UNPKG

nsfw-api

Version:

NodeJS Sequelize FrameWork API

github.com/NilsBaumgartner1994/NSFW-API

NilsBaumgartner1994/NSFW-API

128 lines (108 loc) 5.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
import AuthConnector from "./AuthConnector"; import MyExpressRouter from "../module/MyExpressRouter"; const jwt = require('jsonwebtoken'); const jwtSecret = "supersecretJWTKey"; const accessToken_expirationTime = "24h"; const randtoken = require('rand-token'); const refreshTokenKey = "RefreshTokens"+"."; const usersRefreshTokensKey = "UsersRefreshTokens"+"."; /** * A Token helper for easy verification and creating of tokens */ export default class MyTokenHelper { static ID = 2; /** * Constructor for the token Helper * @param logger the logger class */ constructor(logger) { this.logger = logger; this.logger.info("[MyTokenHelper] creating"); } /** * Verifies a Token and calls a callback function on result * @param token the token to be checked * @param functionToCall the callback function */ verifyToken(token, functionToCall) { jwt.verify(token, jwtSecret, functionToCall); } async rejectAllRefreshTokensFromAuthObject(authObject){ let authMethod = authObject[AuthConnector.AUTH_METHOD]; let username = authObject.username; let key = authMethod+"."+username; let redisUserRefreshTokensKey = usersRefreshTokensKey+key; let usersRefreshTokensAsString = await MyExpressRouter.getFromRedis(redisUserRefreshTokensKey); if(!!usersRefreshTokensAsString){ let usersRefreshTokens = JSON.parse(usersRefreshTokensAsString); let refreshTokens = Object.keys(usersRefreshTokens); for(let i=0; i<refreshTokens.length; i++){ let refreshToken = refreshTokens[i]; await this.rejectRefreshToken(refreshToken); } return true; } } async rejectRefreshToken(refreshToken){ let redisRefreshTokensKey = refreshTokenKey+refreshToken; let authObject = await MyTokenHelper.getAuthObjectFromRefreshToken(refreshToken); if(!!authObject){ let authMethod = authObject[AuthConnector.AUTH_METHOD]; let username = authObject.username; let key = authMethod+"."+username; let redisUserRefreshTokensKey = usersRefreshTokensKey+key; let usersRefreshTokensAsString = await MyExpressRouter.getFromRedis(redisUserRefreshTokensKey); let usersRefreshTokens = !!usersRefreshTokensAsString ? JSON.parse(usersRefreshTokensAsString) : {}; delete usersRefreshTokens[refreshToken]; if(Object.keys(usersRefreshTokens).length===0){ await MyExpressRouter.deleteInRedis(redisUserRefreshTokensKey); } else { await MyExpressRouter.saveInRedis(redisUserRefreshTokensKey, JSON.stringify(usersRefreshTokens)); } } await MyExpressRouter.deleteInRedis(redisRefreshTokensKey); return true; } static async getAuthObjectFromRefreshToken(refreshToken){ let redisRefreshTokensKey = refreshTokenKey+refreshToken; let authObjectAsString = await MyExpressRouter.getFromRedis(redisRefreshTokensKey); if(!!authObjectAsString){ return JSON.parse(authObjectAsString) } return null; } async createRefreshToken(authObject){ //console.log("createRefreshToken start"); let refreshToken = randtoken.uid(512); let redisRefreshTokensKey = refreshTokenKey+refreshToken; let foundAuthObject = await MyTokenHelper.getAuthObjectFromRefreshToken(refreshToken); if(!foundAuthObject){ //console.log("Refresh Token not used :-)") let authMethod = authObject[AuthConnector.AUTH_METHOD]; let username = authObject.username; let key = authMethod+"."+username; let redisUserRefreshTokensKey = usersRefreshTokensKey+key; let usersRefreshTokensAsString = await MyExpressRouter.getFromRedis(redisUserRefreshTokensKey); let usersRefreshTokens = !!usersRefreshTokensAsString ? JSON.parse(usersRefreshTokensAsString) : {}; usersRefreshTokens[refreshToken] = true; //console.log("Saving RefreshToken in Redis Client"); await MyExpressRouter.saveInRedis(redisUserRefreshTokensKey, JSON.stringify(usersRefreshTokens)); await MyExpressRouter.saveInRedis(redisRefreshTokensKey, JSON.stringify(authObject)); //console.log("Refresh Token successufully created"); //console.log(refreshToken); return refreshToken; } return null; } /** * Creates a Token with an default expiration time * @param user_id The UserID we want to add into the key * @param roleName the RoleName we want to add * @returns {string} the token */ createAccessToken(authObject) { this.logger.info("[MyTokenHelper] createToken: "+JSON.stringify(authObject)); let token = jwt.sign(authObject, jwtSecret, {expiresIn: accessToken_expirationTime}); return token; } }