当前位置: 文江博客话题详情

JwtStrategy 需要秘密或密钥

发布于 2025-01-10 08:54:30 字数 5120 浏览 0 评论 0原文

我有以下错误,我不知道为什么会发生。你能帮我

错误 [ExceptionHandler] JwtStrategy 需要秘密或密钥 类型错误:JwtStrategy 需要秘密或密钥 在新的 JwtStrategy (C:\Users\wapg2\OneDrive\Productos\node_modules\passport-jwt\lib\strategy.js:45:15)

身份验证控制器:

import { Controller, Get, Post, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';

import { User, Auth } from 'src/common/decorators';
import { Usuario } from 'src/usuarios/entities';
import { AuthService } from './auth.service';
import { JwtAuthGuard, LocalAuthGuard } from './guards';

@ApiTags('Auth routes')
@Controller('auth')
export class AuthController {
  constructor(private readonly authService: AuthService) {}
  @UseGuards(LocalAuthGuard) //Aca usamos las estrategias
  @Post('login')
  //Passport crea automáticamente un objeto user, según el valor que devolvemos del método validate(), y lo asigna al objeto Request como req.user
  login(@User() usuario: Usuario) {
    const data = this.authService.login(usuario);
    return {
      message: 'Login exitoso',
      data,
    };
  }

  //Esta ruta se vuelve privada al usar JwtAuthGuard
  @UseGuards(JwtAuthGuard)
  @ApiBearerAuth()
  @Get('profile')
  profile(@User() usuario: Usuario) {
    return {
      message: 'Petición correcta',
      usuario,
    };
  }

  @Auth() //-> decorador creado por nosotros para reducir @UseGuards(JwtAuthGuard) y @ApiBearerAuth()
  @Get('refresh')
  refreshToken(@User() usuario: Usuario) {
    const data = this.authService.login(usuario);
    return {
      message: 'Refresh exitoso',
      data,
    };
  }
}

身份验证服务

import { Injectable } from '@nestjs/common';
import { compare } from 'bcryptjs';
import { JwtService } from '@nestjs/jwt';

import { Usuario } from 'src/usuarios/entities';
import { UsuariosService } from 'src/usuarios/usuarios.service';
import { response } from 'express';

@Injectable()
export class AuthService {
  constructor(
    //Inyectamos UsuariosService y JwtService para usar las funciones que ofrecen. Estos servicios los podemos usar gracias a que hemos inyectado los módulos UserModule y JwtModule en el AuthModule. Tambien es posible usar el servicio UsuariosService gracias a que hemos exportado dicho servicio en el UsuariosModule (exports: [UsuariosService])
    private readonly usuarioService: UsuariosService,
    private readonly jwtService: JwtService,
  ) {}

  async validateUser(email: string, password: string): Promise<any> {
    const usuario = await this.usuarioService.buscarPorEmail({ email });

    console.log(usuario);

    if (usuario && (await compare(password, usuario.contrasena))) {
      const { contrasena, ...usuarioSinContrasena } = usuario;
      return usuarioSinContrasena;
    }

    return null;
  }

  //login crea el token JWT
  login(usuario: Usuario) {
    const { id } = usuario; //destructuración del objet user. Sacamos el id del retsto de los datos del user (...rest)

    //creamos la info del payload del jwt. el sub va a servir para identificar a cada usuario
    const payload = { sub: id };

    return {
      usuario,
      accesToken: this.jwtService.sign(payload), //Generamos el token
    };
  }
}

身份验证模块:

import { Module } from '@nestjs/common';
import { PassportModule } from '@nestjs/passport';
import { JwtModule } from '@nestjs/jwt';
import { ConfigService } from '@nestjs/config';

import { AuthService } from './auth.service';
import { AuthController } from './auth.controller';
import { JwtStrategy, LocalStrategy } from './strategies';
import { JWT_SECRET } from '../config/constants';
import { UsuariosModule } from 'src/usuarios/usuarios.module';

@Module({
  imports: [
    PassportModule.register({
      defaultStrategy: 'jwt',
    }),
    JwtModule.registerAsync({
      inject: [ConfigService],
      useFactory: (config: ConfigService) => ({
        secret: config.get<string>(JWT_SECRET),
        signOptions: { expiresIn: '60m' }, //Tiempo en el que expira el token
      }),
    }),
    UsuariosModule,
  ], //<-- se inportan los servicios y todo lo que se necesita de passport
  providers: [AuthService, LocalStrategy, JwtStrategy],
  controllers: [AuthController],
})
export class AuthModule {}

这是我的 jwtStrtegy

import { ConfigService } from '@nestjs/config';
import { PassportStrategy } from '@nestjs/passport';
import { Strategy, ExtractJwt } from "passport-jwt";
import { JWT_SECRET } from "src/config/constants";
import { UserService } from "src/user/user.service";
import { Injectable } from '@nestjs/common';

