functions/utils/auth.ts

import { verifyToken } from './jwt.js';

/**
 * 认证中间件
 * @param request 请求对象
 * @param env 环境变量
 * @param requestId 请求ID
 * @returns 如果认证失败返回错误响应，否则返回 null
 */
export async function authMiddleware(request: Request, env: Env): Promise<Response | null> {
    let isValid = await verifyToken(request, env.JWT_SECRET);
    if (!isValid) {
        return new Response(
            JSON.stringify({ error: 'Unauthorized' }),
            {
                status: 401,
                headers: { 'Content-Type': 'application/json' }
            }
        );
    }

    return null;
}

export async function authApiToken(request: Request, env: Env): Promise<Response | null> {
    // 验证API令牌
    const authHeader = request.headers.get('Authorization');
    if (authHeader !== `Bearer ${env.API_TOKEN}`) {
        return new Response(
            JSON.stringify({ error: 'Unauthorized' }),
            {
                status: 401,
                headers: { 'Content-Type': 'application/json' }
            }
        );
    }

    return null;
}