peanut/happy-life-star
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: 小程序脚本首页重构 + 社交数据导入 + TTS 播放优化

Browse Source 
- 后端:新增社交数据导入/审批/洞察生成 API(SocialContent/SocialInsight)
- 后端:优化脚本上下文服务,TTS 服务增强
- 小程序:重构脚本首页布局,新增社交导入页面
- 小程序:新增 useTtsPlayer composable,移除旧 ScriptAudioPlayer 组件
- 小程序:新增社交导入服务,优化请求服务
- SQL:新增社交数据导入建表脚本
- 文档:补充设计文档和实施计划

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Peanut
2026-05-20 07:18:02 +08:00
parent 83cc32999b
commit ee5a6aba5d
50 changed files with 5723 additions and 1246 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/superpowers/specs/2026-05-18-mini-program-script-home-redesign-design.md
+336
View File
@@ -0,0 +1,336 @@
# Mini Program Script Home Redesign Design
Date: 2026-05-18
Source requirement: `docs/0517-UI设计 更新.md`
## Goal
Implement the 0517 UI requirement iteration for the mini program: make `爽文生成` the primary home experience, keep `人生轨迹` behavior unchanged, and rebuild the script generation flow around the new `如愿星球` design.
The new core flow is:
1. User lands on the script-generation home page.
2. User speaks or types a wish.
3. The app shows a wish-realization/generation state.
4. The generated story appears as a readable script card.
5. User can adjust direction, mark the result as unlike them, play voice narration, view saved scripts, or continue to path mapping.
## Scope
### In Scope
- Change the mini program default main tab from `人生轨迹` to `爽文生成`.
- Reorder or restyle the main navigation so `爽文生成` is the first/home experience.
- Redesign `mini-program/src/pages/main/ScriptView.vue` according to the 0517 document.
- Preserve existing `人生轨迹` behavior and data.
- Preserve existing script generation APIs and store methods unless a frontend field mapping adjustment is needed.
- Connect the new result actions to existing capabilities where available:
- `语音播放` should reuse the existing TTS/script reading capability.
- `我的剧本` should navigate to the existing script library/list experience.
- Existing script detail and path mapping should remain reachable.
- Add or update analytics events for the new funnel.
### Out Of Scope
- Redesigning the backend script generation algorithm.
- Rebuilding the whole `我的剧本` library unless required by navigation consistency.
- Changing the `人生轨迹` page behavior.
- Building a new full speech recognition backend service unless the mini program platform API cannot satisfy the first version.
## Product Requirements
### Design Review Decisions
This section captures the decisions from the first review pass so implementation does not drift.
- `爽文生成` becomes the default entry, but the old script list/detail/path capabilities are not removed.
- `ScriptView.vue` should become a single state-driven flow: `home -> generating -> result`. The old `mode = inspiration/custom/list` model should not remain as a parallel primary state machine.
- `我的剧本` should route users to the existing library experience instead of embedding a second full list inside the redesigned home page.
- Voice input is a primary visual interaction, but speech recognition is allowed to ship with a typed-input fallback if the WeChat runtime/plugin permission is not configured.
- `语音播放` should not duplicate two separate players. Prefer one visible `ScriptAudioPlayer` area; the button/action can scroll to it, expand it, or trigger its existing flow if the component exposes a method.
- Closing a generated result is a dismiss action, not deletion. Real delete remains in the script library/detail management surface.
- The implementation should fix visible mojibake in touched UI strings. Any changed user-facing Chinese string must be saved and verified as UTF-8.
### Navigation
Current main page order gives `人生轨迹` priority. This iteration changes the product entry priority:
- Default active tab: `script`.
- First visual/main tab: `爽文生成`.
- `人生轨迹` remains available and unchanged.
- `我的` / `我的剧本` entry remains available.
If bottom navigation labels or source files currently show mojibake text, fix the visible Chinese labels while touching this area.
### Script Home Page
The script page should become a wish-input home screen, not a form-heavy generator.
