tongtong/vue3-element-admin
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: 新增 JWT 刷新模式,支持因访问令牌过期而失败的请求重试

Browse Source
This commit is contained in:
ray
2024-11-14 18:32:23 +08:00
parent 0902e2320f
commit ad9dd5e1d1
5 changed files with 127 additions and 54 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
src/api/auth/index.ts
View File

@@ -3,7 +3,7 @@ import request from "@/utils/request";
const AUTH_BASE_URL = "/api/v1/auth";
const AuthAPI = {
/** 登录 接口*/
/** 登录接口*/
login(data: LoginData) {
const formData = new FormData();
formData.append("username", data.username);
@@ -20,7 +20,7 @@ const AuthAPI = {
});
},
/** 刷新token 接口*/
/** 刷新 token 接口*/
refreshToken(refreshToken: string) {
return request<any, LoginResult>({
url: `${AUTH_BASE_URL}/refresh-token`,
@@ -32,7 +32,7 @@ const AuthAPI = {
});
},
/** 注销 接口*/
/** 注销接口*/
logout() {
return request({
url: `${AUTH_BASE_URL}/logout`,
@@ -40,7 +40,7 @@ const AuthAPI = {
});
},
/** 获取验证码 接口*/
/** 获取验证码接口*/
getCaptcha() {
return request<any, CaptchaResult>({
url: `${AUTH_BASE_URL}/captcha`,
@@ -65,14 +65,14 @@ export interface LoginData {
/** 登录响应 */
export interface LoginResult {
/** 访问token */
accessToken?: string;
/** 过期时间(单位:毫秒) */
expires?: number;
/** 刷新token */
refreshToken?: string;
/** token 类型 */
tokenType?: string;
/** 访问令牌 */
accessToken: string;
/** 刷新令牌 */
refreshToken: string;
/** 令牌类型 */
tokenType: string;
/** 过期时间(秒) */
expiresIn: number;
}
/** 验证码响应 */

9
src/enums/ResultEnum.ts
View File

@@ -12,7 +12,12 @@ export const enum ResultEnum {
ERROR = "B0001",
/**
* 令牌无效或过期
* 访问令牌无效或过期
*/
TOKEN_INVALID = "A0230",
ACCESS_TOKEN_INVALID = "A0230",
/**
* 刷新令牌无效或过期
*/
REFRESH_TOKEN_INVALID = "A0231",
}

28
src/store/modules/user.ts
View File

@@ -5,7 +5,7 @@ import { useDictStoreHook } from "@/store/modules/dict";
import AuthAPI, { type LoginData } from "@/api/auth";
import UserAPI, { type UserInfo } from "@/api/system/user";
import { setToken, clearToken } from "@/utils/auth";
import { setToken, setRefreshToken, getRefreshToken, clearToken } from "@/utils/auth";
export const useUserStore = defineStore("user", () => {
const userInfo = useStorage<UserInfo>("userInfo", {} as UserInfo);
@@ -20,8 +20,9 @@ export const useUserStore = defineStore("user", () => {
return new Promise<void>((resolve, reject) => {
AuthAPI.login(loginData)
.then((data) => {
const { tokenType, accessToken } = data;
const { tokenType, accessToken, refreshToken } = data;
setToken(tokenType + " " + accessToken); // Bearer eyJhbGciOiJIUzI1NiJ9.xxx.xxx
setRefreshToken(refreshToken);
resolve();
})
.catch((error) => {
@@ -69,7 +70,27 @@ export const useUserStore = defineStore("user", () => {
}
/**
* 清理用户会话
* 刷新 token
*/
function refreshToken() {
const refreshToken = getRefreshToken();
return new Promise<void>((resolve, reject) => {
AuthAPI.refreshToken(refreshToken)
.then((data) => {
const { tokenType, accessToken, refreshToken } = data;
setToken(tokenType + " " + accessToken);
setRefreshToken(refreshToken);
resolve();
})
.catch((error) => {
console.log(" refreshToken 刷新失败", error);
reject(error);
});
});
}
/**
* 清理用户数据
*
* @returns
*/
@@ -88,6 +109,7 @@ export const useUserStore = defineStore("user", () => {
login,
logout,
clearUserData,
refreshToken,
};
});

