node-karin 1.3.21 → 1.3.22-pr.284.51e08fd

package/dist/index.js

@@ -14,9 +14,9 @@ var __export = (target, all) => {
     __defProp(target, name, { get: all[name], enumerable: true });
 };
 
-// ../../node_modules/.pnpm/tsup@8.3.6_@swc+core@1.10.18_@swc+helpers@0.5.15__jiti@1.21.7_postcss@8.5.3_tsx@4.19.3_typescript@5.7.3_yaml@2.7.0/node_modules/tsup/assets/esm_shims.js
+// ../../node_modules/.pnpm/tsup@8.4.0_tsx@4.19.3_typescript@5.7.3/node_modules/tsup/assets/esm_shims.js
 var init_esm_shims = __esm({
-  "../../node_modules/.pnpm/tsup@8.3.6_@swc+core@1.10.18_@swc+helpers@0.5.15__jiti@1.21.7_postcss@8.5.3_tsx@4.19.3_typescript@5.7.3_yaml@2.7.0/node_modules/tsup/assets/esm_shims.js"() {
+  "../../node_modules/.pnpm/tsup@8.4.0_tsx@4.19.3_typescript@5.7.3/node_modules/tsup/assets/esm_shims.js"() {
     "use strict";
   }
 });
@@ -2947,35 +2947,77 @@ var init_config2 = __esm({
 });
 
 // src/server/auth/index.ts
-var auth;
+import jwt from "jsonwebtoken";
+import crypto from "node:crypto";
+var loginAuth, setToken2Level, verifyToken, auth;
 var init_auth = __esm({
   "src/server/auth/index.ts"() {
     "use strict";
     init_esm_shims();
     init_config2();
+    init_index();
+    loginAuth = async (req) => {
+      var _a;
+      const token = (_a = req == null ? void 0 : req.headers) == null ? void 0 : _a.password;
+      if (!token) return false;
+      const uToken = authKey();
+      const hashedData = crypto.createHash("sha256").update(uToken).digest("hex");
+      if (token === hashedData) {
+        const payload = { userId: uToken, passWord: hashedData };
+        const jwtToken = await setToken2Level(payload, payload.userId);
+        await level.set(`HTTP_AUTH_TOKEN:${uToken}`, jwtToken);
+        return true;
+      }
+      return false;
+    };
+    setToken2Level = async (payload, token) => {
+      const secretKey = jwt.sign(payload, token, { expiresIn: "3h" });
+      await level.set(`HTTP_AUTH_TOKEN:${payload.userId}`, secretKey);
+      return secretKey;
+    };
+    verifyToken = async (secreKey, token) => {
+      const uToken = authKey();
+      const cacheSecreKey = await level.get(`HTTP_AUTH_TOKEN:${uToken}`);
+      if (secreKey === cacheSecreKey || token === uToken) {
+        try {
+          const isValid = !!jwt.verify(secreKey, token);
+          if (!isValid) return { status: false };
+          return { status: true };
+        } catch {
+          logger.debug(logger.yellow("\u7F51\u9875\u767B\u5F55\u4EE4\u724C\u5DF2\u8FC7\u671F\uFF0C\u5C06\u91CD\u65B0\u91CD\u65B0\u751F\u6210\u4EE4\u724C"));
+          const newsecreKey = crypto.createHash("sha256").update(token).digest("hex");
+          const payload = { userId: uToken, passWord: newsecreKey };
+          const newJwtToken = await setToken2Level(payload, payload.userId);
+          return { status: true, newToken: newJwtToken };
+        }
+      }
+      return { status: false };
+    };
     auth = {
       /**
        * get请求鉴权
