更新政府端和银行端

2025-09-17 18:04:28 +08:00
parent f35ceef31f
commit e4287b83fe
185 changed files with 78320 additions and 189 deletions
--- a/government-backend/middleware/auth.js
+++ b/government-backend/middleware/auth.js
@@ -0,0 +1,43 @@
+const jwt = require('jsonwebtoken');
+const { promisify } = require('util');
+const db = require('../config/database');
+
+module.exports = async (req, res, next) => {
+  // 获取token
+  const token = req.header('Authorization')?.replace('Bearer ', '');
+  
+  if (!token) {
+    return res.status(401).json({ 
+      code: 401, 
+      message: '未提供认证令牌' 
+    });
+  }
+
+  try {
+    // 验证token
+    const decoded = await promisify(jwt.verify)(token, process.env.JWT_SECRET);
+    
+    // 检查用户是否存在
+    const [user] = await db.query(
+      'SELECT id, username, role FROM users WHERE id = ?', 
+      [decoded.id]
+    );
+    
+    if (!user || user.length === 0) {
+      return res.status(401).json({ 
+        code: 401, 
+        message: '用户不存在或已被删除' 
+      });
+    }
+
+    // 将用户信息添加到请求对象
+    req.user = user[0];
+    next();
+  } catch (err) {
+    console.error(err);
+    return res.status(401).json({ 
+      code: 401, 
+      message: '无效的认证令牌' 
+    });
+  }
+};