chore(buildTest): add start.bat to run on windows

fix(build): add start.bat to run on windows(#89 )
refactor(admin): Move Admin Web Route to user model
2024-12-27 20:13:55 +08:00 · 2024-12-27 20:09:08 +08:00 · 2024-12-27 19:27:33 +08:00 · 2024-12-27 19:25:59 +08:00 · 2024-12-25 19:21:50 +08:00 · 2024-12-25 19:04:42 +08:00
216 changed files with 228671 additions and 1584 deletions
--- a/.dockerignore
+++ b/.dockerignore
@@ -0,0 +1,29 @@
 # Ignore Docker Compose configuration files
 docker-compose.yaml
 docker-compose-dev.yaml
 # Ignore development Dockerfile
 Dockerfile
 Dockerfile.dev
 docker-dev.sh
 # Ignore the data directory
 data/
 # Ignore version control system directories
 .git/
 # Ignore log and temporary files
 *.log
 *.tmp
 *.swp
 # Ignore editor/IDE configuration files
 .vscode/
 .idea/
 # Ignore binaries and build cache
 release/
 bin/
 *.exe
 *.out
--- a/.gitattributes
+++ b/.gitattributes
@@ -1 +1,2 @@
-resources/web/**/* linguist-vendored
+resources/web/**/* linguist-vendored
 resources/web2/**/* linguist-vendored
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -55,6 +55,13 @@ jobs:
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
      - uses: actions/checkout@v4
        with:
          repository: lejianwen/rustdesk-api-web
          path: rustdesk-api-web
          ref: master
      - name: Set up Go environment
        uses: actions/setup-go@v4
@@ -66,14 +73,12 @@ jobs:
        with:
          node-version: '20'
      - name: build rustdesk-api-web
        working-directory: rustdesk-api-web
        run: |
          git clone ${{ env.WEBCLIENT_SOURCE_LOCATION }}
          cd rustdesk-api-web
          npm install
          npm run build
-          mkdir ../resources/admin/ -p
+          mkdir -p ../resources/admin/
          cp -ar dist/* ../resources/admin/
      - name: tidy
@@ -96,6 +101,8 @@ jobs:
          if [ "${{ matrix.job.goos }}" = "windows" ]; then
            sudo apt-get install gcc-mingw-w64-x86-64 zip -y
            GOOS=${{ matrix.job.goos }} GOARCH=${{ matrix.job.platform }} CC=x86_64-w64-mingw32-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain.exe ./cmd/apimain.go
            echo @echo off > release/start.bat
            echo cmd /c \"%~dp0apimain.exe\" >> release/start.bat
            zip -r ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}} ./release
          else
            if [ "${{ matrix.job.platform }}" = "arm64" ]; then
@@ -121,15 +128,92 @@ jobs:
          name: rustdesk-api-${{ matrix.job.goos }}-${{ matrix.job.platform }}
          path: |
            ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}}
      - name: Upload to GitHub Release
        uses: softprops/action-gh-release@v2
        with:
          files: |
            ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}}
        #          tag_name: ${{ env.LATEST_TAG }}
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
      - name: Generate Changelog
        run: npx changelogithub # or changelogithub@0.12 if ensure the stable result
        env:
          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
  deb-package:
    name: debian package - ${{ matrix.job.platform }}
    needs: build
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
        job:
          - { platform: "amd64", goos: "linux", debian_platform: "amd64", crossbuild_package: ""}
          - { platform: "arm64", goos: "linux", debian_platform: "arm64", crossbuild_package: "crossbuild-essential-arm64" }
          - { platform: "armv7l", goos: "linux", debian_platform: "armhf", crossbuild_package: "crossbuild-essential-armhf" }
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Create packaging env
        run: |
          sudo apt update
          DEBIAN_FRONTEND=noninteractive sudo apt install -y devscripts build-essential debhelper pkg-config ${{ matrix.job.crossbuild_package }}
          mkdir -p debian-build/${{ matrix.job.platform }}/bin
      - name: Get tag version
        id: get_tag
        run: |
          TAG_VERSION="${GITHUB_REF##*/}"
          VERSION="${TAG_VERSION#v}" 
          echo "TAG_VERSION=$TAG_VERSION" >> $GITHUB_ENV
          echo "VERSION=$VERSION" >> $GITHUB_ENV
      - name: Update changelog
        run: |
          DATE=$(date -R)
          sed -i "1i rustdesk-api-server (${VERSION}) stable; urgency=medium\n\n  * Automatically generated release for version ${VERSION}.\n\n -- GitHub Actions <actions@github.com>  ${DATE}\n" debian/changelog
      - name: Download binaries
        uses: actions/download-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.goos }}-${{ matrix.job.platform }}
          path: .
      - name: Unzip binaries
        run: |
          mkdir -p ${{ matrix.job.platform }}
          tar -xzf ${{ matrix.job.goos }}-${{ matrix.job.platform }}.tar.gz -C ${{ matrix.job.platform }}
      - name: Build package for ${{ matrix.job.platform }} arch
        run: |
          mv ${{ matrix.job.platform }}/release/apimain debian-build/${{ matrix.job.platform }}/bin/rustdesk-api 
          chmod -v a+x debian-build/${{ matrix.job.platform }}/bin/*
          mkdir -p data
          cp -vr debian systemd conf data resources runtime debian-build/${{ matrix.job.platform }}/
          cat debian/control.tpl | sed 's/{{ ARCH }}/${{ matrix.job.debian_platform }}/' > debian-build/${{ matrix.job.platform }}/debian/control
          cd debian-build/${{ matrix.job.platform }}/
          debuild -i -us -uc -b -a${{ matrix.job.debian_platform}}
      - name: Upload artifact
        uses: actions/upload-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.debian_platform }}
          path: |
            debian-build/*.deb
      - name: Create Release
        uses: softprops/action-gh-release@v2
        with:
          files: |
            debian-build/rustdesk-api-server_*_${{ matrix.job.debian_platform }}.deb
  docker:
    name: Push Docker Image
    needs: build
@@ -191,7 +275,6 @@ jobs:
        run: |
          mkdir -p ${{ matrix.job.platform }}
          tar -xzf ${{ matrix.job.goos }}-${{ matrix.job.platform }}.tar.gz -C ${{ matrix.job.platform }}
          file ${{ matrix.job.platform }}/apimain
      - name: Build and push Docker image to Docker Hub ${{ matrix.job.platform }}
        if: ${{ env.SKIP_DOCKER_HUB == 'false' }}  # Only run this step if SKIP_DOCKER_HUB is false
--- a/.github/workflows/build_test.yml
+++ b/.github/workflows/build_test.yml
@@ -0,0 +1,337 @@
 name: Build Test
 on:
  workflow_dispatch:
    inputs:
      BASE_IMAGE_NAMESPACE:
        description: 'Base image namespace (Default: Your Github username)'
        required: false
        default: ''
      DOCKERHUB_IMAGE_NAMESPACE:
        description: 'Docker Hub image namespace (Default: Your Github username)'
        required: false
        default: ''
      GHCR_IMAGE_NAMESPACE:
        description: 'GitHub Container Registry image namespace (Default: Your Github username)'
        required: false
        default: ''
      SKIP_DOCKER_HUB:
        description: 'Set to true to skip pushing to Docker Hub (default: false)'
        required: false
        default: 'false'
      SKIP_GHCR:
        description: 'Set to true to skip pushing to GHCR (default: false)'
        required: false
        default: 'false'
      WEBCLIENT_SOURCE_LOCATION:
        description: 'Web Client API Repository'
        required: true
        default: 'https://github.com/lejianwen/rustdesk-api-web'
 env:
  LATEST_TAG: latest
  WEBCLIENT_SOURCE_LOCATION: ${{ github.event.inputs.WEBCLIENT_SOURCE_LOCATION || 'https://github.com/lejianwen/rustdesk-api-web' }}
  BASE_IMAGE_NAMESPACE: ${{ github.event.inputs.BASE_IMAGE_NAMESPACE || github.actor }}
  DOCKERHUB_IMAGE_NAMESPACE: ${{ github.event.inputs.DOCKERHUB_IMAGE_NAMESPACE || github.actor }}
  GHCR_IMAGE_NAMESPACE: ${{ github.event.inputs.GHCR_IMAGE_NAMESPACE || github.actor }}
  SKIP_DOCKER_HUB: ${{ github.event.inputs.SKIP_DOCKER_HUB || 'false' }}
  SKIP_GHCR: ${{ github.event.inputs.SKIP_GHCR || 'false' }}
 jobs:
  build:
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
        job:
          - { platform: "amd64", goos: "linux", file_ext: "tar.gz" }
          - { platform: "arm64", goos: "linux", file_ext: "tar.gz" }
          - { platform: "armv7l", goos: "linux", file_ext: "tar.gz" }
          - { platform: "amd64", goos: "windows", file_ext: "zip" }
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
      - uses: actions/checkout@v4
        with:
          repository: lejianwen/rustdesk-api-web
          path: rustdesk-api-web
          ref: master
      - name: Set up Go environment
        uses: actions/setup-go@v4
        with:
          go-version: '1.22'  # 选择 Go 版本
      - name: Set up npm
        uses: actions/setup-node@v2
        with:
          node-version: '20'
      - name: build rustdesk-api-web
        working-directory: rustdesk-api-web
        run: |
          npm install
          npm run build
          mkdir -p ../resources/admin/
          cp -ar dist/* ../resources/admin/
      - name: tidy
        run: go mod tidy
      - name: swag
        run: |
          go install github.com/swaggo/swag/cmd/swag@latest
          swag init -g cmd/apimain.go --output docs/api --instanceName api --exclude http/controller/admin
          swag init -g cmd/apimain.go --output docs/admin --instanceName admin --exclude http/controller/api
      - name: Build for ${{ matrix.job.goos }}-${{ matrix.job.platform }}
        run: |
          mkdir release -p
          cp -ar resources release/
          cp -ar docs release/
          cp -ar conf release/
          mkdir -p release/data
          mkdir -p release/runtime
          if [ "${{ matrix.job.goos }}" = "windows" ]; then
            sudo apt-get install gcc-mingw-w64-x86-64 zip -y
            GOOS=${{ matrix.job.goos }} GOARCH=${{ matrix.job.platform }} CC=x86_64-w64-mingw32-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain.exe ./cmd/apimain.go
            echo @echo off > release/start.bat
            echo cmd /c \"%~dp0apimain.exe\" >> release/start.bat
            zip -r ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}} ./release
          else
            if [ "${{ matrix.job.platform }}" = "arm64" ]; then
                wget https://musl.cc/aarch64-linux-musl-cross.tgz
                tar -xf aarch64-linux-musl-cross.tgz
                export PATH=$PATH:$PWD/aarch64-linux-musl-cross/bin
                GOOS=${{ matrix.job.goos }} GOARCH=${{ matrix.job.platform }} CC=aarch64-linux-musl-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain ./cmd/apimain.go
            elif [ "${{ matrix.job.platform }}" = "armv7l" ]; then
                wget https://musl.cc/armv7l-linux-musleabihf-cross.tgz
                tar -xf armv7l-linux-musleabihf-cross.tgz
                export PATH=$PATH:$PWD/armv7l-linux-musleabihf-cross/bin
                GOOS=${{ matrix.job.goos }} GOARCH=arm GOARM=7 CC=armv7l-linux-musleabihf-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain ./cmd/apimain.go
            else
              sudo apt-get install musl musl-dev musl-tools -y
              GOOS=${{ matrix.job.goos }} GOARCH=${{ matrix.job.platform }} CC=musl-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain ./cmd/apimain.go
            fi
            tar -czf ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}} ./release
          fi
      - name: Upload artifact
        uses: actions/upload-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.goos }}-${{ matrix.job.platform }}
          path: |
            ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}}
      - name: Upload to GitHub Release
        uses: softprops/action-gh-release@v2
        with:
          files: |
            ${{ matrix.job.goos}}-${{ matrix.job.platform }}.${{matrix.job.file_ext}}
          tag_name: test
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
  deb-package:
    name: debian package - ${{ matrix.job.platform }}
    needs: build
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
        job:
          - { platform: "amd64", goos: "linux", debian_platform: "amd64", crossbuild_package: ""}
          - { platform: "arm64", goos: "linux", debian_platform: "arm64", crossbuild_package: "crossbuild-essential-arm64" }
          - { platform: "armv7l", goos: "linux", debian_platform: "armhf", crossbuild_package: "crossbuild-essential-armhf" }
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Create packaging env
        run: |
          sudo apt update
          DEBIAN_FRONTEND=noninteractive sudo apt install -y devscripts build-essential debhelper pkg-config ${{ matrix.job.crossbuild_package }}
          mkdir -p debian-build/${{ matrix.job.platform }}/bin
      - name: Download binaries
        uses: actions/download-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.goos }}-${{ matrix.job.platform }}
          path: .
      - name: Unzip binaries
        run: |
          mkdir -p ${{ matrix.job.platform }}
          tar -xzf ${{ matrix.job.goos }}-${{ matrix.job.platform }}.tar.gz -C ${{ matrix.job.platform }}
      - name: Build package for ${{ matrix.job.platform }} arch
        run: |
          mv ${{ matrix.job.platform }}/release/apimain debian-build/${{ matrix.job.platform }}/bin/rustdesk-api 
          chmod -v a+x debian-build/${{ matrix.job.platform }}/bin/*
          mkdir -p data
          cp -vr debian systemd conf data resources runtime debian-build/${{ matrix.job.platform }}/
          cat debian/control.tpl | sed 's/{{ ARCH }}/${{ matrix.job.debian_platform }}/' > debian-build/${{ matrix.job.platform }}/debian/control
          cd debian-build/${{ matrix.job.platform }}/
          debuild -i -us -uc -b -a${{ matrix.job.debian_platform}}
      - name: Upload artifact
        uses: actions/upload-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.debian_platform }}
          path: |
            debian-build/*.deb
      - name: Upload to GitHub Release
        uses: softprops/action-gh-release@v2
        with:
          tag_name: test
          files: |
            debian-build/rustdesk-api-server_*_${{ matrix.job.debian_platform }}.deb
  docker:
    name: Push Docker Image
    needs: build
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
        job:
          - { platform: "amd64", goos: "linux",  docker_platform: "linux/amd64" }
          - { platform: "arm64", goos: "linux",  docker_platform: "linux/arm64" }
          - { platform: "armv7l", goos: "linux",  docker_platform: "linux/arm/v7" }
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Log in to Docker Hub
        if: ${{ env.SKIP_DOCKER_HUB == 'false' }}  # Only log in if SKIP_DOCKER_HUB is false
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_ACCESS_TOKEN }}
      - name: Log in to GitHub Container Registry
        if: ${{ env.SKIP_GHCR == 'false' }}  # Only log in if GHCR push is enabled
        uses: docker/login-action@v2
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: Extract version from tag
        id: vars
        run: |
          if [[ "${GITHUB_REF}" == refs/tags/* ]]; then
            echo "TAG=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV
          else
            echo "TAG=test" >> $GITHUB_ENV  # Default to 'test' if not a tag
          fi
      - name: Extract metadata (tags, labels) for Docker
        id: meta
        uses: docker/metadata-action@v4
        with:
          images: ${{ env.BASE_IMAGE_NAMESPACE }}/rustdesk-api
      - name: Download binaries
        uses: actions/download-artifact@v4
        with:
          name: rustdesk-api-${{ matrix.job.goos }}-${{ matrix.job.platform }}
          path: ./
      - name: Unzip binaries
        run: |
          mkdir -p ${{ matrix.job.platform }}
          tar -xzf ${{ matrix.job.goos }}-${{ matrix.job.platform }}.tar.gz -C ${{ matrix.job.platform }}
      - name: Build and push Docker image to Docker Hub ${{ matrix.job.platform }}
        if: ${{ env.SKIP_DOCKER_HUB == 'false' }}  # Only run this step if SKIP_DOCKER_HUB is false
        uses: docker/build-push-action@v5
        with:
          context: "."
          file: ./Dockerfile
          platforms: ${{ matrix.job.docker_platform }}
          push: true
          provenance: false
          build-args: |
            BUILDARCH=${{ matrix.job.platform }}
          tags: |
            ${{ env.DOCKERHUB_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-${{ matrix.job.platform }}
          labels: ${{ steps.meta.outputs.labels }}
      - name: Build and push Docker image to GHCR ${{ matrix.job.platform }}
        if: ${{ env.SKIP_GHCR == 'false' }}  # Only run this step if SKIP_GHCR is false
        uses: docker/build-push-action@v5
        with:
          context: "."
          file: ./Dockerfile
          platforms: ${{ matrix.job.docker_platform }}
          push: true
          provenance: false
          build-args: |
            BUILDARCH=${{ matrix.job.platform }}
          tags: |
            ghcr.io/${{ env.GHCR_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-${{ matrix.job.platform }}
          labels: ${{ steps.meta.outputs.labels }}
  #
  docker-manifest:
    name: Push Docker Manifest
    needs: docker
    runs-on: ubuntu-latest
    steps:
      - name: Extract version from tag
        id: vars
        run: |
          if [[ "${GITHUB_REF}" == refs/tags/* ]]; then
            echo "TAG=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV
          else
            echo "TAG=test" >> $GITHUB_ENV  # Default to 'test' if not a tag
          fi
      - name: Log in to Docker Hub
        if: ${{ env.SKIP_DOCKER_HUB == 'false' }}  # Only log in if Docker Hub push is enabled
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_ACCESS_TOKEN }}
      - name: Log in to GitHub Container Registry
        if: ${{ env.SKIP_GHCR == 'false' }}  # Only log in if GHCR push is enabled
        uses: docker/login-action@v2
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: Create and push manifest Docker Hub (:version)
        if: ${{ env.SKIP_DOCKER_HUB == 'false' }}
        uses: Noelware/docker-manifest-action@master
        with:
          base-image: ${{ env.BASE_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}
          extra-images: ${{ env.DOCKERHUB_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-amd64,
            ${{ env.DOCKERHUB_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-armv7l,
            ${{ env.DOCKERHUB_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-arm64
          push: true
      - name: Create and push manifest GHCR (:version)
        if: ${{ env.SKIP_GHCR == 'false' }}
        uses: Noelware/docker-manifest-action@master
        with:
          base-image: ghcr.io/${{ env.BASE_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}
          extra-images: ghcr.io/${{ env.GHCR_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-amd64,
            ghcr.io/${{ env.GHCR_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-armv7l,
            ghcr.io/${{ env.GHCR_IMAGE_NAMESPACE }}/rustdesk-api:${{ env.TAG }}-arm64
          push: true
          amend: true
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -1,95 +0,0 @@
 name: Build and Release
 on:
  workflow_dispatch:
 #    tags:
 #      - 'v*.*.*'  # 当推送带有版本号的 tag（例如 v1.0.0）时触发工作流
 #on:
 #  push:
 #    branches: [ "master" ]
 #  pull_request:
 #    branches: [ "master" ]
 jobs:
  build:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        goos: [ linux, windows ] # 指定要构建的操作系统
        goarch: [ amd64 ]         # 指定架构
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
      - name: Set up Go environment
        uses: actions/setup-go@v4
        with:
          go-version: '1.22'  # 选择 Go 版本
      - name: Set up npm
        uses: actions/setup-node@v2
        with:
          node-version: '20'
      - name: install gcc zip musl
        run: |
          if [ "${{ matrix.goos }}" = "windows" ]; then
            sudo apt-get install gcc-mingw-w64-x86-64 zip -y
          else
            sudo apt-get install musl musl-dev musl-tools -y
          fi
      - name: build rustdesk-api-web
        run: |
          git clone https://github.com/lejianwen/rustdesk-api-web
          cd rustdesk-api-web
          npm install
          npm run build
          mkdir ../resources/admin/ -p
          cp -ar dist/* ../resources/admin/
      - name: tidy
        run: go mod tidy
      - name: swag
        run: |
          go install github.com/swaggo/swag/cmd/swag@latest
          swag init -g cmd/apimain.go --output docs/api --instanceName api --exclude http/controller/admin
          swag init -g cmd/apimain.go --output docs/admin --instanceName admin --exclude http/controller/api
      - name: Build for ${{ matrix.goos }}-${{ matrix.goarch }}
        run: |
          mkdir release -p
          cp -ar resources release/
          cp -ar docs release/
          cp -ar conf release/
          mkdir -p release/data
          mkdir -p release/runtime
          if [ "${{ matrix.goos }}" = "windows" ]; then
            GOOS=${{ matrix.goos }} GOARCH=${{ matrix.goarch }} CC=x86_64-w64-mingw32-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain.exe ./cmd/apimain.go
            zip -r ${{ matrix.goos}}-${{ matrix.goarch }}.zip ./release
          else
            GOOS=${{ matrix.goos }} GOARCH=${{ matrix.goarch }} CC=musl-gcc CGO_LDFLAGS="-static" CGO_ENABLED=1 go build -ldflags "-s -w" -o ./release/apimain ./cmd/apimain.go
            tar -czf ${{ matrix.goos}}-${{ matrix.goarch }}.tar.gz ./release 
          fi
      - name: Upload artifact
        uses: actions/upload-artifact@v4
        with:
          name: myapp-${{ matrix.goos }}-${{ matrix.goarch }}
          path: |
            ${{ matrix.goos}}-${{ matrix.goarch }}.tar.gz
            ${{ matrix.goos}}-${{ matrix.goarch }}.zip
      - name: Upload to GitHub Release
        uses: softprops/action-gh-release@v2
        with:
          files: |
            ${{ matrix.goos}}-${{ matrix.goarch }}.tar.gz
            ${{ matrix.goos}}-${{ matrix.goarch }}.zip
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
--- a/.gitignore
+++ b/.gitignore
@@ -1,10 +1,13 @@
 .idea
 runtime/*
-!runtime/cache/.gitignore
+!runtime
 !runtime/cache
 !runtime/cache/.gitkeep
 go.sum
 resources/*
 !resources/public/upload/.gitignore
 !resources/web
 !resources/web2
 !resources/i18n
 release
 data
--- a/Dockerfile.dev
+++ b/Dockerfile.dev
@@ -0,0 +1,94 @@
 # Use build arguments for Go version and architecture
 ARG GO_VERSION=1.22
 ARG BUILDARCH=amd64
 # Stage 1: Builder Stage
 # FROM golang:${GO_VERSION}-alpine AS builder
 FROM crazymax/xgo:${GO_VERSION} AS builder-backend
 # Set up working directory
 WORKDIR /app
 # Step 1: Copy the source code
 COPY . .
 # use --mount=type=cache,target=/go/pkg/mod to cache the go mod
 # Step 2: Download dependencies
 RUN --mount=type=cache,target=/go/pkg/mod \
    go mod tidy && go mod download && go install github.com/swaggo/swag/cmd/swag@latest
 # Step 3: Run swag build script
 RUN --mount=type=cache,target=/go/pkg/mod \
    swag init -g cmd/apimain.go --output docs/api --instanceName api --exclude http/controller/admin && \
    swag init -g cmd/apimain.go --output docs/admin --instanceName admin --exclude http/controller/api 
 # Step 4: Build the Go application with CGO enabled and specified ldflags
 RUN --mount=type=cache,target=/go/pkg/mod \
    CGO_ENABLED=1 GOOS=linux go build -a \
    -ldflags "-s -w --extldflags '-static -fpic'" \
    -installsuffix cgo -o release/apimain cmd/apimain.go
 # Stage 2: Frontend Build Stage (builder2)
 FROM node:18-alpine AS builder-admin-frontend
 # Set working directory
 WORKDIR /frontend
 ARG COUNTRY
 # Install required tools without caching index to minimize image size
 RUN if [ "$COUNTRY" = "CN" ] ; then \
        echo "It is in China, updating the repositories"; \
        sed -i 's#https\?://dl-cdn.alpinelinux.org/alpine#https://mirrors.tuna.tsinghua.edu.cn/alpine#g' /etc/apk/repositories; \
    fi && \
    apk update && apk add --no-cache git
 ARG FREONTEND_GIT_REPO=https://github.com/lejianwen/rustdesk-api-web.git
 ARG FRONTEND_GIT_BRANCH=master
 # Clone the frontend repository
 RUN git clone -b $FRONTEND_GIT_BRANCH $FREONTEND_GIT_REPO .
 # Install required tools without caching index to minimize image size
 RUN if [ "$COUNTRY" = "CN" ] ; then \
        echo "It is in China, updating NPM_CONFIG_REGISTRY"; \
        export NPM_CONFIG_REGISTRY="https://mirrors.huaweicloud.com/repository/npm/"; \
    fi && \
    npm install && npm run build
 # Stage 2: Final Image
 FROM alpine:latest
 # Set up working directory
 WORKDIR /app
 # Install necessary runtime dependencies
 # Install required tools without caching index to minimize image size
 ARG COUNTRY
 RUN if [ "$COUNTRY" = "CN" ] ; then \
        echo "It is in China, updating the repositories"; \
        sed -i 's#https\?://dl-cdn.alpinelinux.org/alpine#https://mirrors.tuna.tsinghua.edu.cn/alpine#g' /etc/apk/repositories; \
    fi && \
    apk update && apk add --no-cache tzdata file
 # Copy the built application and resources from the builder stage
 COPY --from=builder-backend /app/release /app/
 COPY --from=builder-backend /app/conf /app/conf/
 COPY --from=builder-backend /app/resources /app/resources/
 COPY --from=builder-backend /app/docs /app/docs/
 # Copy frontend build from builder2 stage
 COPY --from=builder-admin-frontend /frontend/dist/ /app/resources/admin/
 # Ensure the binary is correctly built and linked
 RUN file /app/apimain && \
    mkdir -p /app/data && \
    mkdir -p /app/runtime
 # Set up a volume for persistent data
 VOLUME /app/data
 # Expose the necessary port
 EXPOSE 21114
 # Define the command to run the application
 CMD ["./apimain"]
--- a/21
+++ b/21
@@ -0,0 +1,21 @@
 MIT License
 Copyright (c) 2024-present Lejianwen and contributors
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in all
 copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
--- a/README.md
+++ b/README.md
@@ -19,7 +19,7 @@
    - 登录
    - 地址簿
    - 群组
-    - 授权登录，支持`github`和`google`登录，支持`web后台`授权登录
+    - 授权登录，支持`github`, `google` 和 `OIDC` 登录，支持`web后台`授权登录
    - i18n
 - Web Admin
    - 用户管理
@@ -39,6 +39,9 @@
    - 自动获取ID服务器和KEY
    - 自动获取地址簿
    - 游客通过临时分享链接直接远程到设备
    - v2 Preview
 - CLI
    - 重置管理员密码
 ## 使用前准备
@@ -92,7 +95,7 @@
 #### 登录
- 添加了`github`和`google`授权登录，需要在后台配置好就可以用了，具体可看后台OAuth配置
+- 添加了`github`, `google` 以及`OIDC`授权登录，需要在后台配置好就可以用了，具体可看后台OAuth配置
 - 添加了web后台授权登录,点击后直接登录后台就自动登录客户端了
 ![pc_login](docs/pc_login.png)
@@ -121,11 +124,13 @@
 3. 分组可以自定义，方便管理，暂时支持两种类型: `共享组` 和 `普通组`
   ![web_admin_gr](docs/web_admin_gr.png)
-4. You can directly launch the client, or open the web client for convenient use; you can also share it with guests, allowing them to remotely access the device through the web client.
+4. 可以直接打开webclient，方便使用；也可以分享给游客，游客可以直接通过webclient远程到设备
   ![web_webclient](docs/admin_webclient.png)
-5. Oauth,暂时只支持了`Github`和`Google`, 需要创建一个`OAuth App`，然后配置到后台
+5. Oauth,支持了`Github`, `Google` 以及 `OIDC`, 需要创建一个`OAuth App`，然后配置到后台
   ![web_admin_oauth](docs/web_admin_oauth.png)
    - 对于`Google` 和 `Github`, `Issuer` 和 `Scopes`不需要填写.
