perf: AI开发插件 skills 定义初步

docs: microsoft oauth docs
Merge branch 'v2-dev' into v2_admin_mode
2026-04-28 16:17:25 +08:00 · 2026-02-05 17:26:47 +08:00 · 2026-02-05 17:18:26 +08:00 · 2026-02-05 16:31:32 +08:00 · 2026-02-05 16:14:05 +08:00 · 2026-02-05 12:22:55 +08:00
129 changed files with 4910 additions and 512 deletions
@@ -0,0 +1,301 @@
+# Access 插件开发技能
+
+## 什么是 Access 插件
+
+Access 插件是 Certd 系统中用于存储用户第三方应用授权数据的插件，例如用户名密码、accessSecret 或 accessToken 等。同时，它还负责对接实现第三方的 API 接口，供其他插件调用使用。
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AccessInput, BaseAccess, IsAccess, Pager, PageRes, PageSearch } from '@certd/pipeline';
+import { DomainRecord } from '@certd/plugin-lib';
+```
+
+### 2. 使用 @IsAccess 注解注册插件
+
+```typescript
+@IsAccess({
+  name: 'demo', // 插件唯一标识
+  title: '授权插件示例', // 插件标题
+  icon: 'clarity:plugin-line', // 插件图标
+  desc: '这是一个示例授权插件，用于演示如何实现一个授权插件', // 插件描述
+})
+export class DemoAccess extends BaseAccess {
+  // 插件实现...
+}
+```
+
+### 3. 定义授权属性
+
+使用 `@AccessInput` 注解定义授权属性：
+
+```typescript
+@AccessInput({
+  title: '授权方式',
+  value: 'apiKey', // 默认值
+  component: {
+    name: "a-select", // 基于 antdv 的输入组件
+    vModel: "value", // v-model 绑定的属性名
+    options: [ // 组件参数
+      { label: "API密钥（推荐）", value: "apiKey" },
+      { label: "账号密码", value: "account" },
+    ],
+    placeholder: 'demoKeyId',
+  },
+  required: true,
+})
+apiType = '';
+
+@AccessInput({
+  title: '密钥Id',
+  component: {
+    name:"a-input",
+    allowClear: true,
+    placeholder: 'demoKeyId',
+  },
+  required: true,
+})
+demoKeyId = '';
+
+@AccessInput({
+  title: '密钥',//标题
+  required: true,  //text组件可以省略
+  encrypt: true, //该属性是否需要加密
+})
+demoKeySecret = '';
+```
+
+### 4. 实现测试方法
+
+```typescript
+@AccessInput({
+  title: "测试",
+  component: {
+    name: "api-test",
+    action: "TestRequest"
+  },
+  helper: "点击测试接口是否正常"
+})
+testRequest = true;
+
+/**
+ * 会通过上面的testRequest参数在ui界面上生成测试按钮，供用户测试接口调用是否正常
+ */
+async onTestRequest() {
+  await this.GetDomainList({});
+  return "ok"
+}
+```
+
+### 5. 实现 API 方法
+
+```typescript
+/**
+ * 获api接口示例 取域名列表，
+ */
+async GetDomainList(req: PageSearch): Promise<PageRes<DomainRecord>> {
+  //输出日志必须使用ctx.logger
+  this.ctx.logger.info(`获取域名列表，req:${JSON.stringify(req)}`);
+  const pager = new Pager(req);
+  const resp = await this.doRequest({
+    action: "ListDomains",
+    data: {
+      domain: req.searchKey,
+      offset: pager.getOffset(),
+      limit: pager.pageSize,
+    }
+  });
+  const total = resp?.TotalCount || 0;
+  let list = resp?.DomainList?.map((item) => {
+    item.domain = item.Domain;
+    item.id = item.DomainId;
+    return item;
+  })
+  return {
+    total,
+    list
+  };
+}
+
+/**
+ *  通用api调用方法, 具体如何构造请求体，需参考对应应用的API文档
+ */
+async doRequest(req: { action: string, data?: any }) {
+  /**
+      this.ctx中包含很多有用的工具类
+      type AccessContext = {
+        http: HttpClient;
+        logger: ILogger;
+        utils: typeof utils;
+        accessService: IAccessService;
+      }
+   */
+  const res = await this.ctx.http.request({
+    url: "https://api.demo.cn/api/",
+    method: "POST",
+    data: {
+      Action: req.action,
+      Body: req.data
+    }
+  });
+
+  if (res.Code !== 0) {
+    //异常处理 
+    throw new Error(res.Message || "请求失败");
+  }
+  return res.Resp;
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应简洁明了，反映其功能。
+2. **属性加密**：对于敏感信息（如密钥），应设置 `encrypt: true`。
+3. **日志输出**：必须使用 `this.ctx.logger` 输出日志，而不是 `console`。
+4. **错误处理**：API 调用失败时应抛出明确的错误信息。
+5. **测试方法**：实现 `onTestRequest` 方法，以便用户可以测试授权是否正常。
+
+## 完整示例
+
+```typescript
+import { AccessInput, BaseAccess, IsAccess, Pager, PageRes, PageSearch } from '@certd/pipeline';
+import { DomainRecord } from '@certd/plugin-lib';
+
+/**
+ * 这个注解将注册一个授权配置
+ * 在certd的后台管理系统中，用户可以选择添加此类型的授权
+ */
+@IsAccess({
+  name: 'demo',
+  title: '授权插件示例',
+  icon: 'clarity:plugin-line', //插件图标
+  desc: '这是一个示例授权插件，用于演示如何实现一个授权插件',
+})
+export class DemoAccess extends BaseAccess {
+
+   /**
+   * 授权属性配置
+   */
+  @AccessInput({
+    title: '授权方式',
+    value: 'apiKey', //默认值
+    component: {
+      name: "a-select", //基于antdv的输入组件
+      vModel: "value", // v-model绑定的属性名
+      options: [ //组件参数
+        {
+          label: "API密钥（推荐）",
+          value: "apiKey"
+        },
+        {
+          label: "账号密码",
+          value: "account"
+        },
+      ],
+      placeholder: 'demoKeyId',
+    },
+    required: true,
+  })
+  apiType = '';
+
+  /**
+   * 授权属性配置
+   */
+  @AccessInput({
+    title: '密钥Id',
+    component: {
+      name:"a-input",
+      allowClear: true,
+      placeholder: 'demoKeyId',
+    },
+    required: true,
+  })
+  demoKeyId = '';
+
+  @AccessInput({
+    title: '密钥',//标题
+    required: true,  //text组件可以省略
+    encrypt: true, //该属性是否需要加密
+  })
+  demoKeySecret = '';
+
+
+  @AccessInput({
+    title: "测试",
+    component: {
+      name: "api-test",
+      action: "TestRequest"
+    },
+    helper: "点击测试接口是否正常"
+  })
+  testRequest = true;
+
+  /**
+   * 会通过上面的testRequest参数在ui界面上生成测试按钮，供用户测试接口调用是否正常
+   */
+  async onTestRequest() {
+    await this.GetDomainList({});
+    return "ok"
+  }
+
+  /**
+   * 获api接口示例 取域名列表，
+   */
+  async GetDomainList(req: PageSearch): Promise<PageRes<DomainRecord>> {
+    //输出日志必须使用ctx.logger
+    this.ctx.logger.info(`获取域名列表，req:${JSON.stringify(req)}`);
+    const pager = new Pager(req);
+    const resp = await this.doRequest({
+      action: "ListDomains",
+      data: {
+        domain: req.searchKey,
+        offset: pager.getOffset(),
+        limit: pager.pageSize,
+      }
+    });
+    const total = resp?.TotalCount || 0;
+    let list = resp?.DomainList?.map((item) => {
+      item.domain = item.Domain;
+      item.id = item.DomainId;
+      return item;
+    })
+    return {
+      total,
+      list
+    };
+  }
+
+  // 还可以继续编写API
+
+  /**
+   *  通用api调用方法, 具体如何构造请求体，需参考对应应用的API文档
+   */
+  async doRequest(req: { action: string, data?: any }) {
+    /**
+        this.ctx中包含很多有用的工具类
+        type AccessContext = {
+          http: HttpClient;
+          logger: ILogger;
+          utils: typeof utils;
+          accessService: IAccessService;
+        }
+     */
+    const res = await this.ctx.http.request({
+      url: "https://api.demo.cn/api/",
+      method: "POST",
+      data: {
+        Action: req.action,
+        Body: req.data
+      }
+    });
+
+    if (res.Code !== 0) {
+      //异常处理 
+      throw new Error(res.Message || "请求失败");
+    }
+    return res.Resp;
+  }
+}
+```
@@ -0,0 +1 @@
+我需要开发一个 Access 插件，用于存储和管理第三方应用的授权信息。请指导我如何实现。
@@ -0,0 +1,145 @@
+# Access 插件开发指南
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AccessInput, BaseAccess, IsAccess, Pager, PageRes, PageSearch } from '@certd/pipeline';
+import { DomainRecord } from '@certd/plugin-lib';
+```
+
+### 2. 使用 @IsAccess 注解注册插件
+
+```typescript
+@IsAccess({
+  name: 'demo', // 插件唯一标识
+  title: '授权插件示例', // 插件标题
+  icon: 'clarity:plugin-line', // 插件图标
+  desc: '这是一个示例授权插件，用于演示如何实现一个授权插件', // 插件描述
+})
+export class DemoAccess extends BaseAccess {
+  // 插件实现...
+}
+```
+
+### 3. 定义授权属性
+
+使用 `@AccessInput` 注解定义授权属性：
+
+```typescript
+@AccessInput({
+  title: '授权方式',
+  value: 'apiKey', // 默认值
+  component: {
+    name: "a-select", // 基于 antdv 的输入组件
+    vModel: "value", // v-model 绑定的属性名
+    options: [ // 组件参数
+      { label: "API密钥（推荐）", value: "apiKey" },
+      { label: "账号密码", value: "account" },
+    ],
+    placeholder: 'demoKeyId',
+  },
+  required: true,
+})
+apiType = '';
+
+@AccessInput({
+  title: '密钥Id',
+  component: {
+    name:"a-input",
+    allowClear: true,
+    placeholder: 'demoKeyId',
+  },
+  required: true,
+})
+demoKeyId = '';
+
+@AccessInput({
+  title: '密钥',//标题
+  required: true,  //text组件可以省略
+  encrypt: true, //该属性是否需要加密
+})
+demoKeySecret = '';
+```
+
+### 4. 实现测试方法
+
+```typescript
+@AccessInput({
+  title: "测试",
+  component: {
+    name: "api-test",
+    action: "TestRequest"
+  },
+  helper: "点击测试接口是否正常"
+})
+testRequest = true;
+
+/**
+ * 会通过上面的testRequest参数在ui界面上生成测试按钮，供用户测试接口调用是否正常
+ */
+async onTestRequest() {
+  await this.GetDomainList({});
+  return "ok"
+}
+```
+
+### 5. 实现 API 方法
+
+```typescript
+/**
+ * 获api接口示例 取域名列表，
+ */
+async GetDomainList(req: PageSearch): Promise<PageRes<DomainRecord>> {
+  //输出日志必须使用ctx.logger
+  this.ctx.logger.info(`获取域名列表，req:${JSON.stringify(req)}`);
+  const pager = new Pager(req);
+  const resp = await this.doRequest({
+    action: "ListDomains",
+    data: {
+      domain: req.searchKey,
+      offset: pager.getOffset(),
+      limit: pager.pageSize,
+    }
+  });
+  const total = resp?.TotalCount || 0;
+  let list = resp?.DomainList?.map((item) => {
+    item.domain = item.Domain;
+    item.id = item.DomainId;
+    return item;
+  })
+  return {
+    total,
+    list
+  };
+}
+
+/**
+ *  通用api调用方法, 具体如何构造请求体，需参考对应应用的API文档
+ */
+async doRequest(req: { action: string, data?: any }) {
+  const res = await this.ctx.http.request({
+    url: "https://api.demo.cn/api/",
+    method: "POST",
+    data: {
+      Action: req.action,
+      Body: req.data
+    }
+  });
+
+  if (res.Code !== 0) {
+    //异常处理 
+    throw new Error(res.Message || "请求失败");
+  }
+  return res.Resp;
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应简洁明了，反映其功能。
+2. **属性加密**：对于敏感信息（如密钥），应设置 `encrypt: true`。
+3. **日志输出**：必须使用 `this.ctx.logger` 输出日志，而不是 `console`。
+4. **错误处理**：API 调用失败时应抛出明确的错误信息。
+5. **测试方法**：实现 `onTestRequest` 方法，以便用户可以测试授权是否正常。
@@ -0,0 +1,212 @@
+# DNS Provider 插件开发技能
+
+## 什么是 DNS Provider 插件
+
+DNS Provider 插件是 Certd 系统中的 DNS 提供商插件，它用于在 ACME 申请证书时给域名添加 TXT 解析记录，以验证域名所有权。
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AbstractDnsProvider, CreateRecordOptions, IsDnsProvider, RemoveRecordOptions } from '@certd/plugin-cert';
+import { DemoAccess } from './access.js';
+import { isDev } from '../../utils/env.js';
+```
+
+### 2. 定义记录数据结构
+
+```typescript
+type DemoRecord = {
+  // 这里定义 Record 记录的数据结构，跟对应云平台接口返回值一样即可，一般是拿到 id 就行，用于删除 txt 解析记录，清理申请痕迹
+  // id:string
+};
+```
+
+### 3. 使用 @IsDnsProvider 注解注册插件
+
+```typescript
+// 这里通过 IsDnsProvider 注册一个 dnsProvider
+@IsDnsProvider({
+  name: 'demo', // 插件唯一标识
+  title: 'Dns提供商Demo', // 插件标题
+  desc: 'dns provider示例', // 插件描述
+  icon: 'clarity:plugin-line', // 插件图标
+  // 这里是对应的云平台的 access 类型名称
+  accessType: 'demo',
+  order: 99, // 排序
+})
+export class DemoDnsProvider extends AbstractDnsProvider<DemoRecord> {
+  access!: DemoAccess;
+
+  async onInstance() {
+    this.access = this.ctx.access as DemoAccess;
+    // 也可以通过 ctx 成员变量传递 context
+    this.logger.debug('access', this.access);
+    // 初始化的操作
+    // ...
+  }
+
+  // 插件实现...
+}
+```
+
+### 4. 实现 createRecord 方法
+
+```typescript
+/**
+ * 创建 dns 解析记录，用于验证域名所有权
+ */
+async createRecord(options: CreateRecordOptions): Promise<any> {
+  /**
+   * options 参数说明
+   * fullRecord: '_acme-challenge.example.com',
+   * value: 一串 uuid
+   * type: 'TXT',
+   * domain: 'example.com'
+   */
+  const { fullRecord, value, type, domain } = options;
+  this.logger.info('添加域名解析：', fullRecord, value, type, domain);
+
+  // 调用创建 dns 解析记录的对应的云端接口，创建 txt 类型的 dns 解析记录
+  // 请根据实际接口情况调用，例如：
+  // const createDnsRecordUrl = "xxx"
+  // const record = this.http.post(createDnsRecordUrl,{
+  //   // 授权参数
+  //   // 创建 dns 解析记录的参数
+  // })
+  // // 返回本次创建的 dns 解析记录，这个记录会在删除的时候用到
+  // return record
+}
+```
+
+### 5. 实现 removeRecord 方法
+
+```typescript
+/**
+ *  删除 dns 解析记录,清理申请痕迹
+ * @param options
+ */
+async removeRecord(options: RemoveRecordOptions<DemoRecord>): Promise<void> {
+  const { fullRecord, value, domain } = options.recordReq;
+  const record = options.recordRes;
+  this.logger.info('删除域名解析：', domain, fullRecord, value, record);
+  // 这里调用删除 txt dns 解析记录接口
+  // 请根据实际接口情况调用，例如：
+
+  // const deleteDnsRecordUrl = "xxx"
+  // const res = this.http.delete(deleteDnsRecordUrl,{
+  //   // 授权参数
+  //   // 删除 dns 解析记录的参数
+  // })
+
+
+  this.logger.info('删除域名解析成功:', fullRecord, value);
+}
+```
+
+### 6. 实例化插件
+
+```typescript
+// 实例化这个 provider，将其自动注册到系统中
+if (isDev()) {
+  // 你的实现 要去掉这个 if，不然生产环境将不会显示
+  new DemoDnsProvider();
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应简洁明了，反映其功能。
+2. **accessType**：必须指定对应的云平台的 access 类型名称。
+3. **记录结构**：定义适合对应云平台的记录数据结构，至少包含 id 字段用于删除记录。
+4. **日志输出**：使用 `this.logger` 输出日志，而不是 `console`。
+5. **错误处理**：API 调用失败时应抛出明确的错误信息。
+6. **实例化**：生产环境中应移除 `if (isDev())` 条件，确保插件在生产环境中也能被注册。
+
+## 完整示例
+
+```typescript
+import { AbstractDnsProvider, CreateRecordOptions, IsDnsProvider, RemoveRecordOptions } from '@certd/plugin-cert';
+import { DemoAccess } from './access.js';
+import { isDev } from '../../utils/env.js';
+
+type DemoRecord = {
+  // 这里定义 Record 记录的数据结构，跟对应云平台接口返回值一样即可，一般是拿到 id 就行，用于删除 txt 解析记录，清理申请痕迹
+  // id:string
+};
+
+// 这里通过 IsDnsProvider 注册一个 dnsProvider
+@IsDnsProvider({
+  name: 'demo',
+  title: 'Dns提供商Demo',
+  desc: 'dns provider示例',
+  icon: 'clarity:plugin-line',
+  // 这里是对应的云平台的 access 类型名称
+  accessType: 'demo',
+  order: 99,
+})
+export class DemoDnsProvider extends AbstractDnsProvider<DemoRecord> {
+  access!: DemoAccess;
+
+  async onInstance() {
+    this.access = this.ctx.access as DemoAccess;
+    // 也可以通过 ctx 成员变量传递 context
+    this.logger.debug('access', this.access);
+    // 初始化的操作
+    // ...
+  }
+
+  /**
+   * 创建 dns 解析记录，用于验证域名所有权
+   */
+  async createRecord(options: CreateRecordOptions): Promise<any> {
+    /**
+     * options 参数说明
+     * fullRecord: '_acme-challenge.example.com',
+     * value: 一串 uuid
+     * type: 'TXT',
+     * domain: 'example.com'
+     */
+    const { fullRecord, value, type, domain } = options;
+    this.logger.info('添加域名解析：', fullRecord, value, type, domain);
+
+    // 调用创建 dns 解析记录的对应的云端接口，创建 txt 类型的 dns 解析记录
+    // 请根据实际接口情况调用，例如：
+    // const createDnsRecordUrl = "xxx"
+    // const record = this.http.post(createDnsRecordUrl,{
+    //   // 授权参数
+    //   // 创建 dns 解析记录的参数
+    // })
+    // // 返回本次创建的 dns 解析记录，这个记录会在删除的时候用到
+    // return record
+  }
+
+  /**
+   *  删除 dns 解析记录,清理申请痕迹
+   * @param options
+   */
+  async removeRecord(options: RemoveRecordOptions<DemoRecord>): Promise<void> {
+    const { fullRecord, value, domain } = options.recordReq;
+    const record = options.recordRes;
+    this.logger.info('删除域名解析：', domain, fullRecord, value, record);
+    // 这里调用删除 txt dns 解析记录接口
+    // 请根据实际接口情况调用，例如：
+
+    // const deleteDnsRecordUrl = "xxx"
+    // const res = this.http.delete(deleteDnsRecordUrl,{
+    //   // 授权参数
+    //   // 删除 dns 解析记录的参数
+    // })
+
+
+    this.logger.info('删除域名解析成功:', fullRecord, value);
+  }
+}
+
+// 实例化这个 provider，将其自动注册到系统中
+if (isDev()) {
+  // 你的实现 要去掉这个 if，不然生产环境将不会显示
+  new DemoDnsProvider();
+}
+```
@@ -0,0 +1 @@
+我需要开发一个 DNS Provider 插件，用于在 ACME 申请证书时添加 TXT 解析记录。请指导我如何实现。
@@ -0,0 +1,121 @@
+# DNS Provider 插件开发指南
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AbstractDnsProvider, CreateRecordOptions, IsDnsProvider, RemoveRecordOptions } from '@certd/plugin-cert';
+import { DemoAccess } from './access.js';
+import { isDev } from '../../utils/env.js';
+```
+
+### 2. 定义记录数据结构
+
+```typescript
+type DemoRecord = {
+  // 这里定义 Record 记录的数据结构，跟对应云平台接口返回值一样即可，一般是拿到 id 就行，用于删除 txt 解析记录，清理申请痕迹
+  // id:string
+};
+```
+
+### 3. 使用 @IsDnsProvider 注解注册插件
+
+```typescript
+// 这里通过 IsDnsProvider 注册一个 dnsProvider
+@IsDnsProvider({
+  name: 'demo', // 插件唯一标识
+  title: 'Dns提供商Demo', // 插件标题
+  desc: 'dns provider示例', // 插件描述
+  icon: 'clarity:plugin-line', // 插件图标
+  // 这里是对应的云平台的 access 类型名称
+  accessType: 'demo',
+  order: 99, // 排序
+})
+export class DemoDnsProvider extends AbstractDnsProvider<DemoRecord> {
+  access!: DemoAccess;
+
+  async onInstance() {
+    this.access = this.ctx.access as DemoAccess;
+    // 也可以通过 ctx 成员变量传递 context
+    this.logger.debug('access', this.access);
+    // 初始化的操作
+    // ...
+  }
+
+  // 插件实现...
+}
+```
+
+### 4. 实现 createRecord 方法
+
+```typescript
+/**
+ * 创建 dns 解析记录，用于验证域名所有权
+ */
+async createRecord(options: CreateRecordOptions): Promise<any> {
+  /**
+   * options 参数说明
+   * fullRecord: '_acme-challenge.example.com',
+   * value: 一串 uuid
+   * type: 'TXT',
+   * domain: 'example.com'
+   */
+  const { fullRecord, value, type, domain } = options;
+  this.logger.info('添加域名解析：', fullRecord, value, type, domain);
+
+  // 调用创建 dns 解析记录的对应的云端接口，创建 txt 类型的 dns 解析记录
+  // 请根据实际接口情况调用，例如：
+  // const createDnsRecordUrl = "xxx"
+  // const record = this.http.post(createDnsRecordUrl,{
+  //   // 授权参数
+  //   // 创建 dns 解析记录的参数
+  // })
+  // // 返回本次创建的 dns 解析记录，这个记录会在删除的时候用到
+  // return record
+}
+```
+
+### 5. 实现 removeRecord 方法
+
+```typescript
+/**
+ *  删除 dns 解析记录,清理申请痕迹
+ * @param options
+ */
+async removeRecord(options: RemoveRecordOptions<DemoRecord>): Promise<void> {
+  const { fullRecord, value, domain } = options.recordReq;
+  const record = options.recordRes;
+  this.logger.info('删除域名解析：', domain, fullRecord, value, record);
+  // 这里调用删除 txt dns 解析记录接口
+  // 请根据实际接口情况调用，例如：
+
+  // const deleteDnsRecordUrl = "xxx"
+  // const res = this.http.delete(deleteDnsRecordUrl,{
+  //   // 授权参数
+  //   // 删除 dns 解析记录的参数
+  // })
+
+
+  this.logger.info('删除域名解析成功:', fullRecord, value);
+}
+```
+
+### 6. 实例化插件
+
+```typescript
+// 实例化这个 provider，将其自动注册到系统中
+if (isDev()) {
+  // 你的实现 要去掉这个 if，不然生产环境将不会显示
+  new DemoDnsProvider();
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应简洁明了，反映其功能。
+2. **accessType**：必须指定对应的云平台的 access 类型名称。
+3. **记录结构**：定义适合对应云平台的记录数据结构，至少包含 id 字段用于删除记录。
+4. **日志输出**：使用 `this.logger` 输出日志，而不是 `console`。
+5. **错误处理**：API 调用失败时应抛出明确的错误信息。
+6. **实例化**：生产环境中应移除 `if (isDev())` 条件，确保插件在生产环境中也能被注册。
@@ -0,0 +1,201 @@
+# 插件转换工具技能
+
+## 什么是插件转换工具
+
+插件转换工具是一个用于将 Certd 插件转换为 YAML 配置文件的命令行工具。它可以分析单个插件文件，识别插件类型，并生成对应的 YAML 配置，方便插件的注册和管理。
+
+## 工具位置
+
+`trae/skills/convert-plugin-to-yaml.js`
+
+## 功能特性
+
+- **单个插件转换**：支持指定单个插件文件进行转换，而不是扫描整个目录
+- **自动类型识别**：自动识别插件类型（Access、Task、DNS Provider、Notification、Addon）
+- **详细日志输出**：提供详细的转换过程日志，便于调试
+- **YAML 配置生成**：生成标准的 YAML 配置文件
+- **配置文件保存**：自动将生成的配置保存到 `./metadata` 目录
+- **可复用函数**：导出了可复用的函数，便于其他模块调用
+
+## 使用方法
+
+### 基本用法
+
+```bash
+node trae/skills/convert-plugin-to-yaml.js <插件文件路径>
+```
+
+### 示例
+
+```bash
+# 转换 Access 插件
+node trae/skills/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/access.js
+
+# 转换 Task 插件
+node trae/skills/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+
+# 转换 DNS Provider 插件
+node trae/skills/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/dns-provider.js
+```
+
+## 转换过程
+
+1. **加载插件模块**：使用 `import()` 动态加载指定的插件文件
+2. **分析插件定义**：检查模块导出的对象，寻找带有 `define` 属性的插件
+3. **识别插件类型**：根据插件的继承关系或属性识别插件类型
+4. **生成 YAML 配置**：基于插件定义生成标准的 YAML 配置
+5. **保存配置文件**：将生成的配置保存到 `./metadata` 目录
+
+## 输出说明
+
+### 命令行输出
+
+执行转换命令后，工具会输出以下信息：
+
+- 插件加载状态
+- 插件导出的对象列表
+- 插件类型识别结果
+- 生成的 YAML 配置内容
+- 配置文件保存路径
+
+### 配置文件命名规则
+
+生成的配置文件命名规则为：
+
+```
+<插件类型>[_<子类型>]_<插件名称>.yaml
+```
+
+例如：
+- `access_demo.yaml`（Access 插件）
+- `deploy_DemoTest.yaml`（Task 插件）
+- `dnsProvider_demo.yaml`（DNS Provider 插件）
+
+## 插件类型识别逻辑
+
+工具通过以下逻辑识别插件类型：
+
+1. **DNS Provider**：如果插件定义中包含 `accessType` 属性
+2. **Task**：如果插件继承自 `AbstractTaskPlugin`
+3. **Notification**：如果插件继承自 `BaseNotification`
+4. **Access**：如果插件继承自 `BaseAccess`
+5. **Addon**：如果插件继承自 `BaseAddon`
+
+## 注意事项
+
+1. **文件路径**：插件文件路径可以是相对路径或绝对路径
+2. **文件格式**：仅支持 `.js` 文件，不支持 `.ts` 文件（需要先编译）
+3. **依赖安装**：执行前确保已安装所有必要的依赖
+4. **配置目录**：如果 `./metadata` 目录不存在，工具会自动创建
+5. **错误处理**：如果插件加载失败或识别失败，工具会输出错误信息但不会终止执行
+
+## 代码结构
+
+### 主要函数
+
+1. **isPrototypeOf(value, cls)**：检查对象是否是指定类的原型
+2. **loadSingleModule(filePath)**：加载单个插件模块
+3. **convertSinglePlugin(pluginPath)**：分析单个插件并生成 YAML 配置
+4. **main()**：主函数，处理命令行参数并执行转换
+
+### 导出函数
+
+工具导出了以下函数，便于其他模块调用：
+
+```javascript
+export {
+  convertSinglePlugin,  // 转换单个插件
+  loadSingleModule,     // 加载单个模块
+  isPrototypeOf         // 检查原型关系
+};
+```
+
+## 应用场景
+
+1. **插件开发**：在开发新插件时，快速生成配置文件
+2. **插件调试**：查看插件的内部定义和配置
+3. **插件管理**：批量转换现有插件为标准配置格式
+4. **自动化构建**：集成到构建流程中，自动生成插件配置
+
+## 示例输出
+
+### 转换 Access 插件示例
+
+```bash
+$ node trae/skills/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/access.js
+开始转换插件: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+插件模块导出了 1 个对象: DemoAccess
+处理插件: DemoAccess
+插件类型: access
+脚本路径: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+
+生成的 YAML 配置:
+name: demo
+title: 授权插件示例
+desc: 这是一个示例授权插件，用于演示如何实现一个授权插件
+icon: clarity:plugin-line
+pluginType: access
+type: builtIn
+scriptFilePath: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+
+YAML 配置已保存到: ./metadata/access_demo.yaml
+插件转换完成!
+```
+
+### 转换 Task 插件示例
+
+```bash
+$ node trae/skills/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+开始转换插件: packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+插件模块导出了 1 个对象: DemoTest
+处理插件: DemoTest
+插件类型: deploy
+脚本路径: packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+
+生成的 YAML 配置:
+name: DemoTest
+title: Demo-测试插件
+desc: ""
+icon: clarity:plugin-line
+group: other
+default:
+  strategy:
+    runStrategy: SkipWhenSucceed
+pluginType: deploy
+type: builtIn
+scriptFilePath: packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+
+YAML 配置已保存到: ./metadata/deploy_DemoTest.yaml
+插件转换完成!
+```
+
+## 故障排除
+
+### 常见问题
+
+1. **模块加载失败**
+   - 原因：插件文件依赖未安装或路径错误
+   - 解决：确保已安装所有依赖，检查文件路径是否正确
+
+2. **插件类型识别失败**
+   - 原因：插件未正确继承基类或缺少必要的属性
+   - 解决：检查插件代码，确保正确继承对应的基类
+
+3. **YAML 配置生成失败**
+   - 原因：插件定义格式不正确
+   - 解决：检查插件的 `define` 属性格式是否正确
+
+4. **配置文件保存失败**
+   - 原因：权限不足或磁盘空间不足
+   - 解决：确保有足够的权限和磁盘空间
+
+### 调试建议
+
+- **查看详细日志**：工具会输出详细的转换过程日志，仔细查看日志信息
+- **检查插件代码**：确保插件代码符合 Certd 插件开发规范
+- **尝试简化插件**：如果转换失败，尝试创建一个最小化的插件示例进行测试
+- **检查依赖版本**：确保使用的依赖版本与 Certd 兼容
+
+## 总结
+
+插件转换工具是一个方便实用的工具，它可以帮助开发者快速生成插件的 YAML 配置文件，简化插件的注册和管理过程。通过命令行参数指定单个插件文件，工具会自动完成类型识别、配置生成和保存等操作，大大提高了插件开发和管理的效率。
@@ -0,0 +1 @@
+我需要将一个插件转换为 YAML 配置文件。请指导我如何使用插件转换工具。
@@ -0,0 +1,95 @@
+# 插件转换工具使用指南
+
+## 工具说明
+
+插件转换工具用于将单个 Certd 插件转换为 YAML 配置文件，方便插件的注册和管理。
+
+## 工具位置
+
+`.trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js`
+
+## 使用方法
+
+### 基本用法
+
+```bash
+node .trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js <插件文件路径>
+```
+
+### 示例
+
+#### 转换 Access 插件
+
+```bash
+node .trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/access.js
+```
+
+#### 转换 Task 插件
+
+```bash
+node .trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/plugins/plugin-test.js
+```
+
+#### 转换 DNS Provider 插件
+
+```bash
+node .trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/dns-provider.js
+```
+
+## 转换过程
+
+1. **加载插件模块**：使用 `import()` 动态加载指定的插件文件