@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy){
  constructor(
    private readonly userService: UserService,
    private readonly config: ConfigService,
  ) {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      ignoreExpiration: false,
      secretOrKey: config.get<string>(JWT_SECRET),
    });
  }

  async validate(payload: any) {
    const { sub: id } = payload;
    return await this.userService.getOne(id);
  }
}
原文

I have the following error and I don't know why it happens. Could you help me

ERROR [ExceptionHandler] JwtStrategy requires a secret or key
TypeError: JwtStrategy requires a secret or key
at new JwtStrategy (C:\Users\wapg2\OneDrive\Productos\node_modules\passport-jwt\lib\strategy.js:45:15)

Auth controler:

import { Controller, Get, Post, UseGuards } from '@nestjs/common';
import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';

import { User, Auth } from 'src/common/decorators';
import { Usuario } from 'src/usuarios/entities';
import { AuthService } from './auth.service';
import { JwtAuthGuard, LocalAuthGuard } from './guards';

@ApiTags('Auth routes')
@Controller('auth')
export class AuthController {
  constructor(private readonly authService: AuthService) {}
  @UseGuards(LocalAuthGuard) //Aca usamos las estrategias
  @Post('login')
  //Passport crea automáticamente un objeto user, según el valor que devolvemos del método validate(), y lo asigna al objeto Request como req.user
  login(@User() usuario: Usuario) {
    const data = this.authService.login(usuario);
    return {
      message: 'Login exitoso',
      data,
    };
  }

  //Esta ruta se vuelve privada al usar JwtAuthGuard
  @UseGuards(JwtAuthGuard)
  @ApiBearerAuth()
  @Get('profile')
  profile(@User() usuario: Usuario) {
    return {
      message: 'Petición correcta',
      usuario,
    };
  }

  @Auth() //-> decorador creado por nosotros para reducir @UseGuards(JwtAuthGuard) y @ApiBearerAuth()
  @Get('refresh')
  refreshToken(@User() usuario: Usuario) {
    const data = this.authService.login(usuario);
    return {
      message: 'Refresh exitoso',
      data,
    };
  }
}

Auth Service

import { Injectable } from '@nestjs/common';
import { compare } from 'bcryptjs';
import { JwtService } from '@nestjs/jwt';

import { Usuario } from 'src/usuarios/entities';
import { UsuariosService } from 'src/usuarios/usuarios.service';
import { response } from 'express';

@Injectable()
export class AuthService {
  constructor(
    //Inyectamos UsuariosService y JwtService para usar las funciones que ofrecen. Estos servicios los podemos usar gracias a que hemos inyectado los módulos UserModule y JwtModule en el AuthModule. Tambien es posible usar el servicio UsuariosService gracias a que hemos exportado dicho servicio en el UsuariosModule (exports: [UsuariosService])
    private readonly usuarioService: UsuariosService,
    private readonly jwtService: JwtService,
  ) {}

  async validateUser(email: string, password: string): Promise<any> {
    const usuario = await this.usuarioService.buscarPorEmail({ email });

    console.log(usuario);

    if (usuario && (await compare(password, usuario.contrasena))) {
      const { contrasena, ...usuarioSinContrasena } = usuario;
      return usuarioSinContrasena;
    }

    return null;
  }

  //login crea el token JWT
  login(usuario: Usuario) {
    const { id } = usuario; //destructuración del objet user. Sacamos el id del retsto de los datos del user (...rest)

    //creamos la info del payload del jwt. el sub va a servir para identificar a cada usuario
    const payload = { sub: id };

    return {
      usuario,
      accesToken: this.jwtService.sign(payload), //Generamos el token
    };
  }
}

Auth Module:

import { Module } from '@nestjs/common';
import { PassportModule } from '@nestjs/passport';
import { JwtModule } from '@nestjs/jwt';
import { ConfigService } from '@nestjs/config';

import { AuthService } from './auth.service';
import { AuthController } from './auth.controller';
import { JwtStrategy, LocalStrategy } from './strategies';
import { JWT_SECRET } from '../config/constants';
import { UsuariosModule } from 'src/usuarios/usuarios.module';

@Module({
  imports: [
    PassportModule.register({
      defaultStrategy: 'jwt',
    }),
    JwtModule.registerAsync({
      inject: [ConfigService],
      useFactory: (config: ConfigService) => ({
        secret: config.get<string>(JWT_SECRET),
        signOptions: { expiresIn: '60m' }, //Tiempo en el que expira el token
      }),
    }),
    UsuariosModule,
  ], //<-- se inportan los servicios y todo lo que se necesita de passport
  providers: [AuthService, LocalStrategy, JwtStrategy],
  controllers: [AuthController],
})
export class AuthModule {}