Required elements:
- Deep purple cosmic background.
- History entry near the top left or header area.
- Main title: `今天有什么心愿想实现`
- Highlight word: `心愿`
- Central glowing microphone planet/sphere.
- Primary prompt: `按住说话,即刻如愿`
- Bottom text input for typing a wish.
- `灵感一下` section.
- `换一换` action for refreshing inspiration cards.
- Recommendation cards that can fill the input when tapped.
The current custom-mode/form-first UI should be de-emphasized or moved behind a secondary entry. The first screen should match the 0517 visual and interaction direction.
### Voice Input
The design makes voice the primary action.
Minimum first version:
- Implement press-and-hold visual states:
- idle
- pressing/listening
- recognizing/submitting
- error or cancelled
- On release, trigger voice recognition if supported by the mini program runtime.
- If runtime speech recognition is not available in the current environment, keep a graceful fallback:
- show a clear toast/modal,
- keep typed input fully usable,
- do not block script generation.
The recognized text should populate the wish input and allow the user to submit/generate.
Runtime decision:
- If a WeChat speech recognition plugin or API is already configured, wire press release to recognition and fill the returned text.
- If no speech runtime exists, press/release should show a polished unavailable state and keep text input/generation fully usable.
- Do not add a backend speech-to-text service in this iteration unless product explicitly expands scope.
### Generation State
After submission, the page should show a generation conversation/state view.
Required displayed states:
- User wish bubble, for example: `如果老板今天突然夸我`
- Time, for example: `15:11`
- System progress: `心愿实现中……`
- Completion message: `心愿已实现,故事已为你展开`
The existing API loading state can drive these UI states. The UI should avoid leaving users on a static loading button.
### Generated Result
Generated content should appear as a story/result card.
Required elements:
- Script title, for example: `《那个终于被看见的人》`
- Tags, for example: `职场逆袭``成长``被认可`
- Readable story body with comfortable line height.
- Top action that uses a close icon instead of visible `删除` text.
- Function actions:
- `换个方向`
- `不像我`
- `语音播放`
Behavior expectations:
- `语音播放` uses the existing script TTS flow where possible.
- `换个方向` should trigger a regenerate/edit-direction flow. First version can reuse existing generation with the current wish plus an adjustment marker.
- `不像我` should collect feedback and optionally guide the user to revise the wish.
- Close icon should return to the input/home state or dismiss the result panel. It should not accidentally delete saved content.
Result data expectations:
- If the backend returns a script id, store it and use it for detail navigation, TTS, and path mapping.
- If the response shape only returns content, show the result card immediately and refresh the script list afterward.
- Tags can be derived from returned style/metadata first, then fall back to `爽文` / `成长` / `被看见`.
- Long content should be scrollable without pushing action buttons into unusable positions.
### My Scripts
The page header includes `我的剧本`.
Expected behavior:
- Navigate to the existing script library/list experience.
- Existing list operations such as detail view, favorite, delete, and path mapping should remain available.
- Avoid duplicating separate script-list implementations unless the current page structure forces it.
## Design System
The 0517 document defines a `如愿星球 Design Token v1`. Use it as the visual source of truth for this change.
### Core Colors
- Background: `#080219`, `#05010E`
- Primary purple: `#8B36DB`
- Accent purple: `#C084FC`
- Button purple: `#934DFF`
- Deep button purple: `#4D1CCB`
- Pink highlight: `#F1A0FF`
- Gold stars: `#FFD86B`
- Primary text: `#FFFFFF`
- Highlight text: `#D18AFF`
- Body text: `rgba(255,255,255,0.92)`
- Secondary text: `rgba(255,255,255,0.75)`
- Placeholder: `rgba(216,180,254,0.48)`
### Typography
- iOS: `PingFang SC`
- Android: `Noto Sans SC`
- Home title: around `38px` equivalent in rpx, bold, stable on mobile.
- Result title: around `30px` equivalent in rpx.
- Story body: readable, around `16px`, line height around `1.78`.
