接入登录注册密码加密

ruoyi-ui/src/api/login.js

@@ -1,13 +1,14 @@
 import request from '@/utils/request'
+import { encryptPasswordFields } from '@/utils/passwordTransfer'
 
 // 登录方法
 export function login(username, password, code, uuid) {
-  const data = {
+  const data = encryptPasswordFields({
     username,
     password,
     code,
     uuid
-  }
+  }, ['password'], process.env.VUE_APP_PASSWORD_TRANSFER_KEY)
   return request({
     url: '/login',
     headers: {
@@ -21,13 +22,14 @@ export function login(username, password, code, uuid) {
 
 // 注册方法
 export function register(data) {
+  const payload = encryptPasswordFields(data, ['password'], process.env.VUE_APP_PASSWORD_TRANSFER_KEY)
   return request({
     url: '/register',
     headers: {
       isToken: false
     },
     method: 'post',
-    data: data
+    data: payload
   })
 }
 
@@ -57,4 +59,4 @@ export function getCodeImg() {
     method: 'get',
     timeout: 20000
   })
-}
+}

ruoyi-ui/tests/password-transfer-api.test.js

@@ -52,4 +52,18 @@ const encrypted = encryptPasswordFields(
 assert.notStrictEqual(encrypted.password, 'admin123')
 assert.strictEqual(encrypted.code, '8888')
 
+const request = config => config
+const loginModule = loadModule(
+  path.resolve(__dirname, '../src/api/login.js'),
+  { request, encryptPasswordFields }
+)
+
+const loginConfig = loginModule.login('admin', 'admin123', '8888', 'uuid-1')
+assert.notStrictEqual(loginConfig.data.password, 'admin123')
+assert.strictEqual(loginConfig.data.username, 'admin')
+
+const registerConfig = loginModule.register({ username: 'u1', password: 'p1', confirmPassword: 'p1', code: '8888' })
+assert.notStrictEqual(registerConfig.data.password, 'p1')
+assert.strictEqual(registerConfig.data.confirmPassword, 'p1')
+
 console.log('password-transfer-api test passed')