57 lines
1.3 KiB
JavaScript
57 lines
1.3 KiB
JavaScript
const jwt = require("jsonwebtoken");
|
|
import User from "../models/user";
|
|
const env = require("../enviroment/env");
|
|
|
|
const tempAuth = async(req, res, next) => {
|
|
|
|
try {
|
|
|
|
const token = req.params.tempToken;
|
|
|
|
const decoded = await jwt.verify(token, env.password);
|
|
|
|
const iv = decoded.iv;
|
|
|
|
const user = await User.findOne({_id: decoded._id})
|
|
const encrpytionKey = user.getEncryptionKey();
|
|
|
|
const encryptedToken = user.encryptToken(token, encrpytionKey, iv);
|
|
|
|
let tokenFound = false;
|
|
for (let i = 0; i < user.tempTokens.length; i++) {
|
|
|
|
const currentToken = user.tempTokens[i].token;
|
|
|
|
if (currentToken === encryptedToken) {
|
|
tokenFound = true;
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (!user || !tokenFound) {
|
|
|
|
throw new Error("User Not Found")
|
|
|
|
} else {
|
|
|
|
user.tempTokens = user.tempTokens.filter((filterToken) => {
|
|
|
|
return filterToken.token !== encryptedToken
|
|
})
|
|
|
|
await user.save();
|
|
|
|
req.user = user;
|
|
req.auth = true;
|
|
req.encryptedTempToken = encryptedToken;
|
|
|
|
next();
|
|
}
|
|
|
|
} catch (e) {
|
|
console.log(e);
|
|
res.status(401).send();
|
|
}
|
|
}
|
|
|
|
module.exports = tempAuth; |