npmpackage.info

Gathering detailed insights and metrics for pwegg

pwegg

1.0.1

3.35 kB

Installations

npm install pwegg

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

14.16.1

NPM Version

6.14.12 Score

47.2

Supply Chain

89.3

Quality

74.9

Maintenance

100

Vulnerability

100

License

Releases

Unable to fetch releases

Contributors

Download Statistics

Total Downloads

325

Last Day

Last Week

Last Month

Last Year

Maintainers

Package Meta Information

Latest Version

1.0.1

Package Id

pwegg@1.0.1

Unpacked Size

3.35 kB

Size

1.63 kB

File Count

NPM Version

6.14.12

Node Version

14.16.1

Total Downloads

Cumulative downloads

Total Downloads

325

Last day

Compared to previous day

Last week

Compared to previous week

Last month

500%

Compared to previous month

Last year

-14.9%

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

No dependencies detected.

Versions

egg egg-cors egg-mysql crypto加密 jsonwebtoken生成token vali

在config/plugin.js 开启插件

'egg-mysql':{ enable: true, package:'egg-mysql'
},

'egg-cors':{ enable:true, package:'egg-cors' },

'egg-validate':{ enable:true, package:'egg-validate' }

在config/config.delault.js 注册插件

'cors':{//后端跨域 origin:'*', allowMethods:'GET,PUT,POST,DELETE' }

security:{ //关闭防火墙 csrf:{ enable:false } } 'validate': {//类型判断 convert: true, // 对参数可以使用 convertType 规则进行类型转换 // validateRoot: false, // 限制被验证值必须是一个对象。 }

创建一个文件夹 db.js const crypto=require('crypto') //创建md5加密规则 const md5=(content)=>{ let md5=crypto.createHash('md5') return md5.update(content).digest('hex') } //接收密码状态 const getPassword=(password)=>{ let str=`password=${password}&secret=hss` return md5(str) } module.exports=getPassword

validate 类型判断 let err= this.app.validator.validate({username:'string',password:'string'},ctx.request.body) const err = ctx.validate({ user: 'string', pas: 'number' }, ctx.query)

token

axios 拦截挂载 token config.headers.authorization=Cookie.get('token')

生成token jwt.sign(data.username, '1902A'); 解析token jwt.verify(token, '1902A'); // 获取用户信息 async getUserInfo() { const { ctx, app } = this; const { authorization } = ctx.request.headers; // 获取token const token = authorization.split(' ')[1]; const username = jwt.verify(token, '1902A'); // // 通过解密后的token 在表中查找用户信息 const data = await app.mysql.get('userlist', { username }); // 删除对象中的密码字段 delete data.password; ctx.body = { code: 1, msg: '请求成功', data, }; }

封装鉴权 app/middleware/auth.js 'use strict'; const jwt = require('jsonwebtoken'); module.exports = () => { return async function auth(ctx, next) { // 获取前端传来的token const { authorization } = ctx.request.headers; // 获取token const token = authorization.split(' ')[1]; try { // 尝试运行 try函数 jwt.verify(token, '1902A'); await next(); } catch (error) { // 如果try函数监听到运行失败运行catch console.log('解密失败'); ctx.body = { code: 0, msg: '请重修登录', }; } }; }; eg：
const { router, controller, middleware } = app; // 获取用户信息 router.post('/api/userinfo', middleware.auth(), controller.login.getUserInfo);

No vulnerabilities found.

No security vulnerabilities found.