fedi-image-bot
/
bot-api
2
3
Fork 0
Code Issues 3 Pull Requests Actions Packages Projects Releases Wiki Activity

auth #6

Merged
bizcochito merged 6 commits from auth into develop 2023-12-27 19:34:32 +00:00
Conversation 0 Commits 6 Files Changed 9 +9 -10
1 changed files with 9 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit c428e956bc - Show all commits

19
src/controllers/AuthControler.ts
View File

@ -2,9 +2,9 @@ import jwt from "jsonwebtoken";
import AuthService from "../services/AuthService"; import AuthService from "../services/AuthService";
import { Request, Response, NextFunction } from "express"; import { Request, Response, NextFunction } from "express";
const authTokenSecret = process.env.JWTSECRET || "badsecret";
class AuthControler { class AuthControler {
authTokenSecret = process.env.JWTSECRET || "badsecret";
async login(req: Request, res: Response) { async login(req: Request, res: Response) {
// Read app and secret from request body // Read app and secret from request body
const { app, secret } = req.body; const { app, secret } = req.body;
@ -15,7 +15,11 @@ class AuthControler {
if (authenticated) { if (authenticated) {
console.log("Authenticated app ", authenticated.app); console.log("Authenticated app ", authenticated.app);
// Generate an access token // Generate an access token
const accessToken = jwt.sign({ app: authenticated.app }, authTokenSecret); const accessToken = jwt.sign(
{ app: authenticated.app },
this.authTokenSecret,
{ expiresIn: "1h" }
);
res.json({ res.json({
accessToken, accessToken,
@ -30,17 +34,12 @@ class AuthControler {
if (authHeader) { if (authHeader) {
const token = authHeader.split(" ")[1]; const token = authHeader.split(" ")[1];
jwt.verify(token, authTokenSecret, (err, user) => { jwt.verify(token, this.authTokenSecret, (err, app) => {
if (err) { if (err) {
return res.status(403).json("Invalid token provided"); return res.status(403).json("Invalid token provided");
} }
console.log( console.log("Authorization provided for ", next.name, " to app ", app);
"Authorization provided for ",
next.name,
" to user ",
user
);
next(); next();
}); });
} else { } else {