自律小屋✨
搭建一个 Koa2 + TypeORM + TypeScript + Webpack + PM2 + ESLint + Prettier 的工程
编写此笔记时所使用的Koa2版本为2.14.2
相关文档
项目初始化
新建文件夹server并打开
sh
mkdir server && cd server初始化git
sh
git init
touch .gitignore设置忽略文件,内容根据自己的情况进行调整
查看
ini
# compiled output
/dist
/node_modules
# Logs
logs
*.log
npm-debug.log*
pnpm-debug.log*
yarn-debug.log*
yarn-error.log*
lerna-debug.log*
# OS
.DS_Store
# IDEs and editors
/.idea
.project
.vscode
.classpath
.c9/
*.launch
.settings/
*.sublime-workspace
*.code-workspace
# local env files
.env*.local
*.rest
*.http配置EditorConfig
新建.editorconfig,设置编辑器和 IDE 规范,内容根据自己的喜好或者团队规范进行调整
ini
# https://editorconfig.org
root = true
[*]
charset = utf-8
indent_style = space
indent_size = 2
end_of_line = lf
insert_final_newline = true
trim_trailing_whitespace = true
[*.md]
insert_final_newline = false
trim_trailing_whitespace = false初始化npm
sh
pnpm init -y安装TypeScript
sh
pnpm add -D typescript @types/node初始化tsconfig.json
sh
npx tsc --init初始化生成的tsconfig.json含有许多备注,如果嫌麻烦可以直接使用下面的模板,项目设定根据实际情况填写即可
json
{
"compilerOptions": {
"module": "commonjs",
"target": "esnext",
"outDir": "./dist",
"baseUrl": "./",
"paths": {
"~/*": ["./src/*"]
},
"moduleResolution": "node",
"allowSyntheticDefaultImports": true,
"incremental": true,
"strictNullChecks": false,
"strictBindCallApply": false,
"noFallthroughCasesInSwitch": false,
"sourceMap": true,
"strict": true,
"esModuleInterop": true,
"skipLibCheck": true,
"noImplicitAny": false,
"forceConsistentCasingInFileNames": true,
"emitDecoratorMetadata": true,
"experimentalDecorators": true,
"removeComments": true
},
"include": ["src"],
"exclude": ["node_modules", "dist", "public"]
}检验TypeScript环境
新建src/index.ts
sh
mkdir src && touch src/index.ts写入如下代码,然后编译npx tsc
ts
console.log('hello world')编译成功的话,项目根目录下会生成dist文件夹,里面有index.js
试试用node dist/index.js运行看看,输出hello world的话说明typescript环境搭建成功了,之后就可以继续完善工程了
代码规范
安装ESLint
sh
npx eslint --init选第二个
选第一个
因为不是前端项目,所以选第三个
选TypeScript,然后运行环境按a全选
eslint配置文件的的保存格式,选第一个
是否立即安装所需的依赖,选 Yes
这里根据项目构建所使用的包管理器进行选择,因为本项目使用pnpm,所以选第三个
安装Prettier
sh
pnpm add -D prettier eslint-config-prettier eslint-plugin-prettier新建.prettierrc文件,并写入如下配置,可以根据自己喜好进行调整
json
{
"$schema": "https://json.schemastore.org/prettierrc",
"semi": false,
"tabWidth": 2,
"printWidth": 120,
"singleQuote": true,
"trailingComma": "es5"
}新建.eslintignore和.prettierignore文件,并写入如下配置,可以根据自己喜好进行调整
ini
.DS_Store
node_modules
dist
.idea
.vscodeini
.DS_Store
node_modules
dist
.idea
.vscode在.eslintrc.js中集成prettier
js
module.exports = {
root: true,
env: {
browser: true,
es2021: true,
node: true,
},
extends: [
'eslint:recommended',
'plugin:@typescript-eslint/recommended',
'prettier',
