许多教程,告诉你在userSchema页面中使用bycrypt。保存新用户后,它会使用加密密码。大。 然而,我想,当我用某些东西编辑用户时,它也会重新密码,无法登录。你能否建议我一个解决方案?谢谢。
const mongoose = require('mongoose');
const Schema = mongoose.Schema;
const bcrypt = require('bcrypt-nodejs');
const eventSchema = require('./eventSchema');
const userSchema = new Schema({
email: { type: String, unique: true, lowercase: true },
password: String,
eventList: [{
type: Schema.ObjectId,
ref: "event"
}],
administrator: { type: Boolean, default: false }
});
// On Save Hook, encrypt password
// Before saving a model, run this function
userSchema.pre('save', function(next) {
// get access to the user model
const user = this;
// generate a salt then run callback
bcrypt.genSalt(10, function(err, salt) {
if (err) { return next(err); }
// hash (encrypt) our password using the salt
bcrypt.hash(user.password, salt, null, function(err, hash) {
if (err) { return next(err); }
// overwrite plain text password with encrypted password
user.password = hash;
next();
});
});
});
userSchema.methods.comparePassword = function(candidatePassword, callback) {
bcrypt.compare(candidatePassword, this.password, function(err, isMatch) {
if (err) { return callback(err); }
callback(null, isMatch);
});
};
// Create the model class
const ModelClass = mongoose.model('user', userSchema);
// Export the model
module.exports = ModelClass;
答案 0 :(得分:3)
也许您可以使用isModified检查密码是否被修改。
userSchema.pre('save', function(next) {
const user = this;
if (!user.isModified('password')) return next();
bcrypt.genSalt(10, function(err, salt) {
if (err) return next(err);
bcrypt.hash(user.password, salt, null, function(err, hash) {
if (err) return next(err);
user.password = hash;
next();
});
});
});