@autofleet/zehut 1.5.2 → 1.5.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/index.d.ts +2 -1
- package/lib/index.js +4 -1
- package/lib/secret-getter.d.ts +2 -0
- package/lib/secret-getter.js +23 -0
- package/lib/utils.js +2 -2
- package/package.json +2 -1
package/lib/index.d.ts
CHANGED
|
@@ -1,8 +1,9 @@
|
|
|
1
1
|
import User, { middleware, eagerLoadPermissionsMiddleware, middlewareWithDecode, getDecodedBearer } from './user';
|
|
2
2
|
import { checkFleetPermission, checkBusinessModelPermission, checkDemandSourcePermission, isUserExist, getUser } from './check-permission';
|
|
3
3
|
import { UnauthorizedAccessError } from './errors';
|
|
4
|
+
import { getRefreshTokenSecret, getTokenSecret } from './secret-getter';
|
|
4
5
|
declare const getCurrentPayload: () => any;
|
|
5
|
-
export { User, middleware, middlewareWithDecode, eagerLoadPermissionsMiddleware, getCurrentPayload, getDecodedBearer, checkFleetPermission, checkBusinessModelPermission, checkDemandSourcePermission, isUserExist, getUser, UnauthorizedAccessError, };
|
|
6
|
+
export { User, middleware, middlewareWithDecode, eagerLoadPermissionsMiddleware, getCurrentPayload, getDecodedBearer, checkFleetPermission, checkBusinessModelPermission, checkDemandSourcePermission, isUserExist, getUser, getRefreshTokenSecret, getTokenSecret, UnauthorizedAccessError, };
|
|
6
7
|
declare const _default: {
|
|
7
8
|
User: typeof User;
|
|
8
9
|
middleware: (options?: {
|
package/lib/index.js
CHANGED
|
@@ -19,7 +19,7 @@ var __importStar = (this && this.__importStar) || function (mod) {
|
|
|
19
19
|
return result;
|
|
20
20
|
};
|
|
21
21
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
22
|
-
exports.UnauthorizedAccessError = exports.getUser = exports.isUserExist = exports.checkDemandSourcePermission = exports.checkBusinessModelPermission = exports.checkFleetPermission = exports.getDecodedBearer = exports.getCurrentPayload = exports.eagerLoadPermissionsMiddleware = exports.middlewareWithDecode = exports.middleware = exports.User = void 0;
|
|
22
|
+
exports.UnauthorizedAccessError = exports.getTokenSecret = exports.getRefreshTokenSecret = exports.getUser = exports.isUserExist = exports.checkDemandSourcePermission = exports.checkBusinessModelPermission = exports.checkFleetPermission = exports.getDecodedBearer = exports.getCurrentPayload = exports.eagerLoadPermissionsMiddleware = exports.middlewareWithDecode = exports.middleware = exports.User = void 0;
|
|
23
23
|
const user_1 = __importStar(require("./user"));
|
|
24
24
|
exports.User = user_1.default;
|
|
25
25
|
Object.defineProperty(exports, "middleware", { enumerable: true, get: function () { return user_1.middleware; } });
|
|
@@ -35,6 +35,9 @@ Object.defineProperty(exports, "isUserExist", { enumerable: true, get: function
|
|
|
35
35
|
Object.defineProperty(exports, "getUser", { enumerable: true, get: function () { return check_permission_1.getUser; } });
|
|
36
36
|
const errors_1 = require("./errors");
|
|
37
37
|
Object.defineProperty(exports, "UnauthorizedAccessError", { enumerable: true, get: function () { return errors_1.UnauthorizedAccessError; } });
|
|
38
|
+
const secret_getter_1 = require("./secret-getter");
|
|
39
|
+
