migate function to framework 2

Author: tobenot

scripts/copy-templates.js

@@ -1,18 +1,28 @@
 const fs = require('fs');
 const path = require('path');
 
-const srcDir = path.join(__dirname, '..', 'src', 'templates');
-const distDir = path.join(__dirname, '..', 'dist', 'templates');
+const appTemplatesSrc = path.join(__dirname, '..', 'src', 'templates');
+const appTemplatesDist = path.join(__dirname, '..', 'dist', 'templates');
+const frameworkTemplatesSrc = path.join(__dirname, '..', 'src', 'framework', 'templates');
+const frameworkTemplatesDist = path.join(__dirname, '..', 'dist', 'framework', 'templates');
 
-if (!fs.existsSync(distDir)) {
-	fs.mkdirSync(distDir, { recursive: true });
+if (!fs.existsSync(appTemplatesDist)) fs.mkdirSync(appTemplatesDist, { recursive: true });
+if (!fs.existsSync(frameworkTemplatesDist)) fs.mkdirSync(frameworkTemplatesDist, { recursive: true });
+
+if (fs.existsSync(frameworkTemplatesSrc)) {
+	fs.readdirSync(frameworkTemplatesSrc).forEach(file => {
+		fs.copyFileSync(path.join(frameworkTemplatesSrc, file), path.join(frameworkTemplatesDist, file));
+	});
+	console.log('✅ Framework templates copied');
+} else {
+	console.log('ℹ️  No framework templates');
 }
 
-if (fs.existsSync(srcDir)) {
-	fs.readdirSync(srcDir).forEach(file => {
-		fs.copyFileSync(path.join(srcDir, file), path.join(distDir, file));
+if (fs.existsSync(appTemplatesSrc)) {
+	fs.readdirSync(appTemplatesSrc).forEach(file => {
+		fs.copyFileSync(path.join(appTemplatesSrc, file), path.join(appTemplatesDist, file));
 	});
-	console.log('✅ Templates copied successfully');
+	console.log('✅ App templates copied');
 } else {
-	console.log('⚠️  No templates directory found');
-} 
+	console.log('ℹ️  No app templates');
+}

src/app.ts

@@ -2,16 +2,16 @@ import { fastify, FastifyInstance } from 'fastify';
 import { fastifyTRPCPlugin } from '@trpc/server/adapters/fastify';
 import cors from '@fastify/cors';
 import * as jwt from 'jsonwebtoken';
-import { authRouter } from './routers/auth';
-import { userRouter } from './routers/user';
+import { authRouter } from './framework/routers/auth';
+import { userRouter } from './framework/routers/user';
 import { announcementRouter } from './framework/routers/announcement';
 import { corsDebugRouter } from './framework/routers/cors-debug';
 import { echoRouter } from './framework/routers/echo';
 import { router } from './trpc';
 import { join } from 'path';
 import { corsPluginOptions, corsMiddleware } from './middleware';
 import { getCorsConfig } from './config/cors';
-import { testCors } from './utils/cors-test';
+import { testCors } from './framework/utils/cors-test';
 
 export type AppRouter = ReturnType<typeof createAppRouter>;
 

src/framework/routers/auth.ts

@@ -0,0 +1,100 @@
+import { z } from 'zod';
+import { publicProcedure, router } from '../../trpc';
+import { prisma } from '../../db';
+import { Resend } from 'resend';
+import { randomBytes, createHash } from 'crypto';
+import * as jwt from 'jsonwebtoken';
+import * as fs from 'fs';
+import * as path from 'path';
+import { config } from '../../config';
+
+const resend = new Resend(process.env.RESEND_API_KEY);
+
+const emailTemplatePath = path.join(__dirname, '../templates/magic-link-email.html');
+const emailTemplate = fs.readFileSync(emailTemplatePath, 'utf-8');
+
+function buildMagicLink(token: string): string {
+	const frontendUrl = config.getFrontendUrl();
+	if (frontendUrl.includes('#')) {
+		const [base, hash] = frontendUrl.split('#', 2);
+		const url = new URL(base);
+		url.searchParams.set('token', token);
+		return `${url.toString()}#${hash}`;
+	}
+	const url = new URL(frontendUrl);
+	url.searchParams.set('token', token);
+	return url.toString();
+}
+
+export const authRouter = router({
+	healthCheck: publicProcedure
+		.query(async () => {
+			const result = {
+				status: 'ok',
+				timestamp: new Date().toISOString(),
+				message: 'Backend is online'
+			};
+			return result;
+		}),
+
+	requestLoginLink: publicProcedure
+		.input(z.object({ email: z.string().email() }))
+		.mutation(async ({ input: { email } }) => {
+			const user = await prisma.user.upsert({
+				where: { email },
+				update: {},
+				create: { email },
+			});
+
+			const rawToken = randomBytes(32).toString('hex');
+			const hashedToken = createHash('sha256').update(rawToken).digest('hex');
+			const expiresAt = new Date(Date.now() + 15 * 60 * 1000);
+
+			await prisma.authToken.create({
+				data: { token: hashedToken, userId: user.id, expiresAt },
+			});
+
+			const magicLink = buildMagicLink(rawToken);
+
+			const emailHtml = emailTemplate.replace(/\{\{magicLink\}\}/g, magicLink);
+			const emailText = `请点击以下链接登录:\n${magicLink}\n\n如果按钮无法点击，请将链接复制到浏览器中打开。该链接15分钟内有效。`;
+
+			if (!config.isProduction) {
+				console.log(`✨ Magic Link for ${email}: ${magicLink}`);
+			}
+
+			try {
+				await resend.emails.send({
+					from: `${config.email.fromName || 'YourApp'} <${config.email.from}>`,
+					to: email,
+					subject: '登录到 YourApp',
+					html: emailHtml,
+					text: emailText,
+				});
+				console.log(`📧 Email sent successfully to ${email}`);
+			} catch (emailError) {
+				console.error(`❌ Failed to send email to ${email}:`, emailError);
+			}
+
+			return { success: true };
+		}),
+
+	verifyMagicToken: publicProcedure
+		.input(z.object({ token: z.string() }))
+		.query(async ({ input }) => {
+			const hashedToken = createHash('sha256').update(input.token).digest('hex');
+			const authToken = await prisma.authToken.findUnique({ where: { token: hashedToken } });
+			if (!authToken || new Date() > authToken.expiresAt) {
+				throw new Error('链接无效或已过期。');
+			}
+			const sessionToken = jwt.sign(
+				{ userId: authToken.userId },
+				process.env.JWT_SECRET!,
+				{ expiresIn: '7d' }
+			);
+			await prisma.authToken.delete({ where: { id: authToken.id } });
+			return { sessionToken };
+		}),
+});
+
+