'plugin:prettier/recommended',
],
overrides: [
{
env: {
node: true,
},
files: ['.eslintrc.{js,cjs}'],
parserOptions: {
sourceType: 'script',
},
},
],
parser: '@typescript-eslint/parser',
parserOptions: {
ecmaVersion: 'latest',
sourceType: 'module',
},
plugins: ['@typescript-eslint', 'prettier'],
rules: {
complexity: ['error', 10],
'prettier/prettier': 'error',
'no-console': process.env.NODE_ENV === 'production' ? 'warn' : 'off',
'no-debugger': process.env.NODE_ENV === 'production' ? 'warn' : 'off',
},
}配置执行脚本
此项目的开发环境使用ts-node和nodemon来运行项目和监听热重载,使用dotenv来注入环境变量,生产环境使用pm2来部署
环境变量
sh
pnpm add -D dotenv dotenv-expand cross-env根目录下新建.env或.env.local文件,根据项目需求写入自己的环境变量,如
ini
NODE_ENV=development
# 应用配置
APP_HOST=localhost
APP_PORT=3000新建src/env.ts,用来加载多环境变量配置文件
ts
import fs from 'node:fs'
import path from 'node:path'
import { parse } from 'dotenv'
import { expand } from 'dotenv-expand'
/** 同步读取文件 */
function tryStatSync(file: string): fs.Stats | undefined {
try {
return fs.statSync(file, { throwIfNoEntry: false })
} catch {}
}
/** 获取env文件列表 */
function getEnvFilesForMode(mode: string): string[] {
return [
/** default file */ `.env`,
/** local file */ `.env.local`,
/** mode file */ `.env.${mode}`,
/** mode local file */ `.env.${mode}.local`,
]
}
/** 加载环境变量 */
function loadEnv(envDir: string) {
const envFiles = getEnvFilesForMode(process.env.NODE_ENV ?? 'development')
const parsed = Object.fromEntries(
envFiles.flatMap((file) => {
const filePath = path.join(envDir, file)
if (!tryStatSync(filePath)?.isFile()) return []
return Object.entries(parse(fs.readFileSync(filePath)))
})
)
expand({ parsed })
return parsed
}
loadEnv(path.resolve(__dirname, '../'))修改入口文件src/index.ts,在第一行加上
ts
import './env'
// ...安装nodemon
sh
pnpm add -D nodemon ts-node tsconfig-paths新建nodemon.json文件,并写入如下内容
json
{
"watch": ["src", ".env", ".env.local"],
"ext": "ts,tsx",
"delay": 1000,
"verbose": true,
"exec": "ts-node -r tsconfig-paths/register src/index.ts"
}⚡
- watch 表示要监听的文件或文件夹
- ext 表示监听的文件类型
- delay 表示延迟时间
- verbose 表示输出详细信息
- exec 表示执行的命令
- tsconfig-paths 是用来识别
import的路径别名
- tsconfig-paths 是用来识别
安装pm2
sh
pnpm add -D pm2 tsc-alias根目录新建ecosystem.config.js,并写入如下内容
js
const { name } = require('./package.json')
const path = require('path')
module.exports = {
apps: [
{
name, // 应用程序名称
cwd: './dist', // 启动应用程序的目录
script: path.resolve(__dirname, './dist/index.js'), // 启动脚本路径
instances: require('os').cpus().length, // 要启动的应用实例数量
max_memory_restart: '1G', // 超过指定的内存量,应用程序将重新启动
autorestart: true, // 自动重启
watch: true, // 启用监视和重启功能
// 环境变量
env: {
NODE_ENV: 'production',
},
},
],
}修改package.json
json
{
"main": "dist/index.js",
// ...
