!114 feat：rdp优化，mssql迁移优化，term支持trzsz

* fix: 合并代码 * refactor: rdp优化，mssql迁移优化，term支持trzsz
2025-11-03 16:00:25 +08:00 · 2024-04-12 07:53:42 +00:00
parent abc015aec0
commit 8998a21626
20 changed files with 551 additions and 360 deletions
--- a/server/internal/db/api/db_transfer.go
+++ b/server/internal/db/api/db_transfer.go
@@ -43,7 +43,10 @@ func (d *DbTransferTask) DeleteTask(rc *req.Ctx) {
 }

 func (d *DbTransferTask) Run(rc *req.Ctx) {
-	go d.DbTransferTask.Run(rc.MetaCtx, uint64(rc.PathParamInt("taskId")))
+	taskId := uint64(rc.PathParamInt("taskId"))
+	logId, _ := d.DbTransferTask.CreateLog(rc.MetaCtx, taskId)
+	go d.DbTransferTask.Run(rc.MetaCtx, taskId, logId)
+	rc.ResData = logId
 }

 func (d *DbTransferTask) Stop(rc *req.Ctx) {
--- a/server/internal/db/application/db_transfer.go
+++ b/server/internal/db/application/db_transfer.go
@@ -34,7 +34,9 @@ type DbTransferTask interface {

 	InitJob()

-	Run(ctx context.Context, taskId uint64)
+	CreateLog(ctx context.Context, taskId uint64) (uint64, error)
+
+	Run(ctx context.Context, taskId uint64, logId uint64)

 	Stop(ctx context.Context, taskId uint64) error
 }
@@ -81,19 +83,24 @@ func (app *dbTransferAppImpl) InitJob() {
 	_ = gormx.Updates(taskParam, taskParam, updateMap)
 }

-func (app *dbTransferAppImpl) Run(ctx context.Context, taskId uint64) {
+func (app *dbTransferAppImpl) CreateLog(ctx context.Context, taskId uint64) (uint64, error) {
+	logId, err := app.logApp.CreateLog(ctx, &sysapp.CreateLogReq{
+		Description: "DBMS-执行数据迁移",
+		ReqParam:    collx.Kvs("taskId", taskId),
+		Type:        sysentity.SyslogTypeRunning,
+		Resp:        "开始执行数据迁移...",
+	})
+	return logId, err
+}
+
+func (app *dbTransferAppImpl) Run(ctx context.Context, taskId uint64, logId uint64) {
 	task, err := app.GetById(new(entity.DbTransferTask), taskId)
 	if err != nil {
 		return
 	}

 	start := time.Now()
-	logId, err := app.logApp.CreateLog(ctx, &sysapp.CreateLogReq{
-		Description: "DBMS-执行数据迁移",
-		ReqParam:    collx.Kvs("taskId", task.Id),
-		Type:        sysentity.SyslogTypeRunning,
-		Resp:        "开始执行数据迁移...",
-	})
+
 	if err != nil {
 		logx.Errorf("创建DBMS-执行数据迁移日志失败：%v", err)
 		return
--- a/server/internal/db/dbm/dbi/metasql/dm_meta.sql
+++ b/server/internal/db/dbm/dbi/metasql/dm_meta.sql
@@ -65,7 +65,7 @@ select a.owner,
       case when t.INFO2 & 0x01 = 0x01 then 1 else 0 end                                   as IS_IDENTITY,
       case when t2.constraint_type = 'P' then 1 else 0 end                                as IS_PRIMARY_KEY
 from all_tab_columns a
-         left join user_col_comments b
+         left join all_col_comments b
                   on b.owner = (SELECT SF_GET_SCHEMA_NAME_BY_ID(CURRENT_SCHID))
                       and b.table_name = a.table_name
                       and a.column_name = b.column_name
@@ -74,8 +74,8 @@ from all_tab_columns a
                             join SYS.all_objects c2 on c1.id = c2.object_id and c2.object_type = 'TABLE') t
                   on t.object_name = a.table_name and t.owner = a.owner and t.NAME = a.column_name
         left join (select uc.OWNER, uic.column_name, uic.table_name, uc.constraint_type
-                    from user_ind_columns uic
-                             left join user_constraints uc on uic.index_name = uc.index_name) t2
+                    from all_ind_columns uic
+                             left join all_constraints uc on uic.index_name = uc.index_name) t2
                   on t2.table_name = t.object_name and a.column_name = t2.column_name and t2.OWNER = a.owner
 where a.owner = (SELECT SF_GET_SCHEMA_NAME_BY_ID(CURRENT_SCHID))
  and a.table_name in (%s)
--- a/server/internal/db/dbm/mssql/helper.go
+++ b/server/internal/db/dbm/mssql/helper.go
@@ -2,6 +2,7 @@ package mssql

