admin/nexus-terminal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
Baobhan Sith
2025-05-08 14:55:50 +08:00
parent 3861936299
commit 18227ae2ab
2 changed files with 19 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/backend/src/auth/auth.controller.ts
+17 -13
View File
@@ -139,12 +139,15 @@ export const generatePasskeyAuthenticationOptionsHandler = async (req: Request,
* 验证 Passkey 凭据并登录用户 (POST /api/v1/auth/passkey/authenticate) * 验证 Passkey 凭据并登录用户 (POST /api/v1/auth/passkey/authenticate)
*/ */
export const verifyPasskeyAuthenticationHandler = async (req: Request, res: Response): Promise<void> => { export const verifyPasskeyAuthenticationHandler = async (req: Request, res: Response): Promise<void> => {
const authenticationResponse = req.body; // The whole body is the response from @simplewebauthn/browser // Extract assertionResponse and rememberMe from the request body
const { assertionResponse, rememberMe } = req.body;
const expectedChallenge = req.session.currentChallenge; const expectedChallenge = req.session.currentChallenge;
const { rememberMe } = req.body; // Optional rememberMe flag
if (!authenticationResponse) { // Rename assertionResponse to authenticationResponseJSON for clarity within this scope
res.status(400).json({ message: '认证响应不能为空。' }); const authenticationResponseJSON = assertionResponse;
if (!authenticationResponseJSON) {
res.status(400).json({ message: '认证响应 (assertionResponse) 不能为空。' });
return; return;
} }
if (!expectedChallenge) { if (!expectedChallenge) {
@@ -153,8 +156,9 @@ export const verifyPasskeyAuthenticationHandler = async (req: Request, res: Resp
} }
try { try {
// Pass the extracted authenticationResponseJSON to the service
const verification = await passkeyService.verifyAuthentication( const verification = await passkeyService.verifyAuthentication(
authenticationResponse, authenticationResponseJSON,
expectedChallenge expectedChallenge
); );
@@ -197,20 +201,20 @@ export const verifyPasskeyAuthenticationHandler = async (req: Request, res: Resp
} else { } else {
console.warn(`[AuthController] Passkey 认证验证失败:`, verification); console.warn(`[AuthController] Passkey 认证验证失败:`, verification);
const clientIp = req.ip || req.socket?.remoteAddress || 'unknown'; const clientIp = req.ip || req.socket?.remoteAddress || 'unknown';
auditLogService.logAction('PASSKEY_AUTH_FAILURE', { auditLogService.logAction('PASSKEY_AUTH_FAILURE', {
credentialId: authenticationResponse.id, credentialId: authenticationResponseJSON?.id || 'unknown', // Use the extracted object
reason: 'Verification failed', reason: 'Verification failed',
ip: clientIp ip: clientIp
}); });
res.status(401).json({ verified: false, message: 'Passkey 认证失败。' }); res.status(401).json({ verified: false, message: 'Passkey 认证失败。' });
} }
} catch (error: any) { } catch (error: any) {
console.error(`[AuthController] 验证 Passkey 认证时出错:`, error.message, error.stack); console.error(`[AuthController] 验证 Passkey 认证时出错:`, error.message, error.stack);
const clientIp = req.ip || req.socket?.remoteAddress || 'unknown'; const clientIp = req.ip || req.socket?.remoteAddress || 'unknown';
auditLogService.logAction('PASSKEY_AUTH_FAILURE', { auditLogService.logAction('PASSKEY_AUTH_FAILURE', {
credentialId: authenticationResponse?.id || 'unknown', credentialId: authenticationResponseJSON?.id || 'unknown', // Use the extracted object
reason: error.message, reason: error.message,
ip: clientIp ip: clientIp
}); });
res.status(500).json({ verified: false, message: '验证 Passkey 认证失败。', error: error.message }); res.status(500).json({ verified: false, message: '验证 Passkey 认证失败。', error: error.message });
} }
packages/backend/src/repositories/passkey.repository.ts
+2
View File
@@ -97,6 +97,8 @@ export class PasskeyRepository {
const db = await getDbInstance(); const db = await getDbInstance();
const sql = 'SELECT * FROM passkeys WHERE user_id = ? ORDER BY created_at DESC'; const sql = 'SELECT * FROM passkeys WHERE user_id = ? ORDER BY created_at DESC';
const results = await allDb<any>(db, sql, [userId]); const results = await allDb<any>(db, sql, [userId]);
// Log the raw results from the database before mapping
console.log(`[PasskeyRepository] Raw passkeys for user ${userId}:`, JSON.stringify(results, null, 2));
return mapPasskeyResults(results); return mapPasskeyResults(results);
} }