monkeytypegame/monkeytype
1
1
Fork 0
mirror of https://github.com/monkeytypegame/monkeytype.git synced 2025-02-04 13:01:10 +08:00
Code Issues Projects Releases Packages Wiki Activity
monkeytype/backend/middlewares/auth.js
Miodec c7a200b476 checking if token wasnt revoked 
added error if token was revoked
fixed token errors
2022-02-09 14:18:49 +01:00

97 lines
2.2 KiB
JavaScript
Raw Blame History

const MonkeyError = require("../handlers/error");
const { verifyIdToken } = require("../handlers/auth");
const DEFAULT_OPTIONS = {
isPublic: false,
};
function authenticateRequest(options = DEFAULT_OPTIONS) {
return async (req, _res, next) => {
try {
const { authorization: authHeader } = req.headers;
let token = null;
if (authHeader) {
token = await authenticateWithAuthHeader(authHeader);
} else if (options.isPublic) {
return next();
} else if (process.env.MODE === "dev") {
token = authenticateWithBody(req.body);
} else {
throw new MonkeyError(
401,
"Unauthorized",
`endpoint: ${req.baseUrl} no authorization header found`
);
}
req.ctx.decodedToken = token;
} catch (error) {
return next(error);
}
next();
};
}
function authenticateWithBody(body) {
const { uid } = body;
if (!uid) {
throw new MonkeyError(
400,
"Running authorization in dev mode but still no uid was provided"
);
}
return {
uid,
};
}
async function authenticateWithAuthHeader(authHeader) {
const token = authHeader.split(" ");
const authScheme = token[0].trim();
const credentials = token[1];
if (authScheme === "Bearer") {
return await authenticateWithBearerToken(credentials);
}
throw new MonkeyError(
400,
"Unknown authentication scheme",
`The authentication scheme "${authScheme}" is not implemented.`
);
}
async function authenticateWithBearerToken(token) {
try {
return await verifyIdToken(token);
} catch (error) {
console.log("-----------");
console.log(error.errorInfo.code);
console.log("-----------");
if (error?.errorInfo?.code?.includes("auth/id-token-expired")) {
throw new MonkeyError(
401,
"Token expired. Please login again.",
"authenticateWithBearerToken"
);
} else if (error?.errorInfo?.code?.includes("auth/id-token-revoked")) {
throw new MonkeyError(
401,
"Token revoked. Please login again.",
"authenticateWithBearerToken"
);
} else {
throw error;
}
}
}
module.exports = {
authenticateRequest,
};
Reference in a new issue View git blame Copy permalink