 import (
 	"fmt"
+	"io"
 	"mayfly-go/internal/db/dbm/dbi"
 	"mayfly-go/pkg/utils/anyx"
 	"mayfly-go/pkg/utils/collx"
@@ -194,6 +195,19 @@ func (ch *ColumnHelper) ToColumn(commonColumn *dbi.Column) {
 	} else {
 		commonColumn.DataType = dbi.ColumnDataType(ctype)
 		ch.FixColumn(commonColumn)
+		// 修复数据库迁移字段长度
+		dataType := string(commonColumn.DataType)
+		if collx.ArrayAnyMatches([]string{"nvarchar", "nchar"}, dataType) {
+			commonColumn.CharMaxLength = commonColumn.CharMaxLength * 2
+		}
+
+		if collx.ArrayAnyMatches([]string{"char"}, dataType) {
+			// char最大长度4000
+			if commonColumn.CharMaxLength >= 4000 {
+				commonColumn.DataType = "ntext"
+				commonColumn.CharMaxLength = 0
+			}
+		}
 	}
 }

@@ -214,12 +228,29 @@ func (ch *ColumnHelper) FixColumn(column *dbi.Column) {
 		// 如果是nvarchar，可视长度减半
 		column.CharMaxLength = column.CharMaxLength / 2
 	}
+
+	if collx.ArrayAnyMatches([]string{"char"}, dataType) {
+		// char最大长度4000
+		if column.CharMaxLength >= 4000 {
+			column.DataType = "ntext"
+			column.CharMaxLength = 0
+		}
+	}
+
 }

 type DumpHelper struct {
 	dbi.DefaultDumpHelper
 }

+// mssql 在insert语句前后不能识别begin和commit语句
+func (dh *DumpHelper) BeforeInsert(writer io.Writer, tableName string) {
+}
+
+// mssql 在insert语句前后不能识别begin和commit语句
+func (dh *DumpHelper) AfterInsert(writer io.Writer, tableName string, columns []dbi.Column) {
+}
+
 func (dh *DumpHelper) BeforeInsertSql(quoteSchema string, tableName string) string {
 	return fmt.Sprintf("set identity_insert %s.%s on ", quoteSchema, tableName)
 }
--- a/server/internal/db/dbm/mssql/metadata.go
+++ b/server/internal/db/dbm/mssql/metadata.go
@@ -248,7 +248,7 @@ func (md *MssqlMetaData) GenerateIndexDDL(indexs []dbi.Index, tableInfo dbi.Tabl
 			colNames[i] = meta.QuoteIdentifier(name)
 		}

-		sqls = append(sqls, fmt.Sprintf("create %s NONCLUSTERED index %s on %s.%s(%s)", unique, index.IndexName, md.dc.Info.CurrentSchema(), tbName, strings.Join(colNames, ",")))
+		sqls = append(sqls, fmt.Sprintf("create %s NONCLUSTERED index %s on %s.%s(%s)", unique, index.IndexName, meta.QuoteIdentifier(md.dc.Info.CurrentSchema()), meta.QuoteIdentifier(tbName), strings.Join(colNames, ",")))
 		if index.IndexComment != "" {
 			comment := meta.QuoteEscape(index.IndexComment)
 			comments = append(comments, fmt.Sprintf("EXECUTE sp_addextendedproperty N'MS_Description', N'%s', N'SCHEMA', N'%s', N'TABLE', N'%s', N'INDEX', N'%s'", comment, md.dc.Info.CurrentSchema(), tbName, index.IndexName))
@@ -304,17 +304,18 @@ func (md *MssqlMetaData) genColumnBasicSql(column dbi.Column) string {
 // 获取建表ddl
 func (md *MssqlMetaData) GenerateTableDDL(columns []dbi.Column, tableInfo dbi.Table, dropBeforeCreate bool) []string {
 	tbName := tableInfo.TableName
+	schemaName := md.dc.Info.CurrentSchema()
 	meta := md.dc.GetMetaData()

 	sqlArr := make([]string, 0)

 	// 删除表
 	if dropBeforeCreate {
-		sqlArr = append(sqlArr, fmt.Sprintf("DROP TABLE IF EXISTS %s", meta.QuoteIdentifier(tbName)))
+		sqlArr = append(sqlArr, fmt.Sprintf("DROP TABLE IF EXISTS %s.%s", meta.QuoteIdentifier(schemaName), meta.QuoteIdentifier(tbName)))
 	}

