v0.1.0

2025-07-29 15:36:25 -07:00
commit 0c481c7a0e
29 changed files with 6682 additions and 0 deletions
--- a/middleware/auth.js
+++ b/middleware/auth.js
@ -0,0 +1,39 @@
+const jwt = require('jsonwebtoken');
+
+// 生成JWT token
+const generateToken = (userId, username) => {
+  return jwt.sign(
+    { userId, username },
+    process.env.JWT_SECRET || 'your_jwt_secret_key_here',
+    { expiresIn: '24h' }
+  );
+};
+
+// 验证JWT token中间件
+const authenticateToken = (req, res, next) => {
+  const authHeader = req.headers['authorization'];
+  const token = authHeader && authHeader.split(' ')[1]; // Bearer TOKEN
+
+  if (!token) {
+    return res.status(401).json({ 
+      success: false, 
+      message: '访问令牌缺失' 
+    });
+  }
+
+  jwt.verify(token, process.env.JWT_SECRET || 'your_jwt_secret_key_here', (err, user) => {
+    if (err) {
+      return res.status(403).json({ 
+        success: false, 
+        message: '访问令牌无效' 
+      });
+    }
+    req.user = user;
+    next();
+  });
+};
+
+module.exports = {
+  generateToken,
+  authenticateToken
+};