"scripts": {
"dev": "nodemon",
"clear": "rm -rf dist/*",
"build": "cross-env NODE_ENV=production npm run clear && cp .env.production dist/ && tsc && tsc-alias",
"preview": "cross-env NODE_ENV=production node dist/index.js dotenv_config_path=.env.production",
"deploy": "pm2 start",
"deploy:stop": "pm2 stop all"
}
}⚡
tsc-alias的作用是解决打包时不能识别路径别名的问题
安装Koa和相关插件
sh
pnpm add koa koa-router koa-bodyparser @koa/cors koa-helmet koa-static
pnpm add -D @types/koa @types/koa-router @types/koa-bodyparser @types/koa__cors @types/koa-helmet @types/koa-static创建路由
新建src/routes/index.ts
ts
import Router from 'koa-router'
const router = new Router()
router.prefix('/api')
router.get('/test', async (ctx) => {
ctx.body = {
code: 'E0000',
msg: 'ok',
data: 'test',
}
})
export default router改写入口文件
新建src/app.ts,修改入口文件src/index.ts
ts
import path from 'node:path'
import Koa from 'koa'
import cors from '@koa/cors'
import helmet from 'koa-helmet'
import koaStatic from 'koa-static'
import bodyParser from 'koa-bodyparser'
import router from './routes'
const app = new Koa()
app
.use(helmet())
.use(cors())
.use(bodyParser())
.use(koaStatic(path.resolve(__dirname, '../public')))
app
.use(router.routes())
.use(router.allowedMethods())
.use(async (ctx, next) => {
ctx.body = 'Hello World'
})
export default appts
import './env'
import app from './app'
const PORT = process.env.APP_PORT ?? 3000
app.listen(PORT, () => {
console.info('Server listening on port: ' + PORT)
})运行项目
至此,一个极简的Koa项目就搭建完成了,执行pnpm run dev并访问http://localhost:3000,可以看到浏览器显示Hello World
使用接口调试工具访问http://localhost:3000/api/test,可以看到如下输出
json
{
"code": "E0000",
"msg": "ok",
"data": "test"
}打包
本项目有两种打包方式,默认打包和Webpack打包
默认打包
默认的打包方式是使用tsc进行打包,这种方式会保留代码的目录结构,而且不会压缩代码
执行pnpm run build进行默认打包
Webpack打包
Webpack打包方式会将所有业务代码压缩到一个js文件中
- 安装相关依赖
sh
pnpm add -D webpack webpack-cli webpack-dev-server webpack-merge webpack-node-externals terser-webpack-plugin ts-loader- 根目录下创建
webpack.config.js,参考配置如下
查看
js
'use strict'
const path = require('path')
const webpack = require('webpack')
const { merge } = require('webpack-merge')
const nodeExternals = require('webpack-node-externals')
const TerserPlugin = require('terser-webpack-plugin')
const isProd = process.env.NODE_ENV === 'production'
const config = {
context: __dirname, // 指定webpack的工作目录
target: 'node', // koa项目仅在node环境下运行
entry: path.resolve(__dirname, 'src/index.ts'), // 打包模块入口文件
// 打包的输出配置
output: {
clean: true, // 每次打包前清理输出文件夹
filename: 'index.js',
path: path.resolve(__dirname, 'dist'),
},
module: {
rules: [
{
test: /\.(ts|tsx)$/i,
loader: 'ts-loader',
include: path.resolve(__dirname, 'src'), // 指定loader要处理的目录
exclude: ['/node_modules/'], // 排除的目录
},
],
},
// 解析规则
resolve: {
modules: [path.resolve(__dirname, 'src'), 'node_modules'], // 解析模块时应该搜索的目录
extensions: ['.tsx', '.ts', '.jsx', '.js'], // 要解析的文件类型
// 路径别名
alias: {
'~': path.resolve(__dirname, 'src'),
},
},
externals: [nodeExternals()], // 打包时忽略node_modules中的第三方依赖
plugins: [new webpack.ProgressPlugin()],
node: {
global: true,
__filename: true,
__dirname: true,
},
}
module.exports = () => {
return isProd
? merge(config, {
mode: 'production',
stats: {
children: false, // 是否添加关于子模块的信息
warnings: false, // 禁用告警
},
// 优化配置
optimization: {
// 压缩配置
minimize: true,
minimizer: [new TerserPlugin()],
},
})
: merge(config, {
mode: 'development',
devtool: 'eval-source-map',
stats: {
children: false, // 是否添加关于子模块的信息
modules: false, // 不显示模块信息
},
})
}- 修改
package.json脚本,执行pnpm run webpack进行打包
json
{
"scripts": {
// ..
"watch": "cross-env NODE_ENV=development webpack --watch --progress",
"debug": "nodemon --exec node dist/index.js",
"webpack": "cross-env NODE_ENV=production webpack --progress && cp .env.production dist/"
// ..
