| import { isNotEmptyString } from '../utils/is' |
|
|
| const auth = async (req, res, next) => { |
| const AUTH_SECRET_KEY = process.env.AUTH_SECRET_KEY |
| if (isNotEmptyString(AUTH_SECRET_KEY)) { |
| try { |
| const Authorization = req.header('Authorization') |
| if (!Authorization || Authorization.replace('Bearer ', '').trim() !== AUTH_SECRET_KEY.trim()) |
| throw new Error('Error: 无访问权限 | No access rights') |
| next() |
| } |
| catch (error) { |
| res.send({ status: 'Unauthorized', message: error.message ?? 'Please authenticate.', data: null }) |
| } |
| } |
| else { |
| next() |
| } |
| } |
|
|
| export { auth } |
|
|
