internal/xrpc/services/handler/users.go

package handler

import (
	"context"

	"github.com/xtls/xray-core/app/proxyman/command"
	"github.com/xtls/xray-core/common/protocol"
	"github.com/xtls/xray-core/common/serial"
	"github.com/xtls/xray-core/proxy/shadowsocks"
	ss2022 "github.com/xtls/xray-core/proxy/shadowsocks_2022"
	"github.com/xtls/xray-core/proxy/trojan"
	"github.com/xtls/xray-core/proxy/vless"
	"github.com/xtls/xray-core/proxy/vmess"
)

// 通过 AlterInbound(AddUserOperation) 为 VMess 入站加用户。
func AddVMessUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.AddUserOperation{
			User: &protocol.User{
				Level: 0,
				Email: email,
				Account: serial.ToTypedMessage(&vmess.Account{
					Id: randomUUID(),
					SecuritySettings: &protocol.SecurityConfig{
						Type: protocol.SecurityType_AUTO,
					},
				}),
			},
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}

// 为 VLESS 入站动态加用户。
func AddVLESSUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.AddUserOperation{
			User: &protocol.User{
				Level: 0,
				Email: email,
				Account: serial.ToTypedMessage(&vless.Account{
					Id:         randomUUID(),
					Encryption: "none",
				}),
			},
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}

// 为 Trojan 入站加密码用户。
func AddTrojanUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email, password string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.AddUserOperation{
			User: &protocol.User{
				Level: 0,
				Email: email,
				Account: serial.ToTypedMessage(&trojan.Account{
					Password: password,
				}),
			},
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}

// 为 Shadowsocks 入站加 AEAD 凭据。
func AddShadowsocksUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email, password string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.AddUserOperation{
			User: &protocol.User{
				Level: 0,
				Email: email,
				Account: serial.ToTypedMessage(&shadowsocks.Account{
					Password:   password,
					CipherType: shadowsocks.CipherType_CHACHA20_POLY1305,
				}),
			},
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}

// 为 SS2022 入站新增用户密钥。
func AddShadowsocks2022User(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.AddUserOperation{
			User: &protocol.User{
				Email: email,
				Account: serial.ToTypedMessage(&ss2022.Account{
					Key: randomUUID(),
				}),
			},
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}

// 按邮箱从入站移除用户。
func RemoveUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {
	req := &command.AlterInboundRequest{
		Tag: inboundTag,
		Operation: serial.ToTypedMessage(&command.RemoveUserOperation{
			Email: email,
		}),
	}
	_, err := client.AlterInbound(ctx, req)
	return err
}
init 2026-01-28 13:13:58 +08:00			`package handler`

			`import (`
			`"context"`

			`"github.com/xtls/xray-core/app/proxyman/command"`
			`"github.com/xtls/xray-core/common/protocol"`
			`"github.com/xtls/xray-core/common/serial"`
			`"github.com/xtls/xray-core/proxy/shadowsocks"`
			`ss2022 "github.com/xtls/xray-core/proxy/shadowsocks_2022"`
			`"github.com/xtls/xray-core/proxy/trojan"`
			`"github.com/xtls/xray-core/proxy/vless"`
			`"github.com/xtls/xray-core/proxy/vmess"`
			`)`

格式化 2026-04-10 15:25:21 +08:00			`// 通过 AlterInbound(AddUserOperation) 为 VMess 入站加用户。`
init 2026-01-28 13:13:58 +08:00			`func AddVMessUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.AddUserOperation{`
			`User: &protocol.User{`
			`Level: 0,`
			`Email: email,`
			`Account: serial.ToTypedMessage(&vmess.Account{`
			`Id: randomUUID(),`
			`SecuritySettings: &protocol.SecurityConfig{`
			`Type: protocol.SecurityType_AUTO,`
			`},`
			`}),`
			`},`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`

格式化 2026-04-10 15:25:21 +08:00			`// 为 VLESS 入站动态加用户。`
init 2026-01-28 13:13:58 +08:00			`func AddVLESSUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.AddUserOperation{`
			`User: &protocol.User{`
			`Level: 0,`
			`Email: email,`
			`Account: serial.ToTypedMessage(&vless.Account{`
			`Id: randomUUID(),`
			`Encryption: "none",`
			`}),`
			`},`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`

格式化 2026-04-10 15:25:21 +08:00			`// 为 Trojan 入站加密码用户。`
init 2026-01-28 13:13:58 +08:00			`func AddTrojanUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email, password string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.AddUserOperation{`
			`User: &protocol.User{`
			`Level: 0,`
			`Email: email,`
			`Account: serial.ToTypedMessage(&trojan.Account{`
			`Password: password,`
			`}),`
			`},`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`

格式化 2026-04-10 15:25:21 +08:00			`// 为 Shadowsocks 入站加 AEAD 凭据。`
init 2026-01-28 13:13:58 +08:00			`func AddShadowsocksUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email, password string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.AddUserOperation{`
			`User: &protocol.User{`
			`Level: 0,`
			`Email: email,`
			`Account: serial.ToTypedMessage(&shadowsocks.Account{`
			`Password: password,`
			`CipherType: shadowsocks.CipherType_CHACHA20_POLY1305,`
			`}),`
			`},`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`

格式化 2026-04-10 15:25:21 +08:00			`// 为 SS2022 入站新增用户密钥。`
init 2026-01-28 13:13:58 +08:00			`func AddShadowsocks2022User(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.AddUserOperation{`
			`User: &protocol.User{`
			`Email: email,`
			`Account: serial.ToTypedMessage(&ss2022.Account{`
			`Key: randomUUID(),`
			`}),`
			`},`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`

格式化 2026-04-10 15:25:21 +08:00			`// 按邮箱从入站移除用户。`
init 2026-01-28 13:13:58 +08:00			`func RemoveUser(ctx context.Context, client command.HandlerServiceClient, inboundTag, email string) error {`
			`req := &command.AlterInboundRequest{`
			`Tag: inboundTag,`
			`Operation: serial.ToTypedMessage(&command.RemoveUserOperation{`
			`Email: email,`
			`}),`
			`}`
			`_, err := client.AlterInbound(ctx, req)`
			`return err`
			`}`