UNPKG

@feathersjs/authentication

Version:

Add Authentication to your FeathersJS app.

feathersjs.com

feathersjs/feathers

68 lines (52 loc) 2.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
import flatten from 'lodash/flatten' import omit from 'lodash/omit' import { HookContext, NextFunction } from '@feathersjs/feathers' import { NotAuthenticated } from '@feathersjs/errors' import { createDebug } from '@feathersjs/commons' const debug = createDebug('@feathersjs/authentication/hooks/authenticate') export interface AuthenticateHookSettings { service?: string strategies?: string[] } export default (originalSettings: string | AuthenticateHookSettings, ...originalStrategies: string[]) => { const settings = typeof originalSettings === 'string' ? { strategies: flatten([originalSettings, ...originalStrategies]) } : originalSettings if (!originalSettings || settings.strategies.length === 0) { throw new Error('The authenticate hook needs at least one allowed strategy') } return async (context: HookContext, _next?: NextFunction) => { const next = typeof _next === 'function' ? _next : async () => context const { app, params, type, path, service } = context const { strategies } = settings const { provider, authentication } = params const authService = app.defaultAuthentication(settings.service) debug(`Running authenticate hook on '${path}'`) if (type && type !== 'before' && type !== 'around') { throw new NotAuthenticated('The authenticate hook must be used as a before hook') } if (!authService || typeof authService.authenticate !== 'function') { throw new NotAuthenticated('Could not find a valid authentication service') } if (service === authService) { throw new NotAuthenticated( 'The authenticate hook does not need to be used on the authentication service' ) } if (params.authenticated === true) { return next() } if (authentication) { const authParams = omit(params, 'provider', 'authentication') debug('Authenticating with', authentication, strategies) const authResult = await authService.authenticate(authentication, authParams, ...strategies) context.params = Object.assign({}, params, omit(authResult, 'accessToken'), { authenticated: true }) } else if (provider) { throw new NotAuthenticated('Not authenticated') } return next() } }