    - 对于`OIDC`, `Issuer`是必须的。`Scopes`是可选的，默认为 `openid,profile,email`. 确保可以获取 `sub`,`email` 和`preferred_username`
    - `github oauth app`在`Settings`->`Developer settings`->`OAuth Apps`->`New OAuth App`
      中创建,地址 [https://github.com/settings/developers](https://github.com/settings/developers)
    - `Authorization callback URL`填写`http://<your server[:port]>/api/oauth/callback`
@@ -135,9 +140,12 @@
 1. 如果已经登录了后台，web client将自动直接登录
 2. 如果没登录后台，点击右上角登录即可，api server已经自动配置好了
   ![webclient_conf](docs/webclient_conf.png)
 3. 登录后，会自动同步ID服务器和KEY
 4. 登录后，会将地址簿自动保存到web client中，方便使用
 5. 现已支持`v2 Preview`，访问路径是`/webclient2`
   ![webclientv2](./docs/webclientv2.png)
 6. `v2 preview` 部署，参考[WIKI](https://github.com/lejianwen/rustdesk-api/wiki)
 ### 自动化文档: 使用 Swag 生成 API 文档，方便开发者理解和使用 API。
@@ -145,6 +153,17 @@
 2. PC端文档 `<youer server[:port]>/swagger/index.html`
   ![api_swag](docs/api_swag.png)
 ### CLI
 ```bash
 # 查看帮助
 ./apimain -h
 ```
 #### 重置管理员密码
 ```bash
 ./apimain reset-admin-pwd <pwd>
 ```
 ## 安装与运行
 ### 相关配置
@@ -157,6 +176,8 @@
 lang: "en"
 app:
  web-client: 1  # 1:启用 0:禁用
  register: false #是否开启注册
  show-swagger: 0 #是否显示swagger文档
 gin:
  api-addr: "0.0.0.0:21114"
  mode: "release"
@@ -189,31 +210,39 @@ proxy:
 ### 环境变量
 变量名前缀是`RUSTDESK_API`，环境变量如果存在将覆盖配置文件中的配置
-| 变量名                                | 说明                                   | 示例                          |
+| 变量名                                               | 说明                                                      | 示例                           |
-|------------------------------------|--------------------------------------|-----------------------------|
+|---------------------------------------------------|---------------------------------------------------------|------------------------------|
-| TZ                                 | 时区                                   | Asia/Shanghai               |
+| TZ                                                | 时区                                                      | Asia/Shanghai                |
-| RUSTDESK_API_LANG                  | 语言                                   | `en`,`zh-CN`                |
+| RUSTDESK_API_LANG                                 | 语言                                                      | `en`,`zh-CN`                 |
-| RUSTDESK_API_APP_WEB_CLIENT        | 是否启用web-client; 1:启用,0:不启用; 默认启用     | 1                           |
+| RUSTDESK_API_APP_WEB_CLIENT                       | 是否启用web-client; 1:启用,0:不启用; 默认启用                        | 1                            |
-| -----GIN配置-----                    | ----------                           | ----------                  |
+| RUSTDESK_API_APP_REGISTER                         | 是否开启注册; `true`, `false`  默认`false`                      | `false`                      |
-| RUSTDESK_API_GIN_TRUST_PROXY       | 信任的代理IP列表，以`,`分割，默认信任所有              | 192.168.1.2,192.168.1.3     |
+| RUSTDESK_API_APP_SHOW_SWAGGER                     | 是否可见swagger文档;`1`显示，`0`不显示，默认`0`不显示                     | `1`                          |
-| -----------GORM配置----------------  | ------------------------------------ | --------------------------- |
+| -----ADMIN配置-----                                 | ----------                                              | ----------                   |
-| RUSTDESK_API_GORM_TYPE             | 数据库类型sqlite或者mysql，默认sqlite          | sqlite                      |
+| RUSTDESK_API_ADMIN_TITLE                          | 后台标题                                                    | `RustDesk Api Admin`         |
-| RUSTDESK_API_GORM_MAX_IDLE_CONNS   | 数据库最大空闲连接数                           | 10                          |
+| RUSTDESK_API_ADMIN_HELLO                          | 后台欢迎语，可以使用`html`                                        |                              |
-| RUSTDESK_API_GORM_MAX_OPEN_CONNS   | 数据库最大打开连接数                           | 100                         |
+| RUSTDESK_API_ADMIN_HELLO_FILE                     | 后台欢迎语文件，如果内容多，使用文件更方便。<br>会覆盖`RUSTDESK_API_ADMIN_HELLO` | `./conf/admin/hello.html`    |
-| RUSTDESK_API_RUSTDESK_PERSONAL     | 是否启用个人版API， 1:启用,0:不启用； 默认启用         | 1                           |
+| -----GIN配置-----                                   | ----------                                              | ----------                   |
-| -----MYSQL配置-----                  | ----------                           | ----------                  |
+| RUSTDESK_API_GIN_TRUST_PROXY                      | 信任的代理IP列表，以`,`分割，默认信任所有                                 | 192.168.1.2,192.168.1.3      |
-| RUSTDESK_API_MYSQL_USERNAME        | mysql用户名                             | root                        |
+| -----------GORM配置----------------                 | ------------------------------------                    | ---------------------------  |
-| RUSTDESK_API_MYSQL_PASSWORD        | mysql密码                              | 111111                      |
+| RUSTDESK_API_GORM_TYPE                            | 数据库类型sqlite或者mysql，默认sqlite                             | sqlite                       |
-| RUSTDESK_API_MYSQL_ADDR            | mysql地址                              | 192.168.1.66:3306           |
+| RUSTDESK_API_GORM_MAX_IDLE_CONNS                  | 数据库最大空闲连接数                                              | 10                           |
-| RUSTDESK_API_MYSQL_DBNAME          | mysql数据库名                            | rustdesk                    |
+| RUSTDESK_API_GORM_MAX_OPEN_CONNS                  | 数据库最大打开连接数                                              | 100                          |
-| -----RUSTDESK配置-----               | ---------------                      | ----------                  |
+| RUSTDESK_API_RUSTDESK_PERSONAL                    | 是否启用个人版API， 1:启用,0:不启用； 默认启用                            | 1                            |
-| RUSTDESK_API_RUSTDESK_ID_SERVER    | Rustdesk的id服务器地址                     | 192.168.1.66:21116          |
+| -----MYSQL配置-----                                 | ----------                                              | ----------                   |
-| RUSTDESK_API_RUSTDESK_RELAY_SERVER | Rustdesk的relay服务器地址                  | 192.168.1.66:21117          |
+| RUSTDESK_API_MYSQL_USERNAME                       | mysql用户名                                                | root                         |
-| RUSTDESK_API_RUSTDESK_API_SERVER   | Rustdesk的api服务器地址                    | http://192.168.1.66:21114   |
+| RUSTDESK_API_MYSQL_PASSWORD                       | mysql密码                                                 | 111111                       |
-| RUSTDESK_API_RUSTDESK_KEY          | Rustdesk的key                         | 123456789                   |
+| RUSTDESK_API_MYSQL_ADDR                           | mysql地址                                                 | 192.168.1.66:3306            |
-| ----PROXY配置-----                   | ---------------                      | ----------                  |
+| RUSTDESK_API_MYSQL_DBNAME                         | mysql数据库名                                               | rustdesk                     |
-| RUSTDESK_API_PROXY_ENABLE          | 是否启用代理:`false`, `true`               | `false`                     |
+| -----RUSTDESK配置-----                              | ---------------                                         | ----------                   |
-| RUSTDESK_API_PROXY_HOST            | 代理地址                                 | `http://127.0.0.1:1080`     |
+| RUSTDESK_API_RUSTDESK_ID_SERVER                   | Rustdesk的id服务器地址                                        | 192.168.1.66:21116           |
 | RUSTDESK_API_RUSTDESK_RELAY_SERVER                | Rustdesk的relay服务器地址                                     | 192.168.1.66:21117           |
 | RUSTDESK_API_RUSTDESK_API_SERVER                  | Rustdesk的api服务器地址                                       | http://192.168.1.66:21114    |
 | RUSTDESK_API_RUSTDESK_KEY                         | Rustdesk的key                                            | 123456789                    |
 | RUSTDESK_API_RUSTDESK_KEY_FILE                    | Rustdesk存放key的文件                                        | `./conf/data/id_ed25519.pub` |
 | RUSTDESK_API_RUSTDESK_WEBCLIENT_MAGIC_QUERYONLINE | Web client v2 中是否启用新的在线状态查询方法; `1`:启用,`0`:不启用,默认不启用     | `0`                          |
 | ----PROXY配置-----                                  | ---------------                                         | ----------                   |
 | RUSTDESK_API_PROXY_ENABLE                         | 是否启用代理:`false`, `true`                                  | `false`                      |
 | RUSTDESK_API_PROXY_HOST                           | 代理地址                                                    | `http://127.0.0.1:1080`      |
 ### 运行
@@ -234,189 +263,8 @@ proxy:
    lejianwen/rustdesk-api
    ```
-2. 使用`docker compose`
+2. 使用`docker compose`，参考[WIKI](https://github.com/lejianwen/rustdesk-api/wiki)
   - 简单示例
   ```yaml
   services:
      rustdesk-api:
       container_name: rustdesk-api
       environment:
         - TZ=Asia/Shanghai
         - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
         - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
         - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
         - RUSTDESK_API_RUSTDESK_KEY=<key>
       ports:
         - 21114:21114
       image: lejianwen/rustdesk-api
       volumes:
         - /data/rustdesk/api:/app/data #将数据库挂载出来方便备份
       networks:
         - rustdesk-net
       restart: unless-stopped
   ```
   - 根据rustdesk官方提供的示例，加上自己的rustdesk-api
     - 如果是使用的系统生成的KEY，去掉`-k <key>`参数，在启动后运行`docker-compose logs hbbs`或者`cat ./data/id_ed25519.pub`查看KEY，然后再修改`RUSTDESK_API_RUSTDESK_KEY=<key>`再执行`docker-compose up -d`
      ```yaml
      networks:
        rustdesk-net:
          external: false
      services:
        hbbs:
          container_name: hbbs
          ports:
            - 21115:21115
            - 21116:21116 # 自定义 hbbs 映射端口
            - 21116:21116/udp # 自定义 hbbs 映射端口
            - 21118:21118 # web client
          image: rustdesk/rustdesk-server
          command: hbbs -r <relay-server-ip[:port]> -k <key> # 填入个人域名或 IP + hbbr 暴露端口
          volumes:
            - ./data:/root # 自定义挂载目录
          networks:
            - rustdesk-net
          depends_on:
            - hbbr
          restart: unless-stopped
          deploy:
            resources:
              limits:
                memory: 64M
        hbbr:
          container_name: hbbr
          ports:
            - 21117:21117 # 自定义 hbbr 映射端口
            - 21119:21119 # web client
          image: rustdesk/rustdesk-server
          command: hbbr -k <key>
          volumes:
            - ./data:/root
          networks:
            - rustdesk-net
          restart: unless-stopped
          deploy:
            resources:
              limits:
                memory: 64M
        rustdesk-api:
          container_name: rustdesk-api
          environment:
            - TZ=Asia/Shanghai
            - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
            - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
            - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
            - RUSTDESK_API_RUSTDESK_KEY=<key>
          ports:
            - 21114:21114
          image: lejianwen/rustdesk-api
          volumes:
            - /data/rustdesk/api:/app/data #将数据库挂载出来方便备份
          networks:
            - rustdesk-net
          restart: unless-stopped
      ```
   - S6的镜像
     - 如果使用***自定义KEY***，会需要修改启动脚本，覆盖镜像中的`/etc/s6-overlay/s6-rc.d/hbbr/run`和`/etc/s6-overlay/s6-rc.d/hbbr/run`
         1. 创建`hbbr/run`，自定义KEY才需要
            ```bash
            #!/command/with-contenv sh
            cd /data
            PARAMS=
            [ "${ENCRYPTED_ONLY}" = "1" ] && PARAMS="-k ${KEY}"
            /usr/bin/hbbr $PARAMS
            ```
         2. 创建`hbbs/run`，自定义KEY才需要
             ```bash
             #!/command/with-contenv sh
             sleep 2
             cd /data
             PARAMS=
             [ "${ENCRYPTED_ONLY}" = "1" ] && PARAMS="-k ${KEY}"
             /usr/bin/hbbs -r $RELAY $PARAMS
             ```
         3. 修改`docker-compose.yml`中的`s6`部分
         ```yaml
         networks:
           rustdesk-net:
             external: false
         services:
           rustdesk-server:
             container_name: rustdesk-server
             ports:
               - 21115:21115
               - 21116:21116
               - 21116:21116/udp
               - 21117:21117
               - 21118:21118
               - 21119:21119
             image: rustdesk/rustdesk-server-s6:latest
             environment:
               - RELAY=192.168.1.66:21117
               - ENCRYPTED_ONLY=1
               - KEY=<key>  #自定义KEY
             volumes:
               - ./data:/data
               - ./hbbr/run:/etc/s6-overlay/s6-rc.d/hbbr/run 
               - ./hbbs/run:/etc/s6-overlay/s6-rc.d/hbbs/run 
             restart: unless-stopped
           rustdesk-api:
             container_name: rustdesk-api
             ports:
               - 21114:21114
             image: lejianwen/rustdesk-api
             environment:
               - TZ=Asia/Shanghai
               - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
               - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
               - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
               - RUSTDESK_API_RUSTDESK_KEY=<key>
             volumes:
               - /data/rustdesk/api:/app/data #将数据库挂载
             networks:
               - rustdesk-net
             restart: unless-stopped
         ```
   - 如果使用***系统生成的KEY***或者***自定义KEY_PUB,KEY_PRIV***，不需要修改启动脚本，但要在生成KEY后获取到KEY再`docker-compose up -d`
       ```yaml
       networks:
         rustdesk-net:
           external: false
       services:
         rustdesk-server:
           container_name: rustdesk-server
           ports:
             - 21115:21115
             - 21116:21116
             - 21116:21116/udp
             - 21117:21117
             - 21118:21118
             - 21119:21119
           image: rustdesk/rustdesk-server-s6:latest
           environment:
             - RELAY=192.168.1.66:21117
             - ENCRYPTED_ONLY=1
           volumes:
             - ./data:/data
           restart: unless-stopped
         rustdesk-api:
           container_name: rustdesk-api
           ports:
             - 21114:21114
           image: lejianwen/rustdesk-api
           environment:
             - TZ=Asia/Shanghai
             - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
             - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
             - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
             - RUSTDESK_API_RUSTDESK_KEY=<key> #系统生成的KEY
           volumes:
             - /data/rustdesk/api:/app/data #将数据库挂载
           networks:
             - rustdesk-net
           restart: unless-stopped
       ```
 #### 下载release直接运行
 [下载地址](https://github.com/lejianwen/rustdesk-api/releases)
@@ -459,21 +307,7 @@ proxy:
 6. 打开浏览器访问`http://<your server[:port]>/_admin/`，默认用户名密码为`admin`，请及时更改密码。
-#### nginx反代
+
 在`nginx`中配置反代
 ```
 server {
    listen <your port>;
    server_name <your server>;
    location / {
        proxy_pass http://<api-server[:port]>;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
 }
 ```
 ## 其他
 - [修改客户端ID](https://github.com/abdullah-erturk/RustDesk-ID-Changer)
--- a/README_EN.md
+++ b/README_EN.md
@@ -18,7 +18,7 @@ desktop software that provides self-hosted solutions.
    - Login
    - Address Book
    - Groups
-    - Authorized login, supports `GitHub` and `Google` login, supports `web admin` authorized login
+    - Authorized login, supports `GitHub`, `Google` and `OIDC` login, supports `web admin` authorized login
    - i18n
 - Web Admin
    - User Management
@@ -38,7 +38,8 @@ desktop software that provides self-hosted solutions.
    - Automatically obtain ID server and KEY
    - Automatically obtain address book
    - Visitors are remotely to the device via a temporary sharing link
-
+- CLI
    - Reset admin password
 ## Prerequisites
 ### [Rustdesk](https://github.com/rustdesk/rustdesk)
@@ -93,7 +94,7 @@ Basic implementation of the PC client's primary interfaces.Supports the Personal
 #### Login
- Added `GitHub` and `Google` login, which can be used after configuration in the admin panel. See the OAuth
+- Added `GitHub`, `Google` and `OIDC` login, which can be used after configuration in the admin panel. See the OAuth
  configuration section for details.
 - Added authorization login for the web admin panel.
@@ -128,9 +129,11 @@ installation are `admin` `admin`, please change the password immediately.
 4. You can directly launch the client or open the web client for convenience; you can also share it with guests, who can remotely access the device via the web client.
   ![web_webclient](docs/en_img/admin_webclient.png)
-5. OAuth support: Currently, `GitHub` and `Google`  is supported. You need to create an `OAuth App` and configure it in
+5. OAuth support: Currently, `GitHub`, `Google` and `OIDC`  are supported. You need to create an `OAuth App` and configure it in
   the admin panel.
   ![web_admin_oauth](docs/en_img/web_admin_oauth.png)
    - For `Google` and `Github`, you don't need to fill the `Issuer` and `Scpoes`
    - For `OIDC`, you must set the `Issuer`. And `Scopes` is optional which default is `openid,email,profile`, please make sure this `Oauth App` can access `sub`, `email` and `preferred_username`
    - Create a `GitHub OAuth App`
      at `Settings` -> `Developer settings` -> `OAuth Apps` -> `New OAuth App` [here](https://github.com/settings/developers).
    - Set the `Authorization callback URL` to `http://<your server[:port]>/api/oauth/callback`,
@@ -141,9 +144,11 @@ installation are `admin` `admin`, please change the password immediately.
 1. If you're already logged into the admin panel, the web client will log in automatically.
 2. If you're not logged in, simply click the login button in the top right corner, and the API server will be
   pre-configured.
   ![webclient_conf](docs/webclient_conf.png)
 3. After logging in, the ID server and key will be automatically synced.
 4. The address book will also be automatically saved to the web client for convenient use.
 5. Now supports `v2 Preview`, accessible at `/webclient2`
   ![webclientv2](./docs/webclientv2.png)
 6. `v2 preview` deployment, [WIKI](https://github.com/lejianwen/rustdesk-api/wiki)
 ### Automated Documentation : API documentation is generated using Swag, making it easier for developers to understand and use the API.
@@ -151,6 +156,17 @@ installation are `admin` `admin`, please change the password immediately.
 2. PC client docs: `<your server[:port]>/swagger/index.html`
   ![api_swag](docs/api_swag.png)
 ### CLI
 ```bash
 # help
 ./apimain -h
 ```
 #### Reset admin password
 ```bash
 ./apimain reset-admin-pwd <pwd>
 ```
 ## Installation and Setup
 ### Configuration
@@ -163,6 +179,8 @@ installation are `admin` `admin`, please change the password immediately.
 lang: "en"
 app:
  web-client: 1  # web client route 1:open 0:close  
  register: false #register enable
  show-swagger: 0 #show swagger 1:open 0:close
 gin:
  api-addr: "0.0.0.0:21114"
  mode: "release"
@@ -195,31 +213,39 @@ proxy:
 ### Environment Variables
 The prefix for variable names is `RUSTDESK_API`. If environment variables exist, they will override the configurations in the configuration file.
-| Variable Name                      | Description                                               | Example                       |
+| Variable Name                                       | Description                                                                                                  | Example                       |
-|------------------------------------|-----------------------------------------------------------|-------------------------------|
+|-----------------------------------------------------|--------------------------------------------------------------------------------------------------------------|-------------------------------|
-| TZ                                 | timezone                                                  | Asia/Shanghai                 |
+| TZ                                                  | timezone                                                                                                     | Asia/Shanghai                 |
-| RUSTDESK_API_LANG                  | Language                                                  | `en`,`zh-CN`                  |
+| RUSTDESK_API_LANG                                   | Language                                                                                                     | `en`,`zh-CN`                  |
-| RUSTDESK_API_APP_WEB_CLIENT        | web client on/off; 1: on, 0 off, deault 1                 | 1                             |
+| RUSTDESK_API_APP_WEB_CLIENT                         | web client on/off; 1: on, 0 off, default: 1                                                                  | 1                             |
-| ----- GIN Configuration -----      | ---------------------------------------                   | ----------------------------- |
+| RUSTDESK_API_APP_REGISTER                           | register enable; `true`, `false`; default:`false`                                                            | `false`                       |
-| RUSTDESK_API_GIN_TRUST_PROXY       | Trusted proxy IPs, separated by commas.                   | 192.168.1.2,192.168.1.3       |
+| RUSTDESK_API_APP_SHOW_SWAGGER                       | swagger visible; 1: yes, 0: no; default: 0                                                                   | `0`                           |
-| ----- GORM Configuration -----     | ---------------------------------------                   | ----------------------------- |
+| ----- ADMIN Configuration-----                      | ----------                                                                                                   | ----------                    |
-| RUSTDESK_API_GORM_TYPE             | Database type (`sqlite` or `mysql`). Default is `sqlite`. | sqlite                        |
+| RUSTDESK_API_ADMIN_TITLE                            | Admin Title                                                                                                  | `RustDesk Api Admin`          |
-| RUSTDESK_API_GORM_MAX_IDLE_CONNS   | Maximum idle connections                                  | 10                            |
+| RUSTDESK_API_ADMIN_HELLO                            | Admin welcome message, you can use `html`                                                                    |                               |
-| RUSTDESK_API_GORM_MAX_OPEN_CONNS   | Maximum open connections                                  | 100                           |
+| RUSTDESK_API_ADMIN_HELLO_FILE                       | Admin welcome message file,<br>will override `RUSTDESK_API_ADMIN_HELLO`                                      | `./conf/admin/hello.html`     |
-| RUSTDESK_API_RUSTDESK_PERSONAL     | Open Personal Api 1:Enable,0:Disable                      | 1                             |
+| ----- GIN Configuration -----                       | ---------------------------------------                                                                      | ----------------------------- |
-| ----- MYSQL Configuration -----    | ---------------------------------------                   | ----------------------------- |
+| RUSTDESK_API_GIN_TRUST_PROXY                        | Trusted proxy IPs, separated by commas.                                                                      | 192.168.1.2,192.168.1.3       |
-| RUSTDESK_API_MYSQL_USERNAME        | MySQL username                                            | root                          |
+| ----- GORM Configuration -----                      | ---------------------------------------                                                                      | ----------------------------- |
-| RUSTDESK_API_MYSQL_PASSWORD        | MySQL password                                            | 111111                        |
+| RUSTDESK_API_GORM_TYPE                              | Database type (`sqlite` or `mysql`). Default is `sqlite`.                                                    | sqlite                        |
-| RUSTDESK_API_MYSQL_ADDR            | MySQL address                                             | 192.168.1.66:3306             |
+| RUSTDESK_API_GORM_MAX_IDLE_CONNS                    | Maximum idle connections                                                                                     | 10                            |
-| RUSTDESK_API_MYSQL_DBNAME          | MySQL database name                                       | rustdesk                      |
+| RUSTDESK_API_GORM_MAX_OPEN_CONNS                    | Maximum open connections                                                                                     | 100                           |
-| ----- RUSTDESK Configuration ----- | ---------------------------------------                   | ----------------------------- |
+| RUSTDESK_API_RUSTDESK_PERSONAL                      | Open Personal Api 1:Enable,0:Disable                                                                         | 1                             |
-| RUSTDESK_API_RUSTDESK_ID_SERVER    | Rustdesk ID server address                                | 192.168.1.66:21116            |
+| ----- MYSQL Configuration -----                     | ---------------------------------------                                                                      | ----------------------------- |
-| RUSTDESK_API_RUSTDESK_RELAY_SERVER | Rustdesk relay server address                             | 192.168.1.66:21117            |
+| RUSTDESK_API_MYSQL_USERNAME                         | MySQL username                                                                                               | root                          |
-| RUSTDESK_API_RUSTDESK_API_SERVER   | Rustdesk API server address                               | http://192.168.1.66:21114     |
+| RUSTDESK_API_MYSQL_PASSWORD                         | MySQL password                                                                                               | 111111                        |
-| RUSTDESK_API_RUSTDESK_KEY          | Rustdesk key                                              | 123456789                     |
+| RUSTDESK_API_MYSQL_ADDR                             | MySQL address                                                                                                | 192.168.1.66:3306             |
-| ---- PROXY -----                   | ---------------                                           | ----------                    |
+| RUSTDESK_API_MYSQL_DBNAME                           | MySQL database name                                                                                          | rustdesk                      |
-| RUSTDESK_API_PROXY_ENABLE          | proxy_enable :`false`, `true`                             | `false`                       |
+| ----- RUSTDESK Configuration -----                  | ---------------------------------------                                                                      | ----------------------------- |
-| RUSTDESK_API_PROXY_HOST            | proxy_host                                                | `http://127.0.0.1:1080`       |
+| RUSTDESK_API_RUSTDESK_ID_SERVER                     | Rustdesk ID server address                                                                                   | 192.168.1.66:21116            |
 | RUSTDESK_API_RUSTDESK_RELAY_SERVER                  | Rustdesk relay server address                                                                                | 192.168.1.66:21117            |
 | RUSTDESK_API_RUSTDESK_API_SERVER                    | Rustdesk API server address                                                                                  | http://192.168.1.66:21114     |
 | RUSTDESK_API_RUSTDESK_KEY                           | Rustdesk key                                                                                                 | 123456789                     |
 | RUSTDESK_API_RUSTDESK_KEY_FILE                      | Rustdesk key file                                                                                            | `./conf/data/id_ed25519.pub`  |
 | RUSTDESK_API_RUSTDESK_WEBCLIENT_MAGIC_QUERYONLINE   | New online query method is enabled in the web client v2; '1': Enabled, '0': Disabled, not enabled by default | `0`                           |
 | ---- PROXY -----                                    | ---------------                                                                                              | ----------                    |
 | RUSTDESK_API_PROXY_ENABLE                           | proxy_enable :`false`, `true`                                                                                | `false`                       |
 | RUSTDESK_API_PROXY_HOST                             | proxy_host                                                                                                   | `http://127.0.0.1:1080`       |
 ### Installation Steps
@@ -239,189 +265,7 @@ The prefix for variable names is `RUSTDESK_API`. If environment variables exist,
    lejianwen/rustdesk-api
    ```
-2. Using `docker-compose`
+2. Using `docker-compose`,look [WIKI](https://github.com/lejianwen/rustdesk-api/wiki)
    - Simple example:
       ```yaml
       services:
          rustdesk-api:
           container_name: rustdesk-api
           environment:
             - RUSTDESK_API_LANG=en
             - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
             - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
             - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
             - RUSTDESK_API_RUSTDESK_KEY=<key>
           ports:
             - 21114:21114
           image: lejianwen/rustdesk-api
           volumes:
             - /data/rustdesk/api:/app/data # Mount the database for easy backup
           networks:
             - rustdesk-net
           restart: unless-stopped
       ```
    - Example with RustDesk's official Docker Compose file, adding your `rustdesk-api` service:
     - If you are using a system-generated KEY, remove the `-k <key>` parameter. However, after the first startup, run `docker-compose logs hbbs` or `cat ./data/id_ed25519.pub` to view the KEY, then modify `RUSTDESK_API_RUSTDESK_KEY=<key>` and execute `docker-compose up -d` again.
       ```yaml
          networks:
            rustdesk-net:
              external: false
          services:
            hbbs:
              container_name: hbbs
              ports:
                - 21115:21115
                - 21116:21116 # 自定义 hbbs 映射端口
                - 21116:21116/udp # 自定义 hbbs 映射端口
                - 21118:21118 # web client
              image: rustdesk/rustdesk-server
              command: hbbs -r <relay-server-ip[:port]> -k <key> # 填入个人域名或 IP + hbbr 暴露端口
              volumes:
                - ./data:/root # 自定义挂载目录
              networks:
                - rustdesk-net
              depends_on:
                - hbbr
              restart: unless-stopped
              deploy:
                resources:
                  limits:
                    memory: 64M
            hbbr:
              container_name: hbbr
              ports:
                - 21117:21117 # 自定义 hbbr 映射端口
                - 21119:21119 # web client
              image: rustdesk/rustdesk-server
              command: hbbr -k <key>
              volumes:
                - ./data:/root
              networks:
                - rustdesk-net
              restart: unless-stopped
              deploy:
                resources:
                  limits:
                    memory: 64M
            rustdesk-api:
              container_name: rustdesk-api
              environment:
                - TZ=Asia/Shanghai
                - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
                - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
                - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
                - RUSTDESK_API_RUSTDESK_KEY=<key>
              ports:
                - 21114:21114
              image: lejianwen/rustdesk-api
              volumes:
                - /data/rustdesk/api:/app/data #将数据库挂载出来方便备份
              networks:
                - rustdesk-net
              restart: unless-stopped
          ```
   - S6 image
       - - If using ***custom KEY***, you will need to modify the startup script to override the `/etc/s6-overlay/s6-rc.d/hbbr/run` and `/etc/s6-overlay/s6-rc.d/hbbr/run` in the image.
           1. Create `hbbr/run`, only needed for custom KEY
              ```bash
              #!/command/with-contenv sh
              cd /data
              PARAMS=
              [ "${ENCRYPTED_ONLY}" = "1" ] && PARAMS="-k ${KEY}"
              /usr/bin/hbbr $PARAMS
              ```
           2. Create `hbbs/run`, only needed for custom KEY
               ```bash
               #!/command/with-contenv sh
               sleep 2
               cd /data
               PARAMS=
               [ "${ENCRYPTED_ONLY}" = "1" ] && PARAMS="-k ${KEY}"
               /usr/bin/hbbs -r $RELAY $PARAMS
               ```
           3. Modify the `s6` section in `docker-compose.yml`
           ```yaml
           networks:
             rustdesk-net:
               external: false
           services:
             rustdesk-server:
               container_name: rustdesk-server
               ports:
                 - 21115:21115
                 - 21116:21116
                 - 21116:21116/udp
                 - 21117:21117
                 - 21118:21118
                 - 21119:21119
               image: rustdesk/rustdesk-server-s6:latest
               environment:
                 - RELAY=192.168.1.66:21117
                 - ENCRYPTED_ONLY=1
                 - KEY=<key>  #KEY
               volumes:
                 - ./data:/data
                 - ./hbbr/run:/etc/s6-overlay/s6-rc.d/hbbr/run 
                 - ./hbbs/run:/etc/s6-overlay/s6-rc.d/hbbs/run 
               restart: unless-stopped
             rustdesk-api:
               container_name: rustdesk-api
               ports:
                 - 21114:21114
               image: lejianwen/rustdesk-api
               environment:
                 - TZ=Asia/Shanghai
                 - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
                 - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
                 - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
                 - RUSTDESK_API_RUSTDESK_KEY=<key>
               volumes:
                 - /data/rustdesk/api:/app/data 
               networks:
                 - rustdesk-net
               restart: unless-stopped
           ```
   - If using ***system-generated KEY*** or ***custom KEY_PUB, KEY_PRIV***, you do not need to modify the startup script, but you need to obtain the KEY after it is generated and then run `docker-compose up -d`
       ```yaml
       networks:
         rustdesk-net:
           external: false
       services:
         rustdesk-server:
           container_name: rustdesk-server
           ports:
             - 21115:21115
             - 21116:21116
             - 21116:21116/udp
             - 21117:21117
             - 21118:21118
             - 21119:21119
           image: rustdesk/rustdesk-server-s6:latest
           environment:
             - RELAY=192.168.1.66:21117
             - ENCRYPTED_ONLY=1
           volumes:
             - ./data:/data
           restart: unless-stopped
         rustdesk-api:
           container_name: rustdesk-api
           ports:
             - 21114:21114
           image: lejianwen/rustdesk-api
           environment:
             - TZ=Asia/Shanghai
             - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
             - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
             - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
             - RUSTDESK_API_RUSTDESK_KEY=<key>
           volumes:
             - /data/rustdesk/api:/app/data 
           networks:
             - rustdesk-net
           restart: unless-stopped
       ```
 #### Running from Release
@@ -470,21 +314,7 @@ Download the release from [release](https://github.com/lejianwen/rustdesk-api/re
 6. Open your browser and visit `http://<your server[:port]>/_admin/`, with default credentials `admin admin`. Please
   change the password promptly.
-#### nginx reverse proxy
+
 Configure reverse proxy in `nginx`
 ```
 server {
    listen <your port>;
    server_name <your server>;
    location / {
        proxy_pass http://<api-server[:port]>;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
 }
 ```
 ## Others
 - [Change client ID](https://github.com/abdullah-erturk/RustDesk-ID-Changer)
--- a/build.sh
+++ b/build.sh
@@ -1,16 +1,46 @@
 #!/bin/sh
-rm release -rf
+set -e
 # Automatically get the current environment's GOARCH; if not defined, use the detected system architecture
 GOARCH=${GOARCH:-$(go env GOARCH)}
 DOCS="true"
 # Safely remove the old release directory
 rm -rf release
 # Set Go environment variables
 go env -w GO111MODULE=on
 go env -w GOPROXY=https://goproxy.cn,direct
 go env -w CGO_ENABLED=1
 go env -w GOOS=linux
-go env -w GOARCH=amd64
+go env -w GOARCH=${GOARCH}
-swag init -g cmd/apimain.go --output docs/api --instanceName api --exclude http/controller/admin
+
-swag init -g cmd/apimain.go --output docs/admin --instanceName admin --exclude http/controller/api
+
 # Generate Swagger documentation if DOCS is not empty
 if [ -n "${DOCS}" ]; then
    # Check if swag is installed
    if ! command -v swag &> /dev/null; then
        echo "swag command not found. Please install it using:"
        echo "go install github.com/swaggo/swag/cmd/swag@latest"
        echo "Skipping Swagger documentation generation due to missing swag tool."
    else
        echo "Generating Swagger documentation..."
        swag init -g cmd/apimain.go --output docs/api --instanceName api --exclude http/controller/admin
        swag init -g cmd/apimain.go --output docs/admin --instanceName admin --exclude http/controller/api
    fi
 else
    echo "Skipping Swagger documentation generation due to DOCS is empty."
 fi
 # Compile the Go code and output it to the release directory
 go build -o release/apimain cmd/apimain.go
 # Copy resource files to the release directory
 cp -ar resources release/
 cp -ar docs release/
 cp -ar conf release/
 # Create necessary directory structures
 mkdir -p release/data
 mkdir -p release/runtime
 echo "Build and setup completed successfully."
