2026-03-27 10:19:34 +00:00
|
|
|
|
from pathlib import Path
|
|
|
|
|
|
|
|
|
|
|
|
from fastapi import Depends, FastAPI, Request
|
|
|
|
|
|
from fastapi.middleware.cors import CORSMiddleware
|
|
|
|
|
|
from fastapi.responses import HTMLResponse, JSONResponse
|
|
|
|
|
|
from fastapi.staticfiles import StaticFiles
|
|
|
|
|
|
from contextlib import asynccontextmanager
|
|
|
|
|
|
from slowapi import Limiter, _rate_limit_exceeded_handler
|
|
|
|
|
|
from slowapi.middleware import SlowAPIMiddleware
|
|
|
|
|
|
from slowapi.util import get_remote_address
|
|
|
|
|
|
from slowapi.errors import RateLimitExceeded
|
|
|
|
|
|
|
|
|
|
|
|
from app.database import init_db, async_session, engine
|
|
|
|
|
|
from app.tcp_server import tcp_manager
|
|
|
|
|
|
from app.config import settings
|
2026-04-01 07:06:37 +00:00
|
|
|
|
from app.routers import devices, locations, alarms, attendance, commands, bluetooth, beacons, fences, heartbeats, api_keys, ws, geocoding, device_groups, alert_rules, system
|
2026-03-27 10:19:34 +00:00
|
|
|
|
from app.dependencies import verify_api_key, require_write, require_admin
|
|
|
|
|
|
|
|
|
|
|
|
import asyncio
|
|
|
|
|
|
import logging
|
|
|
|
|
|
|
|
|
|
|
|
logging.basicConfig(level=logging.INFO, format='%(asctime)s - %(name)s - %(levelname)s - %(message)s')
|
|
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
|
|
|
|
|
|
# Rate limiter (shared instance via app.extensions for router access)
|
|
|
|
|
|
from app.extensions import limiter
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def run_data_cleanup():
|
|
|
|
|
|
"""Delete records older than DATA_RETENTION_DAYS."""
|
2026-03-27 13:04:11 +00:00
|
|
|
|
from datetime import timedelta
|
2026-03-27 10:19:34 +00:00
|
|
|
|
from sqlalchemy import delete
|
|
|
|
|
|
from app.models import LocationRecord, HeartbeatRecord, AlarmRecord, AttendanceRecord, BluetoothRecord
|
2026-03-27 13:04:11 +00:00
|
|
|
|
from app.config import now_cst
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
2026-03-27 13:04:11 +00:00
|
|
|
|
cutoff = now_cst() - timedelta(days=settings.DATA_RETENTION_DAYS)
|
2026-03-27 10:19:34 +00:00
|
|
|
|
total_deleted = 0
|
|
|
|
|
|
async with async_session() as session:
|
|
|
|
|
|
async with session.begin():
|
|
|
|
|
|
for model, time_col in [
|
|
|
|
|
|
(LocationRecord, LocationRecord.created_at),
|
|
|
|
|
|
(HeartbeatRecord, HeartbeatRecord.created_at),
|
|
|
|
|
|
(AlarmRecord, AlarmRecord.created_at),
|
|
|
|
|
|
(AttendanceRecord, AttendanceRecord.created_at),
|
|
|
|
|
|
(BluetoothRecord, BluetoothRecord.created_at),
|
|
|
|
|
|
]:
|
|
|
|
|
|
result = await session.execute(
|
|
|
|
|
|
delete(model).where(time_col < cutoff)
|
|
|
|
|
|
)
|
|
|
|
|
|
if result.rowcount:
|
|
|
|
|
|
total_deleted += result.rowcount
|
|
|
|
|
|
logger.info("Cleanup: deleted %d old %s records", result.rowcount, model.__tablename__)
|
|
|
|
|
|
return total_deleted
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def _data_cleanup_loop():
|
|
|
|
|
|
"""Background task that runs cleanup periodically."""
|
|
|
|
|
|
while True:
|
|
|
|
|
|
try:
|
|
|
|
|
|
await asyncio.sleep(settings.DATA_CLEANUP_INTERVAL_HOURS * 3600)
|
|
|
|
|
|
deleted = await run_data_cleanup()
|
|
|
|
|
|
if deleted:
|
|
|
|
|
|
logger.info("Data cleanup completed: %d records removed", deleted)
|
|
|
|
|
|
except asyncio.CancelledError:
|
|
|
|
|
|
break
|
|
|
|
|
|
except Exception:
|
|
|
|
|
|
logger.exception("Data cleanup error")
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@asynccontextmanager
|
|
|
|
|
|
async def lifespan(app: FastAPI):
|
|
|
|
|
|
# Startup
|
|
|
|
|
|
logger.info("Initializing database...")
