@kevisual/auth 1.0.5 → 2.0.0

package/src/create-token.ts

@@ -1,46 +0,0 @@
-import jwt from 'jsonwebtoken';
-
-// https://www.robinwieruch.de/graphql-apollo-server-tutorial#apollo-server-authentication
-/**
- *
- * @param user
- * @param secret
- *
- * @param expiresIn default 7d expressed in seconds or a string describing a time span [zeit/ms](https://github.com/zeit/ms.js).  Eg: 60, "2 days", "10h", "7d"
- * @returns
- */
-export const createToken = async (
-  user: {
-    id: string;
-    username: string;
-    [key: string]: any;
-  },
-  secret: string,
-  expiresIn = '7d'
-) => {
-  const { id, username, ...rest } = user;
-  return jwt.sign({ id, username, ...rest }, secret, {
-    expiresIn
-  });
-};
-
-/**
- * check token
- * @param token
- * @param secret
- * @returns
- */
-export const checkToken = async (token: string, secret: string) => {
-  return jwt.verify(token, secret, { complete: true });
-};
-
-/**
- * check auth and return token user
- * @param token
- * @param secret
- * @returns
- */
-export const checkTokenUser = async (token: string, secret: string) => {
-  const result = await checkToken(token, secret);
-  return result.payload;
-};

package/src/is-me.ts

@@ -1,32 +0,0 @@
-type MeAuthOptions = {
-  id?: string;
-  username?: string;
-  orgs?: string[];
-};
-
-/**
- * check is me
- * @param tokenUser
- * @param opts
- * @returns
- */
-export const isMe = async (tokenUser: any, opts: MeAuthOptions) => {
-  if (!opts.id && !opts.username && !opts.orgs) {
-    return false;
-  }
-  if (opts.id && tokenUser?.id === opts.id) {
-    return true;
-  }
-  if (opts.username && tokenUser?.username === opts.username) {
-    return true;
-  }
-  if (opts.orgs && tokenUser?.orgs) {
-    const orgs = tokenUser.orgs;
-    for (const org of opts.orgs) {
-      if (orgs.includes(org)) {
-        return true;
-      }
-    }
-  }
-  return false;
-};

package/src/proxy.ts

@@ -1,116 +0,0 @@
-export const proxyFetch = async (url: string, data: any) => {
-  const res = await fetch(url, {
-    method: 'POST',
-    headers: {
-      'Content-Type': 'application/json'
-    },
-    body: JSON.stringify(data)
-  });
-  const _res = await res.json();
-  return _res;
-};
-type AuthProxyOptions = {
-  host: string;
-  path?: string;
-  protol?: string;
-};
-/**
- * Auth Query 轻量级代理
- */
-export class AuthQuery {
-  url: string;
-  host: string;
-  path: string;
-  constructor(opts?: AuthProxyOptions) {
-    this.host = opts?.host || 'localhost:114000';
-    this.path = opts?.path || '/api/router';
-    const protol = opts?.protol || 'http';
-    this.url = `${protol}://${this.host}${this.path}`;
-  }
-  async queryMe(token: string) {
-    return proxyFetch(this.url, {
-      path: 'user',
-      key: 'me',
-      token
-    });
-  }
-  async login(username: string, password: string) {
-    return proxyFetch(this.url, {
-      path: 'user',
-      key: 'login',
-      data: {
-        username,
-        password
-      }
-    });
-  }
-  async query(data: any) {
-    return proxyFetch(this.url, data);
-  }
-}
-type AuthProxy = {
-  queryMe: (token: string) => Promise<any>;
-  /**
-   * 代理设置token用户, 自己去处理ctx.state['tokenUser']
-   * 可能tokenUser的内容会有一些特殊的处理
-   * @param ctx
-   * @param data
-   * @returns
-   */
-  setTokenUser?: (ctx: any, data: any) => Promise<any>;
-  cacheMe: (token: string) => Promise<any>;
-  setCahceMe: (token: string, data: any) => Promise<any>;
-};
-type CreateAuthRouteOptions = {
-  app?: any;
-  addToApp?: boolean;
-  proxy: AuthProxy;
-};
-export const createAuthRoute = ({ app, addToApp = true, proxy }: CreateAuthRouteOptions) => {
-  /**
-   * 中间件执行函数
-   * @param ctx
-   */
-  const authRouteFn = async (ctx: any) => {
-    const token = ctx.query.token;
-    if (!token) {
-      ctx.throw(401, 'Token is Unauthorized');
-    }
-    if (proxy?.cacheMe) {
-      const cache = await proxy?.cacheMe?.(token);
-      if (cache) {
-        if (proxy?.setTokenUser) {
-          await proxy?.setTokenUser?.(ctx, cache);
-        } else {
-          ctx.state['tokenUser'] = cache;
-        }
-        return;
-      }
-    }
-    try {
-      const result = await proxy?.queryMe?.(token);
-      if (result.code !== 200) {
-        ctx.throw(result.code, result.message);
-      }
-      if (proxy?.setTokenUser) {
-        await proxy?.setTokenUser?.(ctx, result.data);
-      } else {
-        ctx.state['tokenUser'] = result.data;
-      }
-      if (proxy?.setCahceMe) {
-        await proxy?.setCahceMe?.(token, result.data);
-      }
-    } catch (e) {
-      ctx.throw(401, 'Token is invalid');
-    }
-  };
-  let authRoute;
-  if (app) {
-    authRoute = app.route('auth', '', { id: 'auth' });
-    authRoute.run = authRouteFn;
-    if (addToApp) {
-      authRoute.addTo(app);
-    }
-  }
-  return { route: authRoute, authRouteFn };
-};