--- a/cmd/apimain.go
+++ b/cmd/apimain.go
@@ -14,6 +14,9 @@ import (
 	"fmt"
 	"github.com/go-redis/redis/v8"
 	"github.com/nicksnyder/go-i18n/v2/i18n"
 	"github.com/spf13/cobra"
 	"os"
 	"strconv"
 )
 // @title 管理系统API
@@ -26,9 +29,79 @@ import (
 // @securitydefinitions.apikey BearerAuth
 // @in header
 // @name Authorization
 var rootCmd = &cobra.Command{
 	Use:   "apimain",
 	Short: "RUSTDESK API SERVER",
 	PersistentPreRun: func(cmd *cobra.Command, args []string) {
 		InitGlobal()
 	},
 	Run: func(cmd *cobra.Command, args []string) {
 		//gin
 		http.ApiInit()
 	},
 }
 var resetPwdCmd = &cobra.Command{
 	Use:     "reset-admin-pwd [pwd]",
 	Example: "reset-admin-pwd 123456",
 	Short:   "Reset Admin Password",
 	Args:    cobra.ExactArgs(1),
 	Run: func(cmd *cobra.Command, args []string) {
 		pwd := args[0]
 		admin := service.AllService.UserService.InfoById(1)
 		err := service.AllService.UserService.UpdatePassword(admin, pwd)
 		if err != nil {
 			fmt.Printf("reset password fail! %v \n", err)
 			return
 		}
 		fmt.Printf("reset password success! \n")
 	},
 }
 var resetUserPwdCmd = &cobra.Command{
 	Use:     "reset-pwd [userId] [pwd]",
 	Example: "reset-pwd 2 123456",
 	Short:   "Reset User Password",
 	Args:    cobra.ExactArgs(2),
 	Run: func(cmd *cobra.Command, args []string) {
 		userId := args[0]
 		pwd := args[1]
 		uid, err := strconv.Atoi(userId)
 		if err != nil {
 			fmt.Printf("userId must be int! \n")
 			return
 		}
 		if uid <= 0 {
 			fmt.Printf("userId must be greater than 0! \n")
 			return
 		}
 		u := service.AllService.UserService.InfoById(uint(uid))
 		err = service.AllService.UserService.UpdatePassword(u, pwd)
 		if err != nil {
 			fmt.Printf("reset password fail! %v \n", err)
 			return
 		}
 		fmt.Printf("reset password success! \n")
 	},
 }
 func init() {
 	rootCmd.PersistentFlags().StringVarP(&global.ConfigPath, "config", "c", "./conf/config.yaml", "choose config file")
 	rootCmd.AddCommand(resetPwdCmd, resetUserPwdCmd)
 }
 func main() {
 	if err := rootCmd.Execute(); err != nil {
 		fmt.Println(err)
 		os.Exit(1)
 	}
 }
 func InitGlobal() {
 	//配置解析
-	global.Viper = config.Init(&global.Config)
+	global.Viper = config.Init(&global.Config, global.ConfigPath)
 	//从配置文件中加载密钥
 	config.LoadKeyFile(&global.Config.Rustdesk)
 	//日志
 	global.Logger = logger.New(&logger.Config{
@@ -94,14 +167,9 @@ func main() {
 	//locker
 	global.Lock = lock.NewLocal()
 	//gin
 	http.ApiInit()
 }
 func DatabaseAutoUpdate() {
-	version := 235
+	version := 247
 	db := global.DB
@@ -146,6 +214,24 @@ func DatabaseAutoUpdate() {
 		if v.Version < uint(version) {
 			Migrate(uint(version))
 		}
 		// 245迁移
 		if v.Version < 245 {
 			//oauths 表的 oauth_type 字段设置为 op同样的值
 			db.Exec("update oauths set oauth_type = op")
 			db.Exec("update oauths set issuer = 'https://accounts.google.com' where op = 'google'")
 			db.Exec("update user_thirds set oauth_type = third_type, op = third_type")
 			//通过email迁移旧的google授权
 			uts := make([]model.UserThird, 0)
 			db.Where("oauth_type = ?", "google").Find(&uts)
 			for _, ut := range uts {
 				if ut.UserId > 0 {
 					db.Model(&model.User{}).Where("id = ?", ut.UserId).Update("email", ut.OpenId)
 				}
 			}
 		}
 		if v.Version < 246 {
 			db.Exec("update oauths set issuer = 'https://accounts.google.com' where op = 'google' and issuer is null")
 		}
 	}
 }
@@ -165,6 +251,8 @@ func Migrate(version uint) {
 		&model.ShareRecord{},
 		&model.AuditConn{},
 		&model.AuditFile{},
 		&model.AddressBookCollection{},
 		&model.AddressBookCollectionRule{},
 	)
 	if err != nil {
 		fmt.Println("migrate err :=>", err)
--- a/conf/admin/hello.html
+++ b/conf/admin/hello.html
@@ -0,0 +1 @@
 ### 👏👏👏 你好 ***{{username}}***， 欢迎使用 [RustDesk Api](https://github.com/lejianwen/rustdesk-api)
--- a/conf/config.yaml
+++ b/conf/config.yaml
@@ -1,6 +1,12 @@
 lang: "zh-CN"
 app:
  web-client: 1  # 1:启用 0:禁用
  register: false #是否开启注册
  show-swagger: 0 # 1:启用 0:禁用
 admin:
  title: "RustDesk Api Admin"
  hello-file: "./conf/admin/hello.html"  #优先使用file
  hello: ""
 gin:
  api-addr: "0.0.0.0:21114"
  mode: "release" #release,debug,test
@@ -19,15 +25,17 @@ rustdesk:
  id-server: "192.168.1.66:21116"
  relay-server: "192.168.1.66:21117"
  api-server: "http://127.0.0.1:21114"
-  key: "123456789"
+  key: ""
  key-file: "./conf/data/id_ed25519.pub"
  personal: 1
  webclient-magic-queryonline: 0
 logger:
  path: "./runtime/log.txt"
  level: "warn" #trace,debug,info,warn,error,fatal
  report-caller: true
 proxy:
  enable: false
-  host: ""
+  host: "http://127.0.0.1:1080"
 redis:
  addr: "127.0.0.1:6379"
  password: ""
--- a/config/config.go
+++ b/config/config.go
@@ -1,7 +1,6 @@
 package config
 import (
 	"flag"
 	"fmt"
 	"github.com/fsnotify/fsnotify"
 	"github.com/spf13/viper"
@@ -15,12 +14,19 @@ const (
 )
 type App struct {
-	WebClient int `mapstructure:"web-client"`
+	WebClient   int  `mapstructure:"web-client"`
 	Register    bool `mapstructure:"register"`
 	ShowSwagger int  `mapstructure:"show-swagger"`
 }
 type Admin struct {
 	Title     string `mapstructure:"title"`
 	Hello     string `mapstructure:"hello"`
 	HelloFile string `mapstructure:"hello-file"`
 }
 type Config struct {
 	Lang     string `mapstructure:"lang"`
 	App      App
 	Admin    Admin
 	Gorm     Gorm
 	Mysql    Mysql
 	Gin      Gin
@@ -34,18 +40,15 @@ type Config struct {
 }
 // Init 初始化配置
-func Init(rowVal interface{}) *viper.Viper {
+func Init(rowVal interface{}, path string) *viper.Viper {
-	var config string
+	if path == "" {
-	flag.StringVar(&config, "c", "", "choose config file.")
+		path = DefaultConfig
 	flag.Parse()
 	if config == "" { // 优先级: 命令行 > 默认值
 		config = DefaultConfig
 	}
-	v := viper.New()
+	v := viper.GetViper()
 	v.AutomaticEnv()
 	v.SetEnvKeyReplacer(strings.NewReplacer(".", "_", "-", "_"))
 	v.SetEnvPrefix("RUSTDESK_API")
-	v.SetConfigFile(config)
+	v.SetConfigFile(path)
 	v.SetConfigType("yaml")
 	err := v.ReadInConfig()
 	if err != nil {
@@ -62,6 +65,7 @@ func Init(rowVal interface{}) *viper.Viper {
 	if err := v.Unmarshal(rowVal); err != nil {
 		fmt.Println(err)
 	}
 	return v
 }
--- a/config/oauth.go
+++ b/config/oauth.go
@@ -11,3 +11,10 @@ type GoogleOauth struct {
 	ClientSecret string `mapstructure:"client-secret"`
 	RedirectUrl  string `mapstructure:"redirect-url"`
 }
 type OidcOauth struct {
 	Issuer       string `mapstructure:"issuer"`
 	ClientId     string `mapstructure:"client-id"`
 	ClientSecret string `mapstructure:"client-secret"`
 	RedirectUrl  string `mapstructure:"redirect-url"`
 }
--- a/config/rustdesk.go
+++ b/config/rustdesk.go
@@ -1,9 +1,32 @@
 package config
 import (
 	"os"
 )
 type Rustdesk struct {
 	IdServer    string `mapstructure:"id-server"`
 	RelayServer string `mapstructure:"relay-server"`
 	ApiServer   string `mapstructure:"api-server"`
 	Key         string `mapstructure:"key"`
 	KeyFile     string `mapstructure:"key-file"`
 	Personal    int    `mapstructure:"personal"`
 	//webclient-magic-queryonline
 	WebclientMagicQueryonline int `mapstructure:"webclient-magic-queryonline"`
 }
 func LoadKeyFile(rustdesk *Rustdesk) {
 	// Load key file
 	if rustdesk.Key != "" {
 		return
 	}
 	if rustdesk.KeyFile != "" {
 		// Load key from file
 		b, err := os.ReadFile(rustdesk.KeyFile)
 		if err != nil {
 			return
 		}
 		rustdesk.Key = string(b)
 		return
 	}
 }
--- a/debian/changelog
+++ b/debian/changelog
@@ -0,0 +1,5 @@
 rustdesk-api-server (1.3.6) UNRELEASED; urgency=medium
  * Update the version to 1.3.6 to match the client.
 -- rustdesk-api <ymwlpoolc@qq.com>  Tue, 24 Dec 2024 13:48:34 +0800
--- a/debian/compat
+++ b/debian/compat
@@ -0,0 +1 @@
 10
--- a/debian/control.tpl
+++ b/debian/control.tpl
@@ -0,0 +1,13 @@
 Source: rustdesk-api-server
 Section: net
 Priority: optional
 Maintainer: ymwl <ymwlpoolc@qq.com>
 Build-Depends: debhelper (>= 10), pkg-config
 Standards-Version: 4.5.0
 Homepage: https://github.com/lejianwen/rustdesk-api/
 Package: rustdesk-api-server
 Architecture: {{ ARCH }}
 Depends: systemd ${misc:Depends}
 Description: RustDesk api server
 RustDesk api server, it is free and open source.
--- a/debian/copyright
+++ b/debian/copyright
@@ -0,0 +1,21 @@
 MIT License
 Copyright (c) 2024-present Lejianwen and contributors
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in all
 copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
--- a/debian/rules
+++ b/debian/rules
@@ -0,0 +1,6 @@
 #!/usr/bin/make -f
 %:
 	dh $@
 override_dh_builddeb:
 	dh_builddeb -- -Zgzip
--- a/debian/rustdesk-api-server.install
+++ b/debian/rustdesk-api-server.install
@@ -0,0 +1,6 @@
 bin/rustdesk-api usr/bin
 systemd/rustdesk-api.service lib/systemd/system
 conf var/lib/rustdesk-api
 data var/lib/rustdesk-api
 resources var/lib/rustdesk-api
 runtime var/lib/rustdesk-api
--- a/debian/rustdesk-api-server.postinst
+++ b/debian/rustdesk-api-server.postinst
@@ -0,0 +1,28 @@
 #!/bin/sh
 set -e
 SERVICE=rustdesk-api.service
 if [ "$1" = "configure" ]; then
    mkdir -p /var/log/rustdesk-api
 fi
 case "$1" in
    configure|abort-upgrade|abort-deconfigure|abort-remove)
      mkdir -p /var/lib/rustdesk-api/
 	  deb-systemd-helper unmask "${SERVICE}" >/dev/null || true
 	  if deb-systemd-helper --quiet was-enabled "${SERVICE}"; then
 		deb-systemd-invoke enable "${SERVICE}" >/dev/null || true
 	  else
 		deb-systemd-invoke update-state "${SERVICE}" >/dev/null || true
 	  fi
 	  systemctl --system daemon-reload >/dev/null || true
 	  if [ -n "$2" ]; then
 		deb-systemd-invoke restart "${SERVICE}" >/dev/null || true
 	  else
 		deb-systemd-invoke start "${SERVICE}" >/dev/null || true
 	  fi
    ;;
 esac
 exit 0
--- a/debian/rustdesk-api-server.postrm
+++ b/debian/rustdesk-api-server.postrm
@@ -0,0 +1,18 @@
 #!/bin/sh
 set -e
 SERVICE=rustdesk-api.service
 systemctl --system daemon-reload >/dev/null || true
 if [ "$1" = "purge" ]; then
 	rm -rf /var/log/rustdesk-api/rustdesk-api.*
 	deb-systemd-helper purge "${SERVICE}" >/dev/null || true
 	deb-systemd-helper unmask "${SERVICE}" >/dev/null || true
 fi
 if [ "$1" = "remove" ]; then
 	deb-systemd-helper mask "${SERVICE}" >/dev/null || true
 fi
 exit 0
--- a/debian/rustdesk-api-server.prerm
+++ b/debian/rustdesk-api-server.prerm
@@ -0,0 +1,13 @@
 #!/bin/sh
 set -e
 SERVICE=rustdesk-api.service
 case "$1" in
    remove|deconfigure)
 	  deb-systemd-invoke stop "${SERVICE}" >/dev/null || true
 	  deb-systemd-invoke disable "${SERVICE}" >/dev/null || true
 	;;
 esac
 exit 0
--- a/debian/source/format
+++ b/debian/source/format
@@ -0,0 +1 @@
 3.0 (native)
--- a/docker-compose-dev.yaml
+++ b/docker-compose-dev.yaml
@@ -0,0 +1,24 @@
 services:
  rustdesk-api:
    build: 
      context: .
      dockerfile: Dockerfile.dev
      args:
        COUNTRY: CN
        FREONTEND_GIT_REPO: https://github.com/lejianwen/rustdesk-api-web.git
        FRONTEND_GIT_BRANCH: master
    # image: lejianwen/rustdesk-api
    container_name: rustdesk-api
    environment:
      - TZ=Asia/Shanghai
      - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
      - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
      - RUSTDESK_API_RUSTDESK_API_SERVER=http://127.0.0.1:21114
      - RUSTDESK_API_RUSTDESK_KEY=123456789
    ports:
      - 21114:21114
    volumes:
      - ./data/rustdesk/api:/app/data #将数据库挂载出来方便备份
      - ./conf:/app/conf # config
      # - ./resources:/app/resources # 静态资源
    restart: unless-stopped
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@@ -6,10 +6,12 @@ services:
      - TZ=Asia/Shanghai
      - RUSTDESK_API_RUSTDESK_ID_SERVER=192.168.1.66:21116
      - RUSTDESK_API_RUSTDESK_RELAY_SERVER=192.168.1.66:21117
-      - RUSTDESK_API_RUSTDESK_API_SERVER=http://192.168.1.66:21114
+      - RUSTDESK_API_RUSTDESK_API_SERVER=http://127.0.0.1:21114
      - RUSTDESK_API_RUSTDESK_KEY=123456789
    ports:
      - 21114:21114
    volumes:
-      - /data/rustdesk/api:/app/data #将数据库挂载出来方便备份
+      - ./data/rustdesk/api:/app/data # database
      # - ./conf:/app/conf # config
      # - ./resources:/app/resources # 静态资源
    restart: unless-stopped
--- a/docker-dev.sh
+++ b/docker-dev.sh
@@ -0,0 +1,35 @@
 #!/bin/bash
 set -e
 # Define Docker Compose file and cache option
 COMPOSE_FILE_NAME="docker-compose-dev.yaml"
 CACHE=""
 # Uncomment the next line to enable no-cache option
 # CACHE="--no-cache"
 # Define the base Docker Compose command
 DCS="docker compose -f ${COMPOSE_FILE_NAME}"
 # Function to build and start services
 build_and_run() {
    echo "Building services..."
    if ! $DCS build ${CACHE}; then
        echo "Error: Failed to build services"
        exit 1
    fi
    echo "Starting services..."
    if ! $DCS up -d; then
        echo "Error: Failed to start services"
        exit 1
    fi
    echo "Services started successfully"
    echo "If you want to stop the services, run"
    echo "docker compose -f ${COMPOSE_FILE_NAME} down"
    echo "If you want to see the logs, run"
    echo "docker compose -f ${COMPOSE_FILE_NAME} logs -f"
 }
 # Execute build and start function
 build_and_run
--- a/docs/admin/admin_docs.go
+++ b/docs/admin/admin_docs.go
--- a/docs/admin/admin_swagger.json
+++ b/docs/admin/admin_swagger.json
--- a/docs/admin/admin_swagger.yaml
+++ b/docs/admin/admin_swagger.yaml
--- a/docs/admin_webclient.png
+++ b/docs/admin_webclient.png
--- a/docs/api/api_docs.go
+++ b/docs/api/api_docs.go
@@ -834,7 +834,7 @@ const docTemplateapi = `{
            }
        },
        "/login-options": {
-            "post": {
+            "get": {
                "description": "登录选项",
                "consumes": [
                    "application/json"
@@ -1075,6 +1075,40 @@ const docTemplateapi = `{
                }
            }
        },
        "/server-config-v2": {
            "get": {
                "security": [
                    {
                        "token": []
                    }
                ],
                "description": "服务配置,给webclient提供api-server",
                "consumes": [
                    "application/json"
                ],
                "produces": [
                    "application/json"
                ],
                "tags": [
                    "WEBCLIENT_V2"
                ],
                "summary": "服务配置",
                "responses": {
                    "200": {
                        "description": "OK",
                        "schema": {
                            "$ref": "#/definitions/response.Response"
                        }
                    },
                    "500": {
                        "description": "Internal Server Error",
                        "schema": {
                            "$ref": "#/definitions/response.Response"
                        }
                    }
                }
            }
        },
        "/shared-peer": {
            "post": {
                "description": "分享的peer",
@@ -1356,7 +1390,7 @@ const docTemplateapi = `{
                },
                "password": {
                    "type": "string",
-                    "maxLength": 20,
+                    "maxLength": 32,
                    "minLength": 4
                },
                "type": {
@@ -1364,8 +1398,8 @@ const docTemplateapi = `{
                },
                "username": {
                    "type": "string",
-                    "maxLength": 10,
+                    "maxLength": 32,
-                    "minLength": 4
+                    "minLength": 2
                },
                "uuid": {
                    "type": "string"
@@ -1445,9 +1479,38 @@ const docTemplateapi = `{
                }
            }
        },
        "model.AddressBookCollection": {
            "type": "object",
            "required": [
                "name"
            ],
            "properties": {
                "created_at": {
                    "type": "string"
                },
                "id": {
                    "type": "integer"
                },
                "name": {
                    "type": "string"
                },
                "updated_at": {
                    "type": "string"
                },
                "user_id": {
                    "type": "integer"
                }
            }
        },
        "model.Tag": {
            "type": "object",
            "properties": {
                "collection": {
                    "$ref": "#/definitions/model.AddressBookCollection"
                },
                "collection_id": {
                    "type": "integer"
                },
                "color": {
                    "description": "color 是flutter的颜色值,从0x00000000 到 0xFFFFFFFF; 前两位表示透明度，后面6位表示颜色, 可以转成rgba",
                    "type": "integer"
--- a/docs/api/api_swagger.json
+++ b/docs/api/api_swagger.json
@@ -827,7 +827,7 @@
            }
        },
        "/login-options": {
-            "post": {
+            "get": {
                "description": "登录选项",
                "consumes": [
                    "application/json"
@@ -1068,6 +1068,40 @@
                }
            }
        },
        "/server-config-v2": {
            "get": {
                "security": [
                    {
                        "token": []
                    }
                ],
                "description": "服务配置,给webclient提供api-server",
                "consumes": [
                    "application/json"
                ],
                "produces": [
                    "application/json"
                ],
                "tags": [
                    "WEBCLIENT_V2"
                ],
                "summary": "服务配置",
                "responses": {
                    "200": {
                        "description": "OK",
                        "schema": {
                            "$ref": "#/definitions/response.Response"
                        }
                    },
                    "500": {
                        "description": "Internal Server Error",
                        "schema": {
                            "$ref": "#/definitions/response.Response"
                        }
                    }
                }
            }
        },
        "/shared-peer": {
            "post": {
                "description": "分享的peer",
@@ -1349,7 +1383,7 @@
                },
                "password": {
                    "type": "string",
-                    "maxLength": 20,
+                    "maxLength": 32,
                    "minLength": 4
                },
                "type": {
@@ -1357,8 +1391,8 @@
                },
                "username": {
                    "type": "string",
-                    "maxLength": 10,
+                    "maxLength": 32,
-                    "minLength": 4
+                    "minLength": 2
                },
                "uuid": {
                    "type": "string"
@@ -1438,9 +1472,38 @@
                }
            }
        },
        "model.AddressBookCollection": {
            "type": "object",
            "required": [
                "name"
            ],
            "properties": {
                "created_at": {
                    "type": "string"
                },
                "id": {
                    "type": "integer"
                },
                "name": {
                    "type": "string"
                },
                "updated_at": {
                    "type": "string"
                },
                "user_id": {
                    "type": "integer"
                }
            }
        },
        "model.Tag": {
            "type": "object",
            "properties": {
                "collection": {
                    "$ref": "#/definitions/model.AddressBookCollection"
                },
                "collection_id": {
                    "type": "integer"
                },
                "color": {
                    "description": "color 是flutter的颜色值,从0x00000000 到 0xFFFFFFFF; 前两位表示透明度，后面6位表示颜色, 可以转成rgba",
                    "type": "integer"
--- a/docs/api/api_swagger.yaml
+++ b/docs/api/api_swagger.yaml
@@ -62,14 +62,14 @@ definitions:
      id:
        type: string
      password:
-        maxLength: 20
+        maxLength: 32
        minLength: 4
        type: string
      type:
        type: string
      username:
-        maxLength: 10
+        maxLength: 32
-        minLength: 4
+        minLength: 2
        type: string
      uuid:
        type: string
@@ -124,8 +124,27 @@ definitions:
      status:
        type: integer
    type: object
  model.AddressBookCollection:
    properties:
      created_at:
        type: string
      id:
        type: integer
      name:
        type: string
      updated_at:
        type: string
      user_id:
        type: integer
    required:
    - name
    type: object
  model.Tag:
    properties:
      collection:
        $ref: '#/definitions/model.AddressBookCollection'
      collection_id:
        type: integer
      color:
        description: color 是flutter的颜色值,从0x00000000 到 0xFFFFFFFF; 前两位表示透明度，后面6位表示颜色,
          可以转成rgba
@@ -696,7 +715,7 @@ paths:
      tags:
      - 登录
  /login-options:
-    post:
+    get:
      consumes:
      - application/json
      description: 登录选项
@@ -851,6 +870,27 @@ paths:
      summary: 服务配置
      tags:
      - WEBCLIENT
  /server-config-v2:
    get:
      consumes:
      - application/json
      description: 服务配置,给webclient提供api-server
      produces:
      - application/json
      responses:
        "200":
          description: OK
          schema:
            $ref: '#/definitions/response.Response'
        "500":
          description: Internal Server Error
          schema:
            $ref: '#/definitions/response.Response'
      security:
      - token: []
      summary: 服务配置
      tags:
      - WEBCLIENT_V2
  /shared-peer:
    post:
      consumes:
--- a/docs/en_img/admin_webclient.png
+++ b/docs/en_img/admin_webclient.png
--- a/docs/en_img/web_admin.png
+++ b/docs/en_img/web_admin.png
--- a/docs/en_img/web_admin_oauth.png
+++ b/docs/en_img/web_admin_oauth.png
--- a/docs/en_img/web_admin_user.png
+++ b/docs/en_img/web_admin_user.png
--- a/docs/en_img/web_resetpwd.png
+++ b/docs/en_img/web_resetpwd.png
--- a/docs/web_admin.png
+++ b/docs/web_admin.png
--- a/docs/web_admin_oauth.png
+++ b/docs/web_admin_oauth.png
--- a/docs/web_admin_user.png
+++ b/docs/web_admin_user.png
--- a/docs/web_resetpwd.png
+++ b/docs/web_resetpwd.png
--- a/docs/webclient_conf.png
+++ b/docs/webclient_conf.png
--- a/docs/webclientv2.png
+++ b/docs/webclientv2.png
--- a/global/apiValidator.go
+++ b/global/apiValidator.go
@@ -3,15 +3,19 @@ package global
 import (
 	"github.com/gin-gonic/gin"
 	"github.com/go-playground/locales/en"
 	"github.com/go-playground/locales/es"
 	"github.com/go-playground/locales/ko"
 	"github.com/go-playground/locales/ru"
 	"github.com/go-playground/locales/fr"
 	"github.com/go-playground/locales/zh_Hans_CN"
 	ut "github.com/go-playground/universal-translator"
 	"github.com/go-playground/validator/v10"
 	en_translations "github.com/go-playground/validator/v10/translations/en"
 	es_translations "github.com/go-playground/validator/v10/translations/es"
 	ru_translations "github.com/go-playground/validator/v10/translations/ru"
 	zh_translations "github.com/go-playground/validator/v10/translations/zh"
 	fr_translations "github.com/go-playground/validator/v10/translations/fr"
 	"reflect"
 )
@@ -23,13 +27,17 @@ func ApiInitValidator() {
 	cn := zh_Hans_CN.New()
 	koT := ko.New()
 	ruT := ru.New()
 	esT := es.New()
 	frT := fr.New()
-	uni := ut.New(enT, cn, koT, ruT)
+	uni := ut.New(enT, cn, koT, ruT, esT, frT)
 	enTrans, _ := uni.GetTranslator("en")
 	zhTrans, _ := uni.GetTranslator("zh_Hans_CN")
 	koTrans, _ := uni.GetTranslator("ko")
 	ruTrans, _ := uni.GetTranslator("ru")
 	esTrans, _ := uni.GetTranslator("es")
 	frTrans, _ := uni.GetTranslator("fr")
 	err := zh_translations.RegisterDefaultTranslations(validate, zhTrans)
 	if err != nil {
@@ -49,6 +57,14 @@ func ApiInitValidator() {
 	if err != nil {
 		panic(err)
 	}
 	err = es_translations.RegisterDefaultTranslations(validate, esTrans)
 	if err != nil {
 		panic(err)
 	}
 	err = fr_translations.RegisterDefaultTranslations(validate, frTrans)
 	if err != nil {
 		panic(err)
 	}
 	validate.RegisterTagNameFunc(func(field reflect.StructField) string {
 		label := field.Tag.Get("label")
@@ -115,6 +131,12 @@ func getTranslatorForLang(lang string) ut.Translator {
 	case "ru":
 		trans, _ := Validator.UT.GetTranslator("ru")
 		return trans
 	case "es":
 		trans, _ := Validator.UT.GetTranslator("es")
 		return trans
 	case "fr":
 		trans, _ := Validator.UT.GetTranslator("fr")
 		return trans
 	case "en":
 		fallthrough
 	default:
--- a/global/global.go
+++ b/global/global.go
@@ -17,13 +17,14 @@ import (
 )
 var (
-	DB        *gorm.DB
+	DB         *gorm.DB
-	Logger    *logrus.Logger
+	Logger     *logrus.Logger
-	Config    config.Config
+	ConfigPath string = ""
-	Viper     *viper.Viper
+	Config     config.Config
-	Redis     *redis.Client
+	Viper      *viper.Viper
-	Cache     cache.Handler
+	Redis      *redis.Client
-	Validator struct {
+	Cache      cache.Handler
 	Validator  struct {
 		Validate    *validator.Validate
 		UT          *ut.UniversalTranslator
 		VTrans      ut.Translator
--- a/go.mod
+++ b/go.mod
@@ -16,6 +16,7 @@ require (
 	github.com/google/uuid v1.1.2
 	github.com/nicksnyder/go-i18n/v2 v2.4.0
 	github.com/sirupsen/logrus v1.8.1
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/viper v1.9.0
 	github.com/swaggo/files v1.0.1
 	github.com/swaggo/gin-swagger v1.6.0
@@ -28,7 +29,6 @@ require (
 )
 require (
 	cloud.google.com/go/compute/metadata v0.5.1 // indirect
 	github.com/KyleBanks/depth v1.2.1 // indirect
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
@@ -43,7 +43,9 @@ require (
 	github.com/go-openapi/swag v0.19.15 // indirect
 	github.com/go-sql-driver/mysql v1.7.0 // indirect
 	github.com/goccy/go-json v0.10.0 // indirect
 	github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 // indirect
 	github.com/hashicorp/hcl v1.0.0 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/jinzhu/inflection v1.0.0 // indirect
 	github.com/jinzhu/now v1.1.5 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
@@ -57,6 +59,7 @@ require (
 	github.com/mitchellh/mapstructure v1.4.2 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/mojocn/base64Captcha v1.3.6 // indirect
 	github.com/pelletier/go-toml v1.9.4 // indirect
 	github.com/pelletier/go-toml/v2 v2.0.6 // indirect
 	github.com/spf13/afero v1.6.0 // indirect
@@ -68,6 +71,7 @@ require (
 	github.com/ugorji/go/codec v1.2.9 // indirect
 	golang.org/x/arch v0.0.0-20210923205945-b76863e36670 // indirect
 	golang.org/x/crypto v0.23.0 // indirect
 	golang.org/x/image v0.13.0 // indirect
 	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/sys v0.25.0 // indirect
 	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
--- a/http/controller/admin/addressBook.go
+++ b/http/controller/admin/addressBook.go
@@ -4,8 +4,8 @@ import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"encoding/json"
 	_ "encoding/json"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
@@ -30,11 +30,6 @@ func (ct *AddressBook) Detail(c *gin.Context) {
 	id := c.Param("id")
 	iid, _ := strconv.Atoi(id)
 	t := service.AllService.AddressBookService.InfoByRowId(uint(iid))
 	u := service.AllService.UserService.CurUser(c)
 	if !service.AllService.UserService.IsAdmin(u) && t.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	if t.RowId > 0 {
 		response.Success(c, t)
 		return
@@ -66,13 +61,18 @@ func (ct *AddressBook) Create(c *gin.Context) {
 		return
 	}
 	t := f.ToAddressBook()
-	u := service.AllService.UserService.CurUser(c)
+	if t.UserId == 0 {
-	if !service.AllService.UserService.IsAdmin(u) || t.UserId == 0 {
+		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
-		t.UserId = u.Id
