UNPKG

@e-mage/nestjs-shopify-guards

Version:

Nest.js Shopify guards

github.com/e-mage-gh/nestjs-shopify-guards

e-mage-gh/nestjs-shopify-guards

55 lines 2.67 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
"use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; var __param = (this && this.__param) || function (paramIndex, decorator) { return function (target, key) { decorator(target, key, paramIndex); } }; Object.defineProperty(exports, "__esModule", { value: true }); exports.ShopifyWebhookGuard = void 0; const crypto_1 = require("crypto"); const common_1 = require("@nestjs/common"); const config_service_1 = require("../config-service"); let ShopifyWebhookGuard = class ShopifyWebhookGuard { constructor(config) { this.config = config; } canActivate(context) { const { headers, method, rawBody } = context.switchToHttp().getRequest(); if (method !== 'POST') { return true; } if (!rawBody) { throw new common_1.HttpException('HMAC validation failed', common_1.HttpStatus.UNAUTHORIZED); } if (!this.config.get('apiSecretKey') || !this.config.get('headerHmac')) { throw new common_1.HttpException('HMAC validation failed', common_1.HttpStatus.UNAUTHORIZED); } const { [this.config.get('headerHmac')]: hmac } = headers; if (!hmac) { throw new common_1.HttpException('HMAC validation failed', common_1.HttpStatus.UNAUTHORIZED); } const digest = (0, crypto_1.createHmac)('sha256', this.config.get('apiSecretKey')) .update(rawBody) .digest('base64'); if (hmac !== digest) { throw new common_1.HttpException('HMAC validation failed', common_1.HttpStatus.UNAUTHORIZED); } else { return true; } } }; ShopifyWebhookGuard = __decorate([ (0, common_1.Injectable)(), __param(0, (0, common_1.Inject)(config_service_1.ConfigService)), __metadata("design:paramtypes", [config_service_1.ConfigService]) ], ShopifyWebhookGuard); exports.ShopifyWebhookGuard = ShopifyWebhookGuard; //# sourceMappingURL=shopify-webhook.guard.js.map