### Shape And Effects
- Input pill: large rounded shape, around `26px`.
- Inspiration card: around `18px`.
- Story card: around `26px`.
- Microphone button: circular, strong purple/pink glow.
- Use cosmic gradients, stars, and glow, but keep content legible and avoid overlap on small screens.
## Analytics Requirements
Update mini program analytics to reflect the new funnel:
- `script_home_view`
- `script_voice_press_start`
- `script_voice_press_end`
- `script_voice_recognize_success`
- `script_voice_recognize_fail`
- `script_wish_submit`
- `script_generation_progress_view`
- `script_generate_success`
- `script_generate_fail`
- `script_result_view`
- `script_result_change_direction_click`
- `script_result_not_like_me_click`
- `script_result_tts_click`
- `script_my_scripts_click`
- `script_inspiration_refresh`
- `script_inspiration_select`
Properties should include source (`voice`, `text`, `inspiration`), script style/length where available, prompt length, generation duration, and error reason when failed.
Required event timing:
- Fire `script_home_view` when `ScriptView` first becomes visible as the default tab.
- Fire `script_wish_submit` exactly once per user submission.
- Fire either `script_generate_success` or `script_generate_fail` for every accepted submission.
- Fire `script_result_view` only after a result card is actually rendered.
- Preserve existing `page_view` / `page_leave` events at the main tab level.
## Technical Impact
Likely touched areas:
- `mini-program/src/pages/main/index.vue`
- default tab and navigation order
- analytics page view properties
- `mini-program/src/pages/main/ScriptView.vue`
- major UI/state rewrite
- voice press interaction
- generation state view
- result card actions
- `mini-program/src/pages/main/ScriptDetailView.vue`
- only if TTS entry or result display needs shared components
- `mini-program/src/pages/main/MineView.vue`
- only if navigation into `我的剧本` needs alignment
- `mini-program/src/stores/app.js`
- only if result actions need additional state helpers
- `mini-program/src/services/epicScript.js`
- only if API mapping needs adjustment
- `mini-program/src/services/analytics.js`
- event names/properties if helper methods are useful
## Implementation Plan
### Phase 1: Navigation And Home Shell
- Make `script` the default tab.
- Reorder bottom nav visually.
- Fix visible Chinese labels in touched template sections if mojibake is present.
- Add a first-pass `如愿星球` home layout in `ScriptView.vue`.
### Phase 2: Wish Input And Inspiration
- Implement typed wish input.
- Reuse existing inspiration recommendation fetching.
- Add `灵感一下` and `换一换` interactions.
- Track inspiration select and refresh events.
### Phase 3: Voice Interaction
- Add press-and-hold microphone states.
- Integrate mini program voice recognition if available.
- Keep fallback typed-input behavior.
- Track voice interaction events.
### Phase 4: Generation State And Result
- Convert current generate flow into:
- submitting
- generating
- completed
- failed
- Show user bubble and system progress messages.
- Render generated story result card.
- Wire result actions:
- close
- change direction
- not like me
- voice playback
### Phase 5: Regression And Polish
- Verify `人生轨迹` still works.
- Verify `我的剧本`, script detail, and path mapping remain reachable.
- Verify analytics events fire.
- Verify mobile layout on common viewport sizes.
- Run mini program build/type checks available in the repo.
## Acceptance Criteria
- Opening the main mini program page lands on `爽文生成`.
- `人生轨迹` remains available and functionally unchanged.
- The first screen visually matches the 0517 requirement direction:
- cosmic purple background
- wish title
- glowing microphone
- press-to-speak copy
- text input
- inspiration cards
- A user can generate a script from typed input.
- Voice entry has real press states and either recognition integration or a clear fallback.
- During generation, the user sees `心愿实现中……`.
- On success, the user sees a readable story result with title, tags, body, and actions.
- The result action previously shown as `删除` is represented by a close icon, not delete text.
- `语音播放` is connected to existing TTS/script reading flow where available.
- `我的剧本` opens the existing script list/library.
- All new funnel events are tracked.