package/src/route.ts

@@ -1,44 +0,0 @@
-import { checkToken } from './create-token.ts';
-
-type CreateAuthRouteOptions = {
-  secret: string;
-  app?: any;
-  addToApp?: boolean;
-};
-export const createAuthRoute = ({ secret, app, addToApp = true }: CreateAuthRouteOptions) => {
-  /**
-   * 中间件执行函数
-   * @param ctx
-   */
-  const authRouteFn = async (ctx: any) => {
-    const token = ctx.query.token;
-    if (!token) {
-      // throw new CustomError(401, 'Token is Unauthorized');
-      app.throw(401, 'Token is Unauthorized');
-    }
-    try {
-      const result = await checkToken(token, secret);
-      ctx.state['tokenUser'] = result.payload;
-    } catch (e) {
-      if (e.name === 'TokenExpiredError') {
-        app.throw(401, 'Token is expired');
-      } else if (e.name === 'JsonWebTokenError') {
-        app.throw(401, 'Token is invalid');
-      } else if (e.name === 'NotBeforeError') {
-        app.throw(401, 'Token is not active');
-      } else {
-        console.error('checkToken error', e);
-        app.throw(401, 'Token is invalid');
-      }
-    }
-  };
-  let authRoute;
-  if (app) {
-    authRoute = app.route('auth', '', { id: 'auth' });
-    authRoute.run = authRouteFn;
-    if (addToApp) {
-      authRoute.addTo(app);
-    }
-  }
-  return { route: authRoute, authRouteFn };
-};

package/src/salt.ts

@@ -1,32 +0,0 @@
-import MD5 from 'crypto-js/md5.js';
-
-/**
- * 生成随机盐
- * @returns
- */
-export const getRandomSalt = () => {
-  return Math.random().toString().slice(2, 7);
-};
-
-/**
- * 加密密码
- * @param password
- * @param salt
- * @returns
- */
-export const cryptPwd = (password: string, salt = '') => {
-  const saltPassword = password + ':' + salt;
-  const md5 = MD5(saltPassword);
-  return md5.toString();
-};
-
-/**
- * Check password
- * @param password
- * @param salt
- * @param md5
- * @returns
- */
-export const checkPwd = (password: string, salt: string, md5: string) => {
-  return cryptPwd(password, salt) === md5;
-};