xinyin025/ChatGPT-Next-Web
1
0
Fork 0
mirror of https://github.com/ChatGPTNextWeb/ChatGPT-Next-Web.git synced 2025-10-01 23:56:39 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
e692b34093
ChatGPT-Next-Web/lib/auth.ts
sijinhui e692b34093 测试增加邮件认证-debug
2024-03-22 15:55:23 +08:00

235 lines
7.7 KiB
TypeScript
Raw Blame History

import { getServerSession, type NextAuthOptions } from "next-auth";
import GitHubProvider from "next-auth/providers/github";
import EmailProvider from "next-auth/providers/email";
import CredentialsProvider from "next-auth/providers/credentials";
import { PrismaAdapter } from "@next-auth/prisma-adapter";
import prisma from "@/lib/prisma";
import { isEmail, isName } from "@/lib/auth_list";
const SECURE_COOKIES:boolean = !!process.env.SECURE_COOKIES;
export const authOptions: NextAuthOptions = {
debug: true,
// debug: !SECURE_COOKIES,
useSecureCookies: SECURE_COOKIES,
secret: process.env.NEXTAUTH_SECRET,
providers: [
GitHubProvider({
clientId: process.env.AUTH_GITHUB_ID as string,
clientSecret: process.env.AUTH_GITHUB_SECRET as string,
profile(profile) {
return {
id: profile.id.toString(),
name: profile.name || profile.login,
gh_username: profile.login,
email: profile.email,
image: profile.avatar_url,
};
},
}),
EmailProvider({
server: {
host: process.env.EMAIL_SERVER_HOST,
port: process.env.EMAIL_SERVER_PORT,
auth: {
user: process.env.EMAIL_SERVER_USER,
pass: process.env.EMAIL_SERVER_PASSWORD,
},
},
from: process.env.EMAIL_FROM,
}),
CredentialsProvider({
// The name to display on the sign in form (e.g. "Sign in with...")
name: "Credentials",
// `credentials` is used to generate a form on the sign in page.
// You can specify which fields should be submitted, by adding keys to the `credentials` object.
// e.g. domain, username, password, 2FA token, etc.
// You can pass any HTML attribute to the <input> tag through the object.
credentials: {
username: { label: "Username", type: "text", placeholder: "输入姓名或邮箱" },
// password: { label: "Password", type: "password" }
},
// @ts-ignore
async authorize(credential, req) {
const username = cleanUpString(`${credential?.username}`);
// 验证用户名
console.log(credential, username, '==============3')
// 判断姓名格式是否符合要求,不符合则拒绝
if (username && isName(username)) {
// Any object returned will be saved in `user` property of the JWT
let user:{[key: string]: string} = {
name: username,
// email: null
}
if (isEmail(username)) {
user['email'] = username;
}
await insertUser(user);
return user
} else {
// If you return null then an error will be displayed advising the user to check their details.
// return null
throw new Error("用户名校验失败")
// You can also Reject this callback with an Error thus the user will be sent to the error page with the error message as a query parameter
}
}
})
],
pages: {
signIn: `/login`,
// verifyRequest: `/login`,
error: "/login", // Error code passed in query string as ?error=
},
adapter: PrismaAdapter(prisma),
session: { strategy: "jwt", maxAge: 3 * 24 * 60 * 60 },
cookies: {
sessionToken: {
name: `${SECURE_COOKIES ? "__Secure-" : ""}next-auth.session-token`,
options: {
httpOnly: true,
sameSite: "lax",
path: "/",
// When working on localhost, the cookie domain must be omitted entirely (https://stackoverflow.com/a/1188145)
// domain: VERCEL_DEPLOYMENT
// ? `.${process.env.NEXT_PUBLIC_ROOT_DOMAIN}`
// : undefined,
secure: SECURE_COOKIES,
},
},
},
callbacks: {
jwt: async ({ token, user }) => {
// const current_time = Math.floor(Date.now() / 1000);
// console.log('=============', token, user, current_time)
if (user) {
token.user = user;
}
return token;
},
session: async ({ session, token }) => {
session.user = {
...session.user,
// @ts-expect-error
id: token?.sub,
// @ts-expect-error
username: token?.user?.username || token?.user?.gh_username,
};
return session;
},
},
};
export function getSession() {
console.log('in........',)
return getServerSession(authOptions) as Promise<{
user: {
id: string;
name: string;
username: string;
email: string;
image: string;
};
} | null>;
}
// export function withSiteAuth(action: any) {
// return async (
// formData: FormData | null,
// siteId: string,
// key: string | null,
// ) => {
// const session = await getSession();
// if (!session) {
// return {
// error: "Not authenticated",
// };
// }
// const site = await prisma.site.findUnique({
// where: {
// id: siteId,
// },
// });
// if (!site || site.userId !== session.user.id) {
// return {
// error: "Not authorized",
// };
// }
//
// return action(formData, site, key);
// };
// }
//
// export function withPostAuth(action: any) {
// return async (
// formData: FormData | null,
// postId: string,
// key: string | null,
// ) => {
// const session = await getSession();
// if (!session?.user.id) {
// return {
// error: "Not authenticated",
// };
// }
// const post = await prisma.post.findUnique({
// where: {
// id: postId,
// },
// include: {
// site: true,
// },
// });
// if (!post || post.userId !== session.user.id) {
// return {
// error: "Post not found",
// };
// }
//
// return action(formData, post, key);
// };
// }
export async function insertUser(user: {[key: string]: string}) {
try {
const conditions = [];
if (user?.name) {
conditions.push({ name: user.name });
}
if (user?.email) {
conditions.push({ email: user.email });
}
const existingUser = conditions.length? await prisma.user.findFirst({
where: {
OR: conditions,
},
}) : null;
// console.log('[LOG]', existingUser, user, '=======')
if (!existingUser) {
const newUser = await prisma.user.create({
data: user
})
// console.log('[LOG]', user, '=======')
}
} catch (e) {
console.log('[Prisma Error]', e);
return false;
}
return true;
}
function cleanUpString(input: string): string {
try {
// 去除前后空格
let cleanedString = input.trim();
// 去除非中文、英文、@和.字符
cleanedString = cleanedString.replace(/[^\u4e00-\u9fa5a-zA-Z@.]/g, '');
return cleanedString;
}
catch {
return '';
}
}
Reference in New Issue View Git Blame Copy Permalink