+		return
 	}
-	ex := service.AllService.AddressBookService.InfoByUserIdAndId(t.UserId, t.Id)
+	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	ex := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(t.UserId, t.Id, t.CollectionId)
 	if ex.RowId > 0 {
-		response.Fail(c, 101, response.TranslateMsg(c, "ItemExist"))
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemExists"))
 		return
 	}
@@ -81,7 +81,7 @@ func (ct *AddressBook) Create(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // BatchCreate 批量创建地址簿
@@ -93,7 +93,7 @@ func (ct *AddressBook) Create(c *gin.Context) {
 // @Param body body admin.AddressBookForm true "地址簿信息"
 // @Success 200 {object} response.Response{data=model.AddressBook}
 // @Failure 500 {object} response.Response
-// @Router /admin/address_book/create [post]
+// @Router /admin/address_book/batchCreate [post]
 // @Security token
 func (ct *AddressBook) BatchCreate(c *gin.Context) {
 	f := &admin.AddressBookForm{}
@@ -106,14 +106,26 @@ func (ct *AddressBook) BatchCreate(c *gin.Context) {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ul := len(f.UserIds)
 	if ul == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	if ul > 1 {
 		//多用户置空标签
 		f.Tags = []string{}
 		//多用户只能创建到默认地址簿
 		f.CollectionId = 0
 	}
 	//创建标签
-	for _, fu := range f.UserIds {
+	/*for _, fu := range f.UserIds {
 		if fu == 0 {
 			continue
 		}
 		for _, ft := range f.Tags {
-			exTag := service.AllService.TagService.InfoByUserIdAndName(fu, ft)
+			exTag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(fu, ft, 0)
 			if exTag.Id == 0 {
 				service.AllService.TagService.Create(&model.Tag{
 					UserId: fu,
@@ -121,13 +133,13 @@ func (ct *AddressBook) BatchCreate(c *gin.Context) {
 				})
 			}
 		}
-	}
+	}*/
 	ts := f.ToAddressBooks()
 	for _, t := range ts {
 		if t.UserId == 0 {
 			continue
 		}
-		ex := service.AllService.AddressBookService.InfoByUserIdAndId(t.UserId, t.Id)
+		ex := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(t.UserId, t.Id, t.CollectionId)
 		if ex.RowId == 0 {
 			service.AllService.AddressBookService.Create(t)
 		}
@@ -156,11 +168,10 @@ func (ct *AddressBook) List(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if !service.AllService.UserService.IsAdmin(u) || query.IsMy == 1 {
 		query.UserId = int(u.Id)
 	}
 	res := service.AllService.AddressBookService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Preload("Collection", func(txc *gorm.DB) *gorm.DB {
 			return txc.Select("id,name")
 		})
 		if query.Id != "" {
 			tx.Where("id like ?", "%"+query.Id+"%")
 		}
@@ -173,7 +184,15 @@ func (ct *AddressBook) List(c *gin.Context) {
 		if query.Hostname != "" {
 			tx.Where("hostname like ?", "%"+query.Hostname+"%")
 		}
 		if query.CollectionId != nil && *query.CollectionId >= 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	abCIds := make([]uint, 0)
 	for _, ab := range res.AddressBooks {
 		abCIds = append(abCIds, ab.CollectionId)
 	}
 	response.Success(c, res)
 }
@@ -200,16 +219,20 @@ func (ct *AddressBook) Update(c *gin.Context) {
 		return
 	}
 	if f.RowId == 0 {
-		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	ex := service.AllService.AddressBookService.InfoByRowId(f.RowId)
 	if ex.RowId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	t := f.ToAddressBook()
-	u := service.AllService.UserService.CurUser(c)
+	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
-	if !service.AllService.UserService.IsAdmin(u) && t.UserId != u.Id {
+		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
-	err := service.AllService.AddressBookService.Update(t)
+	err := service.AllService.AddressBookService.UpdateAll(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
@@ -241,21 +264,16 @@ func (ct *AddressBook) Delete(c *gin.Context) {
 		return
 	}
 	t := service.AllService.AddressBookService.InfoByRowId(f.RowId)
-	u := service.AllService.UserService.CurUser(c)
+	if t.RowId == 0 {
-	if !service.AllService.UserService.IsAdmin(u) && t.UserId != u.Id {
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
-	if u.Id > 0 {
+	err := service.AllService.AddressBookService.Delete(t)
-		err := service.AllService.AddressBookService.Delete(t)
+	if err == nil {
-		if err == nil {
+		response.Success(c, nil)
 			response.Success(c, nil)
 			return
 		}
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
+	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
 // ShareByWebClient
@@ -298,3 +316,47 @@ func (ct *AddressBook) ShareByWebClient(c *gin.Context) {
 		"share_token": m.ShareToken,
 	})
 }
 func (ct *AddressBook) BatchCreateFromPeers(c *gin.Context) {
 	f := &admin.BatchCreateFromPeersForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if f.UserId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	if f.CollectionId != 0 {
 		collection := service.AllService.AddressBookService.CollectionInfoById(f.CollectionId)
 		if collection.Id == 0 {
 			response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 			return
 		}
 	}
 	pl := int64(len(f.PeerIds))
 	peers := service.AllService.PeerService.List(1, uint(pl), func(tx *gorm.DB) {
 		tx.Where("row_id in ?", f.PeerIds)
 	})
 	if peers.Total == 0 || pl != peers.Total {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	tags, _ := json.Marshal(f.Tags)
 	for _, peer := range peers.Peers {
 		ab := service.AllService.AddressBookService.FromPeer(peer)
 		ab.Tags = tags
 		ab.CollectionId = f.CollectionId
 		ab.UserId = f.UserId
 		ex := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(f.UserId, ab.Id, ab.CollectionId)
 		if ex.RowId != 0 {
 			continue
 		}
 		service.AllService.AddressBookService.Create(ab)
 	}
 	response.Success(c, nil)
 }
--- a/http/controller/admin/addressBookCollection.go
+++ b/http/controller/admin/addressBookCollection.go
@@ -0,0 +1,172 @@
 package admin
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 	"strconv"
 )
 type AddressBookCollection struct {
 }
 // Detail 地址簿名称
 // @Tags 地址簿名称
 // @Summary 地址簿名称详情
 // @Description 地址簿名称详情
 // @Accept  json
 // @Produce  json
 // @Param id path int true "ID"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection/detail/{id} [get]
 // @Security token
 func (abc *AddressBookCollection) Detail(c *gin.Context) {
 	id := c.Param("id")
 	iid, _ := strconv.Atoi(id)
 	t := service.AllService.AddressBookService.CollectionInfoById(uint(iid))
 	if t.Id > 0 {
 		response.Success(c, t)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 	return
 }
 // Create 创建地址簿名称
 // @Tags 地址簿名称
 // @Summary 创建地址簿名称
 // @Description 创建地址簿名称
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection/create [post]
 // @Security token
 func (abc *AddressBookCollection) Create(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.UserId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	t := f
 	err := service.AllService.AddressBookService.CreateCollection(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // List 列表
 // @Tags 地址簿名称
 // @Summary 地址簿名称列表
 // @Description 地址簿名称列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param is_my query int false "是否是我的"
 // @Param user_id query int false "用户id"
 // @Success 200 {object} response.Response{data=model.AddressBookCollectionList}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection/list [get]
 // @Security token
 func (abc *AddressBookCollection) List(c *gin.Context) {
 	query := &admin.AddressBookCollectionQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	res := service.AllService.AddressBookService.ListCollection(query.Page, query.PageSize, func(tx *gorm.DB) {
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 	})
 	response.Success(c, res)
 }
 // Update 编辑
 // @Tags 地址簿名称
 // @Summary 地址簿名称编辑
 // @Description 地址簿名称编辑
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection/update [post]
 // @Security token
 func (abc *AddressBookCollection) Update(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	t := f //f.ToAddressBookCollection()
 	err := service.AllService.AddressBookService.UpdateCollection(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 地址簿名称
 // @Summary 地址簿名称删除
 // @Description 地址簿名称删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection/delete [post]
 // @Security token
 func (abc *AddressBookCollection) Delete(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.AddressBookService.CollectionInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.AddressBookService.DeleteCollection(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
--- a/http/controller/admin/addressBookCollectionRule.go
+++ b/http/controller/admin/addressBookCollectionRule.go
@@ -0,0 +1,222 @@
 package admin
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 	"strconv"
 )
 type AddressBookCollectionRule struct {
 }
 // List 列表
 // @Tags 地址簿规则
 // @Summary 地址簿规则列表
 // @Description 地址簿规则列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param is_my query int false "是否是我的"
 // @Param user_id query int false "用户id"
 // @Param collection_id query int false "地址簿集合id"
 // @Success 200 {object} response.Response{data=model.AddressBookCollectionList}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection_rule/list [get]
 // @Security token
 func (abcr *AddressBookCollectionRule) List(c *gin.Context) {
 	query := &admin.AddressBookCollectionRuleQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	res := service.AllService.AddressBookService.ListRules(query.Page, query.PageSize, func(tx *gorm.DB) {
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 		if query.CollectionId > 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	response.Success(c, res)
 }
 // Detail 地址簿规则
 // @Tags 地址簿规则
 // @Summary 地址簿规则详情
 // @Description 地址簿规则详情
 // @Accept  json
 // @Produce  json
 // @Param id path int true "ID"
 // @Success 200 {object} response.Response{data=model.AddressBookCollectionRule}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection_rule/detail/{id} [get]
 // @Security token
 func (abcr *AddressBookCollectionRule) Detail(c *gin.Context) {
 	id := c.Param("id")
 	iid, _ := strconv.Atoi(id)
 	t := service.AllService.AddressBookService.RuleInfoById(uint(iid))
 	if t.Id > 0 {
 		response.Success(c, t)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 }
 // Create 创建地址簿规则
 // @Tags 地址簿规则
 // @Summary 创建地址簿规则
 // @Description 创建地址簿规则
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection_rule/create [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Create(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Type != model.ShareAddressBookRuleTypePersonal && f.Type != model.ShareAddressBookRuleTypeGroup {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	t := f
 	msg, res := abcr.CheckForm(t)
 	if !res {
 		response.Fail(c, 101, response.TranslateMsg(c, msg))
 		return
 	}
 	err := service.AllService.AddressBookService.CreateRule(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 func (abcr *AddressBookCollectionRule) CheckForm(t *model.AddressBookCollectionRule) (string, bool) {
 	if t.UserId == 0 {
 		return "ParamsError", false
 	}
 	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		return "ParamsError", false
 	}
 	//check to_id
 	if t.Type == model.ShareAddressBookRuleTypePersonal {
 		if t.ToId == t.UserId {
 			return "ParamsError", false
 		}
 		tou := service.AllService.UserService.InfoById(t.ToId)
 		if tou.Id == 0 {
 			return "ItemNotFound", false
 		}
 	} else if t.Type == model.ShareAddressBookRuleTypeGroup {
 		tog := service.AllService.GroupService.InfoById(t.ToId)
 		if tog.Id == 0 {
 			return "ItemNotFound", false
 		}
 	} else {
 		return "ParamsError", false
 	}
 	// 重复检查
 	ex := service.AllService.AddressBookService.RulePersonalInfoByToIdAndCid(t.ToId, t.CollectionId)
 	if t.Id == 0 && ex.Id > 0 {
 		return "ItemExists", false
 	}
 	if t.Id > 0 && ex.Id > 0 && t.Id != ex.Id {
 		return "ItemExists", false
 	}
 	return "", true
 }
 // Update 编辑
 // @Tags 地址簿规则
 // @Summary 地址簿规则编辑
 // @Description 地址簿规则编辑
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection_rule/update [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Update(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	t := f
 	msg, res := abcr.CheckForm(t)
 	if !res {
 		response.Fail(c, 101, response.TranslateMsg(c, msg))
 		return
 	}
 	err := service.AllService.AddressBookService.UpdateRule(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 地址簿规则
 // @Summary 地址簿规则删除
 // @Description 地址簿规则删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/address_book_collection_rule/delete [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Delete(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.AddressBookService.RuleInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.AddressBookService.DeleteRule(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
--- a/http/controller/admin/audit.go
+++ b/http/controller/admin/audit.go
@@ -40,6 +40,7 @@ func (a *Audit) ConnList(c *gin.Context) {
 		if query.FromPeer != "" {
 			tx.Where("from_peer like ?", "%"+query.FromPeer+"%")
 		}
 		tx.Order("id desc")
 	})
 	response.Success(c, res)
 }
@@ -80,6 +81,37 @@ func (a *Audit) ConnDelete(c *gin.Context) {
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 }
 // BatchConnDelete 删除
 // @Tags 链接日志
 // @Summary 链接日志批量删除
 // @Description 链接日志批量删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.AuditConnLogIds true "链接日志"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/audit_conn/batchDelete [post]
 // @Security token
 func (a *Audit) BatchConnDelete(c *gin.Context) {
 	f := &admin.AuditConnLogIds{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.AuditService.BatchDeleteAuditConn(f.Ids)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 	return
 }
 // FileList 列表
 // @Tags 文件日志
 // @Summary 文件日志列表
@@ -92,7 +124,7 @@ func (a *Audit) ConnDelete(c *gin.Context) {
 // @Param from_peer query int false "来源设备"
 // @Success 200 {object} response.Response{data=model.AuditFileList}
 // @Failure 500 {object} response.Response
-// @Router /admin/audit_conn/list [get]
+// @Router /admin/audit_file/list [get]
 // @Security token
 func (a *Audit) FileList(c *gin.Context) {
 	query := &admin.AuditQuery{}
@@ -107,6 +139,7 @@ func (a *Audit) FileList(c *gin.Context) {
 		if query.FromPeer != "" {
 			tx.Where("from_peer like ?", "%"+query.FromPeer+"%")
 		}
 		tx.Order("id desc")
 	})
 	response.Success(c, res)
 }
@@ -120,7 +153,7 @@ func (a *Audit) FileList(c *gin.Context) {
 // @Param body body model.AuditFile true "文件日志信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
-// @Router /admin/audit_conn/delete [post]
+// @Router /admin/audit_file/delete [post]
 // @Security token
 func (a *Audit) FileDelete(c *gin.Context) {
 	f := &model.AuditFile{}
@@ -146,3 +179,34 @@ func (a *Audit) FileDelete(c *gin.Context) {
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 }
 // BatchFileDelete 删除
 // @Tags 文件日志
 // @Summary 文件日志批量删除
 // @Description 文件日志批量删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.AuditFileLogIds true "文件日志"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/audit_file/batchDelete [post]
 // @Security token
 func (a *Audit) BatchFileDelete(c *gin.Context) {
 	f := &admin.AuditFileLogIds{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.AuditService.BatchDeleteAuditFile(f.Ids)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 	return
 }
--- a/http/controller/admin/config.go
+++ b/http/controller/admin/config.go
@@ -0,0 +1,79 @@
 package admin
 import (
 	"Gwen/global"
 	"Gwen/http/response"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"os"
 	"strings"
 )
 type Config struct {
 }
 // ServerConfig RUSTDESK服务配置
 // @Tags ADMIN
 // @Summary RUSTDESK服务配置
 // @Description 服务配置,给webclient提供api-server
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/config/server [get]
 // @Security token
 func (co *Config) ServerConfig(c *gin.Context) {
 	cf := &response.ServerConfigResponse{
 		IdServer:    global.Config.Rustdesk.IdServer,
 		Key:         global.Config.Rustdesk.Key,
 		RelayServer: global.Config.Rustdesk.RelayServer,
 		ApiServer:   global.Config.Rustdesk.ApiServer,
 	}
 	response.Success(c, cf)
 }
 // AppConfig APP服务配置
 // @Tags ADMIN
 // @Summary APP服务配置
 // @Description APP服务配置
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/config/app [get]
 // @Security token
 func (co *Config) AppConfig(c *gin.Context) {
 	response.Success(c, &gin.H{
 		"web_client": global.Config.App.WebClient,
 	})
 }
 // AdminConfig ADMIN服务配置
 // @Tags ADMIN
 // @Summary ADMIN服务配置
 // @Description ADMIN服务配置
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/config/admin [get]
 // @Security token
 func (co *Config) AdminConfig(c *gin.Context) {
 	u := service.AllService.UserService.CurUser(c)
 	hello := global.Config.Admin.Hello
 	helloFile := global.Config.Admin.HelloFile
 	if helloFile != "" {
 		b, err := os.ReadFile(helloFile)
 		if err == nil && len(b) > 0 {
 			hello = string(b)
 		}
 	}
 	//replace {{username}} to username
 	hello = strings.Replace(hello, "{{username}}", u.Username, -1)
 	response.Success(c, &gin.H{
 		"title": global.Config.Admin.Title,
 		"hello": hello,
 	})
 }
--- a/http/controller/admin/group.go
+++ b/http/controller/admin/group.go
@@ -63,7 +63,7 @@ func (ct *Group) Create(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // List 列表
--- a/http/controller/admin/login.go
+++ b/http/controller/admin/login.go
@@ -2,18 +2,144 @@ package admin
 import (
 	"Gwen/global"
 	"Gwen/http/controller/api"
 	"Gwen/http/request/admin"
 	apiReq "Gwen/http/request/api"
 	"Gwen/http/response"
 	adResp "Gwen/http/response/admin"
 	"Gwen/model"
 	"Gwen/service"
 	"fmt"
 	"github.com/gin-gonic/gin"
 	"github.com/mojocn/base64Captcha"
 	"sync"
 	"time"
 )
 type Login struct {
 }
 // Captcha 验证码结构
 type Captcha struct {
 	Id        string    `json:"id"`  // 验证码 ID
 	B64       string    `json:"b64"` // base64 验证码
 	Code      string    `json:"-"`   // 验证码内容
 	ExpiresAt time.Time `json:"-"`   // 过期时间
 }
 type LoginLimiter struct {
 	mu        sync.RWMutex
 	failCount map[string]int       // 记录每个 IP 的失败次数
 	timestamp map[string]time.Time // 记录每个 IP 的最后失败时间
 	captchas  map[string]Captcha   // 每个 IP 的验证码
 	threshold int                  // 失败阈值
 	expiry    time.Duration        // 失败记录过期时间
 }
 func NewLoginLimiter(threshold int, expiry time.Duration) *LoginLimiter {
 	return &LoginLimiter{
 		failCount: make(map[string]int),
 		timestamp: make(map[string]time.Time),
 		captchas:  make(map[string]Captcha),
 		threshold: threshold,
 		expiry:    expiry,
 	}
 }
 // RecordFailure 记录登录失败
 func (l *LoginLimiter) RecordFailure(ip string) {
 	l.mu.Lock()
 	defer l.mu.Unlock()
 	// 如果该 IP 的记录已经过期，重置计数
 	if lastTime, exists := l.timestamp[ip]; exists && time.Since(lastTime) > l.expiry {
 		l.failCount[ip] = 0
 	}
 	// 更新失败次数和时间戳
 	l.failCount[ip]++
 	l.timestamp[ip] = time.Now()
 }
 // NeedsCaptcha 检查是否需要验证码
 func (l *LoginLimiter) NeedsCaptcha(ip string) bool {
 	l.mu.RLock()
 	defer l.mu.RUnlock()
 	// 检查记录是否存在且未过期
 	if lastTime, exists := l.timestamp[ip]; exists && time.Since(lastTime) <= l.expiry {
 		return l.failCount[ip] >= l.threshold
 	}
 	return false
 }
 // GenerateCaptcha 为指定 IP 生成验证码
 func (l *LoginLimiter) GenerateCaptcha(ip string) Captcha {
 	l.mu.Lock()
 	defer l.mu.Unlock()
 	capd := base64Captcha.NewDriverString(50, 150, 5, 10, 4, "1234567890abcdefghijklmnopqrstuvwxyz", nil, nil, nil)
 	b64cap := base64Captcha.NewCaptcha(capd, base64Captcha.DefaultMemStore)
 	id, b64s, answer, err := b64cap.Generate()
 	if err != nil {
 		global.Logger.Error("Generate captcha failed: " + err.Error())
 		return Captcha{}
 	}
 	// 保存验证码到对应 IP
 	l.captchas[ip] = Captcha{
 		Id:        id,
 		B64:       b64s,
 		Code:      answer,
 		ExpiresAt: time.Now().Add(5 * time.Minute),
 	}
 	return l.captchas[ip]
 }
 // VerifyCaptcha 验证指定 IP 的验证码
 func (l *LoginLimiter) VerifyCaptcha(ip, code string) bool {
 	l.mu.RLock()
 	defer l.mu.RUnlock()
 	// 检查验证码是否存在且未过期
 	if captcha, exists := l.captchas[ip]; exists && time.Now().Before(captcha.ExpiresAt) {
 		return captcha.Code == code
 	}
 	return false
 }
 // RemoveCaptcha 移除指定 IP 的验证码
 func (l *LoginLimiter) RemoveCaptcha(ip string) {
 	l.mu.Lock()
 	defer l.mu.Unlock()
 	delete(l.captchas, ip)
 }
 // CleanupExpired 清理过期的记录
 func (l *LoginLimiter) CleanupExpired() {
 	l.mu.Lock()
 	defer l.mu.Unlock()
 	now := time.Now()
 	for ip, lastTime := range l.timestamp {
 		if now.Sub(lastTime) > l.expiry {
 			delete(l.failCount, ip)
 			delete(l.timestamp, ip)
 			delete(l.captchas, ip)
 		}
 	}
 }
 func (l *LoginLimiter) RemoveRecord(ip string) {
 	l.mu.Lock()
 	defer l.mu.Unlock()
 	delete(l.failCount, ip)
 	delete(l.timestamp, ip)
 	delete(l.captchas, ip)
 }
 var loginLimiter = NewLoginLimiter(3, 5*time.Minute)
 // Login 登录
 // @Tags 登录
 // @Summary 登录
@@ -28,40 +154,69 @@ type Login struct {
 func (ct *Login) Login(c *gin.Context) {
 	f := &admin.Login{}
 	err := c.ShouldBindJSON(f)
 	clientIp := c.ClientIP()
 	if err != nil {
-		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "ParamsError", c.RemoteIP(), c.ClientIP()))
+		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "ParamsError", c.RemoteIP(), clientIp))
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
-		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "ParamsError", c.RemoteIP(), c.ClientIP()))
+		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "ParamsError", c.RemoteIP(), clientIp))
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	// 检查是否需要验证码
 	if loginLimiter.NeedsCaptcha(clientIp) {
 		if f.Captcha == "" || !loginLimiter.VerifyCaptcha(clientIp, f.Captcha) {
 			response.Fail(c, 101, response.TranslateMsg(c, "CaptchaError"))
 			return
 		}
 	}
 	u := service.AllService.UserService.InfoByUsernamePassword(f.Username, f.Password)
 	if u.Id == 0 {
-		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "UsernameOrPasswordError", c.RemoteIP(), c.ClientIP()))
+		global.Logger.Warn(fmt.Sprintf("Login Fail: %s %s %s", "UsernameOrPasswordError", c.RemoteIP(), clientIp))
 		loginLimiter.RecordFailure(clientIp)
 		if loginLimiter.NeedsCaptcha(clientIp) {
 			// 移除原验证码，重新生成
 			loginLimiter.RemoveCaptcha(clientIp)
 			response.Fail(c, 110, response.TranslateMsg(c, "UsernameOrPasswordError"))
 			return
 		}
 		response.Fail(c, 101, response.TranslateMsg(c, "UsernameOrPasswordError"))
 		return
 	}
 	ut := service.AllService.UserService.Login(u, &model.LoginLog{
 		UserId:   u.Id,
-		Client:   "webadmin",
+		Client:   model.LoginLogClientWebAdmin,
-		Uuid:     "",
+		Uuid:     "", //must be empty
-		Ip:       c.ClientIP(),
+		Ip:       clientIp,
-		Type:     "account",
+		Type:     model.LoginLogTypeAccount,
 		Platform: f.Platform,
 	})
-	response.Success(c, &adResp.LoginPayload{
+	// 成功后清除记录
-		Token:      ut.Token,
+	loginLimiter.RemoveRecord(clientIp)
-		Username:   u.Username,
+
-		RouteNames: service.AllService.UserService.RouteNames(u),
+	// 清理过期记录
-		Nickname:   u.Nickname,
+	go loginLimiter.CleanupExpired()
 	responseLoginSuccess(c, u, ut.Token)
 }
 func (ct *Login) Captcha(c *gin.Context) {
 	clientIp := c.ClientIP()
 	if !loginLimiter.NeedsCaptcha(clientIp) {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoCaptchaRequired"))
 		return
 	}
 	captcha := loginLimiter.GenerateCaptcha(clientIp)
 	response.Success(c, gin.H{
 		"captcha": captcha,
 	})
 }
@@ -82,3 +237,87 @@ func (ct *Login) Logout(c *gin.Context) {
 	}
 	response.Success(c, nil)
 }
 // LoginOptions
 // @Tags 登录
 // @Summary 登录选项
 // @Description 登录选项
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} []string
 // @Failure 500 {object} response.ErrorResponse
 // @Router /admin/login-options [post]
 func (ct *Login) LoginOptions(c *gin.Context) {
 	ip := c.ClientIP()
 	ops := service.AllService.OauthService.GetOauthProviders()
 	response.Success(c, gin.H{
 		"ops":          ops,
 		"register":     global.Config.App.Register,
 		"need_captcha": loginLimiter.NeedsCaptcha(ip),
 	})
 }
 // OidcAuth
 // @Tags Oauth
 // @Summary OidcAuth
 // @Description OidcAuth
 // @Accept  json
 // @Produce  json
 // @Router /admin/oidc/auth [post]
 func (ct *Login) OidcAuth(c *gin.Context) {
 	// o := &api.Oauth{}
 	// o.OidcAuth(c)
 	f := &apiReq.OidcAuthRequest{}
 	err := c.ShouldBindJSON(f)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	err, code, url := service.AllService.OauthService.BeginAuth(f.Op)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	service.AllService.OauthService.SetOauthCache(code, &service.OauthCacheItem{
 		Action:     service.OauthActionTypeLogin,
 		Op:         f.Op,
 		Id:         f.Id,
 		DeviceType: "webadmin",
 		// DeviceOs: ct.Platform(c),
 		DeviceOs: f.DeviceInfo.Os,
 		Uuid:     f.Uuid,
 	}, 5*60)
 	response.Success(c, gin.H{
 		"code": code,
 		"url":  url,
 	})
 }
 // OidcAuthQuery
 // @Tags Oauth
 // @Summary OidcAuthQuery
 // @Description OidcAuthQuery
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} response.Response{data=adResp.LoginPayload}
 // @Failure 500 {object} response.Response
 // @Router /admin/oidc/auth-query [get]
 func (ct *Login) OidcAuthQuery(c *gin.Context) {
 	o := &api.Oauth{}
 	u, ut := o.OidcAuthQueryPre(c)
 	if ut == nil {
 		return
 	}
 	responseLoginSuccess(c, u, ut.Token)
 }
 func responseLoginSuccess(c *gin.Context, u *model.User, token string) {
 	lp := &adResp.LoginPayload{}
 	lp.FromUser(u)
 	lp.Token = token
 	lp.RouteNames = service.AllService.UserService.RouteNames(u)
 	response.Success(c, lp)
 }
--- a/http/controller/admin/loginLog.go
+++ b/http/controller/admin/loginLog.go
@@ -23,7 +23,7 @@ type LoginLog struct {
 // @Param id path int true "ID"
 // @Success 200 {object} response.Response{data=model.LoginLog}
 // @Failure 500 {object} response.Response
-// @Router /admin/loginLog/detail/{id} [get]
+// @Router /admin/login_log/detail/{id} [get]
 // @Security token
 func (ct *LoginLog) Detail(c *gin.Context) {
 	id := c.Param("id")
@@ -48,7 +48,7 @@ func (ct *LoginLog) Detail(c *gin.Context) {
 // @Param user_id query int false "用户ID"
 // @Success 200 {object} response.Response{data=model.LoginLogList}
 // @Failure 500 {object} response.Response
-// @Router /admin/loginLog/list [get]
+// @Router /admin/login_log/list [get]
 // @Security token
 func (ct *LoginLog) List(c *gin.Context) {
 	query := &admin.LoginLogQuery{}
@@ -56,14 +56,11 @@ func (ct *LoginLog) List(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if !service.AllService.UserService.IsAdmin(u) || query.IsMy == 1 {
 		query.UserId = int(u.Id)
 	}
 	res := service.AllService.LoginLogService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 		tx.Order("id desc")
 	})
 	response.Success(c, res)
 }
@@ -77,7 +74,7 @@ func (ct *LoginLog) List(c *gin.Context) {
 // @Param body body model.LoginLog true "登录日志信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
-// @Router /admin/loginLog/delete [post]
+// @Router /admin/login_log/delete [post]
 // @Security token
 func (ct *LoginLog) Delete(c *gin.Context) {
 	f := &model.LoginLog{}
@@ -92,19 +89,45 @@ func (ct *LoginLog) Delete(c *gin.Context) {
 		return
 	}
 	l := service.AllService.LoginLogService.InfoById(f.Id)
-	u := service.AllService.UserService.CurUser(c)
+	if l.Id == 0 {
-	if !service.AllService.UserService.IsAdmin(u) && l.UserId != u.Id {
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
-	if l.Id > 0 {
+	err := service.AllService.LoginLogService.Delete(l)
-		err := service.AllService.LoginLogService.Delete(l)
+	if err == nil {
-		if err == nil {
+		response.Success(c, nil)
 			response.Success(c, nil)
 			return
 		}
 		response.Fail(c, 101, err.Error())
 		return
 	}
-	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
+	response.Fail(c, 101, err.Error())
 }
 // BatchDelete 删除
 // @Tags 登录日志
 // @Summary 登录日志批量删除
 // @Description 登录日志批量删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.LoginLogIds true "登录日志"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/login_log/batchDelete [post]
