forked from kikoeru-project/kikoeru-express
-
Notifications
You must be signed in to change notification settings - Fork 0
/
api.js
28 lines (23 loc) · 995 Bytes
/
api.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
const routes = require('./routes')
const expressJwt = require('express-jwt'); // 把 JWT 的 payload 部分赋值于 req.user
const { config } = require('./config');
const { issuer, audience } = require('./auth/utils')
/**
* Get token from header or query string.
*/
const getToken = (req) => {
if (req.headers.authorization && req.headers.authorization.split(' ')[0] === 'Bearer') {
return req.headers.authorization.split(' ')[1];
} else if (req.query && req.query.token) {
return req.query.token;
}
return null;
}
module.exports = (app) => {
if (config.auth) {
// expressJwt 中间件
// 验证指定 http 请求的 JsonWebTokens 的有效性, 如果有效就将 JsonWebTokens 的值设置到 req.user 里面, 然后路由到相应的 router
app.use('/api', expressJwt({ secret: config.jwtsecret, audience: audience, issuer: issuer, getToken, algorithms: ['HS256'] }).unless({ path: ['/api/auth/me', '/api/health'] }));
}
app.use('/api', routes);
};