【发布时间】:2020-05-29 18:54:41
【问题描述】:
我已经构建了用于登录和注册的 restful api,我的问题是我现在如何在我的网站中使用这个 api? api返回json消费的意义不在于?如果我要放一个 res.redirect() 那么当我想使用 api 说 iOS 应用程序时,这不会使 api 无用吗?
router.post('/login', async (request, response) => {
// validate
const {error} = loginValidation(request.body)
if (error) return response.status(400).send(error.details[0].message)
const {email, password} = request.body
// check if email doesn't exist
const user = await pool.query('SELECT id, email, password FROM users WHERE email = $1 LIMIT 1', [email])
if(user.rowCount == 0) return response.status(400).send('Wrong email or password')
// password is correct; move on to validating password
const id = user.rows[0].id
const storedEmail = user.rows[0].email
const storedPassword = user.rows[0].password
const validPass = await bcrypt.compare(request.body.password, storedPassword)
if(!validPass) return response.status(400).send('Wrong email or password')
// create and send token to client
const token = jwt.sign({_id: id}, "SOMESECRET")
response.header('auth-token', token).send(token)
})
【问题讨论】:
-
您可以从您的网站调用您的 API,无需在任何地方重定向。 Start here