 	// 组装建表语句
-	createSql := fmt.Sprintf("CREATE TABLE %s (\n", meta.QuoteIdentifier(tbName))
+	createSql := fmt.Sprintf("CREATE TABLE %s.%s (\n", meta.QuoteIdentifier(schemaName), meta.QuoteIdentifier(tbName))
 	fields := make([]string, 0)
 	pks := make([]string, 0)
 	columnComments := make([]string, 0)
--- a/server/internal/machine/application/machine_file.go
+++ b/server/internal/machine/application/machine_file.go
@@ -232,11 +232,6 @@ func (m *machineFileAppImpl) MkDir(opParam *MachineFileOpParam) (*mcm.MachineInf
 }

 func (m *machineFileAppImpl) CreateFile(opParam *MachineFileOpParam) (*mcm.MachineInfo, error) {
-	mi, sftpCli, err := m.GetMachineSftpCli(opParam)
-	if err != nil {
-		return nil, err
-	}
-
 	path := opParam.Path
 	if opParam.Protocol == entity.MachineProtocolRdp {
 		path = m.GetRdpFilePath(opParam.MachineId, path)
@@ -245,6 +240,10 @@ func (m *machineFileAppImpl) CreateFile(opParam *MachineFileOpParam) (*mcm.Machi
 		return nil, err
 	}

+	mi, sftpCli, err := m.GetMachineSftpCli(opParam)
+	if err != nil {
+		return nil, err
+	}
 	file, err := sftpCli.Create(path)
 	if err != nil {
 		return nil, errorx.NewBiz("创建文件失败: %s", err.Error())
--- a/server/internal/machine/guac/guac.go
+++ b/server/internal/machine/guac/guac.go
@@ -19,10 +19,11 @@ import (
 func DoConnect(query url.Values, parameters map[string]string, ac string) (Tunnel, error) {
 	conf := NewGuacamoleConfiguration()

-	parameters["enable-wallpaper"] = "true" // 允许显示墙纸
-	//parameters["resize-method"] = "reconnect"
+	parameters["client-name"] = "mayfly"
+	parameters["enable-wallpaper"] = "true"
+	parameters["resize-method"] = "display-update"
 	parameters["enable-font-smoothing"] = "true"
-	parameters["enable-desktop-composition"] = "true"
+	parameters["enable-desktop-composition"] = "false"
 	parameters["enable-menu-animations"] = "false"
 	parameters["disable-bitmap-caching"] = "true"
 	parameters["disable-offscreen-caching"] = "true"
@@ -60,7 +61,7 @@ func DoConnect(query url.Values, parameters map[string]string, ac string) (Tunne

 	//conf.ConnectionID = uuid.New().String()

-	conf.AudioMimetypes = []string{"audio/L8", "audio/L16"}
+	conf.AudioMimetypes = []string{"audio/L16", "rate=44100", "channels=2"}
 	conf.ImageMimetypes = []string{"image/jpeg", "image/png", "image/webp"}

 	logx.Debug("Connecting to guacd")
--- a/server/resources/script/sql/v1.7/v1.7.5.sql
+++ b/server/resources/script/sql/v1.7/v1.7.5.sql
@@ -1,12 +1,9 @@

-DELETE
-FROM `t_sys_config`
-WHERE `key` in ('DbQueryMaxCount', 'DbSaveQuerySQL');
-
+-- DBMS配置变动
+DELETE FROM `t_sys_config` WHERE `key` in ('DbQueryMaxCount', 'DbSaveQuerySQL');
 INSERT INTO `t_sys_config` (`name`, `key`, `params`, `value`, `remark`, `permission`, `create_time`, `creator_id`, `creator`, `update_time`, `modifier_id`, `modifier`, `is_deleted`, `delete_time`) VALUES('DBMS配置', 'DbmsConfig', '[{"model":"querySqlSave","name":"记录查询sql","placeholder":"是否记录查询类sql","options":"true,false"},{"model":"maxResultSet","name":"最大结果集","placeholder":"允许sql查询的最大结果集数。注: 0=不限制","options":""},{"model":"sqlExecTl","name":"sql执行时间限制","placeholder":"超过该时间（单位：秒），执行将被取消"}]', '{"querySqlSave":"false","maxResultSet":"0","sqlExecTl":"60"}', 'DBMS相关配置', 'admin,', '2024-03-06 13:30:51', 1, 'admin', '2024-03-06 14:07:16', 1, 'admin', 0, NULL);
-
-ALTER TABLE t_db_instance CHANGE sid extra varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NULL COMMENT '连接需要的额外参数，如oracle数据库需要sid等';
-ALTER TABLE t_db_instance MODIFY COLUMN extra varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NULL COMMENT '连接需要的额外参数，如oracle数据库需要sid等';
+ALTER TABLE `t_db_instance` CHANGE sid extra varchar(255) NULL COMMENT '连接需要的额外参数，如oracle数据库需要sid等';
+ALTER TABLE `t_db_instance` MODIFY COLUMN extra varchar(255) NULL COMMENT '连接需要的额外参数，如oracle数据库需要sid等';

