npm - @blocklet/sdk - Versions diffs - 1.16.47-beta-20250808-102837-d10f3b40 → 1.16.48-beta-20250808-223254-2bfaa0e0 - Mend

@blocklet/sdk 1.16.47-beta-20250808-102837-d10f3b40 → 1.16.48-beta-20250808-223254-2bfaa0e0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/lib/config.d.ts +2 -0
package/lib/config.js +2 -0
package/lib/middlewares/session.js +25 -14
package/lib/version.d.ts +1 -1
package/lib/version.js +1 -1
package/package.json +10 -10

package/lib/config.d.ts CHANGED Viewed

@@ -88,6 +88,7 @@ declare const getBlockletSettings: () => {
         };
     };
     federated: any;
+    enableBlacklist: boolean;
 };
 declare const getBlockletJs: (pageGroup?: string, pathPrefix?: string, source?: string) => string;
 export { logger, setLogger, env, componentStore as components, MountPoint, // @deprecated, for backward compatibility
@@ -157,6 +158,7 @@ declare const _default: {
             };
         };
         federated: any;
+        enableBlacklist: boolean;
     };
 };
 export default _default;

package/lib/config.js CHANGED Viewed

@@ -285,6 +285,7 @@ let blockletJs = '';
 const blockletSettings = {
     theme: DEFAULT_THEME_SETTINGS,
     federated: null,
+    enableBlacklist: false,
 };
 const fetchBlockletJs = async (type = 'js') => {
     const componentDid = process.env.BLOCKLET_COMPONENT_DID;
@@ -333,6 +334,7 @@ const fetchBlockletData = async () => {
         }
         const { blocklet } = await authClient.getBlocklet();
         blockletSettings.federated = blocklet.settings?.federated;
+        blockletSettings.enableBlacklist = blocklet.settings?.session?.enableBlacklist;
         return blocklet;
     }
     catch (err) {

package/lib/middlewares/session.js CHANGED Viewed

@@ -6,6 +6,7 @@ const get_token_from_req_1 = require("@abtnode/util/lib/get-token-from-req");
 const service_api_1 = __importDefault(require("../util/service-api"));
 const login_1 = require("../util/login");
 const verify_session_1 = require("../util/verify-session");
+const config_1 = __importDefault(require("../config"));
 const sessionMiddleware = (options = {}) => {
     const { loginToken = true, componentCall = false, signedToken = '', strictMode = false, accessKey = false, signedTokenKey = '__jwt', } = options;
     return async (req, res, next) => {
@@ -22,21 +23,31 @@ const sessionMiddleware = (options = {}) => {
                     res.status(400).send('Access token found in multiple locations');
                     return;
                 }
-                if (process.env.NODE_ENV !== 'test') {
-                    const { data: checkResult } = await service_api_1.default.post('/api/user/checkToken', {
-                        token: loginTokenValue,
-                    });
-                    if (!checkResult.valid) {
-                        res.status(401).send('Access token is blocked');
-                        return;
+                if (loginTokenValue && typeof loginTokenValue === 'string') {
+                    if (process.env.NODE_ENV !== 'test') {
+                        const blockletSettings = config_1.default.getBlockletSettings();
+                        // 未开启黑名单功能，则跳过检查
+                        if (blockletSettings.enableBlacklist) {
+                            const { data: checkResult } = await service_api_1.default.post('/api/user/checkToken', {
+                                token: loginTokenValue,
+                            });
+                            if (!checkResult.valid) {
+                                if (strictMode) {
+                                    res.status(401).send('Access token is blocked');
+                                    return;
+                                }
+                                // 如果未设置 strictMode，则直接 next，相当于未登录状态
+                                next();
+                                return;
+                            }
+                        }
+                    }
+                    if ((0, login_1.isLoginToken)(loginTokenValue)) {
+                        result = await (0, verify_session_1.verifyLoginToken)({ token: loginTokenValue, strictMode });
+                    }
+                    else if ((0, login_1.isAccessKey)(loginTokenValue) && accessKey) {
+                        result = await (0, verify_session_1.verifyAccessKey)({ token: loginTokenValue, strictMode });
                     }
-                }
-                // TODO: 检查 login_token 是否在黑名单中
-                if ((0, login_1.isLoginToken)(loginTokenValue)) {
-                    result = await (0, verify_session_1.verifyLoginToken)({ token: loginTokenValue, strictMode });
-                }
-                else if ((0, login_1.isAccessKey)(loginTokenValue) && accessKey) {
-                    result = await (0, verify_session_1.verifyAccessKey)({ token: loginTokenValue, strictMode });
                 }
             }
             // authenticate by component call

package/lib/version.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-declare const version = "1.16.47";
+declare const version = "1.16.48";
 export { version };
 declare const _default: {
     version: string;

package/lib/version.js CHANGED Viewed

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.version = void 0;
-const version = '1.16.47';
+const version = '1.16.48';
 exports.version = version;
 exports.default = { version };

package/package.json CHANGED Viewed

@@ -3,7 +3,7 @@
   "publishConfig": {
     "access": "public"
   },
-  "version": "1.16.47-beta-20250808-102837-d10f3b40",
+  "version": "1.16.48-beta-20250808-223254-2bfaa0e0",
   "description": "graphql client to read/write data on abt node",
   "main": "lib/index.js",
   "typings": "lib/index.d.ts",
@@ -27,19 +27,19 @@
   "author": "linchen1987 <linchen.1987@foxmail.com> (http://github.com/linchen1987)",
   "license": "Apache-2.0",
   "dependencies": {
-    "@abtnode/client": "1.16.47-beta-20250808-102837-d10f3b40",
-    "@abtnode/constant": "1.16.47-beta-20250808-102837-d10f3b40",
-    "@abtnode/db-cache": "1.16.47-beta-20250808-102837-d10f3b40",
-    "@abtnode/util": "1.16.47-beta-20250808-102837-d10f3b40",
+    "@abtnode/client": "1.16.48-beta-20250808-223254-2bfaa0e0",
+    "@abtnode/constant": "1.16.48-beta-20250808-223254-2bfaa0e0",
+    "@abtnode/db-cache": "1.16.48-beta-20250808-223254-2bfaa0e0",
+    "@abtnode/util": "1.16.48-beta-20250808-223254-2bfaa0e0",
     "@arcblock/did": "1.21.2",
     "@arcblock/did-connect-js": "1.21.2",
     "@arcblock/jwt": "1.21.2",
     "@arcblock/ws": "1.21.2",
-    "@blocklet/constant": "1.16.47-beta-20250808-102837-d10f3b40",
-    "@blocklet/env": "1.16.47-beta-20250808-102837-d10f3b40",
+    "@blocklet/constant": "1.16.48-beta-20250808-223254-2bfaa0e0",
+    "@blocklet/env": "1.16.48-beta-20250808-223254-2bfaa0e0",
     "@blocklet/error": "^0.2.5",
-    "@blocklet/meta": "1.16.47-beta-20250808-102837-d10f3b40",
-    "@blocklet/theme": "^3.1.3",
+    "@blocklet/meta": "1.16.48-beta-20250808-223254-2bfaa0e0",
+    "@blocklet/theme": "^3.1.5",
     "@did-connect/authenticator": "^2.2.8",
     "@did-connect/handler": "^2.2.8",
     "@nedb/core": "^2.1.5",
@@ -85,5 +85,5 @@
     "ts-node": "^10.9.1",
     "typescript": "^5.6.3"
   },
-  "gitHead": "545f4b619e4e872f3cb6645aa95a0c22c06b58d0"
+  "gitHead": "8575d838603cf060c2b448930d36a70e5af1adfa"
 }