}
}部署
根目录新建.env.production文件,填入生产环境所需的环境变量
打包好之后执行pnpm run preview来载入生产环境变量进行预览,
也可以直接pnpm run deploy使用PM2启动
⚡
生产环境使用PM2启动(生产环境端口默认:8080),可以达到负载均衡
扩展完善
助手函数
新建src/utils/utils.ts,封装一些辅助函数,具体代码参考我的助手函数封装
再新建src/utils/index.ts,对此目录下的所有模块进行导出
ts
export { default as Utils } from './utils'定时任务
bash
pnpm add cron
pnpm add @types/cron -D新建src/tasks/index.ts编写定时任务逻辑,编辑src/app.ts注册定时任务
ts
import { CronJob } from 'cron'
const cronExp = process.env.CRON_EXP ?? '* * * * *'
export const cron = new CronJob(cronExp, () => {
console.log('Executing cron job once every minutes')
})ts
import { cron } from './tasks'
// ...
cron.start()
export default app日志
bash
pnpm add winston新建src/utils/logger.ts编写日志核心逻辑,编辑src/app.ts加载日志模块
ts
import { Context, Next } from 'koa'
import winston from 'winston'
function koaLogging() {
return async (ctx: Context, next: Next) => {
const start = Date.now()
await next()
const ms = Date.now() - start
let logLevel = ''
if (ctx.status >= 500) {
logLevel = 'error'
} else if (ctx.status >= 400) {
logLevel = 'warn'
} else if (ctx.status >= 100) {
logLevel = 'info'
}
const msg = `${ctx.method} ${ctx.url} ${ctx.status} ${ms}ms`
logger.log(logLevel, msg)
}
}
const options: winston.LoggerOptions = {
level: process.env.LOG_LEVEL ?? 'debug',
transports: [
new winston.transports.Console({
format: winston.format.combine(winston.format.colorize(), winston.format.simple()),
}),
new winston.transports.File({ level: 'error', dirname: 'logs', filename: 'error.log' }),
],
}
export const logger = winston.createLogger(options)
export function setupLogging(app: any) {
app.use(koaLogging())
}ts
import { setupLogging } from './utils'
// ...
const app = new Koa()
setupLogging(app)
// ...ts
export * from './logger' 异常处理
新建src/utils/exception.ts和src/middlewares/error_handler.ts,编辑src/app.ts应用中间件
ts
import { catchError } from './middlewares'
// ...
app.use(catchError) // 注意一定要放在路由的前面加载
// ...ts
import assert from 'assert'
import Utils from './utils'
export interface AppError {
// http状态码
status?: number
// 业务状态
success?: boolean
// 业务消息
msg?: string
// 业务码
code?: string
// 业务数据
data?: any
}
export const ErrorType = {
unknowd: { status: 500, msg: '未知错误', code: 'E9999' },
success: { status: 200, msg: 'ok', code: '00000' },
http: { status: 400, msg: '错误的请求', code: 'E0001' },
failed: { status: 400, msg: '错误的请求', code: 'E0001' },
unauthorized: { status: 401, msg: '未授权', code: 'E0002' },
forbidden: { status: 403, msg: '已禁止', code: 'E0003' },
not_found: { status: 404, msg: '未找到', code: 'E0004' },
auth_denied: { status: 400, msg: '身份验证失败', code: 'E0005' },
parameters: { status: 400, msg: '参数错误', code: 'E0006' },
repeat: { status: 400, msg: '字段重复', code: 'E0007' },
method_not_allowed: { status: 405, msg: '方法不允许', code: 'E0008' },
file_large: { status: 413, msg: '文件体积过大', code: 'E0009' },
file_too_many: { status: 413, msg: '文件数量过多', code: 'E0010' },
file_extension: { status: 406, msg: '文件扩展名不符合规范', code: 'E0011' },
limit: { status: 400, msg: '请求过于频繁,请稍后再试', code: 'E0012' },
}
type ErrorTypes = keyof typeof ErrorType
export class HttpException extends Error {
public status: number
public msg: string
public code: string
public success: boolean = false
public data: any = null
constructor(type: ErrorTypes = 'http', ex?: AppError) {
super()
const error = ErrorType[type]
this.status = error.status
this.msg = error.msg
this.code = error.code
if (ex && ex.status) {
assert(Utils.isNumber(ex.status))
this.status = ex.status
}
if (ex && ex.msg) {
this.msg = ex.msg
}
if (ex && ex.code) {
assert(Utils.isString(ex.code))
this.code = ex.code
