egret-app-template/packages/server/src/middleware/auth.ts

import {Request} from "express";
import axios from "axios";
import {ApiError, ApiResponse} from "../types/api";
import type {UserInfo} from "../types/user";

export async function expressAuthentication(
  request: Request,
  securityName: string,
  scopes?: string[]
): Promise<any> {
  if (securityName === "jwt") {
    const authHeader = request.headers.authorization;
    const token = extractTokenFromHeader(authHeader);

    if (!token) {
     throw new ApiError(401, "Unauthorized");
    }

    // 返回的对象会挂到 request.user 上
    return await getUserInfoByToken(token);
  }
  throw new ApiError(401, "Unsupported security scheme");
}

/**
 * Extract Bearer token from request header
 */
export const extractTokenFromHeader = (authHeader: string | undefined): string | null => {
  if (!authHeader) {
    return null;
  }

  const parts = authHeader.split(" ");
  if (parts.length !== 2 || parts[0] !== "Bearer") {
    return null;
  }

  return parts[1];
};

/**
 * Get user information by token
 */
export const getUserInfoByToken = async (token: string): Promise<UserInfo> => {
  try {
    const response = await axios.post<ApiResponse<Omit<UserInfo, 'token'>>>(
      "https://egret.byteawake.com/api/user/info",
      {}, // 请求体数据，这里为空对象
      {
        headers: {
          Authorization: `Bearer ${token}`,
        },
        timeout: 10000, // 10 second timeout
      }
    );

    if (response.data.code !== 200 || !response.data.data) {
      throw new Error(response.data.message);
    }

    return {...response.data.data, token};
  } catch (error: any) {
    if (error.response) {
      // API returned error response
      throw new ApiError(401, `Failed to get user information: ${error.response.status} ${error.response.statusText}`);
    } else if (error.request) {
      // Request was sent but no response received
      throw new ApiError(401, "Failed to get user information: timeout or network error");
    } else {
      // Other errors
      throw new ApiError(401, `Failed to get user information: ${error.message}`);
    }
  }
};
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`import {Request} from "express";`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`import axios from "axios";`
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`import {ApiError, ApiResponse} from "../types/api";`
			`import type {UserInfo} from "../types/user";`

			`export async function expressAuthentication(`
			`request: Request,`
			`securityName: string,`
			`scopes?: string[]`
			`): Promise<any> {`
			`if (securityName === "jwt") {`
			`const authHeader = request.headers.authorization;`
			`const token = extractTokenFromHeader(authHeader);`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`if (!token) {`
			`throw new ApiError(401, "Unauthorized");`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`}`
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00
			`// 返回的对象会挂到 request.user 上`
			`return await getUserInfoByToken(token);`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`}`
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`throw new ApiError(401, "Unsupported security scheme");`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`}`

			`/**`
			`* Extract Bearer token from request header`
			`*/`
			`export const extractTokenFromHeader = (authHeader: string \| undefined): string \| null => {`
			`if (!authHeader) {`
			`return null;`
			`}`

			`const parts = authHeader.split(" ");`
			`if (parts.length !== 2 \|\| parts[0] !== "Bearer") {`
			`return null;`
			`}`

			`return parts[1];`
			`};`

			`/**`
			`* Get user information by token`
			`*/`
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`export const getUserInfoByToken = async (token: string): Promise<UserInfo> => {`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`try {`
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`const response = await axios.post<ApiResponse<Omit<UserInfo, 'token'>>>(`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`"https://egret.byteawake.com/api/user/info",`
			`{}, // 请求体数据，这里为空对象`
			`{`
			`headers: {`
			Authorization: `Bearer ${token}`,
			`},`
			`timeout: 10000, // 10 second timeout`
			`}`
			`);`

feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`if (response.data.code !== 200 \|\| !response.data.data) {`
fix(server): 处理错误消息 2025-09-26 17:25:43 +08:00			`throw new Error(response.data.message);`
feat(server): 添加用户信息获取逻辑 2025-09-11 14:02:25 +08:00			`}`
feat: 增加群组用户列表获取功能 2025-09-11 16:46:54 +08:00
feat(server): add error handler & refactor controllers 2025-09-26 15:50:37 +08:00			`return {...response.data.data, token};`
feat: 增加群组用户列表获取功能 2025-09-11 16:46:54 +08:00			`} catch (error: any) {`
			`if (error.response) {`
			`// API returned error response`
fix(server): 处理错误消息 2025-09-26 17:25:43 +08:00			throw new ApiError(401, `Failed to get user information: ${error.response.status} ${error.response.statusText}`);
feat: 增加群组用户列表获取功能 2025-09-11 16:46:54 +08:00			`} else if (error.request) {`
			`// Request was sent but no response received`
fix(server): 处理错误消息 2025-09-26 17:25:43 +08:00			`throw new ApiError(401, "Failed to get user information: timeout or network error");`
feat: 增加群组用户列表获取功能 2025-09-11 16:46:54 +08:00			`} else {`
			`// Other errors`
fix(server): 处理错误消息 2025-09-26 17:25:43 +08:00			throw new ApiError(401, `Failed to get user information: ${error.message}`);
feat: 增加群组用户列表获取功能 2025-09-11 16:46:54 +08:00			`}`
			`}`
			`};`