/compare/v1.23.0...v1.23.1) (2024-08-06)
+
+### Bug Fixes
+
+* 修复模糊查询无效的bug ([9355917](https://github.com/certd/certd/commit/93559174c780173f0daec7cdbd1f72f8d5c504d5))
+
+### Performance Improvements
+
+* 优化插件字段的default value ([24c7be2](https://github.com/certd/certd/commit/24c7be2c9cb39c14f7a97b674127c88033280b02))
+
+# [1.23.0](https://github.com/certd/certd/compare/v1.22.9...v1.23.0) (2024-08-05)
+
+### Bug Fixes
+
+* 修复环境变量多个下划线不生效的bug ([7ec2218](https://github.com/certd/certd/commit/7ec2218c9fee5bee2bf0aa31f3e3a4301575f247))
+
+## [1.22.9](https://github.com/certd/certd/compare/v1.22.8...v1.22.9) (2024-08-05)
+
+### Performance Improvements
+
+* 优化定时任务 ([87e440e](https://github.com/certd/certd/commit/87e440ee2a8b10dc571ce619f28bc83c1e5eb147))
+
+## [1.22.8](https://github.com/certd/certd/compare/v1.22.7...v1.22.8) (2024-08-05)
+
+### Performance Improvements
+
+* 修复删除历史记录没有删除log的bug，新增history管理页面，演示站点启动时不自动启动非管理员用户的定时任务 ([f78ae93](https://github.com/certd/certd/commit/f78ae93eedfe214008c3d071ca3d77c962137a64))
+* 优化pipeline删除时，删除其他history ([b425203](https://github.com/certd/certd/commit/b4252033d56a9ad950f3e204ff021497c3978015))
+
+## [1.22.7](https://github.com/certd/certd/compare/v1.22.6...v1.22.7) (2024-08-04)
+
+### Bug Fixes
+
+* 修复保存配置报id不能为空的bug ([367f807](https://github.com/certd/certd/commit/367f80731396003416665c22853dfbc09c2c03a0))
+
 ## [1.22.6](https://github.com/certd/certd/compare/v1.22.5...v1.22.6) (2024-08-03)
 
 ### Bug Fixes

packages/ui/certd-server/db/migration-pg/v00001__init.sql

@@ -1,5 +1,5 @@
 -- 表：sys_permission
-CREATE TABLE "sys_permission" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "title" varchar(100) NOT NULL, "permission" varchar(100), "parent_id" integer NOT NULL DEFAULT (-1), "sort" integer NOT NULL, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "sys_permission" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "title" varchar(100) NOT NULL, "permission" varchar(100), "parent_id" bigint NOT NULL DEFAULT (-1), "sort" bigint NOT NULL, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 INSERT INTO sys_permission (id, title, permission, parent_id, sort ) VALUES (1, '系统管理', 'sys', -1, 1);
 INSERT INTO sys_permission (id, title, permission, parent_id, sort ) VALUES (2, '权限管理', 'sys:auth', 1, 1 );
 INSERT INTO sys_permission (id, title, permission, parent_id, sort ) VALUES (3, '用户管理', 'sys:auth:user', 2, 1);
@@ -22,12 +22,12 @@ INSERT INTO sys_permission (id, title, permission, parent_id, sort ) VALUES (18,
 
 
 -- 表：sys_role
-CREATE TABLE "sys_role" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "name" varchar(100) NOT NULL, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "sys_role" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "name" varchar(100) NOT NULL, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 INSERT INTO sys_role (id, name ) VALUES (1, '管理员');
 INSERT INTO sys_role (id, name ) VALUES (2, '只读角色');
 
 -- 表：sys_role_permission
-CREATE TABLE "sys_role_permission" ("role_id" integer NOT NULL, "permission_id" integer NOT NULL, PRIMARY KEY ("role_id", "permission_id"));
+CREATE TABLE "sys_role_permission" ("role_id" bigint NOT NULL, "permission_id" bigint NOT NULL, PRIMARY KEY ("role_id", "permission_id"));
 INSERT INTO sys_role_permission (role_id, permission_id) VALUES (1, 1);
 INSERT INTO sys_role_permission (role_id, permission_id) VALUES (1, 2);
 INSERT INTO sys_role_permission (role_id, permission_id) VALUES (1, 3);
@@ -59,12 +59,12 @@ INSERT INTO sys_role_permission (role_id, permission_id) VALUES (2, 7);
 INSERT INTO sys_role_permission (role_id, permission_id) VALUES (2, -1);
 
 -- 表：sys_user
-CREATE TABLE "sys_user" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "username" varchar(100) NOT NULL, "password" varchar(50) NOT NULL, "nick_name" varchar(50), "avatar" varchar(255), "phone_code" varchar(20), "mobile" varchar(20), "email" varchar(100),"remark" varchar(100), "status" integer NOT NULL DEFAULT (1), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "sys_user" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "username" varchar(100) NOT NULL, "password" varchar(50) NOT NULL, "nick_name" varchar(50), "avatar" varchar(255), "phone_code" varchar(20), "mobile" varchar(20), "email" varchar(100),"remark" varchar(100), "status" bigint NOT NULL DEFAULT (1), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 INSERT INTO sys_user (id, username, password, nick_name, avatar, phone_code, mobile, email, status ,remark) VALUES (1, 'admin', 'e10adc3949ba59abbe56e057f20f883e', 'admin', NULL, NULL, NULL, NULL, 1,NULL);
 INSERT INTO sys_user (id, username, password, nick_name, avatar, phone_code, mobile, email, status ,remark) VALUES (2, 'readonly', 'e10adc3949ba59abbe56e057f20f883e', '只读用户', NULL, NULL, NULL, NULL, 1,'密码：123456');
 