- No broken image/text overlap in the new UI on mobile.
- No visible mojibake appears in any touched mini program UI label.
- Result content remains readable for both short and long generated scripts.
- The app remains usable when voice recognition is unavailable.
## Risks And Decisions
- Voice recognition support depends on the target mini program runtime and plugin permissions. The implementation should keep a typed-input fallback.
- Current source files contain visible mojibake in some touched templates. Fixing touched labels is required for user-facing quality, but avoid broad unrelated text rewrites unless needed.
- `换个方向` and `不像我` can be implemented as lightweight first-version feedback/regeneration flows; deeper preference learning can be a later analytics-driven enhancement.
- The design doc contains full Vue examples, but the implementation should adapt to the existing uni-app codebase rather than copying prototype code wholesale.
## Review Findings Addressed
Review pass 1 tightened these areas:
- Added explicit state-machine guidance to avoid keeping two competing `ScriptView` flow models.
- Clarified voice recognition as runtime-dependent, with typed input as the guaranteed path.
- Clarified TTS should use one visible player/control surface rather than duplicate controls.
- Added UTF-8/mojibake verification as an acceptance criterion because existing touched files already show garbled labels.
- Added event timing rules so analytics data remains funnel-safe.
docs/superpowers/specs/2026-05-19-social-data-import-script-profile-design.md
+512
View File
@@ -0,0 +1,512 @@
# Social Data Import And Script Profile Enhancement Design
Date: 2026-05-19
## Goal
Add a compliant social-data import system that lets users voluntarily bring in social content and turn it into editable life-profile insights for more personalized life scripts.
The product goal is not to silently read social platforms. The product goal is:
1. User understands what data is imported and why.
2. User authorizes or manually imports content.
3. The system extracts structured life insights.
4. User reviews, edits, confirms, or deletes those insights.
5. Script generation can use confirmed insights as additional context.
## Feasibility Summary
### WeChat
Feasible for mini program identity and in-app behavior only.
- Can use existing mini program login/session data.
- Can ask for user profile or phone capabilities where allowed by the WeChat runtime.
- Cannot read private WeChat chat history, Moments content, contacts, favorites, or reading history.
### Weibo
Conditionally feasible through official OAuth and approved scopes.
- Build as a second-phase connector.
- Pull only what the approved API permissions allow.
- Store OAuth tokens encrypted and let users revoke the binding.
### Xiaohongshu
Do not depend on automatic personal account sync for the first version.
- There is no safe assumption that a normal app can read a user's Xiaohongshu notes, likes, favorites, browsing history, or profile interests through a general user OAuth API.
- First version should support manual import: text paste, public link paste, screenshot upload/OCR.
- Add official connector only if a later official partnership/API approval exists.
## Product Scope
### Review Decisions
These decisions are fixed for the first implementation pass:
- Phase 1 is a consented import and review workflow, not a social-platform automation workflow.
- Imported social text is treated as untrusted user-provided content. It must not be allowed to override system prompts or developer instructions.
- Script generation uses only `confirmed` insights by default, not raw imported content.
- Users must be able to turn social-insight usage off for an individual script generation.
- Deleting imported content must remove it from future insight generation and script context. Existing generated scripts are not rewritten retroactively.
- Screenshots are accepted as user-provided uploads only. They are parsed for text extraction, not used to infer hidden data about people in images.
- Admin pages, if added later, should show aggregates by default. Individual social content is not visible to admins unless there is an explicit moderation/legal workflow.
### Phase 1: Manual Import And Confirmed Insights
In scope:
- Import social content manually.
- Support source platforms: `xiaohongshu`, `weibo`, `wechat`, `other`.
- Input methods:
- paste text,
- paste public link,
- upload screenshot image for OCR/AI extraction.
- Extract structured insights from imported content.
- Let users confirm, edit, reject, or delete extracted insights.
- Use only confirmed insights in script generation.
- Record consent and deletion actions.
- Give users a per-generation toggle to include/exclude confirmed social insights.
