【发布时间】:2022-06-18 01:50:14
【问题描述】:
当用户登录 API 生成一个令牌以便他可以访问其他端点,但令牌在 60 秒后过期时,我创建了一个函数来使用旧令牌(存储在数据库中)生成一个新的有效令牌),但是当我要生成一个新的有效令牌时,我得到的 secretOrPrivateKey must have a value error
函数refreshToken使用函数login生成新令牌
终端错误
- secretOrPrivateKey 必须有值 错误:secretOrPrivateKey 必须有值
- 在 Object.module.exports [as sign] (C:\Users\talis\nova api\myflakes_api\node_modules\jsonwebtoken\sign.js:107:20)
- 在 JwtService.sign (C:\Users\talis\nova api\myflakes_api\node_modules@nestjs\jwt\dist\jwt.service.js:28:20)
- 在 AuthService.login (C:\Users\talis\nova api\myflakes_api\src\auth\auth.service.ts:18:39)
- 在 TokenService.refreshToken (C:\Users\talis\nova api\myflakes_api\src\token\token.service.ts:39:37)
- 在 processTicksAndRejections (node:internal/process/task_queues:96:5)
- 在 TokenController.refreshToken (C:\Users\talis\nova api\myflakes_api\src\token\token.controller.ts:12:16)
- 在 C:\Users\talis\nova api\myflakes_api\node_modules@nestjs\core\router\router-execution-context.js:46:28
- 在 C:\Users\talis\nova api\myflakes_api\node_modules@nestjs\core\router\router-proxy.js:9:17
文件token.service.ts中的函数refreshToken
async refreshToken(oldToken: string) {
let objToken = await this.tokenRepository.findOne({hash: oldToken})
if (objToken) {
let user = await this.userService.findOneOrFail({email:objToken.email})
return this.authService.login(user)
} else {
return new UnauthorizedException(MessagesHelper.TOKEN_INVALID)
}
}
文件auth.service.ts中的函数登录
async login(user: UsersEntity) {
const payload = { email: user.email, sub: user.idUser }
const token = this.jwtService.sign(payload) // here!!!
this.tokenService.save(token, user.email)
return {
token: token
};
}
const token = this.jwtService.sign(payload) 出现错误
这里是 jwt.strategy.ts 文件
import { Injectable } from "@nestjs/common";
import { PassportStrategy } from "@nestjs/passport";
import { ExtractJwt, Strategy } from "passport-jwt";
import { jwtConstants } from "../constants";
@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy) {
constructor() {
super({
jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
ignoreExpiration: false,
secretOrKey: jwtConstants.secret,
});
}
async validate(payload: { sub: any; email: any; }) {
return { id: payload.sub, email: payload.email}
}
}
这里是 local.strategy.ts
import { Injectable, UnauthorizedException } from "@nestjs/common";
import { PassportStrategy } from "@nestjs/passport";
import { Strategy } from "passport-local";
import { MessagesHelper } from "src/helpers/messages.helper";
import { AuthService } from "../auth.service";
@Injectable()
export class LocalStrategy extends PassportStrategy(Strategy) {
constructor(private authService: AuthService) {
super({ usernameField: 'email' });
}
async validate(email: string, password: string): Promise<any> {
const user = await this.authService.validateUser(email, password);
if(!user)
throw new UnauthorizedException(MessagesHelper.PASSWORD_OR_EMAIL_INVALID)
return user;
}
}
这是 JwtModule.register 所在的 AuthModule
@Module({
imports: [
ConfigModule.forRoot(),
UsersModule,
PassportModule,
TokenModule,
JwtModule.register({
secret: jwtConstants.secret,
signOptions: { expiresIn: '60s' },
}),
],
controllers: [AuthController],
providers: [AuthService, LocalStrategy, JwtStrategy],
exports: [JwtModule, AuthService]
})
export class AuthModule {}
伙计们,我尝试使用图像,但我是新用户,我仍然没有声誉,对不起。
【问题讨论】:
-
如果您也将
secret提供给.sign方法会怎样?像这样this.jwtService.sign(payload, { secret: jwtConstants.secret }) -
实际上,你能告诉我们你是如何加载
JwtModule的吗?
标签: node.js typescript jwt nestjs refresh-token