 -- 表：sys_user_role
-CREATE TABLE "sys_user_role" ("role_id" integer NOT NULL, "user_id" integer NOT NULL, PRIMARY KEY ("role_id", "user_id"));
+CREATE TABLE "sys_user_role" ("role_id" bigint NOT NULL, "user_id" bigint NOT NULL, PRIMARY KEY ("role_id", "user_id"));
 INSERT INTO sys_user_role (role_id, user_id) VALUES (1, 1);
 INSERT INTO sys_user_role (role_id, user_id) VALUES (2, 2);
 

packages/ui/certd-server/db/migration-pg/v10000__certd.sql

@@ -5,20 +5,20 @@
 --
 
 -- 表：cd_access
-CREATE TABLE "cd_access" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "name" varchar(100) NOT NULL, "type" varchar(100) NOT NULL, "setting" varchar(1024), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_access" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "name" varchar(100) NOT NULL, "type" varchar(100) NOT NULL, "setting" varchar(1024), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
 -- 表：cd_cert
-CREATE TABLE "cd_cert" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "domains" varchar(2048) NOT NULL, "email" varchar(100) NOT NULL, "cert_issuer_id" integer, "challenge_type" varchar(100),  "challenge_dns_type" varchar(100),"challenge_access_id" integer, "country" varchar(100), "state" varchar(100), "locality" varchar(100), "organization" varchar(100), "organization_unit" varchar(100), "remark" varchar(100), "last_history_id" integer, "last_success_id" integer, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_cert" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "domains" varchar(2048) NOT NULL, "email" varchar(100) NOT NULL, "cert_issuer_id" bigint, "challenge_type" varchar(100),  "challenge_dns_type" varchar(100),"challenge_access_id" bigint, "country" varchar(100), "state" varchar(100), "locality" varchar(100), "organization" varchar(100), "organization_unit" varchar(100), "remark" varchar(100), "last_history_id" bigint, "last_success_id" bigint, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
 -- 表：cd_cert_apply_history
-CREATE TABLE "cd_cert_apply_history" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "cert_id" integer NOT NULL, "success" boolean, "result" varchar(1024), "cert_crt" varchar(1024), "cert_key" varchar(1024), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_cert_apply_history" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "cert_id" bigint NOT NULL, "success" boolean, "result" varchar(1024), "cert_crt" varchar(1024), "cert_key" varchar(1024), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
 -- 表：cd_cert_issuer
-CREATE TABLE "cd_cert_issuer" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "type" varchar(20) NOT NULL, "account" varchar(100) NOT NULL, "private_key" varchar(1024), "setting" varchar, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_cert_issuer" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "type" varchar(20) NOT NULL, "account" varchar(100) NOT NULL, "private_key" varchar(1024), "setting" varchar, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
 -- 表：cd_task
-CREATE TABLE "cd_task" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "name" varchar(100), "type" varchar(100), "setting" varchar(2048), "cert_id" integer NOT NULL, "last_history_id" integer, "last_success_id" integer, "remark" varchar(100), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_task" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "name" varchar(100), "type" varchar(100), "setting" varchar(2048), "cert_id" bigint NOT NULL, "last_history_id" bigint, "last_success_id" bigint, "remark" varchar(100), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
 -- 表：cd_task_history
-CREATE TABLE "cd_task_history" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "task_id" integer NOT NULL, "cert_id" integer NOT NULL, "cert_apply_history_id" integer NOT NULL, "success" boolean, "result" varchar(2048), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "cd_task_history" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "task_id" bigint NOT NULL, "cert_id" bigint NOT NULL, "cert_apply_history_id" bigint NOT NULL, "success" boolean, "result" varchar(2048), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 

packages/ui/certd-server/db/migration-pg/v10001__certdv2.sql

@@ -1,7 +1,7 @@
-CREATE TABLE "pi_history" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "pipeline_id" integer NOT NULL, "pipeline" varchar(40960), "status" varchar(20), "end_time" timestamp, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "pi_history" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "pipeline_id" bigint NOT NULL, "pipeline" varchar(40960), "status" varchar(20), "end_time" timestamp, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
-CREATE TABLE "pi_history_log" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "pipeline_id" integer NOT NULL, "history_id" integer NOT NULL, "node_id" varchar(100), "logs" varchar(40960), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "pi_history_log" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "pipeline_id" bigint NOT NULL, "history_id" bigint NOT NULL, "node_id" varchar(100), "logs" varchar(40960), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
-CREATE TABLE "pi_pipeline" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "title" integer NOT NULL, "content" varchar(40960) NOT NULL, "keep_history_count" integer, "remark" varchar(100), "status" varchar(100), "disabled" boolean DEFAULT (false), "last_history_time" integer, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "pi_pipeline" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "title" bigint NOT NULL, "content" varchar(40960) NOT NULL, "keep_history_count" bigint, "remark" varchar(100), "status" varchar(100), "disabled" boolean DEFAULT (false), "last_history_time" bigint, "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
 
-CREATE TABLE "pi_storage" ("id" integer PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" integer NOT NULL, "scope" varchar NOT NULL, "namespace" varchar NOT NULL, "version" varchar(100),"key" varchar(100), "value" varchar(40960), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));
+CREATE TABLE "pi_storage" ("id" bigint PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY  NOT NULL, "user_id" bigint NOT NULL, "scope" varchar NOT NULL, "namespace" varchar NOT NULL, "version" varchar(100),"key" varchar(100), "value" varchar(40960), "create_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP), "update_time" timestamp NOT NULL DEFAULT (CURRENT_TIMESTAMP));

packages/ui/certd-server/db/migration-pg/v10002__settings.sql

@@ -1,6 +1,6 @@
 CREATE TABLE "sys_settings" (
-                              "id" integer NOT NULL PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY ,
-                              "user_id" integer NOT NULL,
+                              "id" bigint NOT NULL PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY ,
+                              "user_id" bigint NOT NULL,
                               "key" varchar(100) NOT NULL,
                               "title" varchar(100) NOT NULL,
                               "setting" varchar(1024),

packages/ui/certd-server/db/migration-pg/v10004__settings.sql

@@ -1,7 +1,7 @@
 ALTER TABLE "sys_settings" RENAME TO "user_settings";
 
 CREATE TABLE "sys_settings" (
-                              "id" integer NOT NULL PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY ,
+                              "id" bigint NOT NULL PRIMARY KEY GENERATED BY DEFAULT AS IDENTITY ,
                               "key" varchar(100) NOT NULL,
                               "title" varchar(100) NOT NULL,
                               "setting" varchar(1024),

packages/ui/certd-server/db/migration-pg/v10005__password2.sql

@@ -1,5 +1,5 @@
 INSERT INTO sys_settings (key, title, setting,access) VALUES ('sys.install','安装信息','{"installTime":'|| (select (timestamp) from flyway_history where id = 1 )||'}','private');
 
