miolo 0.0.37 → 0.0.40

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/lib/server/middleware/auth/guest.js +19 -9
  2. package/lib/server/middleware/request.js +10 -4
  3. package/package.json +1 -1
  4. package/src/server/middleware/auth/guest.js +18 -7
  5. package/src/server/middleware/request.js +10 -4
package/lib/server/middleware/auth/guest.js CHANGED
@@ -14,8 +14,6 @@ function asyncGeneratorStep(gen, resolve, reject, _next, _throw, key, arg) { try
14
14
  function _asyncToGenerator(fn) { return function () { var self = this, args = arguments; return new Promise(function (resolve, reject) { var gen = fn.apply(self, args); function _next(value) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "next", value); } function _throw(err) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "throw", err); } _next(undefined); }); }; }
15
15
 
16
16
  function _guest_token_make_with_jwt(session, logger) {
17
- var _session$options;
18
-
19
17
  var buid = Math.random().toString();
20
18
  var secret = session === null || session === void 0 ? void 0 : session.secret;
21
19
 
@@ -24,18 +22,28 @@ function _guest_token_make_with_jwt(session, logger) {
24
22
  logger.error('Guest token made with an unsafe secret string. Please, configure your own through session.secret.');
25
23
  }
26
24
 
25
+ var payload = {
26
+ admin: false,
27
+ buid: buid
28
+ };
29
+ return _jwtSimple.default.encode(payload, secret);
30
+ }
31
+
32
+ function _get_cookie_properties(session) {
33
+ var _session$options;
34
+
27
35
  var maxAge = session === null || session === void 0 ? void 0 : (_session$options = session.options) === null || _session$options === void 0 ? void 0 : _session$options.maxAge;
28
36
 
29
37
  if (isNaN(maxAge)) {
30
38
  maxAge = 86400;
31
39
  }
32
40
 
33
- var payload = {
34
- admin: false,
35
- buid: buid,
36
- expires: Date.now() + maxAge
41
+ var expires = new Date();
42
+ expires.setSeconds(expires.getSeconds() + maxAge);
43
+ return {
44
+ expires,
45
+ httpOnly: false
37
46
  };
38
- return _jwtSimple.default.encode(payload, secret);
39
47
  }
40
48
 
41
49
  var init_guest_auth_middleware = (app, options, session, logger) => {
@@ -62,12 +70,14 @@ var init_guest_auth_middleware = (app, options, session, logger) => {
62
70
  // Try to get our token from headers (server) or cookies (client)
63
71
  var token = ctx.cookies.get('token') || ctx.headers['token'];
64
72
 
65
- if (token) {
73
+ if (token === undefined || token.length == 0) {
66
74
  token = yield _make_guest_token();
67
75
  logger.debug("Guest token conceeded");
68
76
  }
69
77
 
70
- ctx.cookies.set('token', token);
78
+ var options = _get_cookie_properties(session);
79
+
80
+ ctx.cookies.set('token', token, options);
71
81
  ctx.user = {
72
82
  name: 'guest',
73
83
  token
package/lib/server/middleware/request.js CHANGED
@@ -46,10 +46,16 @@ function init_request_middleware(app) {
46
46
  var user = undefined;
47
47
 
48
48
  try {
49
- user = ctx.state.user;
50
- } catch (_) {
51
- user = ctx === null || ctx === void 0 ? void 0 : ctx.user;
52
- }
49
+ if (ctx.state.user != undefined) {
50
+ user = ctx.state.user;
51
+ }
52
+ } catch (_) {}
53
+
54
+ try {
55
+ if (ctx.user != undefined) {
56
+ user = ctx.user;
57
+ }
58
+ } catch (_) {}
53
59
 
54
60
  var uid_desc = '';
55
61
 
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "miolo",
3
- "version": "0.0.37",
3
+ "version": "0.0.40",
4
4
  "description": "miolo",
5
5
  "main": "lib/index.js",
6
6
  "author": "Afialapis <info@afialapis.com>",
package/src/server/middleware/auth/guest.js CHANGED
@@ -7,16 +7,26 @@ function _guest_token_make_with_jwt(session, logger) {
7
7
  secret= 'miolo_unsafe_secret'
8
8
  logger.error('Guest token made with an unsafe secret string. Please, configure your own through session.secret.')
9
9
  }
10
+
11
+ const payload = {
12
+ admin : false,
13
+ buid : buid
14
+ }
15
+ return jwt.encode(payload, secret)
16
+ }
17
+
18
+ function _get_cookie_properties(session) {
10
19
  let maxAge = session?.options?.maxAge
11
20
  if (isNaN(maxAge)) {
12
21
  maxAge= 86400
13
22
  }
14
- const payload = {
15
- admin : false,
16
- buid : buid,
17
- expires: Date.now() + maxAge
23
+ let expires = new Date()
24
+ expires.setSeconds(expires.getSeconds() + maxAge)
25
+
26
+ return {
27
+ expires,
28
+ httpOnly: false
18
29
  }
19
- return jwt.encode(payload, secret)
20
30
  }
21
31
 
22
32
 
@@ -38,12 +48,13 @@ const init_guest_auth_middleware = ( app, options, session, logger ) => {
38
48
  // Try to get our token from headers (server) or cookies (client)
39
49
  let token= ctx.cookies.get('token') || ctx.headers['token']
40
50
 
41
- if (token) {
51
+ if (token===undefined || token.length==0) {
42
52
  token = await _make_guest_token()
43
53
  logger.debug(`Guest token conceeded`)
44
54
  }
45
55
 
46
- ctx.cookies.set('token', token)
56
+ const options= _get_cookie_properties(session)
57
+ ctx.cookies.set('token', token, options)
47
58
  ctx.user = {
48
59
  name: 'guest',
49
60
  token
package/src/server/middleware/request.js CHANGED
@@ -31,10 +31,16 @@ function init_request_middleware(app) {
31
31
 
32
32
  let user = undefined
33
33
  try {
34
- user= ctx.state.user
35
- } catch(_) {
36
- user= ctx?.user
37
- }
34
+ if (ctx.state.user != undefined) {
35
+ user= ctx.state.user
36
+ }
37
+ } catch(_) {}
38
+
39
+ try {
40
+ if (ctx.user != undefined) {
41
+ user= ctx.user
42
+ }
43
+ } catch(_) {}
38
44
 
39
45
  let uid_desc= ''
40
46
  if (user != undefined) {