IAM/iam-front
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(login): add register

Browse Source
This commit is contained in:
shay7sev
2026-02-09 19:52:32 +08:00
parent b57d04f172
commit 8c033066af
6 changed files with 268 additions and 150 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.eslintrc.json Normal file
View File

@@ -0,0 +1,6 @@
{
"extends": [
"next/core-web-vitals",
"next/typescript"
]
}

46
src/app/api/auth/login-token/route.ts Normal file
View File

@@ -0,0 +1,46 @@
import { NextRequest, NextResponse } from "next/server";
import { IamApiError, iamLogin } from "@/lib/iam";
import { verifyCaptchaCookie } from "@/lib/captcha";
export const runtime = "nodejs";
type Body = {
tenantId?: string;
email?: string;
password?: string;
captcha?: string;
};
export async function POST(req: NextRequest) {
const body = (await req.json()) as Body;
const tenantId = body.tenantId?.trim() ?? "";
const email = body.email?.trim() ?? "";
const password = body.password ?? "";
const captcha = body.captcha?.trim() ?? "";
if (!tenantId || !email || !password) {
return NextResponse.json(
{ message: "missing required fields" },
{ status: 400 },
);
}
const captchaCookie = req.cookies.get("iam_captcha")?.value;
if (!verifyCaptchaCookie(captchaCookie, captcha)) {
return NextResponse.json({ message: "invalid captcha" }, { status: 400 });
}
try {
const tokens = await iamLogin({ tenantId, email, password });
return NextResponse.json(tokens, {
status: 200,
headers: { "Cache-Control": "no-store" },
});
} catch (err) {
const status = err instanceof IamApiError ? err.status : 500;
const message = err instanceof Error ? err.message : "登录失败";
return NextResponse.json({ message }, { status });
}
}

38
src/app/api/auth/register/route.ts Normal file
View File

@@ -0,0 +1,38 @@
import { NextRequest, NextResponse } from "next/server";
import { IamApiError, iamRegister } from "@/lib/iam";
export const runtime = "nodejs";
type Body = {
tenantId?: string;
email?: string;
password?: string;
};
export async function POST(req: NextRequest) {
const body = (await req.json()) as Body;
const tenantId = body.tenantId?.trim() ?? "";
const email = body.email?.trim() ?? "";
const password = body.password ?? "";
if (!tenantId || !email || !password) {
return NextResponse.json(
{ message: "missing required fields" },
{ status: 400 },
);
}
try {
const user = await iamRegister({ tenantId, email, password });
return NextResponse.json(
{ id: user.id, email: user.email },
{ status: 201, headers: { "Cache-Control": "no-store" } },
);
} catch (err) {
const status = err instanceof IamApiError ? err.status : 500;
const message = err instanceof Error ? err.message : "注册失败";
return NextResponse.json({ message }, { status });
}
}

