app.js

require('babel-register');
require("babel-polyfill");
require('dotenv-safe').load();
const Koa = require('koa');
const app = new Koa();
const config = require('config');
const appConfig = config.get('App');
const dbConfig = config.get('Database');
const key = config.get('Rsa');
const AES = require("crypto-js/aes");
const UTF8 = require("crypto-js/enc-utf8");
// const fs = require('fs');
// console.log(dbConfig);
// console.log(appConfig);

// 生成随机串
// const crypto = require('crypto');
// const buf = Buffer.alloc(20);
// const randomKey = crypto.randomFillSync(buf).toString('hex');
// console.log(randomKey);

const NodeRSA = require('node-rsa');
// const key = new NodeRSA({b: 512}); //生成512位秘钥
// const pubkey = key.exportKey('pkcs8-public');//导出公钥
// const prikey = key.exportKey('pkcs8-private');//导出私钥
// const pubkey = key.public; // 获得配置的公钥
const prikey = key.private; // 获得配置的私钥
// const pubkeyR = new NodeRSA(pubkey,'pkcs8-public');//导入公钥
const prikeyR = new NodeRSA(prikey,'pkcs8-private');//导入私钥


// const encrypted = pubkeyR.encrypt(randomKey, 'base64'); // 公钥加密(返回密文):
// console.log("密文："+encrypted);

// const decrypted = prikeyR.decrypt(encrypted, 'utf8'); // 公钥加密(返回密文):
// console.log("明文："+decrypted);


const routes = require('./routes');
const db = require('./config/dbConfig');
const logger = require('./middleware/logger');
const acl = require('./middleware/acl');
const jwtVerify = require('./middleware/jwtVerify');
const bodyParser = require('koa-bodyparser');
const cors = require('koa-cors');
db.connect();

app.use(logger());
// https://github.com/brunoyang/blog/issues/11
// 需要了解 XMLHttpRequest.withCredentials  https://developer.mozilla.org/zh-CN/docs/Web/API/XMLHttpRequest/withCredentials
// https://segmentfault.com/q/1010000007435062
app.use(cors({
  credentials:true
}));
app.use(bodyParser());

// 解密
app.use( async (ctx, next) => {
  const encrypted = ctx.request.headers["rsa-encrypted"];
  if(encrypted) {
    const decrypted = prikeyR.decrypt(encrypted, 'utf8');
    // Decrypt
    const bytes  = AES.decrypt(ctx.request.body.data, decrypted);
    const plaintext = bytes.toString(UTF8);
    ctx.request.body = JSON.parse(plaintext);
  }
  await next();
});

// without koa-router
// function readPage( page ) {
//   return new Promise(( resolve, reject ) => {
//     let viewUrl = `./pages${page}.html`
//     fs.readFile(viewUrl, "binary", ( err, data ) => {
//       if ( err ) {
//         reject( err )
//       } else {
//         resolve( data )
//       }
//     })
//   })
// }
// app.use( async (ctx, next) => {
//   let url = ctx.request.url
//   ctx.response.type = 'html';
//   ctx.body = await readPage(url);
// });
app.use(jwtVerify());
app.use(acl());
app.use(routes.routes()).use(routes.allowedMethods());

app.listen(appConfig.port, appConfig.ip, () => {
  console.log('Server running');
});