UNPKG

makedrive

Version:

Webmaker Filesystem

github.com/mozilla/makedrive

mozilla/makedrive

85 lines (71 loc) 2.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
var uuid = require('node-uuid'); var env = require('./environment'); /** * This module creates and tracks transaction objects representing * an analogue to individual HTTP requests made using sessions authenticated with Webmaker-Auth. * Each transaction object can have secure tokens generated for it * to be used to prove a user's identity when opening a * websocket connection for a particular transaction. * * generateTokenForClient(username) * - Creates and stores a one-time use token for the passed user. * A user can have multiple tokens at a time, one for each * client session. After a set amount of time, the token expires * and can no longer be used. * * getAuthorizedUsername(token) * - returns the username associated with a given token, or null. */ var authTable = {}; var TOKEN_TIMEOUT_MS = env.get("TOKEN_TIMEOUT_MS") || 60000; // Default to 60 sec function getUsernameByToken(token) { for(var username in authTable) { if(authTable[username].indexOf(token) > -1) { return username; } } return null; } function revokeToken(token) { var username = getUsernameByToken(token); if(!username) { return; } var clients = authTable[username]; var tokenIndex = clients && clients.indexOf(token); if (tokenIndex === -1) { return; } clients.splice(tokenIndex, 1); if(clients.length === 0) { delete authTable[username]; } } function generateTokenForClient(username) { if (!authTable[username]) { authTable[username] = []; } var token = uuid.v4(); authTable[username].push(token); // When a token is used to open a websocket, // we delete it from authTable to prevent it from being used again. // If it isn't used in a reasonable amount of time, // we remove it here. setTimeout(function(){ revokeToken(token); }, TOKEN_TIMEOUT_MS); return token; } function getAuthorizedUsername(token) { var username = getUsernameByToken(token); // If token is valid, revoke it now that it's been used. if(username) { revokeToken(token); } // Return username (could be `null` if no username was found). return username; } module.exports = { generateTokenForClient: generateTokenForClient, getAuthorizedUsername: getAuthorizedUsername };