Sign upLogin

microfleet/core

View on GitHub
Star
packages/plugin-router/src/lifecycle/handlers/auth.ts

Summary

Maintainability
A
1 hr
Test Coverage
import { AuthenticationRequiredError, NotImplementedError } from 'common-errors'
import { Microfleet } from '@microfleet/core'

import { ServiceRequest, ServiceActionHandler } from '../../types/router'

declare module '../../types/router' {
  interface ServiceAction {
    auth?: string | ServiceActionAuthGetName | ServiceActionAuthConfig
    passAuthError?: boolean
  }
}
export interface AuthInfo {
  credentials: unknown
}

declare module '../../types/router' {
  interface ServiceRequest {
    auth?: AuthInfo | null
  }
}

export type AuthStrategy = ServiceActionHandler

export interface AuthConfig {
  readonly strategies: Record<string, AuthStrategy>
}

export interface AuthStrategyConfig {
  name: string
  authStrategy: 'required' | 'try'
  passAuthError: boolean,
  strategy: AuthStrategy | null
}

export interface ServiceActionAuthConfig {
  name: string
  passAuthError?: boolean
  strategy?: 'required' | 'try'
}

function retrieveStrategy(request: ServiceRequest, strategies: AuthConfig['strategies']): AuthStrategyConfig {
  const { action } = request
  const { auth: authConfig } = action

  // for ```MicrofleetAction.auth = (request) => assert(request.param)```
  if (typeof authConfig === 'function') {
    const name = authConfig(request)

    return {
      name,
      authStrategy: 'required',
      passAuthError: action.passAuthError || false,
      strategy: strategies[name] || null
    }
  }

  // for ```MicrofleetAction.auth = 'token'```
  if (typeof authConfig === 'string') {
    const name = authConfig

    return {
      name,
      authStrategy: 'required',
      passAuthError: action.passAuthError || false,
      strategy: strategies[name] || null
    }
  }

  // for ```MicrofleetAction.auth = {
  //   name: 'token',
  //   authStrategy: 'try',
  // }```
  if (typeof authConfig === 'object') {
    const name = authConfig.name

    return {
      name,
      authStrategy: authConfig.strategy || 'required',
      passAuthError: authConfig.passAuthError || false,
      strategy: strategies[name] || null
    }
  }

  throw new Error(`authConfig is invalid: ${authConfig}`)
}

export default (config: AuthConfig) => async function authHandler(
  this: Microfleet,
  request: ServiceRequest,
): Promise<void> {
  if (request.action.auth === undefined) {
    return
  }

  // @todo avoid object creation
  const authConfig = retrieveStrategy(request, config.strategies)

  if (authConfig.strategy === null) {
    throw new NotImplementedError(authConfig.name)
  }

  try {
    // @todo make it deprecated, change request.auth inside
    const credentials = await authConfig.strategy.call(this, request)
    if (credentials) {
      request.auth = { credentials }
    }
  } catch (error: any) {
    // @todo const 'try'
    if (authConfig.authStrategy === 'try') {
      request.auth = null
    } else {
      if (authConfig.passAuthError) {
        throw error
      }

      if (error.constructor === AuthenticationRequiredError) {
        throw error
      }

      throw new AuthenticationRequiredError(error.message, error)
    }
  }
}