Typescript Bootcamp

Author: jhades

rest-api/src/middlewares/authentication-middleware.ts

@@ -1,8 +1,38 @@
 import {NextFunction, Request, Response} from "express";
+import {logger} from "../logger";
+const JWT_SECRET = process.env.JWT_SECRET;
+const jwt = require("jsonwebtoken");
 
 export function checkIfAuthenticated(
-    request: Request, response: Response, next:NextFunction
-) {
+    request: Request, response: Response, next:NextFunction) {
 
+    const authJwtToken = request.headers.authorization;
 
+    if (!authJwtToken) {
+        logger.info(`The authentication JWT is not present, access denied.`);
+        response.sendStatus(403);
+        return;
+    }
+
+    checkJwtValidity(authJwtToken)
+        .then(user => {
+
+            logger.info(`Authentication JWT successfully decoded:`, user);
+            request["user"] = user;
+
+            next();
+        })
+        .catch(err => {
+            logger.error(`Could not validate the authentication JWT, access denied.`, err);
+            response.sendStatus(403);
+        });
+}
+
+async function checkJwtValidity(authJwtToken:string) {
+
+    const user = await jwt.verify(authJwtToken, JWT_SECRET);
+
+    logger.info("Found user details in JWT:", user);
+
+    return user;
 }

rest-api/src/routes/get-all-courses.ts

@@ -8,7 +8,7 @@ export async function getAllCourses(
 
     try {
 
-        logger.debug(`Called getAllCourses()`);
+        logger.debug(`Called getAllCourses()`, request["user"]);
 
         const courses = await AppDataSource
             .getRepository(Course)