partey_workadventure/pusher/src/Controller/AuthenticateController.ts

134 lines
4.5 KiB
TypeScript
Raw Normal View History

2021-06-24 10:09:10 +02:00
import { v4 } from "uuid";
import { HttpRequest, HttpResponse, TemplatedApp } from "uWebSockets.js";
import { BaseController } from "./BaseController";
import { adminApi } from "../Services/AdminApi";
import { jwtTokenManager } from "../Services/JWTTokenManager";
import { parse } from "query-string";
export interface TokenInterface {
2021-06-24 10:09:10 +02:00
userUuid: string;
}
export class AuthenticateController extends BaseController {
2021-06-24 10:09:10 +02:00
constructor(private App: TemplatedApp) {
super();
this.register();
this.verify();
this.anonymLogin();
}
//Try to login with an admin token
2021-06-24 10:09:10 +02:00
private register() {
this.App.options("/register", (res: HttpResponse, req: HttpRequest) => {
this.addCorsHeaders(res);
res.end();
});
this.App.post("/register", (res: HttpResponse, req: HttpRequest) => {
(async () => {
res.onAborted(() => {
2021-06-24 10:09:10 +02:00
console.warn("Login request was aborted");
});
const param = await res.json();
//todo: what to do if the organizationMemberToken is already used?
2021-06-24 10:09:10 +02:00
const organizationMemberToken: string | null = param.organizationMemberToken;
try {
2021-06-24 10:09:10 +02:00
if (typeof organizationMemberToken != "string") throw new Error("No organization token");
const data = await adminApi.fetchMemberDataByToken(organizationMemberToken);
const userUuid = data.userUuid;
const organizationSlug = data.organizationSlug;
const worldSlug = data.worldSlug;
const roomSlug = data.roomSlug;
const mapUrlStart = data.mapUrlStart;
const textures = data.textures;
const authToken = jwtTokenManager.createJWTToken(userUuid);
res.writeStatus("200 OK");
this.addCorsHeaders(res);
2021-06-24 10:09:10 +02:00
res.end(
JSON.stringify({
authToken,
userUuid,
organizationSlug,
worldSlug,
roomSlug,
mapUrlStart,
organizationMemberToken,
textures,
})
);
} catch (e) {
this.errorToResponse(e, res);
}
})();
});
}
2021-06-24 10:09:10 +02:00
private verify() {
this.App.options("/verify", (res: HttpResponse, req: HttpRequest) => {
this.addCorsHeaders(res);
res.end();
});
this.App.get("/verify", (res: HttpResponse, req: HttpRequest) => {
(async () => {
const query = parse(req.getQuery());
res.onAborted(() => {
2021-06-24 10:09:10 +02:00
console.warn("verify request was aborted");
});
try {
await jwtTokenManager.getUserUuidFromToken(query.token as string);
} catch (e) {
res.writeStatus("400 Bad Request");
this.addCorsHeaders(res);
2021-06-24 10:09:10 +02:00
res.end(
JSON.stringify({
success: false,
message: "Invalid JWT token",
})
);
return;
}
res.writeStatus("200 OK");
this.addCorsHeaders(res);
2021-06-24 10:09:10 +02:00
res.end(
JSON.stringify({
success: true,
})
);
})();
});
}
//permit to login on application. Return token to connect on Websocket IO.
2021-06-24 10:09:10 +02:00
private anonymLogin() {
this.App.options("/anonymLogin", (res: HttpResponse, req: HttpRequest) => {
this.addCorsHeaders(res);
res.end();
});
2021-06-24 10:09:10 +02:00
this.App.post("/anonymLogin", (res: HttpResponse, req: HttpRequest) => {
res.onAborted(() => {
2021-06-24 10:09:10 +02:00
console.warn("Login request was aborted");
});
const userUuid = v4();
const authToken = jwtTokenManager.createJWTToken(userUuid);
res.writeStatus("200 OK");
this.addCorsHeaders(res);
2021-06-24 10:09:10 +02:00
res.end(
JSON.stringify({
authToken,
userUuid,
})
);
});
}
}