-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathindex.js
225 lines (201 loc) · 6.46 KB
/
index.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
// Load environment variables from .env file
require('dotenv').config();
const cors = require('cors');
const express = require('express');
const session = require('express-session');
const { sequelize, User, UserConfig, UserWallet } = require('./models');
const SequelizeStore = require('connect-session-sequelize')(session.Store);
const passport = require('passport');
const JwtStrategy = require('passport-jwt').Strategy;
const ExtractJwt = require('passport-jwt').ExtractJwt;
const jwt = require('jsonwebtoken');
const { Op } = require('sequelize');
// List of allowed origins
const allowedOrigins = [
'http://localhost:8100',
'http://localhost:3002',
'http://localhost:5173',
process.env.UI_ENDPOINT
];
// CORS configuration function
const corsOptions = {
origin: (origin, callback) => {
if (allowedOrigins.includes(origin) || !origin) {
callback(null, true);
} else {
callback(new Error('Not allowed by CORS'));
}
},
credentials: true // Allow credentials (cookies, authorization headers, etc.)
};
// Initialize Express app
const app = express();
app.use(cors(corsOptions));
// Set up body parsing middleware
app.use(express.json());
app.use(express.urlencoded({ extended: true }));
sequelize
.authenticate()
.then(() => console.log('Database connected...'))
.catch((err) => console.log('Error: ' + err));
// Set up session store
const sessionStore = new SequelizeStore({
db: sequelize,
tableName: 'Sessions'
});
app.use(
session({
secret: process.env.SECRET,
store: sessionStore,
resave: false,
saveUninitialized: false,
cookie: { secure: process.env.UI_SSL === 'true' } // Set to true if using HTTPS
})
);
sessionStore.sync();
app.set('trust proxy', 1);
app.use(passport.initialize());
app.use(passport.session());
// Passport.js serialization and deserialization
passport.serializeUser((user, done) => {
done(null, user.id);
});
passport.deserializeUser((id, done) => {
User.findByPk(id)
.then((user) => done(null, user))
.catch((err) => done(err, null));
});
const opts = {
jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
secretOrKey: process.env.JWT_SECRET
};
passport.use(
new JwtStrategy(opts, (jwtPayload, done) => {
User.findByPk(jwtPayload.id)
.then((user) => {
if (user) {
return done(null, user);
}
return done(null, false);
})
.catch((err) => done(err, false));
})
);
function isBooleanString(str) {
if (str.toLowerCase() === 'true') {
return true;
} else if (str.toLowerCase() === 'false') {
return false;
} else {
return null; // or handle cases where the string is not a boolean value
}
}
app.get('/check', async (req, res, next) => {
let isAuthEnabled;
const authEnabledConfig = await UserConfig.findOne({
where: {
option: 'auth_enabled'
}
});
isAuthEnabled = authEnabledConfig
? isBooleanString(authEnabledConfig.value)
: true;
if (!isAuthEnabled) {
let user = {};
user.config = await UserConfig.findAll({
where: {
option: {
[Op.in]: PUBLIC_PROPERTIES
}
}
});
return res.json({ authenticated: false, user: user });
}
if (req.isAuthenticated()) {
const user = await User.findOne({
where: { username: req.user.username }
});
const { password, ...safeUser } = user.dataValues;
safeUser.config = await user.config();
return res.json({ authenticated: true, user: safeUser });
}
return res.json({ authenticated: false, user: null });
// passport.authenticate('jwt', { session: false }, (err, user, info) => {
// if (err) return next(err);
// if (!user) return res.status(401).json({ authenticated: false });
// req.user = user;
// res.json({ authenticated: true, user });
// })(req, res, next);
});
app.get('/wallets', async (req, res, next) => {
if (req.isAuthenticated()) {
const user = await User.findOne({
where: { username: req.user.username }
});
const wallets = await UserWallet.findAll({
where: {
user_id: user.id
}
});
const { password, ...safeUser } = user.dataValues;
safeUser.config = await user.config();
return res.json({ authenticated: true, user: safeUser, wallets });
}
return res.json({ authenticated: false, user: null });
});
app.post('/login', (req, res, next) => {
try {
const { username, password } = req.body;
if (!username || !password) {
return res
.status(400)
.json({ message: 'Username and password are required' });
}
User.findOne({ where: { username } })
.then((user) => {
if (!user || !user.validPassword(password)) {
return res
.status(401)
.json({ message: 'Invalid credentials' });
}
req.login(user, async (err) => {
if (err) {
return next(err);
}
const token = jwt.sign(
{ id: user.id },
process.env.JWT_SECRET,
{ expiresIn: '1h' }
);
const { password, ...safeUser } = user.dataValues;
safeUser.config = await user.config();
res.json({ message: 'Login successful', user: safeUser });
});
})
.catch((err) => {
console.error(err);
res.status(500).json({ message: 'Internal server error' });
});
} catch (e) {
console.error(e);
}
});
app.post('/logout', (req, res, next) => {
req.logout((err) => {
if (err) {
return next(err);
}
req.session.destroy((err) => {
if (err) {
return next(err);
}
res.clearCookie('connect.sid');
res.json({ message: 'Logout successful' });
});
});
});
// Start the server
const PORT = process.env.PORT || 3000;
app.listen(PORT, () => {
console.log(`Authentication service is running on port ${PORT}`);
});