-
Notifications
You must be signed in to change notification settings - Fork 3.1k
Expand file tree
/
Copy pathmiddleware.js
More file actions
54 lines (43 loc) · 1.32 KB
/
middleware.js
File metadata and controls
54 lines (43 loc) · 1.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
'use strict';
var UserModel = require('../../models').User;
var eventproxy = require('eventproxy');
var validator = require('validator');
// 非登录用户直接屏蔽
var auth = function (req, res, next) {
var ep = new eventproxy();
ep.fail(next);
var accessToken = String(req.body.accesstoken || req.query.accesstoken || '');
accessToken = validator.trim(accessToken);
UserModel.findOne({accessToken: accessToken}, ep.done(function (user) {
if (!user) {
res.status(401);
return res.send({success: false, error_msg: '错误的accessToken'});
}
if (user.is_block) {
res.status(403);
return res.send({success: false, error_msg: '您的账户被禁用'});
}
req.user = user;
next();
}));
};
exports.auth = auth;
// 非登录用户也可通过
var tryAuth = function (req, res, next) {
var ep = new eventproxy();
ep.fail(next);
var accessToken = String(req.body.accesstoken || req.query.accesstoken || '');
accessToken = validator.trim(accessToken);
UserModel.findOne({accessToken: accessToken}, ep.done(function (user) {
if (!user) {
return next();
}
if (user.is_block) {
res.status(403);
return res.send({success: false, error_msg: '您的账户被禁用'});
}
req.user = user;
next();
}));
};
exports.tryAuth = tryAuth;