v0.1.0-beta

- Update git ignore files
- Add log functionality
- Cancel the fixed JWT key and switch to using the superuser token.
- Added the ability to read env files.
- Some changes were made to the setup superusertoken.
- Fix known bugs

Author: BretRen

.env.example

@@ -0,0 +1,5 @@
+# if set, then mean production
+GIN_MODE=release
+# if set, then mean production
+ENV=production
+PORT=3333

.gitignore

@@ -1,5 +1,7 @@
 # --- 敏感文件 (严禁上传) ---
 .superusertoken
+.env
+
 
 # --- 数据库文件 ---
 *.db
@@ -21,3 +23,4 @@ bin/
 
 # --- 依赖管理 ---
 # vendor/  # 如果你使用 go mod vendor 且想提交，可以注释掉这行
+

config/logger.go

@@ -0,0 +1,29 @@
+package config
+
+import (
+	"log/slog"
+	"os"
+)
+
+func InitLogger() {
+	var handler slog.Handler
+
+	// 设置配置项
+	opts := &slog.HandlerOptions{
+		// AddSource: true 可以在日志中看到具体是哪一个文件、哪一行代码打的日志
+		AddSource: true,
+		// 默认级别是 Info，你可以根据环境变量动态调整
+		Level: slog.LevelDebug,
+	}
+
+	if os.Getenv("ENV") == "production" {
+		handler = slog.NewJSONHandler(os.Stdout, opts)
+	} else {
+		handler = slog.NewTextHandler(os.Stdout, opts)
+	}
+
+	logger := slog.New(handler)
+
+	// 设置为全局默认，这样你在其他 package 直接调用 slog.Info 即可
+	slog.SetDefault(logger)
+}

go.mod

@@ -27,6 +27,7 @@ require (
 	github.com/goccy/go-yaml v1.19.2 // indirect
 	github.com/jinzhu/inflection v1.0.0 // indirect
 	github.com/jinzhu/now v1.1.5 // indirect
+	github.com/joho/godotenv v1.5.1 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
 	github.com/klauspost/cpuid/v2 v2.3.0 // indirect
 	github.com/kr/text v0.2.0 // indirect
@@ -36,12 +37,14 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
+	github.com/pkg/errors v0.9.1 // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
 	github.com/quic-go/qpack v0.6.0 // indirect
 	github.com/quic-go/quic-go v0.58.0 // indirect
 	github.com/stretchr/objx v0.5.3 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
 	github.com/ugorji/go/codec v1.3.1 // indirect
+	github.com/ulule/limiter/v3 v3.11.2 // indirect
 	go.uber.org/mock v0.6.0 // indirect
 	golang.org/x/arch v0.23.0 // indirect
 	golang.org/x/net v0.48.0 // indirect

go.sum

@@ -39,6 +39,8 @@ github.com/jinzhu/inflection v1.0.0 h1:K317FqzuhWc8YvSVlFMCCUb36O/S9MCKRDI7QkRKD
 github.com/jinzhu/inflection v1.0.0/go.mod h1:h+uFLlag+Qp1Va5pdKtLDYj+kHp5pxUVkryuEj+Srlc=
 github.com/jinzhu/now v1.1.5 h1:/o9tlHleP7gOFmsnYNz3RGnqzefHA47wQpKrrdTIwXQ=
 github.com/jinzhu/now v1.1.5/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
+github.com/joho/godotenv v1.5.1 h1:7eLL/+HRGLY0ldzfGMeQkb7vMd0as4CfYvUVzLqw0N0=
+github.com/joho/godotenv v1.5.1/go.mod h1:f4LDr5Voq0i2e/R5DDNOoa2zzDfwtkZa6DnEwAbqwq4=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/klauspost/cpuid/v2 v2.3.0 h1:S4CRMLnYUhGeDFDqkGriYKdfoFlDnMtqTiI/sFzhA9Y=
@@ -60,6 +62,8 @@ github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9G
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
 github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
+github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
+github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/quic-go/qpack v0.6.0 h1:g7W+BMYynC1LbYLSqRt8PBg5Tgwxn214ZZR34VIOjz8=
@@ -86,6 +90,8 @@ github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 github.com/ugorji/go/codec v1.3.1 h1:waO7eEiFDwidsBN6agj1vJQ4AG7lh2yqXyOXqhgQuyY=
 github.com/ugorji/go/codec v1.3.1/go.mod h1:pRBVtBSKl77K30Bv8R2P+cLSGaTtex6fsA2Wjqmfxj4=
+github.com/ulule/limiter/v3 v3.11.2 h1:P4yOrxoEMJbOTfRJR2OzjL90oflzYPPmWg+dvwN2tHA=
+github.com/ulule/limiter/v3 v3.11.2/go.mod h1:QG5GnFOCV+k7lrL5Y8kgEeeflPH3+Cviqlqa8SVSQxI=
 go.uber.org/mock v0.6.0 h1:hyF9dfmbgIX5EfOdasqLsWD6xqpNZlXblLB/Dbnwv3Y=
 go.uber.org/mock v0.6.0/go.mod h1:KiVJ4BqZJaMj4svdfmHM0AUx4NJYO8ZNpPnZn1Z+BBU=
 golang.org/x/arch v0.23.0 h1:lKF64A2jF6Zd8L0knGltUnegD62JMFBiCPBmQpToHhg=