 -- 数据迁移相关
 CREATE TABLE `t_db_transfer_task` (
@@ -37,7 +34,6 @@ CREATE TABLE `t_db_transfer_task` (
  `log_id` bigint(20) NOT NULL COMMENT '日志id',
  PRIMARY KEY (`id`)
 )  COMMENT='数据库迁移任务表';
-
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709194669, 36, 1, 1, '数据库迁移', 'transfer', 1709194669, '{"component":"ops/db/DbTransferList","icon":"Switch","isKeepAlive":true,"routeName":"DbTransferList"}', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:17:50', '2024-02-29 16:24:59', 'SmLcpu6c/', 0, NULL);
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709194694, 1709194669, 2, 1, '基本权限', 'db:transfer', 1709194694, 'null', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:18:14', '2024-02-29 16:18:14', 'SmLcpu6c/A9vAm4J8/', 0, NULL);
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709196697, 1709194669, 2, 1, '编辑', 'db:transfer:save', 1709196697, 'null', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:51:37', '2024-02-29 16:51:37', 'SmLcpu6c/5oJwPzNb/', 0, NULL);
@@ -45,225 +41,183 @@ INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `we
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709196723, 1709194669, 2, 1, '启停', 'db:transfer:status', 1709196723, 'null', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:52:04', '2024-02-29 16:52:04', 'SmLcpu6c/hGiLN1VT/', 0, NULL);
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709196737, 1709194669, 2, 1, '日志', 'db:transfer:log', 1709196737, 'null', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:52:17', '2024-02-29 16:52:17', 'SmLcpu6c/CZhNIbWg/', 0, NULL);
 INSERT INTO `t_sys_resource` (`id`, `pid`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `ui_path`, `is_deleted`, `delete_time`) VALUES(1709196755, 1709194669, 2, 1, '运行', 'db:transfer:run', 1709196755, 'null', 12, 'liuzongyang', 12, 'liuzongyang', '2024-02-29 16:52:36', '2024-02-29 16:52:36', 'SmLcpu6c/b6yHt6V2/', 0, NULL);
-
-ALTER TABLE t_sys_log ADD extra varchar(5000) NULL;
+ALTER TABLE t_sys_log ADD extra text NULL;
 ALTER TABLE t_sys_log MODIFY COLUMN resp text NULL;