}
}
}
/** @description 请求成功 */
export class Success extends HttpException {
constructor(ex?: AppError) {
super()
const error = ErrorType.success
this.success = true
this.status = error.status
this.msg = error.msg
this.code = error.code
if (ex && ex.status) {
assert(Utils.isNumber(ex.status))
this.status = ex.status
}
if (ex && ex.msg) {
this.msg = ex.msg
}
if (ex && ex.code) {
assert(Utils.isString(ex.code))
this.code = ex.code
}
if (ex && ex.data) {
this.data = ex.data
}
}
}
/** @description 请求失败 */
export class Failed extends HttpException {
constructor(ex?: AppError) {
super()
const error = ErrorType.failed
this.status = error.status
this.msg = error.msg
this.code = error.code
if (ex && ex.status) {
assert(Utils.isNumber(ex.status))
this.status = ex.status
}
if (ex && ex.msg) {
this.msg = ex.msg
}
if (ex && ex.code) {
assert(Utils.isString(ex.code))
this.code = ex.code
}
}
}ts
export * from './exception' ts
import { BaseContext, Next } from 'koa'
import { HttpException, AppError } from '../utils'
interface ICatchError extends AppError {
request?: string
}
/** @description 错误处理中间件 */
export default async function (ctx: BaseContext, next: Next) {
try {
await next()
} catch (error: any) {
const isHttpException = error instanceof HttpException
const isDev = process.env.NODE_ENV === 'development'
// 开发环境时抛出原始错误
if (isDev && !isHttpException) {
throw error
}
if (!ctx.path.match(/^\/api\/swagger-/) && !ctx.path.match(/^\/favicon.ico/)) {
if (isHttpException) {
const errorObj: ICatchError = {
success: error.success,
msg: error.msg,
code: error.code,
...(error.success ? { data: error.data } : {}),
...(error.success ? {} : { request: `${ctx.method} ${ctx.path}` }),
}
ctx.body = errorObj
ctx.status = error.status
} else {
const errorObj: ICatchError = {
msg: '服务器错误',
code: 'E9999',
request: `${ctx.method} ${ctx.path}`,
}
ctx.body = errorObj
ctx.status = 500
}
}
}
}ts
export { default as catchError } from './error_handler' Redis
bash
pnpm add ioredis新建src/utils/redis.ts
ts
import IoRedis from 'ioredis'
const singletonEnforcer = Symbol('Redis')
class Redis {
private _client: IoRedis
private static _instance: Redis
constructor(enforcer: any) {
if (enforcer !== singletonEnforcer) {
throw new Error('Cannot initialize single instance')
}
this.init()
this._client.on('error', (err) => {
console.error('Redis 连接错误:', err)
process.exit(1)
})
this._client.on('connect', () => console.log('Redis 连接成功'))
this._client.on('close', () => {
console.log('Redis 连接断开')
this._client.connect()
})
}
static get instance() {
// 如果已经存在实例则直接返回, 否则实例化后返回
return this._instance || (this._instance = new Redis(singletonEnforcer))
}
private init() {
this._client = new IoRedis({
host: process.env.REDIS_HOST ?? 'localhost',
port: Number(process.env.REDIS_PORT) ?? 6379,
})
}
get client() {
return this._client
}
// 设置缓存
async set(key: string, value: string, expire: number) {
await this._client.set(key, value, 'EX', expire)
}
// 获取缓存
async get(key: string) {
return this._client.get(key)
}
// 删除缓存
async del(key: string) {
return this._client.del(key)
}
// 更新过期时间
async expire(key: string, expire: number) {
return this._client.expire(key, expire)
}
async getAllKey(pattern = '*') {
return this._client.keys(pattern)
}
}
export default Redis.instance
export const redis = Redis.instance.clientts
export { default as Redis, redis } from './redis' Session
bash
pnpm add koa-generic-session koa-redis
pnpm add @types/koa-generic-session @types/koa-redis -D编辑src/app.ts
ts
import Store from 'koa-redis'
import session from 'koa-generic-session'
//...
