npm - vr-commons - Versions diffs - 1.0.74 → 1.0.76 - Mend

vr-commons 1.0.74 → 1.0.76

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/middlewares/auth.middlewares.d.ts +1 -0
package/dist/middlewares/auth.middlewares.js +52 -1
package/dist/middlewares/index.d.ts +1 -1
package/dist/middlewares/index.js +2 -1
package/package.json +1 -1

package/dist/middlewares/auth.middlewares.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
 import { Request, Response, NextFunction } from "express";
 import { UserRole } from "vr-models";
 export declare const checkUserAuthentication: (allowedRoles: UserRole[]) => (req: Request, res: Response, next: NextFunction) => Promise<void>;
+export declare const checkAdminAuthentication: (allowedRoles: UserRole[]) => (req: Request, res: Response, next: NextFunction) => Promise<void>;

package/dist/middlewares/auth.middlewares.js CHANGED Viewed

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkUserAuthentication = void 0;
+exports.checkAdminAuthentication = exports.checkUserAuthentication = void 0;
 const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
 const vr_models_1 = require("vr-models");
 const __1 = require("..");
@@ -83,3 +83,54 @@ const checkUserAuthentication = (allowedRoles) => async (req, res, next) => {
     }
 };
 exports.checkUserAuthentication = checkUserAuthentication;
+const checkAdminAuthentication = (allowedRoles) => async (req, res, next) => {
+    try {
+        const token = req.cookies?.access_token;
+        if (!token) {
+            return (0, __1.sendErrorResponse)(res, "Authentication required", 401);
+        }
+        let payload;
+        try {
+            payload = jsonwebtoken_1.default.verify(token, process.env.JWT_SECRET);
+        }
+        catch (error) {
+            if (error instanceof jsonwebtoken_1.default.TokenExpiredError) {
+                return (0, __1.sendErrorResponse)(res, "Session expired. Please login again.", 401);
+            }
+            return (0, __1.sendErrorResponse)(res, "Invalid session", 401);
+        }
+        const user = await vr_models_1.User.findOne({
+            where: { id: payload.userId },
+            include: [
+                {
+                    model: vr_models_1.SecurityClearance,
+                    as: "securityClearance",
+                },
+            ],
+        });
+        if (!user || !user.securityClearance) {
+            return (0, __1.sendErrorResponse)(res, "User not found", 400);
+        }
+        // 🔐 Token versioning
+        if (user.tokenVersion !== payload.tokenVersion) {
+            return (0, __1.sendErrorResponse)(res, "Session expired", 401);
+        }
+        // 🧱 Role enforcement
+        if (!allowedRoles.includes(user.securityClearance.role)) {
+            return (0, __1.sendErrorResponse)(res, "Access denied", 403);
+        }
+        // Attach user to request (same as before)
+        req.userId = user.id;
+        req.firstName = user.firstName;
+        req.lastName = user.lastName;
+        req.scRole = user.securityClearance.role;
+        req.scLevel = user.securityClearance.level;
+        req.tokenVersion = user.tokenVersion;
+        next();
+    }
+    catch (error) {
+        console.error("Authentication error:", error);
+        next(error);
+    }
+};
+exports.checkAdminAuthentication = checkAdminAuthentication;

package/dist/middlewares/index.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-export { checkUserAuthentication } from "./auth.middlewares";
+export { checkUserAuthentication, checkAdminAuthentication, } from "./auth.middlewares";
 export { checkUserAccountStatus, checkIsUserBanned, checkIsUserSuspended, } from "./account.middlewares";

package/dist/middlewares/index.js CHANGED Viewed

@@ -1,8 +1,9 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkIsUserSuspended = exports.checkIsUserBanned = exports.checkUserAccountStatus = exports.checkUserAuthentication = void 0;
+exports.checkIsUserSuspended = exports.checkIsUserBanned = exports.checkUserAccountStatus = exports.checkAdminAuthentication = exports.checkUserAuthentication = void 0;
 var auth_middlewares_1 = require("./auth.middlewares");
 Object.defineProperty(exports, "checkUserAuthentication", { enumerable: true, get: function () { return auth_middlewares_1.checkUserAuthentication; } });
+Object.defineProperty(exports, "checkAdminAuthentication", { enumerable: true, get: function () { return auth_middlewares_1.checkAdminAuthentication; } });
 var account_middlewares_1 = require("./account.middlewares");
 Object.defineProperty(exports, "checkUserAccountStatus", { enumerable: true, get: function () { return account_middlewares_1.checkUserAccountStatus; } });
 Object.defineProperty(exports, "checkIsUserBanned", { enumerable: true, get: function () { return account_middlewares_1.checkIsUserBanned; } });

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "vr-commons",
-  "version": "1.0.74",
+  "version": "1.0.76",
   "description": "Shared functions package",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",