UNPKG

agneta-platform

Version:

Agneta Platform - Integrate and customize business applications

github.com/agneta/platform

agneta/platform

129 lines (104 loc) 3.37 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
/* Copyright 2017 Agneta Network Applications, LLC. * * Source file: services/server/middleware/token.js * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ var _ = require('lodash'); module.exports = function(app) { function rewriteUserLiteral(req, currentUserLiteral) { if (req.accessToken && req.accessToken.userId && currentUserLiteral) { // Replace /me/ with /current-user-id/ var urlBeforeRewrite = req.url; req.url = req.url.replace( new RegExp('/' + currentUserLiteral + '(/|$|\\?)', 'g'), '/' + req.accessToken.userId + '$1'); if (req.url !== urlBeforeRewrite) { //debug('req.url has been rewritten from %s to %s', urlBeforeRewrite, req.url); } } } function escapeRegExp(str) { return str.replace(/[.*+?^${}()|[\]\\]/g, '\\$&'); } var name = app.get('token').name; var options = { searchDefaultTokenKeys: false, cookies: [name], headers: [name], params: [name] }; var currentUserLiteral = options.currentUserLiteral; if (currentUserLiteral && (typeof currentUserLiteral !== 'string')) { //debug('Set currentUserLiteral to \'me\' as the value is not a string.'); currentUserLiteral = 'me'; } if (typeof currentUserLiteral === 'string') { currentUserLiteral = escapeRegExp(currentUserLiteral); } function middleware(req, res, next) { req.accessTokens = req.accessTokens || {}; if (req.accessToken === undefined) { Object.defineProperty(req, 'accessToken', { get: function() { var key = req.app.get('token').name; return req.accessTokens[key] || null; } }); } app.models.AccessToken.findForRequest(req, options, function(err, token) { if (err) { return next(err); } if (!token || !app.roles) { return next(); } app.models.Account.findById(token.userId, { include: app.roles.include, fields: { id: true } }) .then(function(account) { if (!account) { return next('Account not found from access token'); } save({ account: account, token: token, req: req }); }) .asCallback(next); }); } function save(options){ var account = options.account; var token = options.token; var req = options.req; var roles = _.omit(account.__data, 'id'); roles = _.mapValues(roles, function(value) { return value.id; }); token = token.__data; token.roles = roles; //console.log('middleware:token:save',name,token); req.accessTokens[name] = token || null; rewriteUserLiteral(req, currentUserLiteral); } app.token = { middleware: middleware, save: save }; return middleware; };