const app = new Koa()
// 对session id进行加密用的盐
app.keys = [process.env.SESSION_SECRET ?? 'secret']
app.use(
session({
key: process.env.COOKIE_KEY ?? 'koa.sid', // cookie的key, 默认是 koa.sid
prefix: process.env.SESSION_PREFIX ?? 'koa:sess:', // session数据在redis中的key前缀, 默认是 koa:sess:
store: Store({
host: process.env.REDIS_HOST ?? 'localhost',
port: Number(process.env.REDIS_PORT) ?? 6379,
}) as any,
})
)swagger
bash
pnpm add koa-swagger-decorator reflect-metadataTIP
注意: 如果安装的是koa-swagger-decorator@next版本的话,配置起来稍有不同,具体可以看这里
新建src/controllers/general.ctrl.ts,同时写入session的示例代码
ts
import { IRouterContext } from 'koa-router'
import { request, summary, query, tagsAll } from 'koa-swagger-decorator'
import { Redis } from '../utils'
@tagsAll(['General'])
export default class GeneralController {
@request('get', '')
@summary('欢迎页')
@query({
name: { type: 'string', required: false, example: 'jandan' },
})
async hello(ctx: IRouterContext) {
// 提取cookies中的session id
const sid = ctx.cookies.get(process.env.COOKIE_KEY ?? 'koa.sid')
console.log('sid', sid)
// session prefix 拼接sid得到key
const session_key = `${process.env.SESSION_PREFIX ?? 'koa:sess:'}${sid}`
console.log('session_key', session_key)
const data = await Redis.get(session_key)
console.log('data', data)
ctx.session.name = ctx.request.query.name
if (ctx.session.viewCount === null || ctx.session.viewCount === undefined) {
ctx.session.viewCount = 1
} else {
ctx.session.viewCount++
}
ctx.body = `Hello ${ctx.session.name}, you check this ${ctx.session.viewCount} times`
}
}
export const generalController = new GeneralController()新建src/routes/unprotected.ts,用来设置不需要鉴权的路由
ts
import Router from 'koa-router'
import { generalController } from '../controllers/general.ctrl'
const unprotectedRouter = new Router()
unprotectedRouter.get('/', generalController.hello)
export { unprotectedRouter }新建src/routes/protected.ts,用来设置需要鉴权的路由
ts
import path from 'node:path'
import { SwaggerRouter } from 'koa-swagger-decorator'
const protectedRouter = new SwaggerRouter(
{ prefix: '/api' }, // RouterOptions
{ title: 'koa-starter', description: 'API DOC', version: '1.0.0', prefix: '/api' } // SwaggerOptions
)
// 扫描控制器模块并禁用内置的参数校验
protectedRouter.mapDir(path.resolve(__dirname, '../controllers'), { doValidation: false })
// 开发环境才挂载swagger
if (process.env.NODE_ENV === 'development') {
protectedRouter.swagger()
}
export { protectedRouter }编辑src/routes/index.ts、src/app.ts和src/index.ts
ts
export * from './unprotected'
export * from './protected'ts
import { unprotectedRouter, protectedRouter } from './routes'
// ...
app.use(helmet())
app
.use(
helmet.contentSecurityPolicy({
directives: {
defaultSrc: ["'self'"],
scriptSrc: ["'self'", "'unsafe-inline'", 'cdnjs.cloudflare.com'],
styleSrc: ["'self'", "'unsafe-inline'", 'cdnjs.cloudflare.com', 'fonts.googleapis.com'],
fontSrc: ["'self'", 'fonts.gstatic.com'],
imgSrc: ["'self'", 'data:', 'online.swagger.io', 'validator.swagger.io'],
},
})
)
.use(cors())
.use(bodyParser())
.use(koaStatic(path.resolve(__dirname, '../public')))
app
.use(catchError) // 注意一定要放在路由的前面加载
.use(unprotectedRouter.routes())
.use(unprotectedRouter.allowedMethods())
.use(protectedRouter.routes())
.use(protectedRouter.allowedMethods())
// ...ts
import './env'
import 'reflect-metadata'
import app from './app'
import { logger } from './utils'
const PORT = process.env.APP_PORT ?? 3000
app.listen(PORT, () => {
logger.info(`
------------
Server Started!
