用户 API
基础路径: /api/v1/users
认证: ✅ 所有接口需要 JWT Token
GET /me
获取当前登录用户信息
curl -X GET http://localhost:8080/api/v1/users/me \
-H "Authorization: Bearer {token}"
响应:
{
"code": 0,
"data": {
"id": 1,
"username": "testuser",
"email": "test@example.com",
"nickname": "Test User",
"status": 1,
"roles": ["ROLE_USER"]
}
}
PUT /me
更新当前用户个人资料
curl -X PUT http://localhost:8080/api/v1/users/me \
-H "Authorization: Bearer {token}" \
-H "Content-Type: application/json" \
-d '{"nickname": "New Name", "email": "new@example.com"}'
可更新字段
| 字段 | 可更新 | 说明 |
|---|---|---|
| nickname | ✅ | 昵称 |
| ✅ | 邮箱 | |
| avatar | ✅ | 头像 URL |
| username | ❌ | 不可修改 |
| status | ❌ | 由管理员管理 |
GET /{id}
获取指定用户信息(需要 ADMIN 权限)
curl -X GET http://localhost:8080/api/v1/users/2 \
-H "Authorization: Bearer {admin_token}"
PUT /{id}
更新指定用户信息(需要 ADMIN 权限)
# 禁用用户
curl -X PUT http://localhost:8080/api/v1/users/2 \
-H "Authorization: Bearer {admin_token}" \
-H "Content-Type: application/json" \
-d '{"status": 0}'
DELETE /{id}
删除用户(需要 ADMIN 权限)
curl -X DELETE http://localhost:8080/api/v1/users/2 \
-H "Authorization: Bearer {admin_token}"
删除幂等
删除不存在的用户也返回成功(RESTful 幂等设计)
权限说明
| 接口 | 普通用户 | 管理员 |
|---|---|---|
GET /me | ✅ | ✅ |
PUT /me | ✅ | ✅ |
GET /{id} | ❌ | ✅ |
PUT /{id} | ❌ | ✅ |
DELETE /{id} | ❌ | ✅ |