Donat/SerpentRace
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[#94] Backend

Browse Source 
https://project.mdnd-it.cc/work_packages/94
This commit is contained in:
Donát
2025-08-23 04:25:28 +02:00
parent 725516ad6c
commit 19cfa031d0
25823 changed files with 1095587 additions and 2801760 deletions
Download Patch File Download Diff File Expand all files Collapse all files
SerpentRace_Backend/dist/Application/Services/AuthMiddleware.js
Vendored
+53
View File
@@ -0,0 +1,53 @@
"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.jwtService = void 0;
exports.authRequired = authRequired;
exports.adminRequired = adminRequired;
const JWTService_1 = require("./JWTService");
const Logger_1 = require("./Logger");
exports.jwtService = new JWTService_1.JWTService();
function authRequired(req, res, next) {
const payload = exports.jwtService.verify(req);
if (!payload) {
(0, Logger_1.logAuth)('Authentication failed - No valid token', undefined, {
ip: req.ip,
userAgent: req.get ? req.get('User-Agent') : 'unknown',
path: req.path
}, req);
return res.status(401).json({ error: 'Unauthorized' });
}
(0, Logger_1.logAuth)('Authentication successful', payload.userId, {
authLevel: payload.authLevel,
orgId: payload.orgId
}, req);
const refreshed = exports.jwtService.refreshIfNeeded(payload, res);
if (refreshed) {
(0, Logger_1.logAuth)('Token refreshed', payload.userId, undefined, req);
}
req.user = payload;
next();
}
function adminRequired(req, res, next) {
const payload = exports.jwtService.verify(req);
if (!payload || payload.authLevel !== 1) {
(0, Logger_1.logWarning)('Admin access denied', {
hasPayload: !!payload,
authLevel: payload?.authLevel,
userId: payload?.userId,
ip: req.ip,
path: req.path
}, req);
return res.status(403).json({ error: 'Forbidden' });
}
(0, Logger_1.logAuth)('Admin authentication successful', payload.userId, {
authLevel: payload.authLevel,
orgId: payload.orgId
}, req);
const refreshed = exports.jwtService.refreshIfNeeded(payload, res);
if (refreshed) {
(0, Logger_1.logAuth)('Admin token refreshed', payload.userId, undefined, req);
}
req.user = payload;
next();
}
//# sourceMappingURL=AuthMiddleware.js.map