탐색 도움말
가입하기 로그인
yichael
/
AnimationManager
1
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: 663c427945
브랜치 태그
AnimationManage...
/
server
/
register.js

register.js 7.9 KB
히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239 
  1. // 注册处理模块
    2. 

  2. 

  3. const formidable = require('formidable');
    4. 

  4. const path = require('path');
    5. 

  5. const fs = require('fs');
    6. 

  6. const crypto = require('crypto');
    7. 

  7. const { promisify } = require('util');
    8. 

  8. const { getDatabase } = require('./sql');
    9. 

  9. 

  10. const mkdir = promisify(fs.mkdir);
    11. 

  11. const access = promisify(fs.access);
    12. 

  12. const copyFile = promisify(fs.copyFile);
    13. 

  13. const unlink = promisify(fs.unlink);
    14. 

  14. 

  15. // 固定验证码
    16. 

  16. const FIXED_VERIFICATION_CODE = '9527';
    17. 

  17. 

  18. // 头像存储目录
    19. 

  19. const AVATAR_DIR = path.join(__dirname, 'avatar');
    20. 

  20. 

  21. // 确保头像目录存在
    22. 

  22. async function ensureAvatarDir() {
    23. 

  23.   try {
    24. 

  24.     await access(AVATAR_DIR);
    25. 

  25.   } catch (error) {
    26. 

  26.     await mkdir(AVATAR_DIR, { recursive: true });
    27. 

  27.     console.log('[Register] 创建avatar目录:', AVATAR_DIR);
    28. 

  28.   }
    29. 

  29. }
    30. 

  30. 

  31. // 密码加密(使用 SHA256)
    32. 

  32. function hashPassword(password) {
    33. 

  33.   return crypto.createHash('sha256').update(password).digest('hex');
    34. 

  34. }
    35. 

  35. 

  36. // 保存头像文件
    37. 

  37. async function saveAvatar(file) {
    38. 

  38.   if (!file) {
    39. 

  39.     return null;
    40. 

  40.   }
    41. 

  41. 

  42.   await ensureAvatarDir();
    43. 

  43. 

  44.   // 生成唯一文件名
    45. 

  45.   const ext = path.extname(file.originalFilename || file.name || '');
    46. 

  46.   const filename = `${Date.now()}_${Math.random().toString(36).substring(7)}${ext}`;
    47. 

  47.   const filepath = path.join(AVATAR_DIR, filename);
    48. 

  48. 

  49.   // 复制文件到目标位置
    50. 

  50.   await copyFile(file.filepath, filepath);
    51. 

  51. 

  52.   // 返回相对路径(用于存储到数据库)
    53. 

  53.   return `avatar/${filename}`;
    54. 

  54. }
    55. 

  55. 

  56. // 处理注册请求
    57. 

  57. async function handleRegisterRequest(req, res) {
    58. 

  58.   // 设置 CORS 头
    59. 

  59.   res.setHeader('Access-Control-Allow-Origin', '*');
    60. 

  60.   res.setHeader('Access-Control-Allow-Methods', 'POST, OPTIONS');
    61. 

  61.   res.setHeader('Access-Control-Allow-Headers', 'Content-Type');
    62. 

  62. 

  63.   if (req.method === 'OPTIONS') {
    64. 

  64.     res.writeHead(200);
    65. 

  65.     res.end();
    66. 

  66.     return;
    67. 

  67.   }
    68. 

  68. 

  69.   if (req.method !== 'POST') {
    70. 

  70.     res.writeHead(405, { 'Content-Type': 'application/json' });
    71. 

  71.     res.end(JSON.stringify({ success: false, message: 'Method not allowed' }));
    72. 

  72.     return;
    73. 

  73.   }
    74. 

  74. 

  75.   try {
    76. 

  76.     const form = formidable.formidable({
    77. 

  77.       multiples: false,
    78. 

  78.       maxFileSize: 5 * 1024 * 1024, // 5MB
    79. 

  79.       keepExtensions: true
    80. 

  80.     });
    81. 

  81. 

  82.     const [fields, files] = await form.parse(req);
    83. 

  83. 

  84.     // 提取表单字段(formidable 可能返回数组)
    85. 

  85.     const username = Array.isArray(fields.username) ? fields.username[0] : (fields.username || '');
    86. 