 -- rdp相关
 ALTER TABLE `t_machine` ADD COLUMN `protocol` tinyint(2) NULL COMMENT '协议  1、SSH  2、RDP' AFTER `name`;
 update `t_machine` set `protocol` = 1 where `protocol`  is NULL;
 delete from `t_sys_config` where `key` = 'MachineConfig';
-INSERT INTO t_sys_config ( name, `key`, params, value, remark, permission, create_time, creator_id, creator, update_time, modifier_id, modifier, is_deleted, delete_time) VALUES('机器相关配置', 'MachineConfig', '[{"name":"终端回放存储路径","model":"terminalRecPath","placeholder":"终端回放存储路径"},{"name":"uploadMaxFileSize","model":"uploadMaxFileSize","placeholder":"允许上传的最大文件大小(1MB、2GB等)"},{"model":"termOpSaveDays","name":"终端记录保存时间","placeholder":"终端记录保存时间（单位天）"},{"model":"guacdHost","name":"guacd服务ip","placeholder":"guacd服务ip，默认 127.0.0.1","required":false},{"name":"guacd服务端口","model":"guacdPort","placeholder":"guacd服务端口，默认 4822","required":false},{"model":"guacdFilePath","name":"guacd服务文件存储位置","placeholder":"guacd服务文件存储位置，用于挂载RDP文件夹"},{"name":"guacd服务记录存储位置","model":"guacdRecPath","placeholder":"guacd服务记录存储位置，用于记录rdp操作记录"}]', '{"terminalRecPath":"./rec","uploadMaxFileSize":"1000MB","termOpSaveDays":"30","guacdHost":"","guacdPort":"","guacdFilePath":"./guacd/rdp-file","guacdRecPath":"./guacd/rdp-rec"}', '机器相关配置，如终端回放路径等', 'all', '2023-07-13 16:26:44', 1, 'admin', '2024-04-06 12:25:03', 1, 'admin', 0, NULL);
+INSERT INTO `t_sys_config` ( `name`, `key`, `params`, `value`, `remark`, `permission`, `create_time`, `creator_id`, `creator`, `update_time`, `modifier_id`, `modifier`, `is_deleted`, `delete_time`) VALUES('机器相关配置', 'MachineConfig', '[{"name":"终端回放存储路径","model":"terminalRecPath","placeholder":"终端回放存储路径"},{"name":"uploadMaxFileSize","model":"uploadMaxFileSize","placeholder":"允许上传的最大文件大小(1MB、2GB等)"},{"model":"termOpSaveDays","name":"终端记录保存时间","placeholder":"终端记录保存时间（单位天）"},{"model":"guacdHost","name":"guacd服务ip","placeholder":"guacd服务ip，默认 127.0.0.1","required":false},{"name":"guacd服务端口","model":"guacdPort","placeholder":"guacd服务端口，默认 4822","required":false},{"model":"guacdFilePath","name":"guacd服务文件存储位置","placeholder":"guacd服务文件存储位置，用于挂载RDP文件夹"},{"name":"guacd服务记录存储位置","model":"guacdRecPath","placeholder":"guacd服务记录存储位置，用于记录rdp操作记录"}]', '{"terminalRecPath":"./rec","uploadMaxFileSize":"1000MB","termOpSaveDays":"30","guacdHost":"","guacdPort":"","guacdFilePath":"./guacd/rdp-file","guacdRecPath":"./guacd/rdp-rec"}', '机器相关配置，如终端回放路径等', 'all', '2023-07-13 16:26:44', 1, 'admin', '2024-04-06 12:25:03', 1, 'admin', 0, NULL);

+-- 授权凭证相关
+CREATE TABLE `t_resource_auth_cert` (
+    `id` bigint unsigned NOT NULL AUTO_INCREMENT,
+    `name` varchar(100) DEFAULT NULL COMMENT '账号名称',
+    `resource_code` varchar(36) DEFAULT NULL COMMENT '资源编码',
+    `resource_type` tinyint NOT NULL COMMENT '资源类型',
+    `type` tinyint DEFAULT NULL COMMENT '凭证类型',
+    `username` varchar(100) DEFAULT NULL COMMENT '用户名',
+    `ciphertext` varchar(5000) DEFAULT NULL COMMENT '密文内容',
+    `ciphertext_type` tinyint NOT NULL COMMENT '密文类型（-1.公共授权凭证 1.密码 2.秘钥）',
+    `extra` varchar(200) DEFAULT NULL COMMENT '账号需要的其他额外信息（如秘钥口令等）',
+    `remark` varchar(50) DEFAULT NULL COMMENT '备注',
+    `create_time` datetime NOT NULL,
+    `creator_id` bigint NOT NULL,
+    `creator` varchar(36) NOT NULL,
+    `update_time` datetime NOT NULL,
+    `modifier_id` bigint NOT NULL,
+    `modifier` varchar(36) NOT NULL,
+    `is_deleted` tinyint DEFAULT '0',
+    `delete_time` datetime DEFAULT NULL,
+    PRIMARY KEY (`id`),
+    KEY `idx_resource_code` (`resource_code`) USING BTREE,
+    KEY `idx_name` (`name`) USING BTREE
+) COMMENT='资源授权凭证表';

-ALTER TABLE t_tag_tree ADD `type` tinyint NOT NULL DEFAULT '-1' COMMENT '类型： -1.普通标签； 其他值则为对应的资源类型';
+ALTER TABLE t_tag_tree ADD `type` tinyint NOT NULL DEFAULT '-1' COMMENT '类型： -1.普通标签； 其他值则为对应的资源类型' AFTER `code_path`;
+ALTER TABLE t_db_instance ADD `code` varchar(36) NULL COMMENT '唯一编号' AFTER id;
+ALTER TABLE t_db ADD auth_cert_name varchar(36) NULL COMMENT '授权凭证名' AFTER instance_id;
+ALTER TABLE t_tag_tree MODIFY COLUMN code_path varchar(555) NOT NULL COMMENT '标识符路径';

