Accueil Explorer Aide
Connexion
ghorsington
/
meidosafe
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 8be134c8d8
Branches Tags
meidosafe
/
src
/
api
/
structures
/
Route.js

Route.js 2.0 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. const nodePath = require('path');
    2. 

  2. const JWT = require('jsonwebtoken');
    3. 

  3. const db = require('knex')({
    4. 

  4. 	client: process.env.DB_CLIENT,
    5. 

  5. 	connection: {
    6. 

  6. 		host: process.env.DB_HOST,
    7. 

  7. 		user: process.env.DB_USER,
    8. 

  8. 		password: process.env.DB_PASSWORD,
    9. 

  9. 		database: process.env.DB_DATABASE,
    10. 

  10. 		filename: nodePath.join(__dirname, '..', '..', '..', 'database.sqlite')
    11. 

  11. 	},
    12. 

  12. 	useNullAsDefault: process.env.DB_CLIENT === 'sqlite' ? true : false
    13. 

  13. });
    14. 

  14. const moment = require('moment');
    15. 

  15. const log = require('../utils/Log');
    16. 

  16. 

  17. class Route {
    18. 

  18. 	constructor(path, method, options) {
    19. 

  19. 		if (!path) throw new Error('Every route needs a URL associated with it.');
    20. 

  20. 		if (!method) throw new Error('Every route needs its method specified.');
    21. 

  21. 

  22. 		this.path = path;
    23. 

  23. 		this.method = method;
    24. 

  24. 		this.options = options || {};
    25. 

  25. 	}
    26. 

  26. 

  27. 	authorize(req, res) {
    28. 

  28. 		if (this.options.bypassAuth) return this.run(req, res, db);
    29. 

  29. 		if (!req.headers.authorization) return res.status(401).json({ message: 'No authorization header provided' });
    30. 

  30. 		const token = req.headers.authorization.split(' ')[1];
    31. 

  31. 		if (!token) return res.status(401).json({ message: 'No authorization header provided' });
    32. 

  32. 

  33. 		return JWT.verify(token, process.env.SECRET, async (error, decoded) => {
    34. 

  34. 			if (error) {
    35. 

  35. 				log.error(error);
    36. 

  36. 				return res.status(401).json({ message: 'Your token appears to be invalid' });
    37. 

  37. 			}
    38. 

  38. 			const id = decoded ? decoded.sub : '';
    39. 

  39. 			const iat = decoded ? decoded.iat : '';
    40. 

  40. 

  41. 			const user = await db.table('users').where({ id }).first();
    42. 

  42. 			if (!user) return res.status(401).json({ message: 'Invalid authorization' });
    43. 

  43. 			if (iat && iat < moment(user.passwordEditedAt).format('x')) return res.status(401).json({ message: 'Token expired' });
    44. 

  44. 			if (!user.enabled) return res.status(401).json({ message: 'This account has been disabled' });
    45. 

  45. 

  46. 			return this.run(req, res, db, user);
    47. 

  47. 		});
    48. 

  48. 	}
    49. 

  49. 

  50. 	run(req, res, db) { // eslint-disable-line no-unused-vars
    51. 

  51. 		return;
    52. 

  52. 	}
    53. 

  53. 

  54. 	error(res, error) {
    55. 

  55. 		log.error(error);
    56. 

  56. 		return res.status(500).json({ message: 'There was a problem parsing the request' });
    57. 

  57. 	}
    58. 

  58. }
    59. 

  59. 

  60. module.exports = Route;
    61.