首頁 探索 說明
登入
skl
/
skl-service
2
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: c2779fd235
分支列表 標籤列表
skl-service
/
service-login
/
app
/
controller
/
pwdlogin.js

pwdlogin.js 2.6 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. 'use strict';
    2. 

  2. 

  3. const Controller = require('egg').Controller;
    4. 

  4. const sm3 = require('sm3');
    5. 

  5. const assert = require('assert');
    6. 

  6. const jsonwebtoken = require('jsonwebtoken');
    7. 

  7. const svgCaptcha = require('svg-captcha');
    8. 

  8. class LoginController extends Controller {
    9. 

  9.   constructor(ctx) {
    10. 

  10.     super(ctx);
    11. 

  11.     this.model = this.ctx.model.AdminUser;
    12. 

  12.   }
    13. 

  13.   // 用户名密码登录
    14. 

  14.   async auth() {
    15. 

  15.     const { userName, password, uuid, code } = this.ctx.request.body;
    16. 

  16.     assert(userName, '缺少用户名');
    17. 

  17.     assert(password, '缺少密码');
    18. 

  18.     assert(uuid, '缺少uuid');
    19. 

  19.     assert(code, '缺少验证码');
    20. 

  20.     const { jwt } = this.app.config;
    21. 

  21.     let msg;
    22. 

  22.     const ban = await this.app.redis.get(userName);
    23. 

  23.     if (ban) {
    24. 

  24.       if (ban >= this.app.config.ban) {
    25. 

  25.         this.ctx.body = { errcode: -1001, errmsg: '限制登录, 请在5分钟后重试', data: '' };
    26. 

  26.         return;
    27. 

  27.       }
    28. 

  28.       await this.app.redis.set(userName, Number(ban) + 1, 'EX', this.app.config.bantime);
    29. 

  29.     } else {
    30. 

  30.       await this.app.redis.set(userName, 1, 'EX', this.app.config.bantime);
    31. 

  31.     }
    32. 

  32.     // 验证码
    33. 

  33.     const redisCode = await this.app.redis.get(uuid);
    34. 

  34.     if (!redisCode) {
    35. 

  35.       this.ctx.body = { errcode: -1001, errmsg: '验证码已失效', data: '' };
    36. 

  36.       return;
    37. 

  37.     }
    38. 

  38.     if (code !== redisCode) {
    39. 

  39.       this.ctx.body = { errcode: -1001, errmsg: '验证码错误', data: '' };
    40. 

  40.       return;
    41. 

  41.     }
    42. 

  42.     const res = await this.model.findOne({ userName });
    43. 

  43.     if (!res) {
    44. 

  44.       this.ctx.body = { errcode: -1001, errmsg: '用户不存在', data: '' };
    45. 

  45.       return;
    46. 

  46.     }
    47. 

  47.     // 密码
    48. 

  48.     const pwd = sm3(`${password}:${res.salt}`);
    49. 

  49.     if (res.password !== pwd) {
    50. 

  50.       this.ctx.body = { errcode: -1001, errmsg: '密码错误', data: '' };
    51. 

  51.       return;
    52. 

  52.     }
    53. 

  53.     const token = jsonwebtoken.sign({ ...res }, jwt.secret, { expiresIn: jwt.expiresIn, issuer: jwt.issuer });
    54. 

  54.     const userinfo = { userName, name: res.name || null, phone: res.phone || null, id: res._id || null };
    55. 

  55.     if (token && userinfo) msg = { errcode: 0, errmsg: '', data: { userinfo, token } };
    56. 

  56.     this.ctx.body = msg;
    57. 

  57.   }
    58. 

  58.   // 获取验证码
    59. 

  59.   async get_verification_code() {
    60. 

  60.     const uuid = this.ctx.query.uuid;
    61. 

  61.     const captcha = svgCaptcha.createMathExpr({
    62. 

  62.       // 翻转颜色
    63. 

  63.       inverse: false,
    64. 

  64.       // 字体大小
    65. 

  65.       fontSize: 36,
    66. 

  66.       // 噪声线条数
    67. 

  67.       noise: 2,
    68. 

  68.       // 宽度
    69. 

  69.       width: 80,
    70. 

  70.       // 高度
    71. 

  71.       height: 30,
    72. 

  72.     });
    73. 

  73.     // 保存到redis,忽略大小写
    74. 

  74.     const code = captcha.text.toLowerCase();
    75. 

  75.     await this.app.redis.set(uuid, code, 'EX', 60 * 5);
    76. 

  76.     this.ctx.response.type = 'image/svg+xml';
    77. 

  77.     this.ctx.body = captcha.data;
    78. 

  78.   }
    79. 

  79. }
    80. 

  80. 

  81. module.exports = LoginController;
    82.