我想实现一个可分发的身份验证库,以在我的几个项目中使用它。该库应实现JWT身份验证方法。代码如下:
jwt.strategy.ts:
import {ExtractJwt, Strategy} from 'passport-jwt';
import {PassportStrategy} from '@nestjs/passport';
import {Injectable} from '@nestjs/common';
import {JwtPayload, User} from './interfaces';
import {ConfigService} from "./config.service";
@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
constructor(private readonly configService: ConfigService) {
super({
jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
secretOrKey: configService.get('secretOrPrivateKey'),
});
}
async validate(payload: JwtPayload): Promise<User> {
return {
uuid: payload.uuid,
email: payload.email,
}
}
}
jwt.auth.module.ts:
import {Module, DynamicModule} from '@nestjs/common';
import {JwtModule} from '@nestjs/jwt';
import {JwtStrategy} from './jwt.strategy';
import {PassportModule} from '@nestjs/passport';
import {ConfigService} from "./config.service";
import {JwtOptions} from "./interfaces/jwt.options";
@Module({
})
export class JwtAuthModule {
static forRoot(jwtOptions): DynamicModule {
return {
module: JwtAuthModule,
imports: [
// JwtModule.register(jwtOptions),
// PassportModule.register({defaultStrategy: 'jwt'}),
],
providers: [
JwtStrategy,
{
provide: ConfigService,
useValue: new ConfigService(jwtOptions),
}
],
exports: [ConfigService, JwtStrategy]
};
}
}
并且我已经将其导入了我的app.module.ts中:
import { Module, NestModule, HttpModule } from '@nestjs/common';
import { MongooseModule } from '@nestjs/mongoose';
import { environment } from './environments';
import { AuthModule } from './auth/auth.module';
import { PermissionModule } from './permission/permission.module';
import {JwtAuthModule} from '@pe/nest-kit';
import {JwtModule} from '@nestjs/jwt';
import {PassportModule} from '@nestjs/passport';
@Module({
imports: [
JwtModule.register(environment.jwtOptions),
PassportModule.register({defaultStrategy: 'jwt'}),
JwtAuthModule.forRoot(environment.jwtOptions),
HttpModule,
AuthModule,
PermissionModule,
MongooseModule.forRoot(environment.mongodb),
],
})
export class ApplicationModule implements NestModule {
configure() {
}
}
但是,每次我尝试打开项目url时,都会出现错误:
[嵌套] 27645-2018年10月24日,15:23:26 [ExceptionsHandler]未知 身份验证策略“ jwt” + 4119ms错误:未知身份验证 策略“ jwt” 尝试尝试(/home/user/workspace/permissions/node_modules/passport/lib/middleware/authenticate.js:187:37) 在认证时(/home/user/workspace/permissions/node_modules/passport/lib/middleware/authenticate.js:363:7) 在Promise(/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:83:3) 在新的Promise() 在/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:75:83 在MixinAuthGuard。 (/家庭/用户/工作区/权限/node_modules/@nestjs/passport/dist/auth.guard.js:47:36) 在Generator.next() 在/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:19:71 在新的Promise() 在__awaiter(/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:15:12) 在MixinAuthGuard.canActivate(/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:40:20) 在GuardsConsumer.tryActivate(/home/user/workspace/permissions/node_modules/@nestjs/core/guards/guards-consumer.js:13:34) 在canActivateFn(/home/user/workspace/permissions/node_modules/@nestjs/core/router/router-execution-context.js:97:59) 在/home/user/workspace/permissions/node_modules/@nestjs/core/router/router-execution-context.js:47:37 在/home/user/workspace/permissions/node_modules/@nestjs/core/router/router-proxy.js:8:23 在Layer.handle [作为handle_request](/home/user/workspace/permissions/node_modules/express/lib/router/layer.js:95:5)
我在做什么错了?
答案 0 :(得分:1)
尝试将JwtStrategy添加为模块中的提供者:
@Module({
imports: [
....
