@gingkoo/base-server 0.0.2-alpha.6 → 0.0.2-alpha.7

package/backend/common/middleware/auth.js

@@ -17,11 +17,9 @@ async function authCheck(req, res, next) {
     let { userid, exp } = data;
     if (userid) {
       req.headers['x-userid'] = userid;
-      let expires = new Date();
-      expires.setDate(expires.getDate() + 3);
       if (exp + 30 * 60 > Math.floor(Date.now() / 1000)) {
         let token = jwt.generateToken(tokenData);
-        res.cookie('X-Token', token, { expires });
+        setTokenCookies(res, token);
       }
     }
     return next();
@@ -55,11 +53,9 @@ function checkLogin(req, res, next) {
     let { userid, exp } = data;
     if (userid) {
       req.headers['x-userid'] = userid;
-      let expires = new Date();
-      expires.setDate(expires.getDate() + 3);
       if (exp + 30 * 60 > Math.floor(Date.now() / 1000)) {
         let token = jwt.generateToken(tokenData);
-        res.cookie('X-Token', token, { expires });
+        setTokenCookies(res, token);
       }
     }
     return next();
@@ -101,9 +97,21 @@ function userAppAuthCheck(req, res, next) {
   return next();
 }
 
+function setTokenCookies(res, token) {
+  let expires = new Date();
+  expires.setDate(expires.getDate() + config.jwt.exp);
+
+  if (config.jwt.domain) {
+    return res.cookie('X-Token', token, { expires, domain: config.jwt.domain });
+  } else {
+    return res.cookie('X-Token', token, { expires });
+  }
+}
+
 module.exports = {
   authCheck,
   checkLogin,
   appAuthCheck,
   userAppAuthCheck,
+  setTokenCookies,
 };

package/backend/common/wechat/routers/auth.js

@@ -4,6 +4,7 @@ const path = require('path');
 const express = require('express');
 const config = require('../../../config/index');
 
+const { setTokenCookies } = require('../../middleware/auth');
 const authServices = require('../services/auth');
 const ginfoServices = require('../../ginfo/index');
 const userService = require('../../services/user');
@@ -185,7 +186,7 @@ router.get('/oauth/qywx/callback', async function (req, res) {
   let expires = new Date();
   expires.setDate(expires.getDate() + 3);
 
-  res.cookie('X-Token', token, { expires }).redirect(301, redirect_uri);
+  setTokenCookies(res, token).redirect(301, redirect_uri);
 });
 
 router.get('/gettoken', async function (req, res) {

package/backend/config/index.js

@@ -32,8 +32,9 @@ function gConfig() {
       },
 
       jwt: {
-        exp: 60 * 60 * 24 * 3, // 过期时间
+        exp: 3, // 过期时间
         auth_cert: '', // 加盐
+        domain: '', // token cookie 存放域名
       },
 
       proxy: {

package/backend/routers/app.js

@@ -4,7 +4,7 @@ const nodemailer = require('nodemailer');
 const bcrypt = require('bcryptjs');
 const config = require('../config');
 const jwt = require('../utils/jwt');
-const { checkLogin } = require('../common/middleware/auth');
+const { checkLogin, setTokenCookies } = require('../common/middleware/auth');
 const { join, readFileContent } = require('../utils/path');
 const userService = require('../common/services/user');
 const generalConfig = require('../common/services/generalConfig');
@@ -43,11 +43,7 @@ router.post('/login', async (req, res) => {
     userid: userinfo?.USER_ID,
   });
 
-  let expires = new Date();
-  expires.setDate(expires.getDate() + 3);
-
-  res.cookie('X-Token', token, { expires });
-
+  setTokenCookies(res, token);
   res.sendOk({
     token,
   });

package/backend/utils/jwt.js

@@ -4,7 +4,7 @@ const config = require('../config');
 // 生成token
 function generateToken(data, forever = false, cert = config?.jwt?.auth_cert) {
   let created = Math.floor(Date.now() / 1000);
-  let exp = created + config.jwt.exp;
+  let exp = created + 60 * 60 * 24 * config.jwt.exp;
   if (forever) {
     exp = created + 60 * 60 * 24 * 365 * 10; // 10 年
   }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gingkoo/base-server",
-  "version": "0.0.2-alpha.6",
+  "version": "0.0.2-alpha.7",
   "description": "",
   "main": "app.js",
   "scripts": {