@bitwild/rockets/dist/guards/auth-server.guard.js

Rockets - Core server functionality for NestJS applications with built-in authentication, user management, and API scaffolding

"use strict";
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
    return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __metadata = (this && this.__metadata) || function (k, v) {
    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
};
var __param = (this && this.__param) || function (paramIndex, decorator) {
    return function (target, key) { decorator(target, key, paramIndex); }
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.AuthServerGuard = void 0;
const common_1 = require("@nestjs/common");
const core_1 = require("@nestjs/core");
const rockets_constants_1 = require("../rockets.constants");
const nestjs_authentication_1 = require("@concepta/nestjs-authentication");
let AuthServerGuard = class AuthServerGuard {
    constructor(authProvider, reflector) {
        this.authProvider = authProvider;
        this.reflector = reflector;
    }
    async canActivate(context) {
        const contextHandler = context.getHandler();
        const contextClass = context.getClass();
        const isDisabled = this.reflector.getAllAndOverride(nestjs_authentication_1.AUTHENTICATION_MODULE_DISABLE_GUARDS_TOKEN, [contextHandler, contextClass]);
        if (isDisabled === true) {
            return true;
        }
        const request = context.switchToHttp().getRequest();
        const token = this.extractTokenFromHeader(request);
        if (!token) {
            throw new common_1.UnauthorizedException('No authentication token provided');
        }
        try {
            const user = await this.authProvider.validateToken(token);
            request.user = user;
            return true;
        }
        catch (error) {
            if (error instanceof common_1.UnauthorizedException) {
                throw error;
            }
            throw new common_1.UnauthorizedException('Invalid authentication token');
        }
    }
    extractTokenFromHeader(request) {
        var _a;
        const authHeader = (_a = request.headers) === null || _a === void 0 ? void 0 : _a.authorization;
        if (!authHeader) {
            return undefined;
        }
        const [type, token] = authHeader.split(' ');
        return type === 'Bearer' ? token : undefined;
    }
};
exports.AuthServerGuard = AuthServerGuard;
exports.AuthServerGuard = AuthServerGuard = __decorate([
    (0, common_1.Injectable)(),
    __param(0, (0, common_1.Inject)(rockets_constants_1.RocketsAuthProvider)),
    __metadata("design:paramtypes", [Object, core_1.Reflector])
], AuthServerGuard);
//# sourceMappingURL=auth-server.guard.js.map