@next-nest-auth/nestauth
Version:
NestAuth is an authentication solution for NestJS applications, designed to handle user login, session management, and token-based authentication (JWT). It integrates seamlessly with Next.js and other frontends to provide a unified authentication system,
40 lines • 1.89 kB
JavaScript
;
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.NestAuthJwtGuard = void 0;
const common_1 = require("@nestjs/common");
const passport_1 = require("@nestjs/passport");
const macaddress = require("macaddress");
let NestAuthJwtGuard = class NestAuthJwtGuard extends (0, passport_1.AuthGuard)("jwt") {
handleRequest(err, user, info, context) {
if (err || !user) {
throw new common_1.UnauthorizedException("Unauthorized: Invalid or missing token");
}
return user;
}
async canActivate(context) {
const can = (await super.canActivate(context));
if (!can)
return false;
const request = context.switchToHttp().getRequest();
const user = request.user;
if (!user) {
throw new common_1.UnauthorizedException("Unauthorized: Invalid token");
}
const currentMacId = await macaddress.one();
if (user.macId !== currentMacId) {
throw new common_1.UnauthorizedException("Unauthorized: Device mismatch");
}
return true;
}
};
exports.NestAuthJwtGuard = NestAuthJwtGuard;
exports.NestAuthJwtGuard = NestAuthJwtGuard = __decorate([
(0, common_1.Injectable)()
], NestAuthJwtGuard);
//# sourceMappingURL=nestauth-jwt.guard.js.map