UNPKG

@ngn-net/giftcard-shared

Version:

Shared library for gifts score microservices

74 lines 3.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
"use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; Object.defineProperty(exports, "__esModule", { value: true }); exports.RolesGuard = exports.Roles = exports.ROLES_KEY = exports.UserGuard = void 0; const common_1 = require("@nestjs/common"); const jsonwebtoken = require("jsonwebtoken"); const dotenv_1 = require("dotenv"); const core_1 = require("@nestjs/core"); (0, dotenv_1.config)(); const DEV_USER_ID = process.env.NODE_ENV === 'development' ? 'asdaw' : null; let UserGuard = class UserGuard { async canActivate(context) { try { const request = context.switchToHttp().getRequest(); if (!request.headers.authorization) throw new common_1.HttpException('UNAUTHORIZED', common_1.HttpStatus.UNAUTHORIZED); const bearer = request.headers.authorization.split(' ')[1]; request.auth = jsonwebtoken.decode(bearer); const payload = request.auth; if (payload.roles.includes('refresh_token')) throw new common_1.HttpException('UNAUTHORIZED', common_1.HttpStatus.UNAUTHORIZED); return true; } catch (error) { throw new common_1.UnauthorizedException(); } } }; exports.UserGuard = UserGuard; exports.UserGuard = UserGuard = __decorate([ (0, common_1.Injectable)() ], UserGuard); exports.ROLES_KEY = 'roles'; const Roles = (...roles) => (0, common_1.SetMetadata)(exports.ROLES_KEY, roles); exports.Roles = Roles; let RolesGuard = class RolesGuard { constructor(reflector) { this.reflector = reflector; } async canActivate(context) { try { const requiredRoles = this.reflector.getAllAndOverride(exports.ROLES_KEY, [context.getHandler(), context.getClass()]); const request = context.switchToHttp().getRequest(); if (!request.headers.authorization) throw new common_1.HttpException('Forbidden', common_1.HttpStatus.UNAUTHORIZED); const bearer = request.headers.authorization.split(' ')[1]; request.auth = jsonwebtoken.decode(bearer); const payload = request.auth; if (requiredRoles) if (!requiredRoles.some((role) => payload.roles.includes(role))) throw new common_1.HttpException('Forbidden', common_1.HttpStatus.FORBIDDEN); return true; } catch (error) { if (error instanceof common_1.HttpException) throw error; throw new common_1.UnauthorizedException(); } } }; exports.RolesGuard = RolesGuard; exports.RolesGuard = RolesGuard = __decorate([ (0, common_1.Injectable)(), __metadata("design:paramtypes", [core_1.Reflector]) ], RolesGuard); //# sourceMappingURL=auth.guard.js.map