  86.     const phone = Array.isArray(fields.phone) ? fields.phone[0] : (fields.phone || '');
    87. 

  87.     const code = Array.isArray(fields.code) ? fields.code[0] : (fields.code || '');
    88. 

  88.     const password = Array.isArray(fields.password) ? fields.password[0] : (fields.password || '');
    89. 

  89.     const passwordConfirm = Array.isArray(fields.passwordConfirm) ? fields.passwordConfirm[0] : (fields.passwordConfirm || '');
    90. 

  90. 

  91.     // 验证必填字段
    92. 

  92.     if (!username || !phone || !code || !password || !passwordConfirm) {
    93. 

  93.       res.writeHead(400, { 'Content-Type': 'application/json' });
    94. 

  94.       res.end(JSON.stringify({ success: false, message: '请填写所有必填字段' }));
    95. 

  95.       return;
    96. 

  96.     }
    97. 

  97. 

  98.     // 验证用户名格式(现代网站标准)
    99. 

  99.     // 长度:4-20个字符
    100. 

  100.     if (username.length < 4 || username.length > 20) {
    101. 

  101.       res.writeHead(400, { 'Content-Type': 'application/json' });
    102. 

  102.       res.end(JSON.stringify({ success: false, message: '用户名长度为4-20个字符' }));
    103. 

  103.       return;
    104. 

  104.     }
    105. 

  105. 

  106.     // 只能包含字母、数字、下划线、连字符
    107. 

  107.     if (!/^[a-zA-Z][a-zA-Z0-9_-]*$/.test(username)) {
    108. 

  108.       res.writeHead(400, { 'Content-Type': 'application/json' });
    109. 

  109.       res.end(JSON.stringify({ success: false, message: '用户名只能包含字母、数字、下划线和连字符,且必须以字母开头' }));
    110. 

  110.       return;
    111. 

  111.     }
    112. 

  112. 

  113.     // 不能全部是数字
    114. 

  114.     if (/^\d+$/.test(username)) {
    115. 

  115.       res.writeHead(400, { 'Content-Type': 'application/json' });
    116. 

  116.       res.end(JSON.stringify({ success: false, message: '用户名不能全部是数字' }));
    117. 

  117.       return;
    118. 

  118.     }
    119. 

  119. 

  120.     // 转换为小写进行存储和查询(不区分大小写)
    121. 

  121.     const normalizedUsername = username.toLowerCase();
    122. 

  122. 

  123.     // 验证手机号格式
    124. 

  124.     if (!/^1[3-9]\d{9}$/.test(phone)) {
    125. 

  125.       res.writeHead(400, { 'Content-Type': 'application/json' });
    126. 

  126.       res.end(JSON.stringify({ success: false, message: '请输入正确的手机号' }));
    127. 

  127.       return;
    128. 

  128.     }
    129. 

  129. 

  130.     // 验证验证码(固定验证码 9527)
    131. 

  131.     if (code !== FIXED_VERIFICATION_CODE) {
    132. 

  132.       res.writeHead(400, { 'Content-Type': 'application/json' });
    133. 

  133.       res.end(JSON.stringify({ success: false, message: '验证码错误' }));
    134. 

  134.       return;
    135. 

  135.     }
    136. 

  136. 

  137.     // 验证密码格式
    138. 

  138.     if (password.length < 8 || password.length > 20) {
    139. 

  139.       res.writeHead(400, { 'Content-Type': 'application/json' });
    140. 

  140.       res.end(JSON.stringify({ success: false, message: '密码长度为8-20位' }));
    141. 

  141.       return;
    142. 

  142.     }
    143. 

  143. 

  144.     if (!/[A-Z]/.test(password) || !/[a-z]/.test(password) || !/\d/.test(password)) {
    145. 

  145.       res.writeHead(400, { 'Content-Type': 'application/json' });
    146. 

  146.       res.end(JSON.stringify({ success: false, message: '密码必须包含大小写字母和数字' }));
    147. 

  147.       return;
    148. 

  148.     }
    149. 

  149. 

  150.     // 验证两次密码是否一致
    151. 

  151.     if (password !== passwordConfirm) {
    152. 

  152.       res.writeHead(400, { 'Content-Type': 'application/json' });
    153. 

  153.       res.end(JSON.stringify({ success: false, message: '两次输入的密码不一致' }));
    154. 

  154.       return;
    155. 

