Modify to work with Jwt authorization schema

norkator · norkator · commit af64a52756e0 · 2020-06-17T11:13:01.000+03:00
diff --git a/ApiTesting.http b/ApiTesting.http
@@ -11,4 +11,33 @@ Content-Type: application/json
   "password": "toohardpasswd"
 }
 
+###################################################################################
+###### LOGIN                                                                 ######
+###################################################################################
+### Send POST request with json body
+POST http://localhost:3000/auth/login
+Content-Type: application/json
+
+{
+  "email": "test@tester.com",
+  "password": "toohardpasswd"
+}
+
+###################################################################################
+###### EXAMPLE ROUTE TESTS, WITH AUTH AND NO AUTH                            ######
+###################################################################################
+
+### No authentication, result will be ok without token
+GET http://localhost:3000/example-no-auth
+Accept: application/json
+
+### Token missing, throw error 400
+GET http://localhost:3000/example-with-auth
+Accept: application/json
+
+### Token provided, get token from login
+GET http://localhost:3000/example-with-auth
+Accept: application/json
+Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJlbWFpbCI6InRlc3RAdGVzdGVyLmNvbSIsImlhdCI6MTU5MjM4MTIzNiwiZXhwIjoxNTkyMzg0ODM2fQ.bZrrHCvdxeZscfVZUKzRtLO-4o2DoNwUnqFbYiFAuWA
+
 ###
diff --git a/src/components/Authentication/index.ts b/src/components/Authentication/index.ts
@@ -2,9 +2,8 @@ import {NextFunction, Request, Response} from 'express';
 import app from "../../server/server";
 import HttpError from "../../server/error";
 import * as jwt from 'jsonwebtoken';
-import {UserModel, UserModelInterface} from "../../database/models/user";
+import {UserModelInterface} from "../../database/models/user";
 import * as User from '../../database/dao/user'
-import * as crypto from 'crypto';
 import * as bcrypt from 'bcrypt';
 
 /**
@@ -77,5 +76,48 @@ export async function createAccount(req: Request, res: Response, next: NextFunct
  * @returns {Promise < void >}
  */
 export async function login(req: Request, res: Response, next: NextFunction): Promise<void> {
-    res.json({result: 'ok'});
+    try {
+
+        // Details from post body
+        const user = <UserModelInterface>{
+            email: req.body.email,
+            password: req.body.password
+        };
+
+        // Check for mandatory details
+        if (user.email === undefined || user.password === undefined) {
+            throw new Error('Missing login details!');
+        }
+
+        // Find user with email
+        const dbUser: UserModelInterface = await User.findOne(<UserModelInterface>user);
+
+
+        const isMatched: boolean = await bcrypt.compare(user.password, dbUser.password);
+        if (isMatched) {
+
+            const token: string = jwt.sign({email: user.email}, app.get('secret'), {
+                expiresIn: app.get('jwt-expire')
+            });
+
+            res.json({
+                name: dbUser.name,
+                email: dbUser.email,
+                status: 200,
+                token: token,
+                message: 'Login authentication success'
+            });
+        } else {
+            throw new Error('Invalid password or email');
+        }
+
+    } catch (error) {
+        if (error.code === 500) {
+            return next(new HttpError(error.message.status, error.message));
+        }
+        res.json({
+            status: 400,
+            message: error.message
+        });
+    }
 }
diff --git a/src/components/Authentication/interface.ts b/src/components/Authentication/interface.ts
diff --git a/src/components/Authentication/service.ts b/src/components/Authentication/service.ts
diff --git a/src/routes/ExampleRouter.ts b/src/routes/ExampleRouter.ts
@@ -8,7 +8,6 @@ const router: Router = Router();
 
 router.get('/', ExampleComponent.test);
 // router.post('/', ExampleComponent.create);
-// router.get('/:id', ExampleComponent.findOne);
 // router.delete('/:id', ExampleComponent.remove);
 
 /**
diff --git a/src/routes/index.ts b/src/routes/index.ts
@@ -1,6 +1,7 @@
 import * as express from 'express';
 import * as http from 'http';
 import * as swaggerUi from 'swagger-ui-express';
+import * as jwtConfig from '../server/jwtAuth';
 
 import AuthenticationRouter from '../routes/AuthenticationRouter'
 import ExampleRouter from '../routes/ExampleRouter'
@@ -24,25 +25,16 @@ try {
 export function init(app: express.Application): void {
     const router: express.Router = express.Router();
 
