UNPKG

@filen/aws4-express

Version:

Express middleware handlers for validation AWS Signature V4

github.com/FilenCloudDienste/aws4-express

FilenCloudDienste/aws4-express

106 lines (97 loc) 3.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
import http from 'http'; import express, { NextFunction, Request, Response } from 'express'; import request from 'supertest'; import { sign, Request as Aws4Request, Credentials as Aws4Credentials } from 'aws4'; import { awsVerify, AwsVerifyOptions, rawBodyFromStream, rawBodyFromVerify } from '../..'; export const methods = ['get', 'post', 'put', 'delete'] as const; export type MethodTypes = (typeof methods)[number]; export const parsers = ['json', 'urlencoded', 'raw', 'custom', 'none'] as const; export type ParserTypes = (typeof parsers)[number]; export interface ExpressAppOptions { parser: ParserTypes; path: string; testRouter: (req: Request, res: Response, next: NextFunction) => void; } const expressApp = (optionsAwsVerify: AwsVerifyOptions, optionsExpress: ExpressAppOptions) => { const routePath = optionsExpress.path.substring(0, optionsExpress.path.indexOf('?')) ?? '/'; const app = express(); switch (optionsExpress.parser) { case 'json': { app.use( express.json({ type: '*/*', verify: rawBodyFromVerify, }), ); break; } case 'urlencoded': { app.use( express.urlencoded({ extended: true, type: '*/*', verify: rawBodyFromVerify, }), ); break; } case 'raw': { app.use( express.raw({ type: '*/*', verify: rawBodyFromVerify, }), ); break; } case 'none': { break; } case 'custom': { app.use(rawBodyFromStream); break; } default: { throw new Error('Parser not implemented'); } } app.use(awsVerify(optionsAwsVerify)); app.all(routePath, optionsExpress.testRouter); return app; }; export const sendSignedRequest = async ( optionsAwsVerify: AwsVerifyOptions, optionsAwsSigned: Aws4Request, optionsExpress: Partial<ExpressAppOptions>, aws4Credentials: Aws4Credentials, expectedHttpCode: number, afterSignedRequest?: Aws4Request, afterAuthorizationSignature?: string, ) => { const signedRequest = sign(optionsAwsSigned, aws4Credentials); const modifiedRequest = { ...signedRequest, ...afterSignedRequest, headers: { ...signedRequest.headers, ...afterSignedRequest?.headers, ['Authorization']: afterAuthorizationSignature ?? signedRequest.headers?.Authorization, } as http.IncomingHttpHeaders, }; const method = optionsAwsSigned.method?.toLowerCase() ?? 'NOT IMPLEMENTED'; await request( expressApp(optionsAwsVerify, { parser: 'json', path: optionsAwsSigned.path ?? '/', testRouter: (req, res, _next) => { res.send(req.query); }, ...optionsExpress, }), ) [method as MethodTypes](optionsAwsSigned.path ?? '/') .set(modifiedRequest.headers ?? {}) .send(optionsAwsSigned.body) .expect(expectedHttpCode); return modifiedRequest.headers?.Authorization; };