mirror of
https://github.com/jeffvli/feishin.git
synced 2026-05-08 21:10:12 +02:00
jeffvli
90 lines
2.4 KiB
TypeScript
90 lines
2.4 KiB
TypeScript
import bcrypt from 'bcryptjs';
|
|
import jwt from 'jsonwebtoken';
|
|
import { AuthUser } from '@middleware/authenticate';
|
|
import { prisma } from '../lib';
|
|
import { generateRefreshToken, generateToken } from '../lib/passport';
|
|
import { ApiSuccess, randomString } from '../utils';
|
|
import { ApiError } from '../utils/api-error';
|
|
|
|
const login = async (options: { username: string }) => {
|
|
const { username } = options;
|
|
const user = await prisma.user.findUnique({
|
|
include: { serverFolderPermissions: true, serverPermissions: true },
|
|
where: { username },
|
|
});
|
|
|
|
if (!user) {
|
|
throw ApiError.notFound('The user does not exist.');
|
|
}
|
|
|
|
const serverPermissions = user.serverPermissions.map((p) => p.id);
|
|
|
|
const otherProperties = {
|
|
isAdmin: user.isAdmin,
|
|
serverFolderPermissions: user.serverFolderPermissions.map((p) => p.id),
|
|
serverPermissions,
|
|
username: user.username,
|
|
};
|
|
|
|
const accessToken = generateToken(user.id, otherProperties);
|
|
const refreshToken = generateRefreshToken(user.id, otherProperties);
|
|
|
|
await prisma.refreshToken.create({
|
|
data: { token: refreshToken, userId: user.id },
|
|
});
|
|
|
|
return { ...user, accessToken, refreshToken };
|
|
};
|
|
|
|
const register = async (options: { password: string; username: string }) => {
|
|
const { username, password } = options;
|
|
const userExists = await prisma.user.findUnique({ where: { username } });
|
|
|
|
if (userExists) {
|
|
throw ApiError.conflict('The user already exists.');
|
|
}
|
|
|
|
const hashedPassword = await bcrypt.hash(password, 12);
|
|
const user = await prisma.user.create({
|
|
data: {
|
|
deviceId: `${username}_${randomString(10)}`,
|
|
enabled: false,
|
|
password: hashedPassword,
|
|
username,
|
|
},
|
|
});
|
|
|
|
return user;
|
|
};
|
|
|
|
const logout = async (options: { user: AuthUser }) => {
|
|
const { user } = options;
|
|
await prisma.refreshToken.deleteMany({
|
|
where: { userId: user.id },
|
|
});
|
|
|
|
return ApiSuccess.noContent({ data: {} });
|
|
};
|
|
|
|
const refresh = async (options: { refreshToken: string }) => {
|
|
const { refreshToken } = options;
|
|
const user = jwt.verify(refreshToken, String(process.env.TOKEN_SECRET));
|
|
const { id } = user as { exp: number; iat: number; id: string };
|
|
|
|
const token = await prisma.refreshToken.findUnique({
|
|
where: { token: refreshToken },
|
|
});
|
|
|
|
if (!token) throw ApiError.unauthorized('Invalid refresh token.');
|
|
|
|
const newToken = generateToken(id);
|
|
return { accessToken: newToken };
|
|
};
|
|
|
|
export const authService = {
|
|
login,
|
|
logout,
|
|
refresh,
|
|
register,
|
|
};
|