 // @Security token
 func (ct *LoginLog) BatchDelete(c *gin.Context) {
 	f := &admin.LoginLogIds{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.LoginLogService.BatchDelete(f.Ids)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 	return
 }
--- a/http/controller/admin/my/addressBook.go
+++ b/http/controller/admin/my/addressBook.go
@@ -0,0 +1,271 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/service"
 	"encoding/json"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type AddressBook struct{}
 // List 列表
 // @Tags 我的地址簿
 // @Summary 地址簿列表
 // @Description 地址簿列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param user_id query int false "用户id"
 // @Success 200 {object} response.Response{data=model.AddressBookList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book/list [get]
 // @Security token
 func (ct *AddressBook) List(c *gin.Context) {
 	query := &admin.AddressBookQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	query.UserId = int(u.Id)
 	res := service.AllService.AddressBookService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		//预加载地址簿名称
 		tx.Preload("Collection", func(txc *gorm.DB) *gorm.DB {
 			return txc.Select("id,name")
 		})
 		if query.Id != "" {
 			tx.Where("id like ?", "%"+query.Id+"%")
 		}
 		tx.Where("user_id = ?", query.UserId)
 		if query.Username != "" {
 			tx.Where("username like ?", "%"+query.Username+"%")
 		}
 		if query.Hostname != "" {
 			tx.Where("hostname like ?", "%"+query.Hostname+"%")
 		}
 		if query.CollectionId != nil && *query.CollectionId >= 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	abCIds := make([]uint, 0)
 	for _, ab := range res.AddressBooks {
 		abCIds = append(abCIds, ab.CollectionId)
 	}
 	response.Success(c, res)
 }
 // Create 创建地址簿
 // @Tags 我的地址簿
 // @Summary 创建地址簿
 // @Description 创建地址簿
 // @Accept  json
 // @Produce  json
 // @Param body body admin.AddressBookForm true "地址簿信息"
 // @Success 200 {object} response.Response{data=model.AddressBook}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book/create [post]
 // @Security token
 func (ct *AddressBook) Create(c *gin.Context) {
 	f := &admin.AddressBookForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	t := f.ToAddressBook()
 	u := service.AllService.UserService.CurUser(c)
 	t.UserId = u.Id
 	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	ex := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(t.UserId, t.Id, t.CollectionId)
 	if ex.RowId > 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemExists"))
 		return
 	}
 	err := service.AllService.AddressBookService.Create(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Update 编辑
 // @Tags 我的地址簿
 // @Summary 地址簿编辑
 // @Description 地址簿编辑
 // @Accept  json
 // @Produce  json
 // @Param body body admin.AddressBookForm true "地址簿信息"
 // @Success 200 {object} response.Response{data=model.AddressBook}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book/update [post]
 // @Security token
 func (ct *AddressBook) Update(c *gin.Context) {
 	f := &admin.AddressBookForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.RowId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if f.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	ex := service.AllService.AddressBookService.InfoByRowId(f.RowId)
 	if ex.RowId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	t := f.ToAddressBook()
 	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.AddressBookService.UpdateAll(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 我的地址簿
 // @Summary 地址簿删除
 // @Description 地址簿删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.AddressBookForm true "地址簿信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book/delete [post]
 // @Security token
 func (ct *AddressBook) Delete(c *gin.Context) {
 	f := &admin.AddressBookForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.RowId
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.AddressBookService.InfoByRowId(f.RowId)
 	if ex.RowId == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	err := service.AllService.AddressBookService.Delete(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 	return
 }
 func (ct *AddressBook) BatchCreateFromPeers(c *gin.Context) {
 	f := &admin.BatchCreateFromPeersForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if f.CollectionId != 0 {
 		collection := service.AllService.AddressBookService.CollectionInfoById(f.CollectionId)
 		if collection.Id == 0 {
 			response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 			return
 		}
 		if collection.UserId != u.Id {
 			response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 			return
 		}
 	}
 	if len(f.PeerIds) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	pl := int64(len(f.PeerIds))
 	peers := service.AllService.PeerService.List(1, uint(pl), func(tx *gorm.DB) {
 		tx.Where("row_id in ?", f.PeerIds)
 		tx.Where("user_id = ?", u.Id)
 	})
 	if peers.Total == 0 || pl != peers.Total {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	tags, _ := json.Marshal(f.Tags)
 	for _, peer := range peers.Peers {
 		ab := service.AllService.AddressBookService.FromPeer(peer)
 		ab.Tags = tags
 		ab.CollectionId = f.CollectionId
 		ex := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(u.Id, ab.Id, ab.CollectionId)
 		if ex.RowId != 0 {
 			continue
 		}
 		service.AllService.AddressBookService.Create(ab)
 	}
 	response.Success(c, nil)
 }
 func (ct *AddressBook) BatchUpdateTags(c *gin.Context) {
 	f := &admin.BatchUpdateTagsForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	abs := service.AllService.AddressBookService.List(1, 999, func(tx *gorm.DB) {
 		tx.Where("row_id in ?", f.RowIds)
 		tx.Where("user_id = ?", u.Id)
 	})
 	if abs.Total == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.AddressBookService.BatchUpdateTags(abs.AddressBooks, f.Tags)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
--- a/http/controller/admin/my/addressBookCollection.go
+++ b/http/controller/admin/my/addressBookCollection.go
@@ -0,0 +1,162 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type AddressBookCollection struct {
 }
 // Create 创建地址簿名称
 // @Tags 我的地址簿名称
 // @Summary 创建地址簿名称
 // @Description 创建地址簿名称
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection/create [post]
 // @Security token
 func (abc *AddressBookCollection) Create(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	f.UserId = u.Id
 	err := service.AllService.AddressBookService.CreateCollection(f)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // List 列表
 // @Tags 我的地址簿名称
 // @Summary 地址簿名称列表
 // @Description 地址簿名称列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Success 200 {object} response.Response{data=model.AddressBookCollectionList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection/list [get]
 // @Security token
 func (abc *AddressBookCollection) List(c *gin.Context) {
 	query := &admin.AddressBookCollectionQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	query.UserId = int(u.Id)
 	res := service.AllService.AddressBookService.ListCollection(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Where("user_id = ?", query.UserId)
 	})
 	response.Success(c, res)
 }
 // Update 编辑
 // @Tags 我的地址簿名称
 // @Summary 地址簿名称编辑
 // @Description 地址簿名称编辑
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection/update [post]
 // @Security token
 func (abc *AddressBookCollection) Update(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if f.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	ex := service.AllService.AddressBookService.CollectionInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	err := service.AllService.AddressBookService.UpdateCollection(f)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 我的地址簿名称
 // @Summary 地址簿名称删除
 // @Description 地址簿名称删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollection true "地址簿名称信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection/delete [post]
 // @Security token
 func (abc *AddressBookCollection) Delete(c *gin.Context) {
 	f := &model.AddressBookCollection{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.AddressBookService.CollectionInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	err := service.AllService.AddressBookService.DeleteCollection(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
--- a/http/controller/admin/my/addressBookCollectionRule.go
+++ b/http/controller/admin/my/addressBookCollectionRule.go
@@ -0,0 +1,228 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type AddressBookCollectionRule struct {
 }
 // List 列表
 // @Tags 我的地址簿规则
 // @Summary 地址簿规则列表
 // @Description 地址簿规则列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param is_my query int false "是否是我的"
 // @Param user_id query int false "用户id"
 // @Param collection_id query int false "地址簿集合id"
 // @Success 200 {object} response.Response{data=model.AddressBookCollectionList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection_rule/list [get]
 // @Security token
 func (abcr *AddressBookCollectionRule) List(c *gin.Context) {
 	query := &admin.AddressBookCollectionRuleQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	query.UserId = int(u.Id)
 	res := service.AllService.AddressBookService.ListRules(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Where("user_id = ?", query.UserId)
 		if query.CollectionId > 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	response.Success(c, res)
 }
 // Create 创建地址簿规则
 // @Tags 我的地址簿规则
 // @Summary 创建地址簿规则
 // @Description 创建地址簿规则
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection_rule/create [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Create(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Type != model.ShareAddressBookRuleTypePersonal && f.Type != model.ShareAddressBookRuleTypeGroup {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	//t := f.ToAddressBookCollection()
 	t := f
 	u := service.AllService.UserService.CurUser(c)
 	t.UserId = u.Id
 	msg, res := abcr.CheckForm(u, t)
 	if !res {
 		response.Fail(c, 101, response.TranslateMsg(c, msg))
 		return
 	}
 	err := service.AllService.AddressBookService.CreateRule(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 func (abcr *AddressBookCollectionRule) CheckForm(u *model.User, t *model.AddressBookCollectionRule) (string, bool) {
 	if t.UserId != u.Id {
 		return "NoAccess", false
 	}
 	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		return "ParamsError", false
 	}
 	//check to_id
 	if t.Type == model.ShareAddressBookRuleTypePersonal {
 		if t.ToId == t.UserId {
 			return "ParamsError", false
 		}
 		tou := service.AllService.UserService.InfoById(t.ToId)
 		if tou.Id == 0 {
 			return "ItemNotFound", false
 		}
 		//非管理员不能分享给非本组织用户
 		if tou.GroupId != u.GroupId {
 			return "NoAccess", false
 		}
 	} else if t.Type == model.ShareAddressBookRuleTypeGroup {
 		//非管理员不能分享给其他组
 		if t.ToId != u.GroupId {
 			return "NoAccess", false
 		}
 		tog := service.AllService.GroupService.InfoById(t.ToId)
 		if tog.Id == 0 {
 			return "ItemNotFound", false
 		}
 	} else {
 		return "ParamsError", false
 	}
 	// 重复检查
 	ex := service.AllService.AddressBookService.RulePersonalInfoByToIdAndCid(t.ToId, t.CollectionId)
 	if t.Id == 0 && ex.Id > 0 {
 		return "ItemExists", false
 	}
 	if t.Id > 0 && ex.Id > 0 && t.Id != ex.Id {
 		return "ItemExists", false
 	}
 	return "", true
 }
 // Update 编辑
 // @Tags 我的地址簿规则
 // @Summary 地址簿规则编辑
 // @Description 地址簿规则编辑
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response{data=model.AddressBookCollection}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection_rule/update [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Update(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	ex := service.AllService.AddressBookService.RuleInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	t := f
 	msg, res := abcr.CheckForm(u, t)
 	if !res {
 		response.Fail(c, 101, response.TranslateMsg(c, msg))
 		return
 	}
 	err := service.AllService.AddressBookService.UpdateRule(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 我的地址簿规则
 // @Summary 地址簿规则删除
 // @Description 地址簿规则删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.AddressBookCollectionRule true "地址簿规则信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/address_book_collection_rule/delete [post]
 // @Security token
 func (abcr *AddressBookCollectionRule) Delete(c *gin.Context) {
 	f := &model.AddressBookCollectionRule{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.AddressBookService.RuleInfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	err := service.AllService.AddressBookService.DeleteRule(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
--- a/http/controller/admin/my/loginLog.go
+++ b/http/controller/admin/my/loginLog.go
@@ -0,0 +1,113 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type LoginLog struct {
 }
 // List 列表
 // @Tags 我的登录日志
 // @Summary 登录日志列表
 // @Description 登录日志列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param user_id query int false "用户ID"
 // @Success 200 {object} response.Response{data=model.LoginLogList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/login_log/list [get]
 // @Security token
 func (ct *LoginLog) List(c *gin.Context) {
 	query := &admin.LoginLogQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	res := service.AllService.LoginLogService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Where("user_id = ? and is_deleted = ?", u.Id, model.IsDeletedNo)
 		tx.Order("id desc")
 	})
 	response.Success(c, res)
 }
 // Delete 删除
 // @Tags 我的登录日志
 // @Summary 登录日志删除
 // @Description 登录日志删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.LoginLog true "登录日志信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/login_log/delete [post]
 // @Security token
 func (ct *LoginLog) Delete(c *gin.Context) {
 	f := &model.LoginLog{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	l := service.AllService.LoginLogService.InfoById(f.Id)
 	if l.Id == 0 || l.IsDeleted == model.IsDeletedYes {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if l.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.LoginLogService.SoftDelete(l)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 }
 // BatchDelete 删除
 // @Tags 我的登录日志
 // @Summary 登录日志批量删除
 // @Description 登录日志批量删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.LoginLogIds true "登录日志"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/login_log/batchDelete [post]
 // @Security token
 func (ct *LoginLog) BatchDelete(c *gin.Context) {
 	f := &admin.LoginLogIds{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	err := service.AllService.LoginLogService.BatchSoftDelete(u.Id, f.Ids)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 	return
 }
--- a/http/controller/admin/my/peer.go
+++ b/http/controller/admin/my/peer.go
@@ -0,0 +1,59 @@
 package my
 import (
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 	"time"
 )
 type Peer struct {
 }
 // List 列表
 // @Tags 我的设备
 // @Summary 设备列表
 // @Description 设备列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param time_ago query int false "时间"
 // @Param id query string false "ID"
 // @Param hostname query string false "主机名"
 // @Param uuids query string false "uuids 用逗号分隔"
 // @Success 200 {object} response.Response{data=model.PeerList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/peer/list [get]
 // @Security token
 func (ct *Peer) List(c *gin.Context) {
 	query := &admin.PeerQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	res := service.AllService.PeerService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Where("user_id = ?", u.Id)
 		if query.TimeAgo > 0 {
 			lt := time.Now().Unix() - int64(query.TimeAgo)
 			tx.Where("last_online_time < ?", lt)
 		}
 		if query.TimeAgo < 0 {
 			lt := time.Now().Unix() + int64(query.TimeAgo)
 			tx.Where("last_online_time > ?", lt)
 		}
 		if query.Id != "" {
 			tx.Where("id like ?", "%"+query.Id+"%")
 		}
 		if query.Hostname != "" {
 			tx.Where("hostname like ?", "%"+query.Hostname+"%")
 		}
 		if query.Uuids != "" {
 			tx.Where("uuid in (?)", query.Uuids)
 		}
 	})
 	response.Success(c, res)
 }
--- a/http/controller/admin/my/shareRecord.go
+++ b/http/controller/admin/my/shareRecord.go
@@ -0,0 +1,119 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type ShareRecord struct {
 }
 // List 分享记录列表
 // @Tags 我的分享记录
 // @Summary 分享记录列表
 // @Description 分享记录列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/share_record/list [get]
 // @Security token
 func (sr *ShareRecord) List(c *gin.Context) {
 	query := &admin.PageQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	res := service.AllService.ShareRecordService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Where("user_id = ?", u.Id)
 	})
 	response.Success(c, res)
 }
 // Delete 分享记录删除
 // @Tags 我的分享记录
 // @Summary 分享记录删除
 // @Description 分享记录删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.ShareRecordForm true "分享记录信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/share_record/delete [post]
 // @Security token
 func (sr *ShareRecord) Delete(c *gin.Context) {
 	f := &admin.ShareRecordForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	i := service.AllService.ShareRecordService.InfoById(f.Id)
 	if i.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	if i.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.ShareRecordService.Delete(i)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 }
 // BatchDelete 批量删除我的分享记录
 // @Tags 我的
 // @Summary 批量删除我的分享记录
 // @Description 批量删除我的分享记录
 // @Accept  json
 // @Produce  json
 // @Param body body admin.PeerShareRecordBatchDeleteForm true "id"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/share_record/batchDelete [post]
 // @Security token
 func (sr *ShareRecord) BatchDelete(c *gin.Context) {
 	f := &admin.PeerShareRecordBatchDeleteForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	var l int64
 	l = int64(len(f.Ids))
 	res := service.AllService.ShareRecordService.List(1, uint(l), func(tx *gorm.DB) {
 		tx.Where("user_id = ?", u.Id)
 		tx.Where("id in ?", f.Ids)
 	})
 	if res.Total != l {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	err := service.AllService.ShareRecordService.BatchDelete(f.Ids)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
--- a/http/controller/admin/my/tag.go
+++ b/http/controller/admin/my/tag.go
@@ -0,0 +1,176 @@
 package my
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type Tag struct{}
 // List 列表
 // @Tags 我的标签
 // @Summary 标签列表
 // @Description 标签列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param is_my query int false "是否是我的"
 // @Param user_id query int false "用户id"
 // @Success 200 {object} response.Response{data=model.TagList}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/tag/list [get]
 // @Security token
 func (ct *Tag) List(c *gin.Context) {
 	query := &admin.TagQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	query.UserId = int(u.Id)
 	res := service.AllService.TagService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Preload("Collection", func(txc *gorm.DB) *gorm.DB {
 			return txc.Select("id,name")
 		})
 		tx.Where("user_id = ?", query.UserId)
 		if query.CollectionId != nil && *query.CollectionId >= 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	response.Success(c, res)
 }
 // Create 创建标签
 // @Tags 我的标签
 // @Summary 创建标签
 // @Description 创建标签
 // @Accept  json
 // @Produce  json
 // @Param body body admin.TagForm true "标签信息"
 // @Success 200 {object} response.Response{data=model.Tag}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/tag/create [post]
 // @Security token
 func (ct *Tag) Create(c *gin.Context) {
 	f := &admin.TagForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	t := f.ToTag()
 	u := service.AllService.UserService.CurUser(c)
 	t.UserId = u.Id
 	err := service.AllService.TagService.Create(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Update 编辑
 // @Tags 我的标签
 // @Summary 标签编辑
 // @Description 标签编辑
 // @Accept  json
 // @Produce  json
 // @Param body body admin.TagForm true "标签信息"
 // @Success 200 {object} response.Response{data=model.Tag}
 // @Failure 500 {object} response.Response
 // @Router /admin/my/tag/update [post]
 // @Security token
 func (ct *Tag) Update(c *gin.Context) {
 	f := &admin.TagForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	if f.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if f.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	ex := service.AllService.TagService.InfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	t := f.ToTag()
 	if t.CollectionId > 0 && !service.AllService.AddressBookService.CheckCollectionOwner(t.UserId, t.CollectionId) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.TagService.Update(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
 // Delete 删除
 // @Tags 标签
 // @Summary 标签删除
 // @Description 标签删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.TagForm true "标签信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/my/tag/delete [post]
 // @Security token
 func (ct *Tag) Delete(c *gin.Context) {
 	f := &admin.TagForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	ex := service.AllService.TagService.InfoById(f.Id)
 	if ex.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if ex.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	err := service.AllService.TagService.Delete(ex)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 	return
 }
--- a/http/controller/admin/oauth.go
+++ b/http/controller/admin/oauth.go
@@ -5,7 +5,6 @@ import (
 	"Gwen/http/request/admin"
 	adminReq "Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"strconv"
@@ -96,21 +95,23 @@ func (o *Oauth) BindConfirm(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
-	v := service.AllService.OauthService.GetOauthCache(j.Code)
+	oauthService := service.AllService.OauthService
-	if v == nil {
+	oauthCache := oauthService.GetOauthCache(j.Code)
 	if oauthCache == nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OauthExpired"))
 		return
 	}
-	u := service.AllService.UserService.CurUser(c)
+	oauthUser := oauthCache.ToOauthUser()
-	err = service.AllService.OauthService.BindGithubUser(v.ThirdOpenId, v.ThirdOpenId, u.Id)
+	user := service.AllService.UserService.CurUser(c)
 	err = oauthService.BindOauthUser(user.Id, oauthUser, oauthCache.Op)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "BindFail"))
 		return
 	}
-	v.UserId = u.Id
+	oauthCache.UserId = user.Id
-	service.AllService.OauthService.SetOauthCache(j.Code, v, 0)
+	oauthService.SetOauthCache(j.Code, oauthCache, 0)
-	response.Success(c, v)
+	response.Success(c, oauthCache)
 }
 func (o *Oauth) Unbind(c *gin.Context) {
@@ -126,21 +127,11 @@ func (o *Oauth) Unbind(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
-	if f.Op == model.OauthTypeGithub {
+	err = service.AllService.OauthService.UnBindOauthUser(u.Id, f.Op)
-		err = service.AllService.OauthService.UnBindGithubUser(u.Id)
+	if err != nil {
-		if err != nil {
+		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
-			response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
+		return
 			return
 		}
 	}
 	if f.Op == model.OauthTypeGoogle {
 		err = service.AllService.OauthService.UnBindGoogleUser(u.Id)
 		if err != nil {
 			response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 			return
 		}
 	}
 	response.Success(c, nil)
 }
@@ -189,20 +180,23 @@ func (o *Oauth) Create(c *gin.Context) {
 		response.Fail(c, 101, errList[0])
 		return
 	}
-
+	u := f.ToOauth()
-	ex := service.AllService.OauthService.InfoByOp(f.Op)
+	err := u.FormatOauthInfo()
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	ex := service.AllService.OauthService.InfoByOp(u.Op)
 	if ex.Id > 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ItemExists"))
 		return
 	}
-
+	err = service.AllService.OauthService.Create(u)
 	u := f.ToOauth()
 	err := service.AllService.OauthService.Create(u)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // List 列表
--- a/http/controller/admin/peer.go
+++ b/http/controller/admin/peer.go
@@ -59,13 +59,13 @@ func (ct *Peer) Create(c *gin.Context) {
 		response.Fail(c, 101, errList[0])
 		return
 	}
-	u := f.ToPeer()
+	p := f.ToPeer()
-	err := service.AllService.PeerService.Create(u)
+	err := service.AllService.PeerService.Create(p)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // List 列表
@@ -79,6 +79,7 @@ func (ct *Peer) Create(c *gin.Context) {
 // @Param time_ago query int false "时间"
 // @Param id query string false "ID"
 // @Param hostname query string false "主机名"
 // @Param uuids query string false "uuids 用逗号分隔"
 // @Success 200 {object} response.Response{data=model.PeerList}
 // @Failure 500 {object} response.Response
 // @Router /admin/peer/list [get]
@@ -104,6 +105,9 @@ func (ct *Peer) List(c *gin.Context) {
 		if query.Hostname != "" {
 			tx.Where("hostname like ?", "%"+query.Hostname+"%")
 		}
 		if query.Uuids != "" {
 			tx.Where("uuid in (?)", query.Uuids)
 		}
 	})
 	response.Success(c, res)
 }
@@ -188,7 +192,7 @@ func (ct *Peer) Delete(c *gin.Context) {
 // @Param body body admin.PeerBatchDeleteForm true "设备id"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
-// @Router /admin/peer/delete [post]
+// @Router /admin/peer/batchDelete [post]
 // @Security token
 func (ct *Peer) BatchDelete(c *gin.Context) {
 	f := &admin.PeerBatchDeleteForm{}
@@ -207,3 +211,21 @@ func (ct *Peer) BatchDelete(c *gin.Context) {
 	}
 	response.Success(c, nil)
 }
 func (ct *Peer) SimpleData(c *gin.Context) {
 	f := &admin.SimpleDataQuery{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	res := service.AllService.PeerService.List(1, 99999, func(tx *gorm.DB) {
 		//可以公开的情报
 		tx.Select("id,version")
 		tx.Where("id in (?)", f.Ids)
 	})
 	response.Success(c, res)
 }
--- a/http/controller/admin/shareRecord.go
+++ b/http/controller/admin/shareRecord.go
@@ -0,0 +1,105 @@
 package admin
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type ShareRecord struct {
 }
 // List 列表
 // @Tags 分享记录
 // @Summary 分享记录列表
 // @Description 分享记录列表
 // @Accept  json
 // @Produce  json
 // @Param user_id query int false "用户ID"
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/share_record/list [get]
 // @Security token
 func (sr *ShareRecord) List(c *gin.Context) {
 	query := &admin.ShareRecordQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	res := service.AllService.ShareRecordService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 	})
 	response.Success(c, res)
 }
 // Delete 删除
 // @Tags 分享记录
 // @Summary 分享记录删除
 // @Description 分享记录删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.ShareRecordForm true "分享记录信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/share_record/delete [post]
 // @Security token
 func (sr *ShareRecord) Delete(c *gin.Context) {
 	f := &admin.ShareRecordForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	i := service.AllService.ShareRecordService.InfoById(f.Id)
 	if i.Id > 0 {
 		err := service.AllService.ShareRecordService.Delete(i)
 		if err == nil {
 			response.Success(c, nil)
 			return
 		}
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 }
 // BatchDelete 批量删除
 // @Tags 分享记录
 // @Summary 批量分享记录
 // @Description 批量分享记录
 // @Accept  json
 // @Produce  json
 // @Param body body admin.PeerShareRecordBatchDeleteForm true "id"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/share_record/batchDelete [post]
 // @Security token
 func (sr *ShareRecord) BatchDelete(c *gin.Context) {
 	f := &admin.PeerShareRecordBatchDeleteForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if len(f.Ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.ShareRecordService.BatchDelete(f.Ids)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
 	response.Success(c, nil)
 }
--- a/http/controller/admin/tag.go
+++ b/http/controller/admin/tag.go
@@ -64,16 +64,16 @@ func (ct *Tag) Create(c *gin.Context) {
