我正在编写一个身份验证中间件,它应该在成功登录我们的注销后重定向到以前访问过的页面。这是完整的配置块:
app.configure(function(){
app.set('views', __dirname + '/views');
app.set('view engine', 'jade');
app.use(express.static(__dirname + '/public'));
app.use(express.bodyParser());
app.use(express.cookieParser());
app.use(express.session({ secret: '__YouDontKnow__', store: new RedisStore }));
app.use(authCheck.run);
app.use(express.methodOverride());
app.use(app.router);
});
现在当app.use(authCheck.run)位于app.use(express.session)下时,Express会抛出错误:错误:发送后无法设置标头。
如果我将此调用移至app.use(express.session)以上,则会抛出500错误,指出 session 未定义。我的auth函数取决于会话对象。
我该怎么办?
编辑:这是authCheck功能:
exports.run = function (req, res, next) {
var urlparser = GLOBAL.urlparser,
url = req.urlp = urlparser.parse(req.url, true),
goToLastPage = function() {
var redirectUrl = (req.session.lastVisitedPage) ? req.session.lastVisitedPage : '/';
console.log("goToLastPage(%s)", redirectUrl);
res.redirect(redirectUrl);
return;
}
// Log out
if (url.pathname == '/user/logout') {
req.session.destroy();
console.log('User has logged out');
goToLastPage();
}
// Log in
if (url.pathname == '/user/login' && req.method == 'POST') {
var email = req.body.login.email,
password = req.body.login.password;
req.session.auth = true;
req.session.userId = 1;
console.log('User has logged in');
goToLastPage();
}
next();
return;
}
答案 0 :(得分:8)
致电return后加goToLastPage()。在调用next()调用链中的下一个中间件之后,您仍然在调用res.redirect,最终可能最终命中一个路由,然后尝试设置标头并失败。