 BEGIN;
-INSERT
-	INTO
-	t_tag_tree (pid,
-	code,
-	code_path,
-	type,
-    name,
-	create_time,
-	creator_id,
-	creator,
-	update_time,
-	modifier_id,
-	modifier,
-	is_deleted)
-select
-	tag_id,
-	resource_code,
-	CONCAT(tag_path ,resource_type , '|', resource_code, '/'),
-	resource_type,
+INSERT INTO t_tag_tree ( pid, CODE, code_path, type, NAME, create_time, creator_id, creator, update_time, modifier_id, modifier, is_deleted )
+SELECT
+    tag_id,
    resource_code,
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
-    0
-from
-	t_tag_resource
-WHERE
-	is_deleted = 0;
-
-DROP TABLE t_tag_resource;
-COMMIT;
-
-- 资源授权凭证
-CREATE TABLE `t_resource_auth_cert` (
-  `id` bigint unsigned NOT NULL AUTO_INCREMENT,
-  `name` varchar(100) COLLATE utf8mb4_bin DEFAULT NULL COMMENT '账号名称',
-  `resource_code` varchar(36) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin DEFAULT NULL COMMENT '资源编码',
-  `resource_type` tinyint NOT NULL COMMENT '资源类型',
-  `type` tinyint DEFAULT NULL COMMENT '凭证类型',
-  `username` varchar(100) COLLATE utf8mb4_bin DEFAULT NULL COMMENT '用户名',
-  `ciphertext` varchar(5000) COLLATE utf8mb4_bin DEFAULT NULL COMMENT '密文内容',
-  `ciphertext_type` tinyint NOT NULL COMMENT '密文类型（-1.公共授权凭证 1.密码 2.秘钥）',
-  `extra` varchar(200) COLLATE utf8mb4_bin DEFAULT NULL COMMENT '账号需要的其他额外信息（如秘钥口令等）',
-  `remark` varchar(50) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin DEFAULT NULL COMMENT '备注',
-  `create_time` datetime NOT NULL,
-  `creator_id` bigint NOT NULL,
-  `creator` varchar(36) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,
-  `update_time` datetime NOT NULL,
-  `modifier_id` bigint NOT NULL,
-  `modifier` varchar(36) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,
-  `is_deleted` tinyint DEFAULT '0',
-  `delete_time` datetime DEFAULT NULL,
-  PRIMARY KEY (`id`),
-  KEY `idx_resource_code` (`resource_code`) USING BTREE
-) ENGINE=InnoDB AUTO_INCREMENT=43 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_bin COMMENT='资源授权凭证表';
-
-
-Begin;
-- 迁移机器表账号
-INSERT
-	INTO
-	t_resource_auth_cert (name,
-	resource_code,
-	resource_type,
-    type,
-	username,
-    ciphertext,
-	ciphertext_type,
-    create_time,
-	creator_id,
-	creator,
-	update_time,
-	modifier_id,
-	modifier,
-	is_deleted)
-select
-	CONCAT('machine_', code, '_' username),
-    code,
-	1,
+    CONCAT(tag_path ,resource_type , '|', resource_code, '/'),
+    resource_type,
+    resource_code,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
    1,
-	username,
-	password,
+    'admin',
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
    1,
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
+    'admin',
    0
-from
-	t_machine
+FROM
+    t_tag_resource
 WHERE
-	is_deleted = 0;
+    is_deleted = 0;
+
+-- 迁移machine表账号密码
+INSERT INTO `t_resource_auth_cert` ( `name`, `resource_code`, `resource_type`, `username`, `ciphertext`, `ciphertext_type`, `type`, `create_time`, `creator_id`, `creator`, `update_time`, `modifier_id`, `modifier`, `is_deleted` )
+SELECT
+    CONCAT( 'machine_', CODE, '_', username ) name,
+    CODE resource_code,
+    1 resource_type,
+    username username,
+    CASE
+        WHEN auth_cert_id = - 1
+            OR auth_cert_id IS NULL THEN
+            `password` ELSE concat( 'auth_cert_', auth_cert_id )
+        END ciphertext,
+    CASE
+        WHEN auth_cert_id = - 1
+            OR auth_cert_id IS NULL THEN
+            1 ELSE - 1
+        END ciphertext_type,
+    1 type,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ) create_time,
+    1 creator_id,
+    'admin' creator,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ) update_time,
+    1 modifier_id,
+    'admin' modifier,
+    0 is_deleted
+FROM
+    t_machine
+WHERE
+    is_deleted = 0;
+
+-- 迁移公共密钥
+INSERT INTO `t_resource_auth_cert` ( `name`, `remark`, `resource_code`, `resource_type`, `username`, `ciphertext`, `extra`, `ciphertext_type`, `type`, `create_time`, `creator_id`, `creator`, `update_time`, `modifier_id`, `modifier`, `is_deleted` )
+SELECT
+    concat( 'auth_cert_', id ) `name`,
+    `name` remark,
+    concat( 'auth_cert_code_', id ) resource_code,
+    -2 resource_type,
+    t.username username,
+    `password` ciphertext,
+    case when passphrase is not null and passphrase !='' then concat('{"passphrase":"', passphrase,'"}') else null end extra,
+    auth_method ciphertext_type,
+    2 type,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ) create_time,
+    1 creator_id,
+    'admin' creator,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ) update_time,
+    1 modifier_id,
+    'admin' modifier,
+    0 is_deleted
+FROM
+    t_auth_cert a
+        join (select `ciphertext`, `username` from `t_resource_auth_cert` GROUP BY `ciphertext`, `username` ) t on t.ciphertext = concat( 'auth_cert_', a.id )
+;

