feat: 后端调整登陆逻辑

2025-12-16 22:48:51 +08:00
parent b235ca8a6e
commit 70517058ae
13 changed files with 305 additions and 194 deletions
--- a/apps/backend/src/auth/auth.controller.ts
+++ b/apps/backend/src/auth/auth.controller.ts
@@ -2,37 +2,86 @@ import {
  BadRequestException,
  Body,
  Controller,
+  NotImplementedException,
  Post,
  Request,
+  Res,
  UseGuards,
 } from '@nestjs/common';
-import { LoginDto } from './dto/login.dto';
+import { LoginByPasswordDto } from './dto/login.dto';
 import { AuthService } from './auth.service';
 import { AuthGuard } from '@nestjs/passport';
 import { UserSessionService } from 'src/user/services/user-session.service';
 import { Throttle, ThrottlerGuard } from '@nestjs/throttler';
+import { Response } from 'express';
+import { UserService } from 'src/user/user.service';

@Controller('auth')
 export class AuthController {
  constructor(
    private readonly authService: AuthService,
+    private readonly userService: UserService,
    private readonly userSessionService: UserSessionService,
-  ) {}
+  ) { }

-  @Post('login')
-  @UseGuards(ThrottlerGuard)
-  @Throttle({ default: { limit: 20, ttl: 60000 } })
-  async login(@Body() loginDto: LoginDto) {
-    switch (loginDto.type) {
-      case 'password':
-        return this.authService.loginWithPassword(loginDto);
-      case 'phone':
-        return this.authService.loginWithPhone(loginDto);
-      case 'email':
-        return this.authService.loginWithEmail(loginDto);
-      default:
-        throw new BadRequestException('服务器错误');
-    }
+  // @Post('login')
+  // @UseGuards(ThrottlerGuard)
+  // @Throttle({ default: { limit: 20, ttl: 60000 } })
+  // async login(@Body() loginDto: LoginDto) {
+  //   switch (loginDto.type) {
+  //     case 'password':
+  //       return this.authService.loginWithPassword(loginDto);
+  //     case 'phone':
+  //       return this.authService.loginWithPhone(loginDto);
+  //     case 'email':
+  //       return this.authService.loginWithEmail(loginDto);
+  //     default:
+  //       throw new BadRequestException('服务器错误');
+  //   }
+  // }
+
+  private setUserToken(res: Response, token: string) {
+    res.cookie('token', token, {
+      httpOnly: true,
+      secure: process.env.NODE_ENV === 'production',
+      sameSite: 'lax',
+      // 永不过期，不用设置maxAge
+      path: '/',
+    })
+  }
+
+  @Post('login/password')
+  async loginByPassword(
+    @Body() loginDto: LoginByPasswordDto,
+    @Res({ passthrough: true }) res: Response,
+  ) {
+    const { identifier, password } = loginDto;
+    const loginRes = await this.authService.loginWithPassword(identifier, password);
+    const { userId, token } = loginRes;
+    this.setUserToken(res, token);
+    return {
+      user: await this.userService.findById(userId),
+    };
+  }
+
+  @Post('sms/send')
+  async sendSms() {
+    throw new NotImplementedException();
+  }
+
+  @Post('login/sms')
+  async loginBySms() {
+    throw new NotImplementedException();
+  }
+
+  @Post('passkey/login/options')
+  async loginByPasskeyOptions() {
+    throw new NotImplementedException();
+  }
+
+  @Post('passkey/login')
+  async loginByPasskey() {
+    throw new NotImplementedException();
  }

  @UseGuards(AuthGuard('jwt'))