添加rsa鉴权

测试服务域名为pub.ioclubs.com

.gitignore

@@ -2,3 +2,4 @@ node_modules
 static
 
 .idea
+yarn.lock

.gitlab-ci.yml

+build:
+  stage: build
+  only:
+    - tags
+  variables:
+    REGISTRY: "registry.cn-hangzhou.aliyuncs.com/ugen-app/"
+    IMAGE_NAME: "aligenie-ai"
+  script:
+    - export IMAGE_TAG=$REGISTRY$IMAGE_NAME:$CI_COMMIT_REF_NAME
+    - docker build -t $IMAGE_TAG .
+    - docker push $IMAGE_TAG

Dockerfile

 FROM registry.cn-hangzhou.aliyuncs.com/ugen-app/ugen-core:4.2.2
 WORKDIR /data
-#COPY ./package.json .
-#RUN yarn add --registry=http://company.u-gen.net:7001
+COPY ./package.json .
+RUN yarn add --registry=http://192.168.2.91:7001
 COPY . .
 CMD ["node","start.js"]

Public.js

 const PublicFunBase = require('iot-cloud-core').BASE.PublicFunBase;
 const replyFunc = require('./replyFunc.js');
 
+const fs = require('fs');
+const path = require('path');
+const NodeRSA = require('node-rsa');
+
+//解密私钥
+const privateKey = new NodeRSA(fs.readFileSync(path.resolve(__dirname,'rsa','rsa_private_key.pem')));
+privateKey.setOptions({
+  encryptionScheme: {
+    scheme: 'pkcs1',
+  }
+});
+
+
 class Public extends PublicFunBase{
 
   async reply(data) {
-    // console.log(data.params);
+    // console.log(data.params.securityQuery);
+    //解密后的json数据
+    const decryptJson = privateKey.decrypt(data.params.securityQuery, 'json');
     return {
       sourceData: true,
-      data: replyFunc(data.params)
+      data: replyFunc(decryptJson)
     };
   }
 }

docker-compose.yml

@@ -2,7 +2,7 @@ version: '3'
 
 services:
   aligenie-ai:
-    image: aligenie-ai
+    image: registry.cn-hangzhou.aliyuncs.com/ugen-app/aligenie-ai:1.0
     container_name: aligenie-ai
     restart: always
     networks:
@@ -10,7 +10,7 @@ services:
     expose:
       - 3000
     environment:
-      VIRTUAL_HOST: ali.ioclubs.com
+      VIRTUAL_HOST: pub.ioclubs.com
       HTTPS_METHOD: nohttps
       VIRTUAL_PORT: 3000
     volumes:

package.json

@@ -10,6 +10,7 @@
   "license": "ISC",
   "dependencies": {
     "babel-plugin-transform-decorators-legacy": "^1.3.5",
-    "iot-cloud-core": "^4.3.3"
+    "iot-cloud-core": "^4.3.3",
+    "node-rsa": "^1.0.7"
   }
 }

readme.md

@@ -4,5 +4,8 @@
 
 yarn --registry=http://company.u-gen.net:7001
 
+## 鉴权配置
+rsa目录下存放公钥和私钥
+
 ## 注意事项
 

rsa/rsa_private_key.pem

+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

rsa/rsa_public_key.pem

+-----BEGIN PUBLIC KEY-----
+MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDD5HoWhaoGy0MGkYDh7iJQQJvR
+4rzgbIpEhwRMusXYcrRgNnXL56+3zYF5Y/3hTPQzflZBW6WUtFeJIB5jyUd77Ps8
+SBPKrp0z9RoNhzciC1UjwnBN3Qe+7CBpa10JgBKA7RbWt/ska06G4nth8JggwJXt
+NEKzxElIMC/3yMQ07QIDAQAB
+-----END PUBLIC KEY-----