 		return
 	}
 	t := f.ToTag()
-	u := service.AllService.UserService.CurUser(c)
+	if t.UserId == 0 {
-	if !service.AllService.UserService.IsAdmin(u) || t.UserId == 0 {
+		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
-		t.UserId = u.Id
+		return
 	}
 	err := service.AllService.TagService.Create(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // List 列表
@@ -96,14 +96,16 @@ func (ct *Tag) List(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	if !service.AllService.UserService.IsAdmin(u) || query.IsMy == 1 {
 		query.UserId = int(u.Id)
 	}
 	res := service.AllService.TagService.List(query.Page, query.PageSize, func(tx *gorm.DB) {
 		tx.Preload("Collection", func(txc *gorm.DB) *gorm.DB {
 			return txc.Select("id,name")
 		})
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 		if query.CollectionId != nil && *query.CollectionId >= 0 {
 			tx.Where("collection_id = ?", query.CollectionId)
 		}
 	})
 	response.Success(c, res)
 }
@@ -134,12 +136,12 @@ func (ct *Tag) Update(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
-	t := f.ToTag()
+	ex := service.AllService.TagService.InfoById(f.Id)
-	u := service.AllService.UserService.CurUser(c)
+	if ex.Id == 0 {
-	if !service.AllService.UserService.IsAdmin(u) && t.UserId != u.Id {
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	t := f.ToTag()
 	err := service.AllService.TagService.Update(t)
 	if err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
@@ -171,20 +173,15 @@ func (ct *Tag) Delete(c *gin.Context) {
 		response.Fail(c, 101, errList[0])
 		return
 	}
-	t := service.AllService.TagService.InfoById(f.Id)
+	ex := service.AllService.TagService.InfoById(f.Id)
-	u := service.AllService.UserService.CurUser(c)
+	if ex.Id == 0 {
-	if !service.AllService.UserService.IsAdmin(u) && t.UserId != u.Id {
+		response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
-	if u.Id > 0 {
+	err := service.AllService.TagService.Delete(ex)
-		err := service.AllService.TagService.Delete(t)
+	if err == nil {
-		if err == nil {
+		response.Success(c, nil)
 			response.Success(c, nil)
 			return
 		}
 		response.Fail(c, 101, err.Error())
 		return
 	}
-	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
+	response.Fail(c, 101, err.Error())
 }
--- a/http/controller/admin/user.go
+++ b/http/controller/admin/user.go
@@ -5,6 +5,7 @@ import (
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	adResp "Gwen/http/response/admin"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
@@ -65,7 +66,7 @@ func (ct *User) Create(c *gin.Context) {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
 	}
-	response.Success(c, u)
+	response.Success(c, nil)
 }
 // List 列表
@@ -215,12 +216,7 @@ func (ct *User) Current(c *gin.Context) {
 	u := service.AllService.UserService.CurUser(c)
 	token, _ := c.Get("token")
 	t := token.(string)
-	response.Success(c, &adResp.LoginPayload{
+	responseLoginSuccess(c, u, t)
 		Token:      t,
 		Username:   u.Username,
 		RouteNames: service.AllService.UserService.RouteNames(u),
 		Nickname:   u.Nickname,
 	})
 }
 // ChangeCurPwd 修改当前用户密码
@@ -247,10 +243,14 @@ func (ct *User) ChangeCurPwd(c *gin.Context) {
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
-	oldPwd := service.AllService.UserService.EncryptPassword(f.OldPassword)
+	// If the password is not empty, the old password is verified
-	if u.Password != oldPwd {
+	// otherwise, the old password is not verified
-		response.Fail(c, 101, response.TranslateMsg(c, "OldPasswordError"))
+	if !service.AllService.UserService.IsPasswordEmptyByUser(u) {
-		return
+		oldPwd := service.AllService.UserService.EncryptPassword(f.OldPassword)
 		if u.Password != oldPwd {
 			response.Fail(c, 101, response.TranslateMsg(c, "OldPasswordError"))
 			return
 		}
 	}
 	err := service.AllService.UserService.UpdatePassword(u, f.NewPassword)
 	if err != nil {
@@ -281,10 +281,10 @@ func (ct *User) MyOauth(c *gin.Context) {
 	var res []*adResp.UserOauthItem
 	for _, oa := range oal.Oauths {
 		item := &adResp.UserOauthItem{
-			ThirdType: oa.Op,
+			Op: oa.Op,
 		}
 		for _, ut := range uts {
-			if ut.ThirdType == oa.Op {
+			if ut.Op == oa.Op {
 				item.Status = 1
 				break
 			}
@@ -293,3 +293,65 @@ func (ct *User) MyOauth(c *gin.Context) {
 	}
 	response.Success(c, res)
 }
 // groupUsers
 func (ct *User) GroupUsers(c *gin.Context) {
 	q := &admin.GroupUsersQuery{}
 	if err := c.ShouldBindJSON(q); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	gid := u.GroupId
 	uid := u.Id
 	if service.AllService.UserService.IsAdmin(u) && q.UserId > 0 {
 		nu := service.AllService.UserService.InfoById(q.UserId)
 		gid = nu.GroupId
 		uid = q.UserId
 	}
 	res := service.AllService.UserService.List(1, 999, func(tx *gorm.DB) {
 		tx.Where("group_id = ?", gid)
 	})
 	var data []*adResp.GroupUsersPayload
 	for _, _u := range res.Users {
 		gup := &adResp.GroupUsersPayload{}
 		gup.FromUser(_u)
 		if _u.Id == uid {
 			gup.Status = 0
 		}
 		data = append(data, gup)
 	}
 	response.Success(c, data)
 }
 // Register
 func (ct *User) Register(c *gin.Context) {
 	if !global.Config.App.Register {
 		response.Fail(c, 101, response.TranslateMsg(c, "RegisterClosed"))
 		return
 	}
 	f := &admin.RegisterForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	errList := global.Validator.ValidStruct(c, f)
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	u := service.AllService.UserService.Register(f.Username, f.Email, f.Password)
 	if u == nil || u.Id == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "OperationFailed"))
 		return
 	}
 	// 注册成功后自动登录
 	ut := service.AllService.UserService.Login(u, &model.LoginLog{
 		UserId: u.Id,
 		Client: model.LoginLogClientWebAdmin,
 		Uuid:   "",
 		Ip:     c.ClientIP(),
 		Type:   model.LoginLogTypeAccount,
 	})
 	responseLoginSuccess(c, u, ut.Token)
 }
--- a/http/controller/admin/userToken.go
+++ b/http/controller/admin/userToken.go
@@ -0,0 +1,113 @@
 package admin
 import (
 	"Gwen/global"
 	"Gwen/http/request/admin"
 	"Gwen/http/response"
 	"Gwen/model"
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"gorm.io/gorm"
 )
 type UserToken struct {
 }
 // List 列表
 // @Tags 登录凭证
 // @Summary 登录凭证列表
 // @Description 登录凭证列表
 // @Accept  json
 // @Produce  json
 // @Param page query int false "页码"
 // @Param page_size query int false "页大小"
 // @Param user_id query int false "用户ID"
 // @Success 200 {object} response.Response{data=model.UserTokenList}
 // @Failure 500 {object} response.Response
 // @Router /admin/user_token/list [get]
 // @Security token
 func (ct *UserToken) List(c *gin.Context) {
 	query := &admin.LoginTokenQuery{}
 	if err := c.ShouldBindQuery(query); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	res := service.AllService.UserService.TokenList(query.Page, query.PageSize, func(tx *gorm.DB) {
 		if query.UserId > 0 {
 			tx.Where("user_id = ?", query.UserId)
 		}
 		tx.Order("id desc")
 	})
 	response.Success(c, res)
 }
 // Delete 删除
 // @Tags 登录凭证
 // @Summary 登录凭证删除
 // @Description 登录凭证删除
 // @Accept  json
 // @Produce  json
 // @Param body body model.UserToken true "登录凭证信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/user_token/delete [post]
 // @Security token
 func (ct *UserToken) Delete(c *gin.Context) {
 	f := &model.UserToken{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	id := f.Id
 	errList := global.Validator.ValidVar(c, id, "required,gt=0")
 	if len(errList) > 0 {
 		response.Fail(c, 101, errList[0])
 		return
 	}
 	l := service.AllService.UserService.TokenInfoById(f.Id)
 	u := service.AllService.UserService.CurUser(c)
 	if !service.AllService.UserService.IsAdmin(u) && l.UserId != u.Id {
 		response.Fail(c, 101, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	if l.Id > 0 {
 		err := service.AllService.UserService.DeleteToken(l)
 		if err == nil {
 			response.Success(c, nil)
 			return
 		}
 		response.Fail(c, 101, err.Error())
 		return
 	}
 	response.Fail(c, 101, response.TranslateMsg(c, "ItemNotFound"))
 }
 // BatchDelete 批量删除
 // @Tags 登录凭证
 // @Summary 登录凭证批量删除
 // @Description 登录凭证批量删除
 // @Accept  json
 // @Produce  json
 // @Param body body admin.UserTokenBatchDeleteForm true "登录凭证信息"
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /admin/user_token/batchDelete [post]
 // @Security token
 func (ct *UserToken) BatchDelete(c *gin.Context) {
 	f := &admin.UserTokenBatchDeleteForm{}
 	if err := c.ShouldBindJSON(f); err != nil {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	ids := f.Ids
 	if len(ids) == 0 {
 		response.Fail(c, 101, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	err := service.AllService.UserService.BatchDeleteUserToken(ids)
 	if err == nil {
 		response.Success(c, nil)
 		return
 	}
 	response.Fail(c, 101, err.Error())
 }
--- a/http/controller/api/ab.go
+++ b/http/controller/api/ab.go
@@ -7,10 +7,13 @@ import (
 	"Gwen/http/response/api"
 	"Gwen/model"
 	"Gwen/service"
 	"Gwen/utils"
 	"encoding/json"
 	"errors"
 	"github.com/gin-gonic/gin"
 	"net/http"
 	"strconv"
 	"strings"
 )
 type Ab struct {
@@ -29,8 +32,8 @@ type Ab struct {
 func (a *Ab) Ab(c *gin.Context) {
 	user := service.AllService.UserService.CurUser(c)
-	al := service.AllService.AddressBookService.ListByUserId(user.Id, 1, 1000)
+	al := service.AllService.AddressBookService.ListByUserIdAndCollectionId(user.Id, 0, 1, 1000)
-	tags := service.AllService.TagService.ListByUserId(user.Id)
+	tags := service.AllService.TagService.ListByUserIdAndCollectionId(user.Id, 0)
 	tagColors := map[string]uint{}
 	//将tags中的name转成一个以逗号分割的字符串
@@ -95,20 +98,32 @@ func (a *Ab) UpAb(c *gin.Context) {
 	c.JSON(http.StatusOK, nil)
 }
-// Tags
+// PTags
-// @Tags 地址
+// @Tags 地址[Personal]
 // @Summary 标签
 // @Description 标签
 // @Accept  json
 // @Produce  json
-// @Success 200 {object} []model.Tag
+// @Param guid path string true "guid"
 // @Success 200 {object} model.TagList
 // @Failure 500 {object} response.ErrorResponse
-// @Router /tags [post]
+// @Router /ab/tags/{guid} [post]
 // @Security BearerAuth
-func (a *Ab) Tags(c *gin.Context) {
+func (a *Ab) PTags(c *gin.Context) {
-	user := service.AllService.UserService.CurUser(c)
+	u := service.AllService.UserService.CurUser(c)
 	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
-	tags := service.AllService.TagService.ListByUserId(user.Id)
+	//check privileges
 	if !service.AllService.AddressBookService.CheckUserReadPrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	tags := service.AllService.TagService.ListByUserIdAndCollectionId(uid, cid)
 	c.JSON(http.StatusOK, tags.Tags)
 }
@@ -124,19 +139,35 @@ func (a *Ab) Tags(c *gin.Context) {
 // @Router /ab/tag/add/{guid} [post]
 // @Security BearerAuth
 func (a *Ab) TagAdd(c *gin.Context) {
 	t := &model.Tag{}
 	err := c.ShouldBindJSON(t)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
-	tag := service.AllService.TagService.InfoByUserIdAndName(u.Id, t.Name)
+	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserWritePrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	tag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(uid, t.Name, cid)
 	if tag != nil && tag.Id != 0 {
 		response.Error(c, response.TranslateMsg(c, "ItemExists"))
 		return
 	}
-	t.UserId = u.Id
+	t.UserId = uid
 	t.CollectionId = cid
 	err = service.AllService.TagService.Create(t)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "OperationFailed")+err.Error())
@@ -157,6 +188,7 @@ func (a *Ab) TagAdd(c *gin.Context) {
 // @Router /ab/tag/rename/{guid} [put]
 // @Security BearerAuth
 func (a *Ab) TagRename(c *gin.Context) {
 	t := &requstform.TagRenameForm{}
 	err := c.ShouldBindJSON(t)
 	if err != nil {
@@ -164,12 +196,25 @@ func (a *Ab) TagRename(c *gin.Context) {
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
-	tag := service.AllService.TagService.InfoByUserIdAndName(u.Id, t.Old)
+	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserWritePrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	tag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(uid, t.Old, cid)
 	if tag == nil || tag.Id == 0 {
 		response.Error(c, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
-	ntag := service.AllService.TagService.InfoByUserIdAndName(u.Id, t.New)
+	ntag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(uid, t.New, cid)
 	if ntag != nil && ntag.Id != 0 {
 		response.Error(c, response.TranslateMsg(c, "ItemExists"))
 		return
@@ -202,7 +247,20 @@ func (a *Ab) TagUpdate(c *gin.Context) {
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
-	tag := service.AllService.TagService.InfoByUserIdAndName(u.Id, t.Name)
+	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserWritePrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	tag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(uid, t.Name, cid)
 	if tag == nil || tag.Id == 0 {
 		response.Error(c, response.TranslateMsg(c, "ItemNotFound"))
 		return
@@ -228,6 +286,7 @@ func (a *Ab) TagUpdate(c *gin.Context) {
 // @Router /ab/tag/{guid} [delete]
 // @Security BearerAuth
 func (a *Ab) TagDel(c *gin.Context) {
 	t := &[]string{}
 	err := c.ShouldBind(t)
 	if err != nil {
@@ -236,8 +295,21 @@ func (a *Ab) TagDel(c *gin.Context) {
 	}
 	//fmt.Println(t)
 	u := service.AllService.UserService.CurUser(c)
 	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserFullControlPrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	for _, name := range *t {
-		tag := service.AllService.TagService.InfoByUserIdAndName(u.Id, name)
+		tag := service.AllService.TagService.InfoByUserIdAndNameAndCollectionId(uid, name, cid)
 		if tag == nil || tag.Id == 0 {
 			response.Error(c, response.TranslateMsg(c, "ItemNotFound"))
 			return
@@ -272,7 +344,7 @@ func (a *Ab) Personal(c *gin.Context) {
 	       rule = json['rule'] ?? 0;
 	*/
 	if global.Config.Rustdesk.Personal == 1 {
-		guid := strconv.Itoa(int(user.GroupId)) + "-" + strconv.Itoa(int(user.Id))
+		guid := a.ComposeGuid(user.GroupId, user.Id, 0)
 		//如果返回了guid，后面的请求会有变化
 		c.JSON(http.StatusOK, gin.H{
 			"guid": guid,
@@ -315,38 +387,139 @@ func (a *Ab) Settings(c *gin.Context) {
 // @Router /ab/shared/profiles [post]
 // @Security BearerAuth
 func (a *Ab) SharedProfiles(c *gin.Context) {
-	//AbProfile.fromJson(Map<String, dynamic> json)
+
-	//: guid = json['guid'] ?? '',
+	var res []*api.SharedProfilesPayload
-	//	name = json['name'] ?? '',
+
-	//	owner = json['owner'] ?? '',
+	user := service.AllService.UserService.CurUser(c)
-	//	note = json['note'] ?? '',
+	myAbCollectionList := service.AllService.AddressBookService.ListCollectionByUserId(user.Id)
-	//	rule = json['rule'] ?? 0;
+	for _, ab := range myAbCollectionList.AddressBookCollection {
-	//暂时没必要返回数据，可能是为了共享地址簿
+		res = append(res, &api.SharedProfilesPayload{
-	/*item := map[string]interface{}{
+			Guid:  a.ComposeGuid(user.GroupId, user.Id, ab.Id),
-		"guid":  "1",
+			Name:  ab.Name,
-		"name":  "admin",
+			Owner: user.Username,
-		"owner": "admin",
+			Rule:  model.ShareAddressBookRuleRuleFullControl,
-		"note":  "admin11",
+		})
 		"rule":  3,
 	}
-	item2 := map[string]interface{}{
+
-		"guid":  "2",
+	allAbIds := make(map[uint]int) //用map去重，并保留最大Rule
-		"name":  "admin2",
+	allUserIds := make(map[uint]*model.User)
-		"owner": "admin2",
+	rules := service.AllService.AddressBookService.CollectionReadRules(user)
-		"note":  "admin22",
+	for _, rule := range rules {
-		"rule":  2,
+		//先判断是否存在
 		r, ok := allAbIds[rule.CollectionId]
 		if ok {
 			//再判断权限大小
 			if r < rule.Rule {
 				allAbIds[rule.CollectionId] = rule.Rule
 			}
 		} else {
 			allAbIds[rule.CollectionId] = rule.Rule
 			allUserIds[rule.UserId] = nil
 		}
 	}
 	abids := utils.Keys(allAbIds)
 	collections := service.AllService.AddressBookService.ListCollectionByIds(abids)
 	ids := utils.Keys(allUserIds)
 	allUsers := service.AllService.UserService.ListByIds(ids)
 	for _, u := range allUsers {
 		allUserIds[u.Id] = u
 	}
 	for _, collection := range collections {
 		_u, ok := allUserIds[collection.UserId]
 		if !ok {
 			continue
 		}
 		res = append(res, &api.SharedProfilesPayload{
 			Guid:  a.ComposeGuid(_u.GroupId, _u.Id, collection.Id),
 			Name:  collection.Name,
 			Owner: _u.Username,
 			Rule:  allAbIds[collection.Id],
 		})
 	}
 	c.JSON(http.StatusOK, gin.H{
 		"total": 2,
 		"data":  []interface{}{item, item2},
 	})*/
 	c.JSON(http.StatusOK, gin.H{
-		"total": 0,
+		"total": 0, //len(res),
-		"data":  nil,
+		"data":  res,
 	})
 }
 // ParseGuid
 func (a *Ab) ParseGuid(guid string) (gid, uid, cid uint) {
 	//用-切割 guid
 	guids := strings.Split(guid, "-")
 	if len(guids) < 2 {
 		return 0, 0, 0
 	}
 	if len(guids) != 3 {
 		cid = 0
 	} else {
 		s, err := strconv.Atoi(guids[2])
 		if err != nil {
 			return 0, 0, 0
 		}
 		cid = uint(s)
 	}
 	g, err := strconv.Atoi(guids[0])
 	if err != nil {
 		return 0, 0, 0
 	}
 	gid = uint(g)
 	u, err := strconv.Atoi(guids[1])
 	if err != nil {
 		return 0, 0, 0
 	}
 	uid = uint(u)
 	return
 }
 // ComposeGuid
 func (a *Ab) ComposeGuid(gid, uid, cid uint) string {
 	return strconv.Itoa(int(gid)) + "-" + strconv.Itoa(int(uid)) + "-" + strconv.Itoa(int(cid))
 }
 // CheckGuid
 func (a *Ab) CheckGuid(cu *model.User, guid string) (gid, uid, cid uint, err error) {
 	gid, uid, cid = a.ParseGuid(guid)
 	err = nil
 	if gid == 0 || uid == 0 {
 		err = errors.New("ParamsError")
 		return
 	}
 	u := &model.User{}
 	if cu.Id == uid {
 		u = cu
 	} else {
 		u = service.AllService.UserService.InfoById(uid)
 	}
 	if u == nil || u.Id == 0 {
 		err = errors.New("ParamsError")
 		return
 	}
 	if u.GroupId != gid {
 		err = errors.New("ParamsError")
 		return
 	}
 	if cid == 0 && cu.Id != uid {
 		err = errors.New("ParamsError")
 		return
 	}
 	if cid > 0 {
 		c := service.AllService.AddressBookService.CollectionInfoById(cid)
 		if c == nil || c.Id == 0 {
 			err = errors.New("ParamsError")
 			return
 		}
 		if c.UserId != uid {
 			err = errors.New("ParamsError")
 			return
 		}
 	}
 	return
 }
 // Peers
 // @Tags 地址[Personal]
 // @Summary 地址列表
@@ -361,8 +534,21 @@ func (a *Ab) SharedProfiles(c *gin.Context) {
 // @Router /ab/peers [post]
 // @Security BearerAuth
 func (a *Ab) Peers(c *gin.Context) {
-	user := service.AllService.UserService.CurUser(c)
+	u := service.AllService.UserService.CurUser(c)
-	al := service.AllService.AddressBookService.ListByUserId(user.Id, 1, 1000)
+	guid := c.Query("ab")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserReadPrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	al := service.AllService.AddressBookService.ListByUserIdAndCollectionId(uid, cid, 1, 1000)
 	c.JSON(http.StatusOK, gin.H{
 		"total":            al.Total,
 		"data":             al.AddressBooks,
@@ -370,24 +556,6 @@ func (a *Ab) Peers(c *gin.Context) {
 	})
 }
 // PTags
 // @Tags 地址[Personal]
 // @Summary 标签
 // @Description 标签
 // @Accept  json
 // @Produce  json
 // @Param guid path string true "guid"
 // @Success 200 {object} model.TagList
 // @Failure 500 {object} response.ErrorResponse
 // @Router /ab/tags/{guid} [post]
 // @Security BearerAuth
 func (a *Ab) PTags(c *gin.Context) {
 	user := service.AllService.UserService.CurUser(c)
 	tags := service.AllService.TagService.ListByUserId(user.Id)
 	c.JSON(http.StatusOK, tags.Tags)
 }
 // PeerAdd
 // @Tags 地址[Personal]
 // @Summary 添加地址
@@ -402,18 +570,31 @@ func (a *Ab) PTags(c *gin.Context) {
 func (a *Ab) PeerAdd(c *gin.Context) {
 	// forceAlwaysRelay永远是字符串"false"
 	//f := &gin.H{}
 	//guid := c.Param("guid")
 	f := &requstform.PersonalAddressBookForm{}
 	err := c.ShouldBindJSON(f)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	//fmt.Println(f)
 	u := service.AllService.UserService.CurUser(c)
 	f.UserId = u.Id
 	ab := f.ToAddressBook()
 	u := service.AllService.UserService.CurUser(c)
 	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserWritePrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	//fmt.Println(f)
 	f.UserId = uid
 	ab := f.ToAddressBook()
 	ab.CollectionId = cid
 	if ab.Platform == "" || ab.Username == "" || ab.Hostname == "" {
 		peer := service.AllService.PeerService.FindById(ab.Id)
 		if peer.RowId != 0 {
@@ -450,8 +631,21 @@ func (a *Ab) PeerDel(c *gin.Context) {
 		return
 	}
 	u := service.AllService.UserService.CurUser(c)
 	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserFullControlPrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	for _, id := range *f {
-		ab := service.AllService.AddressBookService.InfoByUserIdAndId(u.Id, id)
+		ab := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(uid, id, cid)
 		if ab == nil || ab.RowId == 0 {
 			response.Error(c, response.TranslateMsg(c, "ItemNotFound"))
 			return
@@ -478,24 +672,53 @@ func (a *Ab) PeerDel(c *gin.Context) {
 // @Router /ab/peer/update/{guid} [put]
 // @Security BearerAuth
 func (a *Ab) PeerUpdate(c *gin.Context) {
-	//f := &gin.H{}
+	f := gin.H{}
-	f := &requstform.PersonalAddressBookForm{}
+	//f := &requstform.PersonalAddressBookForm{}
-	err := c.ShouldBindJSON(f)
+	err := c.ShouldBindJSON(&f)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	//fmt.Println(f)
 	//return
 	u := service.AllService.UserService.CurUser(c)
-	ab := service.AllService.AddressBookService.InfoByUserIdAndId(u.Id, f.Id)
+	guid := c.Param("guid")
 	_, uid, cid, err := a.CheckGuid(u, guid)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
 	}
 	//check privileges
 	if !service.AllService.AddressBookService.CheckUserWritePrivilege(u, uid, cid) {
 		response.Error(c, response.TranslateMsg(c, "NoAccess"))
 		return
 	}
 	//fmt.Println(f)
 	//判断f["Id"]是否存在
 	fid, ok := f["id"]
 	if !ok {
 		response.Error(c, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	fidstr := fid.(string)
 	ab := service.AllService.AddressBookService.InfoByUserIdAndIdAndCid(uid, fidstr, cid)
 	if ab == nil || ab.RowId == 0 {
 		response.Error(c, response.TranslateMsg(c, "ItemNotFound"))
 		return
 	}
-	nab := f.ToAddressBook()
+	//允许的字段
-	nab.RowId = ab.RowId
+	allowUp := []string{"password", "hash", "tags", "alias"}
-	err = service.AllService.AddressBookService.Update(nab)
+	//f中的字段如果不在allowUp中，就删除
 	for k := range f {
 		if !utils.InArray(k, allowUp) {
 			delete(f, k)
 		}
 	}
 	//fmt.Println(f)
 	if tags, _ok := f["tags"]; _ok {
 		f["tags"], _ = json.Marshal(tags)
 	}
 	err = service.AllService.AddressBookService.UpdateByMap(ab, f)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "OperationFailed")+err.Error())
 		return
--- a/http/controller/api/group.go
+++ b/http/controller/api/group.go
@@ -28,23 +28,23 @@ type Group struct {
 // @Router /users [get]
 // @Security BearerAuth
 func (g *Group) Users(c *gin.Context) {
 	u := service.AllService.UserService.CurUser(c)
 	if !*u.IsAdmin {
 		gr := service.AllService.GroupService.InfoById(u.GroupId)
 		if gr.Type != model.GroupTypeShare {
 			response.Error(c, response.TranslateMsg(c, "NoAccess"))
 			return
 		}
 	}
 	q := &apiReq.UserListQuery{}
 	err := c.ShouldBindQuery(&q)
 	if err != nil {
 		response.Error(c, err.Error())
 		return
 	}
-	userList := service.AllService.UserService.ListByGroupId(u.GroupId, q.Page, q.PageSize)
+	u := service.AllService.UserService.CurUser(c)
 	gr := service.AllService.GroupService.InfoById(u.GroupId)
 	userList := &model.UserList{}
 	if !*u.IsAdmin && gr.Type != model.GroupTypeShare {
 		//仅能获取到自己
 		userList.Users = append(userList.Users, u)
 		userList.Total = 1
 	} else {
 		userList = service.AllService.UserService.ListByGroupId(u.GroupId, q.Page, q.PageSize)
 	}
 	var data []*apiResp.UserPayload
 	for _, user := range userList.Users {
 		up := &apiResp.UserPayload{}
@@ -73,23 +73,21 @@ func (g *Group) Users(c *gin.Context) {
 // @Security BearerAuth
 func (g *Group) Peers(c *gin.Context) {
 	u := service.AllService.UserService.CurUser(c)
 	if !*u.IsAdmin {
 		gr := service.AllService.GroupService.InfoById(u.GroupId)
 		if gr.Type != model.GroupTypeShare {
 			response.Error(c, response.TranslateMsg(c, "NoAccess"))
 			return
 		}
 	}
 	q := &apiReq.PeerListQuery{}
 	err := c.ShouldBindQuery(&q)
 	if err != nil {
 		response.Error(c, err.Error())
 		return
 	}
 	gr := service.AllService.GroupService.InfoById(u.GroupId)
 	users := make([]*model.User, 0, 1)
 	if !*u.IsAdmin && gr.Type != model.GroupTypeShare {
 		//仅能获取到自己
 		users = append(users, u)
 	} else {
 		users = service.AllService.UserService.ListIdAndNameByGroupId(u.GroupId)
 	}
 	users := service.AllService.UserService.ListIdAndNameByGroupId(u.GroupId)
 	namesById := make(map[uint]string)
 	userIds := make([]uint, 0)
 	for _, user := range users {
--- a/http/controller/api/index.go
+++ b/http/controller/api/index.go
@@ -50,14 +50,13 @@ func (i *Index) Heartbeat(c *gin.Context) {
 		return
 	}
 	peer := service.AllService.PeerService.FindByUuid(info.Uuid)
-	if peer == nil {
+	if peer == nil || peer.RowId == 0 {
 		c.JSON(http.StatusOK, gin.H{})
 		return
 	}
-	//如果在一分钟以内则不更新
+	//如果在40s以内则不更新
-	if time.Now().Unix()-peer.LastOnlineTime > 60 {
+	if time.Now().Unix()-peer.LastOnlineTime > 40 {
-		peer.LastOnlineTime = time.Now().Unix()
+		upp := &model.Peer{RowId: peer.RowId, LastOnlineTime: time.Now().Unix(), LastOnlineIp: c.ClientIP()}
 		upp := &model.Peer{RowId: peer.RowId, LastOnlineTime: peer.LastOnlineTime}
 		service.AllService.PeerService.Update(upp)
 	}
 	c.JSON(http.StatusOK, gin.H{})
--- a/http/controller/api/login.go
+++ b/http/controller/api/login.go
@@ -54,12 +54,13 @@ func (l *Login) Login(c *gin.Context) {
 	//根据refer判断是webclient还是app
 	ref := c.GetHeader("referer")
 	if ref != "" {
-		f.DeviceInfo.Type = "webclient"
+		f.DeviceInfo.Type = model.LoginLogClientWeb
 	}
 	ut := service.AllService.UserService.Login(u, &model.LoginLog{
 		UserId:   u.Id,
 		Client:   f.DeviceInfo.Type,
 		DeviceId: f.Id,
 		Uuid:     f.Uuid,
 		Ip:       c.ClientIP(),
 		Type:     model.LoginLogTypeAccount,
@@ -81,20 +82,12 @@ func (l *Login) Login(c *gin.Context) {
 // @Produce  json
 // @Success 200 {object} []string
 // @Failure 500 {object} response.ErrorResponse
-// @Router /login-options [post]
+// @Router /login-options [get]
 func (l *Login) LoginOptions(c *gin.Context) {
-	oauthOks := []string{}
+	ops := service.AllService.OauthService.GetOauthProviders()
-	err, _ := service.AllService.OauthService.GetOauthConfig(model.OauthTypeGithub)
+	ops = append(ops, model.OauthTypeWebauth)
 	if err == nil {
 		oauthOks = append(oauthOks, model.OauthTypeGithub)
 	}
 	err, _ = service.AllService.OauthService.GetOauthConfig(model.OauthTypeGoogle)
 	if err == nil {
 		oauthOks = append(oauthOks, model.OauthTypeGoogle)
 	}
 	oauthOks = append(oauthOks, model.OauthTypeWebauth)
 	var oidcItems []map[string]string
-	for _, v := range oauthOks {
+	for _, v := range ops {
 		oidcItems = append(oidcItems, map[string]string{"name": v})
 	}
 	common, err := json.Marshal(oidcItems)
@@ -104,7 +97,7 @@ func (l *Login) LoginOptions(c *gin.Context) {
 	}
 	var res []string
 	res = append(res, "common-oidc/"+string(common))
-	for _, v := range oauthOks {
+	for _, v := range ops {
 		res = append(res, "oidc/"+v)
 	}
 	c.JSON(http.StatusOK, res)
--- a/http/controller/api/ouath.go
+++ b/http/controller/api/ouath.go
@@ -9,8 +9,6 @@ import (
 	"Gwen/service"
 	"github.com/gin-gonic/gin"
 	"net/http"
 	"strconv"
 	"strings"
 )
 type Oauth struct {
@@ -32,12 +30,11 @@ func (o *Oauth) OidcAuth(c *gin.Context) {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	if f.Op != model.OauthTypeWebauth && f.Op != model.OauthTypeGoogle && f.Op != model.OauthTypeGithub {
 		response.Error(c, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
-	err, code, url := service.AllService.OauthService.BeginAuth(f.Op)
+	oauthService := service.AllService.OauthService
 	var code string
 	var url string
 	err, code, url = oauthService.BeginAuth(f.Op)
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, err.Error()))
 		return
@@ -59,6 +56,60 @@ func (o *Oauth) OidcAuth(c *gin.Context) {
 	})
 }