+2. **分析插件定义**：检查模块导出的对象，寻找带有 `define` 属性的插件
+3. **识别插件类型**：根据插件的继承关系或属性识别插件类型
+4. **生成 YAML 配置**：基于插件定义生成标准的 YAML 配置
+5. **保存配置文件**：将生成的配置保存到 `./metadata` 目录
+
+## 输出说明
+
+### 命令行输出
+
+执行转换命令后，工具会输出以下信息：
+
+- 插件加载状态
+- 插件导出的对象列表
+- 插件类型识别结果
+- 生成的 YAML 配置内容
+- 配置文件保存路径
+
+### 配置文件命名规则
+
+生成的配置文件命名规则为：
+
+```
+<插件类型>[_<子类型>]_<插件名称>.yaml
+```
+
+例如：
+- `access_demo.yaml`（Access 插件）
+- `deploy_DemoTest.yaml`（Task 插件）
+- `dnsProvider_demo.yaml`（DNS Provider 插件）
+
+## 示例输出
+
+### 转换 Access 插件示例
+
+```bash
+$ node .trae/skills/plugin-converter/resources/convert-plugin-to-yaml.js packages/ui/certd-server/src/plugins/plugin-demo/access.js
+开始转换插件: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+插件模块导出了 1 个对象: DemoAccess
+处理插件: DemoAccess
+插件类型: access
+脚本路径: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+
+生成的 YAML 配置:
+name: demo
+title: 授权插件示例
+desc: 这是一个示例授权插件，用于演示如何实现一个授权插件
+icon: clarity:plugin-line
+pluginType: access
+type: builtIn
+scriptFilePath: packages/ui/certd-server/src/plugins/plugin-demo/access.js
+
+YAML 配置已保存到: ./metadata/access_demo.yaml
+插件转换完成!
+```
@@ -0,0 +1,160 @@
+// 转换单个插件为 YAML 配置的技能脚本
+
+import path from "path";
+import fs from "fs";
+import { pathToFileURL } from "node:url";
+import * as yaml from "js-yaml";
+import { AbstractTaskPlugin, BaseAccess, BaseNotification} from "@certd/pipeline";
+import { BaseAddon} from "@certd/lib-server";
+
+/**
+ * 检查对象是否是指定类的原型
+ */
+function isPrototypeOf(value, cls) {
+  return cls.prototype.isPrototypeOf(value.prototype);
+}
+
+/**
+ * 加载单个插件模块
+ */
+async function loadSingleModule(filePath) {
+  try {
+    // 转换为 file:// URL（Windows 必需）
+    const moduleUrl = pathToFileURL(filePath).href;
+    const module = await import(moduleUrl);
+    return module.default || module;
+  } catch (err) {
+    console.error(`加载模块 ${filePath} 失败:`, err);
+    return null;
+  }
+}
+
+/**
+ * 分析单个插件并生成 YAML 配置
+ */
+async function convertSinglePlugin(pluginPath) {
+  console.log(`开始转换插件: ${pluginPath}`);
+  
+  // 加载插件模块
+  const module = await loadSingleModule(pluginPath);
+  if (!module) {
+    console.error("加载插件失败，退出");
+    return;
+  }
+  
+  // 处理模块中的所有导出
+  const entry = Object.entries(module);
+  if (entry.length === 0) {
+    console.error("插件模块没有导出任何内容");
+    return;
+  }
+  
+  console.log(`插件模块导出了 ${entry.length} 个对象: ${entry.map(([name]) => name).join(", ")}`);
+  
+  // 处理每个导出的对象
+  for (const [name, value] of entry) {
+    // 检查是否是插件（有 define 属性）
+    if (!value.define) {
+      console.log(`跳过非插件对象: ${name}`);
+      continue;
+    }
+    
+    console.log(`处理插件: ${name}`);
+    
+    // 构建插件定义
+    const pluginDefine = {
+      ...value.define
+    };
+    
+    let subType = "";
+    
+    // 确定插件类型
+    if (pluginDefine.accessType) {
+      pluginDefine.pluginType = "dnsProvider";
+    } else if (isPrototypeOf(value, AbstractTaskPlugin)) {
+      pluginDefine.pluginType = "deploy";
+    } else if (isPrototypeOf(value, BaseNotification)) {
+      pluginDefine.pluginType = "notification";
+    } else if (isPrototypeOf(value, BaseAccess)) {
+      pluginDefine.pluginType = "access";
+    } else if (isPrototypeOf(value, BaseAddon)) {
+      pluginDefine.pluginType = "addon";
+      subType = "_" + (pluginDefine.addonType || "");
+    } else {
+      console.log(`[warning] 未知的插件类型：${pluginDefine.name}`);
+      continue;
+    }
+    
+    pluginDefine.type = "builtIn";
+    
+    // 计算脚本文件路径
+    const relativePath = path.relative(process.cwd(), pluginPath);
+    const scriptFilePath = relativePath.replace(/\\/g, "/").replace(/\.js$/, ".js");
+    pluginDefine.scriptFilePath = scriptFilePath;
+    
+    console.log(`插件类型: ${pluginDefine.pluginType}`);
+    console.log(`脚本路径: ${scriptFilePath}`);
+    
+    // 生成 YAML 配置
+    const yamlContent = yaml.dump(pluginDefine);
+    console.log("\n生成的 YAML 配置:");
+    console.log(yamlContent);
+    
+    // 可选：保存到文件
+    const outputDir = "./metadata";
+    if (!fs.existsSync(outputDir)) {
+      fs.mkdirSync(outputDir, { recursive: true });
+    }
+    
+    const outputFileName = `${pluginDefine.pluginType}${subType}_${pluginDefine.name}.yaml`;
+    const outputPath = path.join(outputDir, outputFileName);
+    
+    fs.writeFileSync(outputPath, yamlContent, 'utf8');
+    console.log(`\nYAML 配置已保存到: ${outputPath}`);
+    
+    return pluginDefine;
+  }
+  
+  console.error("未找到有效的插件定义");
+}
+
+/**
+ * 主函数
+ */
+async function main() {
+  const args = process.argv.slice(2);
+  
+  if (args.length === 0) {
+    console.error("请指定插件文件路径");
+    console.log("用法: node convert-plugin-to-yaml.js <插件文件路径>");
+    process.exit(1);
+  }
+  
+  const pluginPath = args[0];
+  
+  if (!fs.existsSync(pluginPath)) {
+    console.error(`插件文件不存在: ${pluginPath}`);
+    process.exit(1);
+  }
+  
+  try {
+    await convertSinglePlugin(pluginPath);
+    console.log("\n插件转换完成!");
+  } catch (error) {
+    console.error("转换过程中出错:", error);
+    process.exit(1);
+  }
+}
+
+// 如果直接运行此脚本
+if (import.meta.url === pathToFileURL(process.argv[1]).href) {
+  main();
+}
+
+// 导出函数，以便其他模块使用
+export {
+  convertSinglePlugin,
+  loadSingleModule,
+  isPrototypeOf
+};
+
@@ -0,0 +1,388 @@
+# Task 插件开发技能
+
+## 什么是 Task 插件
+
+Task 插件是 Certd 系统中的部署任务插件，它继承自 `AbstractTaskPlugin` 类，被流水线调用 `execute` 方法，将证书部署到对应的应用上。
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AbstractTaskPlugin, IsTaskPlugin, PageSearch, pluginGroups, RunStrategy, TaskInput } from '@certd/pipeline';
+import { CertInfo, CertReader } from '@certd/plugin-cert';
+import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from '@certd/plugin-lib';
+import { optionsUtils } from '@certd/basic';
+import { CertApplyPluginNames} from '@certd/plugin-cert';
+```
+
+### 2. 使用 @IsTaskPlugin 注解注册插件
+
+```typescript
+@IsTaskPlugin({
+  // 命名规范，插件类型+功能，大写字母开头，驼峰命名
+  name: 'DemoTest',
+  title: 'Demo-测试插件', // 插件标题
+  icon: 'clarity:plugin-line', // 插件图标
+  // 插件分组
+  group: pluginGroups.other.key,
+  default: {
+    // 默认值配置照抄即可
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+})
+// 类名规范，跟上面插件名称（name）一致
+export class DemoTest extends AbstractTaskPlugin {
+  // 插件实现...
+}
+```
+
+### 3. 定义任务输入参数
+
+使用 `@TaskInput` 注解定义任务输入参数：
+
+```typescript
+// 测试参数
+@TaskInput({
+  title: '属性示例',
+  value: '默认值',
+  component: {
+    // 前端组件配置，具体配置见组件文档 https://www.antdv.com/components/input-cn
+    name: 'a-input',
+    vModel: 'value', // 双向绑定组件的 props 名称
+  },
+  helper: '帮助说明,[链接](https://certd.docmirror.cn)',
+  required: false, // 是否必填
+})
+text!: string;
+
+// 证书选择，此项必须要有
+@TaskInput({
+  title: '域名证书',
+  helper: '请选择前置任务输出的域名证书',
+  component: {
+    name: 'output-selector',
+    from: [...CertApplyPluginNames],
+  },
+  // required: true, // 必填
+})
+cert!: CertInfo;
+
+@TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+// 前端可以展示，当前申请的证书域名列表
+certDomains!: string[];
+
+// 授权选择框
+@TaskInput({
+  title: 'demo授权',
+  helper: 'demoAccess授权',
+  component: {
+    name: 'access-selector',
+    type: 'demo', // 固定授权类型
+  },
+  // rules: [{ required: true, message: '此项必填' }],
+  // required: true, // 必填
+})
+accessId!: string;
+```
+
+### 4. 实现插件方法
+
+#### 4.1 插件实例化时执行的方法
+
+```typescript
+// 插件实例化时执行的方法
+async onInstance() {}
+```
+
+#### 4.2 插件执行方法
+
+```typescript
+// 插件执行方法
+async execute(): Promise<void> {
+  const { select, text, cert, accessId } = this;
+
+  try {
+    const access = await this.getAccess(accessId);
+    this.logger.debug('access', access);
+  } catch (e) {
+    this.logger.error('获取授权失败', e);
+  }
+
+  try {
+    const certReader = new CertReader(cert);
+    this.logger.debug('certReader', certReader);
+  } catch (e) {
+    this.logger.error('读取crt失败', e);
+  }
+
+  this.logger.info('DemoTestPlugin execute');
+  this.logger.info('text:', text);
+  this.logger.info('select:', select);
+  this.logger.info('switch:', this.switch);
+  this.logger.info('授权id:', accessId);
+
+  // 具体的部署逻辑
+  // ...
+}
+```
+
+#### 4.3 后端获取选项方法
+
+```typescript
+@TaskInput(
+  createRemoteSelectInputDefine({
+    title: '从后端获取选项',
+    helper: '选择时可以从后端获取选项',
+    action: DemoTest.prototype.onGetSiteList.name,
+    // 当以下参数变化时，触发获取选项
+    watches: ['certDomains', 'accessId'],
+    required: true,
+  })
+)
+siteName!: string | string[];
+
+// 从后端获取选项的方法
+async onGetSiteList(req: PageSearch) {
+  if (!this.accessId) {
+    throw new Error('请选择Access授权');
+  }
+
+  // @ts-ignore
+  const access = await this.getAccess(this.accessId);
+
+  // const siteRes = await access.GetDomainList(req);
+  // 以下是模拟数据
+  const siteRes = [
+    { id: 1, siteName: 'site1.com' },
+    { id: 2, siteName: 'site2.com' },
+    { id: 3, siteName: 'site2.com' },
+  ];
+  // 转换为前端所需要的格式
+  const options = siteRes.map((item: any) => {
+    return {
+      value: item.siteName,
+      label: item.siteName,
+      domain: item.siteName,
+    };
+  });
+  // 将站点域名名称根据证书域名进行匹配分组，分成匹配的和不匹配的两组选项，返回给前端，供用户选择
+  return optionsUtils.buildGroupOptions(options, this.certDomains);
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应遵循命名规范，大写字母开头，驼峰命名。
+2. **类名规范**：类名应与插件名称（name）一致。
+3. **证书选择**：必须包含证书选择参数，用于获取前置任务输出的域名证书。
+4. **日志输出**：使用 `this.logger` 输出日志，而不是 `console`。
+5. **错误处理**：执行过程中的错误应被捕获并记录。
+6. **授权获取**：使用 `this.getAccess(accessId)` 获取授权信息。
+
+## 完整示例
+
+```typescript
+import { AbstractTaskPlugin, IsTaskPlugin, PageSearch, pluginGroups, RunStrategy, TaskInput } from '@certd/pipeline';
+import { CertInfo, CertReader } from '@certd/plugin-cert';
+import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from '@certd/plugin-lib';
+import { optionsUtils } from '@certd/basic';
+import { CertApplyPluginNames} from '@certd/plugin-cert';
+@IsTaskPlugin({
+  //命名规范，插件类型+功能（就是目录plugin-demo中的demo），大写字母开头，驼峰命名
+  name: 'DemoTest',
+  title: 'Demo-测试插件',
+  icon: 'clarity:plugin-line',
+  //插件分组
+  group: pluginGroups.other.key,
+  default: {
+    //默认值配置照抄即可
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+})
+//类名规范，跟上面插件名称（name）一致
+export class DemoTest extends AbstractTaskPlugin {
+  //测试参数
+  @TaskInput({
+    title: '属性示例',
+    value: '默认值',
+    component: {
+      //前端组件配置，具体配置见组件文档 https://www.antdv.com/components/input-cn
+      name: 'a-input',
+      vModel: 'value', //双向绑定组件的props名称
+    },
+    helper: '帮助说明,[链接](https://certd.docmirror.cn)',
+    required: false, //是否必填
+  })
+  text!: string;
+
+  //测试参数
+  @TaskInput({
+    title: '选择框',
+    component: {
+      //前端组件配置，具体配置见组件文档 https://www.antdv.com/components/select-cn
+      name: 'a-auto-complete',
+      vModel: 'value',
+      options: [
+        //选项列表
+        { label: '动态显', value: 'show' },
+        { label: '动态隐', value: 'hide' },
+      ],
+    },
+  })
+  select!: string;
+
+  @TaskInput({
+    title: '动态显隐',
+    helper: '我会根据选择框的值进行显隐',
+    show: true, //动态计算的值会覆盖它
+    //动态计算脚本， mergeScript返回的对象会合并当前配置，此处演示 show的值会被动态计算结果覆盖，show的值根据用户选择的select的值决定
+    mergeScript: `
+    return {
+      show: ctx.compute(({form})=>{
+        return form.select === 'show';
+      })
+    }
+    `,
+  })
+  showText!: string;
+
+  //测试参数
+  @TaskInput({
+    title: '多选框',
+    component: {
+      //前端组件配置，具体配置见组件文档 https://www.antdv.com/components/select-cn
+      name: 'a-select',
+      vModel: 'value',
+      mode: 'tags',
+      multiple: true,
+      options: [
+        { value: '1', label: '选项1' },
+        { value: '2', label: '选项2' },
+      ],
+    },
+  })
+  multiSelect!: string;
+
+  //测试参数
+  @TaskInput({
+    title: 'switch',
+    component: {
+      //前端组件配置，具体配置见组件文档 https://www.antdv.com/components/switch-cn
+      name: 'a-switch',
+      vModel: 'checked',
+    },
+  })
+  switch!: boolean;
+  //证书选择，此项必须要有
+  @TaskInput({
+    title: '域名证书',
+    helper: '请选择前置任务输出的域名证书',
+    component: {
+      name: 'output-selector',
+      from: [...CertApplyPluginNames],
+    },
+    // required: true, // 必填
+  })
+  cert!: CertInfo;
+
+  @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+  //前端可以展示，当前申请的证书域名列表
+  certDomains!: string[];
+
+  //授权选择框
+  @TaskInput({
+    title: 'demo授权',
+    helper: 'demoAccess授权',
+    component: {
+      name: 'access-selector',
+      type: 'demo', //固定授权类型
+    },
+    // rules: [{ required: true, message: '此项必填' }],
+    // required: true, //必填
+  })
+  accessId!: string;
+
+  @TaskInput(
+    createRemoteSelectInputDefine({
+      title: '从后端获取选项',
+      helper: '选择时可以从后端获取选项',
+      action: DemoTest.prototype.onGetSiteList.name,
+      //当以下参数变化时，触发获取选项
+      watches: ['certDomains', 'accessId'],
+      required: true,
+    })
+  )
+  siteName!: string | string[];
+
+  //插件实例化时执行的方法
+  async onInstance() {}
+
+  //插件执行方法
+  async execute(): Promise<void> {
+    const { select, text, cert, accessId } = this;
+
+    try {
+      const access = await this.getAccess(accessId);
+      this.logger.debug('access', access);
+    } catch (e) {
+      this.logger.error('获取授权失败', e);
+    }
+
+    try {
+      const certReader = new CertReader(cert);
+      this.logger.debug('certReader', certReader);
+    } catch (e) {
+      this.logger.error('读取crt失败', e);
+    }
+
+    this.logger.info('DemoTestPlugin execute');
+    this.logger.info('text:', text);
+    this.logger.info('select:', select);
+    this.logger.info('switch:', this.switch);
+    this.logger.info('授权id:', accessId);
+
+    // const res = await this.http.request({
+    //   url: 'https://api.demo.com',
+    //   method: 'GET',
+    // });
+    // if (res.code !== 0) {
+    //   //检查res是否报错,你需要抛异常，来结束插件执行，否则会判定为执行成功，下次执行时会跳过本任务
+    //   throw new Error(res.message);
+    // }
+    // this.logger.info('部署成功:', res);
+  }
+
+  //此方法演示，如何让前端在添加插件时可以从后端获取选项，这里是后端返回选项的方法
+  async onGetSiteList(req: PageSearch) {
+    if (!this.accessId) {
+      throw new Error('请选择Access授权');
+    }
+
+    // @ts-ignore
+    const access = await this.getAccess(this.accessId);
+
+    // const siteRes = await access.GetDomainList(req);
+    //以下是模拟数据
+    const siteRes = [
+      { id: 1, siteName: 'site1.com' },
+      { id: 2, siteName: 'site2.com' },
+      { id: 3, siteName: 'site2.com' },
+    ];
+    //转换为前端所需要的格式
+    const options = siteRes.map((item: any) => {
+      return {
+        value: item.siteName,
+        label: item.siteName,
+        domain: item.siteName,
+      };
+    });
+    //将站点域名名称根据证书域名进行匹配分组，分成匹配的和不匹配的两组选项，返回给前端，供用户选择
+    return optionsUtils.buildGroupOptions(options, this.certDomains);
+  }
+}
+```
@@ -0,0 +1 @@
+我需要开发一个 Task 插件，用于将申请的证书部署到指定的应用系统中。请指导我如何实现。
@@ -0,0 +1,129 @@
+# Task 插件开发指南
+
+## 开发步骤
+
+### 1. 导入必要的依赖
+
+```typescript
+import { AbstractTaskPlugin, IsTaskPlugin, PageSearch, pluginGroups, RunStrategy, TaskInput } from '@certd/pipeline';
+import { CertInfo, CertReader } from '@certd/plugin-cert';
+import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from '@certd/plugin-lib';
+import { optionsUtils } from '@certd/basic';
+import { CertApplyPluginNames} from '@certd/plugin-cert';
+```
+
+### 2. 使用 @IsTaskPlugin 注解注册插件
+
+```typescript
+@IsTaskPlugin({
+  // 命名规范，插件类型+功能，大写字母开头，驼峰命名
+  name: 'DemoTest',
+  title: 'Demo-测试插件', // 插件标题
+  icon: 'clarity:plugin-line', // 插件图标
+  // 插件分组
+  group: pluginGroups.other.key,
+  default: {
+    // 默认值配置照抄即可
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+})
+// 类名规范，跟上面插件名称（name）一致
+export class DemoTest extends AbstractTaskPlugin {
+  // 插件实现...
+}
+```
+
+### 3. 定义任务输入参数
+
+使用 `@TaskInput` 注解定义任务输入参数：
+
+```typescript
+// 测试参数
+@TaskInput({
+  title: '属性示例',
+  value: '默认值',
+  component: {
+    //前端组件配置，具体配置见组件文档 https://www.antdv.com/components/input-cn
+    name: 'a-input',
+    vModel: 'value', //双向绑定组件的props名称
+  },
+  helper: '帮助说明,[链接](https://certd.docmirror.cn)',
+  required: false, //是否必填
+})
+text!: string;
+
+//证书选择，此项必须要有
+@TaskInput({
+  title: '域名证书',
+  helper: '请选择前置任务输出的域名证书',
+  component: {
+    name: 'output-selector',
+    from: [...CertApplyPluginNames],
+  },
+  // required: true, // 必填
+})
+cert!: CertInfo;
+
+@TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+//前端可以展示，当前申请的证书域名列表
+certDomains!: string[];
+
+//授权选择框
+@TaskInput({
+  title: 'demo授权',
+  helper: 'demoAccess授权',
+  component: {
+    name: 'access-selector',
+    type: 'demo', //固定授权类型
+  },
+  // rules: [{ required: true, message: '此项必填' }],
+  // required: true, //必填
+})
+accessId!: string;
+```
+
+### 4. 实现插件方法
+
+```typescript
+//插件实例化时执行的方法
+async onInstance() {}
+
+//插件执行方法
+async execute(): Promise<void> {
+  const { select, text, cert, accessId } = this;
+
+  try {
+    const access = await this.getAccess(accessId);
+    this.logger.debug('access', access);
+  } catch (e) {
+    this.logger.error('获取授权失败', e);
+  }
+
+  try {
+    const certReader = new CertReader(cert);
+    this.logger.debug('certReader', certReader);
+  } catch (e) {
+    this.logger.error('读取crt失败', e);
+  }
+
+  this.logger.info('DemoTestPlugin execute');
+  this.logger.info('text:', text);
+  this.logger.info('select:', select);
+  this.logger.info('switch:', this.switch);
+  this.logger.info('授权id:', accessId);
+
+  // 具体的部署逻辑
+  // ...
+}
+```
+
+## 注意事项
+
+1. **插件命名**：插件名称应遵循命名规范，大写字母开头，驼峰命名。
+2. **类名规范**：类名应与插件名称（name）一致。
+3. **证书选择**：必须包含证书选择参数，用于获取前置任务输出的域名证书。
+4. **日志输出**：使用 `this.logger` 输出日志，而不是 `console`。
+5. **错误处理**：执行过程中的错误应被捕获并记录。
+6. **授权获取**：使用 `this.getAccess(accessId)` 获取授权信息。
@@ -7,7 +7,7 @@
    ],
    "editor.defaultFormatter": "dbaeumer.vscode-eslint",
    "[typescript]": {
-        "editor.defaultFormatter": "vscode.typescript-language-features"
+        "editor.defaultFormatter": "esbenp.prettier-vscode"
    },
    "editor.tabSize": 2,
    "explorer.autoReveal": false,
@@ -16,5 +16,9 @@
    },
    "[less]": {
        "editor.defaultFormatter": "vscode.css-language-features"
-    }
+    },
+    "scm.repositories.visible": 9,
+    "scm.repositories.explorer": false,
+    "scm.repositories.selectionMode": "multiple",
+    "scm.repositories.sortOrder": "discovery time"
 }
@@ -3,6 +3,33 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+### Bug Fixes
+
+* 修复新网找错域名的bug ([bd511f9](https://github.com/certd/certd/commit/bd511f97cb7fbdcaeff7ac899f0460a5c7b41826))
+
+### Performance Improvements
+
+* 当域名管理中没有域名时，创建流水线时不展开域名选择框 ([9166a57](https://github.com/certd/certd/commit/9166a579301a60750f0b72b6a42b0c8d730695fd))
+* count tip ([e19743f](https://github.com/certd/certd/commit/e19743f70553700f1f91bff76f87370f749dd247))
+* oauth支持github 和google， 修复头像显示问题 ([693a4a6](https://github.com/certd/certd/commit/693a4a663385ced3176286bf4b5f3566da83d90e))
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Bug Fixes
+
+* 阿里云esa查询证书限制接口无效，改成配置证书数量上限检查方式进行清理 ([2302567](https://github.com/certd/certd/commit/230256793f8ad87ef8a0738c37108bf7b5ab9853))
+* 某些情况下登陆页面没有显示重置密码文档链接的问题 ([40801d0](https://github.com/certd/certd/commit/40801d0a0668c77adb57fae42b4b6615b198a88d))
+* 修复部署到火山引擎vod，获取域名列表为空的bug ([0719f4c](https://github.com/certd/certd/commit/0719f4c99e9198544d03431107b53652e076e881))
+* 修复litessl new-nonce报428的bug ([540ef96](https://github.com/certd/certd/commit/540ef967457a7871637cfdb5012ed1fa3261757b))
+* 修复oidc配置取消后获取登出地址失败后无法列出oauth列表的bug ([eb5de15](https://github.com/certd/certd/commit/eb5de150332fd914c56b812c3ba2c2445f902bb7))
+
+### Performance Improvements
+
+* 将重置密码的日志挪到启动成功之后，方便查看 ([0fa9b34](https://github.com/certd/certd/commit/0fa9b344e08cf355aee7a7566f061cc5d95dc374))
+* 支持绑定两个url地址 ([a2e9a41](https://github.com/certd/certd/commit/a2e9a41a7e712395c0e3ee6fe55b370aa1fc1f12))
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 ### Bug Fixes
@@ -3,6 +3,51 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+### Bug Fixes
+
+* 修复新网找错域名的bug ([bd511f9](https://github.com/certd/certd/commit/bd511f97cb7fbdcaeff7ac899f0460a5c7b41826))
+
+### Performance Improvements
+
+* 当域名管理中没有域名时，创建流水线时不展开域名选择框 ([9166a57](https://github.com/certd/certd/commit/9166a579301a60750f0b72b6a42b0c8d730695fd))
+* count tip ([e19743f](https://github.com/certd/certd/commit/e19743f70553700f1f91bff76f87370f749dd247))
+* oauth支持github 和google， 修复头像显示问题 ([693a4a6](https://github.com/certd/certd/commit/693a4a663385ced3176286bf4b5f3566da83d90e))
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Bug Fixes
+
+* 阿里云esa查询证书限制接口无效，改成配置证书数量上限检查方式进行清理 ([2302567](https://github.com/certd/certd/commit/230256793f8ad87ef8a0738c37108bf7b5ab9853))
+* 某些情况下登陆页面没有显示重置密码文档链接的问题 ([40801d0](https://github.com/certd/certd/commit/40801d0a0668c77adb57fae42b4b6615b198a88d))
+* 修复部署到火山引擎vod，获取域名列表为空的bug ([0719f4c](https://github.com/certd/certd/commit/0719f4c99e9198544d03431107b53652e076e881))
+* 修复litessl new-nonce报428的bug ([540ef96](https://github.com/certd/certd/commit/540ef967457a7871637cfdb5012ed1fa3261757b))
+* 修复oidc配置取消后获取登出地址失败后无法列出oauth列表的bug ([eb5de15](https://github.com/certd/certd/commit/eb5de150332fd914c56b812c3ba2c2445f902bb7))
+
+### Performance Improvements
+
+* 将重置密码的日志挪到启动成功之后，方便查看 ([0fa9b34](https://github.com/certd/certd/commit/0fa9b344e08cf355aee7a7566f061cc5d95dc374))
+* 支持绑定两个url地址 ([a2e9a41](https://github.com/certd/certd/commit/a2e9a41a7e712395c0e3ee6fe55b370aa1fc1f12))
+
+## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)
+
+### Bug Fixes
+
+* 修复1:: 形式的ipv6校验失败的bug ([8b96f21](https://github.com/certd/certd/commit/8b96f218d5284033f10c186c0ce18e4c16d8e9b2))
+* 修复阿里云esa超过免费配额之后无法部署证书的bug，改成删除最旧的那张证书 ([32de8d9](https://github.com/certd/certd/commit/32de8d9ccb08d26414adbdde950d7cd405dc344a))
+
+### Performance Improvements
+
+* 当ip证书天数太小时，自动调整更新天数，避免每次运行都重新申请ip证书 ([433e98b](https://github.com/certd/certd/commit/433e98b6450fa7d0491151f159e432bf3dfe4feb))
+* 首页证书数量支持点击跳转 ([52cbff0](https://github.com/certd/certd/commit/52cbff0e15329aecd3edcf81315fb7ceab9ec290))
+* 修复旧版本流水线数据发送通知标题为空的bug ([9bee0e4](https://github.com/certd/certd/commit/9bee0e460bfebe8db76742b80b2d52854392f4de))
+* 验证码支持 Cloudflare Turnstile ，谨慎启用，国内被墙了 ([ca43c77](https://github.com/certd/certd/commit/ca43c775250154def63c4acd96d65dc95d1c0c2b))
+* 优化证书未过期时的任务日志提示 ([ac85488](https://github.com/certd/certd/commit/ac85488245197694560aad7df9425ca215ef7ff7))
+* 支持部署到阿里云GA ([1a0d3ee](https://github.com/certd/certd/commit/1a0d3eeb1b0b5ce08f05af84b6161e00c1fe1815))
+* 支持部署到华为elb ([60c8ace](https://github.com/certd/certd/commit/60c8ace443e848155d3ce12e95b84766a4610d3a))
+* 支持部署到AcePanel ([1661cae](https://github.com/certd/certd/commit/1661caed05e3413dc3e2b14ce62b75aa03ad90e0))
+
 ## [1.38.3](https://github.com/certd/certd/compare/v1.38.2...v1.38.3) (2026-01-28)

