Home Esplora Aiuto
Registrati Accedi
186-template-175
/
mini-starter
forkato da 155-template-138/mini-starter
2
0
Forka 0
File
Albero (Tree): ba803d4246
Rami (Branch) Tag
mini-starter
/
packages
/
auth-module
/
src
/
services
/
auth.service.ts

auth.service.ts 2.6 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596 
  1. import { UserService } from '@d8d/user-module';
    2. 

  2. import { DisabledStatus } from '@d8d/shared-types';
    3. 

  3. import { JWTUtil } from '@d8d/shared-utils';
    4. 

  4. import debug from 'debug';
    5. 

  5. 

  6. const logger = {
    7. 

  7.   info: debug('backend:auth:info'),
    8. 

  8.   error: debug('backend:auth:error')
    9. 

  9. }
    10. 

  10. 

  11. const ADMIN_USERNAME = 'admin';
    12. 

  12. const ADMIN_PASSWORD = 'admin123';
    13. 

  13. 

  14. export class AuthService {
    15. 

  15.   private userService: UserService;
    16. 

  16. 

  17.   constructor(userService: UserService) {
    18. 

  18.     this.userService = userService;
    19. 

  19.   }
    20. 

  20. 

  21.   async ensureAdminExists(): Promise<any> {
    22. 

  22.     try {
    23. 

  23.       let admin = await this.userService.getUserByUsername(ADMIN_USERNAME);
    24. 

  24.       if (!admin) {
    25. 

  25.         logger.info('Admin user not found, creating default admin account');
    26. 

  26.         admin = await this.userService.createUser({
    27. 

  27.           username: ADMIN_USERNAME,
    28. 

  28.           password: ADMIN_PASSWORD,
    29. 

  29.           nickname: '系统管理员',
    30. 

  30.           isDisabled: DisabledStatus.ENABLED
    31. 

  31.         });
    32. 

  32.         logger.info('Default admin account created successfully');
    33. 

  33.       }
    34. 

  34.       return admin;
    35. 

  35.     } catch (error) {
    36. 

  36.       logger.error('Failed to ensure admin account exists:', error);
    37. 

  37.       throw error;
    38. 

  38.     }
    39. 

  39.   }
    40. 

  40. 

  41.   async login(username: string, password: string): Promise<{ token: string; user: any }> {
    42. 

  42.     try {
    43. 

  43.       // 确保admin用户存在
    44. 

  44.       if (username === ADMIN_USERNAME) {
    45. 

  45.         await this.ensureAdminExists();
    46. 

  46.       }
    47. 

  47. 

  48.       const user = await this.userService.getUserByUsername(username);
    49. 

  49.       if (!user) {
    50. 

  50.         throw new Error('User not found');
    51. 

  51.       }
    52. 

  52. 

  53.       // 检查用户是否被禁用
    54. 

  54.       if (user.isDisabled === DisabledStatus.DISABLED) {
    55. 

  55.         throw new Error('User account is disabled');
    56. 

  56.       }
    57. 

  57. 

  58.       const isPasswordValid = await this.userService.verifyPassword(user, password);
    59. 

  59.       if (!isPasswordValid) {
    60. 

  60.         throw new Error('Invalid password');
    61. 

  61.       }
    62. 

  62. 

  63.       const token = this.generateToken(user);
    64. 

  64.       return { token, user };
    65. 

  65.     } catch (error) {
    66. 

  66.       logger.error('Login error:', error);
    67. 

  67.       throw error;
    68. 

  68.     }
    69. 

  69.   }
    70. 

  70. 

  71.   generateToken(user: any, expiresIn?: string): string {
    72. 

  72.     return JWTUtil.generateToken(user, {}, expiresIn);
    73. 

  73.   }
    74. 

  74. 

  75.   verifyToken(token: string): any {
    76. 

  76.     return JWTUtil.verifyToken(token);
    77. 

  77.   }
    78. 

  78. 

  79.   async logout(token: string): Promise<void> {
    80. 

  80.     try {
    81. 

  81.       // 验证token有效性
    82. 

  82.       const decoded = this.verifyToken(token);
    83. 

  83.       if (!decoded) {
    84. 

  84.         throw new Error('Invalid token');
    85. 

  85.       }
    86. 

  86. 

  87.       // 实际项目中这里可以添加token黑名单逻辑
    88. 

  88.       // 或者调用Redis等缓存服务使token失效
    89. 

  89. 

  90.       return Promise.resolve();
    91. 

  91.     } catch (error) {
    92. 

  92.       console.error('Logout failed:', error);
    93. 

  93.       throw error;
    94. 

  94.     }
    95. 

  95.   }
    96. 

  96. }
    97.