-
Notifications
You must be signed in to change notification settings - Fork 0
/
authenticate.js
48 lines (38 loc) · 1.26 KB
/
authenticate.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
var passport = require("passport");
var LocalStrategy = require("passport-local").Strategy;
var User = require("./models/user");
const JwtStrategy = require("passport-jwt").Strategy;
const ExtractJwt = require("passport-jwt").ExtractJwt;
const jwt = require("jsonwebtoken");
passport.use(new LocalStrategy(User.authenticate()));
passport.serializeUser(User.serializeUser());
passport.deserializeUser(User.deserializeUser());
exports.getToken = function (user) {
return jwt.sign(user, process.env.secretKey, { expiresIn: 36000 });
};
var opts = {};
opts.jwtFromRequest = ExtractJwt.fromAuthHeaderAsBearerToken();
opts.secretOrKey = process.env.secretKey;
exports.jwtPassport = passport.use(
new JwtStrategy(opts, (jwt_payload, done) => {
User.findOne({ _id: jwt_payload._id }, (err, user) => {
if (err) {
return done(err, false);
} else if (user) {
return done(null, user);
} else {
return done(null, false);
}
});
})
);
exports.verifyAdmin = (req, res, next) => {
if (req.user.admin == true) {
return next();
} else {
err = new Error("You are not Authorized to perform this operation");
err.status = 403;
return next(err);
}
};
exports.verifyUser = passport.authenticate("jwt", { session: false });