-ALTER TABLE sys_user ADD COLUMN password_version integer DEFAULT 1;
+ALTER TABLE sys_user ADD COLUMN password_version bigint DEFAULT 1;
 ALTER TABLE sys_user ADD COLUMN password_salt varchar(36);
 alter table sys_user alter column password type varchar(100) using password::varchar(100);

packages/ui/certd-server/db/migration-pg/v10006__pipeline_title.sql

@@ -2,4 +2,4 @@ alter table pi_pipeline alter column title type varchar(100) using title::varcha
 alter table pi_pipeline alter column content type text using content::text;
 alter table pi_storage alter column value type text using value::text;
 
-alter table pi_pipeline  add "order" integer default 0;
+alter table pi_pipeline  add "order" bigint default 0;

packages/ui/certd-server/db/readme.md

@@ -1,18 +1,24 @@
-AUTOINCREAMENT
-GENERATED BY DEFAULT AS IDENTITY
-
+## sqlite与postgres不同点
+1.
+sl: AUTOINCREAMENT
+pg: GENERATED BY DEFAULT AS IDENTITY
 
+2.
 datetime
 timestamp
 
-
+3.
 update sqlite_sequence set seq = 1000 where name = 'sys_role' ;
 select setval('sys_role_id_seq', 1000);
 
-
+4.
 "disabled" boolean DEFAULT (0)
 "disabled" boolean DEFAULT (false)
 
-
+5.
 last_insert_rowid()
 LASTVAL()
+
+6.
+sl: integer
+pg: bigint

packages/ui/certd-server/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/ui-server",
-  "version": "1.22.6",
+  "version": "1.23.1",
   "description": "fast-server base midway",
   "private": true,
   "type": "module",
@@ -23,10 +23,10 @@
     "@alicloud/pop-core": "^1.7.10",
     "@certd/acme-client": "^1.22.6",
     "@certd/lib-huawei": "^1.22.1",
-    "@certd/lib-k8s": "^1.22.6",
+    "@certd/lib-k8s": "^1.23.1",
     "@certd/midway-flyway-js": "^1.22.6",
-    "@certd/pipeline": "^1.22.6",
-    "@certd/plugin-cert": "^1.22.6",
+    "@certd/pipeline": "^1.23.1",
+    "@certd/plugin-cert": "^1.23.1",
     "@koa/cors": "^3.4.3",
     "@midwayjs/bootstrap": "^3.16.2",
     "@midwayjs/cache": "^3.14.0",

packages/ui/certd-server/src/basic/base-controller.ts

@@ -10,7 +10,7 @@ export abstract class BaseController {
    * 成功返回
    * @param data 返回数据
    */
-  ok(data: any) {
+  ok(data?: any) {
     const res = {
       ...Constants.res.success,
       data: undefined,

packages/ui/certd-server/src/basic/base-service.ts

@@ -75,7 +75,7 @@ export abstract class BaseService<T> {
    * @param param 数据
    */
   async add(param) {
-    const now = new Date().getTime();
+    const now = new Date();
     param.createTime = now;
     param.updateTime = now;
     await this.addOrUpdate(param);
@@ -91,7 +91,7 @@ export abstract class BaseService<T> {
    */
   async update(param) {
     if (!param.id) throw new ValidateException('no id');
-    param.updateTime = new Date().getTime();
+    param.updateTime = new Date();
     await this.addOrUpdate(param);
     await this.modifyAfter(param);
   }

packages/ui/certd-server/src/config/keys.ts

@@ -2,6 +2,7 @@ import fs from 'fs';
 import yaml from 'js-yaml';
 import * as _ from 'lodash-es';
 import { nanoid } from 'nanoid';
+import path from 'path';
 const KEYS_FILE = './data/keys.yaml';
 export class Keys {
   jwtKey: string = nanoid();
@@ -19,6 +20,12 @@ export class Keys {
   }
 
   save() {
+    const parent = path.dirname(KEYS_FILE);
+    if (!fs.existsSync(parent)) {
+      fs.mkdirSync(parent, {
+        recursive: true,
+      });
+    }
     fs.writeFileSync(KEYS_FILE, yaml.dump(this));
   }
 }

packages/ui/certd-server/src/config/loader.ts

@@ -12,7 +12,7 @@ function parseEnv(defaultConfig: any) {
       continue;
     }
     keyName = keyName.replace('certd_', '');
-    const configKey = keyName.replace('_', '.');
+    const configKey = keyName.replaceAll('_', '.');
     const oldValue = _.get(defaultConfig, configKey);
     let value: any = process.env[key];
     if (typeof oldValue === 'boolean') {

packages/ui/certd-server/src/middleware/authority.ts

@@ -1,10 +1,9 @@
-import { Config, Inject, Provide } from '@midwayjs/core';
+import { Config, Inject, MidwayWebRouterService, Provide } from '@midwayjs/core';
 import { IMidwayKoaContext, IWebMiddleware, NextFunction } from '@midwayjs/koa';
 import jwt from 'jsonwebtoken';
 import { Constants } from '../basic/constants.js';
-import { MidwayWebRouterService } from '@midwayjs/core';
-import { RoleService } from '../modules/authority/service/role-service.js';
 import { logger } from '../utils/logger.js';
+import { AuthService } from '../modules/authority/service/auth-service.js';
 
