src/actions/auth.ts

'use server'
import {cookies} from 'next/headers'
import {ApiResponse, UnauthorizedError} from '@/lib/api'
import {User} from '@/lib/models'
import {callByDevice, callByUser} from '@/actions/base'

type TokenResp = {
  access_token: string
  refresh_token: string
  expires_in: number
  token_type: string
  scope?: string
}

export async function login(props: {
  username: string
  password: string
  remember: boolean
}): Promise<ApiResponse> {
  // 尝试登录
  const result = await callByDevice<TokenResp>('/api/auth/token', {
    ...props,
    grant_type: 'password',
    login_type: 'phone_code',
  })

  if (!result.success) {
    return result
  }

  // 保存到 cookies
  const data = result.data
  const cookieStore = await cookies()
  cookieStore.set('auth_token', data.access_token, {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: Math.max(data.expires_in, 0),
  })
  cookieStore.set('auth_refresh', data.refresh_token, {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: Number.MAX_SAFE_INTEGER,
  })

  return {
    success: true,
    data: undefined,
  }
}

export async function logout() {
  const cookieStore = await cookies()

  // 尝试删除后台会话
  const access_token = cookieStore.get('auth_token')?.value
  const refresh_token = cookieStore.get('auth_refresh')?.value
  if (access_token && refresh_token) {
    await callByUser('/api/auth/revoke', {
      access_token,
      refresh_token,
    })
  }

  // 删除 cookies
  cookieStore.set('auth_token', '', {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: -1,
  })
  cookieStore.set('auth_refresh', '', {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: -1,
  })

  return {
    success: true,
    data: undefined,
  }
}

export async function getProfile() {
  return await callByUser<User>('/api/auth/introspect')
}

export async function refreshAuth() {
  const cookie = await cookies()

  const userRefresh = cookie.get('auth_refresh')?.value
  if (!userRefresh) {
    throw UnauthorizedError
  }

  // 请求刷新访问令牌
  const resp = await callByDevice<TokenResp>(`/api/auth/token`, {
    grant_type: 'refresh_token',
    refresh_token: userRefresh,
  })

  // 处理请求
  if (!resp.success) {
    if (resp.status === 401) {
      cookie.delete('auth_refresh')
    }
    throw UnauthorizedError
  }

  // 解析响应
  const data = resp.data
  const nextAccessToken = data.access_token
  const nextRefreshToken = data.refresh_token
  const expiresIn = data.expires_in

  // 保存令牌到 cookies
  cookie.set('auth_token', nextAccessToken, {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: Math.max(expiresIn, 0),
  })
  cookie.set('auth_refresh', nextRefreshToken, {
    httpOnly: true,
    sameSite: 'strict',
    maxAge: Number.MAX_SAFE_INTEGER,
  })

  // 返回新的访问令牌
  return {
    access_token: nextAccessToken,
    refresh_token: nextRefreshToken,
  }
}
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`'use server'`
			`import {cookies} from 'next/headers'`
重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`import {ApiResponse, UnauthorizedError} from '@/lib/api'`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`import {User} from '@/lib/models'`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`import {callByDevice, callByUser} from '@/actions/base'`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`type TokenResp = {`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`access_token: string`
			`refresh_token: string`
重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`expires_in: number`
			`token_type: string`
			`scope?: string`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`}`

重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`export async function login(props: {`
			`username: string`
			`password: string`
			`remember: boolean`
			`}): Promise<ApiResponse> {`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`// 尝试登录`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`const result = await callByDevice<TokenResp>('/api/auth/token', {`
重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`...props,`
			`grant_type: 'password',`
			`login_type: 'phone_code',`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`})`
添加刷新令牌maxAge值 2025-06-26 10:08:46 +08:00
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`if (!result.success) {`
			`return result`
			`}`

