mirror of
https://github.com/labring/FastGPT.git
synced 2025-07-27 00:17:31 +00:00
77 lines
1.8 KiB
JavaScript
77 lines
1.8 KiB
JavaScript
import jwt from 'jsonwebtoken';
|
||
import { System } from '../schema.js';
|
||
|
||
const adminAuth = {
|
||
username: process.env.ADMIN_USER,
|
||
password: process.env.ADMIN_PASS
|
||
};
|
||
const authSecret = process.env.ADMIN_SECRET;
|
||
|
||
const postParent = () => {
|
||
fetch(`${process.env.PARENT_URL}/api/system/updateEnv`, {
|
||
headers: {
|
||
rootkey: process.env.PARENT_ROOT_KEY
|
||
}
|
||
});
|
||
};
|
||
|
||
export const useSystemRoute = (app) => {
|
||
app.post('/api/login', (req, res) => {
|
||
if (!adminAuth.username || !adminAuth.password) {
|
||
res.status(401).end('Server not set env: ADMIN_USER, ADMIN_PASS');
|
||
return;
|
||
}
|
||
|
||
const { username, password } = req.body;
|
||
|
||
if (username === adminAuth.username && password === adminAuth.password) {
|
||
// 用户名和密码都正确,返回token
|
||
const token = jwt.sign(
|
||
{
|
||
username,
|
||
platform: 'admin'
|
||
},
|
||
authSecret,
|
||
{
|
||
expiresIn: '2h'
|
||
}
|
||
);
|
||
|
||
res.json({
|
||
username,
|
||
token: token,
|
||
expiredAt: new Date().valueOf() + 2 * 60 * 60 * 1000
|
||
});
|
||
} else {
|
||
res.status(401).end('username or password incorrect');
|
||
}
|
||
});
|
||
};
|
||
|
||
export const auth = () => {
|
||
return (req, res, next) => {
|
||
try {
|
||
const authorization = req.headers.authorization;
|
||
if (!authorization) {
|
||
return next(new Error('unAuthorization'));
|
||
}
|
||
|
||
const token = authorization.slice('Bearer '.length);
|
||
|
||
const payload = jwt.verify(token, authSecret);
|
||
if (typeof payload === 'string') {
|
||
res.status(401).end('payload type error');
|
||
return;
|
||
}
|
||
if (payload.platform !== 'admin') {
|
||
res.status(401).end('Payload invalid');
|
||
return;
|
||
}
|
||
|
||
next();
|
||
} catch (err) {
|
||
res.status(401).end(String(err));
|
||
}
|
||
};
|
||
};
|