Refactored - now includes fullstack AUTH

2021-09-28 18:53:02 +03:00
parent c349907802
commit 2f40cf797c
34 changed files with 6684 additions and 695 deletions
--- a/server/middlewares/jsonwebtoken.js
+++ b/server/middlewares/jsonwebtoken.js
@@ -0,0 +1,39 @@
+const jwt = require('jsonwebtoken')
+const {JWT_SECRET} = require('../constants')
+
+const signToken = (payload = {}, expiresIn = '12h') => {
+  const token = jwt.sign(payload, JWT_SECRET, {expiresIn})
+
+  return token
+}
+
+const authorizeBearerToken = (request, response, next) => {
+  try {
+    const token = request.headers.authorization?.split(' ')[1]
+    if (!token) {
+      return response.status(400).json({
+        message: 'Token not provided',
+      })
+    }
+
+    const auth = jwt.verify(token, JWT_SECRET)
+    if (!auth) {
+      return response.status(401).json({
+        message: 'Unauthorized - invalid token',
+      })
+    }
+
+    request.auth = auth
+    next()
+  } catch (error) {
+    console.error(error)
+    return response.status(401).json({
+      message: 'Unauthorized - invalid token',
+    })
+  }
+}
+
+module.exports = {
+  authorizeBearerToken,
+  signToken,
+}