-    /**
-     * @description
-     *  Forwards any requests to the /v1/users URI to our UserRouter
-     *  Also, check if user authenticated
-     * @constructs
-     */
-    // app.use('/v1/users', jwtConfig.isAuthenticated, UserRouter);
 
     /**
-     * @description Forwards any requests to the /auth URI to our AuthRouter
-     * @constructs
+     * Specify main routes and their routers
+     * either with authentication required or not
+     * see examples below
      */
-    app.use('/auth', AuthenticationRouter);
 
-    /**
-     * @description Forwards any requests to the /example URI to our ExampleRouter
-     * @constructs
-     */
-    app.use('/example', ExampleRouter);
+    app.use('/auth', AuthenticationRouter);
+    app.use('/example-no-auth', ExampleRouter);
+    app.use('/example-with-auth', jwtConfig.isAuthenticated, ExampleRouter);
 
     /**
      * @description
@@ -55,7 +47,7 @@ export function init(app: express.Application): void {
         app.get('/docs', swaggerUi.setup(swaggerDoc));
     } else {
         app.get('/docs', (req, res) => {
-            res.send('<p>Seems like you doesn\'t have <code>swagger.json</code> file.</p>' +
+            res.send('<p>Seems like you don\'t have <code>swagger.json</code> file.</p>' +
                 '<p>For generate doc file use: <code>swagger-jsdoc -d swagger.js -o swagger.json</code> in terminal</p>' +
                 '<p>Then, restart your application</p>');
         });
diff --git a/src/server/jwtAuth.ts b/src/server/jwtAuth.ts
@@ -0,0 +1,44 @@
+import * as jwt from 'jsonwebtoken';
+import {NextFunction, Request, Response} from 'express';
+import app from '../server/server';
+import HttpError from '../server/error';
+import * as http from 'http';
+
+interface RequestWithUser extends Request {
+    user: object | string;
+}
+
+/**
+ *
+ * @param {RequestWithUser} req
+ * @param {Response} res
+ * @param {NextFunction} next
+ * @returns {void}
+ * @swagger
+ *  components:
+ *   securitySchemes:
+ *     bearerAuth:
+ *       type: http
+ *       scheme: bearer
+ *       bearerFormat: JWT
+ *       name: authorization
+ */
+export function isAuthenticated(req: RequestWithUser, res: Response, next: NextFunction): void {
+    const jwtToken: any = req.headers['authorization'].replace(/^Bearer\s/, '');
+
+    if (jwtToken) {
+        try {
+            const user: object | string = jwt.verify(jwtToken, app.get('secret'));
+
+            req.user = user;
+
+            return next();
+
+        } catch (error) {
+            return next(new HttpError(401, http.STATUS_CODES[401]));
+        }
+    }
+
+    return next(new HttpError(400, 'No token provided'));
+
+}
diff --git a/swagger.json b/swagger.json
@@ -34,10 +34,11 @@
       }
     },
     "securitySchemes": {
-      "ApiKeyAuth": {
-        "type": "apiKey",
-        "in": "header",
-        "name": "x-access-token"
+      "bearerAuth": {
+        "type": "http",
+        "scheme": "bearer",
+        "bearerFormat": "JWT",
+        "name": "authorization"
       }
     }
   },

Original file line number	Diff line number	Diff line change
`@@ -34,10 +34,11 @@`
`34`	`34`	`}`
`35`	`35`	`},`
`36`	`36`	`"securitySchemes": {`
`37`		`- "ApiKeyAuth": {`
`38`		`- "type": "apiKey",`
`39`		`- "in": "header",`
`40`		`- "name": "x-access-token"`
	`37`	`+ "bearerAuth": {`
	`38`	`+ "type": "http",`
	`39`	`+ "scheme": "bearer",`
	`40`	`+ "bearerFormat": "JWT",`
	`41`	`+ "name": "authorization"`
`41`	`42`	`}`
`42`	`43`	`}`
`43`	`44`	`},`