Files
myDrive/backend/middleware/tempAuth.js
T
2020-04-13 15:55:27 -04:00

57 lines
1.3 KiB
JavaScript

const jwt = require("jsonwebtoken");
import User from "../models/user";
const env = require("../enviroment/env");
const tempAuth = async(req, res, next) => {
try {
const token = req.params.tempToken;
const decoded = await jwt.verify(token, env.password);
const iv = decoded.iv;
const user = await User.findOne({_id: decoded._id})
const encrpytionKey = user.getEncryptionKey();
const encryptedToken = user.encryptToken(token, encrpytionKey, iv);
let tokenFound = false;
for (let i = 0; i < user.tempTokens.length; i++) {
const currentToken = user.tempTokens[i].token;
if (currentToken === encryptedToken) {
tokenFound = true;
break;
}
}
if (!user || !tokenFound) {
throw new Error("User Not Found")
} else {
user.tempTokens = user.tempTokens.filter((filterToken) => {
return filterToken.token !== encryptedToken
})
await user.save();
req.user = user;
req.auth = true;
req.encryptedTempToken = encryptedToken;
next();
}
} catch (e) {
console.log(e);
res.status(401).send();
}
}
module.exports = tempAuth;