22
src/utils/auth.ts
View File

@@ -1,15 +1,27 @@
const TOKEN_KEY = "admin-token";
// 访问 token 缓存的 key
const ACCESS_TOKEN_KEY = "access_token";
// 刷新 token 缓存的 key
const REFRESH_TOKEN_KEY = "refresh_token";
function getToken(): string {
return localStorage.getItem(TOKEN_KEY) || "";
return localStorage.getItem(ACCESS_TOKEN_KEY) || "";
}
function setToken(token: string) {
return localStorage.setItem(TOKEN_KEY, token);
localStorage.setItem(ACCESS_TOKEN_KEY, token);
}
function getRefreshToken(): string {
return localStorage.getItem(REFRESH_TOKEN_KEY) || "";
}
function setRefreshToken(token: string) {
localStorage.setItem(REFRESH_TOKEN_KEY, token);
}
function clearToken() {
return localStorage.removeItem(TOKEN_KEY);
localStorage.removeItem(ACCESS_TOKEN_KEY);
localStorage.removeItem(REFRESH_TOKEN_KEY);
}
export { getToken, setToken, clearToken };
export { getToken, setToken, clearToken, getRefreshToken, setRefreshToken };

98
src/utils/request.ts
View File

@@ -3,43 +3,36 @@ import qs from "qs";
import { useUserStoreHook } from "@/store/modules/user";
import { ResultEnum } from "@/enums/ResultEnum";
import { getToken } from "@/utils/auth";
import router from "@/router";
// 创建 axios 实例
const service = axios.create({
baseURL: import.meta.env.VITE_APP_BASE_API,
timeout: 50000,
headers: { "Content-Type": "application/json;charset=utf-8" },
paramsSerializer: (params) => {
return qs.stringify(params);
},
paramsSerializer: (params) => qs.stringify(params),
});
// 请求拦截器
service.interceptors.request.use(
(config: InternalAxiosRequestConfig) => {
// 如果设置了 "no-auth",则不携带 Authorization 头,用于登录、刷新 token 等接口
if (config.headers.Authorization === "no-auth") {
delete config.headers.Authorization;
const accessToken = getToken();
// 如果 Authorization 设置为 no-auth则不携带 Token用于登录、刷新 Token 等接口
if (config.headers.Authorization !== "no-auth" && accessToken) {
config.headers.Authorization = accessToken;
} else {
const accessToken = getToken();
if (accessToken) {
config.headers.Authorization = accessToken;
}
delete config.headers.Authorization;
}
return config;
},
(error: any) => {
return Promise.reject(error);
}
(error) => Promise.reject(error)
);
// 响应拦截器
service.interceptors.response.use(
(response: AxiosResponse) => {
const { responseType } = response.config;
// 如果响应类型是二进制数据(文件导出场景), 则直接返回 response
if (responseType === "blob") {
// 如果响应是二进制流则直接返回用于下载文件、Excel 导出等
if (response.config.responseType === "blob") {
return response;
}
@@ -51,21 +44,15 @@ service.interceptors.response.use(
ElMessage.error(msg || "系统出错");
return Promise.reject(new Error(msg || "Error"));
},
(error: any) => {
// 异常处理 非 2xx 状态码 会进入这里
if (error.response.data) {
const { code, msg } = error.response.data;
if (code === ResultEnum.TOKEN_INVALID) {
ElNotification({
title: "提示",
message: "您的会话已过期,请重新登录",
type: "info",
});
useUserStoreHook()
.clearUserData()
.then(() => {
location.reload();
});
async (error: any) => {
const { config, response } = error;
if (response) {
const { code, msg } = response.data;
if (code === ResultEnum.ACCESS_TOKEN_INVALID) {
// Token 过期,刷新 Token
return handleTokenRefresh(config);
} else if (code === ResultEnum.REFRESH_TOKEN_INVALID) {
return Promise.reject(new Error(msg || "Error"));
} else {
ElMessage.error(msg || "系统出错");
}
@@ -75,3 +62,50 @@ service.interceptors.response.use(
);
export default service;
// 刷新 Token 的锁
let isRefreshing = false;
// 因 Token 过期导致失败的请求队列
let requestsQueue: Array<() => void> = [];
// 刷新 Token 处理
async function handleTokenRefresh(config: InternalAxiosRequestConfig) {
return new Promise((resolve) => {
const requestCallback = () => {
config.headers.Authorization = getToken();
resolve(service(config));
};
requestsQueue.push(requestCallback);
if (!isRefreshing) {
isRefreshing = true;
// 刷新 Token
useUserStoreHook()
.refreshToken()
.then(() => {
// Token 刷新成功,执行请求队列
requestsQueue.forEach((callback) => callback());
requestsQueue = [];
})
.catch((error) => {
console.log("handleTokenRefresh error", error);
// Token 刷新失败,清除用户数据并跳转到登录
ElNotification({
title: "提示",
message: "您的会话已过期,请重新登录",
type: "info",
});
useUserStoreHook()
.clearUserData()
.then(() => {
router.push("/login");
});
})
.finally(() => {
isRefreshing = false;
});
}
});
}