lfk/backend
2
0
Fork 0
Code Issues 1 Pull Requests Actions Projects Releases 40 Activity

authchecker - use new custom Errors

Browse Source 
ref #12
This commit is contained in:
Philipp Dormann 2020-12-04 22:18:54 +01:00
parent b0a24c6a74
commit f251b7acdb
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
src/authchecker.ts
View File

@ -1,5 +1,6 @@
import * as jwt from "jsonwebtoken";
import { Action, HttpError } from "routing-controllers";
import { Action } from "routing-controllers";
import { IllegalJWTError, NoPermissionError } from './errors/AuthError';
// -----------
const sampletoken = jwt.sign({
"permissions": {
@ -22,7 +23,7 @@ const authchecker = async (action: Action, permissions: string | string[]) => {
try {
jwtPayload = <any>jwt.verify(provided_token, process.env.JWT_SECRET || "secretjwtsecret");
} catch (error) {
throw new HttpError(401, "jwt_illegal")
throw new IllegalJWTError()
}
if (jwtPayload.permissions) {
action.response.local = {}
@ -34,11 +35,11 @@ const authchecker = async (action: Action, permissions: string | string[]) => {
if (actual_accesslevel_for_permission.includes(permission_access_level)) {
return true;
} else {
throw new HttpError(403, "no")
throw new NoPermissionError()
}
});
} else {
throw new HttpError(403, "no")
throw new NoPermissionError()
}
//
try {