PeerTube/server/middlewares/oauth.ts

import * as express from 'express'
import * as OAuthServer from 'express-oauth-server'
import 'express-validator'
import { OAUTH_LIFETIME } from '../initializers'
import { logger } from '../helpers/logger'

const oAuthServer = new OAuthServer({
  useErrorHandler: true,
  accessTokenLifetime: OAUTH_LIFETIME.ACCESS_TOKEN,
  refreshTokenLifetime: OAUTH_LIFETIME.REFRESH_TOKEN,
  model: require('../lib/oauth-model')
})

function authenticate (req: express.Request, res: express.Response, next: express.NextFunction) {
  oAuthServer.authenticate()(req, res, err => {
    if (err) {
      logger.warn('Cannot authenticate.', { err })

      return res.status(err.status)
        .json({
          error: 'Token is invalid.',
          code: err.name
        })
        .end()
    }

    return next()
  })
}

function optionalAuthenticate (req: express.Request, res: express.Response, next: express.NextFunction) {
  if (req.header('authorization')) return authenticate(req, res, next)

  return next()
}

function token (req: express.Request, res: express.Response, next: express.NextFunction) {
  return oAuthServer.token()(req, res, err => {
    if (err) {
      return res.status(err.status)
        .json({
          error: 'Authentication failed.',
          code: err.name
        })
        .end()
    }

    return next()
  })
}

// ---------------------------------------------------------------------------

export {
  authenticate,
  optionalAuthenticate,
  token
}
Type functions 2017-06-10 22:15:25 +02:00			`import * as express from 'express'`
require -> import 2017-06-05 21:53:49 +02:00			`import * as OAuthServer from 'express-oauth-server'`
Improve check jobs parameters tests 2017-12-28 14:40:11 +01:00			`import 'express-validator'`
Type models 2017-05-22 20:58:25 +02:00			`import { OAUTH_LIFETIME } from '../initializers'`
Add ability to choose what policy we have for NSFW videos There is a global instance setting and a per user setting 2018-04-19 11:01:34 +02:00			`import { logger } from '../helpers/logger'`
Add authentications for routes that need it and adapts the tests 2016-04-14 22:06:11 +02:00
			`const oAuthServer = new OAuthServer({`
Improve check jobs parameters tests 2017-12-28 14:40:11 +01:00			`useErrorHandler: true,`
Type models 2017-05-22 20:58:25 +02:00			`accessTokenLifetime: OAUTH_LIFETIME.ACCESS_TOKEN,`
			`refreshTokenLifetime: OAUTH_LIFETIME.REFRESH_TOKEN,`
OAuth/User models refractoring -> use mongoose api 2016-07-01 16:03:53 +02:00			`model: require('../lib/oauth-model')`
OAuth server: first draft 2016-03-21 11:56:33 +01:00			`})`

Type functions 2017-06-10 22:15:25 +02:00			`function authenticate (req: express.Request, res: express.Response, next: express.NextFunction) {`
Remove "function" in favor of () => {} 2017-07-11 17:04:57 +02:00			`oAuthServer.authenticate()(req, res, err => {`
Add authentications for routes that need it and adapts the tests 2016-04-14 22:06:11 +02:00			`if (err) {`
Add ability to choose what policy we have for NSFW videos There is a global instance setting and a per user setting 2018-04-19 11:01:34 +02:00			`logger.warn('Cannot authenticate.', { err })`

Improve check jobs parameters tests 2017-12-28 14:40:11 +01:00			`return res.status(err.status)`
			`.json({`
Fix user tests 2017-12-28 16:45:32 +01:00			`error: 'Token is invalid.',`
Improve check jobs parameters tests 2017-12-28 14:40:11 +01:00			`code: err.name`
			`})`
			`.end()`
Improve check follow params tests 2017-12-28 14:29:57 +01:00			`}`
Add authentications for routes that need it and adapts the tests 2016-04-14 22:06:11 +02:00
			`return next()`
			`})`
			`}`

Add ability to choose what policy we have for NSFW videos There is a global instance setting and a per user setting 2018-04-19 11:01:34 +02:00			`function optionalAuthenticate (req: express.Request, res: express.Response, next: express.NextFunction) {`
			`if (req.header('authorization')) return authenticate(req, res, next)`

			`return next()`
			`}`

Type functions 2017-06-10 22:15:25 +02:00			`function token (req: express.Request, res: express.Response, next: express.NextFunction) {`
Fix user tests 2017-12-28 16:45:32 +01:00			`return oAuthServer.token()(req, res, err => {`
			`if (err) {`
			`return res.status(err.status)`
			`.json({`
			`error: 'Authentication failed.',`
			`code: err.name`
			`})`
			`.end()`
			`}`

			`return next()`
			`})`
Add authentications for routes that need it and adapts the tests 2016-04-14 22:06:11 +02:00			`}`

OAuth server: first draft 2016-03-21 11:56:33 +01:00			`// ---------------------------------------------------------------------------`

First typescript iteration 2017-05-15 22:22:03 +02:00			`export {`
			`authenticate,`
Add ability to choose what policy we have for NSFW videos There is a global instance setting and a per user setting 2018-04-19 11:01:34 +02:00			`optionalAuthenticate,`
First typescript iteration 2017-05-15 22:22:03 +02:00			`token`
			`}`