 -- 关联机器账号到tag_tree
-INSERT
-	INTO
-	t_tag_tree (pid,
-	code,
-	code_path,
-	type,
-    name,
-	create_time,
-	creator_id,
-	creator,
-	update_time,
-	modifier_id,
-	modifier,
-	is_deleted)
+INSERT INTO t_tag_tree ( pid, CODE, code_path, type, NAME, create_time, creator_id, creator, update_time, modifier_id, modifier, is_deleted )
 SELECT
-  tt.id,
-  rac.`name`,
-  CONCAT(tt.code_path, '11|' ,rac.`name`, '/'),
-  11,
-  rac.`username`,
-  DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-  1,
-  'admin',
-  DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-  1,
-  'admin',
-  0
-FROM
-  `t_tag_tree` tt
-  JOIN `t_resource_auth_cert` rac ON tt.`code` = rac.`resource_code`
-  AND tt.`type` = rac.`resource_type` AND rac.type = 1
-WHERE
-  tt.`is_deleted` = 0;
-
-- 删除机器表 账号相关字段
-ALTER TABLE t_machine DROP COLUMN username;
-ALTER TABLE t_machine DROP COLUMN password;
-ALTER TABLE t_machine DROP COLUMN auth_cert_id;
-
-UPDATE t_sys_resource SET pid=93, ui_path='Tag3fhad/exahgl32/', weight=19999999, meta='{"component":"ops/tag/AuthCertList","icon":"Ticket","isKeepAlive":true,"routeName":"AuthCertList"}' WHERE id=103;
-UPDATE t_sys_resource SET ui_path='Tag3fhad/exahgl32/egxahg24/', weight=10000000 WHERE id=104;
-UPDATE t_sys_resource SET ui_path='Tag3fhad/exahgl32/yglxahg2/', weight=20000000 WHERE id=105;
-UPDATE t_sys_resource SET ui_path='Tag3fhad/exahgl32/Glxag234/', weight=30000000 WHERE id=106;
-INSERT INTO t_sys_resource (id, pid, ui_path, `type`, status, name, code, weight, meta, creator_id, creator, modifier_id, modifier, create_time, update_time, is_deleted, delete_time) VALUES(1712717290, 0, 'tLb8TKLB/', 1, 1, '无页面权限', 'empty', 1712717290, '{"component":"empty","icon":"Menu","isHide":true,"isKeepAlive":true,"routeName":"empty"}', 1, 'admin', 1, 'admin', '2024-04-10 10:48:10', '2024-04-10 10:48:10', 0, NULL);
-INSERT INTO t_sys_resource (id, pid, ui_path, `type`, status, name, code, weight, meta, creator_id, creator, modifier_id, modifier, create_time, update_time, is_deleted, delete_time) VALUES(1712717337, 1712717290, 'tLb8TKLB/m2abQkA8/', 2, 1, '授权凭证密文查看', 'authcert:showciphertext', 1712717337, 'null', 1, 'admin', 1, 'admin', '2024-04-10 10:48:58', '2024-04-10 10:48:58', 0, NULL);
-commit;
-
--  关联数据库账号至授权凭证表
-begin;
-ALTER TABLE t_db_instance ADD code varchar(36) NULL COMMENT '唯一编号';
-ALTER TABLE t_db_instance CHANGE code code varchar(36) NULL COMMENT '唯一编号' AFTER id;
-
-UPDATE t_db_instance SET code = CONCAT('db_code_', id);
-
-INSERT
-	INTO
-	t_resource_auth_cert (name,
-	resource_code,
-	resource_type,
-    type,
-	username,
-    ciphertext,
-	ciphertext_type,
-    create_time,
-	creator_id,
-	creator,
-	update_time,
-	modifier_id,
-	modifier,
-	is_deleted)
-select
-	CONCAT(code, '_', username),
-    code,
-	2,
+    tt.id,
+    rac.`name`,
+    CONCAT(tt.code_path, '11|' ,rac.`name`, '/'),
+    11,
+    rac.`username`,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
    1,
-	username,
-	password,
+    'admin',
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
    1,
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
-	DATE_FORMAT(NOW(), '%Y-%m-%d %H:%i:%s'),
-	1,
-	'admin',
+    'admin',
    0
-from
-	t_db_instance
+FROM
+    `t_tag_tree` tt
+        JOIN `t_resource_auth_cert` rac ON tt.`code` = rac.`resource_code`
+        AND tt.`type` = rac.`resource_type` AND rac.type = 1
 WHERE
-	is_deleted = 0;
+    tt.`is_deleted` = 0;

