Inicio Explorar Ayuda
Registro Iniciar sesión
xiongzhu
/
shorts-api
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: b0ee8cab2d
Ramas Etiquetas
shorts-api
/
app
/
Middleware
/
Auth.ts

Auth.ts 2.4 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. import { AuthenticationException } from '@adonisjs/auth/build/standalone'
    2. 

  2. import type { GuardsList } from '@ioc:Adonis/Addons/Auth'
    3. 

  3. import type { HttpContextContract } from '@ioc:Adonis/Core/HttpContext'
    4. 

  4. 

  5. /**
    6. 

  6.  * Auth middleware is meant to restrict un-authenticated access to a given route
    7. 

  7.  * or a group of routes.
    8. 

  8.  *
    9. 

  9.  * You must register this middleware inside `start/kernel.ts` file under the list
    10. 

  10.  * of named middleware.
    11. 

  11.  */
    12. 

  12. export default class AuthMiddleware {
    13. 

  13.     /**
    14. 

  14.      * The URL to redirect to when request is Unauthorized
    15. 

  15.      */
    16. 

  16.     protected redirectTo = '/login'
    17. 

  17. 

  18.     /**
    19. 

  19.      * Authenticates the current HTTP request against a custom set of defined
    20. 

  20.      * guards.
    21. 

  21.      *
    22. 

  22.      * The authentication loop stops as soon as the user is authenticated using any
    23. 

  23.      * of the mentioned guards and that guard will be used by the rest of the code
    24. 

  24.      * during the current request.
    25. 

  25.      */
    26. 

  26.     protected async authenticate(auth: HttpContextContract['auth'], guards: (keyof GuardsList)[]) {
    27. 

  27.         /**
    28. 

  28.          * Hold reference to the guard last attempted within the for loop. We pass
    29. 

  29.          * the reference of the guard to the "AuthenticationException", so that
    30. 

  30.          * it can decide the correct response behavior based upon the guard
    31. 

  31.          * driver
    32. 

  32.          */
    33. 

  33.         let guardLastAttempted: string | undefined
    34. 

  34. 

  35.         for (let guard of guards) {
    36. 

  36.             guardLastAttempted = guard
    37. 

  37. 

  38.             if (await auth.use(guard).check()) {
    39. 

  39.                 /**
    40. 

  40.                  * Instruct auth to use the given guard as the default guard for
    41. 

  41.                  * the rest of the request, since the user authenticated
    42. 

  42.                  * succeeded here
    43. 

  43.                  */
    44. 

  44.                 auth.defaultGuard = guard
    45. 

  45.                 return true
    46. 

  46.             }
    47. 

  47.         }
    48. 

  48. 

  49.         /**
    50. 

  50.          * Unable to authenticate using any guard
    51. 

  51.          */
    52. 

  52.         throw new AuthenticationException(
    53. 

  53.             'Unauthorized access',
    54. 

  54.             'E_UNAUTHORIZED_ACCESS',
    55. 

  55.             guardLastAttempted,
    56. 

  56.             this.redirectTo
    57. 

  57.         )
    58. 

  58.     }
    59. 

  59. 

  60.     /**
    61. 

  61.      * Handle request
    62. 

  62.      */
    63. 

  63.     public async handle(
    64. 

  64.         { auth }: HttpContextContract,
    65. 

  65.         next: () => Promise<void>,
    66. 

  66.         customGuards: (keyof GuardsList)[]
    67. 

  67.     ) {
    68. 

  68.         /**
    69. 

  69.          * Uses the user defined guards or the default guard mentioned in
    70. 

  70.          * the config file
    71. 

  71.          */
    72. 

  72.         const guards = customGuards.length ? customGuards : [auth.name]
    73. 

  73.         await this.authenticate(auth, guards)
    74. 

  74.         await next()
    75. 

  75.     }
    76. 

  76. }
    77.