UNPKG

fastify-cloudflare-turnstile

Version:

A Fastify plugin for CloudFlare Turnstile Captcha

github.com/112RG/fastify-cloudflare-turnstile

112RG/fastify-cloudflare-turnstile

49 lines (42 loc) 1.68 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
'use strict' const fastifyPlugin = require('fastify-plugin') async function fastifyCloudFlareTurnstile (fastify, options) { if (!Object.prototype.hasOwnProperty.call(options, 'sitekey')) { throw new Error('sitekey must be set as a string in the options object.') } if (typeof options.sitekey !== 'string') { throw new Error('sitekey must be a string in the options object.') } if (!Object.prototype.hasOwnProperty.call(options, 'privatekey')) { throw new Error('privatekey must be set as a string in the options object.') } if (typeof options.privatekey !== 'string') { throw new Error('privatekey must be a string in the options object.') } fastify.decorate('cfTurnstile', cfTurnstile) async function cfTurnstile (req) { const token = req.body['cf-turnstile-response']?.value || req.body['cf-turnstile-response'] await verify(req, token, options.privatekey) } } async function verify (req, token, privatekey) { const ip = req.headers['cf-connecting-ip'] const formData = new FormData() formData.append('secret', privatekey) formData.append('response', token) formData.append('remoteip', ip) const url = 'https://challenges.cloudflare.com/turnstile/v0/siteverify' const result = await fetch(url, { body: formData, method: 'POST' }) const outcome = await result.json() if (!outcome.success) { const err = new Error('Invalid Captcha') err.status = 400 throw err } } module.exports = fastifyPlugin(fastifyCloudFlareTurnstile, { name: 'fastify-cloudflare-turnstile' }) module.exports.default = fastifyCloudFlareTurnstile module.exports.fastifyCloudFlareTurnstile = fastifyCloudFlareTurnstile