propro-utils 1.3.27 → 1.3.29

package/middlewares/access_token.js

@@ -18,8 +18,8 @@ const authValidation = (redisClient, requiredPermissions = []) => {
                 });
                 return response.data;
             }
-
-            const { accountId, validPermissions }  = await getOrSetCache(redisClient, accessToken, fetchPermission, 1800);
+            const cacheKey = `account:permissions:${accessToken}`;
+            const { accountId, validPermissions }  = await getOrSetCache(redisClient, cacheKey, fetchPermission, 1800);
 
             if (!validPermissions) {
                 return res.status(403).json({ error: "Invalid permissions" });

package/middlewares/account_info.js

@@ -0,0 +1,61 @@
+require("dotenv").config();
+const axios =  require("axios");
+const {getOrSetCache} = require("../utils/redis");
+const { v4: uuidv4 } = require('uuid');
+const { Schema } = require('mongoose');
+const { Client } = require('redis');
+/**
+ * Retrieves the account profile data from the authentication server and caches it using Redis.
+ * If the profile data is not found in the cache, it fetches it from the authentication server and stores it in the cache.
+ *
+ * @param {Client} redisClient - Redis client instance
+ * @param {Schema} userSchema - User schema/model object
+ * @param {string} accountId - ID of the account
+ * @returns {Object} - Account profile data
+ * @throws {Error} - If there is an error retrieving the account profile data or validating the token
+ */
+const getAccountProfile = async (redisClient, userSchema, accountId) => {
+        try {
+            const accessToken = req.cookies['x-access-token'] || req.headers.authorization?.split(" ")[1];
+
+            if (!accessToken) {
+                throw new Error("Access token is required");
+            }
+
+            const fetchPermission = async () => {
+                const response = await axios.get(`${process.env.AUTH_URL}/api/v1/account/profile`, {
+                    headers: {
+                        Authorization: `Bearer ${accessToken}`,
+                    },
+                    params: {
+                        accountId
+                    }
+                });
+                return response.data;
+            }
+            const cacheKey = `account:info:${accountId}`;
+            const { profileData }  = await getOrSetCache(redisClient, cacheKey, fetchPermission, 1800);
+
+            if (!profileData) {
+                throw new Error("Invalid permissions");
+            }
+
+            // check if the user account is already in the database of the application that is using this middleware, if not, add it
+            const user = await userSchema.findOne({ id: profileData.id });
+            if (!user) {
+                await userSchema.create({
+                    accountId: accountId
+                });
+            }
+
+            return profileData;
+
+        } catch (error) {
+            if (error.response && error.response.status) {
+                throw new Error(error.response.data.message);
+            }
+            throw new Error('Error validating token');
+        }
+};
+
+module.exports = getAccountProfile;

package/middlewares/index.js

@@ -1,2 +1,3 @@
 module.exports.refreshAccessToken = require('./refresh_token');
-module.exports.authValidation = require("./access_token")
+module.exports.authValidation = require("./access_token")
+module.exports.getAccountProfile = require("./account_info")

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "propro-utils",
-  "version": "1.3.27",
+  "version": "1.3.29",
   "description": "Auth middleware for propro-auth",
   "main": "src/index.js",
   "scripts": {
@@ -61,10 +61,12 @@
     "axios": "^1.6.1",
     "dotenv": "^16.4.1",
     "express-rate-limit": "^7.1.4",
+    "mongoose": "^8.1.1",
     "nodemailer": "^6.9.7",
     "nodemailer-mailgun-transport": "^2.1.5",
     "querystring": "^0.2.1",
     "react-email": "^1.9.5",
-    "redis": "^4.6.12"
+    "redis": "^4.6.12",
+    "uuid": "^9.0.1"
   }
 }