chore: sync various improvements and fixes

- Update gitignore and serena config - Improve connection and voting stores - Enhance admin routes and socket handling - Update client-screen views - Add auth middleware Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-03 23:31:38 +08:00
parent 39caecdd95
commit 83bf1d3a43
25 changed files with 284 additions and 122 deletions
--- a/packages/server/src/services/wechat.service.ts
+++ b/packages/server/src/services/wechat.service.ts
@@ -1,5 +1,4 @@
 import { v4 as uuidv4 } from 'uuid';
-import jwt from 'jsonwebtoken';
 import { redis } from '../config/redis';
 import { config } from '../config';
 import { logger } from '../utils/logger';
@@ -8,9 +7,9 @@ import type {
  WechatAccessTokenResponse,
  WechatUserInfo,
 } from '@gala/shared/types';
+import { createSessionToken } from '../utils/auth';

 const WECHAT_STATE_PREFIX = 'wechat:state:';
-const SESSION_TOKEN_PREFIX = 'session:';
 const STATE_TTL = 5 * 60; // 5 minutes
 const SESSION_TOKEN_TTL = 24 * 60 * 60; // 24 hours

@@ -52,7 +51,7 @@ class WechatService {
   */
  async createLoginState(pcSocketId: string): Promise<{
    success: boolean;
-    data?: { authUrl: string; state: string; expiresAt: number };
+    data?: { appId: string; redirectUri: string; state: string; expiresAt: number };
    error?: string;
  }> {
    if (!this.isConfigured()) {
@@ -77,13 +76,16 @@ class WechatService {
        JSON.stringify(stateData)
      );

-      const authUrl = this.generateAuthUrl(state);
-
      logger.info({ state, pcSocketId }, 'WeChat login state created');

      return {
        success: true,
-        data: { authUrl, state, expiresAt },
+        data: {
+          appId: this.appId,
+          redirectUri: this.redirectUri,
+          state,
+          expiresAt,
+        },
      };
    } catch (error) {
      logger.error({ error }, 'Failed to create WeChat login state');
@@ -204,17 +206,9 @@ class WechatService {
      const userId = `wx_${openid.slice(0, 16)}`;
      const userName = userInfo?.nickname || `微信用户_${openid.slice(-6)}`;

-      const sessionToken = jwt.sign(
-        { userId, userName, openid },
-        config.jwtSecret || 'gala-secret-key',
-        { expiresIn: '24h' }
-      );
-
-      // Store session
-      await redis.setex(
-        `${SESSION_TOKEN_PREFIX}${sessionToken}`,
-        SESSION_TOKEN_TTL,
-        JSON.stringify({ userId, userName, openid })
+      const sessionToken = await createSessionToken(
+        { userId, userName, openid, role: 'user' },
+        SESSION_TOKEN_TTL
      );

      // Delete used state