service-platform
/
service-auth


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110
							'use strict';

const assert = require('assert');
const _ = require('lodash');
const { ObjectId } = require('mongoose').Types;
const { CrudService } = require('naf-framework-mongoose/lib/service');
const { BusinessError, ErrorCode } = require('naf-core').Error;
const jwt = require('jsonwebtoken');
const uuid = require('uuid');

class LoginService extends CrudService {
  constructor(ctx) {
    super(ctx, 'login');
    this.model = this.ctx.model.User;
    this.rmodel = this.ctx.model.Role;
  }

  // 用户登录
  async login(data) {
    const { phone, passwd } = data;
    // 根据用户输入的手机号查询其他用户表中是否存在相应数据
    const user = await this.model.findOne({ phone });
    // 如果用户不存在抛出异常
    if (!user) {
      throw new BusinessError(ErrorCode.USER_NOT_EXIST);
    }
    const _user = await this.model.findOne({ phone }, '+passwd');
    // 将用户输入的密码进行加密并与查询到的用户数据密码相比对
    const pas = await this.createJwtPwd(passwd);
    // 如果两个密码不一致抛出异常
    if (pas !== _user.passwd.secret) {
      throw new BusinessError(ErrorCode.BAD_PASSWORD);
    }
    if (_user.role === '2' || _user.role === '3') {
      const url = 'http://127.0.0.1:9004/api/market/user/' + _user.uid;
      const marketuser = await this.ctx.curl(url, {
        method: 'get',
        headers: {
          'content-type': 'application/json',
        },
        dataType: 'json',
      });
      if (marketuser.data.data.status !== '1') {
        throw new BusinessError(ErrorCode.ACCESS_DENIED);
      }
    } else if (_user.role === '6') {
      const url = 'http://127.0.0.1:9004/api/market/expertsuser/' + _user.uid;
      const expertsuser = await this.ctx.curl(url, {
        method: 'get',
        headers: {
          'content-type': 'application/json',
        },
        dataType: 'json',
      });
      if (expertsuser.data.data.status !== '1') {
        throw new BusinessError(ErrorCode.ACCESS_DENIED);
      }
    }
    // 取出用户的类型，根据用户类型返回相应信息
    const state = uuid();
    const key = `free:auth:state:${state}`;
    const _menus = [];
    for (const elm of user.menus) {
      const _menu = await this.rmodel.findById({ _id: ObjectId(elm) });
      if (_menu) {
        _menus.push({ id: elm, role_name: _menu.role_name, url: _menu.url });
      }
    }
    user.menus = JSON.stringify(_menus);
    const token = await this.createJwt(user);
    await this.app.redis.set(key, token, 'EX', 60 * 60 * 24);
    return { key };
  }

  // 创建登录Token
  async createJwtPwd(password) {
    const { secret, expiresIn, issuer } = this.config.jwt;
    const token = await jwt.sign(password, secret);
    return token;
  }

  // 创建登录Token
  async createJwt({ id, name, uid, phone, role, menus, remark, openid }) {
    const { secret, expiresIn = '1d', issuer = role } = this.config.jwt;
    const subject = phone;
    const res = { uid: id, userid: uid, name, phone, role, menus, openid, remark };
    const token = await jwt.sign(res, secret, { expiresIn, issuer, subject });
    return token;
  }

  // 取得redis内token信息
  async token({ key }) {
    assert(key, 'key不能为空');
    const token = await this.app.redis.get(key);
    if (!token) {
      throw new BusinessError(ErrorCode.SERVICE_FAULT, 'token已经过期');
    }
    return { token };
  }

  // 删除操作
  async destroy({ key }) {
    const res = await this.app.redis.del(key);
    console.log(res);
    return res;
  }


}
module.exports = LoginService;