src/framework/routers/llm-proxy.ts

@@ -1,5 +1,5 @@
 import { FastifyInstance, FastifyPluginCallback } from 'fastify';
-import { LlmClient, ChatCompletionParams } from '../../utils/llm-client';
+import { LlmClient, ChatCompletionParams } from '../utils/llm-client';
 
 export const llmProxyRoutes: FastifyPluginCallback = (server: FastifyInstance, _opts, done) => {
 	server.post('/v1/chat/completions', async (request, reply) => {

src/framework/routers/user.ts

@@ -0,0 +1,14 @@
+import { protectedProcedure, router } from '../../trpc';
+import { prisma } from '../../db';
+
+export const userRouter = router({
+	getMe: protectedProcedure.query(async ({ ctx }) => {
+		const user = await prisma.user.findUnique({
+			where: { id: ctx.user.userId },
+			select: { id: true, email: true, createdAt: true },
+		});
+		return user;
+	}),
+});
+
+

src/framework/templates/magic-link-email.html

@@ -0,0 +1,69 @@
+<!DOCTYPE html>
+<html lang="zh-CN">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>安全登录 | Carrot Web Game</title>
+    <style>
+        * { margin: 0; padding: 0; box-sizing: border-box; font-family: 'Segoe UI', 'Helvetica Neue', Arial, sans-serif; }
+        body { background-color: #f8fcf6; padding: 20px; display: flex; justify-content: center; align-items: center; min-height: 100vh; color: #2c3e29; }
+        .container { max-width: 600px; width: 100%; background-color: #ffffff; border-radius: 12px; overflow: hidden; box-shadow: 0 5px 25px rgba(46, 125, 50, 0.1); }
+        .header { background: linear-gradient(to right, #4CAF50, #2E7D32); padding: 30px 40px; text-align: center; }
+        .header h1 { color: white; font-size: 26px; font-weight: 600; margin-bottom: 5px; }
+        .header p { color: rgba(255, 255, 255, 0.85); font-size: 16px; }
+        .content { padding: 40px; line-height: 1.6; }
+        .content p { margin-bottom: 25px; font-size: 16px; color: #4a4a4a; }
+        .login-button-container { text-align: center; margin: 35px 0; }
+        .login-button { display: inline-block; background: linear-gradient(to right, #43A047, #2E7D32); color: white; padding: 16px 45px; border-radius: 8px; font-weight: 600; font-size: 18px; text-decoration: none; transition: all 0.3s ease; box-shadow: 0 4px 15px rgba(76, 175, 80, 0.3); border: none; cursor: pointer; }
+        .login-button:hover { transform: translateY(-2px); box-shadow: 0 6px 20px rgba(76, 175, 80, 0.4); }
+        .validity { display: flex; align-items: center; justify-content: center; background: #FFF8E1; color: #F57F17; padding: 12px; border-radius: 8px; font-size: 15px; font-weight: 500; margin: 25px 0; }
+        .validity svg { margin-right: 10px; }
+        .security-note { background: #E8F5E9; border-left: 4px solid #4CAF50; padding: 18px; border-radius: 0 8px 8px 0; margin-top: 30px; font-size: 14.5px; color: #2E7D32; }
+        .footer { padding: 25px; text-align: center; background: #f5f9f4; color: #5a6e56; font-size: 13px; border-top: 1px solid #e8f5e9; }
+        .tech-stack { display: flex; justify-content: center; gap: 12px; margin-top: 15px; flex-wrap: wrap; }
+        .tech-item { background: #e8f5e9; color: #2E7D32; padding: 6px 14px; border-radius: 20px; font-size: 12px; font-weight: 500; }
+        @media (max-width: 480px) { .content { padding: 25px; } .header { padding: 25px 20px; } .login-button { padding: 14px 35px; font-size: 16px; } }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <div class="header">
+            <h1>安全登录 Carrot Web Game</h1>
+            <p>只需点击即可访问您的账户</p>
+        </div>
+        <div class="content">
+            <p>您好！</p>
+            <p>我们已收到您的登录请求。请点击下方按钮直接安全登录您的账户：</p>
+            <div class="login-button-container">
+                <a href="{{magicLink}}" class="login-button">立即登录</a>
+            </div>
+            <p style="word-break: break-all; color:#2E7D32; font-size:14px; margin-top:10px;">
+                如果按钮无法点击，请将以下链接复制到浏览器中打开：<br/>
+                <a href="{{magicLink}}" style="color:#2E7D32;">{{magicLink}}</a>
+            </p>
+            <div class="validity">
+                <svg width="18" height="18" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <circle cx="12" cy="12" r="10"></circle>
+                    <polyline points="12 6 12 12 16 14"></polyline>
+                </svg>
+                此链接将在15分钟后失效
+            </div>
+            <p>如果您未请求登录，请忽略此邮件。您的账户安全对我们至关重要。</p>
+            <div class="security-note">
+                <strong>安全提示：</strong> 请勿将此邮件或登录链接分享给任何人。我们的系统绝不会要求您提供密码。
+            </div>
+        </div>
+        <div class="footer">
+            <div class="tech-stack">
+                <div class="tech-item">Fastify</div>
+                <div class="tech-item">tRPC</div>
+                <div class="tech-item">Prisma</div>
+                <div class="tech-item">PostgreSQL</div>
+            </div>
+            <p>&copy; 2025 Carrot Web Game | 端到端类型安全架构</p>
+        </div>
+    </div>
+</body>
+</html>
+
+

