UNPKG

@tiledesk/tiledesk-server

Version:

The Tiledesk server module

www.tiledesk.com

Tiledesk/tiledesk-server

113 lines (76 loc) 3.76 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
'use strict'; // Modules imports const express = require('express'); var router = express.Router(); var config = require('../config/database'); var jwt = require('jsonwebtoken'); var validtoken = require('../middleware/valid-token'); var requestUtil = require('../utils/requestUtil'); var Project = require('../models/project'); var winston = require('../config/winston'); // deprecated?? router.post('/decode', validtoken, function (req, res) { // var project_id = req.query.project_id; // winston.debug("project_id", project_id); // if (!project_id) { // winston.error("project_id parameter is required"); // res.status(400).send({ success: false, msg: "project_id parameter is required" }); // } return Project.findOne({_id: req.projectid, status: 100}, '+jwtSecret',function(err, project) { if (err) { winston.error('Error finding project', err); return res.status(500).send({ success: false, msg: 'Error finding project.' }); } winston.debug('project', project); if (!project) { return res.status(404).send({ success: false, msg: 'Project not found' }); } if (!project.jwtSecret) { return res.status(404).send({ success: false, msg: 'Project hasnt a jwtSecret' }); } try { winston.debug("requestUtil", requestUtil); var token = requestUtil.getToken(req.headers); winston.debug("token", token); // verify a token symmetric - synchronous var decoded = jwt.verify(token, project.jwtSecret); winston.debug("decoded", decoded); if(!decoded.iat ) { winston.debug("token.iat is required"); return res.status(401).send({ success: false, msg: 'Authentication failed. Token iat is required'}); } if(!decoded.exp ) { winston.debug("token.exp is required"); return res.status(401).send({ success: false, msg: 'Authentication failed. Token exp is required'}); } if(decoded.exp - decoded.iat > 600 ) { winston.debug("The value of exp is permitted to be up to a maximum of 10 minutes from the iat value"); return res.status(401).send({ success: false, msg: 'Authentication failed. The value of exp is permitted to be up to a maximum of 10 minutes from the iat value'}); } return res.json({decoded: decoded}); } catch(err) { winston.error("Authentication failed", err); return res.status(401).send({ success: false, msg: 'Authentication failed', err: err }); } }); }); router.post('/generatetestjwt', validtoken, function (req, res) { winston.debug("req.body", req.body); return Project.findOne({_id: req.projectid, status: 100}, '+jwtSecret',function(err, project) { if (err) { winston.error('Error finding project', err); return res.status(500).send({ success: false, msg: 'Error finding project.' }); } winston.debug('project', project); if (!project) { return res.status(404).send({ success: false, msg: 'Project not found' }); } if (!project.jwtSecret) { return res.status(404).send({ success: false, msg: 'Project hasnt a jwtSecret' }); } var token = jwt.sign(req.body, project.jwtSecret,{ expiresIn: 300 }); // var token = jwt.sign(req.body, project.jwtSecret); res.json({ success: true, token: 'JWT ' + token }); }); }); module.exports = router;