 /**
  * 权限校验
@@ -16,7 +15,7 @@ export class AuthorityMiddleware implements IWebMiddleware {
   @Inject()
   webRouterService: MidwayWebRouterService;
   @Inject()
-  roleService: RoleService;
+  authService: AuthService;
 
   resolve() {
     return async (ctx: IMidwayKoaContext, next: NextFunction) => {
@@ -59,11 +58,8 @@ export class AuthorityMiddleware implements IWebMiddleware {
       }
 
       if (permission !== Constants.per.authOnly) {
-        //如果不是仅校验登录，还需要校验是否拥有权限
-        const roleIds: number[] = ctx.user.roles;
-        const permissions = await this.roleService.getCachedPermissionSetByRoleIds(roleIds);
-
-        if (!permissions.has(permission)) {
+        const pass = await this.authService.checkPermission(ctx, permission);
+        if (!pass) {
           logger.info('not permission: ', ctx.req.url);
           ctx.status = 401;
           ctx.body = Constants.res.permission;

packages/ui/certd-server/src/modules/authority/service/auth-service.ts

@@ -0,0 +1,38 @@
+import { Inject, Provide, Scope, ScopeEnum } from '@midwayjs/core';
+import { RoleService } from './role-service.js';
+import { BaseService } from '../../../basic/base-service.js';
+
+/**
+ * 权限校验
+ */
+@Provide()
+@Scope(ScopeEnum.Singleton)
+export class AuthService {
+  @Inject()
+  roleService: RoleService;
+
+  async checkPermission(ctx: any, permission: string) {
+    //如果不是仅校验登录，还需要校验是否拥有权限
+    const roleIds: number[] = ctx.user.roles;
+    const permissions = await this.roleService.getCachedPermissionSetByRoleIds(roleIds);
+    if (!permissions.has(permission)) {
+      return false;
+    }
+    return true;
+  }
+
+  async isAdmin(ctx: any) {
+    const roleIds: number[] = ctx.user.roles;
+    if (roleIds.includes(1)) {
+      return true;
+    }
+  }
+
+  async checkEntityUserId(ctx: any, service: BaseService<any>, id: any = 0, userKey = 'userId') {
+    const isAdmin = await this.isAdmin(ctx);
+    if (isAdmin) {
+      return true;
+    }
+    await service.checkUserId(id, ctx.user.id, userKey);
+  }
+}

packages/ui/certd-server/src/modules/auto/auto-register-cron.ts

@@ -1,6 +1,6 @@
 import { Autoload, Config, Init, Inject, Scope, ScopeEnum } from '@midwayjs/core';
-import { PipelineService } from '../service/pipeline-service.js';
-import { logger } from '../../../utils/logger.js';
+import { PipelineService } from '../pipeline/service/pipeline-service.js';
+import { logger } from '../../utils/logger.js';
 
 @Autoload()
 @Scope(ScopeEnum.Singleton)
@@ -8,6 +8,9 @@ export class AutoRegisterCron {
   @Inject()
   pipelineService: PipelineService;
 
+  @Config('preview.enabled')
+  private preview: boolean;
+
   // @Inject()
   // echoPlugin: EchoPlugin;
   @Config('cron.immediateTriggerOnce')
@@ -16,7 +19,7 @@ export class AutoRegisterCron {
   @Init()
   async init() {
     logger.info('加载定时trigger开始');
-    await this.pipelineService.onStartup(this.immediateTriggerOnce);
+    await this.pipelineService.onStartup(this.immediateTriggerOnce, this.preview);
     // logger.info(this.echoPlugin, this.echoPlugin.test);
     // logger.info('加载定时trigger完成');
     //

packages/ui/certd-server/src/modules/pipeline/controller/history-controller.ts

@@ -11,6 +11,8 @@ import { CommonException } from '../../../basic/exception/common-exception.js';
 import { PermissionException } from '../../../basic/exception/permission-exception.js';
 import * as fs from 'fs';
 import { logger } from '../../../utils/logger.js';
+import { AuthService } from '../../authority/service/auth-service.js';
+import { SysSettingsService } from '../../system/service/sys-settings-service.js';
 
 /**
  * 证书
@@ -25,19 +27,35 @@ export class HistoryController extends CrudController<HistoryService> {
   @Inject()
   logService: HistoryLogService;
 
+  @Inject()
+  authService: AuthService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
   getService() {
     return this.service;
   }
 
   @Post('/page', { summary: Constants.per.authOnly })
   async page(@Body(ALL) body) {
-    body.query.userId = this.ctx.user.id;
-    return super.page(body);
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    const publicSettings = await this.sysSettingsService.getPublicSettings();
+    if (!(publicSettings.managerOtherUserPipeline && isAdmin)) {
+      body.query.userId = this.ctx.user.id;
+    }
+
+    const res = await super.page(body);
+
+    return res;
   }
 
   @Post('/list', { summary: Constants.per.authOnly })
   async list(@Body(ALL) body) {
-    body.userId = this.ctx.user.id;
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    if (!isAdmin) {
+      body.userId = this.ctx.user.id;
+    }
     if (body.pipelineId == null) {
       return this.ok([]);
     }
@@ -56,7 +74,7 @@ export class HistoryController extends CrudController<HistoryService> {
 
   @Post('/update', { summary: Constants.per.authOnly })
   async update(@Body(ALL) bean) {
-    await this.service.checkUserId(bean.id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
     return super.update(bean);
   }
 
@@ -64,7 +82,7 @@ export class HistoryController extends CrudController<HistoryService> {
   async save(@Body(ALL) bean: HistoryEntity) {
     bean.userId = this.ctx.user.id;
     if (bean.id > 0) {
-      await this.service.checkUserId(bean.id, this.ctx.user.id);
+      await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
     }
     await this.service.save(bean);
     return this.ok(bean.id);
@@ -74,7 +92,7 @@ export class HistoryController extends CrudController<HistoryService> {
   async saveLog(@Body(ALL) bean: HistoryLogEntity) {
     bean.userId = this.ctx.user.id;
     if (bean.id > 0) {
-      await this.service.checkUserId(bean.id, this.ctx.user.id);
+      await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
     }
     await this.logService.save(bean);
     return this.ok(bean.id);
@@ -82,26 +100,37 @@ export class HistoryController extends CrudController<HistoryService> {
 
   @Post('/delete', { summary: Constants.per.authOnly })
   async delete(@Query('id') id) {
-    await this.service.checkUserId(id, this.ctx.user.id);
-    return super.delete(id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
+    await super.delete(id);
+    return this.ok();
+  }
+
+  @Post('/deleteByIds', { summary: Constants.per.authOnly })
+  async deleteByIds(@Body(ALL) body) {
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), body.ids);
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    const userId = isAdmin ? null : this.ctx.user.id;
+    await this.getService().deleteByIds(body.ids, userId);
+    return this.ok();
   }
 
