6

我想实现一个分布式身份验证库以在多个项目中使用它。该库应实现 JWT 身份验证方法。代码如下:

jwt.strategy.ts

import {ExtractJwt, Strategy} from 'passport-jwt';
import {PassportStrategy} from '@nestjs/passport';
import {Injectable} from '@nestjs/common';
import {JwtPayload, User} from './interfaces';
import {ConfigService} from "./config.service";

@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
  constructor(private readonly configService: ConfigService) {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      secretOrKey: configService.get('secretOrPrivateKey'),
    });
  }

  async validate(payload: JwtPayload): Promise<User> {
     return {
      uuid: payload.uuid,
      email: payload.email,
    }
  }
}

jwt.auth.module.ts:

import {Module, DynamicModule} from '@nestjs/common';
import {JwtModule} from '@nestjs/jwt';
import {JwtStrategy} from './jwt.strategy';
import {PassportModule} from '@nestjs/passport';
import {ConfigService} from "./config.service";
import {JwtOptions} from "./interfaces/jwt.options";

@Module({
})

export class JwtAuthModule {
  static forRoot(jwtOptions): DynamicModule {
    return {
      module: JwtAuthModule,
      imports: [
        // JwtModule.register(jwtOptions),
        // PassportModule.register({defaultStrategy: 'jwt'}),
      ],
      providers: [
        JwtStrategy,
        {
          provide: ConfigService,
          useValue: new ConfigService(jwtOptions),
        }
      ],
      exports: [ConfigService, JwtStrategy]
    };
  }
}

我已经在我的app.module.ts

import { Module, NestModule, HttpModule } from '@nestjs/common';
import { MongooseModule } from '@nestjs/mongoose';
import { environment } from './environments';
import { AuthModule } from './auth/auth.module';
import { PermissionModule } from './permission/permission.module';
import {JwtAuthModule} from '@pe/nest-kit';
import {JwtModule} from '@nestjs/jwt';
import {PassportModule} from '@nestjs/passport';

@Module({
  imports: [
    JwtModule.register(environment.jwtOptions),
    PassportModule.register({defaultStrategy: 'jwt'}),
    JwtAuthModule.forRoot(environment.jwtOptions),
    HttpModule,
    AuthModule,
    PermissionModule,
    MongooseModule.forRoot(environment.mongodb),
  ],
})
export class ApplicationModule implements NestModule {
  configure() {
  }
}

但是,每次我尝试打开项目 url 时,都会出现错误:

[Nest] 27645 - 24.10.2018, 15:23:26 [ExceptionsHandler] 未知身份验证策略“jwt”+4119ms 错误:尝试未知身份验证策略“jwt”(/home/user/workspace/permissions/node_modules/passport/lib /middleware/authenticate.js:187:37) 在验证 (/home/user/workspace/permissions/node_modules/passport/lib/middleware/authenticate.js:363:7) 在 Promise (/home/user/workspace/permissions /node_modules/@nestjs/passport/dist/auth.guard.js:83:3) 在 /home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js 的新 Promise () 处: 75:83 在 MixinAuthGuard。(/home/user/workspace/permissions/node_modules/@nestjs/passport/dist/auth.guard.js:47:36) 在 Generator.next () 在 /home/user/workspace/permissions/node_modules/@nestjs/护照/dist/auth.guard.js:19:

我究竟做错了什么?

4

6 回答 6

1

你确定你已经添加了所有需要的包吗?尝试通过身份验证文档https://docs.nestjs.com/techniques/authentication它很好地解释了如何处理 JWT。

于 2018-10-24T17:59:33.830 回答
1

尝试JwtStrategy在您的模块中添加作为提供程序:

@Module({
  imports: [
   ....
  ],
  providers: [JwtStrategy],
})

然后再试一次 !