 func (o *Oauth) OidcAuthQueryPre(c *gin.Context) (*model.User, *model.UserToken) {
 	var u *model.User
 	var ut *model.UserToken
 	q := &api.OidcAuthQuery{}
 	// 解析查询参数并处理错误
 	if err := c.ShouldBindQuery(q); err != nil {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+": "+err.Error())
 		return nil, nil
 	}
 	// 获取 OAuth 缓存
 	v := service.AllService.OauthService.GetOauthCache(q.Code)
 	if v == nil {
 		response.Error(c, response.TranslateMsg(c, "OauthExpired"))
 		return nil, nil
 	}
 	// 如果 UserId 为 0，说明还在授权中
 	if v.UserId == 0 {
 		c.JSON(http.StatusOK, gin.H{"message": "Authorization in progress, please login and bind"})
 		return nil, nil
 	}
 	// 获取用户信息
 	u = service.AllService.UserService.InfoById(v.UserId)
 	if u == nil {
 		response.Error(c, response.TranslateMsg(c, "UserNotFound"))
 		return nil, nil
 	}
 	// 删除 OAuth 缓存
 	service.AllService.OauthService.DeleteOauthCache(q.Code)
 	// 创建登录日志并生成用户令牌
 	ut = service.AllService.UserService.Login(u, &model.LoginLog{
 		UserId:   u.Id,
 		Client:   v.DeviceType,
 		DeviceId: v.Id,
 		Uuid:     v.Uuid,
 		Ip:       c.ClientIP(),
 		Type:     model.LoginLogTypeOauth,
 		Platform: v.DeviceOs,
 	})
 	if ut == nil {
 		response.Error(c, response.TranslateMsg(c, "LoginFailed"))
 		return nil, nil
 	}
 	// 返回用户令牌
 	return u, ut
 }
 // OidcAuthQuery
 // @Tags Oauth
 // @Summary OidcAuthQuery
@@ -69,33 +120,10 @@ func (o *Oauth) OidcAuth(c *gin.Context) {
 // @Failure 500 {object} response.ErrorResponse
 // @Router /oidc/auth-query [get]
 func (o *Oauth) OidcAuthQuery(c *gin.Context) {
-	q := &api.OidcAuthQuery{}
+	u, ut := o.OidcAuthQueryPre(c)
-	err := c.ShouldBindQuery(q)
+	if u == nil || ut == nil {
 	if err != nil {
 		response.Error(c, response.TranslateMsg(c, "ParamsError")+err.Error())
 		return
 	}
 	v := service.AllService.OauthService.GetOauthCache(q.Code)
 	if v == nil {
 		response.Error(c, response.TranslateMsg(c, "OauthExpired"))
 		return
 	}
 	if v.UserId == 0 {
 		//正在授权
 		c.JSON(http.StatusOK, gin.H{})
 		return
 	}
 	u := service.AllService.UserService.InfoById(v.UserId)
 	//fmt.Println("auth success u", u)
 	service.AllService.OauthService.DeleteOauthCache(q.Code)
 	ut := service.AllService.UserService.Login(u, &model.LoginLog{
 		UserId:   u.Id,
 		Client:   v.DeviceType,
 		Uuid:     v.Uuid,
 		Ip:       c.ClientIP(),
 		Type:     model.LoginLogTypeOauth,
 		Platform: v.DeviceOs,
 	})
 	c.JSON(http.StatusOK, apiResp.LoginRes{
 		AccessToken: ut.Token,
 		Type:        "access_token",
@@ -118,142 +146,95 @@ func (o *Oauth) OauthCallback(c *gin.Context) {
 		c.String(http.StatusInternalServerError, response.TranslateParamMsg(c, "ParamIsEmpty", "state"))
 		return
 	}
 	cacheKey := state
 	oauthService := service.AllService.OauthService
 	//从缓存中获取
-	v := service.AllService.OauthService.GetOauthCache(cacheKey)
+	oauthCache := oauthService.GetOauthCache(cacheKey)
-	if v == nil {
+	if oauthCache == nil {
 		c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthExpired"))
 		return
 	}
-
+	op := oauthCache.Op
-	ty := v.Op
+	action := oauthCache.Action
-	ac := v.Action
+	var user *model.User
-	//fmt.Println("ty ac ", ty, ac)
+	// 获取用户信息
-	if ty == model.OauthTypeGithub {
+	code := c.Query("code")
-		code := c.Query("code")
+	err, oauthUser := oauthService.Callback(code, op)
-		err, userData := service.AllService.OauthService.GithubCallback(code)
+	if err != nil {
-		if err != nil {
+		c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthFailed")+response.TranslateMsg(c, err.Error()))
-			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthFailed")+response.TranslateMsg(c, err.Error()))
+		return
 			return
 		}
 		if ac == service.OauthActionTypeBind {
 			//fmt.Println("bind", ty, userData)
 			utr := service.AllService.OauthService.UserThirdInfo(ty, strconv.Itoa(userData.Id))
 			if utr.UserId > 0 {
 				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBindOtherUser"))
 				return
 			}
 			//绑定
 			u := service.AllService.UserService.InfoById(v.UserId)
 			if u == nil {
 				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "ItemNotFound"))
 				return
 			}
 			//绑定github
 			err = service.AllService.OauthService.BindGithubUser(strconv.Itoa(userData.Id), userData.Login, v.UserId)
 			if err != nil {
 				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "BindFail"))
 				return
 			}
 			c.String(http.StatusOK, response.TranslateMsg(c, "BindSuccess"))
 			return
 		} else if ac == service.OauthActionTypeLogin {
 			//登录
 			if v.UserId != 0 {
 				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBeenSuccess"))
 				return
 			}
 			u := service.AllService.UserService.InfoByGithubId(strconv.Itoa(userData.Id))
 			if u == nil {
 				oa := service.AllService.OauthService.InfoByOp(ty)
 				if !*oa.AutoRegister {
 					//c.String(http.StatusInternalServerError, "还未绑定用户，请先绑定")
 					v.ThirdName = userData.Login
 					v.ThirdOpenId = strconv.Itoa(userData.Id)
 					url := global.Config.Rustdesk.ApiServer + "/_admin/#/oauth/bind/" + cacheKey
 					c.Redirect(http.StatusFound, url)
 					return
 				}
 				//自动注册
 				u = service.AllService.UserService.RegisterByGithub(userData.Login, strconv.Itoa(userData.Id))
 				if u.Id == 0 {
 					c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthRegisterFailed"))
 					return
 				}
 			}
 			v.UserId = u.Id
 			service.AllService.OauthService.SetOauthCache(cacheKey, v, 0)
 			c.String(http.StatusOK, response.TranslateMsg(c, "OauthSuccess"))
 			return
 		}
 	}
 	userId := oauthCache.UserId
 	openid := oauthUser.OpenId
 	if action == service.OauthActionTypeBind {
-	if ty == model.OauthTypeGoogle {
+		//fmt.Println("bind", ty, userData)
-		code := c.Query("code")
+		// 检查此openid是否已经绑定过
-		err, userData := service.AllService.OauthService.GoogleCallback(code)
+		utr := oauthService.UserThirdInfo(op, openid)
 		if utr.UserId > 0 {
 			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBindOtherUser"))
 			return
 		}
 		//绑定
 		user = service.AllService.UserService.InfoById(userId)
 		if user == nil {
 			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "ItemNotFound"))
 			return
 		}
 		//绑定
 		err := oauthService.BindOauthUser(userId, oauthUser, op)
 		if err != nil {
-			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthFailed")+response.TranslateMsg(c, err.Error()))
+			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "BindFail"))
 			return
 		}
-		//将空格替换成_
+		c.String(http.StatusOK, response.TranslateMsg(c, "BindSuccess"))
-		googleName := strings.Replace(userData.Name, " ", "_", -1)
+		return
-		if ac == service.OauthActionTypeBind {
+
-			//fmt.Println("bind", ty, userData)
+	} else if action == service.OauthActionTypeLogin {
-			utr := service.AllService.OauthService.UserThirdInfo(ty, userData.Email)
+		//登录
-			if utr.UserId > 0 {
+		if userId != 0 {
-				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBindOtherUser"))
+			c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBeenSuccess"))
 			return
 		}
 		user = service.AllService.UserService.InfoByOauthId(op, openid)
 		if user == nil {
 			oauthConfig := oauthService.InfoByOp(op)
 			if !*oauthConfig.AutoRegister {
 				//c.String(http.StatusInternalServerError, "还未绑定用户，请先绑定")
 				oauthCache.UpdateFromOauthUser(oauthUser)
 				url := global.Config.Rustdesk.ApiServer + "/_admin/#/oauth/bind/" + cacheKey
 				c.Redirect(http.StatusFound, url)
 				return
 			}
-			//绑定
+
-			u := service.AllService.UserService.InfoById(v.UserId)
+			//自动注册
-			if u == nil {
+			err, user = service.AllService.UserService.RegisterByOauth(oauthUser, op)
 				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "ItemNotFound"))
 				return
 			}
 			//绑定
 			err = service.AllService.OauthService.BindGoogleUser(userData.Email, googleName, v.UserId)
 			if err != nil {
-				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "BindFail"))
+				c.String(http.StatusInternalServerError, response.TranslateMsg(c, err.Error()))
 				return
 			}
-			c.String(http.StatusOK, response.TranslateMsg(c, "BindSuccess"))
+		}
-			return
+		oauthCache.UserId = user.Id
-		} else if ac == service.OauthActionTypeLogin {
+		oauthService.SetOauthCache(cacheKey, oauthCache, 0)
-			if v.UserId != 0 {
+		// 如果是webadmin，登录成功后跳转到webadmin
-				c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthHasBeenSuccess"))
+		if oauthCache.DeviceType == model.LoginLogClientWebAdmin {
-				return
+			/*service.AllService.UserService.Login(u, &model.LoginLog{
-			}
+				UserId:   u.Id,
-			u := service.AllService.UserService.InfoByGoogleEmail(userData.Email)
+				Client:   "webadmin",
-			if u == nil {
+				Uuid:     "", //must be empty
-				oa := service.AllService.OauthService.InfoByOp(ty)
+				Ip:       c.ClientIP(),
-				if !*oa.AutoRegister {
+				Type:     model.LoginLogTypeOauth,
-					//c.String(http.StatusInternalServerError, "还未绑定用户，请先绑定")
+				Platform: oauthService.DeviceOs,
-
+			})*/
-					v.ThirdName = googleName
+			url := global.Config.Rustdesk.ApiServer + "/_admin/#/"
-					v.ThirdOpenId = userData.Email
+			c.Redirect(http.StatusFound, url)
 					url := global.Config.Rustdesk.ApiServer + "/_admin/#/oauth/bind/" + cacheKey
 					c.Redirect(http.StatusFound, url)
 					return
 				}
 				//自动注册
 				u = service.AllService.UserService.RegisterByGoogle(googleName, userData.Email)
 				if u.Id == 0 {
 					c.String(http.StatusInternalServerError, response.TranslateMsg(c, "OauthRegisterFailed"))
 					return
 				}
 			}
 			v.UserId = u.Id
 			service.AllService.OauthService.SetOauthCache(cacheKey, v, 0)
 			c.String(http.StatusOK, response.TranslateMsg(c, "OauthSuccess"))
 			return
 		}
 		c.String(http.StatusOK, response.TranslateMsg(c, "OauthSuccess"))
 		return
 	} else {
 		c.String(http.StatusInternalServerError, response.TranslateMsg(c, "ParamsError"))
 		return
 	}
 	c.String(http.StatusInternalServerError, response.TranslateMsg(c, "SystemError"))
 }
--- a/http/controller/api/webClient.go
+++ b/http/controller/api/webClient.go
@@ -26,7 +26,7 @@ func (i *WebClient) ServerConfig(c *gin.Context) {
 	u := service.AllService.UserService.CurUser(c)
 	peers := map[string]*api.WebClientPeerPayload{}
-	abs := service.AllService.AddressBookService.ListByUserId(u.Id, 1, 100)
+	abs := service.AllService.AddressBookService.ListByUserIdAndCollectionId(u.Id, 0, 1, 100)
 	for _, ab := range abs.AddressBooks {
 		pp := &api.WebClientPeerPayload{}
 		pp.FromAddressBook(ab)
@@ -64,12 +64,15 @@ func (i *WebClient) SharedPeer(c *gin.Context) {
 		response.Fail(c, 101, "share not found")
 		return
 	}
-	//判断是否过期,created_at + expire > now
+	if sr.Expire != 0 {
-	ca := time.Time(sr.CreatedAt)
+		//判断是否过期,created_at + expire > now
-	if ca.Add(time.Second * time.Duration(sr.Expire)).Before(time.Now()) {
+		ca := time.Time(sr.CreatedAt)
-		response.Fail(c, 101, "share expired")
+		if ca.Add(time.Second * time.Duration(sr.Expire)).Before(time.Now()) {
-		return
+			response.Fail(c, 101, "share expired")
 			return
 		}
 	}
 	ab := service.AllService.AddressBookService.InfoByUserIdAndId(sr.UserId, sr.PeerId)
 	if ab.RowId == 0 {
 		response.Fail(c, 101, "peer not found")
@@ -85,3 +88,23 @@ func (i *WebClient) SharedPeer(c *gin.Context) {
 		"peer":      pp,
 	})
 }
 // ServerConfigV2 服务配置
 // @Tags WEBCLIENT_V2
 // @Summary 服务配置
 // @Description 服务配置,给webclient提供api-server
 // @Accept  json
 // @Produce  json
 // @Success 200 {object} response.Response
 // @Failure 500 {object} response.Response
 // @Router /server-config-v2 [get]
 // @Security token
 func (i *WebClient) ServerConfigV2(c *gin.Context) {
 	response.Success(
 		c,
 		gin.H{
 			"id_server": global.Config.Rustdesk.IdServer,
 			"key":       global.Config.Rustdesk.Key,
 		},
 	)
 }
--- a/http/controller/web/index.go
+++ b/http/controller/web/index.go
@@ -3,6 +3,7 @@ package web
 import (
 	"Gwen/global"
 	"github.com/gin-gonic/gin"
 	"strconv"
 )
 type Index struct {
@@ -14,9 +15,13 @@ func (i *Index) Index(c *gin.Context) {
 func (i *Index) ConfigJs(c *gin.Context) {
 	apiServer := global.Config.Rustdesk.ApiServer
-
+	magicQueryonline := strconv.Itoa(global.Config.Rustdesk.WebclientMagicQueryonline)
 	tmp := `
 localStorage.setItem('api-server', "` + apiServer + `")
-`
+const ws2_prefix = 'wc-'
 localStorage.setItem(ws2_prefix+'api-server', "` + apiServer + `")
 window.webclient_magic_queryonline = ` + magicQueryonline + ``
 	c.String(200, tmp)
 }
--- a/http/middleware/admin.go
+++ b/http/middleware/admin.go
@@ -17,7 +17,7 @@ func AdminAuth() gin.HandlerFunc {
 			c.Abort()
 			return
 		}
-		user := service.AllService.UserService.InfoByAccessToken(token)
+		user, ut := service.AllService.UserService.InfoByAccessToken(token)
 		if user.Id == 0 {
 			response.Fail(c, 403, "请先登录")
 			c.Abort()
@@ -26,6 +26,8 @@ func AdminAuth() gin.HandlerFunc {
 		c.Set("curUser", user)
 		c.Set("token", token)
 		//如果时间小于1天,token自动续期
 		service.AllService.UserService.AutoRefreshAccessToken(ut)
 		c.Next()
 	}
--- a/http/middleware/rustauth.go
+++ b/http/middleware/rustauth.go
@@ -28,7 +28,7 @@ func RustAuth() gin.HandlerFunc {
 		//这里只是简单的提取
 		token = token[7:]
 		//验证token
-		user := service.AllService.UserService.InfoByAccessToken(token)
+		user, ut := service.AllService.UserService.InfoByAccessToken(token)
 		if user.Id == 0 {
 			c.JSON(401, gin.H{
 				"error": "Unauthorized",
@@ -46,6 +46,9 @@ func RustAuth() gin.HandlerFunc {
 		c.Set("curUser", user)
 		c.Set("token", token)
 		service.AllService.UserService.AutoRefreshAccessToken(ut)
 		c.Next()
 	}
 }
--- a/http/request/admin/addressBook.go
+++ b/http/request/admin/addressBook.go
@@ -23,6 +23,7 @@ type AddressBookForm struct {
 	Online           bool     `json:"online"`
 	LoginName        string   `json:"loginName" `
 	SameServer       bool     `json:"sameServer"`
 	CollectionId     uint     `json:"collection_id"`
 }
 func (a AddressBookForm) ToAddressBook() *model.AddressBook {
@@ -46,6 +47,7 @@ func (a AddressBookForm) ToAddressBook() *model.AddressBook {
 		Online:           a.Online,
 		LoginName:        a.LoginName,
 		SameServer:       a.SameServer,
 		CollectionId:     a.CollectionId,
 	}
 }
@@ -72,17 +74,19 @@ func (a AddressBookForm) ToAddressBooks() []*model.AddressBook {
 			Online:           a.Online,
 			LoginName:        a.LoginName,
 			SameServer:       a.SameServer,
 			CollectionId:     a.CollectionId,
 		})
 	}
 	return abs
 }
 type AddressBookQuery struct {
-	UserId   int    `form:"user_id"`
+	UserId       int    `form:"user_id"`
-	IsMy     int    `form:"is_my"`
+	CollectionId *int   `form:"collection_id"`
-	Username string `form:"username"`
+	IsMy         int    `form:"is_my"`
-	Hostname string `form:"hostname"`
+	Username     string `form:"username"`
-	Id       string `form:"id"`
+	Hostname     string `form:"hostname"`
 	Id           string `form:"id"`
 	PageQuery
 }
@@ -102,3 +106,30 @@ func (sbwcf ShareByWebClientForm) ToShareRecord() *model.ShareRecord {
 		Expire:       sbwcf.Expire,
 	}
 }
 type AddressBookCollectionQuery struct {
 	UserId int `form:"user_id"`
 	IsMy   int `form:"is_my"`
 	PageQuery
 }
 type AddressBookCollectionSimpleListQuery struct {
 	UserIds []uint `form:"user_ids"`
 }
 type AddressBookCollectionRuleQuery struct {
 	UserId       int `form:"user_id"`
 	CollectionId int `form:"collection_id"`
 	IsMy         int `form:"is_my"`
 	PageQuery
 }
 type BatchCreateFromPeersForm struct {
 	CollectionId uint     `json:"collection_id"`
 	PeerIds      []uint   `json:"peer_ids"`
 	Tags         []string `json:"tags"`
 	UserId       uint     `json:"user_id"`
 }
 type BatchUpdateTagsForm struct {
 	RowIds []uint   `json:"row_ids"`
 	Tags   []string `json:"tags"`
 }
--- a/http/request/admin/audit.go
+++ b/http/request/admin/audit.go
@@ -5,3 +5,10 @@ type AuditQuery struct {
 	FromPeer string `form:"from_peer"`
 	PageQuery
 }
 type AuditConnLogIds struct {
 	Ids []uint `json:"ids" validate:"required"`
 }
 type AuditFileLogIds struct {
 	Ids []uint `json:"ids" validate:"required"`
 }
--- a/http/request/admin/login.go
+++ b/http/request/admin/login.go
@@ -4,6 +4,7 @@ type Login struct {
 	Username string `json:"username" validate:"required" label:"用户名"`
 	Password string `json:"password,omitempty" validate:"required" label:"密码"`
 	Platform string `json:"platform" label:"平台"`
 	Captcha  string `json:"captcha,omitempty" label:"验证码"`
 }
 type LoginLogQuery struct {
@@ -11,3 +12,11 @@ type LoginLogQuery struct {
 	IsMy   int `form:"is_my"`
 	PageQuery
 }
 type LoginTokenQuery struct {
 	UserId int `form:"user_id"`
 	PageQuery
 }
 type LoginLogIds struct {
 	Ids []uint `json:"ids" validate:"required"`
 }
--- a/http/request/admin/oauth.go
+++ b/http/request/admin/oauth.go
@@ -1,6 +1,8 @@
 package admin
-import "Gwen/model"
+import (
 	"Gwen/model"
 )
 type BindOauthForm struct {
 	Op string `json:"op" binding:"required"`
@@ -13,21 +15,27 @@ type UnBindOauthForm struct {
 	Op string `json:"op" binding:"required"`
 }
 type OauthForm struct {
-	Id           uint   `json:"id"`
+	Id           uint   			`json:"id"`
-	Op           string `json:"op" validate:"required"`
+	Op           string 			`json:"op" validate:"omitempty"`
-	ClientId     string `json:"client_id" validate:"required"`
+	OauthType    string 			`json:"oauth_type" validate:"required"`
-	ClientSecret string `json:"client_secret" validate:"required"`
+	Issuer	     string 			`json:"issuer" validate:"omitempty,url"`
-	RedirectUrl  string `json:"redirect_url" validate:"required"`
+	Scopes	   	 string 			`json:"scopes" validate:"omitempty"`
-	AutoRegister *bool  `json:"auto_register"`
+	ClientId     string 			`json:"client_id" validate:"required"`
 	ClientSecret string 			`json:"client_secret" validate:"required"`
 	RedirectUrl  string 			`json:"redirect_url" validate:"required"`
 	AutoRegister *bool  			`json:"auto_register"`
 }
 func (of *OauthForm) ToOauth() *model.Oauth {
 	oa := &model.Oauth{
 		Op:           of.Op,
 		OauthType:	  of.OauthType,
 		ClientId:     of.ClientId,
 		ClientSecret: of.ClientSecret,
 		RedirectUrl:  of.RedirectUrl,
 		AutoRegister: of.AutoRegister,
 		Issuer:       of.Issuer,
 		Scopes:       of.Scopes,
 	}
 	oa.Id = of.Id
 	return oa
--- a/http/request/admin/peer.go
+++ b/http/request/admin/peer.go
@@ -38,4 +38,9 @@ type PeerQuery struct {
 	TimeAgo  int    `json:"time_ago" form:"time_ago"`
 	Id       string `json:"id" form:"id"`
 	Hostname string `json:"hostname" form:"hostname"`
 	Uuids    string `json:"uuids" form:"uuids"`
 }
 type SimpleDataQuery struct {
 	Ids []string `json:"ids" form:"ids"`
 }
--- a/http/request/admin/shareRecord.go
+++ b/http/request/admin/shareRecord.go
@@ -0,0 +1,15 @@
 package admin
 type ShareRecordQuery struct {
 	UserId uint `json:"user_id" form:"user_id"`
 	PageQuery
 }
 type ShareRecordForm struct {
 	Id     uint `json:"id" form:"id"`
 	UserId uint `json:"user_id" form:"user_id"`
 }
 type PeerShareRecordBatchDeleteForm struct {
 	Ids []uint `json:"ids" validate:"required"`
 }
--- a/http/request/admin/tag.go
+++ b/http/request/admin/tag.go
@@ -3,10 +3,11 @@ package admin
 import "Gwen/model"
 type TagForm struct {
-	Id     uint   `json:"id"`
+	Id           uint   `json:"id"`
-	Name   string `json:"name" validate:"required"`
+	Name         string `json:"name" validate:"required"`
-	Color  uint   `json:"color" validate:"required"`
+	Color        uint   `json:"color" validate:"required"`
-	UserId uint   `json:"user_id"`
+	UserId       uint   `json:"user_id"`
 	CollectionId uint   `json:"collection_id"`
 }
 func (f *TagForm) FromTag(group *model.Tag) *TagForm {
@@ -14,6 +15,7 @@ func (f *TagForm) FromTag(group *model.Tag) *TagForm {
 	f.Name = group.Name
 	f.Color = group.Color
 	f.UserId = group.UserId
 	f.CollectionId = group.CollectionId
 	return f
 }
@@ -23,11 +25,13 @@ func (f *TagForm) ToTag() *model.Tag {
 	i.Name = f.Name
 	i.Color = f.Color
 	i.UserId = f.UserId
 	i.CollectionId = f.CollectionId
 	return i
 }
 type TagQuery struct {
-	UserId int `form:"user_id"`
+	UserId       int  `form:"user_id"`
-	IsMy   int `form:"is_my"`
+	IsMy         int  `form:"is_my"`
 	CollectionId *int `form:"collection_id"`
 	PageQuery
 }
--- a/http/request/admin/user.go
+++ b/http/request/admin/user.go
@@ -6,7 +6,8 @@ import (
 type UserForm struct {
 	Id       uint   `json:"id"`
-	Username string `json:"username" validate:"required,gte=4,lte=10"`
+	Username string `json:"username" validate:"required,gte=2,lte=32"`
 	Email    string `json:"email"` //validate:"required,email" email不强制
 	//Password string           `json:"password" validate:"required,gte=4,lte=20"`
 	Nickname string           `json:"nickname"`
 	Avatar   string           `json:"avatar"`
@@ -19,6 +20,7 @@ func (uf *UserForm) FromUser(user *model.User) *UserForm {
 	uf.Id = user.Id
 	uf.Username = user.Username
 	uf.Nickname = user.Nickname
 	uf.Email = user.Email
 	uf.Avatar = user.Avatar
 	uf.GroupId = user.GroupId
 	uf.IsAdmin = user.IsAdmin
@@ -30,6 +32,7 @@ func (uf *UserForm) ToUser() *model.User {
 	user.Id = uf.Id
 	user.Username = uf.Username
 	user.Nickname = uf.Nickname
 	user.Email = uf.Email
 	user.Avatar = uf.Avatar
 	user.GroupId = uf.GroupId
 	user.IsAdmin = uf.IsAdmin
@@ -48,10 +51,25 @@ type UserQuery struct {
 }
 type UserPasswordForm struct {
 	Id       uint   `json:"id" validate:"required"`
-	Password string `json:"password" validate:"required,gte=4,lte=20"`
+	Password string `json:"password" validate:"required,gte=4,lte=32"`
 }
 type ChangeCurPasswordForm struct {
-	OldPassword string `json:"old_password" validate:"required,gte=4,lte=20"`
+	OldPassword string `json:"old_password" validate:"required,gte=4,lte=32"`
-	NewPassword string `json:"new_password" validate:"required,gte=4,lte=20"`
+	NewPassword string `json:"new_password" validate:"required,gte=4,lte=32"`
 }
 type GroupUsersQuery struct {
 	IsMy   int  `json:"is_my"`
 	UserId uint `json:"user_id"`
 }
 type RegisterForm struct {
 	Username        string `json:"username" validate:"required,gte=2,lte=32"`
 	Email           string `json:"email"` // validate:"required,email"
 	Password        string `json:"password" validate:"required,gte=4,lte=32"`
 	ConfirmPassword string `json:"confirm_password" validate:"required,gte=4,lte=32"`
 }
 type UserTokenBatchDeleteForm struct {
 	Ids []uint `json:"ids" validate:"required"`
 }
--- a/http/request/api/user.go
+++ b/http/request/api/user.go
@@ -34,8 +34,8 @@ type LoginForm struct {
 	Id         string            `json:"id"  label:"id"`
 	Type       string            `json:"type"  label:"type"`
 	Uuid       string            `json:"uuid"  label:"uuid"`
-	Username   string            `json:"username" validate:"required,gte=4,lte=10" label:"用户名"`
+	Username   string            `json:"username" validate:"required,gte=2,lte=32" label:"用户名"`
-	Password   string            `json:"password,omitempty" validate:"gte=4,lte=20" label:"密码"`
+	Password   string            `json:"password,omitempty" validate:"gte=4,lte=32" label:"密码"`
 }
 type UserListQuery struct {
--- a/http/response/admin/user.go
+++ b/http/response/admin/user.go
@@ -1,18 +1,36 @@
 package admin
 import "Gwen/model"
 type LoginPayload struct {
 	Username   string   `json:"username"`
 	Email      string   `json:"email"`
 	Avatar     string   `json:"avatar"`
 	Token      string   `json:"token"`
 	RouteNames []string `json:"route_names"`
 	Nickname   string   `json:"nickname"`
 }
-var UserRouteNames = []string{
+func (lp *LoginPayload) FromUser(user *model.User) {
-	"MyTagList", "MyAddressBookList", "MyInfo",
+	lp.Username = user.Username
 	lp.Email = user.Email
 	lp.Avatar = user.Avatar
 	lp.Nickname = user.Nickname
 }
 var AdminRouteNames = []string{"*"}
 type UserOauthItem struct {
-	ThirdType string `json:"third_type"`
+	Op     string `json:"op"`
-	Status    int    `json:"status"`
+	Status int    `json:"status"`
 }
 type GroupUsersPayload struct {
 	Id       uint   `json:"id"`
 	Username string `json:"username"`
 	Status   int    `json:"status"`
 }
 func (g *GroupUsersPayload) FromUser(user *model.User) {
 	g.Id = user.Id
 	g.Username = user.Username
 	g.Status = 1
 }
--- a/http/response/api/ab.go
+++ b/http/response/api/ab.go
@@ -7,3 +7,11 @@ type AbList struct {
 	Tags      []string             `json:"tags,omitempty"`
 	TagColors string               `json:"tag_colors,omitempty"`
 }
 type SharedProfilesPayload struct {
 	Guid  string `json:"guid"`
 	Name  string `json:"name"`
 	Owner string `json:"owner"`
 	Note  string `json:"note"`
 	Rule  int    `json:"rule"`
 }
--- a/http/response/api/user.go
+++ b/http/response/api/user.go
@@ -29,6 +29,7 @@ type UserPayload struct {
 func (up *UserPayload) FromUser(user *model.User) *UserPayload {
 	up.Name = user.Username
 	up.Email = user.Email
 	up.IsAdmin = user.IsAdmin
 	up.Status = int(user.Status)
 	up.Info = map[string]interface{}{}
--- a/http/router/admin.go
+++ b/http/router/admin.go
@@ -2,7 +2,9 @@ package router
 import (
 	_ "Gwen/docs/admin"
 	"Gwen/global"
 	"Gwen/http/controller/admin"
 	"Gwen/http/controller/admin/my"
 	"Gwen/http/middleware"
 	"github.com/gin-gonic/gin"
 	swaggerFiles "github.com/swaggo/files"
@@ -13,11 +15,13 @@ func Init(g *gin.Engine) {
 	//swagger
 	//g.GET("/swagger/*any", ginSwagger.WrapHandler(swaggerFiles.Handler))
-	g.GET("/admin/swagger/*any", ginSwagger.WrapHandler(swaggerFiles.Handler, ginSwagger.InstanceName("admin")))
+	if global.Config.App.ShowSwagger == 1 {
 		g.GET("/admin/swagger/*any", ginSwagger.WrapHandler(swaggerFiles.Handler, ginSwagger.InstanceName("admin")))
 	}
 	adg := g.Group("/api/admin")
 	LoginBind(adg)
-
+	adg.POST("/user/register", (&admin.User{}).Register)
 	adg.Use(middleware.AdminAuth())
 	//FileBind(adg)
 	UserBind(adg)
@@ -28,9 +32,19 @@ func Init(g *gin.Engine) {
 	OauthBind(adg)
 	LoginLogBind(adg)
 	AuditBind(adg)
-	rs := &admin.Rustdesk{}
+	AddressBookCollectionBind(adg)
-	adg.GET("/server-config", rs.ServerConfig)
+	AddressBookCollectionRuleBind(adg)
-	adg.GET("/app-config", rs.AppConfig)
+	UserTokenBind(adg)
 	ConfigBind(adg)
 	//deprecated by ConfigBind
 	//rs := &admin.Rustdesk{}
 	//adg.GET("/server-config", rs.ServerConfig)
 	//adg.GET("/app-config", rs.AppConfig)
 	//deprecated end
 	ShareRecordBind(adg)
 	MyBind(adg)
 	//访问静态文件
 	//g.StaticFS("/upload", http.Dir(global.Config.Gin.ResourcesPath+"/upload"))
@@ -38,7 +52,11 @@ func Init(g *gin.Engine) {
 func LoginBind(rg *gin.RouterGroup) {
 	cont := &admin.Login{}
 	rg.POST("/login", cont.Login)
 	rg.GET("/captcha", cont.Captcha)
 	rg.POST("/logout", cont.Logout)
 	rg.GET("/login-options", cont.LoginOptions)
 	rg.POST("/oidc/auth", cont.OidcAuth)
 	rg.GET("/oidc/auth-query", cont.OidcAuthQuery)
 }
 func UserBind(rg *gin.RouterGroup) {
@@ -48,6 +66,8 @@ func UserBind(rg *gin.RouterGroup) {
 		aR.GET("/current", cont.Current)
 		aR.POST("/changeCurPwd", cont.ChangeCurPwd)
 		aR.POST("/myOauth", cont.MyOauth)
 		//aR.GET("/myPeer", cont.MyPeer)
 		aR.POST("/groupUsers", cont.GroupUsers)
 	}
 	aRP := rg.Group("/user").Use(middleware.AdminPrivilege())
 	{
@@ -74,7 +94,7 @@ func GroupBind(rg *gin.RouterGroup) {
 }
 func TagBind(rg *gin.RouterGroup) {
-	aR := rg.Group("/tag")
+	aR := rg.Group("/tag").Use(middleware.AdminPrivilege())
 	{
 		cont := &admin.Tag{}
 		aR.GET("/list", cont.List)
@@ -89,19 +109,23 @@ func AddressBookBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/address_book")
 	{
 		cont := &admin.AddressBook{}
 		aR.GET("/list", cont.List)
 		aR.GET("/detail/:id", cont.Detail)
 		aR.POST("/create", cont.Create)
 		aR.POST("/update", cont.Update)
 		aR.POST("/delete", cont.Delete)
 		aR.POST("/shareByWebClient", cont.ShareByWebClient)
 		arp := aR.Use(middleware.AdminPrivilege())
 		arp.GET("/list", cont.List)
 		//arp.GET("/detail/:id", cont.Detail)
 		arp.POST("/create", cont.Create)
 		arp.POST("/update", cont.Update)
 		arp.POST("/delete", cont.Delete)
 		arp.POST("/batchCreate", cont.BatchCreate)