App is running in ${app.env} mode
Logging initialized at ${process.env.LOG_LEVEL ?? 'debug'} level
Http: http://localhost:${PORT}
API Docs: http://localhost:${PORT}/api/swagger-html
API Spec: http://localhost:${PORT}/api/swagger-json
------------
`)
})参数校验
bash
pnpm add class-validator新建src/dto/auth.ts,用来编写接口的参数校验规则
ts
import { Length, IsNotEmpty, IsString } from 'class-validator'
export class SignInDto {
@Length(4, 20, { message: '用户名长度为4-20' })
@IsString({ message: '用户名必须为字符串' })
@IsNotEmpty({ message: '用户名不能为空' })
username: string
@IsString({ message: '密码必须为字符串' })
@IsNotEmpty({ message: '密码不能为空' })
password: string
}
export class TokenDto {
@IsString({ message: '令牌必须为字符串' })
@IsNotEmpty({ message: '令牌不能为空' })
token: string
}新建src/middlewares/validator.ts,用来处理接口参数校验
ts
import { Next } from 'koa'
import { Context } from 'koa-swagger-decorator'
import { validate } from 'class-validator'
import { Failed } from '../utils'
export interface ValidateContext extends Context {
dto: any
}
interface Type<T = any> extends Function {
new (...args: any[]): T
}
export default function (DtoClass: Type) {
return async (ctx: ValidateContext, next: Next) => {
const params = { ...(ctx.request.body as object), ...ctx.request.query, ...ctx.params }
const dto = new DtoClass()
Object.assign(dto, params)
const errors = await validate(dto)
if (errors.length > 0) {
const errMsg = errors
.map((err) => {
const msg = Object.values(err.constraints)[0]
return msg
})
.join(';')
throw new Failed({ msg: errMsg })
} else {
ctx.dto = dto
}
await next()
}
}ts
export { default as validator, ValidateContext } from './validator' JWT
bash
pnpm add jsonwebtoken bcryptjs koa-unless
pnpm add @types/jsonwebtoken @types/bcryptjs -D编辑src/utils/utils.ts,添加生成token的方法
ts
import jwt from 'jsonwebtoken'
// ...
export function genToken(
payload: any,
secretType: 'ACCESS' | 'REFRESH' = 'ACCESS',
expiresIn: string | number | null = process.env.JWT_EXPIRED ?? '30s'
) {
const secret =
secretType === 'ACCESS'
? process.env.ACCESS_TOKEN_SECRET ?? 'secret'
: process.env.REFRESH_TOKEN_SECRET ?? 'secret'
if (expiresIn === null || expiresIn === '') {
return jwt.sign(payload, secret)
}
return jwt.sign(payload, secret, { expiresIn })
}ts
export { default as Utils, genToken } from './utils' 新建src/controllers/auth.ctrl.ts,用来写模拟的登录接口
TIP
因为目前还没接入数据库,所以先用模拟的数据来测试
ts
import { request, summary, body, middlewares, tagsAll } from 'koa-swagger-decorator'
import bcrypt from 'bcryptjs'
import jwt from 'jsonwebtoken'
import { genToken, Redis, Success, HttpException } from '../utils'
import { ValidateContext, validator } from '../middlewares'
import { SignInDto, TokenDto } from '../dto'
@tagsAll(['Auth'])
export default class AuthController {
// 模拟数据
readonly username = 'admin'
// 123456
readonly password = '$2a$10$D46VTSW0Mpe6P96Sa1w8tebfeYfZf1s.97Dz84XFfpcUvjtSCvLMO'
@request('post', '/signup')
@summary('注册接口')
@body({
username: { type: 'string', required: true, example: 'admin' },
password: { type: 'string', required: true, example: '123456' },
email: { type: 'string', required: true, example: 'admin@example.com' },
})
async signUp(ctx: ValidateContext) {
ctx.body = 'signup'
}
@request('post', '/signin')
@summary('登录接口')
@middlewares([validator(SignInDto)])
@body({
username: { type: 'string', required: true, example: 'admin' },
password: { type: 'string', required: true, example: '123456' },
})
async signIn(ctx: ValidateContext) {
// 1.检查用户是否存在
if (ctx.dto.username !== this.username) {
throw new HttpException('not_found', { msg: '用户不存在' })
}
// 2.校验用户密码
if (!bcrypt.compareSync(ctx.dto.password, this.password)) {
throw new HttpException('auth_denied', { msg: '密码错误' })
}
// 3.生成token
const accessToken = genToken({ username: this.username })
const refreshToken = genToken({ username: this.username }, 'REFRESH', '1d')
// 4.拿到redis中的token