  155.     }
    156. 

  156. 

  157.     // 获取数据库实例
    158. 

  158.     const db = await getDatabase();
    159. 

  159. 

  160.     // 检查用户名是否已存在(不区分大小写)
    161. 

  161.     const existingUserByUsername = await db.findUserByUsername(normalizedUsername);
    162. 

  162.     if (existingUserByUsername) {
    163. 

  163.       res.writeHead(400, { 'Content-Type': 'application/json' });
    164. 

  164.       res.end(JSON.stringify({ success: false, message: '用户名已存在' }));
    165. 

  165.       return;
    166. 

  166.     }
    167. 

  167. 

  168.     // 检查手机号是否已存在
    169. 

  169.     const existingUserByPhone = await db.findUserByPhone(phone);
    170. 

  170.     if (existingUserByPhone) {
    171. 

  171.       res.writeHead(400, { 'Content-Type': 'application/json' });
    172. 

  172.       res.end(JSON.stringify({ success: false, message: '手机号已被注册' }));
    173. 

  173.       return;
    174. 

  174.     }
    175. 

  175. 

  176.     // 处理头像上传
    177. 

  177.     let avatarPath = null;
    178. 

  178.     const avatarFile = Array.isArray(files.avatar) ? files.avatar[0] : (files.avatar || null);
    179. 

  179.     if (avatarFile && avatarFile.size > 0) {
    180. 

  180.       // 验证文件类型
    181. 

  181.       const allowedTypes = ['image/jpeg', 'image/jpg', 'image/png', 'image/gif', 'image/webp'];
    182. 

  182.       if (!allowedTypes.includes(avatarFile.mimetype)) {
    183. 

  183.         res.writeHead(400, { 'Content-Type': 'application/json' });
    184. 

  184.         res.end(JSON.stringify({ success: false, message: '头像必须是图片文件' }));
    185. 

  185.         return;
    186. 

  186.       }
    187. 

  187. 

  188.       try {
    189. 

  189.         avatarPath = await saveAvatar(avatarFile);
    190. 

  190.       } catch (error) {
    191. 

  191.         console.error('[Register] 保存头像失败:', error);
    192. 

  192.         res.writeHead(500, { 'Content-Type': 'application/json' });
    193. 

  193.         res.end(JSON.stringify({ success: false, message: '保存头像失败' }));
    194. 

  194.         return;
    195. 

  195.       }
    196. 

  196.     }
    197. 

  197. 

  198.     // 加密密码
    199. 

  199.     const hashedPassword = hashPassword(password);
    200. 

  200. 

  201.     // 创建用户(使用原始用户名显示,但存储时使用小写进行唯一性检查)
    202. 

  202.     const newUser = await db.createUser({
    203. 

  203.       username: username, // 显示时保持原始大小写
    204. 

  204.       phone,
    205. 

  205.       password: hashedPassword,
    206. 

  206.       avatar: avatarPath
    207. 

  207.     });
    208. 

  208. 

  209.     // 清理临时文件
    210. 

  210.     if (avatarFile && avatarFile.filepath) {
    211. 

  211.       try {
    212. 

  212.         await unlink(avatarFile.filepath);
    213. 

  213.       } catch (error) {
    214. 

  214.         // 忽略删除临时文件错误
    215. 

  215.       }
    216. 

  216.     }
    217. 

  217. 

  218.     res.writeHead(200, { 'Content-Type': 'application/json' });
    219. 

  219.     res.end(JSON.stringify({
    220. 

  220.       success: true,
    221. 

  221.       message: '注册成功',
    222. 

  222.       user: {
    223. 

  223.         id: newUser.id,
    224. 

  224.         username: newUser.username,
    225. 

  225.         phone: newUser.phone,
    226. 

  226.         avatar: newUser.avatar
    227. 

  227.       }
    228. 

  228.     }));
    229. 

  229. 

  230.   } catch (error) {
    231. 

  231.     console.error('[Register] 注册处理错误:', error);
    232. 

  232.     res.writeHead(500, { 'Content-Type': 'application/json' });
    233. 

  233.     res.end(JSON.stringify({ success: false, message: '服务器错误' }));
    234. 

  234.   }
    235. 

  235. }
    236. 

  236. 

  237. module.exports = {
    238. 

  238.   handleRegisterRequest
    239. 

  239. };
    240.