UNPKG

supertokens-node

Version:

NodeJS driver for SuperTokens core

github.com/supertokens/supertokens-node

supertokens/supertokens-node

109 lines (108 loc) 4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); const utils_1 = require("../../utils"); const normalisedURLPath_1 = require("../../normalisedURLPath"); function verifySession(recipeInstance, options) { // We know this should be Request but then Type return (request, response, next) => __awaiter(this, void 0, void 0, function* () { try { let method = utils_1.normaliseHttpMethod(request.method); if (method === "options" || method === "trace") { return next(); } let incomingPath = new normalisedURLPath_1.default( recipeInstance, request.originalUrl === undefined ? request.url : request.originalUrl ); let refreshTokenPath = recipeInstance.config.refreshTokenPath; if (incomingPath.equals(refreshTokenPath) && method === "post") { request.session = yield recipeInstance.refreshSession(request, response); } else { request.session = yield recipeInstance.getSession(request, response, options); } return next(); } catch (err) { next(err); } }); } exports.verifySession = verifySession; function sendTryRefreshTokenResponse(recipeInstance, _, __, response, next) { return __awaiter(this, void 0, void 0, function* () { try { utils_1.sendNon200Response( recipeInstance, response, "try refresh token", recipeInstance.config.sessionExpiredStatusCode ); } catch (err) { next(err); } }); } exports.sendTryRefreshTokenResponse = sendTryRefreshTokenResponse; function sendUnauthorisedResponse(recipeInstance, _, __, response, next) { return __awaiter(this, void 0, void 0, function* () { try { utils_1.sendNon200Response( recipeInstance, response, "unauthorised", recipeInstance.config.sessionExpiredStatusCode ); } catch (err) { next(err); } }); } exports.sendUnauthorisedResponse = sendUnauthorisedResponse; function sendTokenTheftDetectedResponse(recipeInstance, sessionHandle, _, __, response, next) { return __awaiter(this, void 0, void 0, function* () { try { yield recipeInstance.revokeSession(sessionHandle); utils_1.sendNon200Response( recipeInstance, response, "token theft detected", recipeInstance.config.sessionExpiredStatusCode ); } catch (err) { next(err); } }); } exports.sendTokenTheftDetectedResponse = sendTokenTheftDetectedResponse; //# sourceMappingURL=middleware.js.map