login.js 10 KB
/**
 * 登录
 * @author: Bi Kai<kai.bi@yoho.cn>
 * @date: 2016/05/09
 */
'use strict';

const _ = require('lodash');
const passport = require('passport');
const uuid = require('uuid');
const md5 = require('md5');
const cookie = global.yoho.cookie;
const helpers = global.yoho.helpers;
const log = global.yoho.logger;
const config = global.yoho.config;
const cache = global.yoho.cache;
const AuthHelper = require('../models/auth-helper');
const PassportHelper = require('../models/passport-helper');
const loginPageURL = `${config.siteUrl}/passport/login`;

// 第三方登录回调
function doPassportCallback(req, res, user) {
    let shoppingKey = cookie.getShoppingKey(req);
    let refer = req.cookies.refer;

    if (refer) {
        refer = decodeURI(req.cookies.refer);
    } else {
        refer = config.siteUrl;
    }

    if (/sign|login|passport/.test(refer)) {
        refer = config.siteUrl;
    }

    if (user.openId && user.nickname) {
        let signinByOpenID = AuthHelper.signinByOpenID(
            user.nickname, user.openId, user.sourceType, shoppingKey, user.unionId);

        return signinByOpenID.then((result) => {
            if (result.code !== 200) {
                return Promise.reject(result);
            }

            if (result.data['is_bind'] && result.data['is_bind'] === 'N') { //eslint-disable-line
                return helpers.urlFormat('/passport/thirdlogin/index', {
                    openId: user.unionId || user.openId,
                    sourceType: user.sourceType,
                    refer: refer
                });
            } else if (result.code === 200 && result.data.uid) {
                return AuthHelper.syncUserSession(result.data.uid, req, res).then(() => {
                    return refer;
                });
            }
        }).then((redirectTo) => {
            return res.redirect(redirectTo);
        });
    } else {
        res.redirect(loginPageURL);
    }
}

const common = {
    beforeLogin: (req, res, next) => {
        let refer = req.query.refer;

        if (!refer) {
            refer = req.get('Referer');
        }
        refer && res.cookie('refer', encodeURI(refer), {
            domain: config.cookieDomain
        });
        next();
    },
    needCaptcha: (req, res, next) => {
        let account = req.query.account;
        let result = {code: 400, message: '', data: ''};

        if (account) {
            let errorLoginKey = 'account_errorlogin_' + account;

            cache.get(errorLoginKey).then(errloginTimes => {
                errloginTimes = parseInt(errloginTimes, 0) || 0;
                if (!isNaN(errloginTimes) && errloginTimes >= 3) {
                    result.data = {needCaptcha: true};
                }
                res.json(result);
            }).catch(next);
        } else {
            res.json(result);
        }
    }
};

const local = {
    loginPage: (req, res) => {
        // 设置登录有效时间30分钟, 防机器刷,cache不稳定,改为cookie
        res.cookie('LE' + md5('_LOGIN_EXPIRE'), (new Date()).getTime() / 1000 + 1800);

        let bindMobile = _.trim(req.query.bindMobile || '');
        let bindArea = '+' + _.trim(req.query.bindArea || '86');
        let areaArr = PassportHelper.getCountry();
        let areaName = '';

        if (bindArea) {
            let area = areaArr.find((a) => {
                return a.areaCode === bindArea;
            });

            areaName = area ? area.name : '';
        }

        res.display('login', {
            loginPage: true,
            defaultHeader: false,
            passport: {
                countryCode: bindArea,
                countryName: areaName,
                countryList: areaArr,
                forgetPwd: helpers.urlFormat('/passport/back/index'),
                fastReg: helpers.urlFormat('/passport/reg'),
                weixinLogin: helpers.urlFormat('/passport/autosign/wechat'),
                qqLogin: helpers.urlFormat('/passport/autosign/qq'),
                weiboLogin: helpers.urlFormat('/passport/autosign/sina'),
                alipayLogin: helpers.urlFormat('/passport/autosign/alipay'),
                bindMobile: bindMobile
            },
            module: 'passport',
            page: 'login',
            title: '用户登录'
        });
    },
    login: (req, res, next) => {
        passport.authenticate('local', (err, user) => {
            if (err) {
                res.json({
                    code: 400,
                    message: err.message,
                    data: {
                        needCaptcha: err.needCaptcha
                    }
                });
            } else {
                let isRemember = req.body.isRemember;
                let refer = req.cookies.refer;

