KevinMidboe/seasonedShows
1
0
Fork 0
Code Issues 20 Pull Requests 2 Packages Projects Releases 8 Wiki Activity

Tokens can also have a admin property. When admin is defined its included in the jwt token.

Browse Source
This commit is contained in:
Kevin
2019-07-25 00:13:28 +02:00
parent 8a5ab204e1
commit 12afbf6364
3 changed files with 32 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
seasoned_api/src/user/token.js
View File

@@ -2,8 +2,9 @@ const User = require('src/user/user');
const jwt = require('jsonwebtoken'); const jwt = require('jsonwebtoken');
class Token { class Token {
constructor(user) { constructor(user, admin=false) {
this.user = user; this.user = user;
this.admin = admin;
} }
/** /**
@@ -12,7 +13,14 @@ class Token {
* @returns {String} * @returns {String}
*/ */
toString(secret) { toString(secret) {
return jwt.sign({ username: this.user.username }, secret); const user = this.user.username;
const admin = this.admin;
let data = { user }
if (admin)
data = { ...data, admin }
return jwt.sign(data, secret, { expiresIn: '90d' });
} }
/** /**
@@ -24,13 +32,13 @@ class Token {
static fromString(jwtToken, secret) { static fromString(jwtToken, secret) {
let username = null; let username = null;
try { const token = jwt.verify(jwtToken, secret, { clockTolerance: 10000 })
username = jwt.verify(jwtToken, secret).username; if (token.username === undefined)
} catch (error) { throw new Error('Malformed token')
throw new Error('The token is invalid.');
} username = token.username
const user = new User(username); const user = new User(username)
return new Token(user); return new Token(user)
} }
} }

6
seasoned_api/src/webserver/controllers/user/login.js
View File

@@ -21,9 +21,9 @@ function loginController(req, res) {
userSecurity.login(user, password) userSecurity.login(user, password)
.then(() => userRepository.checkAdmin(user)) .then(() => userRepository.checkAdmin(user))
.then((checkAdmin) => { .then((checkAdmin) => {
const token = new Token(user).toString(secret); const isAdmin = checkAdmin === 1 ? true : false;
const admin_state = checkAdmin === 1 ? true : false; const token = new Token(user, isAdmin).toString(secret);
res.send({ success: true, token, admin: admin_state }); res.send({ success: true, token });
}) })
.catch((error) => { .catch((error) => {
res.status(401).send({ success: false, error: error.message }); res.status(401).send({ success: false, error: error.message });

6
seasoned_api/src/webserver/controllers/user/register.js
View File

@@ -21,10 +21,10 @@ function registerController(req, res) {
userSecurity.createNewUser(user, password) userSecurity.createNewUser(user, password)
.then(() => userRepository.checkAdmin(user)) .then(() => userRepository.checkAdmin(user))
.then((checkAdmin) => { .then((checkAdmin) => {
const token = new Token(user).toString(secret); const isAdmin = checkAdmin === 1 ? true : false;
const admin_state = checkAdmin === 1 ? true : false; const token = new Token(user, isAdmin).toString(secret);
res.send({ res.send({
success: true, message: 'Welcome to Seasoned!', token, admin: admin_state, success: true, message: 'Welcome to Seasoned!', token
}); });
}) })
.catch((error) => { .catch((error) => {