mongodb-dynamic-api/src/modules/auth/guards/jwt-socket-auth/jwt-socket-auth.guard.js

Auto generated CRUD API for MongoDB using NestJS

"use strict";
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
    return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var JwtSocketAuthGuard_1;
Object.defineProperty(exports, "__esModule", { value: true });
exports.JwtSocketAuthGuard = void 0;
const common_1 = require("@nestjs/common");
const jwt_1 = require("@nestjs/jwt");
const websockets_1 = require("@nestjs/websockets");
const lodash_1 = require("lodash");
const dynamic_api_module_1 = require("../../../../dynamic-api.module");
const logger_1 = require("../../../../logger");
let JwtSocketAuthGuard = JwtSocketAuthGuard_1 = class JwtSocketAuthGuard {
    constructor() {
        this.logger = new logger_1.MongoDBDynamicApiLogger(JwtSocketAuthGuard_1.name);
    }
    async canActivate(context) {
        const [socket] = context.getArgs();
        const accessToken = this.getAccessTokenFromSocketQuery(socket);
        const user = await this.extractUserFromToken(accessToken);
        if ((0, lodash_1.isEmpty)(user)) {
            this.logger.warn('No user data');
            throw new websockets_1.WsException('Unauthorized');
        }
        socket.user = user;
        return true;
    }
    getAccessTokenFromSocketQuery(socket) {
        const accessToken = socket.handshake.query.accessToken;
        if (!accessToken) {
            throw new websockets_1.WsException('Unauthorized');
        }
        return accessToken;
    }
    async extractUserFromToken(accessToken) {
        const jwtService = new jwt_1.JwtService({
            secret: dynamic_api_module_1.DynamicApiModule.state.get('jwtSecret'),
            signOptions: {
                expiresIn: dynamic_api_module_1.DynamicApiModule.state.get('jwtExpirationTime'),
            },
        });
        try {
            const { iat, exp, ...user } = await jwtService.verifyAsync(accessToken, {
                secret: dynamic_api_module_1.DynamicApiModule.state.get('jwtSecret'),
                ignoreExpiration: false,
            });
            return user;
        }
        catch (e) {
            this.logger.warn('extractUserFromToken jwtService.verify error');
            this.logger.warn(e.message);
            throw new websockets_1.WsException('Unauthorized');
        }
    }
};
exports.JwtSocketAuthGuard = JwtSocketAuthGuard;
exports.JwtSocketAuthGuard = JwtSocketAuthGuard = JwtSocketAuthGuard_1 = __decorate([
    (0, common_1.Injectable)()
], JwtSocketAuthGuard);
//# sourceMappingURL=jwt-socket-auth.guard.js.map