242
src/components/login-form.tsx
View File

@@ -1,57 +1,93 @@
"use client";
import * as React from "react";
import Link from "next/link";
import { Button } from "@/components/ui/button";
import { LoginForm } from "@/components/auth/login-form";
import { RegisterForm } from "@/components/auth/register-form";
import { Tabs, TabsContent, TabsList, TabsTrigger } from "@/components/ui/tabs";
import {
Card,
CardContent,
CardDescription,
CardFooter,
CardHeader,
CardTitle,
} from "@/components/ui/card";
import { Checkbox } from "@/components/ui/checkbox";
import { Input } from "@/components/ui/input";
import { Label } from "@/components/ui/label";
const LoginForm = (props: {
const LoginFormCard = (props: {
clientId: string;
tenantId: string;
callback: string;
initialEmail: string;
}) => {
const [email, setEmail] = React.useState(props.initialEmail);
const [password, setPassword] = React.useState("");
const [tab, setTab] = React.useState<"login" | "register">("login");
const [captcha, setCaptcha] = React.useState("");
const [rememberMe, setRememberMe] = React.useState(
Boolean(props.initialEmail),
);
const [submitting, setSubmitting] = React.useState(false);
const [error, setError] = React.useState<string | null>(null);
const [captchaKey, setCaptchaKey] = React.useState(() => String(Date.now()));
const [loginExternalError, setLoginExternalError] = React.useState<
string | null
>(null);
const [loginPrefill, setLoginPrefill] = React.useState<{
email: string;
password: string;
} | null>(null);
const clientId = props.clientId;
const tenantId = props.tenantId;
const callback = props.callback;
function refreshCaptcha() {
setCaptchaKey(String(Date.now()));
}
async function loginTokenAndStore(payload: {
email: string;
password: string;
}) {
const tokenRes = await fetch("/api/auth/login-token", {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({
tenantId: props.tenantId,
email: payload.email,
password: payload.password,
captcha,
}),
});
const tokenJson = (await tokenRes.json()) as {
access_token?: string;
refresh_token?: string;
token_type?: string;
expires_in?: number;
message?: string;
};
if (!tokenRes.ok || !tokenJson.access_token || !tokenJson.refresh_token) {
throw new Error(tokenJson.message || "登录失败");
}
async function onSubmit(e: React.FormEvent) {
e.preventDefault();
setError(null);
setSubmitting(true);
try {
sessionStorage.setItem("iam_access_token", tokenJson.access_token);
sessionStorage.setItem("iam_refresh_token", tokenJson.refresh_token);
if (tokenJson.token_type) {
sessionStorage.setItem("iam_token_type", tokenJson.token_type);
}
if (typeof tokenJson.expires_in === "number") {
sessionStorage.setItem("iam_expires_in", String(tokenJson.expires_in));
}
sessionStorage.setItem("iam_token_issued_at", String(Date.now()));
} catch {}
}
async function loginAndRedirect(payload: {
email: string;
password: string;
}) {
await loginTokenAndStore(payload);
const res = await fetch("/api/auth/login", {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({
clientId,
tenantId,
callback,
email,
password,
clientId: props.clientId,
tenantId: props.tenantId,
callback: props.callback,
email: payload.email,
password: payload.password,
captcha,
rememberMe,
rememberMe: true,
}),
});
const json = (await res.json()) as {
@@ -61,18 +97,8 @@ const LoginForm = (props: {
if (!res.ok || !json.redirectTo) {
throw new Error(json.message || "登录失败");
}
console.log(`json.redirectTo`, json.redirectTo);
window.location.href = json.redirectTo;
} catch (err) {
setError(err instanceof Error ? err.message : "登录失败");
setCaptcha("");
setCaptchaKey(String(Date.now()));
} finally {
setSubmitting(false);
}
}
const missingParams = !clientId || !tenantId || !callback;
return (
<Card className="w-full max-w-md">
@@ -80,98 +106,62 @@ const LoginForm = (props: {
<CardTitle></CardTitle>
<CardDescription>使 IAM 访</CardDescription>
</CardHeader>
<form onSubmit={onSubmit}>
<CardContent className="space-y-4">
{missingParams ? (
<div className="text-sm text-destructive">
clientIdtenantId callback
</div>
) : null}
{error ? (
<div className="text-sm text-destructive">{error}</div>
) : null}
<div className="space-y-2">
<Label htmlFor="email"></Label>
<Input
id="email"
autoComplete="username"
value={email}
onChange={(e) => setEmail(e.target.value)}
placeholder="user@example.com"
disabled={submitting}
required
/>
</div>
<div className="space-y-2">
<Label htmlFor="password"></Label>
<Input
id="password"
type="password"
autoComplete="current-password"
value={password}
onChange={(e) => setPassword(e.target.value)}
disabled={submitting}
required
/>
</div>
<div className="space-y-2">
<Label htmlFor="captcha"></Label>
<div className="flex gap-2">
<Input
id="captcha"
inputMode="numeric"
value={captcha}
onChange={(e) => setCaptcha(e.target.value)}
disabled={submitting}
required
/>
<button
type="button"
className="shrink-0 rounded-md border border-input bg-background px-2"
onClick={() => setCaptchaKey(String(Date.now()))}
aria-label="刷新验证码"
>
<img
alt="captcha"
src={`/api/captcha?key=${encodeURIComponent(captchaKey)}`}
width={120}
height={40}
/>
</button>
</div>
</div>
<div className="flex items-center justify-between">
<label className="flex items-center gap-2 text-sm">
<Checkbox
checked={rememberMe}
onCheckedChange={(v) => setRememberMe(Boolean(v))}
/>
</label>
<Link
className="text-sm underline underline-offset-4"
href={`/forgot-password?tenantId=${encodeURIComponent(tenantId)}`}
>
</Link>
</div>
</CardContent>
<CardFooter className="flex gap-2">
<Button
type="submit"
<CardContent>
<Tabs
value={tab}
onValueChange={(v) => setTab(v as "login" | "register")}
className="w-full"
disabled={submitting || missingParams}
>
{submitting ? "登录中..." : "登录"}
</Button>
</CardFooter>
</form>
<TabsList className="grid w-full grid-cols-2">
<TabsTrigger value="login"></TabsTrigger>
<TabsTrigger value="register"></TabsTrigger>
</TabsList>
<TabsContent value="login">
<LoginForm
clientId={props.clientId}
tenantId={props.tenantId}
callback={props.callback}
initialEmail={loginPrefill?.email ?? props.initialEmail}
prefillPassword={loginPrefill?.password}
externalError={loginExternalError}
onClearExternalError={() => setLoginExternalError(null)}
captcha={captcha}
onCaptchaChange={setCaptcha}
captchaKey={captchaKey}
onRefreshCaptcha={refreshCaptcha}
/>
</TabsContent>
<TabsContent value="register">
<RegisterForm
tenantId={props.tenantId}
captcha={captcha}
onCaptchaChange={setCaptcha}
captchaKey={captchaKey}
onRefreshCaptcha={refreshCaptcha}
onRegisterSuccessPrefillLogin={(p) => {
setLoginPrefill(p);
}}
onLoginAfterRegister={async (p) => {
try {
await loginAndRedirect(p);
} catch (err) {
const msg = err instanceof Error ? err.message : "登录失败";
setLoginExternalError(
`注册成功,但登录失败:${msg}。请在“登录”页修正验证码后继续。`,
);
setTab("login");
setCaptcha("");
refreshCaptcha();
}
}}
/>
</TabsContent>
</Tabs>
</CardContent>
</Card>
);
};
export default LoginForm;
export default LoginFormCard;

