import { auth, method, route, swagger, validate, config, } from "@noderun/hapi-router"; import { gSuccess, gFail } from "@/util"; import * as bcrypt from "bcrypt"; import * as jwt from "jsonwebtoken"; import * as Joi from "joi"; import { UserSchema } from "@/schema"; import { ReturnValue, Req, Res } from "#/global"; export default class { @validate({ payload: UserSchema, }) @method("POST") @swagger("用户注册", "返回注册用户的信息", ["api"]) @auth(false) async register(request: Req, h: Res): ReturnValue { let { username, password, email } = request.payload as any; if (!username) username = email; const User = request.getModel("User") logger.trace(username, email); try { const result = await User.findOne({ where: { username: username } }); if (result != null) { return gFail(null, "已存在该用户"); } let salt = bcrypt.genSaltSync(10); let pwdLock = bcrypt.hashSync(password, salt); await User.create({ username, password: pwdLock, email }); return gSuccess("success", "you have a good heart."); } catch (e) { return gFail(null, "新建用户失败"); } } @method("POST") async logout(request: Req, h: Res): ReturnValue { request.cookieAuth.clear(); return gSuccess("success"); } @validate({ payload: UserSchema, }) @auth(false) @method("POST") @swagger("用户登录", "返回注册用户的信息", ["api"]) async login(request: Req, h: Res): ReturnValue { let { username, password } = request.payload as any; const User = request.getModel("User") const result = await User.findOne({ where: { username: username } }); if (result == null) { return gFail(null, "不存在该用户"); } const validUser = bcrypt.compareSync(password, result.password); if (!validUser) { return gFail(null, "密码不正确"); } //===== JWT ===== Start // let token = jwt.sign({ id: result.id }, process.env.KEY); // return gSuccess({ token: token }); //===== JWT ===== End //===== session ===== Start request.cookieAuth.set({ id: result.id }); //===== session ===== End return gSuccess({}); } @method("DELETE") @auth() @swagger("删除用户", "删除用户账号", ["sum"]) async del(request: Req, h: Res): ReturnValue { const { id } = request.auth.credentials; const User = request.getModel("User") let result = await User.findOne({ where: { id: id } }); if (result == null) { return gFail(null, "不存在该用户"); } await result.destroy(); return gSuccess(null, "删除成功"); } @method("GET") @swagger("获取用户信息", "返回注册用户的信息", ["用户操作", "api"]) async userinfo(request: Req, h: Res): ReturnValue { const { id } = request.auth.credentials; const User = request.getModel("User") let result = await User.findOne({ where: { id: id } }); if (result == null) { return gFail(null, "不存在该用户"); } result = result.toJSON(); delete result.password; return gSuccess(result); } }