 ### Bug Fixes
@@ -0,0 +1,24 @@
+{
+  "notice": "永久专业版上线，新用户立减50，升级到最新版点击下方“立即赞助”按钮前往获取",
+  "plus": {
+    "name": "专业版",
+    "price": "89.9",
+    "price3": "199",
+    "tooltip": "开源需要您的赞助支持",
+	"priceText":"¥89.9/年",
+	"discountText":"永久专业版50优惠券立即领取"
+  },
+  "comm": {
+    "name": "商业版",
+    "price": "399",
+    "price3": "899",
+    "tooltip": "3年优惠300",
+	"priceText":"¥399/年",
+	"discountText":"¥899/3年（3年优惠300）"
+  },
+  "app":{
+	  "minVersion":"1.36.0",
+	  "minVersionTip":"版本过低，为了您的数据安全，请尽快升级"
+  }
+  
+}
@@ -5,7 +5,7 @@
 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **证书申请（JS版）** | 免费通配符域名证书申请，支持多个域名打到同一个证书上 | 
-| 2.| **商用证书托管** | 手动上传自定义证书后，自动部署（每次证书有更新，都需要手动上传一次） | 
+| 2.| **已有证书托管** | 手动上传自定义证书后，自动部署（每次证书有更新，都需要手动上传一次） | 
 | 3.| **获取阿里云订阅证书** | 从阿里云拉取订阅模式的商用证书 | 
 | 4.| **证书申请（Lego）** | 支持海量DNS解析提供商，推荐使用，一样的免费通配符域名证书申请，支持多个域名打到同一个证书上 | 
 ## 2. 主机
@@ -52,3 +52,11 @@ service:
 3. DNS 有其他平台申请过的_acme-challenge记录，删除即可


+## 7. DNS problem: NXDOMAIN looking up TXT for  _acme-challenge.xxx 
+`
+DNS problem: NXDOMAIN looking up TXT for  _acme-challenge.xxxxx - check that a DNS record exists for this domain
+`
+证书颁发机构向域名ns查询TXT验证记录失败，有以下几种可能
+1、域名的ns服务器修改成别的了，但申请证书时的DNS提供商选择错误（检查确认，配置正确的DNS提供商）
+2、证书颁发机构与ns域名服务器之间访问不通，无法查询到TXT记录（尝试更换证书颁发机构）
+3、ns服务商解析值生效慢（尝试修改证书申请任务里面的等待生效时长600-1000s）
@@ -9,5 +9,5 @@
    }
  },
  "npmClient": "pnpm",
-  "version": "1.38.4"
+  "version": "1.38.6"
 }
@@ -3,6 +3,16 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/publishlab/node-acme-client/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.38.5](https://github.com/publishlab/node-acme-client/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Bug Fixes
+
+* 修复litessl new-nonce报428的bug ([540ef96](https://github.com/publishlab/node-acme-client/commit/540ef967457a7871637cfdb5012ed1fa3261757b))
+
 ## [1.38.4](https://github.com/publishlab/node-acme-client/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/acme-client
@@ -3,7 +3,7 @@
    "description": "Simple and unopinionated ACME client",
    "private": false,
    "author": "nmorsman",
-    "version": "1.38.4",
+    "version": "1.38.6",
    "type": "module",
    "module": "scr/index.js",
    "main": "src/index.js",
@@ -18,7 +18,7 @@
        "types"
    ],
    "dependencies": {
-        "@certd/basic": "^1.38.4",
+        "@certd/basic": "^1.38.6",
        "@peculiar/x509": "^1.11.0",
        "asn1js": "^3.0.5",
        "axios": "^1.9.0",
@@ -70,5 +70,5 @@
    "bugs": {
        "url": "https://github.com/publishlab/node-acme-client/issues"
    },
-    "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+    "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -103,7 +103,9 @@ class AcmeClient {
            max: this.opts.backoffMax,
        };

-        this.http = new HttpClient(this.opts.directoryUrl, this.opts.accountKey, this.opts.externalAccountBinding, this.opts.urlMapping, opts.logger);
+        const cacheNonce = true
+        // const cacheNonce = this.sslProvider === 'litessl';
+        this.http = new HttpClient(this.opts.directoryUrl, this.opts.accountKey, this.opts.externalAccountBinding, this.opts.urlMapping, opts.logger, cacheNonce);
        this.api = new AcmeApi(this.http, this.opts.accountUrl);
        this.logger = opts.logger;
    }
@@ -598,7 +600,7 @@ class AcmeClient {
            throw new Error(`[${d}] Unexpected item status: ${resp.data.status}`);
        };

-        this.log(`[${d}] Waiting for valid status （等待valid状态）: ${item.url}`, this.backoffOpts);
+        this.log(`[${d}] Waiting for valid status （等待valid状态）: ${item.url}`, JSON.stringify(this.backoffOpts));
        return util.retry(verifyFn, this.backoffOpts);
    }

@@ -19,7 +19,7 @@ import { getJwk } from './crypto/index.js';
 */

 class HttpClient {
-    constructor(directoryUrl, accountKey, externalAccountBinding = {}, urlMapping = {},logger) {
+    constructor(directoryUrl, accountKey, externalAccountBinding = {}, urlMapping = {}, logger, cacheNonce= false) {
        this.directoryUrl = directoryUrl;
        this.accountKey = accountKey;
        this.externalAccountBinding = externalAccountBinding;
@@ -31,7 +31,34 @@ class HttpClient {
        this.directoryMaxAge = 86400;
        this.directoryTimestamp = 0;
        this.urlMapping = urlMapping;
-        this.log = logger? logger.info.bind(logger) : log;
+        this.log = logger ? logger.info.bind(logger) : log;
+        this.nonces = [];
+        this.cacheNonce = cacheNonce;
+    }
+
+    pushNonce(nonce) {
+        if (!this.cacheNonce || !nonce) {
+            return;
+        }
+        this.nonces.push({
+            nonce,
+            expires: Date.now() + 30*1000,
+        });
+    }
+    popNonce() {
+        while (true) {
+            if (this.nonces.length === 0) {
+                return null;
+            }
+            const item = this.nonces.shift();
+            if (!item) {
+                return null;
+            }
+            if (item.expires < Date.now()) {
+                continue;
+            }
+            return item.nonce;
+        }
    }

    /**
@@ -70,6 +97,13 @@ class HttpClient {
        const resp = await axios.request(opts);

        this.log(`RESP ${resp.status} ${method} ${url}`);
+
+        const nonce = resp.headers['replay-nonce'];
+        if (nonce) {
+            //如果有nonce
+            this.pushNonce(nonce);
+        }
+
        return resp;
    }