Here is my jwtStrtegy

import { ConfigService } from '@nestjs/config';
import { PassportStrategy } from '@nestjs/passport';
import { Strategy, ExtractJwt } from "passport-jwt";
import { JWT_SECRET } from "src/config/constants";
import { UserService } from "src/user/user.service";
import { Injectable } from '@nestjs/common';

@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy){
  constructor(
    private readonly userService: UserService,
    private readonly config: ConfigService,
  ) {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      ignoreExpiration: false,
      secretOrKey: config.get<string>(JWT_SECRET),
    });
  }

  async validate(payload: any) {
    const { sub: id } = payload;
    return await this.userService.getOne(id);
  }
}

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(6

红尘作伴 2025-01-17 08:54:31

您尚未发布 LocalStrategy 定义所在的文件,但我猜测问题是您可能已从 passport-jwt 导入了 Strategy 依赖项code> 而不是该文件中的 passport-local

You haven't posted the file where your LocalStrategy definition is but I'm guessing the problem is you probably have imported the Strategy dependency from passport-jwt instead of passport-local in that file.

回复 原文
我最亲爱的 2025-01-17 08:54:31

你不应该像这样导入

import { ExtractJwt, Strategy } from 'passport-jwt';

相反你应该这样做

import { Strategy } from 'passport-local';

You shouldn't import like this

import { ExtractJwt, Strategy } from 'passport-jwt';

Instead you should do it like this

import { Strategy } from 'passport-local';
回复 原文
紫竹語嫣☆ 2025-01-17 08:54:31

使用nestjs,您可以创建自己的策略文件作为jwt.stategy.ts

import { ExtractJwt, Strategy } from 'passport-jwt';
import { PassportStrategy } from '@nestjs/passport';
import { Injectable } from '@nestjs/common';
import { ConfigService } from '@nestjs/config';
import {Request} from 'express';


@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy, "jwt") {
  constructor(configService: ConfigService) {
    super({
      // get JWT from Header 
      // jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      
      // get JWT from cookie
      jwtFromRequest: ExtractJwt.fromExtractors([
        (request: Request) => (
          request.cookies.jwt
        )
      ]),
      ignoreExpiration: false,
      secretOrKey: configService.get<string>("JWT_SECRET"), // REQUIRED
    });
  }

  async validate(payload: any) {
    return payload;
  }
}

,并使用guard作为@UseGuards(AuthGuard("jwt"))

  @UseGuards(AuthGuard("jwt"))
  @ApiBearerAuth()
  @Get('profile')
  profile(@User() usuario: Usuario) {
    return {
      message: 'Petición correcta',
      usuario,
    };
  }

名称 "jwt" 是对定义时策略名称的引用:

PassportStrategy(Strategy, "jwt")

With nestjs you can create your own strategy file as jwt.stategy.ts

import { ExtractJwt, Strategy } from 'passport-jwt';
import { PassportStrategy } from '@nestjs/passport';
import { Injectable } from '@nestjs/common';
import { ConfigService } from '@nestjs/config';
import {Request} from 'express';


@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy, "jwt") {
  constructor(configService: ConfigService) {
    super({
      // get JWT from Header 
      // jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      
      // get JWT from cookie
      jwtFromRequest: ExtractJwt.fromExtractors([
        (request: Request) => (
          request.cookies.jwt
        )
      ]),
      ignoreExpiration: false,
      secretOrKey: configService.get<string>("JWT_SECRET"), // REQUIRED
    });
  }

  async validate(payload: any) {
    return payload;
  }
}

And use guard as @UseGuards(AuthGuard("jwt"))

  @UseGuards(AuthGuard("jwt"))
  @ApiBearerAuth()
  @Get('profile')
  profile(@User() usuario: Usuario) {
    return {
      message: 'Petición correcta',
      usuario,
    };
  }

The name "jwt" is a reference to strategy name at definition:

PassportStrategy(Strategy, "jwt")

回复 原文
不甘平庸 2025-01-17 08:54:31

我找到这个例子:

import { Injectable } from '@nestjs/common';
import { PassportStrategy } from '@nestjs/passport';
import { ExtractJwt, Strategy } from 'passport-jwt';

type JwtPayload = {
  sub: string;
  username: string;
};

@Injectable()
export class AccessTokenStrategy extends PassportStrategy(Strategy, 'jwt') {
  constructor() {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      secretOrKey:
        '7sFHZrGLIMIwTotAEyNS/j4yUEW7OtYmGebnAKWQOBJ/kB+ur4XnGt1oxnRC9HUOUK+hBfcOmqw+BmlgXFB4zRzte6LRqvXlLrNiXO+REDKycfYBFywXtFQ65ZE0B5Z9EwFXaP29QysUSc2HxDeWIMzfl5nMYDj0TYHEYPJPs2Zb4hKNPIpHdA2e+8r6imFsD5C5vh0P3psnLTX8liWgkC+8ENf1YxiORqAMt9kQ9Ola7WSkaTKe6dqLKGHDMeICTw2YcCZ7+I9yT4Umgncqz78pAsBHDJPE/oFMtxw9/moCMoMH2D6dJ34R09OQ/gv8lwIjKZfBVGNsqxHW8vuppw==',
    });
  }

  validate(payload: JwtPayload) {
    return payload;
  }
}

在我的例子中,我使用这个命令 node -e "console.log(require('crypto').randomBytes(256).toString('base64'));" 来生成随机秘密,可以使用 openssl 生成代码。

