iven/hms
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
17085a3e61caa7b13cf966035c29b86a5b2a4f02
hms/apps/miniprogram/src/services/auth.ts
iven 945ccd64ba
Some checks failed
CI / rust-check (push) Has been cancelled
Details
CI / rust-test (push) Has been cancelled
Details
CI / frontend-build (push) Has been cancelled
Details
CI / security-audit (push) Has been cancelled
Details
fix: 全面 QA 审计修复 — 安全加固/代码质量/跨平台一致性/测试覆盖 
Phase 0 安全热修复 (CRITICAL):
- 外部化微信 appid/secret 到 ERP__WECHAT__APPID/SECRET 环境变量
- 正确连接 HealthCrypto 到 ERP__HEALTH__AES_KEY/HMAC_KEY 环境变量
- 外部化小程序加密密钥到 TARO_APP_ENCRYPTION_KEY 环境变量
- 移除小程序 auth store 中的敏感信息 console.log

Phase 1 安全加固:
- 微信自动注册 display_name 添加 sanitize 防止 XSS
- 测试数据库凭据改为从 TEST_DB_URL 环境变量读取

Phase 2 代码质量:
- 提取 useThemeMode hook 消除 22 处重复暗色模式检测
- 提取共享健康常量到 constants/health.ts
- 拆分 patient_service.rs 脱敏函数到 masking.rs
- 移除未使用的 i18next/react-i18next 依赖
- 移除未使用的 api/errors.ts 和 erp-auth/anyhow 依赖

Phase 3 测试覆盖:
- 新增 5 个患者模块集成测试 (CRUD/租户隔离/验证/软删除)

Phase 4 跨平台一致性:
- 统一小程序 Patient.birthday → birth_date 匹配后端
- 统一小程序 Appointment.time_slot → start_time/end_time 匹配后端

Phase 5 架构:
- 微信登录添加多租户 TODO 注释
- 更新 wiki/infrastructure.md 环境变量文档
2026-04-25 10:00:49 +08:00

50 lines
1.1 KiB
TypeScript
Raw Blame History

import { api } from './request';
export interface UserInfo {
id: string;
name: string;
phone: string;
avatar?: string;
tenant_id: string;
}
export interface LoginResp {
bound: boolean;
openid: string;
token?: {
access_token: string;
refresh_token: string;
expires_in: number;
user: { id: string; username: string; display_name?: string; phone?: string; avatar_url?: string };
};
}
export interface PatientInfo {
id: string;
name: string;
gender?: string;
birth_date?: string;
relation: string;
}
export async function wechatLogin(code: string): Promise<LoginResp> {
return api.post('/auth/wechat/login', { code });
}
export async function wechatBindPhone(openid: string, encryptedData: string, iv: string) {
return api.post('/auth/wechat/bind-phone', {
openid,
encrypted_data: encryptedData,
iv,
});
}
export async function getPatients() {
return api.get<PatientInfo[]>('/health/patients');
}
/** 开发模式:用户名密码直登 */
export async function devLogin(username: string, password: string) {
return api.post<LoginResp['token']>('/auth/login', { username, password });
}
Reference in New Issue View Git Blame Copy Permalink