Files
myDrive/backend/middleware/tempAuthVideo.js
T
2020-04-18 00:16:31 -04:00

56 lines
1.3 KiB
JavaScript

const jwt = require("jsonwebtoken");
import User from "../models/user";
import env from "../enviroment/env";
const tempAuthVideo = async(req, res, next) => {
try {
const token = req.params.tempToken;
const decoded = await jwt.verify(token, env.password);
const iv = decoded.iv;
if (req.params.uuid !== decoded.cookie) {
throw new Error("Cookie mismatch")
}
const user = await User.findOne({_id: decoded._id})
const encrpytionKey = user.getEncryptionKey();
const encryptedToken = user.encryptToken(token, encrpytionKey, iv);
let tokenFound = false;
for (let i = 0; i < user.tempTokens.length; i++) {
const currentToken = user.tempTokens[i].token;
if (currentToken === encryptedToken) {
tokenFound = true;
break;
}
}
if (!user || !tokenFound) {
throw new Error("User not found");
} else {
await user.save();
req.user = user;
req.auth = true;
req.encryptedTempToken = encryptedToken;
next();
}
} catch (e) {
console.log(e);
res.status(401).send();
}
}
module.exports = tempAuthVideo;