umami/lib/middleware.js

import { createMiddleware, unauthorized, badRequest } from 'next-basics';
import debug from 'debug';
import cors from 'cors';
import { findSession } from 'lib/session';
import { parseAuthToken, parseShareToken, getAuthToken } from 'lib/auth';
import redis from 'lib/redis';

const log = debug('umami:middleware');

export const useCors = createMiddleware(cors());

export const useSession = createMiddleware(async (req, res, next) => {
  const session = await findSession(req);

  if (!session) {
    log('useSession:session-not-found');
    return badRequest(res);
  }

  req.session = session;
  next();
});

export const useAuth = createMiddleware(async (req, res, next) => {
  const token = redis.enabled ? await redis.get(getAuthToken(req)) : await parseAuthToken(req);
  const shareToken = await parseShareToken(req);

  if (!token && !shareToken) {
    log('useAuth:user-not-authorized');
    return unauthorized(res);
  }

  req.auth = { ...token, shareToken };
  next();
});
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00			`import { createMiddleware, unauthorized, badRequest } from 'next-basics';`
			`import debug from 'debug';`
Added CORS middleware. Updated umami script. 2020-07-18 19:36:46 +02:00			`import cors from 'cors';`
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00			`import { findSession } from 'lib/session';`
fix useAuth 2022-11-08 21:51:04 +01:00			`import { parseAuthToken, parseShareToken, getAuthToken } from 'lib/auth';`
			`import redis from 'lib/redis';`
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00
			`const log = debug('umami:middleware');`
Added CORS middleware. Updated umami script. 2020-07-18 19:36:46 +02:00
Move auth token logic to useApi hook. 2022-02-27 00:53:45 +01:00			`export const useCors = createMiddleware(cors());`
Auth and session middleware. 2020-07-28 08:52:14 +02:00
Move auth token logic to useApi hook. 2022-02-27 00:53:45 +01:00			`export const useSession = createMiddleware(async (req, res, next) => {`
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00			`const session = await findSession(req);`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
			`if (!session) {`
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00			`log('useSession:session-not-found');`
Add support for MySQL. 2020-08-12 05:05:40 +02:00			`return badRequest(res);`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`}`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
			`req.session = session;`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`next();`
			`});`

Move auth token logic to useApi hook. 2022-02-27 00:53:45 +01:00			`export const useAuth = createMiddleware(async (req, res, next) => {`
fix useAuth 2022-11-08 21:51:04 +01:00			`const token = redis.enabled ? await redis.get(getAuthToken(req)) : await parseAuthToken(req);`
Updated useConfig. Added SSO page. 2022-10-31 19:02:37 +01:00			`const shareToken = await parseShareToken(req);`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
Added redis check to verify. 2022-11-08 21:28:45 +01:00			`if (!token && !shareToken) {`
Refactored redis usage. Added lib/cache. 2022-11-08 07:35:51 +01:00			`log('useAuth:user-not-authorized');`
Add support for MySQL. 2020-08-12 05:05:40 +02:00			`return unauthorized(res);`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`}`
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00
Added redis check to verify. 2022-11-08 21:28:45 +01:00			`req.auth = { ...token, shareToken };`
Auth and session middleware. 2020-07-28 08:52:14 +02:00			`next();`
			`});`