kang
a44679665d
- 在多个控制器中更新权限检查逻辑,确保管理员能够更灵活地管理代理和玩家。 - 在 AdminPlayerStoreController 中引入对玩家创建能力的验证,确保只有具备相应权限的管理员能够创建玩家。 - 更新请求验证逻辑,新增 credit_limit、rebate_rate 和 extra_rebate_rate 字段,以支持更细粒度的玩家管理。 - 在 AgentNodeProfileController 中添加对父代理能力授予的验证,确保子代理的权限在父代理范围内。 - 引入 AgentProfileFieldRules 以简化代理资料更新请求的规则定义,提升代码复用性。
196 lines
7.4 KiB
PHP
196 lines
7.4 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Api\V1\Admin\Player;
|
|
|
|
use App\Models\Player;
|
|
use App\Lottery\ErrorCode;
|
|
use App\Support\ApiMessage;
|
|
use App\Support\ApiResponse;
|
|
use Illuminate\Http\JsonResponse;
|
|
use App\Support\AdminAgentScope;
|
|
use App\Support\AdminSiteScope;
|
|
use App\Support\PlayerApiPresenter;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Requests\Admin\AdminPlayerStoreRequest;
|
|
use App\Models\AgentNode;
|
|
use App\Services\Agent\AgentProfileService;
|
|
use App\Services\Agent\RebateLimitValidator;
|
|
use App\Services\Player\PlayerCreditService;
|
|
use App\Support\PlayerAuthSource;
|
|
use App\Support\PlayerFundingMode;
|
|
use Illuminate\Support\Facades\Hash;
|
|
use Illuminate\Support\Str;
|
|
|
|
/** POST /api/v1/admin/players */
|
|
final class AdminPlayerStoreController extends Controller
|
|
{
|
|
public function __invoke(
|
|
AdminPlayerStoreRequest $request,
|
|
PlayerCreditService $playerCreditService,
|
|
RebateLimitValidator $rebateLimitValidator,
|
|
AgentProfileService $agentProfileService,
|
|
): JsonResponse {
|
|
$admin = $request->lotteryAdmin();
|
|
abort_if($admin === null, 401);
|
|
|
|
try {
|
|
$agentProfileService->assertActorMayCreatePlayer($admin);
|
|
} catch (\Illuminate\Validation\ValidationException $e) {
|
|
return ApiMessage::errorResponse(
|
|
$request,
|
|
'admin.player_create_capability_forbidden',
|
|
ErrorCode::AdminForbidden->value,
|
|
$e->errors(),
|
|
403,
|
|
);
|
|
}
|
|
|
|
$siteCode = (string) $request->validated('site_code');
|
|
if (! AdminSiteScope::siteCodeAllowed($admin, $siteCode)) {
|
|
return ApiMessage::errorResponse($request, 'admin.player_create_site_forbidden', ErrorCode::AdminForbidden->value, null, 403);
|
|
}
|
|
|
|
$isNative = $request->filled('password');
|
|
$sitePlayerId = (string) ($request->validated('site_player_id') ?? '');
|
|
if ($isNative) {
|
|
$sitePlayerId = $sitePlayerId !== ''
|
|
? $sitePlayerId
|
|
: 'native:'.Str::lower(Str::ulid());
|
|
}
|
|
|
|
if ($sitePlayerId === '') {
|
|
return ApiMessage::errorResponse($request, 'admin.player_site_player_id_required', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
$exists = Player::query()
|
|
->where('site_code', $siteCode)
|
|
->where('site_player_id', $sitePlayerId)
|
|
->exists();
|
|
|
|
if ($exists) {
|
|
return ApiMessage::errorResponse($request, 'admin.player_already_registered', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
if ($isNative) {
|
|
$username = trim((string) $request->validated('username', ''));
|
|
if ($username === '') {
|
|
return ApiMessage::errorResponse($request, 'admin.player_native_username_required', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
$usernameTaken = Player::query()
|
|
->where('site_code', $siteCode)
|
|
->where('username', $username)
|
|
->where('auth_source', PlayerAuthSource::LOTTERY_NATIVE)
|
|
->exists();
|
|
|
|
if ($usernameTaken) {
|
|
return ApiMessage::errorResponse($request, 'admin.player_username_taken', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
}
|
|
|
|
$agentNodeId = $admin->isSuperAdmin()