@@ -127,6 +161,13 @@ class HttpClient {
     */

    async getNonce() {
+
+        //尝试从队列中pop一个nonce
+        const nonce = this.popNonce();
+        if (nonce) {
+            return nonce;
+        }
+
        const url = await this.getResourceUrl('newNonce');
        const resp = await this.request(url, 'head');

@@ -134,7 +175,11 @@ class HttpClient {
            throw new Error('Failed to get nonce from ACME provider');
        }

+        if (this.cacheNonce) {
+            return this.popNonce();
+        }
        return resp.headers['replay-nonce'];
+       
    }

    /**
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/basic
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 ### Bug Fixes
@@ -1 +1 @@
-02:08
+01:13
@@ -1,7 +1,7 @@
 {
  "name": "@certd/basic",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -47,5 +47,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/pipeline
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 ### Performance Improvements
@@ -1,7 +1,7 @@
 {
  "name": "@certd/pipeline",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -18,8 +18,8 @@
    "compile": "tsc --skipLibCheck --watch"
  },
  "dependencies": {
-    "@certd/basic": "^1.38.4",
-    "@certd/plus-core": "^1.38.4",
+    "@certd/basic": "^1.38.6",
+    "@certd/plus-core": "^1.38.6",
    "dayjs": "^1.11.7",
    "lodash-es": "^4.17.21",
    "reflect-metadata": "^0.1.13"
@@ -45,5 +45,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/lib-huawei
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/lib-huawei
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/lib-huawei
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-huawei",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "main": "./dist/bundle.js",
  "module": "./dist/bundle.js",
  "types": "./dist/d/index.d.ts",
@@ -24,5 +24,5 @@
    "prettier": "^2.8.8",
    "tslib": "^2.8.1"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/lib-iframe
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/lib-iframe
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/lib-iframe
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-iframe",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -31,5 +31,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/jdcloud
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/jdcloud
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/jdcloud
@@ -1,6 +1,6 @@
 {
  "name": "@certd/jdcloud",
-  "version": "1.38.4",
+  "version": "1.38.6",
  "description": "jdcloud openApi sdk",
  "main": "./dist/bundle.js",
  "module": "./dist/bundle.js",
@@ -56,5 +56,5 @@
      "fetch"
    ]
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/lib-k8s
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-k8s",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -17,7 +17,7 @@
    "pub": "npm publish"
  },
  "dependencies": {
-    "@certd/basic": "^1.38.4",
+    "@certd/basic": "^1.38.6",
    "@kubernetes/client-node": "0.21.0"
  },
  "devDependencies": {
@@ -32,5 +32,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,16 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/lib-server
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Performance Improvements
+
+* 支持绑定两个url地址 ([a2e9a41](https://github.com/certd/certd/commit/a2e9a41a7e712395c0e3ee6fe55b370aa1fc1f12))
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/lib-server
@@ -1,6 +1,6 @@
 {
  "name": "@certd/lib-server",
-  "version": "1.38.4",
+  "version": "1.38.6",
  "description": "midway with flyway, sql upgrade way ",
  "private": false,
  "type": "module",
@@ -28,11 +28,11 @@
  ],
  "license": "AGPL",
  "dependencies": {
-    "@certd/acme-client": "^1.38.4",
-    "@certd/basic": "^1.38.4",
-    "@certd/pipeline": "^1.38.4",
-    "@certd/plugin-lib": "^1.38.4",
-    "@certd/plus-core": "^1.38.4",
+    "@certd/acme-client": "^1.38.6",
+    "@certd/basic": "^1.38.6",
+    "@certd/pipeline": "^1.38.6",
+    "@certd/plugin-lib": "^1.38.6",
+    "@certd/plus-core": "^1.38.6",
    "@midwayjs/cache": "3.14.0",
    "@midwayjs/core": "3.20.11",
    "@midwayjs/i18n": "3.20.13",
@@ -64,5 +64,5 @@
    "typeorm": "^0.3.11",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -20,6 +20,7 @@ export class PlusService {

    const subjectId = installInfo.siteId;
    const bindUrl = installInfo.bindUrl;
+    const bindUrl2 = installInfo.bindUrl2;
    const installTime = installInfo.installTime;
    const saveLicense = async (license: string) => {
      let licenseInfo: SysLicenseInfo = await this.sysSettingsService.getSetting(SysLicenseInfo);
@@ -30,7 +31,7 @@ export class PlusService {
      await this.sysSettingsService.saveSetting(licenseInfo);
    };

-    return new PlusRequestService({ subjectId, bindUrl, installTime, saveLicense });
+    return new PlusRequestService({ subjectId, bindUrl, bindUrl2, installTime, saveLicense });
  }

  async getSubjectId() {
@@ -53,9 +54,9 @@ export class PlusService {
    await plusRequestService.verify({ license: licenseInfo.license });
  }

-  async bindUrl(url: string) {
+  async bindUrl(url: string, url2?:string) {
    const plusRequestService = await this.getPlusRequestService();
-    const res = await plusRequestService.bindUrl(url);
+    const res = await plusRequestService.bindUrl(url,url2);
    this.plusRequestService = null;
    return res;
  }
@@ -150,6 +151,12 @@ export class PlusService {
    }
  }

+  async getTodayOrderCount () {
+    await this.register();
+    const plusRequestService = await this.getPlusRequestService();
+    return await plusRequestService.getOrderCount()
+  }
+
  async requestWithToken(config: HttpRequestConfig) {
    const plusRequestService = await this.getPlusRequestService();
    const token = await this.getAccessToken();
@@ -65,6 +65,8 @@ export class SysPublicSettings extends BaseSettings {
  }> = {};

  notice?: string;
+
+  adminMode?: "enterprise" | "saas" = "saas";
 }

 export class SysPrivateSettings extends BaseSettings {
@@ -107,6 +109,7 @@ export class SysInstallInfo extends BaseSettings {
  siteId?: string;
  bindUserId?: number;
  bindUrl?: string;
+  bindUrl2?: string;
  accountServerBaseUrl?: string;
  appKey?: string;
 }
@@ -21,6 +21,9 @@ export class AccessEntity {
  @Column({ name: 'encrypt_setting', comment: '已加密设置', length: 10240, nullable: true })
  encryptSetting: string;

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+
  @Column({
    name: 'create_time',
    comment: '创建时间',
@@ -28,6 +28,9 @@ export class AddonEntity {
  @Column({ name: 'is_default', comment: '是否默认',  nullable: false, default: false })
  isDefault: boolean;

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+

  @Column({
    name: 'create_time',
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/midway-flyway-js
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/midway-flyway-js
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/midway-flyway-js
@@ -1,6 +1,6 @@
 {
  "name": "@certd/midway-flyway-js",
-  "version": "1.38.4",
+  "version": "1.38.6",
  "description": "midway with flyway, sql upgrade way ",
  "private": false,
  "type": "module",
@@ -46,5 +46,5 @@
    "typeorm": "^0.3.11",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/plugin-cert
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/plugin-cert
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/plugin-cert
@@ -1,7 +1,7 @@
 {
  "name": "@certd/plugin-cert",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "types": "./dist/index.d.ts",
@@ -17,10 +17,10 @@
    "compile": "tsc --skipLibCheck --watch"
  },
  "dependencies": {
-    "@certd/acme-client": "^1.38.4",
-    "@certd/basic": "^1.38.4",
-    "@certd/pipeline": "^1.38.4",
-    "@certd/plugin-lib": "^1.38.4",
+    "@certd/acme-client": "^1.38.6",
+    "@certd/basic": "^1.38.6",
+    "@certd/pipeline": "^1.38.6",
+    "@certd/plugin-lib": "^1.38.6",
    "psl": "^1.9.0",
    "punycode.js": "^2.3.1"
  },
@@ -38,5 +38,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -1 +1 @@
-export * from "@certd/plugin-lib";
+export * from "@certd/plugin-lib";
@@ -3,6 +3,14 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+**Note:** Version bump only for package @certd/plugin-lib
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+**Note:** Version bump only for package @certd/plugin-lib
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 **Note:** Version bump only for package @certd/plugin-lib
@@ -1,7 +1,7 @@
 {
  "name": "@certd/plugin-lib",
  "private": false,
-  "version": "1.38.4",
+  "version": "1.38.6",
  "type": "module",
  "main": "./dist/index.js",
  "types": "./dist/index.d.ts",
@@ -22,10 +22,10 @@
    "@alicloud/pop-core": "^1.7.10",
    "@alicloud/tea-util": "^1.4.11",
    "@aws-sdk/client-s3": "^3.964.0",
-    "@certd/acme-client": "^1.38.4",
-    "@certd/basic": "^1.38.4",
-    "@certd/pipeline": "^1.38.4",
-    "@certd/plus-core": "^1.38.4",
+    "@certd/acme-client": "^1.38.6",
+    "@certd/basic": "^1.38.6",
+    "@certd/pipeline": "^1.38.6",
+    "@certd/plus-core": "^1.38.6",
    "@kubernetes/client-node": "0.21.0",
    "ali-oss": "^6.22.0",
    "basic-ftp": "^5.0.5",
@@ -57,5 +57,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "ee6cdfb391568ad8532701a2c37ee53e88e39f75"
+  "gitHead": "1368259a1e780486204e9d814c88a741a373dcca"
 }
@@ -3,6 +3,24 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+### Performance Improvements
+
+* 当域名管理中没有域名时，创建流水线时不展开域名选择框 ([9166a57](https://github.com/certd/certd/commit/9166a579301a60750f0b72b6a42b0c8d730695fd))
+* count tip ([e19743f](https://github.com/certd/certd/commit/e19743f70553700f1f91bff76f87370f749dd247))
+* oauth支持github 和google， 修复头像显示问题 ([693a4a6](https://github.com/certd/certd/commit/693a4a663385ced3176286bf4b5f3566da83d90e))
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Bug Fixes
+
+* 某些情况下登陆页面没有显示重置密码文档链接的问题 ([40801d0](https://github.com/certd/certd/commit/40801d0a0668c77adb57fae42b4b6615b198a88d))
+
+### Performance Improvements
+
+* 支持绑定两个url地址 ([a2e9a41](https://github.com/certd/certd/commit/a2e9a41a7e712395c0e3ee6fe55b370aa1fc1f12))
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 ### Bug Fixes
@@ -1,6 +1,6 @@
 {
  "name": "@certd/ui-client",
-  "version": "1.38.4",
+  "version": "1.38.6",
  "private": true,
  "scripts": {
    "dev": "vite --open",
@@ -106,8 +106,8 @@
    "zod-defaults": "^0.1.3"
  },
  "devDependencies": {
-    "@certd/lib-iframe": "^1.38.4",
-    "@certd/pipeline": "^1.38.4",
+    "@certd/lib-iframe": "^1.38.6",
+    "@certd/pipeline": "^1.38.6",
    "@rollup/plugin-commonjs": "^25.0.7",
    "@rollup/plugin-node-resolve": "^15.2.3",
    "@types/chai": "^4.3.12",
@@ -8,19 +8,23 @@
 </template>

 <script lang="ts" setup>
-import { computed, provide, ref } from "vue";
+import { computed, provide, Ref, ref } from "vue";
 import { preferences, usePreferences } from "/@/vben/preferences";
 import { useAntdDesignTokens } from "/@/vben/hooks";
 import { Modal, theme } from "ant-design-vue";
 import AConfigProvider from "ant-design-vue/es/config-provider";
 import { antdvLocale } from "./locales/antdv";
 import { setI18nLanguage } from "/@/locales";
+import { mitter } from "./utils/util.mitt";
 defineOptions({
  name: "App",
 });

 const [modal, contextHolder] = Modal.useModal();
 provide("modal", modal);
+mitter.on("getModal", (event: any) => {
+  event.ModalRef = modal;
+});

 const locale = preferences.app.locale;
 setI18nLanguage(locale);
@@ -3,12 +3,14 @@
    <div class="flex flex-row">
      <a-select
        class="domain-select-input"
+        :popup-class-name="popupClassName"
        :dropdown-style="dropdownStyle"
        show-search
        :filter-option="filterOption"
        :options="optionsRef"
        :value="value"
        v-bind="attrs"
+        :open="openProp"
        @click="onClick"
        @update:value="emit('update:value', $event)"
      >
@@ -55,12 +57,12 @@
  </div>
 </template>
 <script setup lang="ts">
-import { computed, defineComponent, ref, Ref, useAttrs } from "vue";
-import { request } from "/@/api/service";
-import { Dicts } from "../lib/dicts";
+import { computed, defineComponent, onMounted, ref, Ref, useAttrs } from "vue";
 import { useRouter } from "vue-router";
-import { useDomainImport, useDomainImportManage } from "/@/views/certd/cert/domain/use";
+import { Dicts } from "../lib/dicts";
+import { request } from "/@/api/service";
 import { openRouteInNewWindow } from "/@/vben/utils";
+import { useDomainImportManage } from "/@/views/certd/cert/domain/use";

 defineOptions({
  name: "DomainSelector",
@@ -82,6 +84,7 @@ const props = defineProps<{
  search?: boolean;
  pager?: boolean;
  value?: any[];
+  open?: boolean;
 }>();

 const emit = defineEmits<{
@@ -90,6 +93,15 @@ const emit = defineEmits<{

 const attrs = useAttrs();

+const hasOptions: Ref = ref(null);
+
+const popupClassName = computed(() => {
+  if (!hasOptions.value) {
+    return "hidden-important";
+  }
+  return "";
+});
+
 const searchKeyRef = ref("");
 const optionsRef = ref([]);
 const message = ref("");
@@ -143,6 +155,14 @@ const getOptions = async () => {
    }

    optionsRef.value = options;
+    if (hasOptions.value == null) {
+      //初始设置一次
+      if (options.length > 0) {
+        hasOptions.value = true;
+      } else {
+        hasOptions.value = false;
+      }
+    }
    pagerRef.value.total = list.length;
    if (props.pager) {
      if (res.total != null) {
@@ -205,6 +225,10 @@ function openDomainImportDialog() {
 const dropdownStyle = ref({
  zIndex: 2000,
 });
+
+onMounted(() => {
+  refreshOptions();
+});
 </script>

 <style lang="less"></style>
@@ -1,8 +1,8 @@
 <template>
  <div class="params-show">
-    <a-tag type="primary" color="green" v-for="item of params" :key="item.value" class="item">
+    <a-tag v-for="item of params" :key="item.value" type="primary" color="green" class="item">
      <span class="label">{{ item.label }}=</span>
-      <fs-copyable :modelValue="`\$\{${item.value}\}`" :button="{show:false}" :inline="true"></fs-copyable>
+      <fs-copyable :model-value="`\$\{${item.value}\}`" :button="{ show: false }" :inline="true"></fs-copyable>
    </a-tag>
  </div>
 </template>
@@ -15,3 +15,10 @@ export async function getVipTrial(vipType: string) {
    data: { vipType },
  });
 }
+
+export async function getTodayVipOrderCount() {
+  return await request({
+    url: "/sys/plus/getTodayVipOrderCount",
+    method: "post",
+  });
+}
@@ -14,16 +14,20 @@
 <script lang="tsx" setup>
 import { message, Modal } from "ant-design-vue";
 import dayjs from "dayjs";
-import { computed, onMounted, reactive, ref } from "vue";
+import { computed, onMounted, ref } from "vue";
 import { useI18n } from "vue-i18n";
 import { useRouter } from "vue-router";
 import * as api from "./api";
-import { useSettingStore } from "/@/store/settings";
+import { useSettingStore } from "/src/store/settings/index";
 import { useUserStore } from "/@/store/user";
 import { env } from "/@/utils/util.env";
 import { mitter } from "/@/utils/util.mitt";
+import VipModalContent from "./vip-modal-content.vue";
 const { t } = useI18n();

+defineOptions({
+  name: "VipButton",
+});
 const settingStore = useSettingStore();
 const props = withDefaults(
  defineProps<{
@@ -39,6 +43,7 @@ type Text = {
 };
 const text = computed<Text>(() => {
  const vipLabel = settingStore.vipLabel;
+  const plusMessage = settingStore.plusInfo?.message;
  const map = {
    isComm: {
      comm: {
@@ -91,7 +96,7 @@ const text = computed<Text>(() => {
      },
      nav: {
        name: t("vip.free.nav.name"),
-        title: t("vip.free.nav.title"),
+        title: plusMessage || t("vip.free.nav.title"),
      },
    },
  };
@@ -113,58 +118,16 @@ const expireTime = computed(() => {

 const expiredDays = computed(() => {
  if (settingStore.plusInfo?.isPlus && !settingStore.isPlus) {
-    //已过期多少天
    const days = dayjs().diff(dayjs(settingStore.plusInfo.expireTime), "day");
    return `${settingStore.vipLabel}已过期${days}天`;
  }
  return "";
 });

-const formState = reactive({
-  code: "",
-  inviteCode: "",
-});
-
 const router = useRouter();
-async function doActive() {
-  if (!formState.code) {
-    message.error(t("vip.enterCode"));
-    throw new Error(t("vip.enterCode"));
-  }
-  const res = await api.doActive(formState);
-  if (res) {
-    await settingStore.init();
-    const vipLabel = settingStore.vipLabel;
-    Modal.success({
-      title: t("vip.successTitle"),
-      content: t("vip.successContent", {
-        vipLabel,
-        expireDate: dayjs(settingStore.plusInfo.expireTime).format("YYYY-MM-DD"),
-      }),
-      onOk() {
-        if (!(settingStore.installInfo.bindUserId > 0)) {
-          Modal.confirm({
-            title: t("vip.bindAccountTitle"),
-            content: t("vip.bindAccountContent"),
-            onOk() {
-              router.push("/sys/account");
-            },
-          });
-        }
-      },
-    });
-  }
-}
-
-const computedSiteId = computed(() => settingStore.installInfo?.siteId);
 const [modal, contextHolder] = Modal.useModal();
 const userStore = useUserStore();

