long-agent/user-system
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7 Commits 1 Branch 0 Tags
765a50b7d4589decfffa727baf6ca63b595047a2
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
long-agent 765a50b7d4 fix: 生产安全修复 + Go SDK + CAS SSO框架 
安全修复:
- CRITICAL: SSO重定向URL注入漏洞 - 修复redirect_uri白名单验证
- HIGH: SSO ClientSecret未验证 - 使用crypto/subtle.ConstantTimeCompare验证
- HIGH: 邮件验证码熵值过低(3字节) - 提升到6字节(48位熵)
- HIGH: 短信验证码熵值过低(4字节) - 提升到6字节
- HIGH: Goroutine使用已取消上下文 - auth_email.go使用独立context+超时
- HIGH: SQL LIKE查询注入风险 - permission/role仓库使用escapeLikePattern

新功能:
- Go SDK: sdk/go/user-management/ 完整SDK实现
- CAS SSO框架: internal/auth/cas.go CAS协议支持

其他:
- L1Cache实例问题修复 - AuthMiddleware共享l1Cache
- 设备指纹XSS防护 - 内存存储替代localStorage
- 响应格式协议中间件
- 导出无界查询修复
2026-04-03 17:38:31 +08:00
.claude
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
.workbuddy
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
cmd/server
fix: 生产安全修复 + Go SDK + CAS SSO框架
2026-04-03 17:38:31 +08:00
config
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
configs
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
deployment
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
docs
docs: 添加项目全面审查报告(合并版)
2026-04-02 13:59:27 +08:00
frontend/admin
fix: 生产安全修复 + Go SDK + CAS SSO框架
2026-04-03 17:38:31 +08:00
ininternal/api/handler
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
internal
fix: 生产安全修复 + Go SDK + CAS SSO框架
2026-04-03 17:38:31 +08:00
migrations
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
pkg
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
runtime
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
scripts
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
sdk/go/user-management
fix: 生产安全修复 + Go SDK + CAS SSO框架
2026-04-03 17:38:31 +08:00
tools
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
.gitignore
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
AGENTS.md
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
all_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build3.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build4.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_all.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_current.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_err_new.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_err.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_errors.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_feature.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_final.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_now2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_now.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_stats.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_ui_check.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_verify2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build_verify.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
build.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
check_gitea.sh
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
check_project.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
check_sub2api.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
cleanup.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
current_status.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
deploy_full.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
DEPLOY_GUIDE.md
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
deploy_server.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
deploy_single.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
docker-compose.yml
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
e2e_advanced.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
e2e_final.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
e2e_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
e2e_v2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
e2e_v3.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final2_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final_all_test_phase_e.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final_all_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final_all_v2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final_all.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
final_phase_e_full.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
fix_nginx.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
fix_ssl.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
full_test_final.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
fulltest_fix.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
go_version.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
go.mod
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
go.sum
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
go.work.sum
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
handler_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
install_docker.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
listtest.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
Makefile
feat: backend core - auth, user, role, permission, device, webhook, monitoring, cache, repository, service, middleware, API handlers
2026-04-02 11:19:50 +08:00
middleware_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
modules.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
pass_lines.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
pass_only.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
pkg_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
PROJECT_QUALITY_STANDARDS.md
fix: 生产安全修复 + Go SDK + CAS SSO框架
2026-04-03 17:38:31 +08:00
quick_check.ps1
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
race_svc.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
README.md
Initial commit
2026-04-02 03:01:14 +00:00
repo_robust.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
repo_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
repo.json
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
run_tests.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
server_err.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
server_out.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
simple_deploy.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
status_check.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
stderr.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
stdout.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
sub2api
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
svc_bench.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_build.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_final.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_fix_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_full.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_robust.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_stress.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_test_out.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
svc_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_all.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_api.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_api.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_current.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_full_report.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_full.sh
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_go.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_list.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_now2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_now3.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_now4.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_now.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_output.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_password.py
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_service_out.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_service.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
test_verbose.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
tsc_check.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
upload.json
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
validate_code.py
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
validate.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
verbose_test.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
verify_fix.ps1
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
verify_go.bat
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
verify_migration.ps1
chore: add remaining files and cleanup
2026-04-02 11:48:04 +08:00
vet_after_fix.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_current.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_err.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_errors.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_final.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_now2.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_now.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vet_out.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vite_stderr.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00
vite_stdout.txt
docs: project docs, scripts, deployment configs, and evidence
2026-04-02 11:22:17 +08:00

README.md

user-system

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 1.9 MiB
Languages
Go 64.8%
TypeScript 24.2%
PowerShell 4.3%
JavaScript 3.4%
Shell 1.4%
Other 1.8%