login and authentication

login via totp authentication via access and refresh tokens
2024-08-22 11:40:31 +02:00 · 2024-08-22 11:40:31 +02:00 · e1ec65350d
commit e1ec65350d
parent 6696975bee
28 changed files with 3750 additions and 0 deletions
--- a/src/middleware/authenticate.ts
+++ b/src/middleware/authenticate.ts
@ -0,0 +1,37 @@
+import { Request, Response } from "express";
+import jwt from "jsonwebtoken";
+import BadRequestException from "../exceptions/badRequestException";
+import UnauthorizedRequestException from "../exceptions/unauthorizedRequestException";
+import InternalException from "../exceptions/internalException";
+import { JWTHelper } from "../helpers/jwtHelper";
+
+export default async function authenticate(req: Request, res: Response, next: Function) {
+  const bearer = req.headers.authorization;
+
+  if (!bearer) {
+    throw new BadRequestException("Provide Authorization Header");
+  }
+
+  let decoded: string | jwt.JwtPayload;
+  await JWTHelper.validate(bearer)
+    .then((result) => {
+      decoded = result;
+    })
+    .catch((err) => {
+      if (err == "jwt expired") {
+        throw new UnauthorizedRequestException("Token expired");
+      } else {
+        throw new BadRequestException("Failed Authorization Header decoding");
+      }
+    });
+
+  if (typeof decoded == "string" || !decoded) {
+    throw new InternalException("process failed");
+  }
+
+  req.userId = decoded.userId;
+  req.username = decoded.username;
+  req.rights = decoded.rights;
+
+  next();
+}