 		arp.POST("/batchCreateFromPeers", cont.BatchCreateFromPeers)
 	}
 }
 func PeerBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/peer")
 	aR.POST("/simpleData", (&admin.Peer{}).SimpleData)
 	aR.Use(middleware.AdminPrivilege())
 	{
 		cont := &admin.Peer{}
 		aR.GET("/list", cont.List)
@@ -109,9 +133,7 @@ func PeerBind(rg *gin.RouterGroup) {
 		aR.POST("/create", cont.Create)
 		aR.POST("/update", cont.Update)
 		aR.POST("/delete", cont.Delete)
-
+		aR.POST("/batchDelete", cont.BatchDelete)
 		arp := aR.Use(middleware.AdminPrivilege())
 		arp.POST("/batchDelete", cont.BatchDelete)
 	}
 }
@@ -138,19 +160,59 @@ func OauthBind(rg *gin.RouterGroup) {
 }
 func LoginLogBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/login_log")
 	cont := &admin.LoginLog{}
 	aR := rg.Group("/login_log").Use(middleware.AdminPrivilege())
 	aR.GET("/list", cont.List)
 	aR.POST("/delete", cont.Delete)
 	aR.POST("/batchDelete", cont.BatchDelete)
 }
 func AuditBind(rg *gin.RouterGroup) {
 	cont := &admin.Audit{}
 	aR := rg.Group("/audit_conn").Use(middleware.AdminPrivilege())
 	aR.GET("/list", cont.ConnList)
 	aR.POST("/delete", cont.ConnDelete)
 	aR.POST("/batchDelete", cont.BatchConnDelete)
 	afR := rg.Group("/audit_file").Use(middleware.AdminPrivilege())
 	afR.GET("/list", cont.FileList)
 	afR.POST("/delete", cont.FileDelete)
 	afR.POST("/batchDelete", cont.BatchFileDelete)
 }
 func AddressBookCollectionBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/address_book_collection").Use(middleware.AdminPrivilege())
 	{
 		cont := &admin.AddressBookCollection{}
 		aR.GET("/list", cont.List)
 		aR.GET("/detail/:id", cont.Detail)
 		aR.POST("/create", cont.Create)
 		aR.POST("/update", cont.Update)
 		aR.POST("/delete", cont.Delete)
 	}
 }
 func AddressBookCollectionRuleBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/address_book_collection_rule").Use(middleware.AdminPrivilege())
 	{
 		cont := &admin.AddressBookCollectionRule{}
 		aR.GET("/list", cont.List)
 		aR.GET("/detail/:id", cont.Detail)
 		aR.POST("/create", cont.Create)
 		aR.POST("/update", cont.Update)
 		aR.POST("/delete", cont.Delete)
 	}
 }
 func UserTokenBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/user_token").Use(middleware.AdminPrivilege())
 	cont := &admin.UserToken{}
 	aR.GET("/list", cont.List)
 	aR.POST("/delete", cont.Delete)
 	aR.POST("/batchDelete", cont.BatchDelete)
 }
 func ConfigBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/config")
 	rs := &admin.Config{}
 	aR.GET("/server", rs.ServerConfig)
 	aR.GET("/app", rs.AppConfig)
 	aR.GET("/admin", rs.AdminConfig)
 }
 /*
@@ -165,3 +227,69 @@ func FileBind(rg *gin.RouterGroup) {
 		aR.POST("/upload", cont.Upload)
 	}
 }*/
 func MyBind(rg *gin.RouterGroup) {
 	{
 		cont := &my.ShareRecord{}
 		rg.GET("/my/share_record/list", cont.List)
 		rg.POST("/my/share_record/delete", cont.Delete)
 		rg.POST("/my/share_record/batchDelete", cont.BatchDelete)
 	}
 	{
 		cont := &my.AddressBook{}
 		rg.GET("/my/address_book/list", cont.List)
 		rg.POST("/my/address_book/create", cont.Create)
 		rg.POST("/my/address_book/update", cont.Update)
 		rg.POST("/my/address_book/delete", cont.Delete)
 		rg.POST("/my/address_book/batchCreateFromPeers", cont.BatchCreateFromPeers)
 		rg.POST("/my/address_book/batchUpdateTags", cont.BatchUpdateTags)
 	}
 	{
 		cont := &my.Tag{}
 		rg.GET("/my/tag/list", cont.List)
 		rg.POST("/my/tag/create", cont.Create)
 		rg.POST("/my/tag/update", cont.Update)
 		rg.POST("/my/tag/delete", cont.Delete)
 	}
 	{
 		cont := &my.AddressBookCollection{}
 		rg.GET("/my/address_book_collection/list", cont.List)
 		rg.POST("/my/address_book_collection/create", cont.Create)
 		rg.POST("/my/address_book_collection/update", cont.Update)
 		rg.POST("/my/address_book_collection/delete", cont.Delete)
 	}
 	{
 		cont := &my.AddressBookCollectionRule{}
 		rg.GET("/my/address_book_collection_rule/list", cont.List)
 		rg.POST("/my/address_book_collection_rule/create", cont.Create)
 		rg.POST("/my/address_book_collection_rule/update", cont.Update)
 		rg.POST("/my/address_book_collection_rule/delete", cont.Delete)
 	}
 	{
 		cont := &my.Peer{}
 		rg.GET("/my/peer/list", cont.List)
 	}
 	{
 		cont := &my.LoginLog{}
 		rg.GET("/my/login_log/list", cont.List)
 		rg.POST("/my/login_log/delete", cont.Delete)
 		rg.POST("/my/login_log/batchDelete", cont.BatchDelete)
 	}
 }
 func ShareRecordBind(rg *gin.RouterGroup) {
 	aR := rg.Group("/share_record").Use(middleware.AdminPrivilege())
 	{
 		cont := &admin.ShareRecord{}
 		aR.GET("/list", cont.List)
 		aR.POST("/delete", cont.Delete)
 		aR.POST("/batchDelete", cont.BatchDelete)
 	}
 }
--- a/http/router/api.go
+++ b/http/router/api.go
@@ -15,7 +15,9 @@ func ApiInit(g *gin.Engine) {
 	//g.Use(middleware.Cors())
 	//swagger
-	g.GET("/swagger/*any", ginSwagger.WrapHandler(swaggerFiles.Handler, ginSwagger.InstanceName("api")))
+	if global.Config.App.ShowSwagger == 1 {
 		g.GET("/swagger/*any", ginSwagger.WrapHandler(swaggerFiles.Handler, ginSwagger.InstanceName("api")))
 	}
 	frg := g.Group("/api")
@@ -121,6 +123,7 @@ func WebClientRoutes(frg *gin.RouterGroup) {
 	}
 	{
 		frg.POST("/server-config", middleware.RustAuth(), w.ServerConfig)
 		frg.POST("/server-config-v2", middleware.RustAuth(), w.ServerConfigV2)
 	}
 }
--- a/lib/lock/local_test.go
+++ b/lib/lock/local_test.go
@@ -51,30 +51,22 @@ func TestLocal_GetLock(t *testing.T) {
 func TestLocal_Lock(t *testing.T) {
 	l := NewLocal()
 	wg := sync.WaitGroup{}
-	wg.Add(3)
+	m := 10
 	wg.Add(m)
 	i := 0
-	go func() {
+	for j := 0; j < m; j++ {
-		l.Lock("key")
+		go func() {
-		fmt.Println("l1", i)
+			l.Lock("key")
-		i++
+			//fmt.Println(j, i)
-		l.UnLock("key")
+			i++
-		wg.Done()
+			fmt.Println(j, i)
-	}()
+			l.UnLock("key")
-	go func() {
+			wg.Done()
-		l.Lock("key")
+		}()
-		fmt.Println("l2", i)
+	}
-		i++
+
 		l.UnLock("key")
 		wg.Done()
 	}()
 	go func() {
 		l.Lock("key")
 		fmt.Println("l3", i)
 		i++
 		l.UnLock("key")
 		wg.Done()
 	}()
 	wg.Wait()
 	fmt.Println(i)
 }
 func TestSyncMap(t *testing.T) {
--- a/model/addressBook.go
+++ b/model/addressBook.go
@@ -19,22 +19,24 @@ import "Gwen/model/custom_types"
 // AddressBook 有些字段是Personal才会上传的
 type AddressBook struct {
-	RowId            uint                  `gorm:"primaryKey" json:"row_id"`
+	RowId            uint                   `gorm:"primaryKey" json:"row_id"`
-	Id               string                `json:"id" gorm:"default:0;not null;index"`
+	Id               string                 `json:"id" gorm:"default:0;not null;index"`
-	Username         string                `json:"username" gorm:"default:'';not null;"`
+	Username         string                 `json:"username" gorm:"default:'';not null;"`
-	Password         string                `json:"password" gorm:"default:'';not null;"`
+	Password         string                 `json:"password" gorm:"default:'';not null;"`
-	Hostname         string                `json:"hostname" gorm:"default:'';not null;"`
+	Hostname         string                 `json:"hostname" gorm:"default:'';not null;"`
-	Alias            string                `json:"alias" gorm:"default:'';not null;"`
+	Alias            string                 `json:"alias" gorm:"default:'';not null;"`
-	Platform         string                `json:"platform" gorm:"default:'';not null;"`
+	Platform         string                 `json:"platform" gorm:"default:'';not null;"`
-	Tags             custom_types.AutoJson `json:"tags" gorm:"not null;" swaggertype:"array,string"`
+	Tags             custom_types.AutoJson  `json:"tags" gorm:"not null;" swaggertype:"array,string"`
-	Hash             string                `json:"hash" gorm:"default:'';not null;"`
+	Hash             string                 `json:"hash" gorm:"default:'';not null;"`
-	UserId           uint                  `json:"user_id" gorm:"default:0;not null;index"`
+	UserId           uint                   `json:"user_id" gorm:"default:0;not null;index"`
-	ForceAlwaysRelay bool                  `json:"forceAlwaysRelay" gorm:"default:0;not null;"`
+	ForceAlwaysRelay bool                   `json:"forceAlwaysRelay" gorm:"default:0;not null;"`
-	RdpPort          string                `json:"rdpPort" gorm:"default:'';not null;"`
+	RdpPort          string                 `json:"rdpPort" gorm:"default:'';not null;"`
-	RdpUsername      string                `json:"rdpUsername" gorm:"default:'';not null;"`
+	RdpUsername      string                 `json:"rdpUsername" gorm:"default:'';not null;"`
-	Online           bool                  `json:"online" gorm:"default:0;not null;"`
+	Online           bool                   `json:"online" gorm:"default:0;not null;"`
-	LoginName        string                `json:"loginName" gorm:"default:'';not null;"`
+	LoginName        string                 `json:"loginName" gorm:"default:'';not null;"`
-	SameServer       bool                  `json:"sameServer" gorm:"default:0;not null;"`
+	SameServer       bool                   `json:"sameServer" gorm:"default:0;not null;"`
 	CollectionId     uint                   `json:"collection_id" gorm:"default:0;not null;index"`
 	Collection       *AddressBookCollection `json:"collection,omitempty"`
 	TimeModel
 }
@@ -42,3 +44,37 @@ type AddressBookList struct {
 	AddressBooks []*AddressBook `json:"list"`
 	Pagination
 }
 type AddressBookCollection struct {
 	IdModel
 	UserId uint   `json:"user_id" gorm:"default:0;not null;index"`
 	Name   string `json:"name" gorm:"default:'';not null;" validate:"required"`
 	TimeModel
 }
 type AddressBookCollectionList struct {
 	AddressBookCollection []*AddressBookCollection `json:"list"`
 	Pagination
 }
 type AddressBookCollectionRule struct {
 	IdModel
 	UserId       uint `json:"user_id" gorm:"default:0;not null;"`
 	CollectionId uint `json:"collection_id" gorm:"default:0;not null;index" validate:"required"`
 	Rule         int  `json:"rule" gorm:"default:0;not null;" validate:"required,gte=1,lte=3"` // 0: 无 1: 读 2: 读写  3: 完全控制
 	Type         int  `json:"type" gorm:"default:1;not null;" validate:"required,gte=1,lte=2"` // 1: 个人 2: 群组
 	ToId         uint `json:"to_id" gorm:"default:0;not null;" validate:"required,gt=0"`
 	TimeModel
 }
 type AddressBookCollectionRuleList struct {
 	AddressBookCollectionRule []*AddressBookCollectionRule `json:"list"`
 	Pagination
 }
 const (
 	ShareAddressBookRuleTypePersonal = 1
 	ShareAddressBookRuleTypeGroup    = 2
 )
 const (
 	ShareAddressBookRuleRuleRead        = 1
 	ShareAddressBookRuleRuleReadWrite   = 2
 	ShareAddressBookRuleRuleFullControl = 3
 )
--- a/model/loginLog.go
+++ b/model/loginLog.go
@@ -2,21 +2,34 @@ package model
 type LoginLog struct {
 	IdModel
-	UserId   uint   `json:"user_id"`
+	UserId      uint   `json:"user_id" gorm:"default:0;not null;"`
-	Client   string `json:"client"` //webadmin,webclient,app,
+	Client      string `json:"client"` //webadmin,webclient,app,
-	Uuid     string `json:"uuid"`
+	DeviceId    string `json:"device_id"`
-	Ip       string `json:"ip"`
+	Uuid        string `json:"uuid"`
-	Type     string `json:"type"`     //account,oauth
+	Ip          string `json:"ip"`
-	Platform string `json:"platform"` //windows,linux,mac,android,ios
+	Type        string `json:"type"`     //account,oauth
-
+	Platform    string `json:"platform"` //windows,linux,mac,android,ios
 	UserTokenId uint   `json:"user_token_id" gorm:"default:0;not null;"`
 	IsDeleted   uint   `json:"is_deleted" gorm:"default:0;not null;"`
 	TimeModel
 }
 const (
 	LoginLogClientWebAdmin = "webadmin"
 	LoginLogClientWeb      = "webclient"
 	LoginLogClientApp      = "app"
 )
 const (
 	LoginLogTypeAccount = "account"
 	LoginLogTypeOauth   = "oauth"
 )
 const (
 	IsDeletedNo  = 0
 	IsDeletedYes = 1
 )
 type LoginLogList struct {
 	LoginLogs []*LoginLog `json:"list"`
 	Pagination
--- a/model/oauth.go
+++ b/model/oauth.go
@@ -1,20 +1,145 @@
 package model
 import (
 	"errors"
 	"strconv"
 	"strings"
 )
 const OIDC_DEFAULT_SCOPES = "openid,profile,email"
 const (
 	// make sure the value shouldbe lowercase
 	OauthTypeGithub  string = "github"
 	OauthTypeGoogle  string = "google"
 	OauthTypeOidc    string = "oidc"
 	OauthTypeWebauth string = "webauth"
 )
 // Validate the oauth type
 func ValidateOauthType(oauthType string) error {
 	switch oauthType {
 	case OauthTypeGithub, OauthTypeGoogle, OauthTypeOidc, OauthTypeWebauth:
 		return nil
 	default:
 		return errors.New("invalid Oauth type")
 	}
 }
 const (
 	UserEndpointGithub string = "https://api.github.com/user"
 	IssuerGoogle       string = "https://accounts.google.com"
 )
 type Oauth struct {
 	IdModel
 	Op           string `json:"op"`
 	OauthType    string `json:"oauth_type"`
 	ClientId     string `json:"client_id"`
 	ClientSecret string `json:"client_secret"`
 	RedirectUrl  string `json:"redirect_url"`
 	AutoRegister *bool  `json:"auto_register"`
 	Scopes       string `json:"scopes"`
 	Issuer       string `json:"issuer"`
 	TimeModel
 }
-const (
+// Helper function to format oauth info, it's used in the update and create method
-	OauthTypeGithub  = "github"
+func (oa *Oauth) FormatOauthInfo() error {
-	OauthTypeGoogle  = "google"
+	oauthType := strings.TrimSpace(oa.OauthType)
-	OauthTypeWebauth = "webauth"
+	err := ValidateOauthType(oa.OauthType)
-)
+	if err != nil {
 		return err
 	}
 	switch oauthType {
 	case OauthTypeGithub:
 		oa.Op = OauthTypeGithub
 	case OauthTypeGoogle:
 		oa.Op = OauthTypeGoogle
 	}
 	// check if the op is empty, set the default value
 	op := strings.TrimSpace(oa.Op)
 	if op == "" && oauthType == OauthTypeOidc {
 		oa.Op = OauthTypeOidc
 	}
 	// check the issuer, if the oauth type is google and the issuer is empty, set the issuer to the default value
 	issuer := strings.TrimSpace(oa.Issuer)
 	// If the oauth type is google and the issuer is empty, set the issuer to the default value
 	if oauthType == OauthTypeGoogle && issuer == "" {
 		oa.Issuer = IssuerGoogle
 	}
 	return nil
 }
 type OauthUser struct {
 	OpenId        string `json:"open_id" gorm:"not null;index"`
 	Name          string `json:"name"`
 	Username      string `json:"username"`
 	Email         string `json:"email"`
 	VerifiedEmail bool   `json:"verified_email,omitempty"`
 	Picture       string `json:"picture,omitempty"`
 }
 func (ou *OauthUser) ToUser(user *User, overideUsername bool) {
 	if overideUsername {
 		user.Username = ou.Username
 	}
 	user.Email = ou.Email
 	user.Nickname = ou.Name
 	user.Avatar = ou.Picture
 }
 type OauthUserBase struct {
 	Name  string `json:"name"`
 	Email string `json:"email"`
 }
 type OidcUser struct {
 	OauthUserBase
 	Sub               string `json:"sub"`
 	VerifiedEmail     bool   `json:"email_verified"`
 	PreferredUsername string `json:"preferred_username"`
 	Picture           string `json:"picture"`
 }
 func (ou *OidcUser) ToOauthUser() *OauthUser {
 	var username string
 	// 使用 PreferredUsername，如果不存在，降级到 Email 前缀
 	if ou.PreferredUsername != "" {
 		username = ou.PreferredUsername
 	} else {
 		username = strings.ToLower(ou.Email)
 	}
 	return &OauthUser{
 		OpenId:        ou.Sub,
 		Name:          ou.Name,
 		Username:      username,
 		Email:         ou.Email,
 		VerifiedEmail: ou.VerifiedEmail,
 		Picture:       ou.Picture,
 	}
 }
 type GithubUser struct {
 	OauthUserBase
 	Id            int    `json:"id"`
 	Login         string `json:"login"`
 	AvatarUrl     string `json:"avatar_url"`
 	VerifiedEmail bool   `json:"verified_email"`
 }
 func (gu *GithubUser) ToOauthUser() *OauthUser {
 	username := strings.ToLower(gu.Login)
 	return &OauthUser{
 		OpenId:        strconv.Itoa(gu.Id),
 		Name:          gu.Name,
 		Username:      username,
 		Email:         gu.Email,
 		VerifiedEmail: gu.VerifiedEmail,
 		Picture:       gu.AvatarUrl,
 	}
 }
 type OauthList struct {
 	Oauths []*Oauth `json:"list"`
--- a/model/peer.go
+++ b/model/peer.go
@@ -11,8 +11,9 @@ type Peer struct {
 	Uuid           string `json:"uuid"  gorm:"default:'';not null;index"`
 	Version        string `json:"version"  gorm:"default:'';not null;"`
 	UserId         uint   `json:"user_id"  gorm:"default:0;not null;index"`
-	User           User   `json:"user,omitempty" gorm:""`
+	User           *User  `json:"user,omitempty"`
 	LastOnlineTime int64  `json:"last_online_time"  gorm:"default:0;not null;"`
 	LastOnlineIp   string `json:"last_online_ip"  gorm:"default:'';not null;"`
 	TimeModel
 }
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
lejianwen	1dd4df3a1c	chore(buildTest): add start.bat to run on windows	2024-12-27 20:13:55 +08:00
lejianwen	c7d44cc253	fix(build): add start.bat to run on windows(#89 )	2024-12-27 20:09:08 +08:00
lejianwen	5082ab1893	refactor(admin): Move Admin Web Route to user model	2024-12-27 19:27:33 +08:00
lejianwen	e8b2425222	feat(admin): Add My Login log	2024-12-27 19:25:59 +08:00
lejianwen	09d12cefd8	feat(admin): Support Markdown to welcome msg	2024-12-25 19:21:50 +08:00
lejianwen	5f1166965d	fix(api): Get ab list when personal is disabled (#86 )	2024-12-25 19:04:42 +08:00
lejianwen	0dbab182e9	fix(webclient): share fail when expire is 0 Closes: #88	2024-12-25 15:01:03 +08:00
lejianwen	512f3f99fd	fix(build): fix build_test.yml	2024-12-25 14:06:29 +08:00
lejianwen	6fb4fad705	fix(build): up build.yml to build deb	2024-12-25 13:20:12 +08:00
lejianwen	fa92529e9b	chore(build): up build.yml to build deb	2024-12-25 12:57:11 +08:00
Follow the wind	d6c6051a6c	feat(build): 添加构建deb包相关基础 (#87 ) * 添加构建deb包相关基础 * 补齐工作流，等待验证 * 修复构建时没有创建的data目录保障deb包构建 * 修复其余架构deb包构建中的依赖错误 * 修复：由于小改工作流导致写错架构的问题 * 修复拼写错误导致的目录错误 * 添加上传工件，和发布rel工作流，完成相关事务 --------- Co-authored-by: ymwl <ymwlpoolc@qq.com>	2024-12-25 12:28:51 +08:00
lejianwen	ce063bd3ac	feat(webclient): v1.3.5 -> v1.3.6	2024-12-24 10:25:47 +08:00
lejianwen	4468894dfb	chore(changelog): up build.yml to generate changelog	2024-12-22 14:14:51 +08:00
lejianwen	8b00b919ad	chore(changelog): up build.yml to generate changelog	2024-12-22 14:04:23 +08:00
乐	64f4a6dfac	feat(i18n): Merge pull request #85 from jimmyGALLAND/trans-fr add locale french	2024-12-22 13:57:56 +08:00
jimmyGALLAND	6faa5153b6	add locale french	2024-12-21 22:56:48 +01:00
lejianwen	a771b1e9b0	fix(webclient): remove console.log when query online by new	2024-12-21 21:49:03 +08:00
lejianwen	7750f9c54d	chore(changelog): up build.yml to add changelog	2024-12-21 21:39:11 +08:00
lejianwen	b2d24ee67b	docs(webclient): up readme	2024-12-21 21:31:54 +08:00
lejianwen	589a2a5123	feat(webclient): add new query_online function There may be a loss of performance Therefore, it is not enabled by default	2024-12-21 21:15:06 +08:00
lejianwen	184d3d357d	optimize add ab from peer #84	2024-12-20 11:11:32 +08:00
lejianwen	50b3d85270	up docs and readme	2024-12-18 14:28:06 +08:00
lejianwen	09fdd34ba3	fix captcha	2024-12-18 13:51:06 +08:00
lejianwen	bba10261c5	fix captcha	2024-12-18 13:36:01 +08:00
lejianwen	46bfe54097	add show-swagger config #83	2024-12-18 12:50:09 +08:00
lejianwen	503e7a307e	up docs	2024-12-18 12:44:06 +08:00
lejianwen	821b0a6faf	add captcha #82	2024-12-18 12:43:55 +08:00
lejianwen	d60fdff179	split my from admin	2024-12-17 21:41:56 +08:00
lejianwen	fdd841e82a	add batch add ab from peer and up my	2024-12-13 16:27:12 +08:00
lejianwen	2d6f0a116a	add share record manage	2024-12-13 12:32:36 +08:00
lejianwen	bd13fe4ef4	up web client v2	2024-12-10 18:26:08 +08:00
lejianwen	6e1b208464	up README.md	2024-12-10 15:28:05 +08:00
lejianwen	76433a409e	up README.md	2024-12-09 13:43:04 +08:00
lejianwen	9b4fa679c2	add batch add ab from peer add batch update ab tags	2024-12-06 19:45:41 +08:00
lejianwen	c2ae95c4cc	up api docs	2024-12-06 10:36:40 +08:00
lejianwen	b2b7f60fd5	add batch delete user token	2024-12-06 10:36:27 +08:00
lejianwen	a465888b31	up username length to 32 #70	2024-12-06 10:22:28 +08:00
lejianwen	d368bdc84c	up web client v2	2024-12-04 13:43:04 +08:00
lejianwen	cdc1150505	up readme	2024-11-28 12:42:15 +08:00
乐	32d525c53c	Create LICENSE	2024-11-26 17:29:46 +08:00
lejianwen	a89b40c607	add es lang	2024-11-26 10:43:01 +08:00
lejianwen	b6bd9150d9	up web client v2 from rustdesk	2024-11-22 19:54:19 +08:00
lejianwen	96e3e3bc86	up docs	2024-11-22 19:53:49 +08:00
lejianwen	41377f41bb	Split the language	2024-11-22 19:39:28 +08:00
lejianwen	fb744f81e2	up img	2024-11-20 19:33:27 +08:00
lejianwen	750c3bcbcd	fix #62	2024-11-20 19:32:44 +08:00
lejianwen	d4015d7284	fix	2024-11-20 09:20:29 +08:00
lejianwen	a9bf3fda73	fix https://github.com/lejianwen/rustdesk-api/discussions/59#discussioncomment-11306760	2024-11-20 09:17:29 +08:00
lejianwen	7f467a4814	up web client v2	2024-11-18 21:39:18 +08:00
lejianwen	9f10b5e983	up readme	2024-11-17 18:27:15 +08:00
lejianwen	5291270e6a	up ws connect in https #12	2024-11-17 17:34:51 +08:00
lejianwen	56bba381d8	fix	2024-11-16 22:08:06 +08:00
lejianwen	2ff276b162	up package lock	2024-11-16 20:56:26 +08:00
lejianwen	d77191ce0f	up ws js	2024-11-16 20:03:30 +08:00
lejianwen	f99803aef4	up	2024-11-16 19:42:13 +08:00
lejianwen	e09fa17013	add webclientv2	2024-11-16 18:33:02 +08:00
lejianwen	c7e69aa8a5	fix gitignore	2024-11-15 21:43:23 +08:00
ljw	9548068283	up readme	2024-11-12 11:54:21 +08:00
ljw	09958c78f3	up readme	2024-11-12 11:53:57 +08:00
ljw	aced098982	add batch delete log #57	2024-11-12 09:08:10 +08:00
ljw	7862a34760	up admin conf	2024-11-12 08:43:49 +08:00
ljw	1384d28cac	add admin conf	2024-11-11 22:26:15 +08:00
ljw	24b7338153	up readme	2024-11-09 20:38:11 +08:00
ljw	30d254eaef	fix #55	2024-11-09 20:14:14 +08:00
ljw	bb8a936ade	add build_test.yml	2024-11-08 16:09:50 +08:00
ljw	61044fd30b	add build_test.yml	2024-11-08 16:05:43 +08:00
ljw	22a4546d0f	add cmd	2024-11-08 15:54:49 +08:00
ljw	07450416ed	fix #52 & add auto refresh token #53	2024-11-07 10:46:00 +08:00
乐	0d6db0d2a1	Merge pull request #52 from IamTaoChen/fix/bug fix: cannot delete user	2024-11-07 10:21:50 +08:00
Tao Chen	ab30b3407b	add error information	2024-11-06 15:06:15 +08:00
Tao Chen	7a4c735803	fix: cannot delete user	2024-11-06 14:36:12 +08:00
ljw	654c764019	fix migrate	2024-11-05 21:07:39 +08:00
ljw	7101139250	fix migrate	2024-11-05 21:07:31 +08:00
ljw	793614841a	fix migrate	2024-11-05 21:03:32 +08:00
ljw	94f2ac5b2a	fix username length #48	2024-11-05 11:57:16 +08:00
ljw	d4d39eecaa	up oauth re	2024-11-05 11:48:35 +08:00
ljw	8af01c859c	Merge branch 'oauth_re' of https://github.com/IamTaoChen/rustdesk-api into IamTaoChen-oauth_re	2024-11-05 08:24:48 +08:00
Tao Chen	3af92d03e8	modify google ro re-use oidc	2024-11-04 21:30:58 +08:00
Tao Chen	f17d891302	fix: delete check	2024-11-03 22:23:24 +08:00
Tao Chen	51623436b0	fix: call us.IsAdmin(u) to check admin	2024-11-03 21:59:17 +08:00
Tao Chen	1b7c7eef8f	fix google	2024-11-03 18:04:28 +08:00
Tao Chen	15e4c7e522	re-use responseLoginSuccess	2024-11-03 17:25:27 +08:00
Tao Chen	120ab132a9	fix: last admin shouldn't be deleted, disabled or demoted	2024-11-03 17:19:05 +08:00
Tao Chen	0b52e8faa8	fix: Github AvatarUrl to OauthUser	2024-11-03 16:49:28 +08:00
Tao Chen	60eaaf390a	add err for RegisterByOauth	2024-11-03 16:49:03 +08:00
Tao Chen	9101badb1c	fronted for docker-dev	2024-11-03 16:34:50 +08:00
Tao Chen	7082111b34	optimize /admin/login-options	2024-11-03 05:37:34 +08:00
Tao Chen	a156f2681e	chroe	2024-11-03 05:34:19 +08:00
Tao Chen	7cb823c957	add Avatar to OauthUser	2024-11-03 05:33:59 +08:00
Tao Chen	817f612224	low case email	2024-11-03 05:25:10 +08:00
Tao Chen	1cbaf9d6bc	const var for op name	2024-11-03 05:13:22 +08:00
Tao Chen	d353f9837f	fix: email from github	2024-11-03 05:11:31 +08:00
Tao Chen	14beef72fc	fix: Email of Register	2024-11-03 05:07:17 +08:00
Tao Chen	91a33fe7f6	fix: RegisterByOauth without Email	2024-11-03 04:35:39 +08:00
ljw	7ad7a0ff41	fix #45	2024-11-02 18:49:16 +08:00
Tao Chen	d646469f71	set user_id=0 at peers, when the user is deleted	2024-11-02 08:24:07 +08:00
Tao Chen	4f616ffff1	When login, peer doesn't exist, it should create	2024-11-02 08:19:44 +08:00
Tao Chen	64400fba61	delete the token when delete a peer	2024-11-02 08:02:03 +08:00
Tao Chen	fc15e8c63d	add MyPeers for user	2024-11-02 07:35:26 +08:00
Tao Chen	cbba1e5317	add email for register	2024-11-02 05:43:55 +08:00
Tao Chen	75b997dcc4	add DeviceId to userToken	2024-11-02 05:42:47 +08:00
Tao Chen	853063c59b	logout should unbind uuid and uid of peer	2024-11-02 05:07:41 +08:00
Tao Chen	5c65edb8fa	fix bug ValidateOauthProvider location	2024-11-02 04:20:00 +08:00
Tao Chen	7707cc116f	re-construct oauth	2024-11-02 04:01:28 +08:00
ljw	737fe749de	load key from file	2024-11-01 14:56:11 +08:00
乐	b9c6f17e3f	Merge pull request #42 from IamTaoChen/docker Docker Optimize	2024-11-01 13:10:59 +08:00
Tao Chen	af6a340003	add more	2024-11-01 01:33:08 +08:00
Tao Chen	8ba3bee944	optimize scripts	2024-11-01 01:33:05 +08:00
Tao Chen	153c3566b6	optimize build speed, like cache and mirror	2024-11-01 01:32:45 +08:00
Tao Chen	97a4753f4f	add ARG CONTRY=CN to improve the alpinelinux install speed	2024-11-01 00:29:33 +08:00
Tao Chen	74c3899b55	add bash to run dev-docker	2024-11-01 00:28:43 +08:00
ljw	273ac6d1a8	add remove user token #34	2024-10-31 22:29:12 +08:00
乐	5edbb39a63	Merge pull request #40 from IamTaoChen/resetEmptyPassWD Reset empty password	2024-10-31 18:46:34 +08:00
Tao Chen	0c974c4113	Merge branch 'master' into resetEmptyPassWD	2024-10-31 16:35:32 +08:00
Tao Chen	46657a525d	ommit check old passwd if password is empty	2024-10-31 16:23:06 +08:00
Tao Chen	b36aa6f917	add IsPasswordEmpty...	2024-10-31 16:22:42 +08:00
ljw	cddb0ebef9	up readme #28	2024-10-31 15:48:36 +08:00
ljw	788c4e3531	up readme #28	2024-10-31 15:47:39 +08:00
ljw	47f9ad8274	add register	2024-10-31 15:14:30 +08:00
ljw	855beb7fa9	up oauth	2024-10-31 14:03:48 +08:00
乐	f57816b1b0	Merge pull request #36 from IamTaoChen/oidc-for-web OIDC for web	2024-10-31 11:10:46 +08:00
Tao Chen	ff08fefc30	rename build stage	2024-10-31 09:21:43 +08:00
Tao Chen	f792ab9055	add some /admin/ to surport web OIDC	2024-10-31 09:21:30 +08:00
ljw	63af103a4e	fix buidconfirm	2024-10-30 20:59:51 +08:00
ljw	0a36d44cec	up del user	2024-10-30 19:34:56 +08:00
乐	a1f4e1de84	Merge pull request #32 from IamTaoChen/bug/odic-user delete user from user_thirds and update README	2024-10-30 19:08:50 +08:00
Tao Chen	05b20d47db	modify delete user	2024-10-30 16:33:01 +08:00
Tao Chen	6b746f13d1	update README	2024-10-30 16:31:47 +08:00
Tao Chen	e838d5bcd2	update README for OIDC	2024-10-30 16:29:49 +08:00
Tao Chen	0dcc21260e	delete user from user_thirds, too	2024-10-30 15:59:33 +08:00
ljw	3c30ad145c	up v	2024-10-30 15:46:12 +08:00
ljw	06b0a8e873	add docker-compose-dev.yaml	2024-10-30 15:34:45 +08:00
乐	b7de2ccadd	Merge pull request #30 from IamTaoChen/oidc Add General OIDC Login	2024-10-30 14:40:10 +08:00
Tao Chen	b52c5cfca1	bind oidc ThirdEmail	2024-10-29 23:09:54 +08:00
Tao Chen	fe910c37cf	fix: spelling	2024-10-29 23:00:17 +08:00
Tao Chen	337ef330eb	fix bug	2024-10-29 18:48:37 +08:00
Tao Chen	ffa47177aa	fix bug - oidc scopes	2024-10-29 18:46:45 +08:00
ljw	46a76853c3	fix oauth register #26 #23	2024-10-29 15:31:27 +08:00
Tao Chen	2cd7dfb2b3	fix bug	2024-10-29 14:27:15 +08:00
Tao Chen	fee2808bca	try add oidc	2024-10-29 11:51:01 +08:00
Tao Chen	49e5eb186a	optimize docker	2024-10-29 11:50:55 +08:00
Tao Chen	dee2865466	optimize build.sh	2024-10-29 10:58:17 +08:00
ljw	eb340b2615	add last online ip #24	2024-10-28 20:24:34 +08:00
ljw	e714549a95	up address book add version #20	2024-10-28 19:48:47 +08:00
ljw	a1367bcd3d	up peer update	2024-10-28 19:15:13 +08:00
ljw	642351dafd	fix bug #27	2024-10-28 16:08:33 +08:00
ljw	90b9b5adba	up	2024-10-28 14:54:00 +08:00
ljw	5bf4bbe45f	add address book name & add share address book	2024-10-28 14:51:07 +08:00
ljw	036f928fa3	up readme	2024-10-23 11:09:28 +08:00
ljw	94e7b31fb6	fix group	2024-10-23 11:09:13 +08:00
`@@ -1 +1,2 @@`
	`resources/web/*/ linguist-vendored`	`resources/web/*/ linguist-vendored`
		`resources/web2/*/ linguist-vendored`
		`@@ -0,0 +1 @@`
							`### 👏👏👏 你好 *{{username}}*，欢迎使用 [RustDesk Api](https://github.com/lejianwen/rustdesk-api)`