Tokens can also have a admin property. When admin is defined its included in the jwt token.
This commit is contained in:
@@ -2,36 +2,44 @@ const User = require('src/user/user');
|
|||||||
const jwt = require('jsonwebtoken');
|
const jwt = require('jsonwebtoken');
|
||||||
|
|
||||||
class Token {
|
class Token {
|
||||||
constructor(user) {
|
constructor(user, admin=false) {
|
||||||
this.user = user;
|
this.user = user;
|
||||||
}
|
this.admin = admin;
|
||||||
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Generate a new token.
|
* Generate a new token.
|
||||||
* @param {String} secret a cipher of the token
|
* @param {String} secret a cipher of the token
|
||||||
* @returns {String}
|
* @returns {String}
|
||||||
*/
|
*/
|
||||||
toString(secret) {
|
toString(secret) {
|
||||||
return jwt.sign({ username: this.user.username }, secret);
|
const user = this.user.username;
|
||||||
}
|
const admin = this.admin;
|
||||||
|
let data = { user }
|
||||||
|
|
||||||
/**
|
if (admin)
|
||||||
|
data = { ...data, admin }
|
||||||
|
|
||||||
|
return jwt.sign(data, secret, { expiresIn: '90d' });
|
||||||
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
* Decode a token.
|
* Decode a token.
|
||||||
* @param {Token} jwtToken an encrypted token
|
* @param {Token} jwtToken an encrypted token
|
||||||
* @param {String} secret a cipher of the token
|
* @param {String} secret a cipher of the token
|
||||||
* @returns {Token}
|
* @returns {Token}
|
||||||
*/
|
*/
|
||||||
static fromString(jwtToken, secret) {
|
static fromString(jwtToken, secret) {
|
||||||
let username = null;
|
let username = null;
|
||||||
|
|
||||||
try {
|
const token = jwt.verify(jwtToken, secret, { clockTolerance: 10000 })
|
||||||
username = jwt.verify(jwtToken, secret).username;
|
if (token.username === undefined)
|
||||||
} catch (error) {
|
throw new Error('Malformed token')
|
||||||
throw new Error('The token is invalid.');
|
|
||||||
}
|
username = token.username
|
||||||
const user = new User(username);
|
const user = new User(username)
|
||||||
return new Token(user);
|
return new Token(user)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
module.exports = Token;
|
module.exports = Token;
|
||||||
|
|||||||
@@ -21,9 +21,9 @@ function loginController(req, res) {
|
|||||||
userSecurity.login(user, password)
|
userSecurity.login(user, password)
|
||||||
.then(() => userRepository.checkAdmin(user))
|
.then(() => userRepository.checkAdmin(user))
|
||||||
.then((checkAdmin) => {
|
.then((checkAdmin) => {
|
||||||
const token = new Token(user).toString(secret);
|
const isAdmin = checkAdmin === 1 ? true : false;
|
||||||
const admin_state = checkAdmin === 1 ? true : false;
|
const token = new Token(user, isAdmin).toString(secret);
|
||||||
res.send({ success: true, token, admin: admin_state });
|
res.send({ success: true, token });
|
||||||
})
|
})
|
||||||
.catch((error) => {
|
.catch((error) => {
|
||||||
res.status(401).send({ success: false, error: error.message });
|
res.status(401).send({ success: false, error: error.message });
|
||||||
|
|||||||
@@ -21,10 +21,10 @@ function registerController(req, res) {
|
|||||||
userSecurity.createNewUser(user, password)
|
userSecurity.createNewUser(user, password)
|
||||||
.then(() => userRepository.checkAdmin(user))
|
.then(() => userRepository.checkAdmin(user))
|
||||||
.then((checkAdmin) => {
|
.then((checkAdmin) => {
|
||||||
const token = new Token(user).toString(secret);
|
const isAdmin = checkAdmin === 1 ? true : false;
|
||||||
const admin_state = checkAdmin === 1 ? true : false;
|
const token = new Token(user, isAdmin).toString(secret);
|
||||||
res.send({
|
res.send({
|
||||||
success: true, message: 'Welcome to Seasoned!', token, admin: admin_state,
|
success: true, message: 'Welcome to Seasoned!', token
|
||||||
});
|
});
|
||||||
})
|
})
|
||||||
.catch((error) => {
|
.catch((error) => {
|
||||||
|
|||||||
Reference in New Issue
Block a user