2017-01-06 04:07:42 +02:00
|
|
|
import isNativeToken from './common/is-native-token';
|
2019-04-07 15:50:36 +03:00
|
|
|
import { User } from '../../models/entities/user';
|
|
|
|
import { Users, AccessTokens, Apps } from '../../models';
|
2020-03-28 11:07:41 +02:00
|
|
|
import { AccessToken } from '../../models/entities/access-token';
|
2021-03-18 03:49:14 +02:00
|
|
|
import { Cache } from '../../misc/cache';
|
2020-03-28 04:24:37 +02:00
|
|
|
|
2021-03-18 03:49:14 +02:00
|
|
|
// TODO: TypeORMのカスタムキャッシュプロバイダを使っても良いかも
|
|
|
|
// ref. https://github.com/typeorm/typeorm/blob/master/docs/caching.md
|
|
|
|
const cache = new Cache<User>(1000 * 60 * 60);
|
2021-03-18 03:19:30 +02:00
|
|
|
|
2020-03-28 11:07:41 +02:00
|
|
|
export default async (token: string): Promise<[User | null | undefined, AccessToken | null | undefined]> => {
|
2017-01-05 18:28:16 +02:00
|
|
|
if (token == null) {
|
2019-01-23 12:25:36 +02:00
|
|
|
return [null, null];
|
2017-01-05 18:28:16 +02:00
|
|
|
}
|
|
|
|
|
2017-01-06 04:07:42 +02:00
|
|
|
if (isNativeToken(token)) {
|
2021-03-18 03:49:14 +02:00
|
|
|
const cached = cache.get(token);
|
|
|
|
if (cached) {
|
|
|
|
return [cached, null];
|
2021-03-18 03:19:30 +02:00
|
|
|
}
|
|
|
|
|
2018-04-11 11:40:01 +03:00
|
|
|
// Fetch user
|
2019-04-07 15:50:36 +03:00
|
|
|
const user = await Users
|
2018-04-11 11:40:01 +03:00
|
|
|
.findOne({ token });
|
2016-12-29 00:49:51 +02:00
|
|
|
|
2019-04-07 15:50:36 +03:00
|
|
|
if (user == null) {
|
2019-04-13 22:17:24 +03:00
|
|
|
throw new Error('user not found');
|
2016-12-29 00:49:51 +02:00
|
|
|
}
|
|
|
|
|
2021-03-18 03:49:14 +02:00
|
|
|
cache.set(token, user);
|
2021-03-18 03:19:30 +02:00
|
|
|
|
2019-01-23 12:25:36 +02:00
|
|
|
return [user, null];
|
2017-01-05 18:28:16 +02:00
|
|
|
} else {
|
2021-03-18 03:19:30 +02:00
|
|
|
// TODO: cache
|
2019-04-07 15:50:36 +03:00
|
|
|
const accessToken = await AccessTokens.findOne({
|
2020-06-03 07:19:07 +03:00
|
|
|
where: [{
|
|
|
|
hash: token.toLowerCase() // app
|
|
|
|
}, {
|
|
|
|
token: token // miauth
|
|
|
|
}],
|
2016-12-29 00:49:51 +02:00
|
|
|
});
|
|
|
|
|
2019-04-07 15:50:36 +03:00
|
|
|
if (accessToken == null) {
|
2019-04-13 22:17:24 +03:00
|
|
|
throw new Error('invalid signature');
|
2016-12-29 00:49:51 +02:00
|
|
|
}
|
|
|
|
|
2020-03-28 04:24:37 +02:00
|
|
|
AccessTokens.update(accessToken.id, {
|
|
|
|
lastUsedAt: new Date(),
|
|
|
|
});
|
2016-12-29 00:49:51 +02:00
|
|
|
|
2019-04-07 15:50:36 +03:00
|
|
|
const user = await Users
|
2019-04-15 19:20:28 +03:00
|
|
|
.findOne({
|
|
|
|
id: accessToken.userId // findOne(accessToken.userId) のように書かないのは後方互換性のため
|
|
|
|
});
|
2016-12-29 00:49:51 +02:00
|
|
|
|
2020-03-28 04:24:37 +02:00
|
|
|
if (accessToken.appId) {
|
|
|
|
const app = await Apps
|
2021-02-13 08:33:38 +02:00
|
|
|
.findOneOrFail(accessToken.appId);
|
2020-03-28 04:24:37 +02:00
|
|
|
|
|
|
|
return [user, {
|
2020-03-28 11:07:41 +02:00
|
|
|
id: accessToken.id,
|
2020-03-28 04:24:37 +02:00
|
|
|
permission: app.permission
|
2020-03-28 11:07:41 +02:00
|
|
|
} as AccessToken];
|
2020-03-28 04:24:37 +02:00
|
|
|
} else {
|
2020-03-28 11:07:41 +02:00
|
|
|
return [user, accessToken];
|
2020-03-28 04:24:37 +02:00
|
|
|
}
|
2016-12-29 00:49:51 +02:00
|
|
|
}
|
2019-01-23 12:25:36 +02:00
|
|
|
};
|