15
src/components/ui/input.tsx
View File

@@ -1,8 +1,8 @@
import * as React from "react"
import * as React from "react";
import { cn } from "@/lib/utils"
import { cn } from "@/lib/utils";
export interface InputProps extends React.InputHTMLAttributes<HTMLInputElement> {}
export type InputProps = React.InputHTMLAttributes<HTMLInputElement>;
const Input = React.forwardRef<HTMLInputElement, InputProps>(
({ className, type, ...props }, ref) => {
@@ -16,10 +16,9 @@ const Input = React.forwardRef<HTMLInputElement, InputProps>(
ref={ref}
{...props}
/>
)
);
},
)
Input.displayName = "Input"
export { Input }
);
Input.displayName = "Input";
export { Input };

43
src/lib/iam.ts
View File

@@ -8,6 +8,16 @@ type AppResponse<T> = {
details?: unknown;
};
export class IamApiError extends Error {
status: number;
code?: number;
constructor(message: string, status: number, code?: number) {
super(message);
this.status = status;
this.code = code;
}
}
export type IamLoginResponse = {
access_token: string;
refresh_token: string;
@@ -20,6 +30,11 @@ export type IamLoginCodeResponse = {
expiresAt: number;
};
export type IamRegisterResponse = {
id: string;
email: string;
};
export async function iamLogin(params: {
tenantId: string;
email: string;
@@ -39,7 +54,31 @@ export async function iamLogin(params: {
const body = (await res.json()) as AppResponse<IamLoginResponse>;
if (!res.ok || body.code !== 0) {
throw new Error(body.message || "Login failed");
throw new IamApiError(body.message || "Login failed", res.status, body.code);
}
return body.data;
}
export async function iamRegister(params: {
tenantId: string;
email: string;
password: string;
}): Promise<IamRegisterResponse> {
const base = mustGetEnv("IAM_SERVICE_BASE_URL").replace(/\/$/, "");
const url = `${base}/api/v1/auth/register`;
const res = await fetch(url, {
method: "POST",
headers: {
"Content-Type": "application/json",
"X-Tenant-ID": params.tenantId,
},
body: JSON.stringify({ email: params.email, password: params.password }),
cache: "no-store",
});
const body = (await res.json()) as AppResponse<IamRegisterResponse>;
if (!res.ok || body.code !== 0) {
throw new IamApiError(body.message || "Register failed", res.status, body.code);
}
return body.data;
}
@@ -71,7 +110,7 @@ export async function iamLoginCode(params: {
const body = (await res.json()) as AppResponse<IamLoginCodeResponse>;
if (!res.ok || body.code !== 0) {
throw new Error(body.message || "Login failed");
throw new IamApiError(body.message || "Login failed", res.status, body.code);
}
return body.data;
}