const refreshTokens = JSON.parse(await Redis.get(`${this.username}:token`)) ?? []
// 5.将刷新token保存到redis中
refreshTokens.push(refreshToken)
await Redis.set(`${this.username}:token`, JSON.stringify(refreshTokens), 24 * 60 * 60)
throw new Success({ msg: '登录成功', data: { accessToken, refreshToken } })
}
@request('put', '/token')
@summary('刷新token')
@middlewares([validator(TokenDto)])
@body({
token: { type: 'string', required: true, example: 'asdasd' },
})
async token(ctx: ValidateContext) {
// 1.先检查前端是否有提交token
if (!ctx.dto.token) {
throw new HttpException('unauthorized')
}
// 2.解析token中的用户信息
let user: any
jwt.verify(ctx.dto.token, process.env.REFRESH_TOKEN_SECRET ?? 'secret', (err, decode) => {
if (err) {
throw new HttpException('forbidden', { msg: '无效令牌,请重新登录' })
}
user = decode
})
// 3.拿到缓存中的token
let refreshTokens: string[] = JSON.parse(await Redis.get(`${this.username}:token`)) ?? []
// 4.再检查此用户在redis中是否有此token
if (!refreshTokens.includes(ctx.dto.token)) {
throw new HttpException('forbidden', { msg: '无效令牌,请重新登录' })
}
// 5.生成新的token
const { iat, exp, ...rest } = user
const accessToken = genToken(rest)
const refreshToken = genToken(rest, 'REFRESH', '1d')
// 6.将新token保存到redis中
refreshTokens = refreshTokens.filter((token) => token !== ctx.dto.token).concat([refreshToken])
await Redis.set(`${rest.username}:token`, JSON.stringify(refreshTokens), 24 * 60 * 60)
throw new Success({ msg: '刷新token成功', data: { accessToken, refreshToken } })
}
@request('delete', '/logout')
@summary('退出')
@middlewares([validator(TokenDto)])
@body({
token: { type: 'string', required: true, example: 'asdasd' },
})
async logout(ctx: ValidateContext) {
// 1.先检查前端是否有提交token
if (!ctx.dto.token) {
throw new HttpException('unauthorized')
}
// 2.解析token中的用户信息
let user: any
jwt.verify(ctx.dto.token, process.env.REFRESH_TOKEN_SECRET ?? 'secret', (err, decode) => {
if (err) {
throw new HttpException('forbidden', { msg: '无效令牌,请重新登录' })
}
user = decode
})
// 3.拿到缓存中的token
let refreshTokens: string[] = JSON.parse(await Redis.get(`${this.username}:token`)) ?? []
// 4.再检查此用户在redis中是否有此token
if (!refreshTokens.includes(ctx.dto.token)) {
throw new HttpException('forbidden', { msg: '无效令牌,请重新登录' })
}
// 5.移除redis中保存的此客户端token
refreshTokens = refreshTokens.filter((token) => token !== ctx.dto.token)
await Redis.set(`${user.username}:token`, JSON.stringify(refreshTokens), 24 * 60 * 60)
throw new Success({ status: 204, msg: '退出成功' })
}
}
export const authController = new AuthController()新建src/middlewares/auth.ts,用于校验token
ts
import { Context, Next } from 'koa'
import jwt from 'jsonwebtoken'
import { HttpException } from '../utils'
const unless = require('koa-unless')
export default function () {
const verifyToken = async (ctx: Context, next: Next) => {
const authzHeader = ctx.request.header.authorization
const accessToken = authzHeader && authzHeader.split(' ')[1]
if (!accessToken) {
throw new HttpException('unauthorized')
} else {
jwt.verify(accessToken, process.env.ACCESS_TOKEN_SECRET ?? 'secret', (err, decode) => {
if (err) {
if (err.name === 'TokenExpiredError') {
throw new HttpException('forbidden', { msg: '令牌过期' })
} else if (err.name === 'JsonWebTokenError') {
throw new HttpException('forbidden', { msg: '无效令牌' })
}
}
ctx.state.user = decode
})
return next()
}
}
verifyToken.unless = unless
return verifyToken
}ts
export { default as verifyToken } from './auth' 编辑src/app.ts,应用Auth中间件
ts
import { verifyToken, catchError } from './middlewares'
// ...
app
.use(catchError) // 注意一定要放在路由的前面加载
.use(unprotectedRouter.routes())
.use(unprotectedRouter.allowedMethods())
.use(
verifyToken().unless({
path: [
/^\/public/,
/^\/favicon.ico/,
/^(?!\/api)/,
/^\/api\/swagger-/,
/^\/api\/signup/,
/^\/api\/signin/,
/^\/api\/token/,
],
})
)
.use(protectedRouter.routes())
.use(protectedRouter.allowedMethods())🎉 到这里,扩展部分就结束了,数据库的集成请看其他篇章