fnvtk/soul-yongping
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

更新开发配置,调整项目路径以支持新环境。同时,优化提现管理API,增强安全性和错误处理逻辑,确保数据一致性和用户体验。重构数据库查询逻辑,提升性能和可维护性。

Browse Source
This commit is contained in:
乘风
2026-02-06 15:18:36 +08:00
parent 678bf297aa
commit f8fac00c85
7 changed files with 407 additions and 671 deletions
Download Patch File Download Diff File Expand all files Collapse all files

174
app/api/admin/withdrawals/route.ts
View File

@@ -1,48 +1,45 @@
/**
* 后台提现管理 API - SQL 调试版
* 后台提现 API
* GET: 查提现记录。PUT: 查库 + 更新提现状态 + 更新用户已提现金额(当前未接入微信打款)
*/
import { NextResponse } from 'next/server'
import { query } from '@/lib/db'
import { requireAdminResponse } from '@/lib/admin-auth'
export async function GET(request: Request) {
console.log('[Withdrawals Debug] ===== SQL Query Version Started =====')
try {
// 1. 权限检查
console.log('[Withdrawals Debug] 1. Checking Auth')
const authErr = requireAdminResponse(request)
if (authErr) {
console.log('[Withdrawals Debug] Auth Failed')
return authErr
}
/** 安全转数组,避免 undefined.length绝不返回 undefined */
function toArray<T = any>(x: unknown): T[] {
if (x == null) return []
if (Array.isArray(x)) return x as T[]
if (typeof x === 'object' && x !== null) return [x] as T[]
return []
}
/** 安全取数组长度,避免对 undefined 读 .length */
function safeLength(x: unknown): number {
if (x == null) return 0
if (Array.isArray(x)) return x.length
return 0
}
// ========== GET只查提现记录 ==========
export async function GET(request: Request) {
console.log('[Withdrawals] GET 开始')
try {
const authErr = requireAdminResponse(request)
if (authErr) return authErr
// 2. 执行 SQL
console.log('[Withdrawals Debug] 2. Executing SQL Join')
const sql = `
SELECT
w.id,
w.user_id,
w.amount,
w.status,
w.created_at,
u.nickname as user_nickname,
u.avatar as user_avatar
w.id, w.user_id, w.amount, w.status, w.created_at,
u.nickname as user_nickname, u.avatar as user_avatar
FROM withdrawals w
LEFT JOIN users u ON w.user_id = u.id
ORDER BY w.created_at DESC
LIMIT 100
`
const result = await query(sql)
console.log('[Withdrawals Debug] result type:', typeof result)
console.log('[Withdrawals Debug] is array:', Array.isArray(result))
const rows = toArray(result)
// 3. 安全转数组
const rows = Array.isArray(result) ? result : (result ? [result] : [])
console.log('[Withdrawals Debug] count after safety conversion:', rows.length)
// 4. 映射字段 (对应前端需要的 user_name, amount, status)
const withdrawals = rows.map((w: any) => ({
id: w.id,
user_id: w.user_id,
@@ -51,134 +48,95 @@ export async function GET(request: Request) {
amount: parseFloat(w.amount) || 0,
status: w.status === 'success' ? 'completed' : (w.status === 'failed' ? 'rejected' : w.status),
created_at: w.created_at,
method: 'wechat' // 默认值
method: 'wechat',
}))
console.log('[Withdrawals Debug] 3. Success, returning rows:', withdrawals.length)
return NextResponse.json({
success: true,
withdrawals,
stats: { total: withdrawals.length }
stats: { total: safeLength(withdrawals) },
})
} catch (error: any) {
console.error('[Withdrawals Debug] !!! SQL Version Crashed !!!')
console.error('[Withdrawals Debug] Error Msg:', error.message)
console.error('[Withdrawals] GET 失败:', error?.message)
return NextResponse.json(
{
success: false,
error: 'SQL版崩溃: ' + error.message,
stack: error.stack
},
{ success: false, error: '获取提现记录失败: ' + (error?.message || String(error)) },
{ status: 500 }
)
}
}
// ========== PUT查库 + 更新状态 + 更新用户已提现,暂不调用微信打款 ==========
export async function PUT(request: Request) {
const authErr = requireAdminResponse(request)
if (authErr) return authErr
const STEP = '[Withdrawals PUT]'
try {
console.log(STEP, '1. 开始')
const authErr = requireAdminResponse(request)
if (authErr) return authErr
console.log(STEP, '2. 鉴权通过')
const body = await request.json()
const { id, action, errorMessage, reason } = body
const rejectReason = errorMessage || reason || '管理员拒绝'
console.log(STEP, '3. body 已解析', typeof body, body ? 'ok' : 'null')
const id = body?.id
const action = body?.action
