修改后端接口

2025-09-25 17:43:54 +08:00
parent 5b6b7e0a96
commit 76b5393182
31 changed files with 2155 additions and 468 deletions
--- a/government-backend/controllers/authController.js
+++ b/government-backend/controllers/authController.js
@@ -1,51 +1,63 @@
-const jwt = require('jsonwebtoken')
+const jwt = require('jsonwebtoken');
+const User = require('../models/User');
+const AdminStaff = require('../models/AdminStaff');
+const bcrypt = require('bcryptjs');

 // JWT配置
-const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key-change-in-production'
-
-// 临时用户数据（实际项目中应该从数据库获取）
-const users = [
-  {
-    id: 1,
-    username: 'admin',
-    password: '123456',
-    name: '系统管理员',
-    role: 'admin',
-    email: 'admin@example.com'
-  }
-]
+const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key-change-in-production';

 exports.login = async (req, res) => {
  try {
-    const { username, password } = req.body
+    const { username, password } = req.body;
    
-    // 查找用户
-    const user = users.find(u => u.username === username && u.password === password)
+    // 从数据库查找用户
+    const user = await User.findOne({
+      where: {
+        username,
+        status: 'active'
+      }
+    });
    
-    if (user) {
-      const token = jwt.sign({ 
-        id: user.id,
-        username: user.username,
-        role: user.role 
-      }, JWT_SECRET, { expiresIn: '2h' })
-      
-      return res.json({ 
-        code: 200,
-        message: '登录成功',
-        data: { token }
-      })
+    if (!user) {
+      return res.status(401).json({
+        code: 401,
+        message: '用户名或密码错误'
+      });
    }
    
-    res.status(401).json({
-      code: 401,
-      message: '用户名或密码错误'
-    })
+    // 验证密码
+    const isPasswordValid = await bcrypt.compare(password, user.password);
+    
+    if (!isPasswordValid) {
+      return res.status(401).json({
+        code: 401,
+        message: '用户名或密码错误'
+      });
+    }
+    
+    // 更新最后登录时间
+    await user.update({
+      last_login: new Date()
+    });
+    
+    const token = jwt.sign({
+      id: user.id,
+      username: user.username,
+      role: user.role
+    }, JWT_SECRET, { expiresIn: '2h' });
+    
+    return res.json({
+      code: 200,
+      message: '登录成功',
+      data: { token }
+    });
  } catch (err) {
+    console.error('登录错误:', err);
    res.status(500).json({
      code: 500,
      message: '服务器错误',
      error: err.message
-    })
+    });
  }
 }

@@ -53,51 +65,104 @@ exports.login = async (req, res) => {
 exports.getUserInfo = async (req, res) => {
  try {
    // 从token中解析用户信息
-    const token = req.headers.authorization?.replace('Bearer ', '')
+    const token = req.headers.authorization?.replace('Bearer ', '');
    if (!token) {
      return res.status(401).json({
        code: 401,
        message: '未提供认证令牌'
-      })
+      });
    }

    try {
-      const decoded = jwt.verify(token, JWT_SECRET)
-      const user = users.find(u => u.id === decoded.id)
+      const decoded = jwt.verify(token, JWT_SECRET);
      
-      if (user) {
-        const userInfo = {
-          id: user.id,
-          username: user.username,
-          name: user.name,
-          role: user.role,
-          avatar: '',
-          email: user.email,
-          permissions: ['dashboard', 'users', 'settings']
-        }
-        
-        return res.json({
-          code: 200,
-          message: '获取用户信息成功',
-          data: userInfo
-        })
-      } else {
+      // 从数据库获取用户信息
+      const user = await User.findByPk(decoded.id, {
+        include: [
+          {
+            model: AdminStaff,
+            as: 'staffInfo'
+          }
+        ]
+      });
+      
+      if (!user || user.status !== 'active') {
        return res.status(401).json({
          code: 401,
-          message: '用户不存在'
-        })
+          message: '用户不存在或已禁用'
+        });
      }
+      
+      // 获取员工信息
+      let staffInfo = null;
+      try {
+        staffInfo = await AdminStaff.findOne({
+          where: {
+            phone: user.username
+          }
+        });
+      } catch (error) {
+        console.warn('获取员工信息失败:', error);
+      }
+      
+      // 根据角色设置权限
+      const permissions = getPermissionsByRole(user.role);
+      
+      const userInfo = {
+        id: user.id,
+        username: user.username,
+        name: staffInfo?.name || user.username,
+        role: user.role,
+        avatar: '',
+        email: '',
+        phone: staffInfo?.phone || user.username,
+        department: staffInfo?.department_id ? {
+          id: staffInfo.department_id,
+          name: ''
+        } : null,
+        position: staffInfo?.position_id ? {
+          id: staffInfo.position_id,
+          name: ''
+        } : null,
+        permissions
+      };
+      
+      return res.json({
+        code: 200,
+        message: '获取用户信息成功',
+        data: userInfo
+      });
    } catch (jwtError) {
+      console.error('JWT验证错误:', jwtError);
      return res.status(401).json({
        code: 401,
        message: '认证令牌无效'
-      })
+      });
    }
  } catch (err) {
+    console.error('获取用户信息错误:', err);
    res.status(500).json({
      code: 500,
      message: '服务器错误',
      error: err.message
-    })
+    });
  }
-}
+};
+
+// 根据角色获取权限
+exports.getPermissionsByRole = (role) => {
+  const basePermissions = ['dashboard'];
+  
+  switch (role) {
+    case 'admin':
+      return [...basePermissions, 'users', 'settings', 'supervision', 'approval', 'personnel', 'warehouse', 'epidemic', 'service', 'visualization'];
+    case 'manager':
+      return [...basePermissions, 'supervision', 'approval', 'personnel', 'warehouse', 'epidemic', 'service'];
+    case 'inspector':
+      return [...basePermissions, 'supervision', 'epidemic'];
+    case 'clerk':
+      return [...basePermissions, 'approval', 'personnel', 'warehouse', 'service'];
+    default:
+      return basePermissions;
+  }
+};