hknsh/project-knedita
1
0
Fork 0
mirror of https://github.com/hknsh/project-knedita.git synced 2024-11-28 17:41:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Rollback to the good ol' header auth.

Browse source
This commit is contained in:
Hackntosh 2023-09-03 16:54:55 -03:00
parent 81b0c05d68
commit b6ed80db68
8 changed files with 16 additions and 93 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

56
package-lock.json generated
View file

@ -13,7 +13,6 @@
"aws-sdk": "^2.1414.0", "aws-sdk": "^2.1414.0",
"bcrypt": "^5.1.0", "bcrypt": "^5.1.0",
"compression": "^1.7.4", "compression": "^1.7.4",
"cookie-parser": "^1.4.6",
"cors": "^2.8.5", "cors": "^2.8.5",
"dotenv": "^16.3.1", "dotenv": "^16.3.1",
"express": "^4.18.2", "express": "^4.18.2",
@ -36,7 +35,6 @@
"@swc/core": "^1.3.66", "@swc/core": "^1.3.66",
"@types/bcrypt": "^5.0.0", "@types/bcrypt": "^5.0.0",
"@types/compression": "^1.7.2", "@types/compression": "^1.7.2",
"@types/cookie-parser": "^1.4.3",
"@types/cors": "^2.8.13", "@types/cors": "^2.8.13",
"@types/dotenv": "^8.2.0", "@types/dotenv": "^8.2.0",
"@types/express": "^4.17.17", "@types/express": "^4.17.17",
@ -2660,15 +2658,6 @@
"resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz", "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz",
"integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q==" "integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q=="
}, },
"node_modules/@types/cookie-parser": {
"version": "1.4.3",
"resolved": "https://registry.npmjs.org/@types/cookie-parser/-/cookie-parser-1.4.3.tgz",
"integrity": "sha512-CqSKwFwefj4PzZ5n/iwad/bow2hTCh0FlNAeWLtQM3JA/NX/iYagIpWG2cf1bQKQ2c9gU2log5VUCrn7LDOs0w==",
"dev": true,
"dependencies": {
"@types/express": "*"
}
},
"node_modules/@types/cookiejar": { "node_modules/@types/cookiejar": {
"version": "2.1.2", "version": "2.1.2",
"dev": true, "dev": true,
@ -4289,26 +4278,6 @@
"node": ">= 0.6" "node": ">= 0.6"
} }
}, },
"node_modules/cookie-parser": {
"version": "1.4.6",
"resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.6.tgz",
"integrity": "sha512-z3IzaNjdwUC2olLIB5/ITd0/setiaFMLYiZJle7xg5Fe9KWAceil7xszYfHHBtDFYLSgJduS2Ty0P1uJdPDJeA==",
"dependencies": {
"cookie": "0.4.1",
"cookie-signature": "1.0.6"
},
"engines": {
"node": ">= 0.8.0"
}
},
"node_modules/cookie-parser/node_modules/cookie": {
"version": "0.4.1",
"resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz",
"integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==",
"engines": {
"node": ">= 0.6"
}
},
"node_modules/cookie-signature": { "node_modules/cookie-signature": {
"version": "1.0.6", "version": "1.0.6",
"license": "MIT" "license": "MIT"
@ -12625,15 +12594,6 @@
"resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz", "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz",
"integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q==" "integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q=="
}, },
"@types/cookie-parser": {
"version": "1.4.3",
"resolved": "https://registry.npmjs.org/@types/cookie-parser/-/cookie-parser-1.4.3.tgz",
"integrity": "sha512-CqSKwFwefj4PzZ5n/iwad/bow2hTCh0FlNAeWLtQM3JA/NX/iYagIpWG2cf1bQKQ2c9gU2log5VUCrn7LDOs0w==",
"dev": true,
"requires": {
"@types/express": "*"
}
},
"@types/cookiejar": { "@types/cookiejar": {
"version": "2.1.2", "version": "2.1.2",
"dev": true "dev": true
@ -13780,22 +13740,6 @@
"cookie": { "cookie": {
"version": "0.5.0" "version": "0.5.0"
}, },
"cookie-parser": {
"version": "1.4.6",
"resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.6.tgz",
"integrity": "sha512-z3IzaNjdwUC2olLIB5/ITd0/setiaFMLYiZJle7xg5Fe9KWAceil7xszYfHHBtDFYLSgJduS2Ty0P1uJdPDJeA==",
"requires": {
"cookie": "0.4.1",
"cookie-signature": "1.0.6"
},
"dependencies": {
"cookie": {
"version": "0.4.1",
"resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz",
"integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA=="
}
}
},
"cookie-signature": { "cookie-signature": {
"version": "1.0.6" "version": "1.0.6"
}, },

2
package.json
View file

@ -33,7 +33,6 @@
"@swc/core": "^1.3.66", "@swc/core": "^1.3.66",
"@types/bcrypt": "^5.0.0", "@types/bcrypt": "^5.0.0",
"@types/compression": "^1.7.2", "@types/compression": "^1.7.2",
"@types/cookie-parser": "^1.4.3",
"@types/cors": "^2.8.13", "@types/cors": "^2.8.13",
"@types/dotenv": "^8.2.0", "@types/dotenv": "^8.2.0",
"@types/express": "^4.17.17", "@types/express": "^4.17.17",
@ -66,7 +65,6 @@
"aws-sdk": "^2.1414.0", "aws-sdk": "^2.1414.0",
"bcrypt": "^5.1.0", "bcrypt": "^5.1.0",
"compression": "^1.7.4", "compression": "^1.7.4",
"cookie-parser": "^1.4.6",
"cors": "^2.8.5", "cors": "^2.8.5",
"dotenv": "^16.3.1", "dotenv": "^16.3.1",
"express": "^4.18.2", "express": "^4.18.2",