   @Post('/detail', { summary: Constants.per.authOnly })
   async detail(@Query('id') id) {
-    await this.service.checkUserId(id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
     const detail = await this.service.detail(id);
     return this.ok(detail);
   }
 
   @Post('/logs', { summary: Constants.per.authOnly })
   async logs(@Query('id') id) {
-    await this.logService.checkUserId(id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.logService, id);
     const logInfo = await this.logService.info(id);
     return this.ok(logInfo);
   }
 
   @Post('/files', { summary: Constants.per.authOnly })
   async files(@Query('pipelineId') pipelineId, @Query('historyId') historyId) {
+    await this.authService.checkEntityUserId(this.ctx, this.service, historyId);
     const files = await this.getFiles(historyId, pipelineId);
     return this.ok(files);
   }
@@ -125,6 +154,7 @@ export class HistoryController extends CrudController<HistoryService> {
 
   @Get('/download', { summary: Constants.per.authOnly })
   async download(@Query('pipelineId') pipelineId, @Query('historyId') historyId, @Query('fileId') fileId) {
+    await this.authService.checkEntityUserId(this.ctx, this.service, historyId);
     const files = await this.getFiles(historyId, pipelineId);
     const file = files.find(f => f.id === fileId);
     if (file == null) {

packages/ui/certd-server/src/modules/pipeline/controller/pipeline-controller.ts

@@ -4,6 +4,8 @@ import { PipelineService } from '../service/pipeline-service.js';
 import { PipelineEntity } from '../entity/pipeline.js';
 import { Constants } from '../../../basic/constants.js';
 import { HistoryService } from '../service/history-service.js';
+import { AuthService } from '../../authority/service/auth-service.js';
+import { SysSettingsService } from '../../system/service/sys-settings-service.js';
 
 /**
  * 证书
@@ -15,6 +17,10 @@ export class PipelineController extends CrudController<PipelineService> {
   service: PipelineService;
   @Inject()
   historyService: HistoryService;
+  @Inject()
+  authService: AuthService;
+  @Inject()
+  sysSettingsService: SysSettingsService;
 
   getService() {
     return this.service;
@@ -22,7 +28,11 @@ export class PipelineController extends CrudController<PipelineService> {
 
   @Post('/page', { summary: Constants.per.authOnly })
   async page(@Body(ALL) body) {
-    body.query.userId = this.ctx.user.id;
+    const isAdmin = await this.authService.isAdmin(this.ctx);
+    const publicSettings = await this.sysSettingsService.getPublicSettings();
+    if (!(publicSettings.managerOtherUserPipeline && isAdmin)) {
+      body.query.userId = this.ctx.user.id;
+    }
 
     const title = body.query.title;
     delete body.query.title;
@@ -36,7 +46,8 @@ export class PipelineController extends CrudController<PipelineService> {
       body.sort = { prop: 'order', asc: false };
     }
 
-    return super.page({ ...body, buildQuery });
+    const pageRet = await this.getService().page(body?.query, body?.page, body?.sort, buildQuery);
+    return this.ok(pageRet);
   }
 
   @Post('/add', { summary: Constants.per.authOnly })
@@ -47,7 +58,7 @@ export class PipelineController extends CrudController<PipelineService> {
 
   @Post('/update', { summary: Constants.per.authOnly })
   async update(@Body(ALL) bean) {
-    await this.service.checkUserId(bean.id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
     return super.update(bean);
   }
 
@@ -55,7 +66,7 @@ export class PipelineController extends CrudController<PipelineService> {
   async save(@Body(ALL) bean: PipelineEntity) {
     bean.userId = this.ctx.user.id;
     if (bean.id > 0) {
-      await this.service.checkUserId(bean.id, this.ctx.user.id);
+      await this.authService.checkEntityUserId(this.ctx, this.getService(), bean.id);
     }
     await this.service.save(bean);
     return this.ok(bean.id);
@@ -63,28 +74,28 @@ export class PipelineController extends CrudController<PipelineService> {
 
   @Post('/delete', { summary: Constants.per.authOnly })
   async delete(@Query('id') id) {
-    await this.service.checkUserId(id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
     await this.service.delete(id);
     return this.ok({});
   }
 
   @Post('/detail', { summary: Constants.per.authOnly })
   async detail(@Query('id') id) {
-    await this.service.checkUserId(id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
     const detail = await this.service.detail(id);
     return this.ok(detail);
   }
 
   @Post('/trigger', { summary: Constants.per.authOnly })
   async trigger(@Query('id') id) {
-    await this.service.checkUserId(id, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.getService(), id);
     await this.service.trigger(id);
     return this.ok({});
   }
 
   @Post('/cancel', { summary: Constants.per.authOnly })
   async cancel(@Query('historyId') historyId) {
-    await this.historyService.checkUserId(historyId, this.ctx.user.id);
+    await this.authService.checkEntityUserId(this.ctx, this.historyService, historyId);
     await this.service.cancel(historyId);
     return this.ok({});
   }

packages/ui/certd-server/src/modules/pipeline/entity/history.ts

@@ -35,4 +35,13 @@ export class HistoryEntity {
     default: () => 'CURRENT_TIMESTAMP',
   })
   updateTime: Date;
+
+  pipelineTitle: string;
+
+  fillPipelineTitle() {
+    if (this.pipeline) {
+      const pipeline = JSON.parse(this.pipeline);
+      this.pipelineTitle = pipeline.title;
+    }
+  }
 }

packages/ui/certd-server/src/modules/pipeline/service/history-log-service.ts

@@ -1,6 +1,6 @@
 import { Provide, Scope, ScopeEnum } from '@midwayjs/core';
 import { InjectEntityModel } from '@midwayjs/typeorm';
-import { Repository } from 'typeorm';
+import { In, Repository } from 'typeorm';
 import { BaseService } from '../../../basic/base-service.js';
 import { HistoryLogEntity } from '../entity/history-log.js';
 
