Home Esplora Aiuto
Accedi
Vieraw
/
Kutt
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): f37c66b755
Rami (Branch) Tag
Kutt
/
server
/
passport.js

passport.js 1.8 KB
Cronologia Originale

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. const { Strategy: LocalAPIKeyStrategy } = require("passport-localapikey-update");
    2. 

  2. const { Strategy: JwtStrategy, ExtractJwt } = require("passport-jwt");
    3. 

  3. const { Strategy: LocalStrategy } = require("passport-local");
    4. 

  4. const passport = require("passport");
    5. 

  5. const bcrypt = require("bcryptjs");
    6. 

  6. 

  7. const query = require("./queries");
    8. 

  8. const env = require("./env");
    9. 

  9. 

  10. const jwtOptions = {
    11. 

  11.   jwtFromRequest: req => req.cookies?.token,
    12. 

  12.   secretOrKey: env.JWT_SECRET
    13. 

  13. };
    14. 

  14. 

  15. passport.use(
    16. 

  16.   new JwtStrategy(jwtOptions, async (payload, done) => {
    17. 

  17.     try {
    18. 

  18.       // 'sub' used to be the email address
    19. 

  19.       // this check makes sure to invalidate old JWTs where the sub is still the email address
    20. 

  20.       if (typeof payload.sub === "string" || !payload.sub) {
    21. 

  21.         return done(null, false);
    22. 

  22.       }
    23. 

  23.       const user = await query.user.find({ id: payload.sub });
    24. 

  24.       if (!user) return done(null, false);
    25. 

  25.       return done(null, user, payload);
    26. 

  26.     } catch (err) {
    27. 

  27.       return done(err);
    28. 

  28.     }
    29. 

  29.   })
    30. 

  30. );
    31. 

  31. 

  32. const localOptions = {
    33. 

  33.   usernameField: "email"
    34. 

  34. };
    35. 

  35. 

  36. passport.use(
    37. 

  37.   new LocalStrategy(localOptions, async (email, password, done) => {
    38. 

  38.     try {
    39. 

  39.       const user = await query.user.find({ email });
    40. 

  40.       if (!user) {
    41. 

  41.         return done(null, false);
    42. 

  42.       }
    43. 

  43.       const isMatch = await bcrypt.compare(password, user.password);
    44. 

  44.       if (!isMatch) {
    45. 

  45.         return done(null, false);
    46. 

  46.       }
    47. 

  47.       return done(null, user);
    48. 

  48.     } catch (err) {
    49. 

  49.       return done(err);
    50. 

  50.     }
    51. 

  51.   })
    52. 

  52. );
    53. 

  53. 

  54. const localAPIKeyOptions = {
    55. 

  55.   apiKeyField: "apikey",
    56. 

  56.   apiKeyHeader: "x-api-key"
    57. 

  57. };
    58. 

  58. 

  59. passport.use(
    60. 

  60.   new LocalAPIKeyStrategy(localAPIKeyOptions, async (apikey, done) => {
    61. 

  61.     try {
    62. 

  62.       const user = await query.user.find({ apikey });
    63. 

  63.       if (!user) {
    64. 

  64.         return done(null, false);
    65. 

  65.       }
    66. 

  66.       return done(null, user);
    67. 

  67.     } catch (err) {
    68. 

  68.       return done(err);
    69. 

  69.     }
    70. 

  70.   })
    71. 

  71. );
    72.