const rejectReason = body?.errorMessage || body?.reason || '管理员拒绝'
if (!id || !action) {
return NextResponse.json({ success: false, error: '缺少参数 id 或 action' }, { status: 400 })
return NextResponse.json({ success: false, error: '缺少 id 或 action' }, { status: 400 })
}
console.log(STEP, '4. id/action 有效', id, action)
// 1. 查询该提现单
const result = await query(`SELECT * FROM withdrawals WHERE id = ?`, [id])
console.log(STEP, '5. 即将 query SELECT')
const result = await query('SELECT * FROM withdrawals WHERE id = ?', [id])
console.log(STEP, '6. query 返回', typeof result, 'length=', safeLength(result))
const rows = toArray<any>(result)
if (rows.length === 0) {
console.log(STEP, '7. toArray 后 length=', safeLength(rows))
if (safeLength(rows) === 0) {
return NextResponse.json({ success: false, error: '提现记录不存在' }, { status: 404 })
}
console.log(STEP, '8. 有记录')
const withdrawal = rows[0]
if (withdrawal.status !== 'pending') {
const row = rows[0]
console.log(STEP, '9. row', row ? 'ok' : 'null')
if (row.status !== 'pending') {
return NextResponse.json({ success: false, error: '该记录已处理,不可重复审批' }, { status: 400 })
}
console.log(STEP, '10. 状态 pending')
const amount = parseFloat(withdrawal.amount) || 0
const userId = withdrawal.user_id
const openid = withdrawal.wechat_openid
const amount = parseFloat(String(row.amount ?? 0)) || 0
const userId = String(row.user_id ?? '')
console.log(STEP, '11. amount/userId', amount, userId)
if (action === 'approve') {
// --- 真正的微信打款逻辑 ---
if (openid && amount > 0) {
console.log(`[Withdrawals] 准备发起微信转账: OpenID=${openid}, 金额=${amount}`)
try {
// 1. 调用微信转账接口 (单位为分)
const transferResult = await createTransfer({
openid: openid,
amountFen: Math.round(amount * 100),
outDetailNo: id,
transferRemark: '佣金提现',
})
if (transferResult.success) {
// 2. 微信转账发起成功 (状态可能为 processing 或 success)
// 更新提现表,记录微信返回的单号
await query(
`UPDATE withdrawals SET status = 'processing', transaction_id = ? WHERE id = ?`,
[transferResult.batchId || transferResult.outBatchNo || `wx_${Date.now()}`, id]
)
return NextResponse.json({
success: true,
message: '微信转账已发起,请稍后在零钱查看'
})
} else {
// 微信接口返回明确失败
console.error('[Withdrawals] 微信转账失败:', transferResult.errorMessage)
return NextResponse.json({
success: false,
error: `微信转账失败: ${transferResult.errorMessage || '请检查微信支付商户后台'}`
}, { status: 400 })
}
} catch (transferErr: any) {
console.error('[Withdrawals] 调用微信接口异常:', transferErr)
return NextResponse.json({
success: false,
error: '调用微信支付接口异常,请检查证书配置'
}, { status: 500 })
}
}
// --- 如果没有 OpenID回退到线下手动打款逻辑 ---
console.log(STEP, '12. 执行 approve UPDATE withdrawals')
await query(
`UPDATE withdrawals SET status = 'success', processed_at = NOW(), transaction_id = ? WHERE id = ?`,
[`manual_${Date.now()}`, id]
)
console.log(STEP, '13. 执行 approve UPDATE users')
await query(
`UPDATE users SET withdrawn_earnings = COALESCE(withdrawn_earnings, 0) + ? WHERE id = ?`,
[amount, userId]
)
return NextResponse.json({ success: true, message: 'OpenID缺失已标记为线下手动打款' })
console.log(STEP, '14. 批准完成')
return NextResponse.json({ success: true, message: '已批准,已更新提现状态与用户已提现金额(未发起微信打款)' })
}
if (action === 'reject') {
// --- 拒绝逻辑 ---
console.log(STEP, '15. 执行 reject UPDATE')
await query(
`UPDATE withdrawals SET status = 'failed', processed_at = NOW(), error_message = ? WHERE id = ?`,
[rejectReason, id]
)
console.log(`[Withdrawals] 提现拒绝: ID=${id}, 原因=${rejectReason}`)
console.log(STEP, '16. 拒绝完成')
return NextResponse.json({ success: true, message: '已拒绝该提现申请' })
}
return NextResponse.json({ success: false, error: '无效的 action 类型' }, { status: 400 })
return NextResponse.json({ success: false, error: '无效的 action' }, { status: 400 })
} catch (error: any) {
console.error('[Withdrawals] PUT 处理失败:', error.message)
console.error(STEP, '!!! 崩溃 !!!', error?.message)
console.error(STEP, '堆栈:', error?.stack)
return NextResponse.json(
{ success: false, error: '审批操作失败: ' + error.message },
{ success: false, error: '审批操作失败: ' + (error?.message || String(error)) },
{ status: 500 }
)
}