这是我的app.js
const passport = require("passport");
// passport初始化
app.use(passport.initialize());
require("./config/passport")(passport);
这是我的passport.js文件
const passport = require("passport");
const JwtStrategy = require('passport-jwt').Strategy,
ExtractJwt = require('passport-jwt').ExtractJwt;
const User = require("../model/admin");
const opts = {}
opts.jwtFromRequest = ExtractJwt.fromAuthHeaderAsBearerToken();
opts.secretOrKey = 'secret';
module.exports = passport => {
passport.use(new JwtStrategy(opts, (jwt_payload, done) => {
console.log("paloadLaod"+jwt_payload);//始终打印不出来
User.findOne({email:jwt_payload.email})
.then(user => {
if (user) {
return done(null, user);
}
return done(null, false);
})
.catch(err => console.log(err));
}));
}登录验证产生token的路由
router.post("/login", (req, res) => {
const email = req.body.email;
const password = req.body.password;
// 查询数据库
Admin.findOne({
email
})
.then(user => {
if (!user) {
return res.json({
code: 404,
msg: "账号不存在~"
})
}
// 密码匹配
if (password == user.password) {
const rule = {
id:user._id,
email: user.email,
name: user.name,
avator:user.avator,
};
jwt.sign(rule, "secret", {
expiresIn: 60*60*60
}, (err, token) => {
if (err) throw err;
res.json({
code: 200,
success: true,
token: "lian " + token,
})
})
} else {
return res.status(400).json("密码错误");
}
})
})验证token是否过期的接口代码
router.post("/verify",passport.authenticate("jwt",{session:false}),async(req,res)=>{
console.log(req.headers)
if(req.body.verify=="lian"){
res.json({
code:200,
msg:"验证成功"
})
}
})使用postman验证的过程和结果如下
图中箭头处就是token
下图是参数和返回的结果
我在多次测试当中,曾经以为是我的token有问题,但最后发现在pssport.js的passport.use()始终未曾被调用,所以想问问为什么,验证代码始终进不去。
相关文章
精彩导读
热门资讯