handlers/announcement_handler.go

@@ -2,6 +2,7 @@ package handlers
 
 import (
 	"errors"
+	"log/slog"
 	"net/http"
 
 	"github.com/gin-gonic/gin"
@@ -27,8 +28,8 @@ func (h *AnnouncementHandler) GetOne(c *gin.Context) {
 			c.JSON(http.StatusNotFound, gin.H{"message": "Announcement not found"})
 			return
 		}
-		// 这里的打印可以保留，方便服务器排查
-		println("[Server Error] Query Error: " + err.Error())
+
+		slog.Error("Database query error", "handler", "GetOne", "id", id, "err", err)
 		c.JSON(http.StatusInternalServerError, gin.H{"message": "Something went wrong"})
 		return
 	}
@@ -39,6 +40,7 @@ func (h *AnnouncementHandler) GetOne(c *gin.Context) {
 func (h *AnnouncementHandler) GetAll(c *gin.Context) {
 	announcements, err := h.Service.GetAll()
 	if err != nil {
+		slog.Error("Failed to fetch announcements", "err", err)
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
@@ -50,13 +52,15 @@ func (h *AnnouncementHandler) Create(c *gin.Context) {
 	var input models.CreateAnnouncementRequest
 
 	if err := c.ShouldBindJSON(&input); err != nil {
+		slog.Debug("Create announcement bind failed", "err", err) // DEBUG 即可，不干扰生产
 		c.JSON(400, gin.H{"error": err.Error()})
 		return
 	}
 
 	val, exists := c.Get("currentUserID")
 
 	if !exists {
+		slog.Error("Create announcement obtain current user information failed", "err", "Unable to obtain current user information")
 		c.JSON(http.StatusInternalServerError, gin.H{"error": "Unable to obtain current user information"})
 		return
 	}
@@ -68,10 +72,18 @@ func (h *AnnouncementHandler) Create(c *gin.Context) {
 	}
 
 	if err := h.Service.Create(&announcement); err != nil {
+		slog.Error("Create announcement failed", "err", err.Error())
+
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 
+	// 在 c.JSON 成功返回之前
+	slog.Info("Announcement created",
+		"id", announcement.ID,
+		"author_id", announcement.AuthorID,
+		"title", announcement.Title)
+
 	c.JSON(http.StatusCreated, gin.H{
 		"message": "Created",
 		"data":    announcement,
@@ -92,6 +104,9 @@ func (h *AnnouncementHandler) Update(c *gin.Context) {
 	}
 
 	if announcement.AuthorID != val {
+		slog.Warn("Unauthorized update attempt",
+			"announcement_id", id,
+			"user_id", val)
 		c.JSON(http.StatusForbidden, gin.H{"error": "You do not have permission to modify other people's announcements."})
 		return
 	}
@@ -106,10 +121,13 @@ func (h *AnnouncementHandler) Update(c *gin.Context) {
 	announcement.Content = input.Content
 
 	if err := h.Service.Update(announcement); err != nil {
+		slog.Error("Announcement failed", "id", id, "operator_id", val, "err", err.Error())
 		c.JSON(http.StatusInternalServerError, gin.H{"error": "Update Failed"})
 		return
 	}
 
+	slog.Info("Announcement updated", "id", id, "operator_id", val)
+
 	c.JSON(http.StatusOK, announcement)
 
 }
@@ -125,16 +143,20 @@ func (h *AnnouncementHandler) Delete(c *gin.Context) {
 	}
 
 	if announcement.AuthorID != val {
+		slog.Warn("Unauthorized delete attempt", "id", id, "user_id", val)
 		c.JSON(http.StatusForbidden, gin.H{"error": "You do not have permission to modify other people's announcements."})
 		return
 	}
 
 	err = h.Service.Delete(id)
 	if err != nil {
+		slog.Error("Delete Announcement Failed", "id", id, "user_id", val, "err", err.Error())
 		c.JSON(http.StatusInternalServerError, gin.H{"error": "Cannot Delete"})
 		return
 	}
 