|
|
|
|
|
|
await init_db()
|
|
|
|
|
|
# Reset all devices to offline on startup (stale state from previous run)
|
|
|
|
|
|
try:
|
|
|
|
|
|
from sqlalchemy import update
|
|
|
|
|
|
from app.models import Device
|
|
|
|
|
|
async with async_session() as session:
|
|
|
|
|
|
async with session.begin():
|
|
|
|
|
|
await session.execute(update(Device).values(status="offline"))
|
|
|
|
|
|
logger.info("All devices reset to offline on startup")
|
|
|
|
|
|
except Exception:
|
|
|
|
|
|
logger.exception("Failed to reset device statuses on startup")
|
|
|
|
|
|
# Create missing indexes (safe for existing databases)
|
|
|
|
|
|
try:
|
|
|
|
|
|
from sqlalchemy import text as sa_text
|
|
|
|
|
|
async with engine.begin() as conn:
|
|
|
|
|
|
for stmt in [
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_alarm_type ON alarm_records(alarm_type)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_alarm_ack ON alarm_records(acknowledged)",
|
2026-03-31 09:41:09 +00:00
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_alarm_source ON alarm_records(alarm_source)",
|
2026-03-27 10:19:34 +00:00
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_bt_beacon_mac ON bluetooth_records(beacon_mac)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_loc_type ON location_records(location_type)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_att_type ON attendance_records(attendance_type)",
|
2026-03-31 09:41:09 +00:00
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_att_source ON attendance_records(attendance_source)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_att_device_type_time ON attendance_records(device_id, attendance_type, recorded_at)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_device_status ON devices(status)",
|
|
|
|
|
|
"CREATE INDEX IF NOT EXISTS ix_fence_active ON fence_configs(is_active)",
|
2026-03-27 10:19:34 +00:00
|
|
|
|
]:
|
|
|
|
|
|
await conn.execute(sa_text(stmt))
|
|
|
|
|
|
logger.info("Database indexes verified/created")
|
|
|
|
|
|
except Exception:
|
|
|
|
|
|
logger.exception("Failed to create indexes")
|
|
|
|
|
|
|
|
|
|
|
|
logger.info("Starting TCP server on %s:%d", settings.TCP_HOST, settings.TCP_PORT)
|
|
|
|
|
|
tcp_task = asyncio.create_task(tcp_manager.start(settings.TCP_HOST, settings.TCP_PORT))
|
|
|
|
|
|
cleanup_task = asyncio.create_task(_data_cleanup_loop())
|
|
|
|
|
|
yield
|
|
|
|
|
|
# Shutdown
|
|
|
|
|
|
cleanup_task.cancel()
|
|
|
|
|
|
logger.info("Shutting down TCP server...")