于 2020-04-30T05:26:44.253 回答
1

这是我在 github 中的代码:https ://github.com/riadhriadh/prototype_nestjs/tree/dev

在 jwt.strategy.ts

    import * as passport from 'passport';
    import { ExtractJwt, Strategy } from 'passport-jwt';
    import { Injectable } from '@nestjs/common';
    import { AuthService } from '../auth.service';
    const  config_projet =require("./projet_config");
    @Injectable()
    export class JwtStrategy extends Strategy {
      constructor(private readonly authService: AuthService) {
        super(
          {
            jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
            passReqToCallback: true,
            secretOrKey: config_projet.secret,
          },
          async (req, payload, next) => await this.verify(req, payload, next)
        );
        passport.use(this);
      }

      public async verify(req, payload, done) {
        const isValid = await this.authService.validateUser(payload);
        if (!isValid) {
          return done('Unauthorized', false);
        }
        done(null, payload);
      }
}

====================

在:auth.service.ts

import { Injectable } from '@nestjs/common';
import * as jwt from 'jsonwebtoken';
import { UsersService } from 'users/users.service';
const  config_projet =require("../projet_config");
var fs = require('fs');
@Injectable()
export class AuthService {

  constructor(private readonly usersService: UsersService) { }


  async createToken(email: string) {
    const expiresIn = 6000 * 60;
    const secretOrKey = fs.readFileSync("./key.pem");;
    const user = { email };

     const token = jwt.sign(user, secretOrKey,   { audience: 'urn:foo' });


    return { expires_in: expiresIn, token };
  }
  async validateUser(signedUser): Promise<boolean> {
    if (signedUser && signedUser.email) {
      return Boolean(this.usersService.getUserByEmail(signedUser.email));
    }

    return false;
  }
}

===============================

在:auth.controller.ts

=================================

import { Controller, Post, HttpStatus, HttpCode, Get, Response, Body } from '@nestjs/common';
import { AuthService } from './auth.service';
import { UsersService } from 'users/users.service';
import { User } from 'users/user.entity';

@Controller("auth")
export class AuthController {
    constructor(
        private readonly authService: AuthService,
        private readonly userService: UsersService
    ) {}
    @Post('login')
    async loginUser(@Response() res: any, @Body() body: User) {
      if (!(body && body.email && body.password)) {
        return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email and password are required!' });
      }

      const user = await this.userService.getUserByEmail(body.email);

      if (user) {
        if (await this.userService.compareHash(body.password, user.password)) {
          return res.status(HttpStatus.OK).json(await this.authService.createToken(user.email));
        }
      }

      return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email or password wrong!' });
    } 
    @Post('register')
    async registerUser(@Response() res: any, @Body() body: User) {
      if (!(body && body.email && body.password && body.last_name && body.first_name)) {
        return res.status(HttpStatus.FORBIDDEN).json({ message: 'Username and password are required!' });
      }

      let user = await this.userService.getUserByEmail(body.email);

      if (user) {
        return res.status(HttpStatus.FORBIDDEN).json({ message: 'Email exists' });
      } else {
        let userSave = await this.userService.create(body);
       if(userSave){
         body.password=undefined;
       }
        return res.status(HttpStatus.OK).json(userSave);
      }
    }
}
于 2018-10-24T23:26:30.500 回答
1

请在您的模块中添加 JwtStrategy 作为提供程序

@Module({
   imports: [...],
   providers: [JwtStrategy],
})

https://docs.nestjs.com/techniques/authentication

于 2020-08-03T03:21:04.063 回答
0

我通过安装解决了这个问题@types/passport。使用 NestJS、TypeScript 和 JWT。

于 2020-07-28T12:48:39.720 回答
0

解决了。在 PHP 中,我们为整个项目创建了一棵依赖树。在 npm 中,每个包都有自己的依赖子树,例如:
--passport
--@pe/nest-kit
----passport
nest-kit 使用来自 的对象----passport,但根项目使用同名类型的对象,但是实际上这是 nodejs 编译器的另一种类型。解决方案是通过@pe/nest-kit 从@nestjs/passport 重新导出AuthGuard,它可以工作。

于 2018-10-25T12:57:49.313 回答