UNPKG

@rivetkit/core

Version:

121 lines (110 loc) 3.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
import type { Context as HonoContext } from "hono"; import type { AuthIntent } from "@/actor/config"; import type { AnyActorDefinition } from "@/actor/definition"; import * as errors from "@/actor/errors"; import type { RegistryConfig } from "@/registry/config"; import { stringifyError } from "@/utils"; import type { ManagerDriver } from "./driver"; import { logger } from "./log"; import type { ActorQuery } from "./protocol/query"; /** * Get authentication intents from a actor query */ export function getIntentsFromQuery(query: ActorQuery): Set<AuthIntent> { const intents = new Set<AuthIntent>(); if ("getForId" in query) { intents.add("get"); } else if ("getForKey" in query) { intents.add("get"); } else if ("getOrCreateForKey" in query) { intents.add("get"); intents.add("create"); } else if ("create" in query) { intents.add("create"); } return intents; } /** * Get actor name from a actor query */ export async function getActorNameFromQuery( c: HonoContext, driver: ManagerDriver, query: ActorQuery, ): Promise<string> { if ("getForId" in query) { // TODO: This will have a duplicate call to getForId between this and queryActor const output = await driver.getForId({ c, actorId: query.getForId.actorId, }); if (!output) throw new errors.ActorNotFound(query.getForId.actorId); return output.name; } else if ("getForKey" in query) { return query.getForKey.name; } else if ("getOrCreateForKey" in query) { return query.getOrCreateForKey.name; } else if ("create" in query) { return query.create.name; } else { throw new errors.InvalidRequest("Invalid query format"); } } /** * Authenticate a request using the actor's onAuth function */ export async function authenticateRequest( c: HonoContext, actorDefinition: AnyActorDefinition, intents: Set<AuthIntent>, params: unknown, ): Promise<unknown> { if (!("onAuth" in actorDefinition.config)) { throw new errors.Forbidden( "Actor requires authentication but no onAuth handler is defined (https://rivet.gg/docs/actors/authentication/). Provide an empty handler to disable auth: `onAuth: () => {}`", ); } try { const dataOrPromise = actorDefinition.config.onAuth( { request: c.req.raw, intents, }, params, ); if (dataOrPromise instanceof Promise) { return await dataOrPromise; } else { return dataOrPromise; } } catch (error) { logger().info("authentication error", { error: stringifyError(error) }); throw error; } } /** * Simplified authentication for endpoints that combines all auth steps */ export async function authenticateEndpoint( c: HonoContext, driver: ManagerDriver, registryConfig: RegistryConfig, query: ActorQuery, additionalIntents: AuthIntent[], params: unknown, ): Promise<unknown> { // Get base intents from query const intents = getIntentsFromQuery(query); // Add endpoint-specific intents for (const intent of additionalIntents) { intents.add(intent); } // Get actor definition const actorName = await getActorNameFromQuery(c, driver, query); const actorDefinition = registryConfig.use[actorName]; if (!actorDefinition) { throw new errors.ActorNotFound(actorName); } // Authenticate return await authenticateRequest(c, actorDefinition, intents, params); }