|
|
|
|
|
|
await tcp_manager.stop()
|
|
|
|
|
|
tcp_task.cancel()
|
2026-03-31 09:41:09 +00:00
|
|
|
|
# Close shared HTTP session
|
|
|
|
|
|
from app.geocoding import close_http_session
|
|
|
|
|
|
await close_http_session()
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
|
|
|
|
|
app = FastAPI(
|
|
|
|
|
|
title="KKS Badge Management System / KKS工牌管理系统",
|
|
|
|
|
|
description="""
|
|
|
|
|
|
## KKS P240 & P241 蓝牙工牌管理后台 API
|
|
|
|
|
|
|
|
|
|
|
|
### 功能模块 / Features:
|
|
|
|
|
|
- **设备管理 / Device Management** - 设备注册、状态监控
|
|
|
|
|
|
- **位置数据 / Location Data** - GPS/LBS/WIFI定位数据查询与轨迹回放
|
|
|
|
|
|
- **报警管理 / Alarm Management** - SOS、围栏、低电等报警处理
|
|
|
|
|
|
- **考勤管理 / Attendance** - 打卡记录查询与统计
|
|
|
|
|
|
- **指令管理 / Commands** - 远程指令下发与留言
|
|
|
|
|
|
- **蓝牙数据 / Bluetooth** - 蓝牙打卡与定位数据
|
|
|
|
|
|
- **信标管理 / Beacons** - 蓝牙信标注册与位置配置
|
|
|
|
|
|
- **心跳数据 / Heartbeats** - 设备心跳记录查询
|
|
|
|
|
|
|
|
|
|
|
|
### 认证 / Authentication:
|
|
|
|
|
|
设置 `API_KEY` 环境变量后,所有 `/api/` 请求需携带 `X-API-Key` 请求头。
|
|
|
|
|
|
|
|
|
|
|
|
### 通讯协议 / Protocol:
|
|
|
|
|
|
- TCP端口: {tcp_port} (设备连接)
|
|
|
|
|
|
- 支持协议: KKS P240/P241 通讯协议
|
|
|
|
|
|
""".format(tcp_port=settings.TCP_PORT),
|
|
|
|
|
|
version="1.0.0",
|
|
|
|
|
|
docs_url="/docs",
|
|
|
|
|
|
redoc_url="/redoc",
|
|
|
|
|
|
lifespan=lifespan,
|
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
# Rate limiter — SlowAPIMiddleware applies default_limits to all routes
|
|
|
|
|
|
app.state.limiter = limiter
|
|
|
|
|
|
app.add_middleware(SlowAPIMiddleware)
|
|
|
|
|
|
app.add_exception_handler(RateLimitExceeded, _rate_limit_exceeded_handler)
|
|
|
|
|
|
|
|
|
|
|
|
# CORS
|
|
|
|
|
|
_origins = [o.strip() for o in settings.CORS_ORIGINS.split(",") if o.strip()]
|
|
|
|
|
|
app.add_middleware(
|
|
|
|
|
|
CORSMiddleware,
|
|
|
|
|
|
allow_origins=_origins,
|
|
|
|
|
|
allow_credentials="*" not in _origins,
|
|
|
|
|
|
allow_methods=["*"],
|
|
|
|
|
|
allow_headers=["*"],
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2026-04-01 07:06:37 +00:00
|
|
|
|
# Audit logging middleware (records POST/PUT/DELETE to audit_logs table)
|
|
|
|
|
|
from app.middleware import AuditMiddleware
|
|
|
|
|
|
app.add_middleware(AuditMiddleware)
|
|
|
|
|
|
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
|
|
|
|
|
# Global exception handler — prevent stack trace leaks
|
|
|
|
|
|
@app.exception_handler(Exception)
|
|
|
|
|
|
async def global_exception_handler(request: Request, exc: Exception):
|
|
|
|
|
|
from fastapi.exceptions import RequestValidationError
|
|
|
|
|
|
from starlette.exceptions import HTTPException as StarletteHTTPException
|
|
|
|
|
|
# Let FastAPI handle its own exceptions
|
|
|
|
|
|
if isinstance(exc, (StarletteHTTPException, RequestValidationError)):
|
|
|
|
|
|
raise exc
|
|
|
|
|
|
logger.exception("Unhandled exception on %s %s", request.method, request.url.path)
|
|
|
|
|
|
return JSONResponse(
|
|
|
|
|
|
status_code=500,
|
|
|
|
|
|
content={"code": 500, "message": "Internal server error", "data": None},
|
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# Include API routers (all under /api/ prefix, protected by API key if configured)
|
|
|
|
|
|
_api_deps = [verify_api_key] if settings.API_KEY else []
|
|
|
|
|
|
|
|
|
|
|
|
app.include_router(devices.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(locations.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(alarms.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(attendance.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(commands.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(bluetooth.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(beacons.router, dependencies=[*_api_deps])
