blob: 4e15aa889522c7ef330c2cf1aa4de979741eee85 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
|
const jwt = require('jsonwebtoken');
const User = require('../models/User');
const Session = require('../models/Session');
const redirectLogged = async (req, res, next) => {
try {
const token = req.cookies.token || '';
if (!token) {
throw new Error();
}
try {
const token = jwt.verify(token, process.env.JWT_SECRET);
if (!token.user || !token.user.userId){
throw new Error();
}
return res.redirect('/admin');
} catch(er) {
if (er.message && er.message === 'jwt expired') {
const {sessionId, user} = jwt.decode(token);
const userData = JSON.parse(user);
const session = await Session.findById(sessionId);
if (!session || session.userId.toString() !== userData.userId) {
throw new Error();
}
session.setAccessDate();
const newToken = session.generateJwtToken(userData);
return res
.cookie('token', newToken, {
maxAge: parseInt(process.env.COOKIE_MAX_AGE),
secure: false,
SameSite: 'Strict',
httpOnly: true,
})
.redirect('/admin');
throw new Error();
}
throw new Error();
}
} catch (err) {
return next();
}
};
module.exports = redirectLogged;
|