-function goAccount() {
-  Modal.destroyAll();
-  router.push("/sys/account");
-}
-
 async function getVipTrial(vipType = "plus") {
  const res = await api.getVipTrial(vipType);
  message.success(t("vip.congratulations_vip_trial", { duration: res.duration }));
@@ -253,6 +216,7 @@ function openUpgrade() {
      throw new Error(t("vip.already_perpetual_plus"));
    }
  }
+
  function goBuyPlusPage() {
    checkPerpetualPlus();
    if (settingStore.isComm) {
@@ -264,6 +228,7 @@ function openUpgrade() {
    }
    window.open(goBuyUrl);
  }
+
  function goBuyCommPage() {
    checkPerpetualPlus();
    if (settingStore.isPlus && !settingStore.isComm) {
@@ -278,75 +243,6 @@ function openUpgrade() {
    }
    window.open(goBuyCommUrl);
  }
-  const vipTypeDefine = {
-    free: {
-      title: t("vip.basic_edition"),
-      desc: t("vip.community_free_version"),
-      type: "free",
-      icon: "lucide:package-open",
-      privilege: [t("vip.unlimited_certificate_application"), t("vip.unlimited_domain_count"), t("vip.unlimited_certificate_pipelines"), t("vip.common_deployment_plugins"), t("vip.email_webhook_notifications")],
-    },
-    plus: {
-      title: t("vip.professional_edition"),
-      desc: t("vip.open_source_support"),
-      type: "plus",
-      privilege: [t("vip.vip_group_priority"), t("vip.unlimited_site_certificate_monitoring"), t("vip.more_notification_methods"), t("vip.plugins_fully_open")],
-      trial: {
-        title: t("vip.click_to_get_7_day_trial"),
-        click: () => {
-          openStarModal("plus");
-        },
-      },
-      icon: "stash:thumb-up",
-      priceText: productInfo.plus.priceText || `¥${productInfo.plus.price}/${t("vip.years")}`,
-      discountText: productInfo.plus.discountText || `¥${productInfo.plus.price3}/3${t("vip.years")}`,
-      tooltip: productInfo.plus.tooltip,
-      get() {
-        return (
-          <a-tooltip title={t("vip.afdian_support_vip")}>
-            <a-button size="small" type="primary" onClick={goBuyPlusPage}>
-              {t("vip.get_after_support")}
-            </a-button>
-          </a-tooltip>
-        );
-      },
-    },
-    comm: {
-      title: t("vip.business_edition"),
-      desc: t("vip.commercial_license"),
-      type: "comm",
-      icon: "vaadin:handshake",
-      privilege: [t("vip.all_pro_privileges"), t("vip.allow_commercial_use_modify_logo_title"), t("vip.data_statistics"), t("vip.plugin_management"), t("vip.unlimited_multi_users"), t("vip.support_user_payment")],
-      priceText: productInfo.comm.priceText || `¥${productInfo.comm.price}/${t("vip.years")}`,
-      discountText: productInfo.comm.discountText || `¥${productInfo.comm.price3}/3${t("vip.years")}`,
-      tooltip: productInfo.comm.tooltip,
-      trial: {
-        title: t("vip.click_to_get_7_day_trial"),
-        click: () => {
-          openStarModal("comm");
-        },
-      },
-      get() {
-        return (
-          <a-button size="small" type="primary" onClick={goBuyCommPage}>
-            {t("vip.buy")}
-          </a-button>
-        );
-      },
-    },
-  };
-
-  const manualActiveFlag = ref();
-  function showManualActivation() {
-    manualActiveFlag.value = true;
-  }
-
-  function goBindAccount() {
-    modalRef?.destroy();
-    router.push({
-      path: "/sys/account",
-    });
-  }
  const modalRef = modal.success({
    title,
    class: "vip-modal",
@@ -354,119 +250,7 @@ function openUpgrade() {
    okText: t("vip.close"),
    width: 1100,
    content: () => {
-      let manualActiveBlock: any = "";
-      if (manualActiveFlag.value) {
-        manualActiveBlock = (
-          <div>
-            <div class="mt-10">
-              <a-input-search class="w-2/6" v-model:value={formState.code} placeholder={placeholder} enter-button={t("vip.activate")} onSearch={doActive}></a-input-search>
-            </div>
-            <div class="mt-10">
-              {t("vip.activation_code_one_use")}
-              <a onClick={goAccount}>{t("vip.bind_account")}</a>，{t("vip.transfer_vip")}
-            </div>
-          </div>
-        );
-      }
-      const vipLabel = settingStore.vipLabel;
-      let plusInfo: any = "";
-      if (isPlus) {
-        plusInfo = (
-          <div class="mt-10 flex flex-col md:flex-row ">
-            <span class="mr-2">
-              {t("vip.current")} {vipLabel} {t("vip.activated_expire_time")} {settingStore.expiresText}
-            </span>
-            <a href="https://app.handfree.work/subject/#/page/detail/1" target="_blank">
-              {t("vip.learn_more")}
-            </a>
-          </div>
-        );
-      }
-
-      const slots = [];
-      for (const key in vipTypeDefine) {
-        // @ts-ignore
-        const item = vipTypeDefine[key];
-        const vipBlockClass = `vip-block  ${key === settingStore.plusInfo.vipType ? "current" : ""}`;
-        slots.push(
-          <div class="w-full md:w-1/3 mb-4 p-5">
-            <div class={vipBlockClass}>
-              <h3 class="block-header ">
-                <span class="flex-o">{item.title}</span>
-                {item.trial && (
-                  <span class="trial">
-                    <a-tooltip title={item.trial.message}>
-                      <a onClick={item.trial.click}>{item.trial.title}</a>
-                    </a-tooltip>
-                  </span>
-                )}
-              </h3>
-              <div style="color:green" class="flex-o">
-                <fs-icon icon={item.icon} class="fs-16 flex-o" />
-                {item.desc}
-              </div>
-              <ul class="flex-1 privilege">
-                {item.privilege.map((p: string) => (
-                  <li class="flex-baseline">
-                    <fs-icon class="color-green" icon="ion:checkmark-sharp" />
-                    {p}
-                  </li>
-                ))}
-              </ul>
-              <div class="footer flex-between flex-vc">
-                <div class="price-show">
-                  {item.priceText && (
-                    <span class="flex">
-                      <span class="-text">{item.priceText}</span>
-                      <a-tooltip class="ml-5" title={item.discountText}>
-                        <fs-icon class="pointer color-red" icon="ic:outline-discount"></fs-icon>
-                      </a-tooltip>
-                    </span>
-                  )}
-                  {!item.priceText && (
-                    <span>
-                      <span class="price-text">{t("vip.freee")}</span>
-                    </span>
-                  )}
-                </div>
-                <div class="get-show">{item.get && <div>{item.get()}</div>}</div>
-              </div>
-            </div>
-          </div>
-        );
-      }
-      return (
-        <div class="mt-10 mb-10 vip-active-modal">
-          {productInfo.notice && (
-            <div class="mb-10">
-              <a-alert type="error" message={productInfo.notice}></a-alert>
-            </div>
-          )}
-          <div class="vip-type-vs">
-            <a-row gutter={20}>{slots}</a-row>
-          </div>
-          <div>
-            <a href="https://certd.docmirror.cn/guide/donate/#相关问题" target="_blank">
-              {t("vip.question")}
-            </a>
-          </div>
-          <div class="mt-10">
-            <div class=" w-100 flex-col md:flex-row ">
-              <span>{t("vip.site_id")}：</span>
-              <fs-copyable v-model={computedSiteId.value} class="mr-2"></fs-copyable>
-              <a onClick={goBindAccount}>{t("vip.not_effective")}</a>
-            </div>
-          </div>
-          {plusInfo}
-          <div class="mt-10 ">
-            <span class="mr-2">{t("vip.have_activation_code")}</span>
-            <span>
-              <a onClick={showManualActivation}>{t("vip.manual_activation")}</a>
-            </span>
-          </div>
-          <div class="mt-10">{manualActiveBlock}</div>
-        </div>
-      );
+      return <VipModalContent placeholder={placeholder} isPlus={isPlus} productInfo={productInfo} goBuyPlusPage={goBuyPlusPage} goBuyCommPage={goBuyCommPage} openStarModal={openStarModal} modalRef={modalRef} />;
    },
  });
 }
@@ -502,69 +286,4 @@ onMounted(() => {
  .text {
  }
 }
-
-.vip-active-modal {
-  .vip-block {
-    display: flex;
-    flex-direction: column;
-    padding: 10px;
-    border: 1px solid #eee;
-    border-radius: 5px;
-    height: 275px;
-    line-height: 24px;
-
-    .privilege {
-      margin-top: 5px;
-    }
-
-    //background-color: rgba(250, 237, 167, 0.79);
-    &.current {
-      border-color: green;
-    }
-
-    .block-header {
-      padding: 0px;
-      display: flex;
-      justify-content: space-between;
-
-      .trial {
-        font-size: 12px;
-        font-wight: 400;
-      }
-    }
-
-    .footer {
-      padding-top: 5px;
-      margin-top: 0px;
-      border-top: 1px solid #eee;
-
-      .price-text {
-        font-size: 18px;
-        color: red;
-      }
-    }
-  }
-
-  ul {
-    list-style-type: unset;
-    margin-left: 0px;
-    padding: 0;
-  }
-
-  .color-green {
-    color: green;
-  }
-
-  .vip-type-vs {
-    .privilege {
-      .fs-icon {
-        color: green;
-      }
-    }
-
-    .fs-icon {
-      margin-right: 5px;
-    }
-  }
-}
 </style>
@@ -0,0 +1,434 @@
+<template>
+  <div class="mt-10 vip-active-modal">
+    <div v-if="todayOrderCount.enabled" class="order-count hidden md:flex">
+      <div v-for="(stage, index) in todayOrderCount.stages" :key="index" class="status-item" :class="{ 'status-show': TodayVipOrderCountRef.current === index }">
+        <div class="background">
+          <img :src="stage.bg" alt="" />
+        </div>
+        <div class="flex flex-col order-count-text weight-bold">
+          <div class="count-text ml-4 flex items-center">
+            <fs-icon icon="noto:fire" class="fs-20 mr-2"></fs-icon>
+            <template v-if="stage.vipTotal > 0">
+              <span> 已有 </span>
+              <span class="count-number color-red font-bold text-2xl ml-1 mr-1"> {{ stage.vipTotal }} </span> 位小伙伴赞助，
+              <span>
+                {{ stage.title }}
+              </span>
+            </template>
+            <template v-else>
+              <span> 今日赞助 </span>
+              <span class="count-number color-red font-bold text-2xl ml-1 mr-1"> {{ stage.orderCount }} </span> 人，
+              <span>
+                {{ stage.title }}
+              </span>
+            </template>
+          </div>
+        </div>
+      </div>
+    </div>
+    <div v-if="productInfo.notice" class="mt-10">
+      <a-alert type="error" :message="productInfo.notice"></a-alert>
+    </div>
+    <div class="vip-type-vs mt-10">
+      <a-row :gutter="20">
+        <div v-for="(item, key) in vipTypeDefine" :key="key" class="w-full md:w-1/3 mb-4 p-5">
+          <div :class="`vip-block  ${key === settingStore.plusInfo.vipType ? 'current' : ''}`">
+            <h3 class="block-header">
+              <span class="flex-o">{{ item.title }}</span>
+              <span v-if="item.trial" class="trial">
+                <a-tooltip :title="item.trial.message">
+                  <a @click="item.trial.click">{{ item.trial.title }}</a>
+                </a-tooltip>
+              </span>
+            </h3>
+            <div style="color: green" class="flex-o">
+              <fs-icon :icon="item.icon" class="fs-16 flex-o" />
+              {{ item.desc }}
+            </div>
+            <ul class="flex-1 privilege">
+              <li v-for="p in item.privilege" :key="p" class="flex-baseline">
+                <fs-icon class="color-green" icon="ion:checkmark-sharp" />
+                {{ p }}
+              </li>
+            </ul>
+            <div class="footer flex-between flex-vc">
+              <div class="price-show">
+                <span v-if="item.priceText" class="flex">
+                  <span class="-text">{{ item.priceText }}</span>
+                  <a-tooltip class="ml-5" :title="item.discountText">
+                    <fs-icon class="pointer color-red" icon="ic:outline-discount"></fs-icon>
+                  </a-tooltip>
+                </span>
+                <span v-else>
+                  <span class="price-text">{{ t("vip.freee") }}</span>
+                </span>
+              </div>
+              <div class="get-show">
+                <template v-if="item.type === 'plus'">
+                  <a-tooltip :title="t('vip.afdian_support_vip')">
+                    <a-button size="small" type="primary" @click="goBuyPlusPage">
+                      {{ t("vip.get_after_support") }}
+                    </a-button>
+                  </a-tooltip>
+                </template>
+                <template v-else-if="item.type === 'comm'">
+                  <a-button size="small" type="primary" @click="goBuyCommPage">
+                    {{ t("vip.buy") }}
+                  </a-button>
+                </template>
+              </div>
+            </div>
+          </div>
+        </div>
+      </a-row>
+    </div>
+    <div>
+      <a href="https://certd.docmirror.cn/guide/donate/#相关问题" target="_blank">
+        {{ t("vip.question") }}
+      </a>
+    </div>
+    <div class="mt-10">
+      <div class="w-100 flex-col md:flex-row">
+        <span>{{ t("vip.site_id") }}：</span>
+        <fs-copyable v-model="computedSiteId" class="mr-2"></fs-copyable>
+        <a @click="goBindAccount">{{ t("vip.not_effective") }}</a>
+      </div>
+    </div>
+    <div v-if="isPlus" class="mt-10 flex flex-col md:flex-row">
+      <span class="mr-2"> {{ t("vip.current") }} {{ vipLabel }} {{ t("vip.activated_expire_time") }} {{ settingStore.expiresText }} </span>
+      <a href="https://app.handfree.work/subject/#/page/detail/1" target="_blank">
+        {{ t("vip.learn_more") }}
+      </a>
+    </div>
+    <div class="mt-10">
+      <span class="mr-2">{{ t("vip.have_activation_code") }}</span>
+      <span>
+        <a @click="showManualActivation">{{ t("vip.manual_activation") }}</a>
+      </span>
+    </div>
+    <div v-if="manualActiveFlag" class="mt-10">
+      <div class="mt-10">
+        <a-input-search v-model:value="formState.code" class="w-2/6" :placeholder="placeholder" :enter-button="t('vip.activate')" @search="doActive"></a-input-search>
+      </div>
+      <div class="mt-10">
+        {{ t("vip.activation_code_one_use") }}
+        <a @click="goAccount">{{ t("vip.bind_account") }}</a
+        >，{{ t("vip.transfer_vip") }}
+      </div>
+    </div>
+  </div>
+</template>
+
+<script lang="ts" setup>
+import { message, Modal } from "ant-design-vue";
+import dayjs from "dayjs";
+import { computed, nextTick, onMounted, onUnmounted, reactive, Ref, ref } from "vue";
+import { useI18n } from "vue-i18n";
+import { useRouter } from "vue-router";
+import * as api from "./api";
+import { useSettingStore } from "/@/store/settings";
+
+const { t } = useI18n();
+const router = useRouter();
+const settingStore = useSettingStore();
+
+const props = defineProps<{
+  placeholder: string;
+  isPlus: boolean;
+  productInfo: any;
+  goBuyPlusPage: () => void;
+  goBuyCommPage: () => void;
+  openStarModal: (vipType: string) => void;
+  modalRef: any;
+}>();
+
+const formState = reactive({
+  code: "",
+  inviteCode: "",
+});
+
+async function doActive() {
+  if (!formState.code) {
+    message.error(t("vip.enterCode"));
+    throw new Error(t("vip.enterCode"));
+  }
+  const res = await api.doActive(formState);
+  if (res) {
+    await settingStore.init();
+    const vipLabel = settingStore.vipLabel;
+    Modal.success({
+      title: t("vip.successTitle"),
+      content: t("vip.successContent", {
+        vipLabel,
+        expireDate: dayjs(settingStore.plusInfo.expireTime).format("YYYY-MM-DD"),
+      }),
+      onOk() {
+        if (!(settingStore.installInfo.bindUserId > 0)) {
+          Modal.confirm({
+            title: t("vip.bindAccountTitle"),
+            content: t("vip.bindAccountContent"),
+            onOk() {
+              router.push("/sys/account");
+            },
+          });
+        }
+      },
+    });
+  }
+}
+
+const vipLabel = computed(() => settingStore.vipLabel);
+const computedSiteId = computed(() => settingStore.installInfo?.siteId);
+
+const manualActiveFlag = ref(false);
+
+function showManualActivation() {
+  manualActiveFlag.value = true;
+}
+
+function goAccount() {
+  props.modalRef?.destroy();
+  router.push("/sys/account");
+}
+
+function goBindAccount() {
+  props.modalRef?.destroy();
+  router.push({
+    path: "/sys/account",
+  });
+}
+
+const vipTypeDefine: any = {
+  free: {
+    title: t("vip.basic_edition"),
+    desc: t("vip.community_free_version"),
+    type: "free",
+    icon: "lucide:package-open",
+    privilege: [t("vip.unlimited_certificate_application"), t("vip.unlimited_domain_count"), t("vip.unlimited_certificate_pipelines"), t("vip.common_deployment_plugins"), t("vip.email_webhook_notifications")],
+  },
+  plus: {
+    title: t("vip.professional_edition"),
+    desc: t("vip.open_source_support"),
+    type: "plus",
+    privilege: [t("vip.vip_group_priority"), t("vip.unlimited_site_certificate_monitoring"), t("vip.more_notification_methods"), t("vip.plugins_fully_open")],
+    trial: {
+      title: t("vip.click_to_get_7_day_trial"),
+      click: () => {
+        props.openStarModal("plus");
+      },
+    },
+    icon: "stash:thumb-up",
+    priceText: props.productInfo.plus.priceText || `¥${props.productInfo.plus.price}/${t("vip.years")}`,
+    discountText: props.productInfo.plus.discountText || `¥${props.productInfo.plus.price3}/3${t("vip.years")}`,
+    tooltip: props.productInfo.plus.tooltip,
+  },
+  comm: {
+    title: t("vip.business_edition"),
+    desc: t("vip.commercial_license"),
+    type: "comm",
+    icon: "vaadin:handshake",
+    privilege: [t("vip.all_pro_privileges"), t("vip.allow_commercial_use_modify_logo_title"), t("vip.data_statistics"), t("vip.plugin_management"), t("vip.unlimited_multi_users"), t("vip.support_user_payment")],
+    priceText: props.productInfo.comm.priceText || `¥${props.productInfo.comm.price}/${t("vip.years")}`,
+    discountText: props.productInfo.comm.discountText || `¥${props.productInfo.comm.price3}/3${t("vip.years")}`,
+    tooltip: props.productInfo.comm.tooltip,
+    trial: {
+      title: t("vip.click_to_get_7_day_trial"),
+      click: () => {
+        props.openStarModal("comm");
+      },
+    },
+  },
+};
+
+const TodayVipOrderCountRef: Ref = ref({ enabled: false, current: 0, stages: [] });
+
+async function getTodayVipOrderCount() {
+  const res = await api.getTodayVipOrderCount();
+  if (res) {
+    TodayVipOrderCountRef.value = res;
+    TodayVipOrderCountRef.value.current = 0;
+  }
+}
+
+const todayOrderCount = computed(() => {
+  const countInfo = TodayVipOrderCountRef.value;
+  const enabled = countInfo?.enabled || false;
+  const orderCount = countInfo?.orderCount || 0;
+  for (const stage of countInfo?.stages) {
+    stage.orderCount = stage.countGe || 0;
+  }
+  const lastStage = countInfo?.stages?.[countInfo?.stages?.length - 1] || {};
+  lastStage.orderCount = orderCount;
+
+  const stages: any = [];
+  stages.push({
+    title: countInfo.title,
+    vipTotal: countInfo?.vipTotal || 0,
+    orderCount: orderCount,
+    bg: lastStage.bg,
+  });
+  if (lastStage.orderCount > 0) {
+    stages.push(lastStage);
+  }
+  return {
+    enabled: enabled,
+    stages: stages,
+  };
+});
+
+async function scrollOrderCount() {
+  const stages = todayOrderCount.value.stages;
+  if (stages.length === 0) {
+    return;
+  }
+  let index = 0;
+  const doScroll = () => {
+    TodayVipOrderCountRef.value.current = index;
+    index++;
+    if (index >= stages.length) {
+      index = 0;
+    }
+  };
+  doScroll();
+  scrollOrderCountIntervalRef.value = setInterval(doScroll, 7000);
+}
+
+const scrollOrderCountIntervalRef: Ref = ref(null);
+onMounted(async () => {
+  await getTodayVipOrderCount();
+  await nextTick();
+  await scrollOrderCount();
+});
+
+onUnmounted(() => {
+  clearInterval(scrollOrderCountIntervalRef.value);
+});
+</script>
+
+<style lang="less">
+.vip-active-modal {
+  .order-count {
+    height: 80px;
+    position: relative;
+    border: 1px solid #fee2c5;
+    border-radius: 5px;
+
+    .background {
+      border: 0px;
+      border-radius: 5px;
+      height: 100%;
+      width: 100%;
+      position: absolute;
+      top: 0;
+      left: 0;
+      z-index: 0;
+      display: flex;
+      justify-content: flex-end;
+      overflow: hidden;
+
+      img {
+        height: 100%;
+        object-fit: cover;
+      }
+    }
+
+    .order-count-text {
+      position: absolute;
+      width: 100%;
+      top: 0;
+      left: 0;
+      right: 0;
+      bottom: 0;
+      z-index: 2;
+      padding: 10px;
+      display: flex;
+      flex-direction: column;
+      justify-content: space-evenly;
+      /* 左至右渐变*/
+      background: linear-gradient(to right, rgba(255, 217, 167, 0.5), rgba(255, 255, 255, 0));
+
+      .count-text {
+        font-size: 16px;
+        font-weight: 600;
+        color: #ff6600;
+        display: flex;
+
+        .count-number {
+          margin-bottom: 5px;
+        }
+      }
+    }
+
+    .status-item {
+      opacity: 0;
+      transition: all 0.7s ease-in-out;
+    }
+
+    .status-show {
+      opacity: 1;
+    }
+  }
+
+  .vip-block {
+    display: flex;
+    flex-direction: column;
+    padding: 10px;
+    border: 1px solid #eee;
+    border-radius: 5px;
+    height: 275px;
+    line-height: 24px;
+
+    .privilege {
+      margin-top: 5px;
+    }
+
+    &.current {
+      border-color: green;
+    }
+
+    .block-header {
+      padding: 0px;
+      display: flex;
+      justify-content: space-between;
+
+      .trial {
+        font-size: 12px;
+        font-wight: 400;
+      }
+    }
+
+    .footer {
+      padding-top: 5px;
+      margin-top: 0px;
+      border-top: 1px solid #eee;
+
+      .price-text {
+        font-size: 18px;
+        color: red;
+      }
+    }
+  }
+
+  ul {
+    list-style-type: unset;
+    margin-left: 0px;
+    padding: 0;
+  }
+
+  .color-green {
+    color: green;
+  }
+
+  .vip-type-vs {
+    .privilege {
+      .fs-icon {
+        color: green;
+      }
+    }
+
+    .fs-icon {
+      margin-right: 5px;
+    }
+  }
+}
+</style>
@@ -35,7 +35,13 @@ const menus = computed(() => [

 const avatar = computed(() => {
  const avt = userStore.getUserInfo?.avatar;
-  return avt ? `/api/basic/file/download?key=${avt}` : "";
+  if (!avt) {
+    return "";
+  }
+  if (avt.startsWith("http")) {
+    return avt;
+  }
+  return `/api/basic/file/download?key=${avt}`;
 });

 async function handleLogout() {
@@ -208,6 +208,10 @@ export default {
    orderManager: "Order Management",
    userSuites: "User Suites",
    netTest: "Network Test",
+
+    enterpriseSetting: "Enterprise Settings",
+    projectManager: "Project Management",
+    projectUserManager: "Project User Management",
  },
  certificateRepo: {
    title: "Certificate Repository",
@@ -861,4 +865,8 @@ export default {
    select: "Select",
    placeholder: "select please",
  },
+  adminMode: {
+    enterpriseMode: "Enterprise Mode",
+    saasMode: "SaaS Mode",
+  },
 };
@@ -120,7 +120,7 @@ export default {
  },
  customPipeline: "自定义流水线",
  createCertdPipeline: "创建证书流水线",
-  commercialCertHosting: "商用证书托管",
+  commercialCertHosting: "已有证书托管",
  tooltip: {
    manualUploadOwnCert: "手动上传自有证书，执行自动部署",
    noAutoApplyCommercialCert: "并不能自动申请商业证书",
@@ -214,6 +214,9 @@ export default {
    orderManager: "订单管理",
    userSuites: "用户套餐",
    netTest: "网络测试",
+    enterpriseSetting: "企业管理设置",
+    projectManager: "项目管理",
+    projectUserManager: "项目用户管理",
  },
  certificateRepo: {
    title: "证书仓库",
@@ -876,4 +879,11 @@ export default {
    select: "选择",
    placeholder: "请选择",
  },
+  adminMode: {
+    enterpriseMode: "企业模式",
+    saasMode: "SaaS模式",
+  },
+  ent: {
+    projectName: "项目名称",
+  },
 };
@@ -187,7 +187,59 @@ export const sysResources = [
          keepAlive: true,
        },
      },
-
+      {
+        title: "certd.sysResources.enterpriseManager",
+        name: "EnterpriseManager",
+        path: "/sys/enterprise",
+        redirect: "/sys/enterprise/project",
+        meta: {
+          icon: "ion:cart-outline",
+          permission: "sys:settings:edit",
+          show: () => {
+            const settingStore = useSettingStore();
+            return settingStore.isEnterprise;
+          },
+          keepAlive: true,
+        },
+        children: [
+          {
+            title: "certd.sysResources.projectManager",
+            name: "ProjectManager",
+            path: "/sys/enterprise/project",
+            component: "/sys/enterprise/project/index.vue",
+            meta: {
+              show: true,
+              icon: "ion:cart",
+              permission: "sys:settings:edit",
+              keepAlive: true,
+            },
+          },
+          {
+            title: "certd.sysResources.projectMemberManager",
+            name: "ProjectMemberManager",
+            path: "/sys/enterprise/project/member",
+            component: "/sys/enterprise/project/member/index.vue",
+            meta: {
+              isMenu: false,
+              show: true,
+              icon: "ion:cart",
+              permission: "sys:settings:edit",
+            },
+          },
+          {
+            title: "certd.sysResources.enterpriseSetting",
+            name: "EnterpriseSetting",
+            path: "/sys/enterprise/setting",
+            redirect: "/sys/settings?tab=enterprise",
+            meta: {
+              isMenu: true,
+              show: true,
+              icon: "ion:cart",
+              permission: "sys:settings:edit",
+            },
+          },
+        ],
+      },
      {
        title: "certd.sysResources.suiteManager",
        name: "SuiteManager",
@@ -27,6 +27,7 @@ export type PlusInfo = {
  expireTime?: number;
  isPlus: boolean;
  isComm?: boolean;
+  message?: string;
 };
 export type SysPublicSetting = {
  registerEnabled?: boolean;
@@ -85,6 +86,9 @@ export type SysPublicSetting = {
  >;
  // 系统通知
  notice?: string;
+
+  // 管理员模式
+  adminMode?: "enterprise" | "saas";
 };
 export type SuiteSetting = {
  enabled?: boolean;
@@ -107,6 +111,8 @@ export type SysPrivateSetting = {
 };
 export type SysInstallInfo = {
  siteId: string;
+  bindUrl?: string;
+  bindUrl2?: string;
 };
 export type MenuItem = {
  id: string;
@@ -1,5 +1,5 @@
 import { defineStore } from "pinia";
-import { Modal, notification } from "ant-design-vue";
+import { notification } from "ant-design-vue";
 import * as basicApi from "./api.basic";
 import { AppInfo, HeaderMenus, PlusInfo, SiteEnv, SiteInfo, SuiteSetting, SysInstallInfo, SysPublicSetting } from "./api.basic";
 import { useUserStore } from "../user";
@@ -20,6 +20,7 @@ export interface SettingState {
    installTime?: number;
    bindUserId?: number;
    bindUrl?: string;
+    bindUrl2?: string;
    accountServerBaseUrl?: string;
    appKey?: string;
  };
@@ -140,6 +141,9 @@ export const useSettingStore = defineStore({
    isComm(): boolean {
      return this.plusInfo?.isComm && (this.plusInfo?.expireTime === -1 || this.plusInfo?.expireTime > new Date().getTime());
    },
+    isEnterprise(): boolean {
+      return this.isPlus && this.sysPublic.adminMode === "enterprise";
+    },
    isAgent(): boolean {
      return this.siteEnv?.agent?.enabled === true;
    },
@@ -153,9 +157,11 @@ export const useSettingStore = defineStore({
      if (this.plusInfo?.expireTime === -1) {
        return "永久";
      }
+      //@ts-ignore
      return dayjs(this.plusInfo?.expireTime).format("YYYY-MM-DD");
    },
    isForever() {
+      //@ts-ignore
      return this.isPlus && this.plusInfo?.expireTime === -1;
    },
    vipLabel(): string {
@@ -251,9 +257,17 @@ export const useSettingStore = defineStore({
      url = url.split("#")[0];
      return url;
    },
-    async doBindUrl() {
-      const url = this.getBaseUrl();
-      await basicApi.bindUrl({ url });
+    async doBindUrl(key: string = "url") {
+      const url = this.installInfo.bindUrl;
+      const url2 = this.installInfo.bindUrl2;
+
+      const thisUrl = this.getBaseUrl();
+      const form = {
+        url,
+        url2,
+        [key]: thisUrl,
+      };
+      await basicApi.bindUrl(form);
      await this.loadSysSettings();
    },
    async checkUrlBound() {
@@ -262,24 +276,64 @@ export const useSettingStore = defineStore({
      if (!userStore.isAdmin) {
        return;
      }
-
+      const event: any = { ModalRef: null };
+      mitter.emit("getModal", event);
+      const Modal = event.ModalRef;
+      let modalRef: any = null;
      const bindUrl = this.installInfo.bindUrl;
+      const bindUrl2 = this.installInfo.bindUrl2;
+
+      const doBindRequest = async (key: string) => {
+        await this.doBindUrl(key);
+        if (modalRef) {
+          modalRef.destroy();
+        }
+      };

