feat: 城市手册后端完成 - 用户/区域/内容/服务/审核系统

city-manual/backend/users/admin.py

@@ -0,0 +1,17 @@
+from django.contrib import admin
+from django.contrib.auth.admin import UserAdmin as BaseUserAdmin
+from .models import User
+
+
+@admin.register(User)
+class UserAdmin(BaseUserAdmin):
+    list_display = ['username', 'email', 'role', 'is_verified', 'created_at']
+    list_filter = ['role', 'is_verified', 'is_staff']
+    search_fields = ['username', 'email']
+    ordering = ['-created_at']
+    
+    fieldsets = BaseUserAdmin.fieldsets + (
+        ('额外信息', {
+            'fields': ('role', 'phone', 'avatar', 'bio', 'is_verified')
+        }),
+    )

city-manual/backend/users/apps.py

@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class UsersConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'users'

city-manual/backend/users/migrations/0001_initial.py

@@ -0,0 +1,50 @@
+# Generated by Django 4.2.11 on 2026-04-10 12:05
+
+import django.contrib.auth.models
+import django.contrib.auth.validators
+from django.db import migrations, models
+import django.utils.timezone
+
+
+class Migration(migrations.Migration):
+
+    initial = True
+
+    dependencies = [
+        ('auth', '0012_alter_user_first_name_max_length'),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name='User',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('password', models.CharField(max_length=128, verbose_name='password')),
+                ('last_login', models.DateTimeField(blank=True, null=True, verbose_name='last login')),
+                ('is_superuser', models.BooleanField(default=False, help_text='Designates that this user has all permissions without explicitly assigning them.', verbose_name='superuser status')),
+                ('username', models.CharField(error_messages={'unique': 'A user with that username already exists.'}, help_text='Required. 150 characters or fewer. Letters, digits and @/./+/-/_ only.', max_length=150, unique=True, validators=[django.contrib.auth.validators.UnicodeUsernameValidator()], verbose_name='username')),
+                ('first_name', models.CharField(blank=True, max_length=150, verbose_name='first name')),
+                ('last_name', models.CharField(blank=True, max_length=150, verbose_name='last name')),
+                ('is_staff', models.BooleanField(default=False, help_text='Designates whether the user can log into this admin site.', verbose_name='staff status')),
+                ('is_active', models.BooleanField(default=True, help_text='Designates whether this user should be treated as active. Unselect this instead of deleting accounts.', verbose_name='active')),
+                ('date_joined', models.DateTimeField(default=django.utils.timezone.now, verbose_name='date joined')),
+                ('email', models.EmailField(blank=True, max_length=254, verbose_name='邮箱')),
+                ('phone', models.CharField(blank=True, max_length=20, verbose_name='手机号')),
+                ('avatar', models.ImageField(blank=True, null=True, upload_to='avatars/', verbose_name='头像')),
+                ('role', models.CharField(choices=[('user', '普通用户'), ('moderator', '版主'), ('admin', '管理员')], default='user', max_length=20, verbose_name='角色')),
+                ('bio', models.TextField(blank=True, verbose_name='个人简介')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='创建时间')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='更新时间')),
+                ('is_verified', models.BooleanField(default=False, verbose_name='是否已验证')),
+                ('groups', models.ManyToManyField(blank=True, help_text='The groups this user belongs to. A user will get all permissions granted to each of their groups.', related_name='user_set', related_query_name='user', to='auth.group', verbose_name='groups')),
+                ('user_permissions', models.ManyToManyField(blank=True, help_text='Specific permissions for this user.', related_name='user_set', related_query_name='user', to='auth.permission', verbose_name='user permissions')),
+            ],
+            options={
+                'verbose_name': '用户',
+                'verbose_name_plural': '用户',
+            },
+            managers=[
+                ('objects', django.contrib.auth.models.UserManager()),
+            ],
+        ),
+    ]

