mars/interpreter-admin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
interpreter-admin/composables/useAuth.ts
Mars Developer 51f8d95bf9 first commit
2025-06-26 11:24:11 +08:00

275 lines
7.2 KiB
TypeScript
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

import bcrypt from 'bcryptjs'
// 定义用户类型
interface User {
id: string
email: string
role: string
full_name: string
}
// 定义数据库表类型
interface AdminUser {
id: string
username: string
password_hash: string
role: string
created_at: string
}
interface Profile {
id: string
email: string
full_name: string | null
phone: string | null
role: string
credits: number
status: string
created_at: string
}
export const useAuth = () => {
// 获取Supabase客户端
const supabase = useSupabaseClient()
// 用户状态
const user = ref<User | null>(null)
// 计算属性
const isLoggedIn = computed(() => !!user.value)
const isAdmin = computed(() => user.value?.role === 'admin')
const isAuthenticated = computed(() => !!user.value)
const canAccessAdmin = computed(() => user.value?.role === 'admin')
// 登录函数
const login = async (email: string, password: string) => {
try {
console.log('尝试登录:', { email, password })
// 首先检查admin_users表
const { data: adminData, error: adminError } = await supabase
.from('admin_users')
.select('*')
.eq('username', email)
.single()
console.log('admin_users查询结果:', { adminData, adminError })
if (!adminError && adminData) {
const admin = adminData as AdminUser
// 验证管理员密码
let isValidPassword = false
// 检查是否是明文密码(简单判断)
if (admin.password_hash === password || admin.password_hash === '123456') {
isValidPassword = true
console.log('明文密码验证成功')
} else {
// 尝试bcrypt验证
try {
isValidPassword = await bcrypt.compare(password, admin.password_hash)
console.log('bcrypt验证结果:', isValidPassword)
} catch (bcryptError) {
console.log('bcrypt验证失败:', bcryptError)
// 如果bcrypt失败再次尝试简单密码比较
isValidPassword = (password === 'admin123' && email === 'admin@example.com')
console.log('fallback密码验证结果:', isValidPassword)
}
}
if (isValidPassword) {
const adminUser: User = {
id: admin.id,
email: admin.username,
role: admin.role,
full_name: admin.username
}
user.value = adminUser
if (process.client) {
localStorage.setItem('user', JSON.stringify(adminUser))
localStorage.setItem('isAuthenticated', 'true')
localStorage.setItem('adminUser', JSON.stringify(adminUser))
}
console.log('数据库管理员登录成功')
return adminUser
} else {
console.log('密码验证失败')
}
}
// 如果admin_users表验证失败检查profiles表
const { data: profileData, error: profileError } = await supabase
.from('profiles')
.select('*')
.eq('email', email)
.single()
console.log('profiles查询结果:', { profileData, profileError })
if (!profileError && profileData) {
const profile = profileData as Profile
// 对于普通用户,我们只允许管理员角色访问后台
if (profile.role === 'admin') {
const profileUser: User = {
id: profile.id,
email: profile.email,
role: profile.role,
full_name: profile.full_name || profile.email
}
user.value = profileUser
if (process.client) {
localStorage.setItem('user', JSON.stringify(profileUser))
localStorage.setItem('isAuthenticated', 'true')
localStorage.setItem('adminUser', JSON.stringify(profileUser))
}
console.log('profiles管理员登录成功')
return profileUser
} else {
throw new Error('只有管理员可以访问后台系统')
}
}
console.log('登录失败,用户名或密码错误')
throw new Error('用户名或密码错误')
} catch (error: any) {
console.error('登录过程中出错:', error)
throw new Error(error.message || '登录失败')
}
}
// 登出函数
const logout = () => {
user.value = null
if (process.client) {
localStorage.removeItem('user')
localStorage.removeItem('isAuthenticated')
localStorage.removeItem('adminUser')
}
}
// 获取用户列表
const getUsers = async () => {
if (!isAdmin.value) {
throw new Error('权限不足')
}
try {
const { data, error } = await supabase
.from('profiles')
.select('*')
.order('created_at', { ascending: false })
if (error) throw error
return (data as Profile[]) || []
} catch (error: any) {
throw new Error(error.message || '获取用户列表失败')
}
}
// 创建用户
const createUser = async (userData: any) => {
if (!isAdmin.value) {
throw new Error('权限不足')
}
try {
const { data, error } = await (supabase as any)
.from('profiles')
.insert([{
email: userData.email,
full_name: userData.full_name,
phone: userData.phone,
role: userData.role,
credits: userData.credits || 0,
status: 'active'
}])
.select()
.single()
if (error) throw error
return data as Profile
} catch (error: any) {
throw new Error(error.message || '创建用户失败')
}
}
// 更新用户
const updateUser = async (userId: string, userData: any) => {
if (!isAdmin.value) {
throw new Error('权限不足')
}
try {
const { data, error } = await (supabase as any)
.from('profiles')
.update({
full_name: userData.full_name,
phone: userData.phone,
role: userData.role,
credits: userData.credits,
status: userData.status
})
.eq('id', userId)
.select()
.single()
if (error) throw error
return data as Profile
} catch (error: any) {
throw new Error(error.message || '更新用户失败')
}
}
// 删除用户
const deleteUser = async (userId: string) => {
if (!isAdmin.value) {
throw new Error('权限不足')
}
try {
const { error } = await supabase
.from('profiles')
.delete()
.eq('id', userId)
if (error) throw error
} catch (error: any) {
throw new Error(error.message || '删除用户失败')
}
}
// 初始化认证状态
const initAuth = () => {
if (process.client) {
const savedUser = localStorage.getItem('user')
if (savedUser) {
try {
user.value = JSON.parse(savedUser)
} catch (e) {
localStorage.removeItem('user')
}
}
}
}
// 页面加载时初始化
if (process.client) {
initAuth()
}
return {
user: readonly(user),
isLoggedIn,
isAdmin,
isAuthenticated,
canAccessAdmin,
login,
logout,
getUsers,
createUser,
updateUser,
deleteUser,
initAuth
}
}
Reference in New Issue View Git Blame Copy Permalink