Mr.Xia
c01338f496
Phase 1 - Plugin code review (14/14 plugins): - Security: 3x token leak in print→logger.debug, Bearer prefix handling - Bug: bare except→specific exceptions, HorseState type safety, sync→async - Critical: response_model undefined, route dead code, sync blocking event loop - Quality: 11x print()→logger, variable name shadowing, consistent logging Phase 2 - Deep analysis: - Fix: payout int truncation→max(1, round(amount*odds)) - Fix: room_store get_lock race condition→dict.setdefault() - Verify: data_manager f-string SQL is safe (uses ? placeholders) Infrastructure: review reports generated for all plugins.
105 lines
3.4 KiB
Python
105 lines
3.4 KiB
Python
import sqlite3
|
|
import os
|
|
from datetime import datetime
|
|
from typing import Optional, List, Dict, Any
|
|
from .config import Config
|
|
|
|
|
|
class PointsDatabase:
|
|
"""SQLite database handler for points system."""
|
|
|
|
def __init__(self, config: Config):
|
|
self.config = config
|
|
self.db_path = config.POINTS_DB_FILE
|
|
self._ensure_db_dir()
|
|
self._init_db()
|
|
|
|
def _ensure_db_dir(self):
|
|
"""Create database directory if it doesn't exist."""
|
|
db_dir = os.path.dirname(self.db_path)
|
|
if db_dir:
|
|
os.makedirs(db_dir, exist_ok=True)
|
|
|
|
def _init_db(self):
|
|
"""Initialize database tables."""
|
|
conn = sqlite3.connect(self.db_path, timeout=5.0)
|
|
cursor = conn.cursor()
|
|
|
|
# Create user_points table
|
|
cursor.execute(
|
|
"""
|
|
CREATE TABLE IF NOT EXISTS user_points (
|
|
user_id TEXT PRIMARY KEY,
|
|
points INTEGER NOT NULL DEFAULT 0 CHECK(points >= 0),
|
|
total_earned INTEGER NOT NULL DEFAULT 0,
|
|
total_spent INTEGER NOT NULL DEFAULT 0,
|
|
created_at TEXT NOT NULL,
|
|
updated_at TEXT NOT NULL
|
|
)
|
|
"""
|
|
)
|
|
|
|
# Create point_transactions table
|
|
cursor.execute(
|
|
"""
|
|
CREATE TABLE IF NOT EXISTS point_transactions (
|
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
user_id TEXT NOT NULL,
|
|
amount INTEGER NOT NULL,
|
|
balance_after INTEGER NOT NULL,
|
|
source TEXT NOT NULL,
|
|
reason TEXT,
|
|
created_at TEXT NOT NULL
|
|
)
|
|
"""
|
|
)
|
|
|
|
# Create indexes
|
|
cursor.execute(
|
|
"CREATE INDEX IF NOT EXISTS idx_transactions_user_id ON point_transactions(user_id)"
|
|
)
|
|
cursor.execute(
|
|
"CREATE INDEX IF NOT EXISTS idx_transactions_source ON point_transactions(source)"
|
|
)
|
|
cursor.execute(
|
|
"CREATE INDEX IF NOT EXISTS idx_transactions_created_at ON point_transactions(created_at)"
|
|
)
|
|
|
|
conn.commit()
|
|
conn.close()
|
|
|
|
def get_connection(self) -> sqlite3.Connection:
|
|
"""Get a database connection."""
|
|
conn = sqlite3.connect(self.db_path, timeout=5.0)
|
|
conn.row_factory = sqlite3.Row
|
|
return conn
|
|
|
|
def get_user_balance(self, user_id: str) -> int:
|
|
"""Get user's current points balance."""
|
|
conn = self.get_connection()
|
|
cursor = conn.cursor()
|
|
cursor.execute("SELECT points FROM user_points WHERE user_id = ?", (user_id,))
|
|
row = cursor.fetchone()
|
|
conn.close()
|
|
return row["points"] if row else 0
|
|
|
|
def ensure_user_exists(self, user_id: str, conn=None) -> None:
|
|
"""Create user account if it doesn't exist. Reuses provided conn if given."""
|
|
should_close = False
|
|
if conn is None:
|
|
conn = self.get_connection()
|
|
should_close = True
|
|
cursor = conn.cursor()
|
|
now = datetime.now().isoformat()
|
|
cursor.execute(
|
|
"""
|
|
INSERT OR IGNORE INTO user_points
|
|
(user_id, points, total_earned, total_spent, created_at, updated_at)
|
|
VALUES (?, 0, 0, 0, ?, ?)
|
|
""",
|
|
(user_id, now, now),
|
|
)
|
|
if should_close:
|
|
conn.commit()
|
|
conn.close()
|