0

我正在尝试使用 NestJS 框架实现记住我的功能,我已经实现了 Jwt 和本地策略并像这样工作:

import { ExtractJwt, Strategy } from 'passport-jwt';
import { PassportStrategy } from '@nestjs/passport';
import { Injectable } from '@nestjs/common';
import { ConfigService } from '@nestjs/config';

@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy) {
  constructor(private configService: ConfigService) {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      ignoreExpiration: false,
      secretOrKey: configService.get('JWT_SECRET'),
    });
  }

  async validate(payload: any) {
    return { userId: payload.sub, username: payload.email };
  }
}

本地策略:

import { Strategy } from 'passport-local';
import { PassportStrategy } from '@nestjs/passport';
import { Injectable, UnauthorizedException } from '@nestjs/common';
import { AuthService } from '../services/auth.service';

@Injectable()
export class LocalStrategy extends PassportStrategy(Strategy) {
  constructor(private authService: AuthService) {
    super({ usernameField: 'email' });
  }

  async validate(email: string, password: string): Promise<any> {
    const user = await this.authService.validateUser(email, password);
    if (!user) {
      throw new UnauthorizedException();
    }
    return user;
  }
}

我想到了一种通过ignoreExpiration标志来解决它的方法,你们知道用NestJS框架实现这个的方法吗?尝试在文档上搜索,但似乎那里没有。

4

1 回答 1

0

为了将来的参考,我找到了一个解决方案。

在 jwtService 中,我使用该this.jwtService.sign(payload)方法生成令牌,在此方法上,我可以访问一个名为expiresIn(比 ignoreExpiration 标志更安全)的标志,因此我将一个布尔变量传递给 api 以检查它是否已检查记忆并相应地设置此标志。看起来像这样

remember
  ? (token = this.jwtService.sign(payload, { expiresIn: '60d' }))
  : (token = this.jwtService.sign(payload, { expiresIn: '1d' }));
于 2022-01-04T13:29:04.800 回答