UNPKG

authmaker-verify

Version:

AccessToken verification for Authmaker

github.com/Authmaker/authmaker-verify

Authmaker/authmaker-verify

60 lines (47 loc) 1.71 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
const _ = require('lodash'); const moment = require('moment'); const common = require('@authmaker/common'); const checkAccessToken = require('../common/checkAccessToken'); module.exports = function mongoRateLimited(accessToken, tag, defaultScope) { return checkAccessToken(accessToken) .then((session) => { if (!tag) { throw new Error('Incorrect parameter: Missing tag in arguments passed'); } let scope = _.find(session.scopes, (sessionScope) => { if (sessionScope === tag) { throw new Error(`Incorrect parameter: Only tag name required to be passed from ${sessionScope}`); } return sessionScope.indexOf(tag) === 0; }); if (!scope && defaultScope) { scope = defaultScope; } if (!scope) { throw new Error(`Not Authorized: No scope associated with ${tag}`); } const scopeParts = scope.split('_'); if (scopeParts.length !== 4) { throw new Error(`Malformed Scope: ${scope} is not a rate limited scope. e.g. tagname_limit_10_day`); } const limit = scopeParts[2].trim(); const period = scopeParts[3].trim(); return common.models.auditTrail.find({ tag, userId: session.userId, date: { $gt: moment().subtract(1, period).toDate(), }, }).countDocuments().exec().then((count) => { if (count >= limit) { throw new Error(`Too Many Requests: Rate limit exceeded for ${scope}`); } return common.models.auditTrail.create({ accessToken, tag, userId: session.userId, date: new Date(), }).then(() => session); }); }); };