@shadow-dev/core
Version:
A modular core framework for Discord bot development, providing commands, buttons, menus, middleware, and more.
41 lines (40 loc) • 1.87 kB
JavaScript
;
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __param = (this && this.__param) || function (paramIndex, decorator) {
return function (target, key) { decorator(target, key, paramIndex); }
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.ApiKeyGuard = void 0;
const common_1 = require("@nestjs/common");
const api_key_token_1 = require("../tokens/api-key.token");
let ApiKeyGuard = class ApiKeyGuard {
constructor(provider, reflector) {
this.provider = provider;
this.reflector = reflector;
}
async canActivate(context) {
const req = context.switchToHttp().getRequest();
const rawKey = req.headers["x-api-key"];
if (!rawKey) {
return false; // No API key provided
}
const key = await this.provider.validate(rawKey);
if (!key || key.revoked)
return false;
const required = this.reflector.get("api_key_permissions", context.getHandler()) || [];
if (!required.every(p => key.permissions.includes(p)))
return false;
req.apiKey = key;
return true;
}
};
exports.ApiKeyGuard = ApiKeyGuard;
exports.ApiKeyGuard = ApiKeyGuard = __decorate([
(0, common_1.Injectable)(),
__param(0, (0, common_1.Inject)(api_key_token_1.API_KEY_PROVIDER))
], ApiKeyGuard);