packages/ui/certd-server/src/modules/login/service/login-service.ts

import { Config, Inject, Provide } from '@midwayjs/core';
import { UserService } from '../../sys/authority/service/user-service.js';
import jwt from 'jsonwebtoken';
import { CommonException } from '@certd/lib-server';
import { RoleService } from '../../sys/authority/service/role-service.js';
import { UserEntity } from '../../sys/authority/entity/user.js';
import { SysSettingsService } from '@certd/lib-server';
import { SysPrivateSettings } from '@certd/lib-server';

/**
 * 系统用户
 */
@Provide()
export class LoginService {
  @Inject()
  userService: UserService;
  @Inject()
  roleService: RoleService;
  @Config('auth.jwt')
  private jwt: any;

  @Inject()
  sysSettingsService: SysSettingsService;

  /**
   * login
   */
  async login(user) {
    console.assert(user.username != null, '用户名不能为空');
    const info = await this.userService.findOne({ username: user.username });
    if (info == null) {
      throw new CommonException('用户名或密码错误');
    }
    const right = await this.userService.checkPassword(user.password, info.password, info.passwordVersion);
    if (!right) {
      throw new CommonException('用户名或密码错误');
    }
    if (info.status === 0) {
      throw new CommonException('用户已被禁用');
    }

    const roleIds = await this.roleService.getRoleIdsByUserId(info.id);
    return this.generateToken(info, roleIds);
  }

  /**
   * 生成token
   * @param user 用户对象
   * @param roleIds
   */
  async generateToken(user: UserEntity, roleIds: number[]) {
    const tokenInfo = {
      username: user.username,
      id: user.id,
      roles: roleIds,
    };
    const expire = this.jwt.expire;

    const setting = await this.sysSettingsService.getSetting<SysPrivateSettings>(SysPrivateSettings);
    const jwtSecret = setting.jwtKey;

    const token = jwt.sign(tokenInfo, jwtSecret, {
      expiresIn: expire,
    });

    return {
      token,
      expire,
    };
  }
}
feat: 升级midway，支持esm 2024-07-15 00:30:33 +08:00			`import { Config, Inject, Provide } from '@midwayjs/core';`
feat: 域名验证方法支持CNAME间接方式，此方式支持所有域名注册商，且无需提供Access授权，但是需要手动添加cname解析 2024-10-07 03:21:16 +08:00			`import { UserService } from '../../sys/authority/service/user-service.js';`
feat: 升级midway，支持esm 2024-07-15 00:30:33 +08:00			`import jwt from 'jsonwebtoken';`
chore: lib-server 2024-10-03 22:03:49 +08:00			`import { CommonException } from '@certd/lib-server';`
feat: 域名验证方法支持CNAME间接方式，此方式支持所有域名注册商，且无需提供Access授权，但是需要手动添加cname解析 2024-10-07 03:21:16 +08:00			`import { RoleService } from '../../sys/authority/service/role-service.js';`
			`import { UserEntity } from '../../sys/authority/entity/user.js';`
chore: lib-server 2024-10-03 22:03:49 +08:00			`import { SysSettingsService } from '@certd/lib-server';`
			`import { SysPrivateSettings } from '@certd/lib-server';`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00
			`/**`
			`* 系统用户`
			`*/`
			`@Provide()`
			`export class LoginService {`
			`@Inject()`
			`userService: UserService;`
feat: 权限控制 2023-06-27 09:29:43 +08:00			`@Inject()`
			`roleService: RoleService;`
chore: build 2023-06-28 09:44:35 +08:00			`@Config('auth.jwt')`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`private jwt: any;`

perf: 授权配置支持加密 2024-08-27 13:46:19 +08:00			`@Inject()`
			`sysSettingsService: SysSettingsService;`

build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`/**`
			`* login`
			`*/`
			`async login(user) {`
			`console.assert(user.username != null, '用户名不能为空');`
			`const info = await this.userService.findOne({ username: user.username });`
			`if (info == null) {`
			`throw new CommonException('用户名或密码错误');`
			`}`
feat: 升级midway，支持esm 2024-07-15 00:30:33 +08:00			`const right = await this.userService.checkPassword(user.password, info.password, info.passwordVersion);`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`if (!right) {`
			`throw new CommonException('用户名或密码错误');`
			`}`
perf: 禁用readonly用户 2024-10-27 00:04:02 +08:00			`if (info.status === 0) {`
			`throw new CommonException('用户已被禁用');`
			`}`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00
feat: 权限控制 2023-06-27 09:29:43 +08:00			`const roleIds = await this.roleService.getRoleIdsByUserId(info.id);`
			`return this.generateToken(info, roleIds);`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`}`

			`/**`
			`* 生成token`
			`* @param user 用户对象`
feat: 权限控制 2023-06-27 09:29:43 +08:00			`* @param roleIds`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`*/`
feat: 权限控制 2023-06-27 09:29:43 +08:00			`async generateToken(user: UserEntity, roleIds: number[]) {`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`const tokenInfo = {`
			`username: user.username,`
			`id: user.id,`
feat: 权限控制 2023-06-27 09:29:43 +08:00			`roles: roleIds,`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`};`
			`const expire = this.jwt.expire;`
perf: 授权配置支持加密 2024-08-27 13:46:19 +08:00
			`const setting = await this.sysSettingsService.getSetting<SysPrivateSettings>(SysPrivateSettings);`
			`const jwtSecret = setting.jwtKey;`

			`const token = jwt.sign(tokenInfo, jwtSecret, {`
build: trident-sync prepare 2023-01-29 13:44:19 +08:00			`expiresIn: expire,`
			`});`

			`return {`
			`token,`
			`expire,`
			`};`
			`}`
			`}`