obs-portal/routes/auth.js

const jwt = require('express-jwt');
const secret = require('../config').secret;

function getTokenFromHeader(req) {
  const authorization = req.headers.authorization;
  const [tokenType, token] = (authorization && authorization.split(' ')) || [];

  if (tokenType === 'Token' || tokenType === 'Bearer') {
    return token;
  }

  return null;
}

const jwtOptional = jwt({
  secret: secret,
  userProperty: 'payload',
  credentialsRequired: false,
  getToken: getTokenFromHeader,
  algorithms: ['HS256'],
});

function getUserIdMiddleware(req, res, next) {
  try {
    const authorization = req.headers.authorization;
    const [tokenType, token] = (authorization && authorization.split(' ')) || [];

    if (tokenType === 'Token' || tokenType === 'Bearer') {
      return jwtOptional(req, res, next);
    } else if (tokenType === 'OBSUserId') {
      req.payload = { id: token.trim() };
      next();
    } else {
      req.payload = null;
      next();
    }
  } catch (err) {
    next(err);
  }
}

module.exports = {
  required(req, res, next) {
    if (!req.payload) {
      return res.sendStatus(403);
    } else {
      return next();
    }
  },
  optional(req, res, next) {
    return next();
  },
  getUserIdMiddleware,
};
chore: format all files 2020-11-20 10:02:30 +00:00			`const jwt = require('express-jwt');`
			`const secret = require('../config').secret;`
first version of the OpenBikeSensor Web API 2020-04-13 00:02:40 +00:00
chore: update package versions and readme 2020-09-29 20:08:29 +00:00			`function getTokenFromHeader(req) {`
feat: store user-agent (extracted OBS version only) for each track when uploading 2020-11-23 16:51:22 +00:00			`const authorization = req.headers.authorization;`
			`const [tokenType, token] = (authorization && authorization.split(' ')) \|\| [];`
feat: read a new (temporary) token type, OBSUserId from Authorization header 2020-11-21 15:38:52 +00:00
			`if (tokenType === 'Token' \|\| tokenType === 'Bearer') {`
			`return token;`
first version of the OpenBikeSensor Web API 2020-04-13 00:02:40 +00:00			`}`

			`return null;`
			`}`

feat: read a new (temporary) token type, OBSUserId from Authorization header 2020-11-21 15:38:52 +00:00			`const jwtOptional = jwt({`
			`secret: secret,`
			`userProperty: 'payload',`
			`credentialsRequired: false,`
			`getToken: getTokenFromHeader,`
			`algorithms: ['HS256'],`
			`});`
first version of the OpenBikeSensor Web API 2020-04-13 00:02:40 +00:00
feat: read a new (temporary) token type, OBSUserId from Authorization header 2020-11-21 15:38:52 +00:00			`function getUserIdMiddleware(req, res, next) {`
			`try {`
fix: handle requests without authorization header 2020-11-24 22:22:22 +00:00			`const authorization = req.headers.authorization;`
			`const [tokenType, token] = (authorization && authorization.split(' ')) \|\| [];`
feat: read a new (temporary) token type, OBSUserId from Authorization header 2020-11-21 15:38:52 +00:00
			`if (tokenType === 'Token' \|\| tokenType === 'Bearer') {`
			`return jwtOptional(req, res, next);`
			`} else if (tokenType === 'OBSUserId') {`
			`req.payload = { id: token.trim() };`
			`next();`
			`} else {`
			`req.payload = null;`
			`next();`
			`}`
			`} catch (err) {`
			`next(err);`
			`}`
			`}`

			`module.exports = {`
			`required(req, res, next) {`
			`if (!req.payload) {`
			`return res.sendStatus(403);`
			`} else {`
			`return next();`
			`}`
			`},`
			`optional(req, res, next) {`
			`return next();`
			`},`
			`getUserIdMiddleware,`
			`};`