                if (isRemember) {
                    AuthHelper.rememberAccount({
                        area: req.body.areaCode || '86',
                        account: req.body.account,
                        password: req.body.password
                    }, req, res);
                }

                if (refer) {
                    refer = decodeURI(req.cookies.refer);
                } else {
                    refer = `${config.siteUrl}`;
                }

                if (/sign|login|passport/.test(refer)) {
                    refer = `${config.siteUrl}`;
                }

                user.href = refer;
                AuthHelper.syncUserSession(user.uid, req, res).then(() => {
                    res.json({
                        code: 200,
                        data: user
                    });
                });
            }
        })(req, res, next);
    },
    logout: (req, res) => {
        req.session = null;

        res.clearCookie('_UID', {
            domain: config.cookieDomain
        });
        res.clearCookie('_TOKEN', {
            domain: config.cookieDomain
        });

        res.clearCookie('_USERNAME', {
            domain: config.cookieDomain
        });

        res.clearCookie('_SPK');
        res.clearCookie('_g');
        res.clearCookie('isRemember');
        res.clearCookie('remem');
        res.redirect(config.siteUrl);
    }
};

const wechat = {
    login: (req, res, next) => {
        req.session = req.session || {};
        req.session.authState = uuid.v4();
        return passport.authenticate('wechat', {
            state: req.session.authState
        })(req, res, next);
    },
    callback: (req, res, next) => {
        if (req.session && req.session.authState && req.session.authState === req.query.state) {
            passport.authenticate('wechat', (err, user) => {
                if (err) {
                    log.error(`wechat authenticate error : ${JSON.stringify(err)}`);
                    return res.redirect(loginPageURL);
                } else {
                    doPassportCallback(req, res, {
                        openId: user._json.openid,
                        unionId: user._json.unionid || user.id,
                        nickname: user._json.nickname || user.displayName,
                        sourceType: 'wechat',
                        rawUser: user
                    }).catch(next);
                }
            })(req, res, next);
        } else {
            return next(new Error(`session:${req.session.authState},query:${req.query.state}`));
        }
    }
};

const sina = {
    login: (req, res, next) => {
        req.session = req.session || {};
        req.session.authState = uuid.v4();
        return passport.authenticate('sina', {
            state: req.session.authState
        })(req, res, next);
    },
    callback: (req, res, next) => {
        if (req.session && req.session.authState && req.session.authState === req.query.state) {
            passport.authenticate('sina', (err, user) => {
                if (err) {
                    log.error(`sina authenticate error : ${JSON.stringify(err)}`);
                    return res.redirect(loginPageURL);
                }
                let nickname = user.screen_name;
                let openId = user.id;

                doPassportCallback(req, res, {
                    openId: openId,
                    nickname: nickname,
                    sourceType: 'sina'
                }).catch(next);
            })(req, res, next);
        } else {
            return next(new Error('Auth State Mismatch'));
        }
    }
};

const qq = {
    login: (req, res, next) => {
        req.session = req.session || {};
        req.session.authState = uuid.v4();
        return passport.authenticate('qq', {
            state: req.session.authState
        })(req, res, next);
    },
    callback: (req, res, next) => {
        if (req.session && req.session.authState && req.session.authState === req.query.state) {
            passport.authenticate('qq', (err, user) => {
                if (err) {
                    log.error(`qq authenticate error : ${JSON.stringify(err)}`);
                    return res.redirect(loginPageURL);
                }
                let nickname = user.nickname;
                let openId = user.id;

                doPassportCallback(req, res, {
                    openId: openId,
                    nickname: nickname,
                    sourceType: 'qq'
                }).catch(next);
            })(req, res, next);
        } else {
            return next(new Error('Auth State Mismatch'));
        }
    }
};

const alipay = {
    login: (req, res, next) => {
        return passport.authenticate('alipay')(req, res, next);
    },
    callback: (req, res, next) => {
        passport.authenticate('alipay', (err, user) => {
            if (err) {
                log.error(`alipay authenticate error : ${JSON.stringify(err)}`);
                return res.redirect(loginPageURL);
            }
            let nickname = user.realName;
            let openId = user.userId;

            doPassportCallback(req, res, {
                openId: openId,
                nickname: nickname,
                sourceType: 'alipay'
            }).catch(next);
        })(req, res, next);
    }
};

module.exports = {
    common: common,
    local: local,
    wechat: wechat,
    qq: qq,
    sina: sina,
    alipay: alipay
};