Halaman utama Jelajahi Bantuan
Daftar Masuk
184-template-172
/
mini-starter
ter-fork dari 155-template-138/mini-starter
2
0
Fork 0
Berkas
Pohon: 4de8f8002e
Ranting Tag
mini-starter
/
packages
/
auth-core
/
src
/
jwt.service.ts

jwt.service.ts 2.2 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384 
  1. import jwt, { SignOptions } from 'jsonwebtoken';
    2. 

  2. import debug from 'debug';
    3. 

  3. 

  4. const logger = {
    5. 

  5.   info: debug('auth-core:jwt:info'),
    6. 

  6.   error: debug('auth-core:jwt:error')
    7. 

  7. };
    8. 

  8. 

  9. const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key';
    10. 

  10. const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || '7d';
    11. 

  11. 

  12. export interface JWTPayload {
    13. 

  13.   id: number;
    14. 

  14.   username: string;
    15. 

  15.   roles?: string[];
    16. 

  16.   openid?: string;
    17. 

  17. }
    18. 

  18. 

  19. export class JWTService {
    20. 

  20.   /**
    21. 

  21.    * 生成 JWT token
    22. 

  22.    * @param payload JWT payload 数据
    23. 

  23.    * @param expiresIn 过期时间
    24. 

  24.    * @returns JWT token
    25. 

  25.    */
    26. 

  26.   static generateToken(payload: JWTPayload, expiresIn?: string): string {
    27. 

  27.     if (!payload.id || !payload.username) {
    28. 

  28.       throw new Error('用户ID和用户名不能为空');
    29. 

  29.     }
    30. 

  30. 

  31.     try {
    32. 

  32.       const options: SignOptions = {
    33. 

  33.         expiresIn: expiresIn || JWT_EXPIRES_IN as SignOptions['expiresIn']
    34. 

  34.       };
    35. 

  35.       return jwt.sign(payload, JWT_SECRET, options);
    36. 

  36.     } catch (error) {
    37. 

  37.       logger.error('生成JWT token失败:', error);
    38. 

  38.       throw new Error('生成token失败');
    39. 

  39.     }
    40. 

  40.   }
    41. 

  41. 

  42.   /**
    43. 

  43.    * 验证 JWT token
    44. 

  44.    * @param token JWT token
    45. 

  45.    * @returns 验证后的 payload
    46. 

  46.    */
    47. 

  47.   static verifyToken(token: string): JWTPayload {
    48. 

  48.     try {
    49. 

  49.       return jwt.verify(token, JWT_SECRET) as JWTPayload;
    50. 

  50.     } catch (error) {
    51. 

  51.       logger.error('验证JWT token失败:', error);
    52. 

  52.       throw new Error('无效的token');
    53. 

  53.     }
    54. 

  54.   }
    55. 

  55. 

  56.   /**
    57. 

  57.    * 解码 JWT token(不验证签名)
    58. 

  58.    * @param token JWT token
    59. 

  59.    * @returns 解码后的 payload
    60. 

  60.    */
    61. 

  61.   static decodeToken(token: string): JWTPayload | null {
    62. 

  62.     try {
    63. 

  63.       return jwt.decode(token) as JWTPayload;
    64. 

  64.     } catch (error) {
    65. 

  65.       logger.error('解码JWT token失败:', error);
    66. 

  66.       return null;
    67. 

  67.     }
    68. 

  68.   }
    69. 

  69. 

  70.   /**
    71. 

  71.    * 获取 token 的剩余有效期(秒)
    72. 

  72.    * @param token JWT token
    73. 

  73.    * @returns 剩余有效期(秒),如果 token 无效则返回 0
    74. 

  74.    */
    75. 

  75.   static getTokenRemainingTime(token: string): number {
    76. 

  76.     try {
    77. 

  77.       const decoded = jwt.verify(token, JWT_SECRET) as JWTPayload & { exp: number };
    78. 

  78.       const currentTime = Math.floor(Date.now() / 1000);
    79. 

  79.       return Math.max(0, decoded.exp - currentTime);
    80. 

  80.     } catch (error) {
    81. 

  81.       return 0;
    82. 

  82.     }
    83. 

  83.   }
    84. 

  84. }
    85.