【发布时间】:2018-12-03 00:01:48
【问题描述】:
我目前遇到多个用户在我的网络应用上看到错误内容的问题。所以,user A 会登录并查看他们的详细信息,然后user B 会登录并查看他们的详细信息,这很好。但是当user A 刷新页面时,他们会看到user B's 的详细信息。即使刷新(user B 之后仍然登录),我如何让它保留 user A's 详细信息?
这是我目前拥有的:
var express = require('express');
var SpotifyWebApi = require('spotify-web-api-node');
var path = require('path');
var chartify = require('./app.js');
var cookieParser = require('cookie-parser');
var app = express();
app.set('view engine', 'ejs');
app.set('views', path.join(__dirname + '/views'));
app.use(express.static(__dirname + '/views')).use(cookieParser());
var port = process.env.PORT || 8000;
var client_id = '';
var client_secret = '';
var redirect_uri = '';
var stateKey = 'spotify_auth_state';
var spotifyApi = new SpotifyWebApi({
clientId: client_id,
clientSecret: client_secret,
redirectUri: redirect_uri
});
app.get('/', function(req, res) {
res.render('index');
});
app.get('/login', function(req, res){
var state = chartify.generateRandomString(16);
var scope = ['user-top-read'];
res.cookie(stateKey, state);
var authorizeURL = spotifyApi.createAuthorizeURL(scope, state)
res.redirect(authorizeURL);
});
app.get('/callback', function(req, res) {
var state = req.query.state || null;
var storedState = req.cookies ? req.cookies[stateKey] : null;
if (state == null || state != storedState) {
res.redirect('/#/state-mismatch');
} else {
res.clearCookie(stateKey);
spotifyApi.authorizationCodeGrant(req.query.code).then(function(data) {
spotifyApi.setAccessToken(data.body.access_token);
spotifyApi.setRefreshToken(data.body.refresh_token);
res.redirect('/details');
});
}
});
app.get('/details', function(req, res) {
var access_token = spotifyApi.getAccessToken()
if (access_token == undefined || null) {
res.redirect('/')
return;
}
//do things
res.render('template.ejs')
});
app.listen(port, function() {
console.log('APP LISTENING ON PORT 8000.');
});
【问题讨论】:
标签: javascript node.js session cookies spotify