Files
CFDivePlatform/app/Http/Controllers/API/AdminUserController.php
T
a620906209 43720482c4
Run Tests / test (pull_request) Successful in 2m3s
feat(verification): 教練審核流程完整版——狀態機/證照送審/Admin 裁決/通知
實作 openspec change provider-verification-workflow(25/25 tasks):
- is_verified 升級為 verification_status 四狀態機(unsubmitted/pending/
  approved/rejected),migration 自動轉換既有資料,API 以 accessor 保留
  is_verified 相容輸出
- 教練端:證照上傳(≤3 張、複用 CompressesImages)、送審、駁回原因
  顯示與重送(/coach/verification 新頁面)
- Admin 端:審核佇列、通過/駁回(原因必填)、撤銷 approved;移除
  toggle-verified 端點(防繞過狀態機);裁決後 flush 課程快取
- 通知:審核通過/駁回(站內+Email,駁回含原因)
- 可見性與預約入口改判 approved(行為等價)
- 測試 +18(ProviderVerificationTest 10、AdminVerificationTest 8),
  既有 4 個測試檔 helper 遷移;Swagger 同步
- 規格同步:provider-verification 全面改寫、admin-user-management
  toggle 段落改為移除聲明

容器內全套件 173 passed / 439 assertions。

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
2026-06-12 00:26:12 +08:00

136 lines
4.1 KiB
PHP

<?php
namespace App\Http\Controllers\API;
use App\Http\Controllers\Controller;
use App\Models\User;
use Illuminate\Http\Request;
class AdminUserController extends Controller
{
private function checkAdmin()
{
if (auth()->user()->role !== 'admin') {
return response()->json(['status' => false, 'message' => '無權限存取'], 403);
}
return null;
}
private function findUser(int $id, string $role)
{
return User::where('id', $id)->where('role', $role)->first();
}
public function members(Request $request)
{
if ($err = $this->checkAdmin()) return $err;
$query = User::where('role', 'member')->with('memberProfile');
if ($q = $request->query('q')) {
$query->where(function ($sub) use ($q) {
$sub->where('name', 'like', "%{$q}%")
->orWhere('email', 'like', "%{$q}%");
});
}
$paginated = $query->latest()->paginate(15);
return response()->json([
'status' => true,
'data' => $paginated->items(),
'meta' => [
'total' => $paginated->total(),
'per_page' => $paginated->perPage(),
'current_page' => $paginated->currentPage(),
'last_page' => $paginated->lastPage(),
],
]);
}
public function member(int $id)
{
if ($err = $this->checkAdmin()) return $err;
$user = $this->findUser($id, 'member');
if (!$user) {
return response()->json(['status' => false, 'message' => '用戶不存在'], 404);
}
return response()->json(['status' => true, 'data' => $user->load('memberProfile')]);
}
public function toggleMemberActive(int $id)
{
if ($err = $this->checkAdmin()) return $err;
$user = $this->findUser($id, 'member');
if (!$user) {
return response()->json(['status' => false, 'message' => '用戶不存在'], 404);
}
$user->is_active = !$user->is_active;
$user->save();
$msg = $user->is_active ? '帳號已啟用' : '帳號已停用';
return response()->json(['status' => true, 'message' => $msg, 'data' => ['is_active' => $user->is_active]]);
}
public function providers(Request $request)
{
if ($err = $this->checkAdmin()) return $err;
$query = User::where('role', 'provider')->with('providerProfile');
if ($q = $request->query('q')) {
$query->where(function ($sub) use ($q) {
$sub->where('name', 'like', "%{$q}%")
->orWhere('email', 'like', "%{$q}%");
});
}
$paginated = $query->latest()->paginate(15);
return response()->json([
'status' => true,
'data' => $paginated->items(),
'meta' => [
'total' => $paginated->total(),
'per_page' => $paginated->perPage(),
'current_page' => $paginated->currentPage(),
'last_page' => $paginated->lastPage(),
],
]);
}
public function provider(int $id)
{
if ($err = $this->checkAdmin()) return $err;
$user = $this->findUser($id, 'provider');
if (!$user) {
return response()->json(['status' => false, 'message' => '用戶不存在'], 404);
}
return response()->json(['status' => true, 'data' => $user->load('providerProfile')]);
}
public function toggleProviderActive(int $id)
{
if ($err = $this->checkAdmin()) return $err;
$user = $this->findUser($id, 'provider');
if (!$user) {
return response()->json(['status' => false, 'message' => '用戶不存在'], 404);
}
$user->is_active = !$user->is_active;
$user->save();
$msg = $user->is_active ? '帳號已啟用' : '帳號已停用';
return response()->json(['status' => true, 'message' => $msg, 'data' => ['is_active' => $user->is_active]]);
}
// toggleProviderVerified 已移除:驗證狀態變更一律走 AdminVerificationController 的審核狀態機
}