10
src/app.ts
View file

@ -6,7 +6,6 @@ import express from 'express'
import limiter from 'middlewares/rate-limit' import limiter from 'middlewares/rate-limit'
import morganMiddleware from 'middlewares/morgan' import morganMiddleware from 'middlewares/morgan'
import router from './routes' import router from './routes'
import cookieParser from 'cookie-parser'
const app = express() const app = express()
@ -15,18 +14,19 @@ const app = express()
app.use(express.json()) app.use(express.json())
app.use(express.urlencoded({ extended: true })) app.use(express.urlencoded({ extended: true }))
app.use(cookieParser())
app.use(morganMiddleware) app.use(morganMiddleware)
app.use(limiter) app.options('*', cors())
app.use(router)
app.use(compression({ level: 9 }))
app.use( app.use(
cors({ cors({
credentials: true, credentials: true,
origin: process.env.CLIENT_URL, origin: process.env.CLIENT_URL,
methods: ['GET', 'POST', 'PUT'],
optionsSuccessStatus: 200, optionsSuccessStatus: 200,
}), }),
) )
app.use(limiter)
app.use(router)
app.use(compression({ level: 9 }))
app.use((_req, res) => { app.use((_req, res) => {
res.status(404).json({ res.status(404).json({

1
src/controllers/users-router.ts
View file

@ -13,7 +13,6 @@ const usersRouter = Router()
usersRouter.get('/fetch-posts', user.fetchPosts) usersRouter.get('/fetch-posts', user.fetchPosts)
usersRouter.get('/info', user.fetchInfo) usersRouter.get('/info', user.fetchInfo)
usersRouter.get('/search', user.searchUser) usersRouter.get('/search', user.searchUser)
usersRouter.get('/logout', authenticated, user.logout)
// POST // POST
usersRouter.post('/auth', user.auth) usersRouter.post('/auth', user.auth)

14
src/controllers/users/auth.ts
View file

@ -1,23 +1,13 @@
import user from 'services/users' import user from 'services/users'
import type { Request, Response } from 'express' import type { Request, Response } from 'express'
import { badRequest } from 'helpers/http-errors' import handleResponse from 'helpers/handle-response'
async function userAuthController(req: Request, res: Response): Promise<void> { async function userAuthController(req: Request, res: Response): Promise<void> {
const { email, password } = req.body const { email, password } = req.body
const result = await user.auth({ email, password }) const result = await user.auth({ email, password })
if (result instanceof Error) { handleResponse(res, result)
badRequest(res, result.message)
} else {
res
.cookie('knedita_token', result.token, {
httpOnly: true,
secure: process.env.NODE_ENV === 'production',
})
.status(200)
.json({ message: 'Logged in successfully' })
}
} }
export default userAuthController export default userAuthController

2
src/controllers/users/index.ts
View file

@ -5,7 +5,6 @@ import userFetchInfoController from './fetch-info'
import userFetchPostsController from './fetch-posts' import userFetchPostsController from './fetch-posts'
import userLikeCommentController from './like-comment' import userLikeCommentController from './like-comment'
import userLikePostController from './like-post' import userLikePostController from './like-post'
import userLogoutController from './logout'
import userSearchController from './search-user' import userSearchController from './search-user'
import userSignupController from './signup' import userSignupController from './signup'
import userUpdateEmailController from './update-email' import userUpdateEmailController from './update-email'
@ -21,7 +20,6 @@ const user = {
follow: userFollowController, follow: userFollowController,
likeComment: userLikeCommentController, likeComment: userLikeCommentController,
likePost: userLikePostController, likePost: userLikePostController,
logout: userLogoutController,
searchUser: userSearchController, searchUser: userSearchController,
signup: userSignupController, signup: userSignupController,
updateEmail: userUpdateEmailController, updateEmail: userUpdateEmailController,

14
src/controllers/users/logout.ts
View file

@ -1,14 +0,0 @@
import type { Request, Response } from 'express'
async function userLogoutController(
req: Request,
res: Response,
): Promise<void> {
// @ts-expect-error clearCookie interface does not exists in Response.
return res
.clearCookie('knedita_token')
.status(200)
.json({ message: 'Successfully logged out' })
}
export default userLogoutController

10
src/middlewares/authenticated.ts
View file

@ -10,7 +10,15 @@ async function authenticated(
next: NextFunction, next: NextFunction,
): Promise<void> { ): Promise<void> {
try { try {
const token = req.cookies.knedita_token if (
req.headers.authorization === undefined ||
req.headers.authorization.length === 0
) {
unauthorized(res, 'Missing token')
return
}
const token = req.headers.authorization.split(' ')[1]
if (token === undefined) { if (token === undefined) {
unauthorized(res, 'Missing token') unauthorized(res, 'Missing token')