@@ -24,4 +24,15 @@ export class HistoryLogService extends BaseService<HistoryLogEntity> {
       await this.add(bean);
     }
   }
+
+  async deleteByHistoryIds(numbers: number[]) {
+    if (numbers.length === 0) {
+      return;
+    }
+    await this.repository.delete({ historyId: In(numbers) });
+  }
+
+  async deleteByPipelineId(id: number) {
+    await this.repository.delete({ pipelineId: id });
+  }
 }

packages/ui/certd-server/src/modules/pipeline/service/history-service.ts

@@ -1,6 +1,6 @@
 import { Config, Inject, Provide, Scope, ScopeEnum } from '@midwayjs/core';
 import { InjectEntityModel } from '@midwayjs/typeorm';
-import { Repository } from 'typeorm';
+import { In, Repository } from 'typeorm';
 import { BaseService } from '../../../basic/base-service.js';
 import { HistoryEntity } from '../entity/history.js';
 import { PipelineEntity } from '../entity/pipeline.js';
@@ -28,6 +28,14 @@ export class HistoryService extends BaseService<HistoryEntity> {
     return this.repository;
   }
 
+  async page(query, page, sort, buildQuery) {
+    const res = await super.page(query, page, sort, buildQuery);
+    for (const item of res.records) {
+      item.fillPipelineTitle();
+    }
+    return res;
+  }
+
   async save(bean: HistoryEntity) {
     if (bean.id > 0) {
       await this.update(bean);
@@ -51,7 +59,7 @@ export class HistoryService extends BaseService<HistoryEntity> {
     };
     const { id } = await this.add(bean);
     //清除大于pipeline.keepHistoryCount的历史记录
-    this.clear(pipeline.id, pipeline.keepHistoryCount);
+    await this.clear(pipeline.id, pipeline.keepHistoryCount);
     return id;
   }
 
@@ -85,7 +93,6 @@ export class HistoryService extends BaseService<HistoryEntity> {
         skip: 0,
         take: deleteCountBatch,
       });
-      await this.repository.remove(list);
 
       for (const historyEntity of list) {
         const id = historyEntity.id;
@@ -95,6 +102,9 @@ export class HistoryService extends BaseService<HistoryEntity> {
           logger.error('删除文件失败', e);
         }
       }
+      await this.repository.remove(list);
+
+      await this.logService.deleteByHistoryIds(list.map(item => item.id));
 
       shouldDeleteCount -= deleteCountBatch;
     }
@@ -124,4 +134,29 @@ export class HistoryService extends BaseService<HistoryEntity> {
     });
     return files;
   }
+
+  async deleteByIds(ids: number[], userId: number) {
+    await this.repository.delete({
+      id: In(ids),
+      userId,
+    });
+    await this.logService.deleteByHistoryIds(ids);
+  }
+
+  async deleteByPipelineId(id: number) {
+    await this.repository.delete({
+      pipelineId: id,
+    });
+
+    try {
+      const fileStore = new FileStore({
+        rootDir: this.certdConfig.fileRootDir,
+        scope: id + '',
+        parent: '0',
+      });
+      fileStore.deleteByParent(id + '', '');
+    } catch (e) {
+      logger.error('删除文件失败', e);
+    }
+  }
 }

packages/ui/certd-server/src/modules/pipeline/service/pipeline-service.ts

@@ -73,6 +73,7 @@ export class PipelineService extends BaseService<PipelineEntity> {
     const info = await this.info(pipelineId);
     if (info && !info.disabled) {
       const pipeline = JSON.parse(info.content);
+      // 手动触发，不要await
       this.registerTriggers(pipeline);
     }
   }
@@ -87,24 +88,21 @@ export class PipelineService extends BaseService<PipelineEntity> {
   }
 
   async update(bean: PipelineEntity) {
-    await this.clearTriggers(bean.id);
+    //更新非trigger部分
     await super.update(bean);
-    await this.registerTriggerById(bean.id);
   }
 
   async save(bean: PipelineEntity) {
     await this.clearTriggers(bean.id);
-    const pipeline = JSON.parse(bean.content);
-    bean.title = pipeline.title;
+    if (bean.content) {
+      const pipeline = JSON.parse(bean.content);
+      bean.title = pipeline.title;
+    }
     await this.addOrUpdate(bean);
     await this.registerTriggerById(bean.id);
   }
 
-  /**
-   * 应用启动后初始加载记录
-   */
-  async onStartup(immediateTriggerOnce: boolean) {
-    logger.info('加载定时trigger开始');
+  async foreachPipeline(callback: (pipeline: PipelineEntity) => void) {
     const idEntityList = await this.repository.find({
       select: {
         id: true,
@@ -135,14 +133,35 @@ export class PipelineService extends BaseService<PipelineEntity> {
       });
 
       for (const entity of list) {
-        const pipeline = JSON.parse(entity.content ?? '{}');
-        try {
-          await this.registerTriggers(pipeline, immediateTriggerOnce);
-        } catch (e) {
-          logger.error('加载定时trigger失败：', e);
-        }
+        await callback(entity);
       }
     }
+  }
+
+  async stopOtherUserPipeline(userId: number) {
+    await this.foreachPipeline(async entity => {
+      if (entity.userId !== userId) {
+        await this.clearTriggers(entity.id);
+      }
+    });
+  }
+
+  /**
+   * 应用启动后初始加载记录
+   */
+  async onStartup(immediateTriggerOnce: boolean, preview: boolean) {
+    logger.info('加载定时trigger开始');
+    await this.foreachPipeline(async entity => {
+      if (preview && entity.userId !== 1) {
+        return;
+      }
+      const pipeline = JSON.parse(entity.content ?? '{}');
+      try {
+        await this.registerTriggers(pipeline, immediateTriggerOnce);
+      } catch (e) {
+        logger.error('加载定时trigger失败：', e);
+      }
+    });
     logger.info('定时器数量：', this.cron.getTaskSize());
   }
 
@@ -156,7 +175,7 @@ export class PipelineService extends BaseService<PipelineEntity> {
 
     if (immediateTriggerOnce) {
       await this.trigger(pipeline.id);
-      await sleep(1000);
+      await sleep(200);
     }
   }
 
