Inicio Explorar Axuda
Iniciar sesión
util
/
service-auth
2
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 3d1f6efcaa
Ramas Etiquetas
service-auth
/
app
/
service
/
user
/
login.js

login.js 2.1 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. 'use strict';
    2. 

  2. 

  3. const assert = require('assert');
    4. 

  4. const _ = require('lodash');
    5. 

  5. const moment = require('moment');
    6. 

  6. const { ObjectId } = require('mongoose').Types;
    7. 

  7. const { CrudService } = require('naf-framework-mongoose/lib/service');
    8. 

  8. const { BusinessError, ErrorCode } = require('naf-core').Error;
    9. 

  9. const jwt = require('jsonwebtoken');
    10. 

  10. const uuid = require('uuid');
    11. 

  11. 

  12. class LoginService extends CrudService {
    13. 

  13.   constructor(ctx) {
    14. 

  14.     super(ctx, 'login');
    15. 

  15.     this.model = this.ctx.model.User;
    16. 

  16.   }
    17. 

  17.   async login({ login_id, password }) {
    18. 

  18.     assert(login_id, '请输入登录用户名');
    19. 

  19.     assert(password, '请输入密码');
    20. 

  20.     const user = await this.checkUser(login_id, password);
    21. 

  21.     const jwt_user = await this.createJwt(user);
    22. 

  22.     const state = uuid();
    23. 

  23.     const key = `free:auth:state:${state}`;
    24. 

  24.     await this.app.redis.set(key, jwt_user, 'EX', 60 * 60 * 24);
    25. 

  25.     return { key };
    26. 

  26.   }
    27. 

  27. 

  28.   async checkUser(login_id, password) {
    29. 

  29.     const user = await this.model.findOne({ login_id }, '+password');
    30. 

  30.     if (!user) throw new BusinessError(ErrorCode.USER_NOT_EXIST, '用户不存在');
    31. 

  31.     if (user.password.secret !== password) {
    32. 

  32.       throw new BusinessError(ErrorCode.BAD_PASSWORD, '用户密码错误');
    33. 

  33.     }
    34. 

  34.     return JSON.parse(JSON.stringify(user));
    35. 

  35.   }
    36. 

  36. 

  37.   // 创建登录Token
    38. 

  38.   async createJwt({ id, login_id, ...info }) {
    39. 

  39.     info = _.omit(info, [ '_v', 'meta' ]);
    40. 

  40.     const { secret, expiresIn = '1d' } = this.config.jwt;
    41. 

  41.     const subject = login_id;
    42. 

  42.     const res = { id, login_id, ...info };
    43. 

  43.     const token = await jwt.sign(res, secret, { expiresIn, subject });
    44. 

  44.     return token;
    45. 

  45.   }
    46. 

  46. 

  47.   // 取得redis内token信息
    48. 

  48.   async token({ key }) {
    49. 

  49.     assert(key, 'key不能为空');
    50. 

  50.     const token = await this.app.redis.get(key);
    51. 

  51.     if (!token) {
    52. 

  52.       throw new BusinessError(ErrorCode.SERVICE_FAULT, 'token已经过期');
    53. 

  53.     }
    54. 

  54.     // 转换成用户信息,给过去
    55. 

  55.     let res = jwt.decode(token);
    56. 

  56.     res = _.pick(res, [ 'login_id', '_tenant', 'id', 'name', 'role', 'status' ]);
    57. 

  57.     return res;
    58. 

  58.   }
    59. 

  59. 

  60.   // 删除操作
    61. 

  61.   async destroy({ key }) {
    62. 

  62.     const res = await this.app.redis.del(key);
    63. 

  63.     return res;
    64. 

  64.   }
    65. 

  65. }
    66. 

  66. 

  67. module.exports = LoginService;
    68.