        * @description 支持请求头中携带`Authorization`字段
        * @description 支持请求参数中携带`token`字段
        */
-      getAuth: (req) => {
-        var _a, _b;
-        const token = ((_a = req == null ? void 0 : req.headers) == null ? void 0 : _a.authorization) || ((_b = req == null ? void 0 : req.query) == null ? void 0 : _b.token);
-        if (!token) return false;
-        const value = authKey();
-        return token === `Bearer ${value}` || token === value;
+      getAuth: async (req) => {
+        var _a, _b, _c;
+        const secreKey = ((_b = (_a = req == null ? void 0 : req.headers) == null ? void 0 : _a.authorization) == null ? void 0 : _b.replace("Bearer ", "")) || ((_c = req == null ? void 0 : req.query) == null ? void 0 : _c.token);
+        if (!secreKey) return { status: false };
+        const uToken = authKey();
+        const verifyStatus = await verifyToken(secreKey, uToken);
+        return verifyStatus;
       },
       /**
        * post请求鉴权
        * @description 仅支持请求头中携带`Authorization`字段
        */
-      postAuth: (req) => {
-        var _a;
-        const token = (_a = req == null ? void 0 : req.headers) == null ? void 0 : _a.authorization;
-        if (!token) return false;
-        const value = authKey();
-        return token === `Bearer ${value}` || token === value;
+      postAuth: async (req) => {
+        var _a, _b;
+        const secreKey = (_b = (_a = req == null ? void 0 : req.headers) == null ? void 0 : _a.authorization) == null ? void 0 : _b.replace("Bearer ", "");
+        if (!secreKey) return { status: false };
+        const uToken = authKey();
+        const verifyStatus = await verifyToken(secreKey, uToken);
+        return verifyStatus;
       }
     };
   }
@@ -3043,20 +3085,25 @@ headers: ${JSON.stringify(req.headers)}
 body: ${JSON.stringify(req.body)}
 `
       );
-      const Pass = auth.getAuth(req) || auth.postAuth(req);
+      const checkResult = await auth.getAuth(req) || await auth.postAuth(req);
+      const Pass = checkResult.status;
       if (req.path === "/ping" || req.path.startsWith("/console")) {
         next();
         return;
       }
-      if (!Pass && req.path === "/login") {
-        createServerErrorResponse(res, "HTTP \u9274\u6743\u5BC6\u94A5\u9519\u8BEF");
+      const loginPass = await loginAuth(req);
+      if (!loginPass && req.path === "/login") {
+        createResponse(res, 500 /* InternalServerError */, { e: "HTTP \u9274\u6743\u5BC6\u94A5\u9519\u8BEF" }, "HTTP \u9274\u6743\u5BC6\u94A5\u9519\u8BEF");
         return;
       }
-      if (!Pass) {
+      if (!Pass && req.path !== "/login") {
         createUnauthorizedResponse(res, "\u9274\u6743\u5931\u8D25 / check failed");
         logger.error(`[express][${req.ip}] \u9274\u6743\u9519\u8BEF: /api/v1/${req.path}`);
         return;
       }
+      if (checkResult.newToken) {
+        res.setHeader("authorization", checkResult.newToken);
+      }
       next();
     };
   }
@@ -5669,6 +5716,7 @@ var init_log = __esm({
 });
 