@@ -181,9 +200,14 @@ export class PipelineService extends BaseService<PipelineEntity> {
     // const storage = new DbStorage(pipeline.userId, this.storageService);
     // await storage.remove(pipeline.id);
     await super.delete([id]);
+    await this.historyService.deleteByPipelineId(id);
+    await this.historyLogService.deleteByPipelineId(id);
   }
 
   async clearTriggers(id: number) {
+    if (id == null) {
+      return;
+    }
     const pipeline = await this.info(id);
     if (!pipeline) {
       return;
@@ -202,6 +226,11 @@ export class PipelineService extends BaseService<PipelineEntity> {
   }
 
   registerCron(pipelineId, trigger) {
+    if (pipelineId == null) {
+      logger.warn('pipelineId为空，无法注册定时任务');
+      return;
+    }
+
     let cron = trigger.props?.cron;
     if (cron == null) {
       return;
@@ -210,15 +239,20 @@ export class PipelineService extends BaseService<PipelineEntity> {
     if (cron.startsWith('*')) {
       cron = '0' + cron.substring(1, cron.length);
     }
-    const name = this.buildCronKey(pipelineId, trigger.id);
+    const triggerId = trigger.id;
+    const name = this.buildCronKey(pipelineId, triggerId);
     this.cron.remove(name);
     this.cron.register({
       name,
       cron,
       job: async () => {
-        logger.info('定时任务触发：', pipelineId, trigger.id);
+        logger.info('定时任务触发：', pipelineId, triggerId);
+        if (pipelineId == null) {
+          logger.warn('pipelineId为空,无法执行');
+          return;
+        }
         try {
-          await this.run(pipelineId, trigger.id);
+          await this.run(pipelineId, triggerId);
         } catch (e) {
           logger.error('定时job执行失败：', e);
         }

packages/ui/certd-server/src/modules/plugin/cron/configuration.ts

@@ -22,6 +22,7 @@ export class CronConfiguration {
       ...this.config,
     });
     container.registerObject('cron', this.cron);
+    this.cron.start();
     this.logger.info('cron started');
   }
 }

packages/ui/certd-server/src/modules/plugin/cron/cron.ts

@@ -17,56 +17,63 @@ export class CronTask {
   name: string;
   stoped = false;
 
-  timeoutId: any;
+  nextTime: any;
 
   constructor(req: CronTaskReq, logger: ILogger) {
     this.cron = req.cron;
     this.job = req.job;
     this.name = req.name;
     this.logger = logger;
-    this.start();
+    this.genNextTime();
   }
 
-  start() {
+  genNextTime() {
     if (!this.cron) {
-      return;
+      return null;
     }
     if (this.stoped) {
-      return;
+      return null;
     }
     const interval = parser.parseExpression(this.cron);
     const next = interval.next().getTime();
-    const now = Date.now();
-    const delay = next - now;
-    this.timeoutId = setTimeout(async () => {
-      try {
-        if (this.stoped) {
-          return;
-        }
-        await this.job();
-      } catch (e) {
-        this.logger.error(`[cron] job error : [${this.name}]`, e);
-      }
-      this.start();
-    }, delay);
+    this.logger.info(`[cron]  [${this.name}], cron:${this.cron}, next run :${new Date(next).toLocaleString()}`);
+    this.nextTime = next;
+    return next;
   }
 
   stop() {
     this.stoped = true;
-    clearTimeout(this.timeoutId);
   }
 }
 export class Cron {
   logger: ILogger;
   immediateTriggerOnce: boolean;
 
-  bucket: Record<string, CronTask> = {};
-
+  queue: CronTask[] = [];
   constructor(opts: any) {
     this.logger = opts.logger;
     this.immediateTriggerOnce = opts.immediateTriggerOnce;
   }
 
+  start() {
+    this.logger.info('[cron] start');
+    this.queue.forEach(task => {
+      task.genNextTime();
+    });
+
+    setInterval(() => {
+      const now = new Date().getTime();
+      for (const task of this.queue) {
+        if (task.nextTime <= now) {
+          task.job().catch(e => {
+            this.logger.error(`job execute error : [${task.name}]`, e);
+          });
+          task.genNextTime();
+        }
+      }
+    }, 1000 * 60);
+  }
+
   register(req: CronTaskReq) {
     if (!req.cron) {
       this.logger.info(`[cron] register once : [${req.name}]`);
@@ -78,21 +85,22 @@ export class Cron {
     this.logger.info(`[cron] register cron : [${req.name}] ,${req.cron}`);
 
     const task = new CronTask(req, this.logger);
-    this.bucket[task.name] = task;
+    this.queue.push(task);
     this.logger.info('当前定时任务数量：', this.getTaskSize());
   }
 
   remove(taskName: string) {
     this.logger.info(`[cron] remove : [${taskName}]`);
-    const task = this.bucket[taskName];
-    if (task) {
-      task.stop();
-      delete this.bucket[taskName];
+    const index = this.queue.findIndex(item => item.name === taskName);
+    if (index !== -1) {
+      this.queue[index].stop();
+      this.queue.splice(index, 1);
     }
+    this.logger.info('当前定时任务数量：', this.getTaskSize());
   }
 
   getTaskSize() {
-    const tasks = Object.keys(this.bucket);
+    const tasks = Object.keys(this.queue);
     return tasks.length;
   }
 }

packages/ui/certd-server/src/modules/system/controller/sys-settings-controller.ts

@@ -4,6 +4,7 @@ import { SysSettingsService } from '../service/sys-settings-service.js';
 import { SysSettingsEntity } from '../entity/sys-settings.js';
 import { SysPublicSettings } from '../service/models.js';
 import * as _ from 'lodash-es';
+import { PipelineService } from '../../pipeline/service/pipeline-service.js';
 
 /**
  */
@@ -12,6 +13,8 @@ import * as _ from 'lodash-es';
 export class SysSettingsController extends CrudController<SysSettingsService> {
   @Inject()
   service: SysSettingsService;
+  @Inject()
+  pipelineService: PipelineService;
 
   getService() {
     return this.service;
@@ -73,4 +76,9 @@ export class SysSettingsController extends CrudController<SysSettingsService> {
     await this.service.savePublicSettings(setting);
     return this.ok({});
   }
+  @Post('/stopOtherUserTimer', { summary: 'sys:settings:edit' })
+  async stopOtherUserTimer(@Body(ALL) body) {
+    await this.pipelineService.stopOtherUserPipeline(1);
+    return this.ok({});
+  }
 }

packages/ui/certd-server/src/modules/system/service/models.ts

@@ -12,6 +12,7 @@ export class SysPublicSettings extends BaseSettings {
   static __title__ = '系统公共设置';
   static __access__ = 'public';
   registerEnabled = false;
+  managerOtherUserPipeline = false;
 }
 
 export class SysPrivateSettings extends BaseSettings {

packages/ui/certd-server/src/plugins/plugin-aliyun/plugin/deploy-to-ack-ingress/index.ts

