Archives
/
RTL
mirror of https://github.com/Ride-The-Lightning/RTL
2
0
Fork 0
Code Issues Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
backend-config-fix
Release-0.15.1
cln-boltz
master
Release-0.15.0
ng-17
clnrest-migration
Release-0.14.1
ng-lint
ng-16
ux-link-fixes
lnd-taproot
rtl-donation
csv-download
ecl-routing-fee
lnd-payments-sort
revert-1297-loop-version
loop-version
ecl-channel-response-update
cln-prefix-version-fix
cln-peer-swap
cln-localremote-swap
Release-0.14.0
cln-msat-migration
cln-channel-filter
cln-htlc-list
ecl-circular-rebalance
lnd-lease-utxo
home-redirect-filter
modal-to-graph-lookup
connect-node-on-lookup
Release-0.13.6
pr/1205
Release-0.13.5
default-invoice-expiry
configurable-dblocation
switch-toggle
enhanced-error-message
bug-testing
bugfix-password-change-button
Release-0.13.4
fix-2fa
Release-0.13.3
ecl-default-filter-bugfix
Release-0.13.2
cln-ps-swap-lists
cln-ps-swapin-swapout
cln-ps-listpeers
Release-0.13.1
cln-peerswap-config
Release-0.13.0
Release-0.12.3
Release-0.12.2
Release-0.12.1
Release-0.12.0
Release-0.11.2
Release-0.11.1
Release-0.11.0
Release-0.10.2
Release-0.10.1
v0.15.0
v0.14.1
v0.14.0
v0.13.6
v0.13.5
v0.13.4
v0.13.3
v0.13.2
v0.13.1
v0.13.0
v0.12.3
v0.12.2
v0.12.1
v0.12.0
v0.11.2
v0.11.1
v0.11.0
v0.10.2
v0.10.1
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.4
v0.8.3
v0.8.2
v0.8.1
v0.8.0
v0.7.1
v0.7.0
v0.6.8
v0.6.7
v0.6.6
v0.6.5
v0.6.4
v0.6.1
v0.6.0
0.1.6-alpha
0.4.2
v0.1.11-alpha
v0.1.12-alpha
v0.1.13-alpha
v0.1.14-alpha
v0.1.7-alpha
v0.11.0-rc2
v0.11.0-rc3
v0.11.0-rc5
v0.11.0-rc6
v0.11.2-rc1
v0.11.2-rc2
v0.11.2-rc3
v0.11.3-rc1
v0.12.0-rc1
v0.12.0-rc2
v0.12.0-rc3
v0.12.4-rc1
v0.12.4-rc2
v0.12.4-rc3
v0.12.4-rc4
v0.12.4-rc5
v0.13.0-rc1
v0.13.0-rc2
v0.2.0
v0.2.1
v0.2.10
v0.2.11
v0.2.12
v0.2.13
v0.2.14
v0.2.15
v0.2.16
v0.2.2
v0.2.3
v0.2.4
v0.2.5
v0.2.6
v0.2.7
v0.2.8
v0.2.9
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.4.0
v0.4.1
v0.4.2
v0.4.3
v0.4.4
v0.4.5
v0.4.6
v0.4.7
v0.5.0
v0.5.1
v0.5.2
v0.5.3
v0.5.4
v0.6.2
v0.6.3
v0.6.4-rc
v0.6.4-rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '86fd2a7b29'
${ noResults }
RTL/server/utils/authCheck.ts

64 lines
2.5 KiB
TypeScript
Raw Blame History

import jwt from 'jsonwebtoken';
import csurf from 'csurf/index.js';
import { Common, CommonService } from './common.js';
import { Logger, LoggerService } from './logger.js';
const common: CommonService = Common;
const logger: LoggerService = Logger;
const csurfProtection = csurf({ cookie: true });
export const isAuthenticated = (req, res, next) => {
try {
const token = req.headers.authorization.split(' ')[1];
jwt.verify(token, common.secret_key);
next();
} catch (error) {
const errMsg = 'Authentication Failed! Please Login First!';
const err = common.handleError({ statusCode: 401, message: 'Authentication Error', error: errMsg }, 'AuthCheck', errMsg, req.session.selectedNode);
return res.status(err.statusCode).json({ message: err.message, error: err.error });
}
};
export const verifyWSUser = (info, next) => {
const headers = JSON.parse(JSON.stringify(info.req.headers));
const protocols = !info.req.headers['sec-websocket-protocol'] ? [] : info.req.headers['sec-websocket-protocol'].split(',')?.map((s) => s.trim());
const jwToken = (protocols && protocols.length > 0) ? protocols[0] : '';
if (!jwToken || jwToken === '') {
next(false, 401, 'Authentication Failed! Please Login First!');
} else {
jwt.verify(jwToken, common.secret_key, (verificationErr) => {
if (verificationErr) {
next(false, 401, 'Authentication Failed! Please Login First!');
} else {
try {
let updatedReq = null;
try {
updatedReq = JSON.parse(JSON.stringify(info.req));
} catch (err) {
updatedReq = info.req;
}
let cookies = null;
try {
cookies = '{"' + headers.cookie?.replace(/ /g, '')?.replace(/;/g, '","').trim()?.replace(/[=]/g, '":"') + '"}';
updatedReq['cookies'] = JSON.parse(cookies);
} catch (err) {
cookies = {};
updatedReq['cookies'] = JSON.parse(cookies);
logger.log({ selectedNode: common.initSelectedNode, level: 'WARN', fileName: 'AuthCheck', msg: '403 Unable to read CSRF token cookie', data: err });
}
csurfProtection(updatedReq, null, (err) => {
if (err) {
next(false, 403, 'Invalid CSRF token!');
} else {
next(true);
}
});
} catch (err) {
logger.log({ selectedNode: common.initSelectedNode, level: 'WARN', fileName: 'AuthCheck', msg: '403 Unable to verify CSRF token', data: err });
next(true);
}
}
});
}
};
Reference in New Issue View Git Blame Copy Permalink