kang
e6cf94af46
- 在多个控制器中引入 ApiMessage,替换原有的 ApiResponse 错误处理逻辑,确保错误信息的一致性与可读性。 - 更新错误返回信息,使用更具语义的键值,提升 API 的可维护性与用户体验。 - 适配相关控制器的请求参数,确保在处理错误时能够正确返回相应的错误信息。
54 lines
1.7 KiB
PHP
54 lines
1.7 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Api\V1\Admin\Integration;
|
|
|
|
use App\Models\AdminSite;
|
|
use App\Support\ApiMessage;
|
|
use App\Support\ApiResponse;
|
|
use App\Lottery\ErrorCode;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Http\JsonResponse;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Services\AuditLogger;
|
|
use App\Services\Integration\IntegrationSiteService;
|
|
use App\Support\AdminIntegrationSiteAccess;
|
|
use App\Support\AdminIntegrationSitePresenter;
|
|
use App\Http\Middleware\RecordAdminApiAudit;
|
|
|
|
final class AdminIntegrationSiteRotateSecretsController extends Controller
|
|
{
|
|
public function __invoke(
|
|
Request $request,
|
|
AdminSite $admin_site,
|
|
IntegrationSiteService $service,
|
|
): JsonResponse {
|
|
$admin = $request->lotteryAdmin();
|
|
abort_if($admin === null, 401);
|
|
|
|
if (! AdminIntegrationSiteAccess::canAccess($admin, $admin_site)) {
|
|
return ApiMessage::errorResponse($request, 'admin.site_rotate_denied', ErrorCode::AdminForbidden->value, null, 403);
|
|
}
|
|
|
|
$result = $service->rotateSecrets($admin_site);
|
|
$site = $result['site'];
|
|
|
|
$payload = AdminIntegrationSitePresenter::withPlainSecretsOnce(
|
|
AdminIntegrationSitePresenter::detail($site),
|
|
$result['secrets'],
|
|
);
|
|
|
|
AuditLogger::recordForAdmin(
|
|
$admin,
|
|
$request,
|
|
moduleCode: 'integration',
|
|
actionCode: 'rotate_secrets',
|
|
targetType: 'admin_site',
|
|
targetId: (string) $site->id,
|
|
afterJson: ['code' => $site->code, 'rotated' => true],
|
|
);
|
|
$request->attributes->set(RecordAdminApiAudit::ATTRIBUTE_AUDIT_RECORDED, true);
|
|
|
|
return ApiResponse::success($payload);
|
|
}
|
|
}
|