Object.defineProperty(exports, "getRefreshTokenSecret", { enumerable: true, get: function () { return secret_getter_1.getRefreshTokenSecret; } });
|
|
40
|
+
Object.defineProperty(exports, "getTokenSecret", { enumerable: true, get: function () { return secret_getter_1.getTokenSecret; } });
|
|
38
41
|
tracer_1.enable();
|
|
39
42
|
const getCurrentPayload = tracer_1.getCurrentTrace;
|
|
40
43
|
exports.getCurrentPayload = getCurrentPayload;
|
|
@@ -0,0 +1,23 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getTokenSecret = exports.getRefreshTokenSecret = void 0;
|
|
7
|
+
const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
|
|
8
|
+
const moment_1 = __importDefault(require("moment"));
|
|
9
|
+
const { DEPRECATED_JWT_SECRET, JWT_SECRET, DEPRECATED_REFRESH_JWT_SECRET, REFRESH_JWT_SECRET, DEPRECATION_UNIX_TIMESTAMP, } = process.env;
|
|
10
|
+
const deprecationTime = moment_1.default(DEPRECATION_UNIX_TIMESTAMP || undefined);
|
|
11
|
+
const getRelevantSecret = (token, deprecatedSecret, newSecret) => {
|
|
12
|
+
let unixTime;
|
|
13
|
+
if (token) {
|
|
14
|
+
const { payload: { iat } } = jsonwebtoken_1.default.decode(token);
|
|
15
|
+
unixTime = moment_1.default(iat * 1000);
|
|
16
|
+
}
|
|
17
|
+
else {
|
|
18
|
+
unixTime = moment_1.default();
|
|
19
|
+
}
|
|
20
|
+
return unixTime.isBefore(deprecationTime) ? deprecatedSecret : newSecret;
|
|
21
|
+
};
|
|
22
|
+
exports.getRefreshTokenSecret = (token) => getRelevantSecret(token, DEPRECATED_REFRESH_JWT_SECRET, REFRESH_JWT_SECRET);
|
|
23
|
+
exports.getTokenSecret = (token) => getRelevantSecret(token, DEPRECATED_JWT_SECRET, JWT_SECRET);
|
package/lib/utils.js
CHANGED
|
@@ -22,17 +22,17 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
22
22
|
exports.getContextAttributes = exports.getEntitiesFromContext = exports.parsePermissions = exports.decodeBearer = exports.getAuthFromBearer = void 0;
|
|
23
23
|
/* eslint-disable prefer-destructuring */
|
|
24
24
|
const jwt = __importStar(require("jsonwebtoken"));
|
|
25
|
+
const secret_getter_1 = require("./secret-getter");
|
|
25
26
|
const CONTEXT_PROPS = ['fleetId', 'businessModelId', 'demandSourceId'];
|
|
26
27
|
const CONTEXT_MAP_PROPS = {
|
|
27
28
|
fleet: 'fleets',
|
|
28
29
|
business: 'businessModels',
|
|
29
30
|
demand: 'demandSources',
|
|
30
31
|
};
|
|
31
|
-
const jwtSecret = process.env.JWT_SECRET || 'pGVYfg9Nt-ugw&R=wB!9SFaRs=f3pS#L!';
|
|
32
32
|
exports.getAuthFromBearer = (bearer) => bearer.replace('Bearer ', '');
|
|
33
33
|
exports.decodeBearer = (bearer) => {
|
|
34
34
|
const token = bearer.replace('Bearer ', '');
|
|
35
|
-
const decoded = jwt.verify(token,
|
|
35
|
+
const decoded = jwt.verify(token, secret_getter_1.getTokenSecret(token));
|
|
36
36
|
return decoded;
|
|
37
37
|
};
|
|
38
38
|
exports.parsePermissions = (contextId, decodedToken) => {
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@autofleet/zehut",
|
|
3
|
-
"version": "1.5.
|
|
3
|
+
"version": "1.5.4",
|
|
4
4
|
"description": "manage user's identity",
|
|
5
5
|
"main": "lib/index.js",
|
|
6
6
|
"types": "lib/index.d.ts",
|
|
@@ -31,6 +31,7 @@
|
|
|
31
31
|
"@autofleet/outbreak": "0.0.7",
|
|
32
32
|
"axios": "^0.19.2",
|
|
33
33
|
"jsonwebtoken": "^8.5.1",
|
|
34
|
+
"moment": "^2.29.1",
|
|
34
35
|
"uuid": "^8.3.2"
|
|
35
36
|
},
|
|
36
37
|
"devDependencies": {
|