UNPKG

@a11ywatch/core

Version:

a11ywatch central API

github.com/a11ywatch/core

a11ywatch/core

139 lines 5.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); exports.retreiveUserByTokenWrapper = exports.retreiveUserByToken = exports.getUserFromApiScan = exports.allowedNext = exports.getUserFromApi = exports.getUserFromId = void 0; const controllers_1 = require("../controllers"); const strings_1 = require("../strings"); const get_user_1 = require("./get-user"); const config_1 = require("../../config/config"); const is_client_1 = require("./is-client"); const message_1 = require("../../web/messages/message"); const extracter_1 = require("../../web/params/extracter"); const getUserFromId = (user, keyid) => __awaiter(void 0, void 0, void 0, function* () { if (!(0, extracter_1.validateUID)(keyid)) { return [null, null]; } return yield (0, controllers_1.UsersController)({ user, }).getUser({ id: keyid }); }); exports.getUserFromId = getUserFromId; const getUserFromApi = (token, _req, res) => __awaiter(void 0, void 0, void 0, function* () { var _a; const jwt = (0, get_user_1.extractTokenKey)(token ? String(token).trim() : ""); const user = (0, get_user_1.getUserFromToken)(jwt); const { keyid } = (_a = user === null || user === void 0 ? void 0 : user.payload) !== null && _a !== void 0 ? _a : {}; if (config_1.config.SUPER_MODE) { const [userData] = yield (0, exports.getUserFromId)(user, keyid); return userData; } if (!(0, extracter_1.validateUID)(keyid)) { res.send({ data: null, message: "Authentication required. Add your authentication header and try again.", success: false, }); return; } const [userData] = yield (0, exports.getUserFromId)(user, keyid); return userData; }); exports.getUserFromApi = getUserFromApi; const allowedNext = (token, req, res, mediaType) => { var _a; const jwt = (0, get_user_1.extractTokenKey)(token ? String(token).trim() : ""); const user = (0, get_user_1.getUserFromToken)(jwt); const { keyid } = (_a = user === null || user === void 0 ? void 0 : user.payload) !== null && _a !== void 0 ? _a : {}; if (config_1.config.SUPER_MODE || (0, extracter_1.validateUID)(keyid)) { return { id: keyid, }; } const isClient = (0, is_client_1.frontendClientOrigin)(req.headers["origin"]) || (0, is_client_1.frontendClientOrigin)(req.headers["host"]) || (0, is_client_1.frontendClientOrigin)(req.headers["referer"]); if (!isClient) { if (mediaType === "html") { res.type("text/html").send(` <html> <body> <h1>${strings_1.GENERAL_ERROR}</h1> </body> </html> `); } else { res.send({ data: null, message: "Authentication required. Add your authentication header and try again.", success: false, }); } return; } return { id: keyid, }; }; exports.allowedNext = allowedNext; const getUserFromApiScan = (token = "", _req, res) => __awaiter(void 0, void 0, void 0, function* () { if (!token && !config_1.config.SUPER_MODE) { res.status(message_1.StatusCode.Unauthorized); res.send({ data: null, message: "Authentication required. Add your Authorization header and try again.", success: false, }); return; } const [user, collection] = yield (0, exports.retreiveUserByToken)(token); if (config_1.config.SUPER_MODE) { return user || {}; } if (!user || (user && !user.emailConfirmed)) { res.status(message_1.StatusCode.Unauthorized); res.send({ data: null, message: !user ? "User not found." : "Email confirmation required.", success: false, }); return; } const [canScan, u] = yield (0, controllers_1.UsersController)({ user, }).updateScanAttempt({ id: user.id, user: user, collection }); if (!canScan) { res.send({ data: null, message: u.emailConfirmed ? strings_1.RATE_EXCEEDED_ERROR : strings_1.EMAIL_NEEDS_CONFIRMATION, success: false, }); return; } return user; }); exports.getUserFromApiScan = getUserFromApiScan; const retreiveUserByToken = (token) => __awaiter(void 0, void 0, void 0, function* () { var _b; const user = (0, get_user_1.getUserFromToken)(token); const { keyid } = (_b = user === null || user === void 0 ? void 0 : user.payload) !== null && _b !== void 0 ? _b : {}; const [u, c] = yield (0, exports.getUserFromId)(user, keyid); return [u, c]; }); exports.retreiveUserByToken = retreiveUserByToken; const retreiveUserByTokenWrapper = (token) => __awaiter(void 0, void 0, void 0, function* () { const [user] = yield (0, exports.retreiveUserByToken)(token); return user; }); exports.retreiveUserByTokenWrapper = retreiveUserByTokenWrapper; //# sourceMappingURL=get-user-data.js.map