@dcl/platform-server-commons
Version:
Platform's Http Server Common utils
22 lines • 870 B
JavaScript
;
Object.defineProperty(exports, "__esModule", { value: true });
exports.bearerTokenMiddleware = void 0;
const errors_1 = require("../../errors");
function bearerTokenMiddleware(authSecret) {
if (!authSecret) {
throw new Error('Bearer token middleware requires a secret');
}
return async function (ctx, next) {
const header = ctx.request.headers.get('authorization');
if (!header) {
throw new errors_1.NotAuthorizedError('Authorization header is missing');
}
const [type, value] = header.split(' ');
if (type !== 'Bearer' || value !== authSecret) {
throw new errors_1.NotAuthorizedError('Invalid authorization header');
}
return await next();
};
}
exports.bearerTokenMiddleware = bearerTokenMiddleware;
//# sourceMappingURL=bearer-token-middleware.js.map