zoriya/flood
1
0
Fork 0
mirror of https://github.com/zoriya/flood.git synced 2026-05-31 10:22:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

server: move auth utilities to authUtil

Browse Source
This commit is contained in:
Jesse Chan
2021-01-22 23:38:29 +08:00
parent c1dd0f0406
commit e3122a683d
7 changed files with 42 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/routes/api/auth.test.ts
+1 -1
View File
@@ -4,7 +4,7 @@ import supertest from 'supertest';
import {AccessLevel} from '../../../shared/schema/constants/Auth';
import app from '../../app';
import {getAuthToken} from './auth';
import {getAuthToken} from '../../util/authUtil';
import type {
AuthRegistrationOptions,
server/routes/api/auth.ts
+3 -23
View File
@@ -1,5 +1,4 @@
import express from 'express';
import jwt from 'jsonwebtoken';
import passport from 'passport';
import rateLimit from 'express-rate-limit';
@@ -12,6 +11,7 @@ import {
AuthVerificationPreloadConfigs,
} from '../../../shared/schema/api/auth';
import config from '../../../config';
import {getAuthToken, getCookieOptions} from '../../util/authUtil';
import {getResponseFn, validationError} from '../../util/ajaxUtil';
import requireAdmin from '../../middleware/requireAdmin';
import services from '../../services';
@@ -40,33 +40,13 @@ router.use(
}),
);
export const getAuthToken = (username: string, res?: Response): string => {
const expirationSeconds = 60 * 60 * 24 * 7; // one week
const cookieExpiration = Date.now() + expirationSeconds * 1000;
// Create token if the password matched and no error was thrown.
const token = jwt.sign({username}, config.secret, {
expiresIn: expirationSeconds,
});
if (res != null) {
res.cookie('jwt', token, {
expires: new Date(cookieExpiration),
httpOnly: true,
sameSite: 'strict',
});
}
return token;
};
const sendAuthenticationResponse = (
res: Response,
credentials: Required<Pick<Credentials, 'username' | 'level'>>,
): void => {
const {username, level} = credentials;
getAuthToken(username, res);
res.cookie('jwt', getAuthToken(username), getCookieOptions());
const response: AuthAuthenticationResponse = {
success: true,
@@ -200,7 +180,7 @@ router.use('/verify', (req, res, next) => {
if (config.authMethod === 'none') {
const {username, level} = Users.getConfigUser();
getAuthToken(username, res);
res.cookie('jwt', getAuthToken(username), getCookieOptions());
const response: AuthVerificationResponse = {
initialUser: false,
server/routes/api/client.test.ts
+1 -1
View File
@@ -1,7 +1,7 @@
import supertest from 'supertest';
import app from '../../app';
import {getAuthToken} from './auth';
import {getAuthToken} from '../../util/authUtil';
import type {ClientSettings} from '../../../shared/types/ClientSettings';
server/routes/api/feed-monitor.test.ts
+1 -1
View File
@@ -2,7 +2,7 @@ import fs from 'fs';
import supertest from 'supertest';
import app from '../../app';
import {getAuthToken} from './auth';
import {getAuthToken} from '../../util/authUtil';
import {getTempPath} from '../../models/TemporaryStorage';
import type {AddFeedOptions, AddRuleOptions, ModifyFeedOptions} from '../../../shared/types/api/feed-monitor';
server/routes/api/index.test.ts
+1 -1
View File
@@ -1,7 +1,7 @@
import supertest from 'supertest';
import app from '../../app';
import {getAuthToken} from './auth';
import {getAuthToken} from '../../util/authUtil';
import type {FloodSettings} from '../../../shared/types/FloodSettings';
server/routes/api/torrents.test.ts
+1 -1
View File
@@ -7,7 +7,7 @@ import stream from 'stream';
import supertest from 'supertest';
import app from '../../app';
import {getAuthToken} from './auth';
import {getAuthToken} from '../../util/authUtil';
import {getTempPath} from '../../models/TemporaryStorage';
import paths from '../../../shared/config/paths';
server/util/authUtil.ts
+34
View File
@@ -0,0 +1,34 @@
import {CookieOptions} from 'express';
import jwt from 'jsonwebtoken';
import config from '../../config';
const EXPIRATION_SECONDS = 60 * 60 * 24 * 7; // one week
export const getCookieOptions = (): CookieOptions => ({
expires: new Date(Date.now() + EXPIRATION_SECONDS * 1000),
httpOnly: true,
sameSite: 'strict',
});
export const getAuthToken = (username: string): string =>
jwt.sign({username}, config.secret, {
expiresIn: EXPIRATION_SECONDS,
});
export const getToken = (payload: Record<string, unknown>) =>
jwt.sign(payload, config.secret, {
expiresIn: EXPIRATION_SECONDS,
});
export const verifyToken = async (token: string): Promise<Record<string, unknown>> =>
new Promise((resolve, reject) => {
jwt.verify(token, config.secret, (err, decoded) => {
if (err !== null || decoded == null) {
reject(err);
return;
}
resolve(decoded as Record<string, unknown>);
});
});