基于角色的身份验证vue js firebase
我在Firebase上使用VueJS,我有医生、管理员和病人。患者用户无法访问医生的路由器。我在这里遵循了源代码 我无法获得错误消息,但患者可以访问路由器医生。有谁能给我一个解决办法吗 我纠正了它,所以它也不起作用基于角色的身份验证vue js firebase,firebase,vue.js,authentication,roles,Firebase,Vue.js,Authentication,Roles,我在Firebase上使用VueJS,我有医生、管理员和病人。患者用户无法访问医生的路由器。我在这里遵循了源代码 我无法获得错误消息,但患者可以访问路由器医生。有谁能给我一个解决办法吗 我纠正了它,所以它也不起作用 //router/index.js import Vue from 'vue' import Router from 'vue-router' import firebase from 'firebase' import Login from '@/views/Login
//router/index.js
import Vue from 'vue'
import Router from 'vue-router'
import firebase from 'firebase'
import Login from '@/views/Login'
import Register from '@/views/Register'
import Admin from '@/views/Admin'
import Driver from '@/views/Doctor'
import Customer from '@/views/Patient'
import Home from '@/views/Home'
Vue.use(Router)
let router = new Router({
routes: [
{
path: '/',
name: 'home',
component: Home,
meta: {
guest: true
}
},
{
path: '/register',
name: 'register',
component: Register,
meta: {
guest: true
}
},
{
path: '/login',
name: 'login',
component: Login,
meta: {
guest: true
}
},
{
path: '/admin',
name: 'admin',
component: Admin,
meta: {
auth: true
}
},
{
path: '/doctor',
name: 'doctor',
component: Doctor,
meta: {
auth: true
}
},
{
path: '/patient',
name: 'patient',
component: Patient,
meta: {
auth: true
}
},
],
})
router.beforeEach((to, from, next) => {
firebase.auth().onAuthStateChanged(userAuth => {
if (userAuth) {
firebase.auth().currentUser.getIdTokenResult()
.then(then((idTokenResult) =>
{
if (!!idTokenResult.claims.patient) {
if (to.path !== '/patient')
return next({
path: '/patient',
})
} else if (!!idTokenResult.claims.admin) {
if (to.path !== '/admin')
return next({
path: '/admin',
})
} else if (!!idTokenResult.claims.driver) {
if (to.path !== '/doctor')
return next({
path: '/doctor',
})
}
})
} else {
if (to.matched.some(record => record.meta.auth)) {
next({
path: '/login',
query: {
redirect: to.fullPath
}
})
} else {
next()
}
}
})
next()
})
export default router
//functions/index.js
const functions = require('firebase-functions');
const admin = require('firebase-admin');
admin.initializeApp()
exports.AddUserRole = functions.auth.user().onCreate(async (authUser) => {
if (authUser.email) {
const customClaims = {
customer: true,
};
try {
var _ = await admin.auth().setCustomUserClaims(authUser.uid, customClaims)
return admin.firestore().collection("roles").doc(authUser.uid).set({
email: authUser.email,
role: customClaims
})
} catch (error) {
console.log(error)
}
}
});
exports.setUserRole = functions.https.onCall(async (data, context) => {
if (!context.auth.token.admin) return
try {
var _ = await admin.auth().setCustomUserClaims(data.uid, data.role)
return admin.firestore().collection("roles").doc(data.uid).update({
role: data.role
})
} catch (error) {
console.log(error)
}
});
firebase.auth().onAuthStateChanged是异步的,因此在路由器防护的末尾调用next(),而无需等待firebase.auth().onAuthStateChanged进行解析,这意味着路由器防护允许所有人通过。请共享整个路由器文件。您好,兄弟,我共享了所有路由器文件您如何定义患者?通过特定的定制索赔?如果是,哪一个?hai..我已将其更改为firebase.auth().onAuthStateChanged.next()(userAuth=>{结果变成一个空白屏幕