mirror of
https://github.com/monkeytypegame/monkeytype.git
synced 2025-03-10 21:53:13 +08:00
f9d6f52c15
* Feat:Update response structure (#2427) * Fix:response and error structure * update:response message * update:response class * update * Update response message Co-authored-by: Mustafiz Kaifee Mumtaz <mustafiz.mumtaz@freecharge.com> * Add MonkeyToken foundation (#2487) by Bruception * Api changes (#2492) * API changes * Remove unused import * Add Ape client (#2513) * Add all endpoints (#2514) * Merged backend typescript into api overhaul (#2515) * Install typescript and add backend tsconfig Cannot yet build due to a number of compilation errors in JS code Signed-off-by: Brian Evans <ebrian101@gmail.com> * Fix typescript compilation errors Signed-off-by: Brian Evans <ebrian101@gmail.com> * Migrated backend to ES modules Switched to import export syntax Signed-off-by: Brian Evans <ebrian101@gmail.com> * Add typescript declaration for anticheat Signed-off-by: Brian Evans <ebrian101@gmail.com> * Rename top level files to .ts Fix service account json file typing Signed-off-by: Brian Evans <ebrian101@gmail.com> * Add dev build scripts for backend typescript Signed-off-by: Brian Evans <ebrian101@gmail.com> * Removed empty lines and switched to using db Cleaned up imports by removing needless empty lines and migrated to the new db.js instead of mongodb.js. Signed-off-by: Brian Evans <ebrian101@gmail.com> * Fixed backend commonjs syntax to ES module syntax Signed-off-by: Brian Evans <ebrian101@gmail.com> * Add build to backend start script Signed-off-by: Brian Evans <ebrian101@gmail.com> * Migrate some endpoints to Ape * Strict equals * Remove artifact * ape -> Ape * Ape migration p2 (#2522) * Migrate leaderboard endpoints to ape * Fixed comment * Init backend types * Fail * Return * Migrate Quotes to Ape (#2528) * Migrate quotes to Ape * Fix backend response * Fix issue * Fix rate limit (#2533) * fix rate limit * Fix import * Fix issues * Ape migration p4 (#2547) * Migrate results endpoints to ape * Remove unused import * Remove unused import * Fix loaders * Make function async * Hide try saving results * Migrate some users endpoints to Ape (#2548) * Complete Ape Migration (#2553) * Complete ape migration * Fix preset * Return preset data * Add typings * Move captcha reset * Read from params * Fix result tags endpoint * Fix stuck loader * fixed lb memory not saving * fixed quote rating popup not showing up for new users Co-authored-by: Mustafiz Kaifee <49086821+Mustafiz04@users.noreply.github.com> Co-authored-by: Mustafiz Kaifee Mumtaz <mustafiz.mumtaz@freecharge.com> Co-authored-by: Brian Evans <53117772+mrbrianevans@users.noreply.github.com> Co-authored-by: Miodec <bartnikjack@gmail.com>
107 lines
2.6 KiB
JavaScript
107 lines
2.6 KiB
JavaScript
import MonkeyError from "../handlers/error";
|
|
import { verifyIdToken } from "../handlers/auth";
|
|
|
|
const DEFAULT_OPTIONS = {
|
|
isPublic: false,
|
|
acceptMonkeyTokens: false,
|
|
};
|
|
|
|
function authenticateRequest(options = DEFAULT_OPTIONS) {
|
|
return async (req, _res, next) => {
|
|
try {
|
|
const { authorization: authHeader } = req.headers;
|
|
let token = null;
|
|
|
|
if (authHeader) {
|
|
token = await authenticateWithAuthHeader(authHeader, options);
|
|
} else if (options.isPublic) {
|
|
return next();
|
|
} else if (process.env.MODE === "dev") {
|
|
token = authenticateWithBody(req.body);
|
|
} else {
|
|
throw new MonkeyError(
|
|
401,
|
|
"Unauthorized",
|
|
`endpoint: ${req.baseUrl} no authorization header found`
|
|
);
|
|
}
|
|
|
|
req.ctx.decodedToken = token;
|
|
} catch (error) {
|
|
return next(error);
|
|
}
|
|
|
|
next();
|
|
};
|
|
}
|
|
|
|
function authenticateWithBody(body) {
|
|
const { uid } = body;
|
|
|
|
if (!uid) {
|
|
throw new MonkeyError(
|
|
400,
|
|
"Running authorization in dev mode but still no uid was provided"
|
|
);
|
|
}
|
|
|
|
return {
|
|
uid,
|
|
};
|
|
}
|
|
|
|
async function authenticateWithAuthHeader(authHeader, options) {
|
|
const token = authHeader.split(" ");
|
|
|
|
const authScheme = token[0].trim();
|
|
const credentials = token[1];
|
|
|
|
switch (authScheme) {
|
|
case "Bearer":
|
|
return await authenticateWithBearerToken(credentials);
|
|
case "MonkeyToken":
|
|
return await authenticateWithMonkeyToken(credentials, options);
|
|
}
|
|
|
|
throw new MonkeyError(
|
|
401,
|
|
"Unknown authentication scheme",
|
|
`The authentication scheme "${authScheme}" is not implemented.`
|
|
);
|
|
}
|
|
|
|
async function authenticateWithBearerToken(token) {
|
|
try {
|
|
return await verifyIdToken(token);
|
|
} catch (error) {
|
|
console.log("-----------");
|
|
console.log(error.errorInfo.code);
|
|
console.log("-----------");
|
|
|
|
if (error?.errorInfo?.code?.includes("auth/id-token-expired")) {
|
|
throw new MonkeyError(
|
|
401,
|
|
"Token expired. Please login again.",
|
|
"authenticateWithBearerToken"
|
|
);
|
|
} else if (error?.errorInfo?.code?.includes("auth/id-token-revoked")) {
|
|
throw new MonkeyError(
|
|
401,
|
|
"Token revoked. Please login again.",
|
|
"authenticateWithBearerToken"
|
|
);
|
|
} else {
|
|
throw error;
|
|
}
|
|
}
|
|
}
|
|
|
|
async function authenticateWithMonkeyToken(token, options) {
|
|
if (!options.acceptMonkeyTokens) {
|
|
throw new MonkeyError(401, "This endpoint does not accept MonkeyTokens.");
|
|
}
|
|
|
|
throw new MonkeyError(401, "MonkeyTokens are not implemented.");
|
|
}
|
|
|
|
export { authenticateRequest };
|