 // src/server/api/system/login.ts
+import crypto2 from "crypto";
 var loginRouter;
 var init_login = __esm({
   "src/server/api/system/login.ts"() {
@@ -5676,8 +5724,16 @@ var init_login = __esm({
     init_esm_shims();
     init_router();
     init_response();
+    init_index();
+    init_config2();
     loginRouter = async (_req, res) => {
-      createSuccessResponse(res, null, "\u767B\u5F55\u6210\u529F");
+      const uToken = authKey();
+      const hashedData = crypto2.createHash("sha256").update(uToken).digest("hex");
+      let authorization = "";
+      if (_req.body.password === hashedData) {
+        authorization = await level.get(`HTTP_AUTH_TOKEN:${uToken}`);
+      }
+      createSuccessResponse(res, { authorization }, "\u767B\u5F55\u6210\u529F");
     };
     router.post("/login", loginRouter);
   }
@@ -13720,7 +13776,7 @@ var init_cache4 = __esm({
 
 // src/adapter/render/connect/http.ts
 import axios9 from "axios";
-import crypto from "node:crypto";
+import crypto3 from "node:crypto";
 var createHttpRenderClient;
 var init_http = __esm({
   "src/adapter/render/connect/http.ts"() {
@@ -13738,7 +13794,7 @@ var init_http = __esm({
         let { url, token, enable } = item;
         if (!enable) return;
         url = url.replace("/puppeteer", "");
-        const headers = { authorization: crypto.createHash("md5").update(`Bearer ${token}`).digest("hex") };
+        const headers = { authorization: crypto3.createHash("md5").update(`Bearer ${token}`).digest("hex") };
         try {
           const result = await axios9.get(`${url}/ping`, { timeout: 5e3 });
           if (result.status !== 200 || String(result.data.status) !== "200") {
@@ -13865,7 +13921,7 @@ var init_template = __esm({
 
 // src/adapter/render/connect/ws.ts
 import fs28 from "node:fs";
-import crypto2 from "node:crypto";
+import crypto4 from "node:crypto";
 var WebSocketRender;
 var init_ws2 = __esm({
   "src/adapter/render/connect/ws.ts"() {
@@ -13918,10 +13974,10 @@ var init_ws2 = __esm({
       auth(token, targetToken) {
         if (token !== targetToken) {
           if (token.length !== 32) {
-            token = crypto2.createHash("md5").update(`Bearer ${token}`).digest("hex");
+            token = crypto4.createHash("md5").update(`Bearer ${token}`).digest("hex");
           }
           if (targetToken.length !== 32) {
-            targetToken = crypto2.createHash("md5").update(`Bearer ${targetToken}`).digest("hex");
+            targetToken = crypto4.createHash("md5").update(`Bearer ${targetToken}`).digest("hex");
           }
           if (token !== targetToken) {
             return false;
@@ -13976,7 +14032,7 @@ var init_ws2 = __esm({
 
 // src/adapter/render/connect/client.ts
 import WebSocket from "ws";
-import crypto3 from "node:crypto";
+import crypto5 from "node:crypto";
 var WebSocketClientRenderer, createWebSocketRenderClient;
 var init_client = __esm({
   "src/adapter/render/connect/client.ts"() {
@@ -14050,7 +14106,7 @@ var init_client = __esm({
       return Promise.allSettled(cfg.ws_client.map(async (item) => {
         const { url, token, enable } = item;
         if (!enable) return;
-        const headers = { Authorization: crypto3.createHash("md5").update(`Bearer ${token}`).digest("hex") };
+        const headers = { Authorization: crypto5.createHash("md5").update(`Bearer ${token}`).digest("hex") };
         const socket = new WebSocket(url, { headers });
         const renderer = new WebSocketClientRenderer(socket, url, headers);
         socket.once("open", async () => {

package/dist/web/assets/index-BGVAquX8.js

@@ -0,0 +1 @@
+import{d as a}from"./index-Bswf77Ah.js";var o=a;export{o as default};

package/dist/web/assets/index-C93ejmwj.js

@@ -0,0 +1 @@
+import{d as a}from"./index-Bswf77Ah.js";var r=a;export{r as default};

package/dist/web/index.html

@@ -14,7 +14,7 @@
     content="viewport-fit=cover, width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=0"
     name="viewport" />
   <link href="/web/assets/favicon-BoqZd694.ico" rel="icon" />
-  <script type="module" crossorigin src="/web/assets/index-DGetM7dl.js"></script>
+  <script type="module" crossorigin src="/web/assets/index-Bswf77Ah.js"></script>
   <link rel="stylesheet" crossorigin href="/web/assets/index-CIP0gmfD.css">
 </head>
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "node-karin",
-  "version": "1.3.21",
+  "version": "1.3.22-pr.284.51e08fd",
   "description": "Lightweight, efficient, concise, and stable robot framework.",
   "keywords": [
     "node",
@@ -76,6 +76,7 @@
     "commander": "^13.0.0",
     "dotenv": "^16.4.7",
     "express": "4.21.2",
+    "jsonwebtoken": "^9.0.2",
     "level": "9.0.0",
     "lodash": "4.17.21",
     "log4js": "6.9.1",

package/dist/web/assets/index-2uUnpL8J.js

@@ -1 +0,0 @@
-import{d as a}from"./index-DGetM7dl.js";var r=a;export{r as default};

package/dist/web/assets/index-DoJKQ5We.js

@@ -1 +0,0 @@
-import{d as a}from"./index-DGetM7dl.js";var o=a;export{o as default};