51 lines
1.0 KiB
TypeScript
51 lines
1.0 KiB
TypeScript
import { verify } from "jsonwebtoken";
|
|
import { Request, Response, NextFunction } from "express";
|
|
|
|
import AppError from "../errors/AppError";
|
|
import authConfig from "../config/auth";
|
|
|
|
interface TokenPayload {
|
|
id: string;
|
|
username: string;
|
|
profile: string;
|
|
iat: number;
|
|
exp: number;
|
|
}
|
|
|
|
const isAuth = (req: Request, res: Response, next: NextFunction): void => {
|
|
const authHeader = req.headers.authorization;
|
|
|
|
if (!authHeader) {
|
|
throw new AppError("ERR_SESSION_EXPIRED", 401);
|
|
}
|
|
|
|
const [, token] = authHeader.split(" ");
|
|
|
|
if (
|
|
req.originalUrl == "/tickets/remote/create" &&
|
|
token === process.env.TOKEN_REMOTE_TICKET_CREATION
|
|
) {
|
|
return next();
|
|
}
|
|
|
|
try {
|
|
const decoded = verify(token, authConfig.secret);
|
|
|
|
const { id, profile } = decoded as TokenPayload;
|
|
|
|
req.user = {
|
|
id,
|
|
profile
|
|
};
|
|
} catch (err) {
|
|
throw new AppError(
|
|
"Invalid token. We'll try to assign a new one on next request",
|
|
403
|
|
);
|
|
}
|
|
|
|
return next();
|
|
};
|
|
|
|
export default isAuth;
|