UNPKG

@nestia/core

Version:

Super-fast validation decorators of NestJS

nestia.io

samchon/nestia

98 lines (90 loc) 3.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
import { AesPkcs5 } from "@nestia/fetcher/lib/AesPkcs5"; import { IEncryptionPassword } from "@nestia/fetcher/lib/IEncryptionPassword"; import { BadRequestException, ExecutionContext, createParamDecorator, } from "@nestjs/common"; import type express from "express"; import type { FastifyRequest } from "fastify"; import { IRequestBodyValidator } from "../options/IRequestBodyValidator"; import { Singleton } from "../utils/Singleton"; import { ENCRYPTION_METADATA_KEY } from "./internal/EncryptedConstant"; import { get_text_body } from "./internal/get_text_body"; import { headers_to_object } from "./internal/headers_to_object"; import { validate_request_body } from "./internal/validate_request_body"; /** * Encrypted body decorator. * * `EncryptedBody` is a decorator function getting `application/json` typed data * from request body which has been encrypted by AES-128/256 algorithm. Also, * `EncryptedBody` validates the request body data type through * [typia](https://github.com/samchon/typia) ad the validation speed is maximum * 15,000x times faster than `class-validator`. * * For reference, when the request body data is not following the promised type * `T`, `BadRequestException` error (status code: 400) would be thrown. Also, * `EncryptedRoute` decrypts request body using those options. * * - AES-128/256 * - CBC mode * - PKCS #5 Padding * - Base64 Encoding * * @author Jeongho Nam - https://github.com/samchon * @returns Parameter decorator */ export function EncryptedBody<T>( validator?: IRequestBodyValidator<T>, ): ParameterDecorator { const checker = validate_request_body("EncryptedBody")(validator); return createParamDecorator(async function EncryptedBody( _unknown: any, context: ExecutionContext, ) { const request: express.Request | FastifyRequest = context .switchToHttp() .getRequest(); if (isTextPlain(request.headers["content-type"]) === false) throw new BadRequestException(`Request body type is not "text/plain".`); const param: IEncryptionPassword | IEncryptionPassword.Closure | undefined = Reflect.getMetadata(ENCRYPTION_METADATA_KEY, context.getClass()); if (!param) throw new Error( "Error on nestia.core.EncryptedBody(): no encryption password is given.", ); // GET BODY DATA const headers: Singleton<Record<string, string>> = new Singleton(() => headers_to_object(request.headers), ); const body: string = await get_text_body(request); const password: IEncryptionPassword = typeof param === "function" ? param({ headers: headers.get(), body, direction: "decode" }) : param; // PARSE AND VALIDATE DATA const data: any = JSON.parse(decrypt(body, password.key, password.iv)); const error: Error | null = checker(data); if (error !== null) throw error; return data; })(); } /** @internal */ const decrypt = (body: string, key: string, iv: string): string => { try { return AesPkcs5.decrypt(body, key, iv); } catch (exp) { if (exp instanceof Error) throw new BadRequestException( "Failed to decrypt the request body. Check your body content or encryption password.", ); else throw exp; } }; /** @internal */ const isTextPlain = (text?: string): boolean => text !== undefined && text .split(";") .map((str) => str.trim()) .some((str) => str === "text/plain");