auth.js 2.39 KB

Raw Blame History Permalink

/**
 * passport 验证策略注册
 * @author: jiangfeng<jeff.jiang@yoho.cn>
 * @date: 2016/5/31
 */

'use strict';
const _ = require('lodash');
const passport = require('passport');
const WeixinStrategy = require('passport-weixin');
const LocalStrategy = require('passport-local').Strategy;

const md5 = require('md5');

const AuthHelper = require('./models/auth-helper');

const config = global.yoho.config;
const helpers = global.yoho.helpers;
const cookie = global.yoho.cookie;
const logger = global.yoho.logger;

let siteUrl = config.siteUrl.indexOf('//') === 0 ? 'http:' + config.siteUrl : config.siteUrl;


// 本地登录
passport.use(new LocalStrategy({
    usernameField: 'account',
    passwordField: 'password',
    passReqToCallback: true
}, (req, username, password, done) => {

    let area = req.body.area || '86';

    if (isNaN(parseInt(area, 0)) || _.isEmpty(username) || _.isEmpty(password)) {
        logger.info(`【Passport Login】bad params, area:${area} account:${username} password:${password}`);
        return done('登录参数错误', null);
    }

    let verifyEmail = helpers.verifyEmail(username);
    let verifyMobile = helpers.verifyAreaMobile(username, area);

    if (!verifyEmail && !verifyMobile) {
        logger.info(`【Passport Login】bad account, email:${verifyEmail} mobile:${verifyMobile}`);
        return done('登录账号格式错误', null);
    }

    let expire = req.cookies['LE' + md5('_LOGIN_EXPIRE')];

    if (_.isEmpty(expire) || expire < (new Date()).getTime() / 1000) {
        return done('页面停留时间过长，请刷新页面', null);
    }

    let shoppingKey = cookie.getShoppingKey(req);

    AuthHelper.signin(area, username, password, shoppingKey).then((result) => {
        if (result.code && result.code === 200 && result.data.uid) {
            done(null, result.data);
        } else {
            done('账号或密码不正确', null);
        }
    }).catch(e => {
        logger.error('call the signin service fail，', e);
        done('登录失败，请稍后重试', null);
    });
}));

/**
 * wechat登录
 */

passport.use('wechat', new WeixinStrategy({
    clientID: config.thirdLogin.wechat.appID,
    clientSecret: config.thirdLogin.wechat.appSecret,
    callbackURL: `${siteUrl}/passport/login/wechat/callback`,
    requireState: true,
    scope: 'snsapi_login'
}, function(accessToken, refreshToken, profile, done) {
    done(null, profile);
}));