mirror of
https://github.com/ZeroCatDev/ClassworksKV.git
synced 2025-10-22 10:23:12 +00:00
55 lines
1.5 KiB
JavaScript
55 lines
1.5 KiB
JavaScript
import jwt from 'jsonwebtoken';
|
||
|
||
// JWT 配置(支持 HS256 与 RS256)
|
||
const JWT_ALG = (process.env.JWT_ALG || 'HS256').toUpperCase();
|
||
const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || '7d';
|
||
|
||
// HS256 密钥
|
||
const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key-change-this-in-production';
|
||
|
||
// RS256 密钥对(PEM 格式字符串)
|
||
const JWT_PRIVATE_KEY = process.env.JWT_PRIVATE_KEY?.replace(/\\n/g, '\n');
|
||
const JWT_PUBLIC_KEY = process.env.JWT_PUBLIC_KEY?.replace(/\\n/g, '\n');
|
||
|
||
function getSignVerifyKeys() {
|
||
if (JWT_ALG === 'RS256') {
|
||
if (!JWT_PRIVATE_KEY || !JWT_PUBLIC_KEY) {
|
||
throw new Error('RS256 需要同时提供 JWT_PRIVATE_KEY 与 JWT_PUBLIC_KEY');
|
||
}
|
||
return { signKey: JWT_PRIVATE_KEY, verifyKey: JWT_PUBLIC_KEY };
|
||
}
|
||
// 默认 HS256
|
||
return { signKey: JWT_SECRET, verifyKey: JWT_SECRET };
|
||
}
|
||
|
||
/**
|
||
* 签发JWT token
|
||
*/
|
||
export function signToken(payload) {
|
||
const { signKey } = getSignVerifyKeys();
|
||
return jwt.sign(payload, signKey, {
|
||
expiresIn: JWT_EXPIRES_IN,
|
||
algorithm: JWT_ALG,
|
||
});
|
||
}
|
||
|
||
/**
|
||
* 验证JWT token
|
||
*/
|
||
export function verifyToken(token) {
|
||
const { verifyKey } = getSignVerifyKeys();
|
||
return jwt.verify(token, verifyKey, { algorithms: [JWT_ALG] });
|
||
}
|
||
|
||
/**
|
||
* 为账户生成JWT token
|
||
*/
|
||
export function generateAccountToken(account) {
|
||
return signToken({
|
||
accountId: account.id,
|
||
provider: account.provider,
|
||
email: account.email,
|
||
name: account.name,
|
||
avatarUrl: account.avatarUrl,
|
||
});
|
||
} |