rsgl/expressServer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

完善登录逻辑

Browse Source 
完善session和cookie的使用
This commit is contained in:
rsgltzyd 2024-05-14 23:57:42 +08:00
parent 757dbff108
commit da3642c7c4
4 changed files with 65 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
app.js
View File

@ -1,10 +1,10 @@
const createError = require('http-errors'); const createError = require('http-errors');
const express = require('express'); const express = require('express');
const path = require('path'); const path = require('path');
const cookieParser = require('cookie-parser');
const logger = require('morgan'); const logger = require('morgan');
const cors = require('cors'); const cors = require('cors');
const session = require('express-session'); const session = require('express-session');
const cookieParser = require('cookie-parser');
const indexRouter = require('./routes/index'); const indexRouter = require('./routes/index');
const mongodbConfig = require('./db/mongodb.config'); const mongodbConfig = require('./db/mongodb.config');
@ -15,26 +15,24 @@ const app = express();
require("dotenv").config(); require("dotenv").config();
const dbAccount = process.env.DB_ACCOUNT; const dbAccount = process.env.DB_ACCOUNT;
const dbPassword = process.env.DB_PASSWORD; const dbPassword = process.env.DB_PASSWORD;
const loginSecret = process.env.SESSION_SECRET;
mongodbConfig.connectMongoDB(dbAccount, dbPassword); mongodbConfig.connectMongoDB(dbAccount, dbPassword);
app.use(cors()); app.use(cors());
app.use(logger('dev')); app.use(logger('dev'));
app.use(express.json()); app.use(express.json());
app.use(express.urlencoded({ extended: false })); app.use(express.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public'))); app.use(express.static(path.join(__dirname, 'public')));
app.use(cookieParser());
app.use(session({ app.use(session({
secret: 'sessiontest', name: 'identityKey',
secret: loginSecret,
resave: false, resave: false,
saveUninitialized: false, saveUninitialized: false,
cookie: { cookie: {
path: '/',
name: 'login',
secret: 'sessiontest',
secure: false, secure: false,
maxAge: 1000 * 60 * 60, maxAge: 1000 * 60 * 10,
}, },
name: 'ivan',
})); }));
app.use('/', indexRouter); app.use('/', indexRouter);

8
controllers/userController.js
View File

@ -10,3 +10,11 @@ exports.user_list = expressAsyncHandler(async (req, res, next) => {
next(err); next(err);
} }
}); });
exports.find_user_login = expressAsyncHandler(async (account) => {
try {
return await User.findOne({ account: account });
} catch (err) {
next(err);
}
});

53
routes/index.js
View File

@ -14,28 +14,57 @@ router.get('/', function (req, res, next) {
}); });
router.get('/user', async function (req, res, next) { router.get('/user', async function (req, res, next) {
console.log(req.session);
console.log(req.session.account);
if (req.session.account === null || req.session.account === '' || req.session.account === undefined) {
res.send('not login');
return;
}
let us = await user_controller.user_list(); let us = await user_controller.user_list();
us = JSON.stringify(us); us = JSON.stringify(us);
res.send(us); res.send(us);
}) })
router.post('/login', async function (req, res, next) { router.post('/login', async function (req, res, next) {
let us = await user_controller.user_list();
const body = JSON.parse(JSON.stringify(req.body)); const body = JSON.parse(JSON.stringify(req.body));
if (StringUtils.isNotEmpty(body)) { if (!StringUtils.isNotEmpty(body)) {
if (body.account === '' || body.account === undefined || body.account === null) { res.json({ ret_code: -1, ret_msg: '登录失败' });
res.send('account is null'); }
} const account = body.account;
if (body.password === '' || body.password === undefined || body.password === null) { const password = body.password;
res.send('password is null');
} if (account === '' || account === undefined || account === null) {
return res.json({ ret_code: -1, ret_msg: '没有填写账号' });
}
if (password === '' || password === undefined || password === null) {
return res.json({ ret_code: -1, ret_msg: '没有填写密码' });
} }
const user = await user_controller.find_user_login(account);
if (!user) {
return res.json({ ret_code: -1, ret_msg: '账号不存在' })
}
if (user.password != password) {
return res.json({ ret_code: -1, ret_msg: '密码错误' })
}
req.session.regenerate((err) => {
if (err) {
return res.json({ ret_code: -1, ret_msg: '登录失败' });
}
req.session.account = account;
console.log(req.session.account);
res.json({ ret_code: 0, ret_msg: '登录成功' });
});
});
router.get('/logout', async function (req, res, next) {
console.log(req.session); console.log(req.session);
console.log(body.account); console.log(req.sessionID);
req.session.userid = body.account; console.log(req.session.account);
console.log(req.session); console.log(req.session.cookie);
res.send('return ok'); res.json({ ret_code: 1, ret_msg: '成功' });
}); });
module.exports = router; module.exports = router;

10
utils/LoginUtil.js Normal file
View File

@ -0,0 +1,10 @@
exports.aopMiddleware = function (req, res, next) {
console.log(req.url);
console.log(req.method);
if (req.session) {
}
next();
}