feat(security): shorten download signed URLs to 30s and remove update polling

desktop-client/src/App.vue

@@ -132,11 +132,8 @@ const updateState = reactive({
   lastCheckedAt: "",
   message: "",
 });
-const AUTO_UPDATE_CHECK_INTERVAL_MS = 30 * 60 * 1000;
 const updateRuntime = reactive({
   downloading: false,
-  promptedVersion: "",
-  mandatoryInstalledVersion: "",
 });
 const contextMenu = reactive({
   visible: false,
@@ -153,7 +150,6 @@ const dropState = reactive({
 });
 let unlistenDragDrop: UnlistenFn | null = null;
 let syncTimer: ReturnType<typeof setInterval> | null = null;
-let updateCheckTimer: ReturnType<typeof setInterval> | null = null;
 
 const toast = reactive({
   visible: false,
@@ -564,13 +560,6 @@ function clearSyncScheduler() {
   syncState.nextRunAt = "";
 }
 
-function clearUpdateScheduler() {
-  if (updateCheckTimer) {
-    clearInterval(updateCheckTimer);
-    updateCheckTimer = null;
-  }
-}
-
 function syncFingerprint(item: LocalSyncFileItem) {
   return `${Number(item.size || 0)}:${Number(item.modifiedMs || 0)}`;
 }
@@ -656,18 +645,14 @@ async function checkClientUpdate(showResultToast = true): Promise<boolean> {
   return false;
 }
 
-async function installLatestUpdate(trigger: "manual" | "auto" = "manual"): Promise<boolean> {
+async function installLatestUpdate(): Promise<boolean> {
   if (updateRuntime.downloading) {
-    if (trigger === "manual") {
-      showToast("更新包正在下载，请稍候", "info");
-    }
+    showToast("更新包正在下载，请稍候", "info");
     return false;
   }
 
   if (!updateState.downloadUrl) {
-    if (trigger === "manual") {
-      showToast("当前没有可用的更新下载地址", "info");
-    }
+    showToast("当前没有可用的更新下载地址", "info");
     return false;
   }
 
@@ -725,46 +710,6 @@ async function installLatestUpdate(trigger: "manual" | "auto" = "manual"): Promi
   }
 }
 
-async function runAutoUpdateCycle(trigger: "startup" | "login" | "timer" = "startup") {
-  const checked = await checkClientUpdate(false);
-  if (!checked) return;
-
-  if (!updateState.available || !updateState.downloadUrl) {
-    return;
-  }
-
-  const latestVersion = String(updateState.latestVersion || "").trim();
-  if (!latestVersion) return;
-
-  if (updateState.mandatory) {
-    if (updateRuntime.mandatoryInstalledVersion === latestVersion) {
-      return;
-    }
-
-    showToast(`检测到强制更新 v${latestVersion}，正在下载升级包`, "info");
-    const installed = await installLatestUpdate("auto");
-    if (installed) {
-      updateRuntime.mandatoryInstalledVersion = latestVersion;
-    }
-    return;
-  }
-
-  if (updateRuntime.promptedVersion === latestVersion) {
-    return;
-  }
-
-  updateRuntime.promptedVersion = latestVersion;
-  if (trigger === "timer") {
-    showToast(`发现新版本 v${latestVersion}，可在“版本更新”中安装`, "info");
-    return;
-  }
-
-  const confirmed = window.confirm(`发现新版本 v${latestVersion}，是否立即下载并安装？`);
-  if (confirmed) {
-    await installLatestUpdate("auto");
-  }
-}
-
 async function chooseSyncDirectory() {
   try {
     const result = await openDialog({
@@ -822,16 +767,6 @@ function rebuildSyncScheduler() {
   }, intervalMinutes * 60 * 1000);
 }
 
-function rebuildUpdateScheduler() {
-  clearUpdateScheduler();
-  if (!authenticated.value) {
-    return;
-  }
-  updateCheckTimer = setInterval(() => {
-    void runAutoUpdateCycle("timer");
-  }, AUTO_UPDATE_CHECK_INTERVAL_MS);
-}
-
 async function clearSyncSnapshot() {
   if (!syncState.localDir.trim()) {
     showToast("请先配置本地同步目录", "info");
@@ -1119,10 +1054,8 @@ async function restoreSession() {
   authenticated.value = true;
   loadSyncConfig();
   rebuildSyncScheduler();
-  rebuildUpdateScheduler();
   await loadFiles("/");
   await loadShares(true);
-  await runAutoUpdateCycle("startup");
 }
 
 function buildItemPath(item: FileItem) {
@@ -1187,12 +1120,10 @@ async function handleLogin() {
     showToast("登录成功，正在同步文件目录", "success");
     loadSyncConfig();
     rebuildSyncScheduler();
-    rebuildUpdateScheduler();
     await loadFiles("/");
     if (!user.value) {
       await loadProfile();
     }
-    await runAutoUpdateCycle("login");
     return;
   }
 
@@ -1204,7 +1135,6 @@ async function handleLogin() {
 async function handleLogout() {
   await invokeBridge("api_logout", { baseUrl: appConfig.baseUrl });
   clearSyncScheduler();
-  clearUpdateScheduler();
   authenticated.value = false;
   user.value = null;
   files.value = [];
@@ -1226,8 +1156,6 @@ async function handleLogout() {
   syncState.lastSummary = "";
   syncState.nextRunAt = "";
   updateRuntime.downloading = false;
-  updateRuntime.promptedVersion = "";
-  updateRuntime.mandatoryInstalledVersion = "";
   showToast("已退出客户端", "info");
 }
 
@@ -1702,7 +1630,6 @@ onBeforeUnmount(() => {
   window.removeEventListener("click", handleGlobalClick);
   window.removeEventListener("keydown", handleGlobalKey);
   clearSyncScheduler();
-  clearUpdateScheduler();
   if (unlistenDragDrop) {
     unlistenDragDrop();
     unlistenDragDrop = null;
@@ -1848,7 +1775,7 @@ onBeforeUnmount(() => {
               <button class="action-btn" :disabled="updateState.checking || updateRuntime.downloading" @click="checkClientUpdate()">
                 {{ updateState.checking ? "检查中..." : "检查更新" }}
               </button>
-              <button class="action-btn" :disabled="updateRuntime.downloading || !updateState.available || !updateState.downloadUrl" @click="installLatestUpdate('manual')">
+              <button class="action-btn" :disabled="updateRuntime.downloading || !updateState.available || !updateState.downloadUrl" @click="installLatestUpdate()">
                 {{ updateRuntime.downloading ? "下载中..." : "立即更新" }}
               </button>
             </template>
@@ -2053,7 +1980,6 @@ onBeforeUnmount(() => {
                   </div>
 
                   <div class="update-meta">
-                    <span>自动检查：已开启（每 30 分钟）</span>
                     <span>上次检查：{{ updateState.lastCheckedAt ? formatDate(updateState.lastCheckedAt) : "-" }}</span>
                     <span>提示：{{ updateState.message || "可手动点击“检查更新”获取最新信息" }}</span>
                   </div>