nexus-terminal/packages/backend/src/audit/audit.controller.ts

import { Request, Response } from 'express';
import { AuditLogService } from './audit.service';
import { AuditLogActionType } from '../types/audit.types';

const auditLogService = new AuditLogService();

export class AuditController {
    /**
     * 获取审计日志列表 (GET /api/v1/audit-logs)
     * 支持分页和过滤查询参数: limit, offset, actionType, startDate, endDate
     */
    async getAuditLogs(req: Request, res: Response): Promise<void> {
        try {
            // 解析查询参数
            const limit = parseInt(req.query.limit as string || '50', 10);
            const offset = parseInt(req.query.offset as string || '0', 10);
            // 修正：从 req.query 中读取 action_type (snake_case)
            const actionType = req.query.action_type as AuditLogActionType | undefined;
            const startDate = req.query.startDate ? parseInt(req.query.startDate as string, 10) : undefined;
            const endDate = req.query.endDate ? parseInt(req.query.endDate as string, 10) : undefined;
            // 解析 searchTerm 参数
            const searchTerm = req.query.search as string | undefined;


            // 输入验证 (基本)
            if (isNaN(limit) || limit <= 0) {
                res.status(400).json({ message: '无效的 limit 参数' });
                return;
            }
            if (isNaN(offset) || offset < 0) {
                res.status(400).json({ message: '无效的 offset 参数' });
                return;
            }
            if (startDate && isNaN(startDate)) {
                 res.status(400).json({ message: '无效的 startDate 参数' });
                return;
            }
             if (endDate && isNaN(endDate)) {
                 res.status(400).json({ message: '无效的 endDate 参数' });
                return;
            }

            // 将 searchTerm 传递给 service
            const result = await auditLogService.getLogs(limit, offset, actionType, startDate, endDate, searchTerm);

            // 解析 details 字段从 JSON 字符串到对象（如果需要）
            const logsWithParsedDetails = result.logs.map(log => {
                let parsedDetails: any = null;
                if (log.details) {
                    try {
                        parsedDetails = JSON.parse(log.details);
                    } catch (e) {
                        console.warn(`[Audit Log] Failed to parse details for log ID ${log.id}:`, e);
                        parsedDetails = { raw: log.details, parseError: true };
                    }
                }
                return { ...log, details: parsedDetails };
            });


            res.status(200).json({
                logs: logsWithParsedDetails,
                total: result.total,
                limit,
                offset
            });
        } catch (error: any) {
            console.error('获取审计日志时出错:', error);
            res.status(500).json({ message: '获取审计日志失败', error: error.message });
        }
    }
}