yuxing/Docker-Proxy
1
0
Fork 0
mirror of https://github.com/dqzboy/Docker-Proxy.git synced 2026-01-12 16:25:42 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
da2111e9985733d836cabc09f2ccdaf24394232c
Docker-Proxy/hubcmdui/routes/auth.js

243 lines
7.8 KiB
JavaScript
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
/**
* 认证相关路由 - 使用SQLite数据库
*/
const express = require('express');
const router = express.Router();
const userServiceDB = require('../services/userServiceDB');
const logger = require('../logger');
const { requireLogin } = require('../middleware/auth');
// 登录验证
router.post('/login', async (req, res) => {
const { username, password, captcha } = req.body;
// 验证码检查
if (req.session.captcha !== parseInt(captcha)) {
logger.warn(`Captcha verification failed for user: ${username}`);
return res.status(401).json({ error: '验证码错误' });
}
try {
// 使用数据库认证
const user = await userServiceDB.validateUser(username, password);
if (!user) {
logger.warn(`Login failed for user: ${username}`);
return res.status(401).json({ error: '用户名或密码错误' });
}
// 更新登录信息
await userServiceDB.updateUserLoginInfo(username);
logger.info(`用户 ${username} 登录成功`);
// 设置会话
req.session.user = { username: user.username };
// 确保服务器启动时间已设置
if (!global.serverStartTime) {
global.serverStartTime = Date.now();
logger.warn(`登录时设置服务器启动时间: ${global.serverStartTime}`);
}
res.json({
success: true,
serverStartTime: global.serverStartTime
});
} catch (error) {
logger.error('登录失败:', error);
res.status(500).json({ error: '登录处理失败', details: error.message });
}
});
// 注销
router.post('/logout', (req, res) => {
req.session.destroy(err => {
if (err) {
logger.error('销毁会话失败:', err);
return res.status(500).json({ error: 'Failed to logout' });
}
res.clearCookie('connect.sid');
logger.info('用户已退出登录');
res.json({ success: true });
});
});
// 修改密码
router.post('/change-password', requireLogin, async (req, res) => {
const { currentPassword, newPassword } = req.body;
// 密码复杂度校验
const passwordRegex = /^(?=.*[A-Za-z])(?=.*\d)(?=.*[.,\-_+=()[\]{}|\\;:'"<>?/@$!%*#?&])[A-Za-z\d.,\-_+=()[\]{}|\\;:'"<>?/@$!%*#?&]{8,16}$/;
if (!passwordRegex.test(newPassword)) {
return res.status(400).json({ error: 'Password must be 8-16 characters long and contain at least one letter, one number, and one special character' });
}
try {
// 使用SQLite数据库服务修改密码
await userServiceDB.changePassword(req.session.user.username, currentPassword, newPassword);
res.json({ success: true });
} catch (error) {
logger.error('修改密码失败:', error);
res.status(500).json({ error: '修改密码失败', details: error.message });
}
});
// 修改用户名
router.post('/change-username', requireLogin, async (req, res) => {
const { newUsername, password } = req.body;
// 用户名格式校验
const usernameRegex = /^[a-zA-Z0-9_]{3,20}$/;
if (!usernameRegex.test(newUsername)) {
return res.status(400).json({ error: '用户名格式不正确3-20位只能包含字母、数字和下划线' });
}
try {
const currentUsername = req.session.user.username;
const result = await userServiceDB.changeUsername(currentUsername, newUsername, password);
// 更新session中的用户名
req.session.user.username = newUsername;
logger.info(`用户 ${currentUsername} 已修改用户名为 ${newUsername}`);
res.json({ success: true, newUsername });
} catch (error) {
logger.error('修改用户名失败:', error);
res.status(400).json({ error: error.message || '修改用户名失败' });
}
});
