UNPKG

@quarks/quarks-iam

Version:

A modern authorization server built to authenticate your users and protect your APIs

github.com/anvilresearch/connect

anvilresearch/connect

125 lines (104 loc) 2.88 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
/** * Module dependencies */ var User = require('../../../models/User') var NotFoundError = require('../../../errors/NotFoundError') var settings = require('../../../boot/settings') var oidc = require('../../../oidc') /** * Export */ module.exports = function (server) { /** * Token-based Auth Middleware */ var authorize = [ oidc.parseAuthorizationHeader, oidc.getBearerToken, oidc.verifyAccessToken({ iss: settings.issuer, key: settings.keys.sig.pub, scope: 'realm' }) ] /** * GET /v1/users */ server.get('/v1/users', authorize, function (req, res, next) { User.list({ // options }, function (err, instances) { if (err) { return next(err) } res.json(instances) }) }) /** * GET /v1/users/:id */ server.get('/v1/users/:id', authorize, function (req, res, next) { User.get(req.params.id, function (err, instance) { if (err) { return next(err) } if (!instance) { return next(new NotFoundError()) } res.json(instance) }) }) /** * POST /v1/users */ server.post('/v1/users', authorize, function (req, res, next) { User.insert(req.body, function (err, instance) { if (err) { return next(err) } res.status(201).json(instance) }) }) /** * PATCH /v1/users/:id */ server.patch('/v1/users/:id', authorize, function (req, res, next) { User.patch(req.params.id, req.body, function (err, instance) { if (err) { return next(err) } if (!instance) { return next(new NotFoundError()) } res.json(instance) }) }) /** * PATCH /v1/users/:id/password */ server.patch('/v1/users/:id/password', authorize, function (req, res, next) { User.changePassword(req.params.id, req.body.password, function (err, user) { if (err) { return next(err) } if (!user) { return next(new NotFoundError()) } res.json(user) }) }) /** * DELETE /v1/users/:id */ server.delete('/v1/users/:id', authorize, function (req, res, next) { User.delete(req.params.id, function (err, result) { if (err) { return next(err) } if (!result) { return next(new NotFoundError()) } res.sendStatus(204) }) }) /** * HEAD /v1/users/email/:email */ server.head('/v1/users/email/:email', authorize, function (req, res, next) { User.getByEmail(req.params.email, function (err, instance) { if (err) { return next(err) } if (!instance) { return next(new NotFoundError()) } res.sendStatus(204) }) }) /** * GET /v1/users/email/:email */ server.get('/v1/users/email/:email', authorize, function (req, res, next) { User.getByEmail(req.params.email, function (err, instance) { if (err) { return next(err) } if (!instance) { return next(new NotFoundError()) } res.json(instance) }) }) }