|
2026-03-27 13:04:11 +00:00
|
|
|
|
app.include_router(fences.router, dependencies=[*_api_deps])
|
2026-03-27 10:19:34 +00:00
|
|
|
|
app.include_router(heartbeats.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(api_keys.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(ws.router) # WebSocket handles auth internally
|
|
|
|
|
|
app.include_router(geocoding.router, dependencies=[*_api_deps])
|
2026-04-01 07:06:37 +00:00
|
|
|
|
app.include_router(device_groups.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(alert_rules.router, dependencies=[*_api_deps])
|
|
|
|
|
|
app.include_router(system.router, dependencies=[*_api_deps])
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
|
|
|
|
|
_STATIC_DIR = Path(__file__).parent / "static"
|
|
|
|
|
|
app.mount("/static", StaticFiles(directory=str(_STATIC_DIR)), name="static")
|
|
|
|
|
|
|
2026-03-31 09:41:09 +00:00
|
|
|
|
# Cache admin.html in memory at startup (avoid disk read per request)
|
|
|
|
|
|
_admin_html_cache: str = (_STATIC_DIR / "admin.html").read_text(encoding="utf-8")
|
|
|
|
|
|
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
|
|
|
|
|
@app.get("/admin", response_class=HTMLResponse, tags=["Admin"])
|
|
|
|
|
|
async def admin_page():
|
|
|
|
|
|
"""管理后台页面 / Admin Dashboard"""
|
2026-03-31 09:41:09 +00:00
|
|
|
|
return HTMLResponse(content=_admin_html_cache)
|
2026-03-27 10:19:34 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.get("/", tags=["Root"])
|
|
|
|
|
|
async def root():
|
|
|
|
|
|
return {
|
|
|
|
|
|
"name": settings.APP_NAME,
|
|
|
|
|
|
"version": "1.0.0",
|
|
|
|
|
|
"docs": "/docs",
|
|
|
|
|
|
"redoc": "/redoc",
|
|
|
|
|
|
"admin": "/admin",
|
|
|
|
|
|
"tcp_port": settings.TCP_PORT,
|
|
|
|
|
|
"auth_enabled": settings.API_KEY is not None,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@app.get("/health", tags=["Root"])
|
|
|
|
|
|
async def health():
|
|
|
|
|
|
"""Health check with database connectivity test."""
|
|
|
|
|
|
db_ok = False
|
|
|
|
|
|
try:
|
|
|
|
|
|
from sqlalchemy import text
|
|
|
|
|
|
async with engine.connect() as conn:
|
|
|
|
|
|
await conn.execute(text("SELECT 1"))
|
|
|
|
|
|
db_ok = True
|
|
|
|
|
|
except Exception:
|
|
|
|
|
|
logger.warning("Health check: database unreachable")
|
|
|
|
|
|
|
|
|
|
|
|
from app.websocket_manager import ws_manager
|
|
|
|
|
|
status = "healthy" if db_ok else "degraded"
|
|
|
|
|
|
return {
|
|
|
|
|
|
"status": status,
|
|
|
|
|
|
"database": "ok" if db_ok else "error",
|
|
|
|
|
|
"connected_devices": len(tcp_manager.connections),
|
|
|
|
|
|
"websocket_connections": ws_manager.connection_count,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
2026-03-31 10:11:33 +00:00
|
|
|
|
@app.get("/api/system/overview", tags=["System / 系统管理"])
|
|
|
|
|
|
async def system_overview():
|
|
|
|
|
|
"""
|
|
|
|
|
|
系统总览:设备/在线率/今日告警/今日考勤/各表记录数/运行状态。
|
|
|
|
|
|
System overview: devices, online rate, today stats, table sizes, uptime.
|
|
|
|
|
|
"""
|
|
|
|
|
|
from sqlalchemy import func, select, text
|
|
|
|
|
|
from app.models import (
|
|
|
|
|
|
Device, LocationRecord, AlarmRecord, AttendanceRecord,
|
|
|
|
|
|
BluetoothRecord, HeartbeatRecord, CommandLog, BeaconConfig, FenceConfig,
|
|
|
|
|
|
)
|
|
|
|
|
|
from app.config import now_cst
|
|
|
|
|
|
from app.websocket_manager import ws_manager
|
|
|
|
|
|
|
|
|
|
|
|
now = now_cst()
|
|
|
|
|
|
today_start = now.replace(hour=0, minute=0, second=0, microsecond=0)