按照本教程操作:

https://www.elvisduru.com/blog/ Nestjs-jwt-身份验证-刷新-令牌

I find this example :

import { Injectable } from '@nestjs/common';
import { PassportStrategy } from '@nestjs/passport';
import { ExtractJwt, Strategy } from 'passport-jwt';

type JwtPayload = {
  sub: string;
  username: string;
};

@Injectable()
export class AccessTokenStrategy extends PassportStrategy(Strategy, 'jwt') {
  constructor() {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      secretOrKey:
        '7sFHZrGLIMIwTotAEyNS/j4yUEW7OtYmGebnAKWQOBJ/kB+ur4XnGt1oxnRC9HUOUK+hBfcOmqw+BmlgXFB4zRzte6LRqvXlLrNiXO+REDKycfYBFywXtFQ65ZE0B5Z9EwFXaP29QysUSc2HxDeWIMzfl5nMYDj0TYHEYPJPs2Zb4hKNPIpHdA2e+8r6imFsD5C5vh0P3psnLTX8liWgkC+8ENf1YxiORqAMt9kQ9Ola7WSkaTKe6dqLKGHDMeICTw2YcCZ7+I9yT4Umgncqz78pAsBHDJPE/oFMtxw9/moCMoMH2D6dJ34R09OQ/gv8lwIjKZfBVGNsqxHW8vuppw==',
    });
  }

  validate(payload: JwtPayload) {
    return payload;
  }
}

In my case i used this command node -e "console.log(require('crypto').randomBytes(256).toString('base64'));" to generate a random secret , you can use openssl to generate code .

Follow this tutorial :

https://www.elvisduru.com/blog/nestjs-jwt-authentication-refresh-token

回复 原文
甜心 2025-01-17 08:54:31

选项 secretOrKey 为 < passport-jwt 包的强>必需

secretOrKey 是包含秘密的字符串或缓冲区(对称)
或 PEM 编码的公钥(非对称),用于验证令牌的
签名。除非提供了 secretOrKeyProvider,否则为必需。

使用任意值作为secretOrKey的示例配置:

var opts = {}
opts.jwtFromRequest = ExtractJwt.fromAuthHeaderAsBearerToken();
opts.secretOrKey = 'secret'; // arbitrary value used for verify JWT token
opts.issuer = 'accounts.examplesoft.com';
opts.audience = 'yoursite.net';

The option secretOrKey is required for the passport-jwt package:

secretOrKey is a string or buffer containing the secret (symmetric)
or PEM-encoded public key (asymmetric) for verifying the token's
signature. REQUIRED unless secretOrKeyProvider is provided.

A sample config that uses an arbitrary value as secretOrKey:

var opts = {}
opts.jwtFromRequest = ExtractJwt.fromAuthHeaderAsBearerToken();
opts.secretOrKey = 'secret'; // arbitrary value used for verify JWT token
opts.issuer = 'accounts.examplesoft.com';
opts.audience = 'yoursite.net';
回复 原文
蓝眼泪 2025-01-17 08:54:31

如果仍然遇到问题,请尝试以下操作:

确保 ConfigModule 已正确导入并配置为加载环境变量。

在您的 AuthModule 中,您应该:

ConfigModule.forRoot({
  isGlobal: true,
}),

这确保可以在整个应用程序中访问环境变量。

If still facing the problem try this:

Ensure that the ConfigModule is properly imported and configured to load environment variables.

In your AuthModule, you should have:

ConfigModule.forRoot({
  isGlobal: true,
}),

This makes sure that the environment variables are accessible throughout your application.

回复 原文
~没有更多了~

关于作者

雨后彩虹

暂无简介

文章
评论
26 人气
发私信

相关话题

更多

热门标签

操作系统 程序设计 IT运维 Linux系统管理 JavaScript 服务器应用 solaris C/C++ PHP Shell BSD Vue.js aix Oracle Python HTML 系统管理 HTML5 CSS 前端
更多

推荐作者

卷耳

文章 0 评论 0

佚名

文章 0 评论 0

℉服软

文章 0 评论 0

qq_2gSKZM

文章 0 评论 0

凉宸

文章 0 评论 0

gyhjy

文章 0 评论 0

更多

友情链接

文江博客
    我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
    原文