      if (!bindUrl) {
        //绑定url
-        await this.doBindUrl();
+        await this.doBindUrl("url");
      } else {
        //检查当前url 是否与绑定的url一致
        const url = window.location.href;
-        if (!url.startsWith(bindUrl)) {
-          Modal.confirm({
-            title: "URL地址有变化",
-            content: "以后都用这个新地址访问本系统吗？",
-            onOk: async () => {
-              await this.doBindUrl();
+        if (!url.startsWith(bindUrl) && !url.startsWith(bindUrl2)) {
+          modalRef = Modal.warning({
+            title: "URL地址未绑定，是否绑定此地址？",
+            width: 500,
+            keyboard: false,
+            content: () => {
+              return (
+                <div class="p-4">
+                  <div class="flex items-center justify-between">
+                    <span>
+                      绑定地址1：
+                      <a-tag color="green">{bindUrl || "未占用"}</a-tag>
+                    </span>
+                    <a-button type="primary" onClick={() => doBindRequest("url")}>
+                      绑定到地址1
+                    </a-button>
+                  </div>
+                  <div class="flex items-center justify-between mt-3">
+                    <span>
+                      绑定地址2：
+                      <a-tag color="green">{bindUrl2 || "未占用"}</a-tag>
+                    </span>
+                    <a-button type="primary" onClick={() => doBindRequest("url2")}>
+                      绑定到地址2
+                    </a-button>
+                  </div>
+                </div>
+              );
            },
-            okText: "是的，继续",
-            cancelText: "不是，回到原来的地址",
+            onOk: async () => {
+              // await this.doBindUrl();
+              window.location.href = bindUrl;
+            },
+            okButtonProps: {
+              danger: true,
+            },
+            okText: "不，回到原来的地址",
+            cancelText: "不，回到原来的地址",
            onCancel: () => {
              window.location.href = bindUrl;
            },
@@ -320,10 +320,25 @@ h6 {
  font-size: 16px !important;
 }

+.fs-18 {
+  font-size: 18px !important;
+}
+
+.fs-20 {
+  font-size: 20px !important;
+}
+.fs-24 {
+  font-size: 24px !important;
+}
+.fs-26 {
+  font-size: 26px !important;
+}
 .fs-28 {
  font-size: 28px !important;
 }
-
+.fs-32 {
+  font-size: 32px !important;
+}
 .w-50\% {
  width: 50%;
 }
@@ -461,4 +476,10 @@ h6 {
  .fs-icon{
    margin-right: 5px;
  }
+}
+
+
+.hidden-important {
+  display: none !important;
+  visibility: hidden !important;
 }
@@ -8,7 +8,7 @@
        <a-descriptions-item :label="t('authentication.username')">{{ userInfo.username }}</a-descriptions-item>
        <a-descriptions-item :label="t('authentication.nickName')">{{ userInfo.nickName }}</a-descriptions-item>
        <a-descriptions-item :label="t('authentication.avatar')">
-          <a-avatar v-if="userInfo.avatar" size="large" :src="'api/basic/file/download?&key=' + userInfo.avatar" style="background-color: #eee"> </a-avatar>
+          <a-avatar v-if="userInfo.avatar" size="large" :src="userAvatar" style="background-color: #eee"> </a-avatar>
          <a-avatar v-else size="large" style="background-color: #00b4f5">
            {{ userInfo.username }}
          </a-avatar>
@@ -108,6 +108,17 @@ async function bind(type: string) {
  window.location.href = loginUrl;
 }

+const userAvatar = computed(() => {
+  if (isEmpty(userInfo.value.avatar)) {
+    return "";
+  }
+  if (userInfo.value.avatar.startsWith("http")) {
+    return userInfo.value.avatar;
+  }
+
+  return "api/basic/file/download?&key=" + userInfo.value.avatar;
+});
+
 onMounted(async () => {
  await getUserInfo();
  await loadOauthBounds();
@@ -76,7 +76,7 @@
        <a-button type="primary" size="large" html-type="submit" class="submit-button"> 找回密码</a-button>

        <div class="mt-2 flex-between">
-          <a v-comm="false" href="https://certd.docmirror.cn/guide/use/forgotpasswd/" target="_blank"> 管理员无绑定通信方式或MFA丢失找回 </a>
+          <a v-comm="false" href="https://certd.docmirror.cn/guide/use/forgotpasswd/" target="_blank"> 管理员忘记密码 </a>

          <router-link :to="{ name: 'login' }"> 返回登录 </router-link>
        </div>
@@ -59,6 +59,9 @@
              <router-link v-if="!!settingStore.sysPublic.selfServicePasswordRetrievalEnabled && !queryBindCode" :to="{ name: 'forgotPassword' }">
                {{ t("authentication.forgotPassword") }}
              </router-link>
+              <a v-else v-comm="false" href="https://certd.docmirror.cn/guide/use/forgotpasswd/" target="_blank">
+                {{ t("authentication.forgotPassword") }}
+              </a>
            </div>

            <router-link v-if="hasRegisterTypeEnabled() && !queryBindCode" class="register" :to="{ name: 'register' }">
@@ -0,0 +1,75 @@
+import { request } from "/src/api/service";
+
+const apiPrefix = "/sys/project/provider";
+
+export async function GetList(query: any) {
+  return await request({
+    url: apiPrefix + "/page",
+    method: "post",
+    data: query,
+  });
+}
+
+export async function AddObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/add",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function UpdateObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/update",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function DelObj(id: any) {
+  return await request({
+    url: apiPrefix + "/delete",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetObj(id: any) {
+  return await request({
+    url: apiPrefix + "/info",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetDetail(id: any) {
+  return await request({
+    url: apiPrefix + "/detail",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function DeleteBatch(ids: any[]) {
+  return await request({
+    url: apiPrefix + "/deleteByIds",
+    method: "post",
+    data: { ids },
+  });
+}
+
+export async function SetDefault(id: any) {
+  return await request({
+    url: apiPrefix + "/setDefault",
+    method: "post",
+    data: { id },
+  });
+}
+
+export async function SetDisabled(id: any, disabled: boolean) {
+  return await request({
+    url: apiPrefix + "/setDisabled",
+    method: "post",
+    data: { id, disabled },
+  });
+}
@@ -0,0 +1,254 @@
+import * as api from "./api";
+import { useI18n } from "/src/locales";
+import { computed, Ref, ref } from "vue";
+import { useRouter } from "vue-router";
+import { AddReq, compute, CreateCrudOptionsProps, CreateCrudOptionsRet, DelReq, dict, EditReq, UserPageQuery, UserPageRes, utils } from "@fast-crud/fast-crud";
+import { useUserStore } from "/@/store/user";
+import { useSettingStore } from "/@/store/settings";
+import { Modal } from "ant-design-vue";
+
+export default function ({ crudExpose, context }: CreateCrudOptionsProps): CreateCrudOptionsRet {
+  const router = useRouter();
+  const { t } = useI18n();
+  const pageRequest = async (query: UserPageQuery): Promise<UserPageRes> => {
+    return await api.GetList(query);
+  };
+  const editRequest = async ({ form, row }: EditReq) => {
+    form.id = row.id;
+    const res = await api.UpdateObj(form);
+    return res;
+  };
+  const delRequest = async ({ row }: DelReq) => {
+    return await api.DelObj(row.id);
+  };
+
+  const addRequest = async ({ form }: AddReq) => {
+    const res = await api.AddObj(form);
+    return res;
+  };
+
+  const userStore = useUserStore();
+  const settingStore = useSettingStore();
+  const selectedRowKeys: Ref<any[]> = ref([]);
+  context.selectedRowKeys = selectedRowKeys;
+
+  return {
+    crudOptions: {
+      settings: {
+        plugins: {
+          //这里使用行选择插件，生成行选择crudOptions配置，最终会与crudOptions合并
+          rowSelection: {
+            enabled: true,
+            order: -2,
+            before: true,
+            // handle: (pluginProps,useCrudProps)=>CrudOptions,
+            props: {
+              multiple: true,
+              crossPage: true,
+              selectedRowKeys,
+            },
+          },
+        },
+      },
+      request: {
+        pageRequest,
+        addRequest,
+        editRequest,
+        delRequest,
+      },
+      rowHandle: {
+        minWidth: 200,
+        fixed: "right",
+      },
+      columns: {
+        id: {
+          title: "ID",
+          key: "id",
+          type: "number",
+          column: {
+            width: 100,
+          },
+          form: {
+            show: false,
+          },
+        },
+        domain: {
+          title: t("certd.cnameDomain"),
+          type: "text",
+          editForm: {
+            component: {
+              disabled: true,
+            },
+          },
+          search: {
+            show: true,
+          },
+          form: {
+            component: {
+              placeholder: t("certd.cnameDomainPlaceholder"),
+            },
+            helper: t("certd.cnameDomainHelper"),
+            rules: [
+              { required: true, message: t("certd.requiredField") },
+              { pattern: /^[^*]+$/, message: t("certd.cnameDomainPattern") },
+            ],
+          },
+          column: {
+            width: 200,
+          },
+        },
+        dnsProviderType: {
+          title: t("certd.dnsProvider"),
+          type: "dict-select",
+          search: {
+            show: true,
+          },
+          dict: dict({
+            url: "pi/dnsProvider/list",
+            value: "key",
+            label: "title",
+          }),
+          form: {
+            rules: [{ required: true, message: t("certd.requiredField") }],
+          },
+          column: {
+            width: 150,
+            component: {
+              color: "auto",
+            },
+          },
+        },
+        accessId: {
+          title: t("certd.dnsProviderAuthorization"),
+          type: "dict-select",
+          dict: dict({
+            url: "/pi/access/list",
+            value: "id",
+            label: "name",
+          }),
+          form: {
+            component: {
+              name: "access-selector",
+              vModel: "modelValue",
+              type: compute(({ form }) => {
+                return form.dnsProviderType;
+              }),
+            },
+            rules: [{ required: true, message: t("certd.requiredField") }],
+          },
+          column: {
+            width: 150,
+            component: {
+              color: "auto",
+            },
+          },
+        },
+        isDefault: {
+          title: t("certd.isDefault"),
+          type: "dict-switch",
+          dict: dict({
+            data: [
+              { label: t("certd.yes"), value: true, color: "success" },
+              { label: t("certd.no"), value: false, color: "default" },
+            ],
+          }),
+          form: {
+            value: false,
+            rules: [{ required: true, message: t("certd.selectIsDefault") }],
+          },
+          column: {
+            align: "center",
+            width: 100,
+          },
+        },
+        setDefault: {
+          title: t("certd.setDefault"),
+          type: "text",
+          form: {
+            show: false,
+          },
+          column: {
+            width: 100,
+            align: "center",
+            conditionalRenderDisabled: true,
+            cellRender: ({ row }) => {
+              if (row.isDefault) {
+                return;
+              }
+              const onClick = async () => {
+                Modal.confirm({
+                  title: t("certd.prompt"),
+                  content: t("certd.confirmSetDefault"),
+                  onOk: async () => {
+                    await api.SetDefault(row.id);
+                    await crudExpose.doRefresh();
+                  },
+                });
+              };
+
+              return (
+                <a-button type={"link"} size={"small"} onClick={onClick}>
+                  {t("certd.setAsDefault")}
+                </a-button>
+              );
+            },
+          },
+        },
+        disabled: {
+          title: t("certd.disabled"),
+          type: "dict-switch",
+          dict: dict({
+            data: [
+              { label: t("certd.enabled"), value: false, color: "success" },
+              { label: t("certd.disabledLabel"), value: true, color: "error" },
+            ],
+          }),
+          form: {
+            value: false,
+          },
+          column: {
+            width: 100,
+            component: {
+              title: t("certd.clickToToggle"),
+              on: {
+                async click({ value, row }) {
+                  Modal.confirm({
+                    title: t("certd.prompt"),
+                    content: t("certd.confirmToggleStatus", { action: !value ? t("certd.disable") : t("certd.enable") }),
+                    onOk: async () => {
+                      await api.SetDisabled(row.id, !value);
+                      await crudExpose.doRefresh();
+                    },
+                  });
+                },
+              },
+            },
+          },
+        },
+        createTime: {
+          title: t("certd.createTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            sorter: true,
+            width: 160,
+            align: "center",
+          },
+        },
+        updateTime: {
+          title: t("certd.updateTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            show: true,
+            width: 160,
+          },
+        },
+      },
+    },
+  };
+}
@@ -0,0 +1,65 @@
+<template>
+  <fs-page class="page-cert">
+    <template #header>
+      <div class="title">
+        {{ t("certd.cnameTitle") }}
+        <span class="sub">
+          {{ t("certd.cnameDescription") }}
+          <a href="https://certd.docmirror.cn/guide/feature/cname/" target="_blank">
+            {{ t("certd.cnameLinkText") }}
+          </a>
+        </span>
+      </div>
+    </template>
+    <fs-crud ref="crudRef" v-bind="crudBinding">
+      <template #pagination-left>
+        <a-tooltip :title="t('certd.batchDelete')">
+          <fs-button icon="DeleteOutlined" @click="handleBatchDelete"></fs-button>
+        </a-tooltip>
+      </template>
+    </fs-crud>
+  </fs-page>
+</template>
+
+<script lang="ts" setup>
+import { onActivated, onMounted } from "vue";
+import { useFs } from "@fast-crud/fast-crud";
+import createCrudOptions from "./crud";
+import { message, Modal } from "ant-design-vue";
+import { DeleteBatch } from "./api";
+import { useI18n } from "/src/locales";
+
+const { t } = useI18n();
+
+defineOptions({
+  name: "CnameProvider",
+});
+const { crudBinding, crudRef, crudExpose, context } = useFs({ createCrudOptions });
+
+const selectedRowKeys = context.selectedRowKeys;
+const handleBatchDelete = () => {
+  if (selectedRowKeys.value?.length > 0) {
+    Modal.confirm({
+      title: t("certd.confirmTitle"),
+      content: t("certd.confirmDeleteBatch", { count: selectedRowKeys.value.length }),
+      async onOk() {
+        await DeleteBatch(selectedRowKeys.value);
+        message.info(t("certd.deleteSuccess"));
+        crudExpose.doRefresh();
+        selectedRowKeys.value = [];
+      },
+    });
+  } else {
+    message.error(t("certd.selectRecordsFirst"));
+  }
+};
+
+// 页面打开后获取列表数据
+onMounted(() => {
+  crudExpose.doRefresh();
+});
+onActivated(async () => {
+  await crudExpose.doRefresh();
+});
+</script>
+<style lang="less"></style>
@@ -0,0 +1,68 @@
+import { request } from "/src/api/service";
+
+const apiPrefix = "/sys/enterprise/project";
+const userApiPrefix = "/sys/authority/user";
+
+export async function GetList(query: any) {
+  return await request({
+    url: apiPrefix + "/page",
+    method: "post",
+    data: query,
+  });
+}
+
+export async function AddObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/add",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function UpdateObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/update",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function DelObj(id: any) {
+  return await request({
+    url: apiPrefix + "/delete",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetObj(id: any) {
+  return await request({
+    url: apiPrefix + "/info",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetDetail(id: any) {
+  return await request({
+    url: apiPrefix + "/detail",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function DeleteBatch(ids: any[]) {
+  return await request({
+    url: apiPrefix + "/deleteByIds",
+    method: "post",
+    data: { ids },
+  });
+}
+
+export async function SetDisabled(id: any, disabled: boolean) {
+  return await request({
+    url: apiPrefix + "/setDisabled",
+    method: "post",
+    data: { id, disabled },
+  });
+}
@@ -0,0 +1,147 @@
+import * as api from "./api";
+import { useI18n } from "/src/locales";
+import { computed, Ref, ref } from "vue";
+import { useRouter } from "vue-router";
+import { AddReq, compute, CreateCrudOptionsProps, CreateCrudOptionsRet, DelReq, dict, EditReq, UserPageQuery, UserPageRes, utils } from "@fast-crud/fast-crud";
+import { useUserStore } from "/@/store/user";
+import { useSettingStore } from "/@/store/settings";
+import { Modal } from "ant-design-vue";
+
+export default function ({ crudExpose, context }: CreateCrudOptionsProps): CreateCrudOptionsRet {
+  const router = useRouter();
+  const { t } = useI18n();
+  const pageRequest = async (query: UserPageQuery): Promise<UserPageRes> => {
+    return await api.GetList(query);
+  };
+  const editRequest = async ({ form, row }: EditReq) => {
+    form.id = row.id;
+    const res = await api.UpdateObj(form);
+    return res;
+  };
+  const delRequest = async ({ row }: DelReq) => {
+    return await api.DelObj(row.id);
+  };
+
+  const addRequest = async ({ form }: AddReq) => {
+    const res = await api.AddObj(form);
+    return res;
+  };
+
+  const userStore = useUserStore();
+  const settingStore = useSettingStore();
+  const selectedRowKeys: Ref<any[]> = ref([]);
+  context.selectedRowKeys = selectedRowKeys;
+
+  return {
+    crudOptions: {
+      settings: {
+        plugins: {
+          //这里使用行选择插件，生成行选择crudOptions配置，最终会与crudOptions合并
+          rowSelection: {
+            enabled: true,
+            order: -2,
+            before: true,
+            // handle: (pluginProps,useCrudProps)=>CrudOptions,
+            props: {
+              multiple: true,
+              crossPage: true,
+              selectedRowKeys,
+            },
+          },
+        },
+      },
+      request: {
+        pageRequest,
+        addRequest,
+        editRequest,
+        delRequest,
+      },
+      rowHandle: {
+        minWidth: 200,
+        fixed: "right",
+      },
+      columns: {
+        id: {
+          title: "ID",
+          key: "id",
+          type: "number",
+          column: {
+            width: 100,
+          },
+          form: {
+            show: false,
+          },
+        },
+        name: {
+          title: t("certd.ent.projectName"),
+          type: "text",
+          search: {
+            show: true,
+          },
+          form: {
+            component: {},
+            helper: t("certd.ent.projectNameHelper"),
+            rules: [{ required: true, message: t("certd.requiredField") }],
+          },
+          column: {
+            width: 200,
+          },
+        },
+        disabled: {
+          title: t("certd.disabled"),
+          type: "dict-switch",
+          dict: dict({
+            data: [
+              { label: t("certd.enabled"), value: false, color: "success" },
+              { label: t("certd.disabledLabel"), value: true, color: "error" },
+            ],
+          }),
+          form: {
+            value: false,
+          },
+          column: {
+            width: 100,
+            component: {
+              title: t("certd.clickToToggle"),
+              on: {
+                async click({ value, row }) {
+                  Modal.confirm({
+                    title: t("certd.prompt"),
+                    content: t("certd.confirmToggleStatus", { action: !value ? t("certd.disable") : t("certd.enable") }),
+                    onOk: async () => {
+                      await api.SetDisabled(row.id, !value);
+                      await crudExpose.doRefresh();
+                    },
+                  });
+                },
+              },
+            },
+          },
+        },
+        createTime: {
+          title: t("certd.createTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            sorter: true,
+            width: 160,
+            align: "center",
+          },
+        },
+        updateTime: {
+          title: t("certd.updateTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            show: true,
+            width: 160,
+          },
+        },
+      },
+    },
+  };
+}
@@ -0,0 +1,59 @@
+<template>
+  <fs-page class="page-cert">
+    <template #header>
+      <div class="title">
+        {{ t("certd.sysResources.projectManager") }}
+      </div>
+    </template>
+    <fs-crud ref="crudRef" v-bind="crudBinding">
+      <template #pagination-left>
+        <a-tooltip :title="t('certd.batchDelete')">
+          <fs-button icon="DeleteOutlined" @click="handleBatchDelete"></fs-button>
+        </a-tooltip>
+      </template>
+    </fs-crud>
+  </fs-page>
+</template>
+
+<script lang="ts" setup>
+import { onActivated, onMounted } from "vue";
+import { useFs } from "@fast-crud/fast-crud";
+import createCrudOptions from "./crud";
+import { message, Modal } from "ant-design-vue";
+import { DeleteBatch } from "./api";
+import { useI18n } from "/src/locales";
+
+const { t } = useI18n();
+
+defineOptions({
+  name: "ProjectManager",
+});
+const { crudBinding, crudRef, crudExpose, context } = useFs({ createCrudOptions });
+
+const selectedRowKeys = context.selectedRowKeys;
+const handleBatchDelete = () => {
+  if (selectedRowKeys.value?.length > 0) {
+    Modal.confirm({
+      title: t("certd.confirmTitle"),
+      content: t("certd.confirmDeleteBatch", { count: selectedRowKeys.value.length }),
+      async onOk() {
+        await DeleteBatch(selectedRowKeys.value);
+        message.info(t("certd.deleteSuccess"));
+        crudExpose.doRefresh();
+        selectedRowKeys.value = [];
+      },
+    });
+  } else {
+    message.error(t("certd.selectRecordsFirst"));
+  }
+};
+
+// 页面打开后获取列表数据
+onMounted(() => {
+  crudExpose.doRefresh();
+});
+onActivated(async () => {
+  await crudExpose.doRefresh();
+});
+</script>
+<style lang="less"></style>
@@ -0,0 +1,67 @@
+import { request } from "/src/api/service";
+
+const apiPrefix = "/sys/enterprise/projectMember";
+const userApiPrefix = "/sys/authority/user";
+export async function GetList(query: any) {
+  return await request({
+    url: apiPrefix + "/page",
+    method: "post",
+    data: query,
+  });
+}
+
+export async function AddObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/add",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function UpdateObj(obj: any) {
+  return await request({
+    url: apiPrefix + "/update",
+    method: "post",
+    data: obj,
+  });
+}
+
+export async function DelObj(id: any) {
+  return await request({
+    url: apiPrefix + "/delete",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetObj(id: any) {
+  return await request({
+    url: apiPrefix + "/info",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function GetDetail(id: any) {
+  return await request({
+    url: apiPrefix + "/detail",
+    method: "post",
+    params: { id },
+  });
+}
+
+export async function DeleteBatch(ids: any[]) {
+  return await request({
+    url: apiPrefix + "/deleteByIds",
+    method: "post",
+    data: { ids },
+  });
+}
+
+export async function GetUserSimpleByIds(query: any) {
+  return await request({
+    url: userApiPrefix + "/getSimpleByIds",
+    method: "post",
+    data: query,
+  });
+}
@@ -0,0 +1,155 @@
+import { AddReq, CreateCrudOptionsProps, CreateCrudOptionsRet, DelReq, dict, EditReq, UserPageQuery, UserPageRes } from "@fast-crud/fast-crud";
+import { Modal } from "ant-design-vue";
+import { Ref, ref } from "vue";
+import { useRouter } from "vue-router";
+import * as api from "./api";
+import { useSettingStore } from "/@/store/settings";
+import { useUserStore } from "/@/store/user";
+import { useI18n } from "/src/locales";
+
+export default function ({ crudExpose, context }: CreateCrudOptionsProps): CreateCrudOptionsRet {
+  const router = useRouter();
+  const { t } = useI18n();
+  const pageRequest = async (query: UserPageQuery): Promise<UserPageRes> => {
+    return await api.GetList(query);
+  };
+  const editRequest = async ({ form, row }: EditReq) => {
+    form.id = row.id;
+    const res = await api.UpdateObj(form);
+    return res;
+  };
+  const delRequest = async ({ row }: DelReq) => {
+    return await api.DelObj(row.id);
+  };
+
+  const addRequest = async ({ form }: AddReq) => {
+    const res = await api.AddObj(form);
+    return res;
+  };
+
+  const userStore = useUserStore();
+  const settingStore = useSettingStore();
+  const selectedRowKeys: Ref<any[]> = ref([]);
+  context.selectedRowKeys = selectedRowKeys;
+
+  return {
+    crudOptions: {
+      settings: {
+        plugins: {
+          //这里使用行选择插件，生成行选择crudOptions配置，最终会与crudOptions合并
+          rowSelection: {
+            enabled: true,
+            order: -2,
+            before: true,
+            // handle: (pluginProps,useCrudProps)=>CrudOptions,
+            props: {
+              multiple: true,
+              crossPage: true,
+              selectedRowKeys,
+            },
+          },
+        },
+      },
+      request: {
+        pageRequest,
+        addRequest,
+        editRequest,
+        delRequest,
+      },
+      rowHandle: {
+        minWidth: 200,
+        fixed: "right",
+      },
+      columns: {
+        id: {
+          title: "ID",
+          key: "id",
+          type: "number",
+          column: {
+            width: 100,
+          },
+          form: {
+            show: false,
+          },
+        },
+        projectId: {
+          title: "项目ID",
+          type: "text",
+          search: {
+            show: false,
+          },
+          form: {
+            show: false,
+          },
+          column: {
+            width: 200,
+            show: false,
+          },
+        },
+        userId: {
+          title: "用户ID",
+          type: "dict-select",
+          dict: dict({
+            url: "/sys/authority/user/getSimpleUsers",
+            value: "id",
+            label: "nickName",
+            labelBuilder: (item: any) => item.nickName || item.username || item.phoneCode + item.mobile,
+          }),
+          search: {
+            show: false,
+          },
+          form: {
+            show: false,
+          },
+          column: {
+            width: 200,
+            show: false,
+          },
+        },
+        permission: {
+          title: t("certd.ent.projectPermission"),
+          type: "dict-select",
+          dict: dict({
+            data: [
+              { label: t("certd.read"), value: "read", color: "cyan" },
+              { label: t("certd.write"), value: "write", color: "blue" },
+              { label: t("certd.admin"), value: "admin", color: "green" },
+            ],
+          }),
+          search: {
+            show: true,
+          },
+          form: {
+            show: true,
+          },
+          column: {
+            width: 200,
+          },
+        },
+        createTime: {
+          title: t("certd.createTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            sorter: true,
+            width: 160,
+            align: "center",
+          },
+        },
+        updateTime: {
+          title: t("certd.updateTime"),
+          type: "datetime",
+          form: {
+            show: false,
+          },
+          column: {
+            show: true,
+            width: 160,
+          },
+        },
+      },
+    },
+  };
+}
@@ -0,0 +1,71 @@
+<template>
+  <fs-page class="page-project-member">
+    <template #header>
+      <div class="title">
+        {{ t("certd.projectMemberManager") }}
+        <span class="sub">
+          {{ t("certd.projectMemberDescription") }}
+        </span>
+      </div>
+    </template>
+    <fs-crud ref="crudRef" v-bind="crudBinding">
+      <template #pagination-left>
+        <a-tooltip :title="t('certd.batchDelete')">
+          <fs-button icon="DeleteOutlined" @click="handleBatchDelete"></fs-button>
+        </a-tooltip>
+      </template>
+    </fs-crud>
+  </fs-page>
+</template>
+
+<script lang="ts" setup>
+import { onActivated, onMounted } from "vue";
+import { useFs } from "@fast-crud/fast-crud";
+import createCrudOptions from "./crud";
+import { message, Modal } from "ant-design-vue";
+import { DeleteBatch } from "./api";
+import { useI18n } from "/src/locales";
+import { useRoute } from "vue-router";
+
+const { t } = useI18n();
+
+defineOptions({
+  name: "ProjectMemberManager",
+});
+
+const route = useRoute();
+const projectIdStr = route.query.projectId as string;
+const projectId = Number(projectIdStr);
+
+const context: any = {
+  projectId,
+};
+const { crudBinding, crudRef, crudExpose } = useFs({ createCrudOptions, context });
+
+const selectedRowKeys = context.selectedRowKeys;
+const handleBatchDelete = () => {
+  if (selectedRowKeys.value?.length > 0) {
+    Modal.confirm({
+      title: t("certd.confirmTitle"),
+      content: t("certd.confirmDeleteBatch", { count: selectedRowKeys.value.length }),
+      async onOk() {
+        await DeleteBatch(selectedRowKeys.value);
+        message.info(t("certd.deleteSuccess"));
+        crudExpose.doRefresh();
+        selectedRowKeys.value = [];
+      },
+    });
+  } else {
+    message.error(t("certd.selectRecordsFirst"));
+  }
+};
+
+// 页面打开后获取列表数据
+onMounted(() => {
+  crudExpose.doRefresh();
+});
+onActivated(async () => {
+  await crudExpose.doRefresh();
+});
+</script>
+<style lang="less"></style>
@@ -26,6 +26,9 @@
        <a-tab-pane key="pipeline" :tab="t('certd.sys.setting.pipelineSetting')">
          <SettingPipeline v-if="activeKey === 'pipeline'" />
        </a-tab-pane>
+        <a-tab-pane key="mode" :tab="t('certd.adminMode')">
+          <SettingMode v-if="activeKey === 'mode'" />
+        </a-tab-pane>
      </a-tabs>
    </div>
  </fs-page>
@@ -39,6 +42,8 @@ import SettingSafe from "/@/views/sys/settings/tabs/safe.vue";
 import SettingCaptcha from "/@/views/sys/settings/tabs/captcha.vue";
 import SettingPipeline from "/@/views/sys/settings/tabs/pipeline.vue";
 import SettingOauth from "/@/views/sys/settings/tabs/oauth.vue";
+import SettingMode from "/@/views/sys/settings/tabs/mode.vue";
+
 import { useRoute, useRouter } from "vue-router";
 import { ref } from "vue";
 import { useSettingStore } from "/@/store/settings";
@@ -34,7 +34,9 @@
          <a-select-option value="ipv4first">{{ t("certd.ipv4Priority") }}</a-select-option>
          <a-select-option value="ipv6first">{{ t("certd.ipv6Priority") }}</a-select-option>
        </a-select>
-        <div class="helper">{{ t("certd.dualStackNetworkHelper") }}, <a href="https://certd.docmirror.cn/guide/use/setting/ipv6.html" target="_blank">{{ t("certd.helpDocLink") }}</a></div>
+        <div class="helper">
+          {{ t("certd.dualStackNetworkHelper") }}, <a href="https://certd.docmirror.cn/guide/use/setting/ipv6.html" target="_blank">{{ t("certd.helpDocLink") }}</a>
+        </div>
      </a-form-item>

