Colubrina/backend/lib/authorize.js

const { User, Theme, Session } = require("../models")
const Errors = require("./errors")
const { Op } = require("sequelize")
module.exports = async function (req, res, next) {
  try {
    if (req.header("Authorization") && req.header("Authorization") !== "null") {
      const token = req.header("Authorization")
      const session = await Session.findOne({
        where: {
          session: token,
          expiredAt: {
            [Op.gt]: new Date()
          }
        }
      })
      if (session) {
        const user = await User.findOne({
          where: { id: session.userId },
          attributes: {
            exclude: ["totp", "password", "emailToken"]
          },
          include: [
            {
              model: Theme,
              as: "themeObject"
            }
          ]
        })
        if (user) {
          if (user.banned) {
            res.status(401).json({ errors: [Errors.banned] })
            return
          }
          await user.update({
            lastSeenAt: new Date().toISOString()
          })
          req.user = user
          next()
        }
      } else {
        res.status(401).json({ errors: [Errors.unauthorized] })
      }
    } else {
      res.status(401).json({
        errors: [
          {
            message: "You need to be logged in."
          }
        ]
      })
    }
  } catch (e) {
    console.log(e)
  }
}
init 2022-06-05 22:58:18 +10:00			`const { User, Theme, Session } = require("../models")`
			`const Errors = require("./errors")`
v1.0.13 2022-08-03 19:11:19 +10:00			`const { Op } = require("sequelize")`
init 2022-06-05 22:58:18 +10:00			`module.exports = async function (req, res, next) {`
			`try {`
			`if (req.header("Authorization") && req.header("Authorization") !== "null") {`
			`const token = req.header("Authorization")`
v1.0.13 2022-08-03 19:11:19 +10:00			`const session = await Session.findOne({`
			`where: {`
			`session: token,`
			`expiredAt: {`
			`[Op.gt]: new Date()`
			`}`
			`}`
			`})`
init 2022-06-05 22:58:18 +10:00			`if (session) {`
			`const user = await User.findOne({`
			`where: { id: session.userId },`
			`attributes: {`
1.0.8 2022-07-31 14:56:43 +10:00			`exclude: ["totp", "password", "emailToken"]`
init 2022-06-05 22:58:18 +10:00			`},`
			`include: [`
			`{`
			`model: Theme,`
			`as: "themeObject"`
			`}`
			`]`
			`})`
			`if (user) {`
update 2022-07-29 19:20:19 +10:00			`if (user.banned) {`
1.0.25 2022-08-31 18:46:40 +10:00			`res.status(401).json({ errors: [Errors.banned] })`
update 2022-07-29 19:20:19 +10:00			`return`
			`}`
init 2022-06-05 22:58:18 +10:00			`await user.update({`
			`lastSeenAt: new Date().toISOString()`
			`})`
			`req.user = user`
			`next()`
			`}`
			`} else {`
1.0.25 2022-08-31 18:46:40 +10:00			`res.status(401).json({ errors: [Errors.unauthorized] })`
init 2022-06-05 22:58:18 +10:00			`}`
			`} else {`
			`res.status(401).json({`
			`errors: [`
			`{`
			`message: "You need to be logged in."`
			`}`
			`]`
			`})`
			`}`
			`} catch (e) {`
			`console.log(e)`
			`}`
			`}`