我正在尝试为每个公司的个人资料创建登录路线URL。
早些时候,当有单个模式时,我尝试使用相同的方法。现在,我在嵌套结构中尝试了同样的尝试,发现它很难。
现在我希望我的路线URL这样:-router.post('/:compId/admin/login')
我的想法较少,因为我为每个文档创建路线是新的。
我的控制器: -
var admin = new Admin();
admin.companyName = req.body.companyName;
admin.address = req.body.address;
admin.contactDetails = req.body.contactDetails;
admin.admins = {
email : req.body.email,
password: req.body.password,
firstName : req.body.firstName,
lastName : req.body.lastName,
phoneNumber : req.body.phoneNumber,
designation : req.body.designation,
role : "admin",
verified :"false",
users: []
};
这是我在路由登录中尝试的内容: -
router.post('/:compId/admin/login' , (req, res, next) => {
Admin.find({'admins.email': req.body.email},{ 'admins.companyId': req.params.compId })
.exec()
.then(admin => {
if(admin.admins.length < 1) {
return res.status(401).json({
message: "Auth failed. admin not found."
})
}
bcryptt.compare(req.body.admins.password, admin.admins[0].password, (err, result) =>{
if (err) {
return res.json({
message: "Auth failed. Check email and password"
});
}
if (result && admin.admins[0].verified === "true"){
const adminEmaill = "rgg@xyz.com"; //assaigning a user to admin
const role1 = admin.admins[0].email===adminEmaill? "superadmin" : "admin"; //check user id as admin or user
const token = jwt.sign(
{
email: admin.admins[0].email,
phoneNo: admin.admins[0].phoneNumber,
role1,
comID: admin.admins[0].companyID
},
process.env.JWT_KEY,
{
expiresIn : "1h"
});
return res.status(200).json({
message: "Auth Successful",
token : token
});
}
else{
console.log("admin is not verified");
return res.json({
message: "Admin is not verified"
});
}
});
})
.catch(err =>{
if (err.code == 500)
res.status(500).send(["Something went wrong in login"]);
else
return next(err);
});
});
和我的响应数据: -
[{
"admins": {
"email": "angjun.34@test-mail.info",
"password": "$2a$10$QgCJ4IaYXZK9JZIkLv2X9O/wnFpn0LEhFQujBco0M0TF2.X7OgDmW",
"firstName": "hdsdsds",
"lastName": "Ghodsdsdsh",
"phoneNumber": "4544343",
"designation": "Software Engineer",
"role": "admin",
"verified": "false",
"users": [],
"emailResetTokenn": "247c6e6794d15a311670da0bb13a4a8bf773b0e7f7b5dde0e555f421e2aef22f",
"emailExpires": "2019-05-22T15:05:43.974Z",
"saltSecret": "$2a$10$QgCJ4IaYXZK9JZIkLv2X9O"
},
"_id": "5ce510e7aca42c4c74fd9085",
"companyName": "TEST",
"address": "UAE",
"contactDetails": "54534454",
"companyID": "1223365",
"__v": 0
},
{
"admins": {
"email": "groham.224@test-mail.info",
"password": "$2a$10$QgCJ9O/wnFpn0LEhFco0M0TF2.X7OgDmW",
"firstName": "hdsdsds",
"lastName": "Ghodsdsdsh",
"phoneNumber": "4544343",
"designation": "Software Engineer",
"role": "admin",
"verified": "false",
"users": [],
"emailResetTokenn": "247c6e6794d15a311670da0bb13a4a8bf773b0e7f7b5dde0e555f421e2aef22f",
"emailExpires": "2019-05-22T15:05:43.974Z",
"saltSecret": "$2a$10$QgCJ4IaYXZK9JZIkLv2X9O"
},
"_id": "5ce510e7aca42c4c74fd9085",
"companyName": "RESTFUL Pvt Ltd",
"address": "UK",
"contactDetails": "54534454",
"companyID": "155165",
"__v": 0
}]
问题
- 那么,如何为这些公司管理员的
router.post('/:compId/admin/login')
创建login
,以便只有相应公司的详细信息的对象才能在登录时通过 JWT 传递?我添加的登录路线不起作用。
示例: - 假设第二公司路由为('/155165/admin/login')
似乎您正在使用错误的查询 companyID
不是admins
所以查询应该为
Admin.find({'admins.email': req.body.email},{ 'companyID': req.params.compId })