Go to file

Zuncle 53e5d81fa8 fix(auth): 商品详情接口移至公开路由，修复未登录浏览触发登录弹窗

问题背景：
- 平台审核失败，原因：小程序页面未完整浏览即要求授权登录，属于登录规范不合规
- GET /api/app/products/:id 位于认证路由组，未登录用户访问返回 401，
  触发前端全局拦截器弹出"账号登录已过期"弹窗

修改内容：
1. router.go: 将 GET /products/:id 从 appAuthApiRouter（认证组）
   移至 appPublicApiRouter（公开组），允许未登录用户浏览商品详情
2. product.go: 针对公开端点增加安全加固
   - 增加商品 ID 参数校验（ParseInt 错误和 id<=0）
   - 将兜底错误信息从 validation.Error(err) 改为通用提示
     "商品信息获取失败"，防止原始 DB 错误泄露给未认证请求

影响范围：
- 仅影响 GET /api/app/products/:id 端点
- GET /api/app/products（商品列表）仍保留在认证组
- 该 handler 不依赖 JWT session 上下文，移至公开组后功能无变化
- 返回数据仅包含商品元信息（名称、图片、价格、库存），不含用户敏感数据

2026-03-26 14:35:25 +08:00

.agents

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

.claude/plan

Merge origin/zuncle into main

2026-03-17 16:00:23 +08:00

.claude-flow/tasks

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

.gocache

admin

2026-03-05 12:50:06 +08:00

.planning

feat(finance): implement Phase 1 core P&L service + wire into dashboard

2026-03-21 18:38:33 +08:00

.serena

邀请关系

2026-02-27 17:51:38 +08:00

.swarm

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

build

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

cmd

2026-03-21 19:00:28 +08:00

configs

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

deploy

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

docs

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

internal

fix(auth): 商品详情接口移至公开路由，修复未登录浏览触发登录弹窗

2026-03-26 14:35:25 +08:00

migrations

fix(finance): 统一收益统计口径，修复多处数据计算错误

2026-03-26 00:01:17 +08:00

openspec/changes/add-channel-badge

admin

2026-03-05 12:50:06 +08:00

scripts

fix:订单同步

2026-02-27 00:08:02 +08:00

tools

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

web

2026-03-21 19:00:28 +08:00

.DS_Store

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

.gitignore

2026-03-21 19:00:28 +08:00

.vercelignore

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

aaa.json

admin

2026-03-05 12:50:06 +08:00

AGENTS.md

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

bindbox-game

优惠券bug

2026-02-18 23:23:34 +08:00

bindboxgame_api

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

bindboxgame.json

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

BUG_FIX_REPORT.md

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

CLAUDE.md

docs: create roadmap (2 phases)

2026-03-21 16:37:24 +08:00

Dockerfile

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

exploit_report_20260311.txt

fix(channel): 修复渠道统计GMV重复计数和商城直购误计入

2026-03-16 21:41:39 +08:00

go.mod

任务中心的问题

2026-02-27 16:07:12 +08:00

go.sum

任务中心的问题

2026-02-27 16:07:12 +08:00

main.go

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

Makefile

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

README.md

feat: Add user spending dashboard, update database schema, and refine various API endpoints and service logic.

2026-02-21 21:33:19 +08:00

README.md

mini-chat

接口文档

接口文档：http://127.0.0.1:9991/swagger/index.html
心跳检测：http://127.0.0.1:9991/system/health

服务地址

https://mini-chat.1024tool.vip/swagger/index.html

打包命令

MAC

CGO_ENABLED=0 GOOS=windows GOARCH=amd64 go build -ldflags "-s -w" -tags timetzdata -trimpath -o build/bindbox.exe .

export DOCKER_DEFAULT_PLATFORM=linux/amd64 docker build -t zfc931912343/bindbox-game:v1.10 . docker push zfc931912343/bindbox-game:v1.10

docker pull zfc931912343/bindbox-game:v1.10 &&docker rm -f bindbox-game && docker run -d --name bindbox-game -p 9991:9991 zfc931912343/bindbox-game:v1.10

Languages

Go 97.8%

HTML 1.1%

JavaScript 0.6%

Makefile 0.2%

Shell 0.2%