Spaces:
Sleeping
Sleeping
| import { | |
| CanActivate, | |
| ExecutionContext, | |
| Injectable, | |
| UnauthorizedException, | |
| } from '@nestjs/common'; | |
| import { JwtService } from '@nestjs/jwt'; | |
| import { Request } from 'express'; | |
| import { Reflector } from '@nestjs/core'; | |
| import { IS_PUBLIC_KEY } from './authentication.decorator.js'; | |
| import { ConfigService } from '@nestjs/config'; | |
| import { buffer } from 'stream/consumers'; | |
| () | |
| export class AuthenticationGuard implements CanActivate { | |
| constructor( | |
| private jwtService: JwtService, | |
| private reflector: Reflector, | |
| private configService: ConfigService | |
| ) {} | |
| async canActivate(context: ExecutionContext): Promise<boolean> { | |
| const isPublic = this.reflector.getAllAndOverride<boolean>(IS_PUBLIC_KEY, [ | |
| context.getHandler(), | |
| context.getClass(), | |
| ]); | |
| if (isPublic) { | |
| // π‘ See this condition | |
| return true; | |
| } | |
| const request = context.switchToHttp().getRequest(); | |
| const token = this.extractTokenFromHeader(request); | |
| if (!token) { | |
| throw new UnauthorizedException(); | |
| } | |
| try { | |
| const payload = await this.jwtService.verifyAsync(token, { | |
| secret: this.configService.get<String>('JWT_KEY') as string, | |
| }); | |
| // π‘ We're assigning the payload to the request object here | |
| // so that we can access it in our route handlers | |
| request['user'] = payload; | |
| } catch { | |
| throw new UnauthorizedException(); | |
| } | |
| return true; | |
| } | |
| private extractTokenFromHeader(request: Request): string | undefined { | |
| const [type, token] = request.headers.authorization?.split(' ') ?? []; | |
| return type === 'Bearer' ? token : undefined; | |
| } | |
| } | |