|
|
|
|
|
|
|
|
|
|
|
|
async with async_session() as db:
|
|
|
|
|
|
# Device stats
|
|
|
|
|
|
total_devices = (await db.execute(select(func.count(Device.id)))).scalar() or 0
|
|
|
|
|
|
online_devices = (await db.execute(
|
|
|
|
|
|
select(func.count(Device.id)).where(Device.status == "online")
|
|
|
|
|
|
)).scalar() or 0
|
|
|
|
|
|
|
|
|
|
|
|
# Today counts
|
|
|
|
|
|
today_alarms = (await db.execute(
|
|
|
|
|
|
select(func.count(AlarmRecord.id)).where(AlarmRecord.recorded_at >= today_start)
|
|
|
|
|
|
)).scalar() or 0
|
|
|
|
|
|
today_unack = (await db.execute(
|
|
|
|
|
|
select(func.count(AlarmRecord.id)).where(
|
|
|
|
|
|
AlarmRecord.recorded_at >= today_start,
|
|
|
|
|
|
AlarmRecord.acknowledged == False, # noqa: E712
|
|
|
|
|
|
)
|
|
|
|
|
|
)).scalar() or 0
|
|
|
|
|
|
today_attendance = (await db.execute(
|
|
|
|
|
|
select(func.count(AttendanceRecord.id)).where(AttendanceRecord.recorded_at >= today_start)
|
|
|
|
|
|
)).scalar() or 0
|
|
|
|
|
|
today_locations = (await db.execute(
|
|
|
|
|
|
select(func.count(LocationRecord.id)).where(LocationRecord.recorded_at >= today_start)
|
|
|
|
|
|
)).scalar() or 0
|
|
|
|
|
|
|
|
|
|
|
|
# Table sizes
|
|
|
|
|
|
table_sizes = {}
|
|
|
|
|
|
for name, model in [
|
|
|
|
|
|
("devices", Device), ("locations", LocationRecord),
|
|
|
|
|
|
("alarms", AlarmRecord), ("attendance", AttendanceRecord),
|
|
|
|
|
|
("bluetooth", BluetoothRecord), ("heartbeats", HeartbeatRecord),
|
|
|
|
|
|
("commands", CommandLog), ("beacons", BeaconConfig), ("fences", FenceConfig),
|
|
|
|
|
|
]:
|
|
|
|
|
|
cnt = (await db.execute(select(func.count(model.id)))).scalar() or 0
|
|
|
|
|
|
table_sizes[name] = cnt
|
|
|
|
|
|
|
|
|
|
|
|
# DB file size
|
|
|
|
|
|
db_size_mb = None
|
|
|
|
|
|
try:
|
|
|
|
|
|
import os
|
|
|
|
|
|
db_path = settings.DATABASE_URL.replace("sqlite+aiosqlite:///", "")
|
|
|
|
|
|
if os.path.exists(db_path):
|
|
|
|
|
|
db_size_mb = round(os.path.getsize(db_path) / 1024 / 1024, 2)
|
|
|
|
|
|
except Exception:
|
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
return {
|
|
|
|
|
|
"code": 0,
|
|
|
|
|
|
"data": {
|
|
|
|
|
|
"devices": {
|
|
|
|
|
|
"total": total_devices,
|
|
|
|
|
|
"online": online_devices,
|
|
|
|
|
|
"offline": total_devices - online_devices,
|
|
|
|
|
|
"online_rate": round(online_devices / total_devices * 100, 1) if total_devices else 0,
|
|
|
|
|
|
},
|
|
|
|
|
|
"today": {
|
|
|
|
|
|
"alarms": today_alarms,
|
|
|
|
|
|
"unacknowledged_alarms": today_unack,
|
|
|
|
|
|
"attendance": today_attendance,
|
|
|
|
|
|
"locations": today_locations,
|
|
|
|
|
|
},
|
|
|
|
|
|
"table_sizes": table_sizes,
|
|
|
|
|
|
"connections": {
|
|
|
|
|
|
"tcp_devices": len(tcp_manager.connections),
|
|
|
|
|
|
"websocket_clients": ws_manager.connection_count,
|
|
|
|
|
|
},
|
|
|
|
|
|
"database_size_mb": db_size_mb,
|
|
|
|
|
|
},
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
2026-03-27 10:19:34 +00:00
|
|
|
|
@app.post("/api/system/cleanup", tags=["System / 系统管理"], dependencies=[Depends(require_admin)] if settings.API_KEY else [])
|
|
|
|
|
|
async def manual_cleanup():
|
|
|
|
|
|
"""手动触发数据清理 / Manually trigger data cleanup (admin only)."""
|
|
|
|
|
|
try:
|
|
|
|
|
|
deleted = await run_data_cleanup()
|
|
|
|
|
|
return {"code": 0, "message": f"Cleanup completed: {deleted} records removed", "data": {"deleted": deleted}}
|
|
|
|
|
|
except Exception as e:
|
|
|
|
|
|
logger.exception("Manual cleanup failed")
|
|
|
|
|
|
return {"code": 500, "message": f"Cleanup failed: {str(e)}", "data": None}
|