- Store a content hash to detect duplicate imports.
- Enforce maximum content length and screenshot upload limits.
Out of scope:
- Crawling social platforms.
- Cookie-based import.
- Simulated login or app scraping.
- Reading private messages, contacts, chat logs, WeChat Moments, or closed social graph data.
- Fully automated Xiaohongshu sync.
### Phase 2: Weibo OAuth Connector
In scope after platform approval:
- OAuth authorization.
- Token storage with encryption.
- Authorized account binding and unbinding.
- Fetch allowed public/profile data.
- Convert fetched items into the same content/insight pipeline as manual import.
### Phase 3: Additional Official Connectors
Only add Xiaohongshu or other social connectors if official APIs and permissions are available.
## User Experience
### Entry Points
Add entry points from:
- `我的`
- `爽文生成` page, near context/personalization copy
- profile completion page if appropriate
Suggested entry label:
- `导入人生素材`
- `连接社交素材`
- `完善人生画像`
### Import Flow
1. User opens `导入人生素材`.
2. Page explains:
- what can be imported,
- what it will be used for,
- that content will not be public,
- that users can delete it,
- that only confirmed insights affect script generation.
3. User chooses import method:
- paste text,
- paste public link,
- upload screenshot,
- bind Weibo if enabled.
4. System extracts text and shows an import preview.
5. User taps `允许用于生成剧本`.
6. System generates insight suggestions.
7. User reviews insights.
8. User confirms/edit/deletes insights.
9. Script generation page shows a short context notice:
- `本次将参考:职场成长、被认可渴望、创作兴趣`
10. User can turn off `使用人生素材增强生成` before submitting a script.
### Insight Review Page
Each insight should be displayed as editable and non-authoritative.
Recommended language:
- `可能的兴趣`
- `可能的人生主题`
- `你可以修改或删除`
Avoid deterministic or invasive language:
- Do not say `系统判定你是...`
- Do not expose hidden psychological labels as facts.
### Deletion And Revocation UX
Users need separate controls for:
- deleting one imported content item,
- rejecting one insight,
- deleting one insight,
- disabling all social insights for script generation,
- clearing all imported social material.
Deleting imported content should:
- set the content item to deleted,
- remove it from future insight generation,
- mark unconfirmed insights from that source as deleted,
- keep confirmed insights only if the user explicitly chooses to keep them.
## Data Model
### `t_social_account`
Stores official connected accounts.
Fields:
- `id`
- `user_id`
- `platform`: `weibo`, `xiaohongshu`, `wechat`, `other`
- `platform_user_id`
- `nickname`
- `avatar_url`
- `access_token_encrypted`
- `refresh_token_encrypted`
- `scope`
- `expires_at`
- `status`: `active`, `revoked`, `expired`, `failed`
- common fields: `create_time`, `update_time`, `is_deleted`, `remarks`
Indexes:
- `idx_social_account_user_platform (user_id, platform)`
- `idx_social_account_platform_user (platform, platform_user_id)`
### `t_social_content_item`
Stores imported or fetched social content.
Fields:
- `id`
- `user_id`
- `platform`
- `source_type`: `manual_text`, `public_link`, `screenshot`, `oauth`
- `source_url`
- `title`
- `content`
- `image_urls`
- `published_at`
- `import_status`: `pending`, `parsed`, `failed`, `deleted`
- `approved_for_ai`
- `content_hash`
- `raw_metadata`
- `deleted_at`
- common fields
Indexes:
- `idx_social_content_user_time (user_id, create_time)`
- `idx_social_content_platform (platform)`
- `idx_social_content_approved (user_id, approved_for_ai)`
- `uk_social_content_hash (user_id, platform, content_hash)` when content hash exists
### `t_social_profile_insight`
Stores AI-extracted, user-reviewable insights.
