ff-admin-server/src/helpers/jwtHelper.ts

import jwt from "jsonwebtoken";
import { JWTData, JWTToken } from "../type/jwtTypes";
import { JWT_SECRET, JWT_EXPIRATION } from "../env.defaults";
import InternalException from "../exceptions/internalException";
import RolePermissionService from "../service/management/rolePermissionService";
import UserPermissionService from "../service/management/userPermissionService";
import UserService from "../service/management/userService";
import PermissionHelper from "./permissionHelper";
import WebapiService from "../service/management/webapiService";
import WebapiPermissionService from "../service/management/webapiPermissionService";
import ms from "ms";

export abstract class JWTHelper {
  static validate(token: string): Promise<string | jwt.JwtPayload> {
    return new Promise<string | jwt.JwtPayload>((resolve, reject) => {
      jwt.verify(token, JWT_SECRET, (err, decoded) => {
        if (err) reject(err.message);
        else resolve(decoded);
      });
    });
  }

  static create(
    data: JWTData,
    { expOverwrite, useExpiration }: { expOverwrite?: number; useExpiration?: boolean } = { useExpiration: true }
  ): Promise<string> {
    return new Promise<string>((resolve, reject) => {
      jwt.sign(
        data,
        JWT_SECRET,
        {
          ...(useExpiration ?? true ? { expiresIn: expOverwrite ?? JWT_EXPIRATION } : {}),
        },
        (err, token) => {
          if (err) reject(err.message);
          else resolve(token);
        }
      );
    });
  }

  static decode(token: string): Promise<string | jwt.JwtPayload> {
    return new Promise<string | jwt.JwtPayload>((resolve, reject) => {
      try {
        let decoded = jwt.decode(token);
        resolve(decoded);
      } catch (err) {
        reject(err.message);
      }
    });
  }

  static async buildToken(id: string): Promise<string> {
    let { firstname, lastname, mail, username, isOwner } = await UserService.getById(id);
    let userPermissions = await UserPermissionService.getByUser(id);
    let userPermissionStrings = userPermissions.map((e) => e.permission);
    let userRoles = await UserService.getAssignedRolesByUserId(id);
    let rolePermissions =
      userRoles.length != 0 ? await RolePermissionService.getByRoles(userRoles.map((e) => e.id)) : [];
    let rolePermissionStrings = rolePermissions.map((e) => e.permission);
    let permissionObject = PermissionHelper.convertToObject([...userPermissionStrings, ...rolePermissionStrings]);

    let jwtData: JWTToken = {
      userId: id,
      mail: mail,
      username: username,
      firstname: firstname,
      lastname: lastname,
      isOwner: isOwner,
      permissions: permissionObject,
    };

    return await JWTHelper.create(jwtData)
      .then((result) => {
        return result;
      })
      .catch((err) => {
        throw new InternalException("Failed accessToken creation", err);
      });
  }

  static async buildWebapiToken(token: string, expiration?: Date): Promise<string> {
    let { id, title } = await WebapiService.getByToken(token);
    let webapiPermissions = await WebapiPermissionService.getByApi(id);
    let webapiPermissionStrings = webapiPermissions.map((e) => e.permission);
    let permissionObject = PermissionHelper.convertToObject(webapiPermissionStrings);

    let jwtData: JWTToken = {
      userId: id.toString(),
      mail: "",
      username: title,
      firstname: "",
      lastname: "",
      isOwner: false,
      permissions: permissionObject,
      sub: "webapi_access_token",
    };

    let overwriteExpiration =
      ms(JWT_EXPIRATION) < new Date().getTime() - new Date(expiration).getTime()
        ? null
        : Date.now() - new Date(expiration).getTime();

    return await JWTHelper.create(jwtData, { expOverwrite: overwriteExpiration, useExpiration: true })
      .then((result) => {
        return result;
      })
      .catch((err) => {
        throw new InternalException("Failed webapi accessToken creation", err);
      });
  }
}
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`import jwt from "jsonwebtoken";`
reset totp 2024-11-23 12:11:19 +01:00			`import { JWTData, JWTToken } from "../type/jwtTypes";`
default values for env and critic check for values 2024-08-25 18:07:34 +02:00			`import { JWT_SECRET, JWT_EXPIRATION } from "../env.defaults";`
reset totp 2024-11-23 12:11:19 +01:00			`import InternalException from "../exceptions/internalException";`
change folder structure 2025-02-15 10:59:54 +01:00			`import RolePermissionService from "../service/management/rolePermissionService";`
			`import UserPermissionService from "../service/management/userPermissionService";`
			`import UserService from "../service/management/userService";`
reset totp 2024-11-23 12:11:19 +01:00			`import PermissionHelper from "./permissionHelper";`
change folder structure 2025-02-15 10:59:54 +01:00			`import WebapiService from "../service/management/webapiService";`
			`import WebapiPermissionService from "../service/management/webapiPermissionService";`
jwt gen & rename fixes 2025-01-22 11:57:19 +01:00			`import ms from "ms";`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00
			`export abstract class JWTHelper {`
			`static validate(token: string): Promise<string \| jwt.JwtPayload> {`
			`return new Promise<string \| jwt.JwtPayload>((resolve, reject) => {`
default values for env and critic check for values 2024-08-25 18:07:34 +02:00			`jwt.verify(token, JWT_SECRET, (err, decoded) => {`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`if (err) reject(err.message);`
			`else resolve(decoded);`
			`});`
			`});`
			`}`

