Typescript Bootcamp

jhades · jhades · commit 77c8875e5d22 · 2022-10-12T17:53:00.000+02:00
diff --git a/rest-api/src/middlewares/authentication-middleware.ts b/rest-api/src/middlewares/authentication-middleware.ts
@@ -1,8 +1,38 @@
 import {NextFunction, Request, Response} from "express";
+import {logger} from "../logger";
+const JWT_SECRET = process.env.JWT_SECRET;
+const jwt = require("jsonwebtoken");
 
 export function checkIfAuthenticated(
-    request: Request, response: Response, next:NextFunction
-) {
+    request: Request, response: Response, next:NextFunction) {
 
+    const authJwtToken = request.headers.authorization;
 
+    if (!authJwtToken) {
+        logger.info(`The authentication JWT is not present, access denied.`);
+        response.sendStatus(403);
+        return;
+    }
+
+    checkJwtValidity(authJwtToken)
+        .then(user => {
+
+            logger.info(`Authentication JWT successfully decoded:`, user);
+            request["user"] = user;
+
+            next();
+        })
+        .catch(err => {
+            logger.error(`Could not validate the authentication JWT, access denied.`, err);
+            response.sendStatus(403);
+        });
+}
+
+async function checkJwtValidity(authJwtToken:string) {
+
+    const user = await jwt.verify(authJwtToken, JWT_SECRET);
+
+    logger.info("Found user details in JWT:", user);
+
+    return user;
 }
diff --git a/rest-api/src/routes/get-all-courses.ts b/rest-api/src/routes/get-all-courses.ts
@@ -8,7 +8,7 @@ export async function getAllCourses(
 
     try {
 
-        logger.debug(`Called getAllCourses()`);
+        logger.debug(`Called getAllCourses()`, request["user"]);
 
         const courses = await AppDataSource
             .getRepository(Course)