-ALTER TABLE t_db ADD auth_cert_name varchar(36) NULL COMMENT '授权凭证名';
-ALTER TABLE t_db CHANGE auth_cert_name auth_cert_name varchar(36) NULL COMMENT '授权凭证名' AFTER instance_id;
+--  迁移数据库账号至授权凭证表
+UPDATE t_db_instance SET `code` = CONCAT('db_code_', id);
+INSERT INTO t_resource_auth_cert ( NAME, resource_code, resource_type, type, username, ciphertext, ciphertext_type, create_time, creator_id, creator, update_time, modifier_id, modifier, is_deleted )
+SELECT
+    CONCAT( CODE, '_', username ),
+    CODE,
+    2,
+    1,
+    username,
+    PASSWORD,
+    1,
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
+    1,
+    'admin',
+    DATE_FORMAT( NOW(), '%Y-%m-%d %H:%i:%s' ),
+    1,
+    'admin',
+    0
+FROM
+    t_db_instance
+WHERE
+    is_deleted = 0;

 UPDATE
-	t_db d
+    t_db d
 SET
-	d.auth_cert_name = (
-	SELECT
-		rac.name
-	FROM
-		t_resource_auth_cert rac
-	join t_db_instance di on
-		rac.resource_code = di.code
-		and rac.resource_type = 2
-	WHERE
-		di.id = d.instance_id);
+    d.auth_cert_name = (
+        SELECT
+            rac.name
+        FROM
+            t_resource_auth_cert rac
+                join t_db_instance di on
+                rac.resource_code = di.code
+                    and rac.resource_type = 2
+        WHERE
+            di.id = d.instance_id);
+
+UPDATE `t_sys_resource` SET pid=93, ui_path='Tag3fhad/exahgl32/', weight=19999999, meta='{"component":"ops/tag/AuthCertList","icon":"Ticket","isKeepAlive":true,"routeName":"AuthCertList"}' WHERE id=103;
+UPDATE `t_sys_resource` SET ui_path='Tag3fhad/exahgl32/egxahg24/', weight=10000000 WHERE id=104;
+UPDATE `t_sys_resource` SET ui_path='Tag3fhad/exahgl32/yglxahg2/', weight=20000000 WHERE id=105;
+UPDATE `t_sys_resource` SET ui_path='Tag3fhad/exahgl32/Glxag234/', weight=30000000 WHERE id=106;
+INSERT INTO `t_sys_resource` (`id`, `pid`, `ui_path`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `is_deleted`, `delete_time`) VALUES(1712717290, 0, 'tLb8TKLB/', 1, 1, '无页面权限', 'empty', 1712717290, '{"component":"empty","icon":"Menu","isHide":true,"isKeepAlive":true,"routeName":"empty"}', 1, 'admin', 1, 'admin', '2024-04-10 10:48:10', '2024-04-10 10:48:10', 0, NULL);
+INSERT INTO `t_sys_resource` (`id`, `pid`, `ui_path`, `type`, `status`, `name`, `code`, `weight`, `meta`, `creator_id`, `creator`, `modifier_id`, `modifier`, `create_time`, `update_time`, `is_deleted`, `delete_time`) VALUES(1712717337, 1712717290, 'tLb8TKLB/m2abQkA8/', 2, 1, '授权凭证密文查看', 'authcert:showciphertext', 1712717337, 'null', 1, 'admin', 1, 'admin', '2024-04-10 10:48:58', '2024-04-10 10:48:58', 0, NULL);
+commit;

-ALTER TABLE t_tag_tree MODIFY COLUMN code_path varchar(555) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL COMMENT '标识符路径';
-commit;