jwt gen & rename fixes 2025-01-22 11:57:19 +01:00			`static create(`
			`data: JWTData,`
			`{ expOverwrite, useExpiration }: { expOverwrite?: number; useExpiration?: boolean } = { useExpiration: true }`
			`): Promise<string> {`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`return new Promise<string>((resolve, reject) => {`
			`jwt.sign(`
			`data,`
default values for env and critic check for values 2024-08-25 18:07:34 +02:00			`JWT_SECRET,`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`{`
jwt gen & rename fixes 2025-01-22 11:57:19 +01:00			`...(useExpiration ?? true ? { expiresIn: expOverwrite ?? JWT_EXPIRATION } : {}),`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`},`
			`(err, token) => {`
			`if (err) reject(err.message);`
			`else resolve(token);`
			`}`
			`);`
			`});`
			`}`

			`static decode(token: string): Promise<string \| jwt.JwtPayload> {`
			`return new Promise<string \| jwt.JwtPayload>((resolve, reject) => {`
			`try {`
			`let decoded = jwt.decode(token);`
			`resolve(decoded);`
			`} catch (err) {`
			`reject(err.message);`
			`}`
			`});`
			`}`
reset totp 2024-11-23 12:11:19 +01:00
change user to uuid 2025-01-29 08:53:49 +01:00			`static async buildToken(id: string): Promise<string> {`
reset totp 2024-11-23 12:11:19 +01:00			`let { firstname, lastname, mail, username, isOwner } = await UserService.getById(id);`
			`let userPermissions = await UserPermissionService.getByUser(id);`
			`let userPermissionStrings = userPermissions.map((e) => e.permission);`
			`let userRoles = await UserService.getAssignedRolesByUserId(id);`
			`let rolePermissions =`
			`userRoles.length != 0 ? await RolePermissionService.getByRoles(userRoles.map((e) => e.id)) : [];`
			`let rolePermissionStrings = rolePermissions.map((e) => e.permission);`
			`let permissionObject = PermissionHelper.convertToObject([...userPermissionStrings, ...rolePermissionStrings]);`

			`let jwtData: JWTToken = {`
			`userId: id,`
			`mail: mail,`
			`username: username,`
			`firstname: firstname,`
			`lastname: lastname,`
			`isOwner: isOwner,`
			`permissions: permissionObject,`
			`};`

			`return await JWTHelper.create(jwtData)`
			`.then((result) => {`
			`return result;`
			`})`
			`.catch((err) => {`
			`throw new InternalException("Failed accessToken creation", err);`
			`});`
			`}`
api Controller & token 2025-01-21 13:54:52 +01:00
jwt gen & rename fixes 2025-01-22 11:57:19 +01:00			`static async buildWebapiToken(token: string, expiration?: Date): Promise<string> {`
renaming api module to webapi 2025-01-22 09:39:31 +01:00			`let { id, title } = await WebapiService.getByToken(token);`
			`let webapiPermissions = await WebapiPermissionService.getByApi(id);`
			`let webapiPermissionStrings = webapiPermissions.map((e) => e.permission);`
			`let permissionObject = PermissionHelper.convertToObject(webapiPermissionStrings);`
api Controller & token 2025-01-21 13:54:52 +01:00
			`let jwtData: JWTToken = {`
change user to uuid 2025-01-29 08:53:49 +01:00			`userId: id.toString(),`
api Controller & token 2025-01-21 13:54:52 +01:00			`mail: "",`
			`username: title,`
			`firstname: "",`
			`lastname: "",`
			`isOwner: false,`
			`permissions: permissionObject,`
permissions & routes with middleware 2025-01-22 09:27:15 +01:00			`sub: "webapi_access_token",`
api Controller & token 2025-01-21 13:54:52 +01:00			`};`

jwt gen & rename fixes 2025-01-22 11:57:19 +01:00			`let overwriteExpiration =`
			`ms(JWT_EXPIRATION) < new Date().getTime() - new Date(expiration).getTime()`
			`? null`
			`: Date.now() - new Date(expiration).getTime();`

			`return await JWTHelper.create(jwtData, { expOverwrite: overwriteExpiration, useExpiration: true })`
api Controller & token 2025-01-21 13:54:52 +01:00			`.then((result) => {`
			`return result;`
			`})`
			`.catch((err) => {`
renaming api module to webapi 2025-01-22 09:39:31 +01:00			`throw new InternalException("Failed webapi accessToken creation", err);`
api Controller & token 2025-01-21 13:54:52 +01:00			`});`
			`}`
login and authentication login via totp authentication via access and refresh tokens 2024-08-22 11:40:31 +02:00			`}`