],
providers: [JwtStrategy],
})
然后重试!
答案 1 :(得分:1)
请在您的模块中将JwtStrategy添加为提供程序
@Module({
imports: [...],
providers: [JwtStrategy],
})
答案 2 :(得分:0)
您确定已添加所有需要的软件包吗?尝试浏览身份验证文档https://docs.nestjs.com/techniques/authentication,它很好地说明了如何处理JWT。
答案 3 :(得分:0)
这是我在github中的代码:https://github.com/riadhriadh/prototype_nestjs/tree/dev
在jwt.strategy.ts
import * as passport from 'passport';
import { ExtractJwt, Strategy } from 'passport-jwt';
import { Injectable } from '@nestjs/common';
import { AuthService } from '../auth.service';
const config_projet =require("./projet_config");
@Injectable()
export class JwtStrategy extends Strategy {
constructor(private readonly authService: AuthService) {
super(
{
jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
passReqToCallback: true,
secretOrKey: config_projet.secret,
},
async (req, payload, next) => await this.verify(req, payload, next)
);
passport.use(this);
}
public async verify(req, payload, done) {
const isValid = await this.authService.validateUser(payload);
if (!isValid) {
return done('Unauthorized', false);
}
done(null, payload);
}
}
==================
import { Injectable } from '@nestjs/common';
import * as jwt from 'jsonwebtoken';
import { UsersService } from 'users/users.service';
const config_projet =require("../projet_config");
var fs = require('fs');
@Injectable()
export class AuthService {
constructor(private readonly usersService: UsersService) { }
async createToken(email: string) {
const expiresIn = 6000 * 60;
const secretOrKey = fs.readFileSync("./key.pem");;
const user = { email };
const token = jwt.sign(user, secretOrKey, { audience: 'urn:foo' });
return { expires_in: expiresIn, token };
}
async validateUser(signedUser): Promise<boolean> {
if (signedUser && signedUser.email) {
return Boolean(this.usersService.getUserByEmail(signedUser.email));
}
return false;
}
}
=============================
在:auth.controller.ts
===============================
import { Controller, Post, HttpStatus, HttpCode, Get, Response, Body } from '@nestjs/common';
import { AuthService } from './auth.service';
import { UsersService } from 'users/users.service';
import { User } from 'users/user.entity';
@Controller("auth")
export class AuthController {
constructor(
private readonly authService: AuthService,
private readonly userService: UsersService
) {}
@Post('login')
async loginUser(@Response() res: any, @Body() body: User) {
if (!(body && body.email && body.password)) {
return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email and password are required!' });
}
const user = await this.userService.getUserByEmail(body.email);
if (user) {
if (await this.userService.compareHash(body.password, user.password)) {
return res.status(HttpStatus.OK).json(await this.authService.createToken(user.email));
}
}
return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email or password wrong!' });
}
@Post('register')
async registerUser(@Response() res: any, @Body() body: User) {
if (!(body && body.email && body.password && body.last_name && body.first_name)) {
return res.status(HttpStatus.FORBIDDEN).json({ message: 'Username and password are required!' });
}
let user = await this.userService.getUserByEmail(body.email);
if (user) {
return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email exists' });
} else {
let userSave = await this.userService.create(body);
if(userSave){
body.password=undefined;
}
return res.status(HttpStatus.OK).json(userSave);
}
}
}
答案 4 :(得分:0)
解决了。
在PHP中,整个项目只有一棵依赖树。在npm中,每个程序包都有其自己的依赖项子树e。 g .:
--passport
-@ pe / nest-kit
----护照
nest-kit使用----passport中的对象,但是根项目使用的是具有相同名称的类型的对象,但实际上,这是nodejs编译器的另一种类型。解决方案是通过@ pe / nest-kit从@ nestjs / passport重新导出AuthGuard,并且可以使用。
答案 5 :(得分:0)
我通过安装@types/passport解决了这个问题。使用NestJS,TypeScript和JWT。