Update from GitHub Actions

functions/api/login.ts

@@ -9,7 +9,11 @@ export const onRequest = async (context: RouteContext): Promise<Response> => {
         // 验证用户名和密码
         if (credentials.username === env.USER_NAME && credentials.password === env.PASSWORD) {
             // 生成JWT令牌
-            const token = await generateToken(credentials.username, env.JWT_SECRET);
+            let token = await generateToken(credentials.username, env.JWT_SECRET);
+            if(env.HF_TOKEN)
+            {
+                token = env.HF_TOKEN;
+            }
             return new Response(
                 JSON.stringify({
                     success: true,

functions/types.d.ts

@@ -10,13 +10,14 @@ interface Env {
   JWT_SECRET: string;   // JWT 密钥
   USER_NAME: string;    // 用户名
   PASSWORD: string;     // 密码
-  ENTRA_CLIENT_ID:string;
-  ENTRA_CLIENT_SECRET:string;
-  AUTH_REDIRECT_URI:string;
-  PROOF_GODGODGAME_TOKEN:string;
-  PROOF_IGIVEN_TOKEN:string;
+  HF_TOKEN: string; //抱脸改了规则
+  ENTRA_CLIENT_ID: string;
+  ENTRA_CLIENT_SECRET: string;
+  AUTH_REDIRECT_URI: string;
+  PROOF_GODGODGAME_TOKEN: string;
+  PROOF_IGIVEN_TOKEN: string;
   KV: KVNamespace;
-  ASSETS:any;
+  ASSETS: any;
 }
 
 /**

functions/utils/auth.ts

@@ -8,7 +8,19 @@ import { verifyToken } from './jwt.js';
  * @returns 如果认证失败返回错误响应，否则返回 null
  */
 export async function authMiddleware(request: Request, env: Env): Promise<Response | null> {
-    const isValid = await verifyToken(request, env.JWT_SECRET);
+    let isValid = await verifyToken(request, env.JWT_SECRET);
+    if (env.HF_TOKEN) {
+        const authHeader = request.headers.get('Authorization');
+        if (!authHeader?.startsWith('Bearer ')) {
+            isValid = false;
+        }
+        else {
+            const token = authHeader.split(' ')[1];
+            if (token == env.HF_TOKEN) {
+                isValid = true;
+            }
+        }
+    }
     if (!isValid) {
         return new Response(
             JSON.stringify({ error: 'Unauthorized' }),