Home Explore Help
Register Sign In
188-template-179
/
mini-starter
forked from 155-template-138/mini-starter
2
0
Fork 0
Files
Tree: 40a0113481
Branches Tags
mini-starter
/
packages
/
server
/
src
/
utils
/
jwt.util.ts

jwt.util.ts 2.5 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. import jwt, { SignOptions } from 'jsonwebtoken';
    2. 

  2. import { UserEntity } from '../modules/users/user.entity';
    3. 

  3. import debug from 'debug';
    4. 

  4. 

  5. const logger = {
    6. 

  6.   info: debug('backend:jwt:info'),
    7. 

  7.   error: debug('backend:jwt:error')
    8. 

  8. };
    9. 

  9. 

  10. const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key';
    11. 

  11. const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || '7d';
    12. 

  12. 

  13. export interface JWTPayload {
    14. 

  14.   id: number;
    15. 

  15.   username: string;
    16. 

  16.   roles?: string[];
    17. 

  17.   openid?: string;
    18. 

  18. }
    19. 

  19. 

  20. export class JWTUtil {
    21. 

  21.   /**
    22. 

  22.    * 生成 JWT token
    23. 

  23.    * @param user 用户实体
    24. 

  24.    * @param additionalPayload 额外的 payload 数据
    25. 

  25.    * @param expiresIn 过期时间
    26. 

  26.    * @returns JWT token
    27. 

  27.    */
    28. 

  28.   static generateToken(user: UserEntity, additionalPayload: Partial<JWTPayload> = {}, expiresIn?: string): string {
    29. 

  29.     if (!user.id || !user.username) {
    30. 

  30.       throw new Error('用户ID和用户名不能为空');
    31. 

  31.     }
    32. 

  32. 

  33.     const payload: JWTPayload = {
    34. 

  34.       id: user.id,
    35. 

  35.       username: user.username,
    36. 

  36.       roles: user.roles?.map(role => role.name) || [],
    37. 

  37.       openid: user.openid || undefined,
    38. 

  38.       ...additionalPayload
    39. 

  39.     };
    40. 

  40. 

  41.     try {
    42. 

  42.       const options: SignOptions = {
    43. 

  43.         expiresIn: expiresIn || JWT_EXPIRES_IN as SignOptions['expiresIn']
    44. 

  44.       };
    45. 

  45.       return jwt.sign(payload, JWT_SECRET, options);
    46. 

  46.     } catch (error) {
    47. 

  47.       logger.error('生成JWT token失败:', error);
    48. 

  48.       throw new Error('生成token失败');
    49. 

  49.     }
    50. 

  50.   }
    51. 

  51. 

  52.   /**
    53. 

  53.    * 验证 JWT token
    54. 

  54.    * @param token JWT token
    55. 

  55.    * @returns 验证后的 payload
    56. 

  56.    */
    57. 

  57.   static verifyToken(token: string): JWTPayload {
    58. 

  58.     try {
    59. 

  59.       return jwt.verify(token, JWT_SECRET) as JWTPayload;
    60. 

  60.     } catch (error) {
    61. 

  61.       logger.error('验证JWT token失败:', error);
    62. 

  62.       throw new Error('无效的token');
    63. 

  63.     }
    64. 

  64.   }
    65. 

  65. 

  66.   /**
    67. 

  67.    * 解码 JWT token(不验证签名)
    68. 

  68.    * @param token JWT token
    69. 

  69.    * @returns 解码后的 payload
    70. 

  70.    */
    71. 

  71.   static decodeToken(token: string): JWTPayload | null {
    72. 

  72.     try {
    73. 

  73.       return jwt.decode(token) as JWTPayload;
    74. 

  74.     } catch (error) {
    75. 

  75.       logger.error('解码JWT token失败:', error);
    76. 

  76.       return null;
    77. 

  77.     }
    78. 

  78.   }
    79. 

  79. 

  80.   /**
    81. 

  81.    * 获取 token 的剩余有效期(秒)
    82. 

  82.    * @param token JWT token
    83. 

  83.    * @returns 剩余有效期(秒),如果 token 无效则返回 0
    84. 

  84.    */
    85. 

  85.   static getTokenRemainingTime(token: string): number {
    86. 

  86.     try {
    87. 

  87.       const decoded = jwt.verify(token, JWT_SECRET) as JWTPayload & { exp: number };
    88. 

  88.       const currentTime = Math.floor(Date.now() / 1000);
    89. 

  89.       return Math.max(0, decoded.exp - currentTime);
    90. 

  90.     } catch (error) {
    91. 

  91.       return 0;
    92. 

  92.     }
    93. 

  93.   }
    94. 

  94. }
    95.