@@ -38,7 +38,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
 
   @TaskInput({
     title: '大区',
-    default: 'cn-shanghai',
+    value: 'cn-shanghai',
     component: {
       placeholder: '集群所属大区',
     },
@@ -48,7 +48,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
 
   @TaskInput({
     title: '命名空间',
-    default: 'default',
+    value: 'default',
     component: {
       placeholder: '命名空间',
     },
@@ -57,7 +57,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
   namespace!: string;
   @TaskInput({
     title: 'ingress名称',
-    default: '',
+    value: '',
     component: {
       placeholder: 'ingress名称',
     },
@@ -67,7 +67,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
   ingressName!: string;
   @TaskInput({
     title: 'ingress类型',
-    default: 'nginx',
+    value: 'nginx',
     component: {
       placeholder: '暂时只支持nginx类型',
     },
@@ -76,7 +76,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
   ingressClass!: string;
   @TaskInput({
     title: '是否私网ip',
-    default: false,
+    value: false,
     component: {
       name: 'a-switch',
       vModel: 'checked',
@@ -121,7 +121,7 @@ export class DeployCertToAliyunAckIngressPlugin extends AbstractTaskPlugin {
     const kubeConfigStr = await this.getKubeConfig(client, clusterId, isPrivateIpAddress);
 
     this.logger.info('kubeconfig已成功获取');
-    const k8sClient = new K8sClient(kubeConfigStr);
+    const k8sClient = new K8sClient(kubeConfigStr,this.logger);
     const ingressType = ingressClass || 'qcloud';
     if (ingressType === 'qcloud') {
       throw new Error('暂未实现');

packages/ui/certd-server/src/plugins/plugin-aliyun/plugin/upload-to-aliyun/index.ts

@@ -24,7 +24,7 @@ export class UploadCertToAliyun extends AbstractTaskPlugin {
 
   @TaskInput({
     title: '大区',
-    default: 'cn-hangzhou',
+    value: 'cn-hangzhou',
     component: {
       name: 'a-select',
       mode: 'tags',

packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.ts

@@ -91,7 +91,7 @@ export class DemoTestPlugin extends AbstractTaskPlugin {
     this.logger.info('授权id:', accessId);
     //TODO 这里实现你要部署的执行方法
 
-    new K8sClient('111');
+    new K8sClient('111', null);
   }
 }
 //TODO 这里实例化插件，进行注册

packages/ui/certd-server/src/plugins/plugin-host/lib/ssh.ts

@@ -75,6 +75,10 @@ export class AsyncSsh2Client {
   }
 
   async exec(script: string) {
+    if (!script) {
+      this.logger.info('script 为空，取消执行');
+      return;
+    }
     return new Promise((resolve, reject) => {
       this.logger.info(`执行命令：[${this.connConf.host}][exec]: ` + script);
       this.conn.exec(script, (err: Error, stream: any) => {
@@ -97,6 +101,10 @@ export class AsyncSsh2Client {
             data += out;
             this.logger.info(`[${this.connConf.host}][info]: ` + out.trimEnd());
           })
+          .on('error', (err: any) => {
+            reject(err);
+            this.logger.error(err);
+          })
           .stderr.on('data', (ret: Buffer) => {
             const err = this.convert(ret);
             data += err;

packages/ui/certd-server/src/plugins/plugin-host/plugin/host-shell-execute/index.ts

@@ -30,6 +30,7 @@ export class HostShellExecutePlugin extends AbstractTaskPlugin {
       name: 'a-textarea',
       vModel: 'value',
     },
+    required: true,
   })
   script!: string;
 

packages/ui/certd-server/src/plugins/plugin-host/plugin/upload-to-host/index.ts

@@ -56,7 +56,7 @@ export class UploadCertToHostPlugin extends AbstractTaskPlugin {
   @TaskInput({
     title: '自动创建远程目录',
     helper: '是否自动创建远程目录,如果关闭则你需要自己确保远程目录存在',
-    default: true,
+    value: true,
     component: {
       name: 'a-switch',
       vModel: 'checked',
@@ -68,7 +68,7 @@ export class UploadCertToHostPlugin extends AbstractTaskPlugin {
     title: '仅复制到当前主机',
     helper:
       '开启后，将直接复制到当前主机某个目录，不上传到主机，由于是docker启动，实际上是复制到docker容器内的“证书保存路径”，你需要事先在docker-compose.yaml中配置主机目录映射： volumes: /your_target_path:/your_target_path',
-    default: false,
+    value: false,
     component: {
       name: 'a-switch',
       vModel: 'checked',

packages/ui/certd-server/src/plugins/plugin-tencent/plugin/deploy-to-clb/index.ts

@@ -17,7 +17,7 @@ import dayjs from 'dayjs';
 export class DeployToClbPlugin extends AbstractTaskPlugin {
   @TaskInput({
     title: '大区',
-    default: 'ap-guangzhou',
+    value: 'ap-guangzhou',
     component: {
       name: 'a-select',
       mode: 'tags',

packages/ui/certd-server/src/plugins/plugin-tencent/plugin/deploy-to-tke-ingress/index.ts

@@ -101,7 +101,7 @@ export class DeployCertToTencentTKEIngressPlugin extends AbstractTaskPlugin {
     const kubeConfigStr = await this.getTkeKubeConfig(tkeClient, this.clusterId);
 
     this.logger.info('kubeconfig已成功获取');
-    const k8sClient = new K8sClient(kubeConfigStr);
+    const k8sClient = new K8sClient(kubeConfigStr, this.logger);
     if (this.clusterIp != null) {
       if (!this.clusterDomain) {
         this.clusterDomain = `${this.clusterId}.ccs.tencent-cloud.com`;