blob: f012054b8461fbfad79518b4f26688c09275a0dd (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
const jwt = require('jsonwebtoken');
const Session = require('../models/Session');
const auth = async (req, res, next) => {
try {
const token = req.cookies.token || '';
if (!token) {
throw new Error();
}
try {
const {sessionId, user} = jwt.verify(token, process.env.JWT_SECRET);
req.sessionId = sessionId;
req.loggedUser = JSON.parse(user);
return next();
} catch(er) {
if (er.message && er.message === 'jwt expired') {
const {sessionId, user} = jwt.decode(token);
const userData = JSON.parse(user);
const session = await Session.findById(sessionId);
if (!session || session.userId.toString() !== userData.userId) {
throw new Error();
}
session.setAccessDate();
req.newToken = session.generateJwtToken(userData);;
req.sessionId = sessionId;
req.loggedUser = userData;
return next();
}
throw new Error();
}
} catch (err) {
res.redirect('/login');
}
};
module.exports = auth;
|
