UNPKG

supertokens-node

Version:

NodeJS driver for SuperTokens core

github.com/supertokens/supertokens-node

supertokens/supertokens-node

119 lines (118 loc) 4.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
"use strict"; /* Copyright (c) 2021, VRAI Labs and/or its affiliates. All rights reserved. * * This software is licensed under the Apache License, Version 2.0 (the * "License") as published by the Apache Software Foundation. * * You may not use this file except in compliance with the License. You may * obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the * License for the specific language governing permissions and limitations * under the License. */ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); const error_1 = require("./error"); const jwt_1 = require("./jwt"); function getInfoFromAccessToken(recipeInstance, token, jwtSigningPublicKey, doAntiCsrfCheck) { return __awaiter(this, void 0, void 0, function* () { try { let payload = jwt_1.verifyJWTAndGetPayload(token, jwtSigningPublicKey); let sessionHandle = sanitizeStringInput(payload.sessionHandle); let userId = sanitizeStringInput(payload.userId); let refreshTokenHash1 = sanitizeStringInput(payload.refreshTokenHash1); let parentRefreshTokenHash1 = sanitizeStringInput(payload.parentRefreshTokenHash1); let userData = payload.userData; let antiCsrfToken = sanitizeStringInput(payload.antiCsrfToken); let expiryTime = sanitizeNumberInput(payload.expiryTime); let timeCreated = sanitizeNumberInput(payload.timeCreated); if ( sessionHandle === undefined || userId === undefined || refreshTokenHash1 === undefined || userData === undefined || (antiCsrfToken === undefined && doAntiCsrfCheck) || expiryTime === undefined || timeCreated === undefined ) { // it would come here if we change the structure of the JWT. throw Error("Access token does not contain all the information. Maybe the structure has changed?"); } if (expiryTime < Date.now()) { throw Error("Access token expired"); } return { sessionHandle, userId, refreshTokenHash1, parentRefreshTokenHash1, userData, antiCsrfToken, expiryTime, timeCreated, }; } catch (err) { throw new error_1.default( { message: "Failed to verify access token", type: error_1.default.TRY_REFRESH_TOKEN, }, recipeInstance ); } }); } exports.getInfoFromAccessToken = getInfoFromAccessToken; function sanitizeStringInput(field) { if (field === "") { return ""; } if (typeof field !== "string") { return undefined; } try { let result = field.trim(); return result; } catch (err) {} return undefined; } function sanitizeNumberInput(field) { if (typeof field === "number") { return field; } return undefined; } //# sourceMappingURL=accessToken.js.map