UNPKG

@indiekit/endpoint-auth

Version:

IndieAuth authentication and authorization endpoint for Indiekit. Grants and verifies access tokens and authenticates users.

getindiekit.com

getindiekit/indiekit

27 lines (23 loc) 687 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
import { check } from "express-validator"; import { verifyPassword } from "../password.js"; export const consentValidator = [ check("password") .notEmpty() .withMessage((value, { req, path }) => req.__(`auth.error.${path}.missing`)) .custom(async (value) => { const validPassword = await verifyPassword(value); if (!validPassword) { throw new Error("Invalid password"); } }) .withMessage((value, { req, path }) => req.__(`auth.error.${path}.invalid`), ), ]; export const passwordValidator = [ check("password") .notEmpty() .withMessage((value, { req, path }) => req.__(`auth.error.${path}.missing`), ), ];