city-manual/backend/users/models.py

@@ -0,0 +1,40 @@
+from django.contrib.auth.models import AbstractUser
+from django.db import models
+
+
+class User(AbstractUser):
+    """用户表 - 扩展 Django 内置用户模型"""
+    
+    ROLE_CHOICES = [
+        ('user', '普通用户'),
+        ('moderator', '版主'),
+        ('admin', '管理员'),
+    ]
+    
+    email = models.EmailField('邮箱', blank=True)
+    phone = models.CharField('手机号', max_length=20, blank=True)
+    avatar = models.ImageField('头像', upload_to='avatars/', blank=True, null=True)
+    role = models.CharField('角色', max_length=20, choices=ROLE_CHOICES, default='user')
+    bio = models.TextField('个人简介', blank=True)
+    created_at = models.DateTimeField('创建时间', auto_now_add=True)
+    updated_at = models.DateTimeField('更新时间', auto_now=True)
+    is_verified = models.BooleanField('是否已验证', default=False)
+    
+    class Meta:
+        verbose_name = '用户'
+        verbose_name_plural = '用户'
+    
+    def __str__(self):
+        return self.username
+    
+    def is_moderator(self):
+        """是否是版主"""
+        return self.role == 'moderator' or self.moderator_permissions.filter(status='active').exists()
+    
+    def is_admin(self):
+        """是否是管理员"""
+        return self.role == 'admin' or self.is_superuser
+    
+    def get_moderator_regions(self):
+        """获取管辖的区域列表"""
+        return [perm.region for perm in self.moderator_permissions.filter(status='active')]

city-manual/backend/users/serializers.py

@@ -0,0 +1,30 @@
+from rest_framework import serializers
+from django.contrib.auth import get_user_model
+from .models import User
+
+
+class UserSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = User
+        fields = [
+            'id', 'username', 'email', 'role', 'avatar', 'bio',
+            'is_verified', 'created_at'
+        ]
+        read_only_fields = ['is_verified', 'created_at']
+
+
+class UserRegistrationSerializer(serializers.ModelSerializer):
+    password = serializers.CharField(write_only=True, min_length=6)
+    
+    class Meta:
+        model = User
+        fields = ['username', 'email', 'password', 'phone']
+    
+    def create(self, validated_data):
+        user = User.objects.create_user(
+            username=validated_data['username'],
+            email=validated_data.get('email', ''),
+            password=validated_data['password'],
+            phone=validated_data.get('phone', '')
+        )
+        return user

city-manual/backend/users/tests.py

@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.

city-manual/backend/users/views.py

@@ -0,0 +1,42 @@
+from rest_framework import viewsets, permissions, status
+from rest_framework.response import Response
+from rest_framework.views import APIView
+from rest_framework.decorators import action
+from django.contrib.auth import get_user_model
+from .models import User
+from .serializers import UserSerializer, UserRegistrationSerializer
+
+User = get_user_model()
+
+
+class UserViewSet(viewsets.ModelViewSet):
+    queryset = User.objects.all()
+    serializer_class = UserSerializer
+    permission_classes = [permissions.AllowAny]
+    
+    def get_queryset(self):
+        if self.action == 'retrieve':
+            return User.objects.all()
+        return User.objects.none()
+    
+    @action(detail=False, methods=['get'])
+    def me(self, request):
+        if request.user.is_authenticated:
+            serializer = self.get_serializer(request.user)
+            return Response(serializer.data)
+        return Response({'detail': 'Not authenticated'}, status=status.HTTP_401_UNAUTHORIZED)
+
+
+class UserRegistrationView(APIView):
+    permission_classes = [permissions.AllowAny]
+    
+    def post(self, request):
+        serializer = UserRegistrationSerializer(data=request.data)
+        if serializer.is_valid():
+            user = serializer.save()
+            return Response({
+                'id': user.id,
+                'username': user.username,
+                'message': '用户创建成功'
+            }, status=status.HTTP_201_CREATED)
+        return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)