kang
96545f87f6
- 在 AgentNodeProfileController 中添加对父代理能力授予的验证,确保子代理的权限在父代理范围内。 - 更新多个请求类,统一代理资料字段的验证逻辑,提升代码复用性。 - 引入 AgentProfileFieldRules 以简化代理资料更新请求的规则定义。 - 在 AgentProfile 模型中设置主键为 agent_node_id,确保与代理节点的关联性。 - 更新错误信息,增加对授信额度和占成比例的验证,确保数据一致性。
149 lines
5.7 KiB
PHP
149 lines
5.7 KiB
PHP
<?php
|
|
|
|
namespace App\Services\Agent;
|
|
|
|
use App\Models\AdminRole;
|
|
use App\Models\AdminSite;
|
|
use App\Models\AdminUser;
|
|
use App\Models\AgentNode;
|
|
use App\Services\Integration\IntegrationSiteService;
|
|
use App\Support\AdminUserStatus;
|
|
use Illuminate\Support\Facades\DB;
|
|
use Illuminate\Validation\ValidationException;
|
|
|
|
final class AgentSiteProvisioningService
|
|
{
|
|
/** @var list<string> */
|
|
private const LINE_ROOT_ROLE_SLUGS = [
|
|
'prd.agent.view',
|
|
'prd.agent.manage',
|
|
'prd.users.manage',
|
|
'prd.users.view_finance',
|
|
'prd.users.view_cs',
|
|
'prd.tickets.view',
|
|
'prd.report.view',
|
|
'prd.wallet_reconcile.view',
|
|
'prd.wallet_reconcile.view_cs',
|
|
];
|
|
|
|
public function __construct(
|
|
private readonly IntegrationSiteService $integrationSiteService,
|
|
private readonly AgentProfileService $agentProfileService,
|
|
) {}
|
|
|
|
/**
|
|
* @param array<string, mixed> $payload site fields + name, username, password, email?, status?
|
|
* @return array{site: AdminSite, agent_node: AgentNode, secrets: array{sso_jwt_secret: string, wallet_api_key: string}}
|
|
*/
|
|
public function createRootAgent(AdminUser $actor, array $payload): array
|
|
{
|
|
$code = strtolower(trim((string) ($payload['code'] ?? '')));
|
|
$name = trim((string) ($payload['name'] ?? ''));
|
|
$username = trim((string) ($payload['username'] ?? ''));
|
|
$password = (string) ($payload['password'] ?? '');
|
|
$email = isset($payload['email']) ? trim((string) $payload['email']) : null;
|
|
$status = (int) ($payload['status'] ?? 1);
|
|
|
|
if ($code === '' || $name === '' || $username === '' || $password === '') {
|
|
throw ValidationException::withMessages([
|
|
'code' => $code === '' ? ['required'] : [],
|
|
'name' => $name === '' ? ['required'] : [],
|
|
'username' => $username === '' ? ['required'] : [],
|
|
'password' => $password === '' ? ['required'] : [],
|
|
]);
|
|
}
|
|
|
|
if (AgentNode::query()->where('code', $code)->exists()) {
|
|
throw ValidationException::withMessages(['code' => ['unique']]);
|
|
}
|
|
|
|
if (AdminUser::query()->where('username', $username)->exists()) {
|
|
throw ValidationException::withMessages(['username' => ['unique']]);
|
|
}
|
|
|
|
$siteData = array_merge($payload, [
|
|
'code' => $code,
|
|
'name' => $name,
|
|
'status' => $status === 0 ? 0 : 1,
|
|
]);
|
|
|
|
return DB::transaction(function () use ($actor, $siteData, $code, $name, $username, $password, $email, $status): array {
|
|
$created = $this->integrationSiteService->create($siteData);
|
|
$site = $created['site'];
|
|
$secrets = $created['secrets'];
|
|
|
|
$existingRoot = AgentNode::query()
|
|
->where('admin_site_id', $site->id)
|
|
->where('depth', 0)
|
|
->first();
|
|
|
|
if ($existingRoot !== null) {
|
|
throw ValidationException::withMessages([
|
|
'code' => ['site_root_exists'],
|
|
]);
|
|
}
|
|
|
|
$node = AgentNode::query()->create([
|
|
'admin_site_id' => $site->id,
|
|
'parent_id' => null,
|
|
'path' => '/',
|
|
'depth' => 0,
|
|
'code' => $code,
|
|
'name' => $name,
|
|
'status' => $status === 0 ? 0 : 1,
|
|
'created_by' => $actor->id,
|
|
'extra_json' => null,
|
|
]);
|
|
$node->path = '/'.$node->id.'/';
|
|
$node->save();
|
|
|
|
$role = AdminRole::query()->create([
|
|
'slug' => 'agent_owner_'.$node->id,
|
|
'code' => 'agent_owner_'.$node->id,
|
|
'name' => '代理账号',
|
|
'description' => '线路根代理默认角色',
|
|
'status' => $status === 0 ? 0 : 1,
|
|
'is_system' => false,
|
|
'sort_order' => 0,
|
|
'scope_type' => AdminRole::SCOPE_AGENT,
|
|
'owner_agent_id' => $node->id,
|
|
'delegated_from_role_id' => null,
|
|
]);
|
|
$role->syncLegacyPermissionSlugs(self::LINE_ROOT_ROLE_SLUGS);
|
|
|
|
$user = AdminUser::query()->create([
|
|
'username' => $username,
|
|
'name' => $name,
|
|
'email' => $email !== '' ? $email : null,
|
|
'password' => $password,
|
|
'status' => AdminUserStatus::fromAgentNodeStatus($status === 0 ? 0 : 1),
|
|
]);
|
|
|
|
DB::table('admin_user_agents')->insert([
|
|
'admin_user_id' => $user->id,
|
|
'agent_node_id' => $node->id,
|
|
'is_primary' => true,
|
|
'granted_at' => now(),
|
|
]);
|
|
$user->syncAgentRoleIds((int) $node->id, [(int) $role->id]);
|
|
|
|
$this->agentProfileService->upsertForNode($node, [
|
|
'total_share_rate' => (float) ($payload['total_share_rate'] ?? 100),
|
|
'credit_limit' => (int) ($payload['credit_limit'] ?? 0),
|
|
'rebate_limit' => (float) ($payload['rebate_limit'] ?? 0),
|
|
'default_player_rebate' => (float) ($payload['default_player_rebate'] ?? 0),
|
|
'settlement_cycle' => (string) ($payload['settlement_cycle'] ?? 'weekly'),
|
|
'can_grant_extra_rebate' => (bool) ($payload['can_grant_extra_rebate'] ?? true),
|
|
'can_create_child_agent' => (bool) ($payload['can_create_child_agent'] ?? true),
|
|
'can_create_player' => (bool) ($payload['can_create_player'] ?? true),
|
|
]);
|
|
|
|
return [
|
|
'site' => $site->fresh(),
|
|
'agent_node' => $node->fresh(['adminSite']),
|
|
'secrets' => $secrets,
|
|
];
|
|
});
|
|
}
|
|
}
|