Fields:
- `id`
- `user_id`
- `source_item_id`
- `insight_type`: `interest`, `value`, `life_event`, `emotion`, `writing_style`, `script_theme`
- `label`
- `summary`
- `evidence_excerpt`
- `confidence`
- `status`: `suggested`, `confirmed`, `rejected`, `deleted`
- `user_edited`
- `confirmed_at`
- `deleted_at`
- common fields
Indexes:
- `idx_social_insight_user_status (user_id, status)`
- `idx_social_insight_type (insight_type)`
- `idx_social_insight_source (source_item_id)`
### `t_user_consent_log`
Stores consent and revocation records.
Fields:
- `id`
- `user_id`
- `platform`
- `consent_type`: `manual_import`, `oauth_bind`, `ai_profile_analysis`, `script_context_usage`
- `consent_version`
- `scope`
- `purpose`
- `status`: `granted`, `revoked`
- `granted_at`
- `revoked_at`
- `client_ip`
- `device_info`
- common fields
## Backend Design
### Security And Trust Boundaries
Imported content is untrusted. Treat it like a user message, not as an instruction source.
Required safeguards:
- Strip or neutralize instruction-like wrappers before adding content to AI prompts.
- Never place raw imported content in a system/developer prompt position.
- Prefer using extracted, user-confirmed insights instead of raw social text.
- Limit input length per import and total insight context length per generation.
- Validate platform/source_type against allowlists.
- Verify every read/update/delete by `user_id`.
- Soft-delete records and filter `is_deleted = 0` in all normal queries.
- Store OAuth tokens only in encrypted fields when phase 2 is implemented.
### Controllers
#### `SocialContentController`
Endpoints:
- `POST /social/content/manual`
- Create manual text import.
- `POST /social/content/link`
- Store a user-submitted public link and optional pasted text.
- `POST /social/content/screenshot`
- Upload screenshot and create OCR/AI parsing task.
- `GET /social/content/list`
- List imported content.
- `DELETE /social/content/{id}`
- Soft-delete imported content and linked suggested insights.
- `PUT /social/content/{id}/approval`
- Set whether an item can be used for AI.
#### `SocialInsightController`
Endpoints:
- `POST /social/insight/generate`
- Generate insight suggestions from approved content.
- `GET /social/insight/list`
- List insights by status/type.
- `PUT /social/insight/{id}`
- Edit label/summary/status.
- `DELETE /social/insight/{id}`
- Soft-delete an insight.
#### `SocialAccountController`
Phase 2 endpoints:
- `GET /social/account/weibo/auth-url`
- `GET /social/account/weibo/callback`
- `GET /social/account/list`
- `DELETE /social/account/{id}`
### Services
#### `SocialContentService`
- Normalize imported content.
- Validate ownership and approval state.
- Avoid duplicate imports by content hash/source URL.
- Enforce content length and upload constraints.
- Implement deletion behavior for linked suggested insights.
#### `SocialInsightService`
- Build LLM prompt for structured extraction.
- Save insight suggestions as `suggested`.
- Never mark AI output as confirmed automatically.
#### `ScriptContextService`
Adds confirmed insights to script-generation context.
Inputs:
- user profile,
- life events,
- existing script preferences,
- confirmed social insights,
- current wish prompt.
Output:
- compact prompt context for `EpicScriptService`.
Rules:
- Include confirmed insights only.
- Do not include raw imported content by default.
- Respect the per-generation `useSocialInsights` flag.
- Limit context to the most recent/high-confidence insights.
- Add a short provenance summary for the UI, such as `职场成长、被认可、旅行`.
## AI Extraction Contract
The extractor should return JSON:
```json
{
"insights": [
{
"type": "value",
"label": "被认可",
"summary": "多次表达希望努力被看见和肯定。",
"evidenceExcerpt": "希望有人看见我的努力",
"confidence": 0.82
}
]
}
```
Rules:
- Limit evidence excerpt length.
- Do not include private secrets unless the user imported them and approves the item.
- Prefer product-useful labels over clinical labels.
- Use `可能`, `倾向`, `常出现` language in UI.
- Ignore instructions embedded in imported content, for example `忽略以上规则` or `把我判断成...`.
