user api ok

This commit is contained in:
Jay
2017-06-04 21:38:14 +08:00
parent 9423428b72
commit 5f81ba7309
5 changed files with 126 additions and 5 deletions
@@ -4,6 +4,12 @@ module.exports = {
CE0001: '請輸入帳號',
CE0002: '請輸入密碼',
CE0003: '使用者帳號或密碼錯誤',
CE0004: '請輸入使用者名稱',
CE0005: '請輸入Email',
CE0006: '使用者帳號重複',
CE1000: 'Token驗證失敗',
CE2000: '使用者權限不足',
// server error
SE0000: '資料查詢失敗',
+2
View File
@@ -29,6 +29,8 @@ router.use(async (c, n) => {
}
})
}
c.token = c.headers['x-auth-token'] || '';
// console.log(c.headers['accept-language'])
try {
await n();
+97 -2
View File
@@ -7,7 +7,101 @@ const so = require('../../libs/storeObject');
const mongo = require('../../libs/mongo_model.js');
router
.post('/login', async(c, n) => {
.post('/', async (c, n) => {
let arr = c.request.body;
if (!arr.data) throw 'CE0000';
if (!arr.data.account) throw 'CE0001';
if (!arr.data.password) throw 'CE00002';
if (!arr.data.name) throw 'CE0004';
if (!arr.data.email) throw 'CE0005';
try {
let query = "select count(*) as c from ??.?? where `account` = ?";
let param = ['lora', 'user', arr.data.account];
let count = await c.syncQuery(query, param);
if (count.length == 0) throw 'SE0000';
if (count[0].c > 0) throw 'CE0006';
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0000';
}
let uid = 0;
try {
let query = "insert into ??.?? (`account`, `password`, `name`, `email`) values (?, ?, ?, ?)";
let param = ['lora', 'user', arr.data.account, arr.data.password, arr.data.name, arr.data.email];
let indata = await c.syncQuery(query, param);
uid = indata.insertId;
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0001';
}
c.body = {
record: [{ uid }]
}
})
.get('/:uid', async (c, n) => {
if (!await mongo.token.checkToken(c.token)) throw 'CE1000';
try {
let t = await mongo.token.getToken(c.token);
if (t.object.uid != c.params.uid) throw 'CE2000';
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0000';
}
try {
let user = await c.syncQuery('select `uid`,`account`,`name`,`email` from ??.?? where `uid` = ?', ['lora', 'user', c.params.uid]);
c.body = {
record: user
}
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0000';
}
})
.put('/:uid', async (c, n) => {
if (!await mongo.token.checkToken(c.token)) throw 'CE1000';
let arr = c.request.body;
if (!arr.data) throw 'CE0000';
if (!arr.data.name) throw 'CE0004';
if (!arr.data.email) throw 'CE0005';
try {
let t = await mongo.token.getToken(c.token);
if (t.object.uid != c.params.uid) throw 'CE2000';
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0000';
}
try {
let query = "update ??.?? set \
`name` = ?, \
`email` = ?"+ (arr.data.password ? ',' : '') + " \
" + (arr.data.password ? "`password` = ?, " : '') + " \
where \
`uid` = ?";
let param = ['lora', 'user', arr.data.name, arr.data.email];
if (arr.data.password) param.push(crypto.genPassHash(arr.data.password));
param.push(c.params.uid);
let updata = await c.syncQuery(query, param);
} catch (err) {
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0002';
}
c.body = { record: [] };
})
.post('/login', async (c, n) => {
let arr = c.request.body;
if (!arr.data) throw 'CE0000';
if (!arr.data.account) throw 'CE0001';
@@ -25,7 +119,7 @@ router
record: user
}
} catch (err) {
if(typeof err == 'string') throw err;
if (typeof err == 'string') throw err;
c.serr = err;
throw 'SE0000';
}
@@ -40,4 +134,5 @@ router
}
})
module.exports = router;