// 获取用户信息
router.get('/user-info', requireLogin, async (req, res) => {
try {
const userStats = await userServiceDB.getUserStats(req.session.user.username);
res.json(userStats);
} catch (error) {
logger.error('获取用户信息失败:', error);
res.status(500).json({ error: '获取用户信息失败', details: error.message });
}
});
// 生成验证码
router.get('/captcha', (req, res) => {
const num1 = Math.floor(Math.random() * 10);
const num2 = Math.floor(Math.random() * 10);
const captcha = `${num1} + ${num2} = ?`;
req.session.captcha = num1 + num2;
// 确保serverStartTime已初始化
if (!global.serverStartTime) {
global.serverStartTime = Date.now();
logger.warn(`初始化服务器启动时间: ${global.serverStartTime}`);
}
res.json({
captcha,
serverStartTime: global.serverStartTime
});
});
// 检查会话状态
router.get('/check-session', (req, res) => {
// 如果global.serverStartTime不存在创建一个
if (!global.serverStartTime) {
global.serverStartTime = Date.now();
logger.warn(`设置服务器启动时间: ${global.serverStartTime}`);
}
if (req.session && req.session.user) {
return res.json({
success: true,
user: {
username: req.session.user.username,
role: req.session.user.role,
},
serverStartTime: global.serverStartTime // 返回服务器启动时间
});
}
return res.status(401).json({
success: false,
message: '未登录',
serverStartTime: global.serverStartTime // 即使未登录也返回服务器时间
});
});
// 请求密码重置令牌(需要用户名验证)
router.post('/request-reset-token', async (req, res) => {
const { username, captcha } = req.body;
// 验证码检查
if (req.session.captcha !== parseInt(captcha)) {
logger.warn(`重置密码验证码验证失败: ${username}`);
return res.status(401).json({ error: '验证码错误' });
}
try {
// 验证用户是否存在
const user = await userServiceDB.getUserByUsername(username);
if (!user) {
logger.warn(`密码重置请求失败,用户不存在: ${username}`);
return res.status(404).json({ error: '用户不存在' });
}
// 生成重置令牌
const token = userServiceDB.generateResetToken(username);
logger.info(`用户 ${username} 请求了密码重置令牌`);
// 返回令牌(在生产环境中,这应该通过邮件发送)
res.json({
success: true,
token,
message: '重置令牌已生成有效期10分钟',
expiresIn: '10分钟'
});
} catch (error) {
logger.error('生成重置令牌失败:', error);
res.status(500).json({ error: '生成重置令牌失败', details: error.message });
}
});
// 使用令牌重置密码
router.post('/reset-password', async (req, res) => {
const { token, newPassword, confirmPassword } = req.body;
// 验证密码是否匹配
if (newPassword !== confirmPassword) {
return res.status(400).json({ error: '两次输入的密码不一致' });
}
// 密码复杂度校验
const passwordRegex = /^(?=.*[A-Za-z])(?=.*\d)(?=.*[.,\-_+=()[\]{}|\\;:'"<>?/@$!%*#?&])[A-Za-z\d.,\-_+=()[\]{}|\\;:'"<>?/@$!%*#?&]{8,16}$/;
if (!passwordRegex.test(newPassword)) {
return res.status(400).json({ error: '密码需要8-16位包含至少一个字母、一个数字和一个特殊字符' });
}
try {
const result = await userServiceDB.resetPasswordWithToken(token, newPassword);
logger.info(`用户 ${result.username} 通过重置令牌成功修改了密码`);
res.json({ success: true, message: '密码重置成功,请使用新密码登录' });
} catch (error) {
logger.error('重置密码失败:', error);
res.status(400).json({ error: error.message || '重置密码失败' });
}
});
// 验证重置令牌是否有效
router.post('/validate-reset-token', (req, res) => {
const { token } = req.body;
const username = userServiceDB.validateResetToken(token);
if (username) {
res.json({ valid: true, username });
} else {
res.status(400).json({ valid: false, error: '令牌无效或已过期' });
}
});
logger.success('✓ 认证路由已加载');
// 导出路由
module.exports = router;
Reference in New Issue View Git Blame Copy Permalink