|
|
? $this->resolveAgentNodeIdForSuperAdmin($request->validated('agent_node_id'), $siteCode)
|
|
: $admin->primaryAgentNodeId();
|
|
|
|
if ($agentNodeId === null) {
|
|
return ApiMessage::errorResponse(
|
|
$request,
|
|
'admin.player_create_agent_required',
|
|
ErrorCode::ValidationFailed->value,
|
|
null,
|
|
422,
|
|
);
|
|
}
|
|
|
|
if (! $admin->isSuperAdmin()) {
|
|
$agent = AdminAgentScope::primaryAgentNode($admin);
|
|
if ($agent === null || (int) $agentNodeId !== (int) $agent->id) {
|
|
return ApiMessage::errorResponse($request, 'admin.player_create_agent_forbidden', ErrorCode::AdminForbidden->value, null, 403);
|
|
}
|
|
}
|
|
|
|
$agent = AgentNode::query()->findOrFail($agentNodeId);
|
|
if ($request->has('rebate_rate')) {
|
|
$rebateLimitValidator->assertPlayerRebateWithinAgent(
|
|
$agent,
|
|
(float) $request->input('rebate_rate', 0),
|
|
(float) $request->input('extra_rebate_rate', 0),
|
|
);
|
|
}
|
|
|
|
$creditLimit = $request->has('credit_limit')
|
|
? (int) $request->input('credit_limit', 0)
|
|
: ($isNative ? 0 : 0);
|
|
|
|
$player = \Illuminate\Support\Facades\DB::transaction(function () use (
|
|
$agent,
|
|
$agentProfileService,
|
|
$playerCreditService,
|
|
$request,
|
|
$isNative,
|
|
$siteCode,
|
|
$agentNodeId,
|
|
$sitePlayerId,
|
|
$creditLimit,
|
|
): Player {
|
|
$agentProfileService->assertMayIncreasePlayerCredit($agent, $creditLimit);
|
|
|
|
$player = Player::query()->create([
|
|
'site_code' => $siteCode,
|
|
'agent_node_id' => $agentNodeId,
|
|
'site_player_id' => $sitePlayerId,
|
|
'auth_source' => $isNative ? PlayerAuthSource::LOTTERY_NATIVE : PlayerAuthSource::MAIN_SITE_SSO,
|
|
'funding_mode' => $isNative ? PlayerFundingMode::CREDIT : PlayerFundingMode::WALLET,
|
|
'username' => $isNative ? trim((string) $request->validated('username')) : $request->validated('username'),
|
|
'password_hash' => $isNative ? Hash::make((string) $request->validated('password')) : null,
|
|
'nickname' => $request->validated('nickname'),
|
|
'default_currency' => $request->validated('default_currency', 'NPR'),
|
|
'status' => $request->validated('status', 0),
|
|
]);
|
|
|
|
if ($request->has('credit_limit') || $isNative) {
|
|
$playerCreditService->upsertAccount($player, [
|
|
'credit_limit' => $creditLimit,
|
|
]);
|
|
}
|
|
|
|
$agentProfileService->refreshAllocatedCredit($agent);
|
|
|
|
if ($request->has('rebate_rate')) {
|
|
\Illuminate\Support\Facades\DB::table('player_rebate_profiles')->insert([
|
|
'player_id' => $player->id,
|
|
'game_type' => '*',
|
|
'inherit_from_agent' => false,
|
|
'rebate_rate' => (float) $request->input('rebate_rate', 0),
|
|
'extra_rebate_rate' => (float) $request->input('extra_rebate_rate', 0),
|
|
'created_at' => now(),
|
|
'updated_at' => now(),
|
|
]);
|
|
}
|
|
|
|
return $player;
|
|
});
|
|
|
|
return ApiResponse::success(PlayerApiPresenter::listItem($player))->setStatusCode(201);
|
|
}
|
|
|
|
private function resolveAgentNodeIdForSuperAdmin(mixed $requested, string $siteCode): ?int
|
|
{
|
|
if ($requested !== null && (int) $requested > 0) {
|
|
return (int) $requested;
|
|
}
|
|
|
|
$siteId = \App\Models\AdminSite::query()->where('code', $siteCode)->value('id');
|
|
if ($siteId === null) {
|
|
return null;
|
|
}
|
|
|
|
$rootId = \App\Models\AgentNode::query()
|
|
->where('admin_site_id', (int) $siteId)
|
|
->where('depth', 0)
|
|
->value('id');
|
|
|
|
return $rootId !== null ? (int) $rootId : null;
|
|
}
|
|
}
|