			`// 保存到 cookies`
重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`const data = result.data`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`const cookieStore = await cookies()`
			`cookieStore.set('auth_token', data.access_token, {`
			`httpOnly: true,`
			`sameSite: 'strict',`
重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`maxAge: Math.max(data.expires_in, 0),`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`})`
			`cookieStore.set('auth_refresh', data.refresh_token, {`
			`httpOnly: true,`
			`sameSite: 'strict',`
添加刷新令牌maxAge值 2025-06-26 10:08:46 +08:00			`maxAge: Number.MAX_SAFE_INTEGER,`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`})`

			`return {`
			`success: true,`
			`data: undefined,`
			`}`
			`}`

完善认证功能，添加注销逻辑并优化用户界面 2025-04-18 17:48:12 +08:00			`export async function logout() {`
			`const cookieStore = await cookies()`

			`// 尝试删除后台会话`
			`const access_token = cookieStore.get('auth_token')?.value`
			`const refresh_token = cookieStore.get('auth_refresh')?.value`
			`if (access_token && refresh_token) {`
修改授权撤销接口调用方式，改为使用用户令牌调用 2025-04-30 16:39:39 +08:00			`await callByUser('/api/auth/revoke', {`
完善认证功能，添加注销逻辑并优化用户界面 2025-04-18 17:48:12 +08:00			`access_token,`
			`refresh_token,`
			`})`
			`}`

			`// 删除 cookies`
			`cookieStore.set('auth_token', '', {`
			`httpOnly: true,`
			`sameSite: 'strict',`
			`maxAge: -1,`
			`})`
			`cookieStore.set('auth_refresh', '', {`
			`httpOnly: true,`
			`sameSite: 'strict',`
			`maxAge: -1,`
			`})`

重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`return {`
			`success: true,`
			`data: undefined,`
			`}`
完善认证功能，添加注销逻辑并优化用户界面 2025-04-18 17:48:12 +08:00			`}`

重构认证逻辑，优化登录和用户信息获取流程，新增全局缓存支持 2025-04-23 19:00:53 +08:00			`export async function getProfile() {`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`return await callByUser<User>('/api/auth/introspect')`
			`}`

			`export async function refreshAuth() {`
			`const cookie = await cookies()`

			`const userRefresh = cookie.get('auth_refresh')?.value`
			`if (!userRefresh) {`
			`throw UnauthorizedError`
			`}`

			`// 请求刷新访问令牌`
			const resp = await callByDevice<TokenResp>(`/api/auth/token`, {
			`grant_type: 'refresh_token',`
			`refresh_token: userRefresh,`
			`})`

			`// 处理请求`
			`if (!resp.success) {`
添加刷新令牌maxAge值 2025-06-26 10:08:46 +08:00			`if (resp.status === 401) {`
			`cookie.delete('auth_refresh')`
			`}`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`throw UnauthorizedError`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`}`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00
			`// 解析响应`
			`const data = resp.data`
			`const nextAccessToken = data.access_token`
			`const nextRefreshToken = data.refresh_token`
			`const expiresIn = data.expires_in`

			`// 保存令牌到 cookies`
			`cookie.set('auth_token', nextAccessToken, {`
			`httpOnly: true,`
			`sameSite: 'strict',`
			`maxAge: Math.max(expiresIn, 0),`
			`})`
			`cookie.set('auth_refresh', nextRefreshToken, {`
			`httpOnly: true,`
			`sameSite: 'strict',`
更新充值和购买支付宝接口和传参，我的账单列表更新&解决banner拉伸&更新登录的访问令牌 2025-06-27 10:57:50 +08:00			`maxAge: Number.MAX_SAFE_INTEGER,`
重构鉴权逻辑，新增中间件刷新令牌，授权接口统一后处理无授权跳转 2025-04-26 14:18:08 +08:00			`})`

			`// 返回新的访问令牌`
			`return {`
			`access_token: nextAccessToken,`
			`refresh_token: nextRefreshToken,`
完善产品购买页面，抽取公共组件，优化导航链接 2025-04-08 11:21:58 +08:00			`}`
			`}`