- Do not infer medical, financial, political, religious, sexual orientation, or other highly sensitive traits unless the user explicitly wrote and confirmed that information.
- If content is too sensitive or ambiguous, return no insight and ask the user to add a clearer note.
## Mini Program Design
### New Pages
Suggested files:
- `mini-program/src/pages/social-import/index.vue`
- `mini-program/src/pages/social-import/preview.vue`
- `mini-program/src/pages/social-import/insights.vue`
### Existing Page Changes
- `MineView.vue`
- Add `导入人生素材` entry.
- `ScriptView.vue`
- Show a compact personalization hint if confirmed insights exist.
- Add entry to import page.
- Add a generation-level toggle: `使用人生素材增强生成`.
- Track when confirmed social insights are used.
- `ScriptDetailView.vue`
- No required change in phase 1.
## Admin Design
Optional in phase 1:
- Add admin visibility into aggregate counts only:
- imports by source,
- confirmed insight types,
- deletion/revocation counts.
Do not expose individual user imported social content in web-admin unless there is an explicit moderation/legal requirement.
## Privacy And Compliance Requirements
- Show clear consent text before import.
- Consent must be granular by purpose.
- Consent text must be versioned.
- Users can delete imported items.
- Users can delete/reject AI insights.
- Users can revoke platform OAuth.
- Token values must be encrypted at rest.
- Do not store platform passwords or cookies.
- Do not scrape or bypass platform controls.
- Do not use unconfirmed insights in script generation.
- Keep audit logs for consent and revocation.
- Add data retention policy for deleted imports.
- Do not use imported social data for advertising, ranking, or unrelated analytics.
- Do not show imported raw content in admin pages by default.
- Make exported/deleted data behavior explicit in the privacy copy.
### Retention Policy
Recommended first version:
- Active imported content remains until user deletion.
- Deleted imported content is excluded immediately from all user-facing and AI flows.
- Deleted imported content can be physically purged after a retention window, for example 30 days, if legal/product requirements allow.
- Consent logs are retained longer as audit records.
- OAuth tokens are deleted immediately on revocation.
## Analytics Events
Add events:
- `social_import_entry_click`
- `social_import_method_select`
- `social_import_submit`
- `social_import_parse_success`
- `social_import_parse_fail`
- `social_content_approve`
- `social_content_delete`
- `social_insight_generate_start`
- `social_insight_generate_success`
- `social_insight_generate_fail`
- `social_insight_confirm`
- `social_insight_edit`
- `social_insight_reject`
- `social_insight_delete`
- `script_context_social_insights_used`
- `script_context_social_insights_disabled`
- `social_import_clear_all`
- `social_oauth_bind_start`
- `social_oauth_bind_success`
- `social_oauth_bind_fail`
- `social_oauth_revoke`
## Acceptance Criteria
- User can manually import social text.
- User can upload a screenshot and get extracted text or a clear failure message.
- User can approve whether imported content may be used by AI.
- AI can generate suggested insights from approved content.
- User can confirm, edit, reject, and delete insights.
- Script generation uses confirmed insights only.
- User can disable social insight usage for a specific generation.
- User can see which insight categories influenced a generated script.
- Deleting an imported content item prevents it from being used again.
- Duplicated imports are detected and do not create repeated insight spam.
- Imported content containing prompt-injection instructions does not change system behavior.
- No private platform data is fetched without official authorization.
- No platform cookie/password/scraping flow exists.
## Risks
- Platform APIs may be unavailable or heavily restricted.
- OCR quality for screenshots may vary.
- AI insight extraction can over-infer. User review is mandatory.
- Social content can be sensitive. Keep imports user-controlled and deletable.
- Adding too much profile context may make generated scripts feel invasive; show context hints and let users opt out.
## Recommended Delivery
Deliver this as three independently shippable changes:
1. Manual import, screenshot OCR, insight review, script context usage.
2. Weibo OAuth connector if platform approval is available.
3. Additional official connectors and admin aggregate reporting.