newCashBook/node_expores/utils/authorization.js

import jwt from "jsonwebtoken";
import environment from "#environment";
const secretKey = "secretKey";

// 生成token
export function generateToken(payload) {
  const token =
    "Bearer " +
    jwt.sign(payload, secretKey, {
      // expiresIn: 60 * 60 * 24 * 7 * 4 * 12, // 一年过期
      // expiresIn: 60 * 60 * 24 * 7 * 4, // 一个月
      // expiresIn: 60 * 60 * 24 * 7, // 一周
      expiresIn: 60 * 60 * 24, // 一天
      // expiresIn: 60 * 60, // 一个小时
    }, environment.privateKey, { algorithm: 'RS256' });

  return token;
}

// 验证token
export function verifyToken(req, res, next) {
  const token = req.headers.authorization.split(" ")[1];
  jwt.verify(token, secretKey, function (err, decoded) {
    if (err) {
      console.log("verify error", err);
      return res.json({ code: "404", msg: "token无效" });
    }
    req.body.decoded = decoded
    next();
  });
}