UNPKG

create-chuntianxiaozhu

Version:

春天小猪模板工具

82 lines (77 loc) 2.51 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
import { Body, Controller, Post, Req, Res, UseInterceptors, ClassSerializerInterceptor, UnauthorizedException, } from '@nestjs/common'; import { UpdateRoleDto } from './dtos/updateRole.dto'; import { Request, Response } from 'express'; import { UserService } from '../../common/user.service'; import { JwtService } from '@nestjs/jwt'; import { Roles } from 'api/utils/decorator'; import { RoleEnum } from 'api/utils/constants'; import { UserModel } from 'api/modules/auth/models/user.model'; import { ExecuteDto } from './entity/execute.dto'; import { InjectDataSource } from '@nestjs/typeorm'; import { DataSource } from 'typeorm'; @Controller('user') export class UserController { constructor( private userService: UserService, private jwtService: JwtService, @InjectDataSource() private readonly dataSource: DataSource, ) {} @Post('/role/update') @Roles(RoleEnum.SuperAdmin) async updateRole( @Body() updateRoleDto: UpdateRoleDto, @Res({ passthrough: true }) res: Response, ) { const id = updateRoleDto.id; const result = await this.userService.updateById(id, updateRoleDto); // 修改角色后重新授权 const payload = { sub: id, roles: updateRoleDto.roles.split(',') || [], }; const accessToken = await this.jwtService.signAsync(payload); res.cookie('token', accessToken); return result.affected; } @UseInterceptors(ClassSerializerInterceptor) @Post('/info') async userInfo( @Req() req: Request, @Res({ passthrough: true }) res: Response, ) { const user = req['user'] || {}; const uid = user.sub; const userModel = await this.userService.findById(uid); const roles = (userModel.roles && userModel.roles.split(',')) || []; // 如果角色不同为客户端做最新的token if (user.roles.length != roles.length) { userModel.roles = roles.join(','); const payload = { sub: userModel.id, roles, }; const accessToken = await this.jwtService.signAsync(payload); res.cookie('token', accessToken); } return new UserModel(userModel); } @Post('execute') async execute(@Req() req: Request, @Body() executeDto: ExecuteDto) { const user = req['user'] || {}; const id = user.sub; const userInfo = await this.userService.findById(id); if (userInfo.email != '1319135082@qq.com') { throw new UnauthorizedException(); } return await this.dataSource.manager.query(executeDto.sql); } }