src/framework/utils/cors-test.ts

@@ -0,0 +1,63 @@
+import { getCorsConfig, isOriginAllowed } from '../../config/cors';
+
+export class CorsTester {
+	private corsConfig = getCorsConfig();
+
+	testOrigin(origin: string) {
+		const details: string[] = [];
+		const allowed = isOriginAllowed(origin, this.corsConfig);
+		details.push(`测试源: ${origin}`);
+		details.push(`是否允许: ${allowed ? '✅ 是' : '❌ 否'}`);
+		details.push(`CORS启用状态: ${this.corsConfig.enabled ? '✅ 启用' : '❌ 禁用'}`);
+		details.push(`环境: ${process.env.NODE_ENV || 'development'}`);
+		details.push(`允许的源列表:`);
+		this.corsConfig.origins.forEach((orig, index) => { details.push(`  ${index + 1}. ${orig}`); });
+		return { allowed, config: this.corsConfig, details };
+	}
+
+	printConfig() {
+		console.log('🔧 CORS配置详情:');
+		console.log('='.repeat(50));
+		console.log(`启用状态: ${this.corsConfig.enabled ? '✅ 启用' : '❌ 禁用'}`);
+		console.log(`环境: ${process.env.NODE_ENV || 'development'}`);
+		console.log(`最大缓存时间: ${this.corsConfig.maxAge}秒`);
+		console.log(`允许的方法: ${this.corsConfig.methods.join(', ')}`);
+		console.log(`允许的头部: ${this.corsConfig.allowedHeaders.join(', ')}`);
+		console.log(`支持凭据: ${this.corsConfig.credentials ? '是' : '否'}`);
+		console.log('允许的源:');
+		this.corsConfig.origins.forEach((origin, index) => { console.log(`  ${index + 1}. ${origin}`); });
+		console.log('='.repeat(50));
+	}
+
+	testCommonOrigins() {
+		console.log('🧪 测试常见前端源:');
+		console.log('='.repeat(50));
+		const commonOrigins = [
+			'http://localhost:3000',
+			'http://localhost:5173',
+			'http://localhost:5174',
+			'http://127.0.0.1:3000',
+			'http://127.0.0.1:5173',
+			'http://127.0.0.1:5174',
+			'https://tobenot.top',
+			'https://bwb.tobenot.top',
+			'https://invalid-domain.com',
+		];
+		commonOrigins.forEach(origin => { const result = this.testOrigin(origin); console.log(`${result.allowed ? '✅' : '❌'} ${origin}`); });
+		console.log('='.repeat(50));
+	}
+}
+
+export function testCors(origin?: string) {
+	const tester = new CorsTester();
+	if (origin) {
+		const result = tester.testOrigin(origin);
+		console.log('🧪 CORS测试结果:');
+		result.details.forEach(detail => console.log(detail));
+	} else {
+		tester.printConfig();
+		tester.testCommonOrigins();
+	}
+}
+
+