      <a-form-item :label="t('certd.sys.setting.showRunStrategy')" :name="['public', 'showRunStrategy']">
@@ -68,8 +70,6 @@ import { useSettingStore } from "/@/store/settings";
 import { notification } from "ant-design-vue";
 import { util } from "/@/utils";
 import { useI18n } from "/src/locales";
-import AddonSelector from "../../../certd/addon/addon-selector/index.vue";
-import CaptchaInput from "/@/components/captcha/captcha-input.vue";
 const { t } = useI18n();

 defineOptions({
@@ -0,0 +1,67 @@
+<template>
+  <div class="sys-settings-form sys-settings-mode">
+    <a-form :model="formState" name="basic" :label-col="{ span: 8 }" :wrapper-col="{ span: 16 }" autocomplete="off" @finish="onFinish">
+      <a-form-item :label="t('certd.adminMode')" :name="['public', 'adminMode']">
+        <fs-dict-radio v-model:checked="formState.public.adminMode" :dict="adminModeDict" />
+      </a-form-item>
+
+      <a-form-item label=" " :colon="false" :wrapper-col="{ span: 8 }">
+        <a-button :loading="saveLoading" type="primary" html-type="submit">{{ t("certd.saveButton") }}</a-button>
+      </a-form-item>
+    </a-form>
+  </div>
+</template>
+
+<script setup lang="tsx">
+import { reactive, ref } from "vue";
+import { SysSettings } from "/@/views/sys/settings/api";
+import * as api from "/@/views/sys/settings/api";
+import { merge } from "lodash-es";
+import { useSettingStore } from "/@/store/settings";
+import { notification } from "ant-design-vue";
+import { useI18n } from "/src/locales";
+const { t } = useI18n();
+
+defineOptions({
+  name: "SettingMode",
+});
+
+const adminModeDict = [
+  {
+    label: t("certd.adminMode.enterpriseMode"),
+    value: "enterprise",
+  },
+  {
+    label: t("certd.adminMode.saasMode"),
+    value: "saas",
+  },
+];
+
+const formState = reactive<Partial<SysSettings>>({
+  public: {},
+  private: {},
+});
+
+async function loadSysSettings() {
+  const data: any = await api.SysSettingsGet();
+  merge(formState, data);
+}
+
+const saveLoading = ref(false);
+loadSysSettings();
+const settingsStore = useSettingStore();
+const onFinish = async (form: any) => {
+  try {
+    saveLoading.value = true;
+
+    await api.SysSettingsSave(form);
+    await settingsStore.loadSysSettings();
+    notification.success({
+      message: t("certd.saveSuccess"),
+    });
+  } finally {
+    saveLoading.value = false;
+  }
+};
+</script>
+<style lang="less"></style>
@@ -3,6 +3,29 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.6](https://github.com/certd/certd/compare/v1.38.5...v1.38.6) (2026-02-04)
+
+### Bug Fixes
+
+* 修复新网找错域名的bug ([bd511f9](https://github.com/certd/certd/commit/bd511f97cb7fbdcaeff7ac899f0460a5c7b41826))
+
+### Performance Improvements
+
+* oauth支持github 和google， 修复头像显示问题 ([693a4a6](https://github.com/certd/certd/commit/693a4a663385ced3176286bf4b5f3566da83d90e))
+
+## [1.38.5](https://github.com/certd/certd/compare/v1.38.4...v1.38.5) (2026-02-02)
+
+### Bug Fixes
+
+* 阿里云esa查询证书限制接口无效，改成配置证书数量上限检查方式进行清理 ([2302567](https://github.com/certd/certd/commit/230256793f8ad87ef8a0738c37108bf7b5ab9853))
+* 修复部署到火山引擎vod，获取域名列表为空的bug ([0719f4c](https://github.com/certd/certd/commit/0719f4c99e9198544d03431107b53652e076e881))
+* 修复oidc配置取消后获取登出地址失败后无法列出oauth列表的bug ([eb5de15](https://github.com/certd/certd/commit/eb5de150332fd914c56b812c3ba2c2445f902bb7))
+
+### Performance Improvements
+
+* 将重置密码的日志挪到启动成功之后，方便查看 ([0fa9b34](https://github.com/certd/certd/commit/0fa9b344e08cf355aee7a7566f061cc5d95dc374))
+* 支持绑定两个url地址 ([a2e9a41](https://github.com/certd/certd/commit/a2e9a41a7e712395c0e3ee6fe55b370aa1fc1f12))
+
 ## [1.38.4](https://github.com/certd/certd/compare/v1.38.3...v1.38.4) (2026-01-31)

 ### Bug Fixes
@@ -0,0 +1,53 @@
+
+CREATE TABLE "cd_project"
+(
+  "id"          integer PRIMARY KEY AUTOINCREMENT NOT NULL,
+  "user_id"     integer      NOT NULL,
+  "name"        varchar(512) NOT NULL,
+  "disabled"    boolean      NOT NULL DEFAULT (false),
+  "create_time" datetime     NOT NULL DEFAULT (CURRENT_TIMESTAMP),
+  "update_time" datetime     NOT NULL DEFAULT (CURRENT_TIMESTAMP)
+);
+
+
+CREATE INDEX "index_project_user_id" ON "cd_project" ("user_id");
+INSERT INTO cd_project (id, user_id, "name", "disabled") VALUES (1, 0, 'default', false);
+
+
+ALTER TABLE cd_cert_info ADD COLUMN  project_id integer;
+CREATE INDEX "index_cert_project_id" ON "cd_cert_info" ("project_id");
+
+ALTER TABLE cd_site_info ADD COLUMN  project_id integer;
+CREATE INDEX "index_site_project_id" ON "cd_site_info" ("project_id");
+
+ALTER TABLE cd_site_ip ADD COLUMN  project_id integer;
+CREATE INDEX "index_site_ip_project_id" ON "cd_site_ip" ("project_id");
+
+ALTER TABLE cd_open_key ADD COLUMN  project_id integer;
+CREATE INDEX "index_open_key_project_id" ON "cd_open_key" ("project_id");
+
+ALTER TABLE cd_access ADD COLUMN  project_id integer;
+CREATE INDEX "index_access_project_id" ON "cd_access" ("project_id");
+
+ALTER TABLE cd_addon ADD COLUMN  project_id integer;
+CREATE INDEX "index_addon_project_id" ON "cd_addon" ("project_id");
+
+ALTER TABLE pi_pipeline ADD COLUMN  project_id integer;
+CREATE INDEX "index_pipeline_project_id" ON "cd_pipeline" ("project_id");
+
+ALTER TABLE pi_pipeline_group ADD COLUMN  project_id integer;
+CREATE INDEX "index_pipeline_group_project_id" ON "cd_pipeline_group" ("project_id");
+
+ALTER TABLE pi_storage ADD COLUMN  project_id integer;
+CREATE INDEX "index_storage_project_id" ON "cd_storage" ("project_id");
+
+ALTER TABLE pi_notification ADD COLUMN  project_id integer;
+CREATE INDEX "index_notification_project_id" ON "cd_notification" ("project_id");
+
+ALTER TABLE pi_history ADD COLUMN  project_id integer;
+CREATE INDEX "index_history_project_id" ON "cd_history" ("project_id");
+
+ALTER TABLE pi_history_log ADD COLUMN  project_id integer;
+CREATE INDEX "index_history_log_project_id" ON "cd_history_log" ("project_id");
+
+
@@ -22,7 +22,9 @@ input:
    component:
      name: api-test
      action: TestRequest
-    helper: 点击测试接口是否正常
+    helper: |-
+      测试前请务必先在新网后台关闭异地登录保护、关闭动态口令验证
+      如果提示需要短信验证码，请等几个小时后再试
 pluginType: access
 type: builtIn
 scriptFilePath: /plugins/plugin-xinnet/access.js
@@ -0,0 +1,19 @@
+addonType: oauth
+name: github
+title: GitHub认证
+desc: GitHub OAuth2登录
+icon: simple-icons:github
+showTest: false
+input:
+  clientId:
+    title: ClientId
+    helper: '[GitHub Developer Settings](https://github.com/settings/developers)创建应用后获取'
+    required: true
+  clientSecretKey:
+    title: ClientSecretKey
+    component:
+      placeholder: ClientSecretKey / appSecretKey
+    required: true
+pluginType: addon
+type: builtIn
+scriptFilePath: /plugins/plugin-oauth/oauth2/plugin-github.js
@@ -0,0 +1,21 @@
+addonType: oauth
+name: google
+title: Google认证
+desc: Google OAuth2登录
+icon: simple-icons:google
+showTest: false
+input:
+  clientId:
+    title: ClientId
+    helper: >-
+      [Google Cloud
+      Console](https://console.cloud.google.com/apis/credentials)创建应用后获取
+    required: true
+  clientSecretKey:
+    title: ClientSecretKey
+    component:
+      placeholder: ClientSecretKey / appSecretKey
+    required: true
+pluginType: addon
+type: builtIn
+scriptFilePath: /plugins/plugin-oauth/oauth2/plugin-google.js
@@ -98,13 +98,13 @@ input:
              
    helper: 请选择要部署证书的站点
    order: 0
-  isFree:
-    title: 是否免费版
-    value: true
+  certLimit:
+    title: 免费证书数量限制
+    value: 2
    component:
-      name: a-switch
+      name: a-input-number
      vModel: value
-    helper: 如果是免费站点，将检查证书数量限制，如果超限将删除最旧的那张证书
+    helper: 将检查证书数量限制，如果超限将删除最旧的那张证书
    required: true
    order: 0
 output: {}
@@ -4,7 +4,7 @@ default:
    runStrategy: 0
 name: CertApplyUpload
 icon: ph:certificate
-title: 商用证书托管
+title: 已有证书托管
 group: cert
 desc: 手动上传自定义证书后，自动部署（每次证书有更新，都需要手动上传一次）
 shortcut:
@@ -1,6 +1,6 @@
 {
  "name": "@certd/ui-server",
-  "version": "1.38.4",
+  "version": "1.38.6",
  "description": "fast-server base midway",
  "private": true,
  "type": "module",
@@ -48,20 +48,20 @@
    "@aws-sdk/client-iam": "^3.964.0",
    "@aws-sdk/client-route-53": "^3.964.0",
    "@aws-sdk/client-s3": "^3.964.0",
-    "@certd/acme-client": "^1.38.4",
-    "@certd/basic": "^1.38.4",
-    "@certd/commercial-core": "^1.38.4",
+    "@certd/acme-client": "^1.38.6",
+    "@certd/basic": "^1.38.6",
+    "@certd/commercial-core": "^1.38.6",
    "@certd/cv4pve-api-javascript": "^8.4.2",
-    "@certd/jdcloud": "^1.38.4",
-    "@certd/lib-huawei": "^1.38.4",
-    "@certd/lib-k8s": "^1.38.4",
-    "@certd/lib-server": "^1.38.4",
-    "@certd/midway-flyway-js": "^1.38.4",
-    "@certd/pipeline": "^1.38.4",
-    "@certd/plugin-cert": "^1.38.4",
-    "@certd/plugin-lib": "^1.38.4",
-    "@certd/plugin-plus": "^1.38.4",
-    "@certd/plus-core": "^1.38.4",
+    "@certd/jdcloud": "^1.38.6",
+    "@certd/lib-huawei": "^1.38.6",
+    "@certd/lib-k8s": "^1.38.6",
+    "@certd/lib-server": "^1.38.6",
+    "@certd/midway-flyway-js": "^1.38.6",
+    "@certd/pipeline": "^1.38.6",
+    "@certd/plugin-cert": "^1.38.6",
+    "@certd/plugin-lib": "^1.38.6",
+    "@certd/plugin-plus": "^1.38.6",
+    "@certd/plus-core": "^1.38.6",
    "@google-cloud/publicca": "^1.3.0",
    "@huaweicloud/huaweicloud-sdk-cdn": "^3.1.185",
    "@huaweicloud/huaweicloud-sdk-core": "^3.1.185",
@@ -28,7 +28,7 @@ export class UserController extends CrudController<UserService> {
    return this.service;
  }

