feat: read a new (temporary) token type, OBSUserId from Authorization header
This commit is contained in:
parent
b63afb1146
commit
fb11a71663
2
app.js
2
app.js
|
@ -5,6 +5,7 @@ const session = require('express-session');
|
||||||
const cors = require('cors');
|
const cors = require('cors');
|
||||||
const errorhandler = require('errorhandler');
|
const errorhandler = require('errorhandler');
|
||||||
const mongoose = require('mongoose');
|
const mongoose = require('mongoose');
|
||||||
|
const auth = require('./routes/auth');
|
||||||
|
|
||||||
const isProduction = process.env.NODE_ENV === 'production';
|
const isProduction = process.env.NODE_ENV === 'production';
|
||||||
|
|
||||||
|
@ -12,6 +13,7 @@ const isProduction = process.env.NODE_ENV === 'production';
|
||||||
const app = express();
|
const app = express();
|
||||||
|
|
||||||
app.use(cors());
|
app.use(cors());
|
||||||
|
app.use(auth.getUserIdMiddleware);
|
||||||
|
|
||||||
// Normal express config defaults
|
// Normal express config defaults
|
||||||
app.use(require('morgan')('dev'));
|
app.use(require('morgan')('dev'));
|
||||||
|
|
|
@ -2,30 +2,51 @@ const jwt = require('express-jwt');
|
||||||
const secret = require('../config').secret;
|
const secret = require('../config').secret;
|
||||||
|
|
||||||
function getTokenFromHeader(req) {
|
function getTokenFromHeader(req) {
|
||||||
if (
|
const [tokenType, token] = req.headers.authorization?.split(' ') || [];
|
||||||
(req.headers.authorization && req.headers.authorization.split(' ')[0] === 'Token') ||
|
|
||||||
(req.headers.authorization && req.headers.authorization.split(' ')[0] === 'Bearer')
|
if (tokenType === 'Token' || tokenType === 'Bearer') {
|
||||||
) {
|
return token;
|
||||||
return req.headers.authorization.split(' ')[1];
|
|
||||||
}
|
}
|
||||||
|
|
||||||
return null;
|
return null;
|
||||||
}
|
}
|
||||||
|
|
||||||
const auth = {
|
const jwtOptional = jwt({
|
||||||
required: jwt({
|
|
||||||
secret: secret,
|
|
||||||
userProperty: 'payload',
|
|
||||||
getToken: getTokenFromHeader,
|
|
||||||
algorithms: ['HS256'],
|
|
||||||
}),
|
|
||||||
optional: jwt({
|
|
||||||
secret: secret,
|
secret: secret,
|
||||||
userProperty: 'payload',
|
userProperty: 'payload',
|
||||||
credentialsRequired: false,
|
credentialsRequired: false,
|
||||||
getToken: getTokenFromHeader,
|
getToken: getTokenFromHeader,
|
||||||
algorithms: ['HS256'],
|
algorithms: ['HS256'],
|
||||||
}),
|
});
|
||||||
};
|
|
||||||
|
|
||||||
module.exports = auth;
|
function getUserIdMiddleware(req, res, next) {
|
||||||
|
try {
|
||||||
|
const [tokenType, token] = req.headers.authorization.split(' ') || [];
|
||||||
|
|
||||||
|
if (tokenType === 'Token' || tokenType === 'Bearer') {
|
||||||
|
return jwtOptional(req, res, next);
|
||||||
|
} else if (tokenType === 'OBSUserId') {
|
||||||
|
req.payload = { id: token.trim() };
|
||||||
|
next();
|
||||||
|
} else {
|
||||||
|
req.payload = null;
|
||||||
|
next();
|
||||||
|
}
|
||||||
|
} catch (err) {
|
||||||
|
next(err);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
module.exports = {
|
||||||
|
required(req, res, next) {
|
||||||
|
if (!req.payload) {
|
||||||
|
return res.sendStatus(403);
|
||||||
|
} else {
|
||||||
|
return next();
|
||||||
|
}
|
||||||
|
},
|
||||||
|
optional(req, res, next) {
|
||||||
|
return next();
|
||||||
|
},
|
||||||
|
getUserIdMiddleware,
|
||||||
|
};
|
||||||
|
|
Loading…
Reference in a new issue