Acasă Explorează Ajutor
Autentificare
wiki
/
weseek__growi
oglindă de https://github.com/weseek/growi
2
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Arbore: 353fb7ea06
Ramuri Etichete
weseek__growi
/
apps
/
app
/
src
/
server
/
middlewares
/
access-token-parser
/
api-token.ts

api-token.ts 1.1 KB
Istoric Crud

1234567891011121314151617181920212223242526272829303132333435 
  1. import type { IUser, IUserHasId } from '@growi/core/dist/interfaces';
    2. 

  2. import { serializeUserSecurely } from '@growi/core/dist/models/serializers';
    3. 

  3. import type { NextFunction, Response } from 'express';
    4. 

  4. import type { HydratedDocument } from 'mongoose';
    5. 

  5. import mongoose from 'mongoose';
    6. 

  6. 

  7. import loggerFactory from '~/utils/logger';
    8. 

  8. 

  9. import type { AccessTokenParserReq } from './interfaces';
    10. 

  10. 

  11. const logger = loggerFactory('growi:middleware:access-token-parser:api-token');
    12. 

  12. 

  13. export const parserForApiToken = async(req: AccessTokenParserReq, res: Response, next: NextFunction): Promise<void> => {
    14. 

  14.   const accessToken = req.query.access_token ?? req.body.access_token;
    15. 

  15.   if (accessToken == null || typeof accessToken !== 'string') {
    16. 

  16.     return next();
    17. 

  17.   }
    18. 

  18. 

  19.   logger.debug('accessToken is', accessToken);
    20. 

  20. 

  21.   const User = mongoose.model<HydratedDocument<IUser>, { findUserByApiToken }>('User');
    22. 

  22.   const userByApiToken: IUserHasId = await User.findUserByApiToken(accessToken);
    23. 

  23. 

  24.   if (userByApiToken == null) {
    25. 

  25.     return;
    26. 

  26.   }
    27. 

  27. 

  28.   req.user = serializeUserSecurely(userByApiToken);
    29. 

  29.   if (req.user == null) {
    30. 

  30.     return;
    31. 

  31.   }
    32. 

  32. 

  33.   logger.debug('Access token parsed.');
    34. 

  34.   return next();
    35. 

  35. };
    36.