-  @Post('/getSimpleUserByIds', {summary: 'sys:auth:user:add'})
+  @Post('/getSimpleUserByIds', {summary: 'sys:auth:user:view'})
  async getSimpleUserByIds(@Body('ids') ids: number[]) {
    const users = await this.service.find({
      select: {
@@ -46,6 +46,21 @@ export class UserController extends CrudController<UserService> {
    return this.ok(users);
  }

+
+  @Post('/getSimpleUsers', {summary: 'sys:auth:user:view'})
+  async getSimpleUsers() {
+    const users = await this.service.find({
+      select: {
+        id: true,
+        username: true,
+        nickName: true,
+        mobile: true,
+        phoneCode: true,
+      },
+    });
+    return this.ok(users);
+  }
+
  @Post('/page', {summary: 'sys:auth:user:view'})
  async page(
    @Body(ALL)
@@ -153,4 +168,6 @@ export class UserController extends CrudController<UserService> {
  }


+
+
 }
@@ -0,0 +1,70 @@
+import { CrudController, SysSettingsService } from "@certd/lib-server";
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from "@midwayjs/core";
+import { ProjectService } from "../../../modules/sys/enterprise/service/project-service.js";
+import { ProjectEntity } from "../../../modules/sys/enterprise/entity/project.js";
+import { merge } from "lodash-es";
+
+/**
+ */
+@Provide()
+@Controller("/api/sys/enterprise/project")
+export class SysProjectController extends CrudController<ProjectEntity> {
+  @Inject()
+  service: ProjectService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
+  getService<T>() {
+    return this.service;
+  }
+
+  @Post("/page", { summary: "sys:settings:view" })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    return await super.page(body);
+  }
+
+  @Post("/list", { summary: "sys:settings:view" })
+  async list(@Body(ALL) body: any) {
+    return super.list(body);
+  }
+
+  @Post("/add", { summary: "sys:settings:edit" })
+  async add(@Body(ALL) bean: any) {
+    const def: any = {
+      isDefault: false,
+      disabled: false,
+    };
+    merge(bean, def);
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post("/update", { summary: "sys:settings:edit" })
+  async update(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    return super.update(bean);
+  }
+
+  @Post("/info", { summary: "sys:settings:view" })
+  async info(@Query("id") id: number) {
+    return super.info(id);
+  }
+
+  @Post("/delete", { summary: "sys:settings:edit" })
+  async delete(@Query("id") id: number) {
+    return super.delete(id);
+  }
+
+  @Post("/deleteByIds", { summary: "sys:settings:edit" })
+  async deleteByIds(@Body("ids") ids: number[]) {
+    const res = await this.service.delete(ids);
+    return this.ok(res);
+  }
+  @Post("/setDisabled", { summary: "sys:settings:edit" })
+  async setDisabled(@Body("id") id: number, @Body("disabled") disabled: boolean) {
+    await this.service.setDisabled(id, disabled);
+    return this.ok();
+  }
+}
@@ -0,0 +1,65 @@
+import { CrudController, SysSettingsService } from "@certd/lib-server";
+import { ALL, Body, Controller, Inject, Post, Provide, Query } from "@midwayjs/core";
+import { ProjectMemberEntity } from "../../../modules/sys/enterprise/entity/project-member.js";
+import { ProjectMemberService } from "../../../modules/sys/enterprise/service/project-member-service.js";
+import { merge } from "lodash-es";
+
+/**
+ */
+@Provide()
+@Controller("/api/sys/enterprise/projectMember")
+export class SysProjectMemberController extends CrudController<ProjectMemberEntity> {
+  @Inject()
+  service: ProjectMemberService;
+
+  @Inject()
+  sysSettingsService: SysSettingsService;
+
+  getService<T>() {
+    return this.service;
+  }
+
+  @Post("/page", { summary: "sys:settings:view" })
+  async page(@Body(ALL) body: any) {
+    body.query = body.query ?? {};
+    return await super.page(body);
+  }
+
+  @Post("/list", { summary: "sys:settings:view" })
+  async list(@Body(ALL) body: any) {
+    return super.list(body);
+  }
+
+  @Post("/add", { summary: "sys:settings:edit" })
+  async add(@Body(ALL) bean: any) {
+    const def: any = {
+      isDefault: false,
+      disabled: false,
+    };
+    merge(bean, def);
+    bean.userId = this.getUserId();
+    return super.add(bean);
+  }
+
+  @Post("/update", { summary: "sys:settings:edit" })
+  async update(@Body(ALL) bean: any) {
+    bean.userId = this.getUserId();
+    return super.update(bean);
+  }
+
+  @Post("/info", { summary: "sys:settings:view" })
+  async info(@Query("id") id: number) {
+    return super.info(id);
+  }
+
+  @Post("/delete", { summary: "sys:settings:edit" })
+  async delete(@Query("id") id: number) {
+    return super.delete(id);
+  }
+
+  @Post("/deleteByIds", { summary: "sys:settings:edit" })
+  async deleteByIds(@Body("ids") ids: number[]) {
+    const res = await this.service.delete(ids);
+    return this.ok(res);
+  }
+}
@@ -22,14 +22,13 @@ export class SysPlusController extends BaseController {
    return this.ok(true);
  }
  @Post('/bindUrl', { summary: 'sys:settings:edit' })
-  async bindUrl(@Body(ALL) body: { url: string }) {
-    const { url } = body;
-
+  async bindUrl(@Body(ALL) body: { url: string ,url2?:string }) {
+    const { url,url2 } = body;  
    await this.plusService.register();
    const installInfo: SysInstallInfo = await this.sysSettingsService.getSetting(SysInstallInfo);
-    await this.plusService.bindUrl(url);
-
+    await this.plusService.bindUrl(url,url2);
    installInfo.bindUrl = url;
+    installInfo.bindUrl2 = url2;
    await this.sysSettingsService.saveSetting(installInfo);

    //重新验证vip
@@ -48,6 +47,11 @@ export class SysPlusController extends BaseController {
    const res = await this.plusService.getVipTrial(vipType);
    return this.ok(res);
  }
+  @Post('/getTodayVipOrderCount', { summary: 'sys:settings:edit' })
+  async getTodayVipOrderCount() {
+    const res = await this.plusService.getTodayOrderCount();
+    return this.ok(res);
+  }
  //
  // @Get('/test', { summary: Constants.per.guest })
  // async test() {
@@ -1,9 +1,8 @@
+import { CommonException, SysSettingsService } from "@certd/lib-server";
 import { Autoload, Config, Init, Inject, Provide, Scope, ScopeEnum } from '@midwayjs/core';
 import { IMidwayKoaContext, IWebMiddleware, NextFunction } from '@midwayjs/koa';
-import { CommonException, SysSettingsService } from "@certd/lib-server";
+import { UserSettingsService } from "../../modules/mine/service/user-settings-service.js";
 import { UserService } from '../../modules/sys/authority/service/user-service.js';
-import { logger } from '@certd/basic';
-import {UserSettingsService} from "../../modules/mine/service/user-settings-service.js";

 /**
 * 重置密码模式
@@ -33,21 +32,6 @@ export class ResetPasswdMiddleware implements IWebMiddleware {

  @Init()
  async init() {
-    if (this.resetAdminPasswd === true) {
-      logger.info('开始重置1号管理员用户的密码');
-      const newPasswd = '123456';
-      await this.userService.resetPassword(1, newPasswd);
-      await this.userService.updateStatus(1, 1);
-      await this.userSettingsService.deleteWhere({
-        userId: 1,
-        key:"user.two.factor"
-      })
-      const publicSettings = await this.sysSettingsService.getPublicSettings()
-      publicSettings.captchaEnabled = false
-      await this.sysSettingsService.savePublicSettings(publicSettings);
-
-      const user = await this.userService.info(1);
-      logger.info(`重置1号管理员用户的密码完成，2FA设置已删除，验证码登录已禁用，用户名：${user.username},新密码：${newPasswd}，请在登录进去之后尽快修改密码`);
-    }
+    
  }
 }
@@ -7,6 +7,9 @@ import { getVersion } from '../../utils/version.js';
 import dayjs from 'dayjs';
 import { Application } from '@midwayjs/koa';
 import { httpsServer, HttpsServerOptions } from './https/server.js';
+import { UserService } from '../sys/authority/service/user-service.js';
+import { UserSettingsService } from '../mine/service/user-settings-service.js';
+import { startProxyServer } from './proxy/server.js';

@Autoload()
@Scope(ScopeEnum.Request, { allowDowngrade: true })
@@ -22,10 +25,20 @@ export class AutoZPrint {
  @Config('koa')
  koaConfig: any;

+  @Inject()
+  userService: UserService;
+  
+  @Inject()
+  userSettingsService: UserSettingsService;
+
+  @Config('system.resetAdminPasswd')
+  private resetAdminPasswd: boolean;
+
  @Init()
  async init() {
    //监听https
    this.startHttpsServer();
+    // this.startProxyServer();
    logger.info("ENV:", process.env.NODE_ENV);
    if (isDev()) {
      this.startHeapLog();
@@ -41,6 +54,26 @@ export class AutoZPrint {
    }
    logger.info('Certd已启动');
    logger.info('=========================================');
+    await this.resetPasswd();
+  }
+
+  async resetPasswd(){
+    if (this.resetAdminPasswd === true) {
+      logger.info('开始重置1号管理员用户的密码');
+      const newPasswd = '123456';
+      await this.userService.resetPassword(1, newPasswd);
+      await this.userService.updateStatus(1, 1);
+      await this.userSettingsService.deleteWhere({
+        userId: 1,
+        key:"user.two.factor"
+      })
+      const publicSettings = await this.sysSettingsService.getPublicSettings()
+      publicSettings.captchaEnabled = false
+      await this.sysSettingsService.savePublicSettings(publicSettings);
+
+      const user = await this.userService.info(1);
+      logger.info(`重置1号管理员用户的密码完成，2FA设置已删除，验证码登录已禁用，用户名：${user.username},新密码：${newPasswd}，请在登录进去之后尽快修改密码`);
+    }
  }

  startHeapLog() {
@@ -66,4 +99,8 @@ export class AutoZPrint {
      hostname: this.httpsConfig.hostname || this.koaConfig.hostname,
    });
  }
+
+  startProxyServer() {
+    startProxyServer({port: 7003});
+  }
 }
@@ -0,0 +1,92 @@
+// proxy-server.js
+import http from 'http';
+import https from 'https';
+import url from 'url';
+import net from 'net';
+import { logger } from '@certd/basic';
+
+
+export function startProxyServer(opts:{port:number}) {
+  const {port} = opts;
+
+  // 创建 HTTP 代理服务器
+  const proxyServer = http.createServer((clientReq, clientRes) => {
+    logger.log(`[proxy] 收到请求: ${clientReq.method} ${clientReq.url}`);
+
+    // 解析请求的 URL
+    const parsedUrl = url.parse(clientReq.url);
+    const options = {
+      hostname: parsedUrl.hostname,
+      port: parsedUrl.port || (parsedUrl.protocol === 'https:' ? 443 : 80),
+      path: parsedUrl.path,
+      method: clientReq.method,
+      headers: clientReq.headers
+    };
+
+    // 根据协议选择不同的模块
+    const protocol = parsedUrl.protocol === 'https:' ? https : http;
+
+    // 移除可能会引起问题的 headers
+    delete options.headers['proxy-connection'];
+    delete options.headers['connection'];
+    delete options.headers['keep-alive'];
+
+    // 创建到目标服务器的请求
+    const proxyReq = protocol.request(options, (proxyRes) => {
+      // 将目标服务器的响应返回给客户端
+      clientRes.writeHead(proxyRes.statusCode, proxyRes.headers);
+      proxyRes.pipe(clientRes);
+    });
+
+    proxyReq.on('error', (err) => {
+      logger.error('[proxy] 代理请求错误:', err);
+      clientRes.writeHead(500);
+      clientRes.end('代理服务器错误');
+    });
+
+    // 将客户端请求体转发到目标服务器
+    clientReq.pipe(proxyReq);
+  });
+
+  // 处理 CONNECT 方法（HTTPS 代理）
+  proxyServer.on('connect', (req, clientSocket, head) => {
+    logger.log(`[proxy] HTTPS 连接请求: ${req.url}`);
+
+    const [hostname, port] = req.url.split(':');
+    const portNum = parseInt(port) || 443;
+
+    // 连接到目标服务器
+    const serverSocket = net.connect(portNum, hostname, () => {
+      // 告诉客户端连接已建立
+      clientSocket.write('HTTP/1.1 200 Connection Established\r\n' +
+        'Proxy-agent: Node.js-Proxy\r\n' +
+        '\r\n');
+
+      // 建立双向数据流
+      serverSocket.write(head);
+      serverSocket.pipe(clientSocket);
+      clientSocket.pipe(serverSocket);
+    });
+
+    serverSocket.on('error', (err) => {
+      logger.error('[proxy] HTTPS 代理错误:', err);
+      clientSocket.end();
+    });
+
+    clientSocket.on('error', (err) => {
+      logger.error('[proxy] 客户端 socket 错误:', err);
+      serverSocket.end();
+    });
+  });
+
+  // 监听端口
+  proxyServer.listen(port, () => {
+     logger.info(`[proxy] 正向代理服务器运行在 http://0.0.0.0:${port}`);
+  });
+
+  proxyServer.close(() => {
+    logger.info('[proxy] 正向代理服务器已关闭');
+  });
+
+  return proxyServer
+}
@@ -42,6 +42,9 @@ export class CertInfoEntity {
  @Column({ name: 'cert_file', comment: '证书下载' })
  certFile: string;

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+
  @Column({
    name: 'create_time',
    comment: '创建时间',
@@ -71,6 +71,9 @@ export class SiteInfoEntity {
  @Column({ name: 'group_id', comment: '分组id' })
  groupId: number;

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+
  @Column({ name: 'create_time', comment: '创建时间', default: () => 'CURRENT_TIMESTAMP' })
  createTime: Date;
  @Column({ name: 'update_time', comment: '修改时间', default: () => 'CURRENT_TIMESTAMP' })
@@ -33,6 +33,8 @@ export class SiteIpEntity {
  remark: string;
  @Column({ name: "disabled", comment: "禁用启用" })
  disabled: boolean;
+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;

  @Column({ name: 'create_time', comment: '创建时间', default: () => 'CURRENT_TIMESTAMP' })
  createTime: Date;
@@ -17,6 +17,9 @@ export class OpenKeyEntity {
  @Column({ name: 'scope', comment: '权限范围' })
  scope: string; // open 仅开放接口、 user 用户所有权限

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+
  @Column({ name: 'create_time', comment: '创建时间', default: () => 'CURRENT_TIMESTAMP' })
  createTime: Date;

@@ -25,6 +25,9 @@ export class HistoryLogEntity {
  @Column({ comment: '日志内容', length: 40960, nullable: true })
  logs: string;

+  @Column({ name: 'project_id', comment: '项目id' })
+  projectId: number;
+
  @Column({
    name: 'create_time',
    comment: '创建时间',
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
xiaojunnuo	1f68faddb9	perf: AI开发插件 skills 定义初步	2026-02-05 17:26:47 +08:00
xiaojunnuo	db06f06c96	docs: microsoft oauth docs	2026-02-05 17:18:26 +08:00
xiaojunnuo	79e973e9c8	Merge branch 'v2-dev' into v2_admin_mode	2026-02-05 16:31:32 +08:00
xiaojunnuo	beb7a4c992	perf: 第三方登录支持Microsoft	2026-02-05 16:14:05 +08:00
xiaojunnuo	4d86fb319b	perf: 优化zerossl申请证书稳定性	2026-02-05 12:22:55 +08:00
xiaojunnuo	5ea4f46de7	perf: eab从更多参数中挪到外面	2026-02-05 11:39:06 +08:00
xiaojunnuo	1d8d5251ae	chore: domain-selector 优化	2026-02-05 11:29:10 +08:00
xiaojunnuo	54c8217808	fix: 修复有域名记录时，域名输入框无法关闭的bug	2026-02-05 11:27:32 +08:00
xiaojunnuo	ba623903e0	chore: publish-atom.yaml	2026-02-05 02:05:04 +08:00
xiaojunnuo	907af3ae18	chore： publish	2026-02-05 02:03:57 +08:00
xiaojunnuo	24ae8a6b66	chore：2	2026-02-05 02:02:01 +08:00
xiaojunnuo	1646a5cdd2	chore: atom publish	2026-02-05 01:59:08 +08:00
xiaojunnuo	814f17d10b	build: release	2026-02-05 01:33:21 +08:00
xiaojunnuo	40fe105903	build: release	2026-02-05 01:31:16 +08:00
xiaojunnuo	42a347d8b1	build: publish	2026-02-05 01:18:22 +08:00
xiaojunnuo	5450e5dac4	build: trigger build image	2026-02-05 01:18:09 +08:00
xiaojunnuo	1368259a1e	v1.38.6	2026-02-05 01:16:39 +08:00
xiaojunnuo	81a495f267	build: prepare to build	2026-02-05 01:13:43 +08:00
xiaojunnuo	693a4a6633	perf: oauth支持github 和google，修复头像显示问题	2026-02-05 01:10:01 +08:00
xiaojunnuo	82786c580a	chore: tip	2026-02-05 00:42:25 +08:00
xiaojunnuo	e19743f705	perf: count tip	2026-02-05 00:07:15 +08:00
xiaojunnuo	9166a57930	perf: 当域名管理中没有域名时，创建流水线时不展开域名选择框	2026-02-04 23:09:16 +08:00
xiaojunnuo	8d8304e859	chore: 1	2026-02-04 19:03:03 +08:00
xiaojunnuo	6ddc23e2aa	chore: project member	2026-02-04 18:54:00 +08:00
xiaojunnuo	2fc491015e	chore: project manager	2026-02-04 18:24:15 +08:00
xiaojunnuo	bb0afe1fa7	perf: 当域名管理中没有域名时，创建流水线时不展开域名选择框	2026-02-04 17:01:08 +08:00
xiaojunnuo	eb46f8c776	chore: 企业管理模式初步	2026-02-04 15:49:01 +08:00
xiaojunnuo	bd511f97cb	fix: 修复新网找错域名的bug	2026-02-03 18:28:41 +08:00
xiaojunnuo	560bf40e4b	chore: 1	2026-02-03 16:28:11 +08:00
xiaojunnuo	4f4652c1cd	docs: 1	2026-02-03 12:28:30 +08:00
xiaojunnuo	60e13c2a1d	Merge branch 'v2-dev' of https://github.com/certd/certd into v2-dev	2026-02-03 09:50:29 +08:00
xiaojunnuo	1fe0dc4d16	chore: 1	2026-02-03 09:50:23 +08:00
xiaojunnuo	181a1e3c0a	build: release	2026-02-03 00:18:06 +08:00
xiaojunnuo	6bba771856	build: publish	2026-02-03 00:04:32 +08:00
xiaojunnuo	921f1f42fb	build: trigger build image	2026-02-03 00:04:20 +08:00
xiaojunnuo	eeb1f27fa4	v1.38.5	2026-02-03 00:02:52 +08:00
xiaojunnuo	9ce21ad152	build: prepare to build	2026-02-02 23:59:55 +08:00
xiaojunnuo	c036929cfe	chore: order count	2026-02-02 23:40:10 +08:00
xiaojunnuo	21591a3a89	chore: plus失效原因显示	2026-02-02 16:54:23 +08:00
xiaojunnuo	a2e9a41a7e	perf: 支持绑定两个url地址	2026-02-02 16:36:43 +08:00
xiaojunnuo	0902349130	Merge branch 'v2-dev' of https://github.com/certd/certd into v2-dev	2026-02-02 15:31:17 +08:00
xiaojunnuo	f900db8e10	chore: 赞助数量状态样式	2026-02-02 15:31:02 +08:00
xiaojunnuo	0fa9b344e0	perf: 将重置密码的日志挪到启动成功之后，方便查看	2026-02-02 11:46:55 +08:00
xiaojunnuo	f48ef3d17b	Merge branch 'v2-dev' of https://github.com/certd/certd into v2-dev	2026-02-02 11:31:27 +08:00
xiaojunnuo	40801d0a06	fix: 某些情况下登陆页面没有显示重置密码文档链接的问题	2026-02-02 11:31:17 +08:00
xiaojunnuo	c6ccf1cf21	chore: vscode 显示多存储库	2026-02-02 10:21:25 +08:00
xiaojunnuo	d311992983	chore: vip modal content转到单独的组件中	2026-02-02 02:29:26 +08:00
xiaojunnuo	b4babbe2c7	chore: bindUrl2初步	2026-02-02 02:02:58 +08:00
xiaojunnuo	0719f4c99e	fix: 修复部署到火山引擎vod，获取域名列表为空的bug	2026-02-01 23:10:45 +08:00
xiaojunnuo	eb5de15033	fix: 修复oidc配置取消后获取登出地址失败后无法列出oauth列表的bug	2026-02-01 22:43:35 +08:00
xiaojunnuo	b229486d3b	chore: 1	2026-02-01 15:43:19 +08:00
xiaojunnuo	33b8d3e219	chore: aliyun esa ok	2026-02-01 15:40:35 +08:00
xiaojunnuo	230256793f	fix: 阿里云esa查询证书限制接口无效，改成配置证书数量上限检查方式进行清理	2026-02-01 15:37:45 +08:00
xiaojunnuo	540ef96745	fix: 修复litessl new-nonce报428的bug	2026-02-01 15:25:28 +08:00
xiaojunnuo	1baf30a671	build: release	2026-02-01 02:25:55 +08:00
xiaojunnuo	5e93840e48	build: publish	2026-02-01 02:12:29 +08:00
xiaojunnuo	73a5908039	build: trigger build image	2026-02-01 02:12:17 +08:00
				`@@ -0,0 +1 @@`
				`我需要开发一个 Access 插件，用于存储和管理第三方应用的授权信息。请指导我如何实现。`
				`@@ -0,0 +1 @@`
				`我需要开发一个 DNS Provider 插件，用于在 ACME 申请证书时添加 TXT 解析记录。请指导我如何实现。`
				`@@ -0,0 +1 @@`
				`我需要将一个插件转换为 YAML 配置文件。请指导我如何使用插件转换工具。`
				`@@ -0,0 +1 @@`
				`我需要开发一个 Task 插件，用于将申请的证书部署到指定的应用系统中。请指导我如何实现。`
@@ -1 +1 @@
 :08
 :13