Created authorization related middleware.

2022-04-01 05:35:36 -05:00 · 2022-04-01 05:35:36 -05:00 · 22c5a8a83d
commit 22c5a8a83d
parent 59cb5e27f8
1 changed files with 30 additions and 0 deletions
--- a/server/middleware/Authority.js
+++ b/server/middleware/Authority.js
@ -0,0 +1,30 @@
+import MongoStore from "connect-mongo";
+import session from "express-session";
+import { dbName, mongoURI } from "../database/mongoose.js";
+const sessionConf = {
+    secret: process.env.SESSION_SECRET || "super duper secret string.",
+    cookie: {
+        expires: process.env.SESSION_TIMEOUT || 300000,
+        httpOnly: true,
+    },
+    saveUninitialized: false,
+    resave: false,
+};
+if (process.env.NODE_ENV === "production") {
+    sessionConf.cookie.secure = true;
+    sessionConf.store = MongoStore.create({ mongoUrl: mongoURI, dbName: dbName });
+}
+export const userSession = session(sessionConf);
+
+export function authenticationGuard(req, res, next) {
+    if (req.session.userId) {
+        next();
+    } else {
+        res.sendStatus(401);
+        return;
+    }
+}
+
+// TODO: Authentication
+// TODO: Identity
+// TODO: Authority