+	slog.Info("Announcement deleted", "id", id, "operator_id", val)
+
 	c.JSON(http.StatusOK, gin.H{"message": "deleted"})
 
 	return

handlers/auth_handler.go

@@ -1,6 +1,8 @@
 package handlers
 
 import (
+	"log/slog"
+
 	"github.com/gin-gonic/gin"
 	"pdnode.com/website/models"
 	"pdnode.com/website/services"
@@ -14,16 +16,32 @@ type AuthHandler struct {
 func (h *AuthHandler) Login(c *gin.Context) {
 	var input models.LoginRequest
 	if err := c.ShouldBindJSON(&input); err != nil {
+		slog.Debug("request bind failed",
+			"path", c.Request.URL.Path,
+			"error", err.Error(),
+			"ip", c.ClientIP(),
+		)
 		c.JSON(400, gin.H{"error": err.Error()})
 		return
 	}
 
 	user, token, err := h.Service.Login(input.Email, input.Password)
 	if err != nil {
+		slog.Warn("Login failed",
+			"email", input.Email,
+			"reason", "invalid credentials", // 明确失败原因
+			"ip", c.ClientIP(),
+		)
 		c.JSON(401, gin.H{"error": err.Error()})
 		return
 	}
 
+	slog.Info("user login success",
+		"email", user.Email,
+		"user_id", user.ID,
+		"ip", c.ClientIP(),
+	)
+
 	c.JSON(200, gin.H{"message": "success", "token": token, "user": user})
 }
 

main.go

@@ -1,11 +1,19 @@
 package main
 
 import (
+	"log"
+	"log/slog"
+	"os"
+
 	"github.com/gin-gonic/gin"
+	"github.com/joho/godotenv"
 	"gorm.io/driver/sqlite"
 	"gorm.io/gorm"
+	"pdnode.com/website/config"
+	"pdnode.com/website/middleware"
 	"pdnode.com/website/models"
 	"pdnode.com/website/routes"
+	"pdnode.com/website/utils"
 )
 
 // Setup JWT Secret Key
@@ -14,9 +22,25 @@ import (
 
 func main() {
 
+	err := godotenv.Load()
+	if err != nil {
+		log.Fatal("Error loading .env file")
+	}
+
 	// Setup DB
 	db, err := gorm.Open(sqlite.Open("data.db"), &gorm.Config{})
 
+	config.InitLogger()
+
+	if os.Getenv("ENV") == "production" {
+		gin.SetMode(gin.ReleaseMode) // 这样 [GIN-debug] 就全消失了
+	}
+
+	slog.Info("Environment Check",
+		"ENV_VAR", os.Getenv("ENV"),
+		"PORT_VAR", os.Getenv("PORT"),
+	)
+
 	if err != nil {
 		panic("failed to connect database")
 	}
@@ -26,13 +50,21 @@ func main() {
 		panic("failed to migrate database: " + err.Error())
 	}
 
+	// 4. 创建 Gin 实例 (不使用 Default 以免日志冲突)
+	r := gin.New()
 	gin.ForceConsoleColor()
-	r := routes.SetupRouter(db)
+
+	r.Use(middleware.LoggerMiddleware())
+	r.Use(gin.Recovery()) // 建议加上，防止 panic 导致程序退出
 
 	SetUpSuperuser()
 
-	err = r.Run()
-	if err != nil {
+	utils.InitAuth()
+
+	routes.SetupRouter(r, db)
+
+	// 8. 启动
+	if err := r.Run(); err != nil {
 		panic(err)
 	}
 

middleware/logger.go

@@ -0,0 +1,33 @@
+package middleware
+
+import (
+	"log/slog"
+	"time"
+
+	"github.com/gin-gonic/gin"
+)
+
+func LoggerMiddleware() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		start := time.Now()
+		path := c.Request.URL.Path
+		query := c.Request.URL.RawQuery
+
+		// 处理请求
+		c.Next()
+
+		// 执行完 Handler 后记录信息
+		end := time.Now()
+		latency := end.Sub(start)
+
+		slog.Info("HTTP Request",
+			"status", c.Writer.Status(),
+			"method", c.Request.Method,
+			"path", path,
+			"query", query,
+			"ip", c.ClientIP(),
+			"latency", latency.String(),
+			"user-agent", c.Request.UserAgent(),
+		)
+	}
+}