github
/
nocodb
mirror of https://github.com/nocodb/nocodb
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

fix: include `token_version` value in jwt payload 

use a generic function to populate jwt token to avoid repetition

re #2361

Signed-off-by: Pranav C <pranavxc@gmail.com>
pull/2364/head
Pranav C 2 years ago
parent
bee19dd492
commit
5ac169d840
3 changed files with 24 additions and 50 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 15
      packages/nocodb/src/lib/meta/api/sync/importApis.ts
  2. 18
      packages/nocodb/src/lib/meta/api/userApi/helpers.ts
  3. 41
      packages/nocodb/src/lib/meta/api/userApi/userApis.ts

15
packages/nocodb/src/lib/meta/api/sync/importApis.ts
Unescape View File

@ -7,7 +7,7 @@ import NocoJobs from '../../../jobs/NocoJobs';
import job, { AirtableSyncConfig } from './helpers/job'; import job, { AirtableSyncConfig } from './helpers/job';
import SyncSource from '../../../models/SyncSource'; import SyncSource from '../../../models/SyncSource';
import Noco from '../../../Noco'; import Noco from '../../../Noco';
import * as jwt from 'jsonwebtoken'; import { genJwt } from '../userApi/helpers';
const AIRTABLE_IMPORT_JOB = 'AIRTABLE_IMPORT_JOB'; const AIRTABLE_IMPORT_JOB = 'AIRTABLE_IMPORT_JOB';
const AIRTABLE_PROGRESS_JOB = 'AIRTABLE_PROGRESS_JOB'; const AIRTABLE_PROGRESS_JOB = 'AIRTABLE_PROGRESS_JOB';
@ -76,18 +76,7 @@ export default (router: Router, clients: { [id: string]: Socket }) => {
const syncSource = await SyncSource.get(req.params.syncId); const syncSource = await SyncSource.get(req.params.syncId);
const user = await syncSource.getUser(); const user = await syncSource.getUser();
const token = jwt.sign( const token = genJwt(user, Noco.getConfig());
{
email: user.email,
firstname: user.firstname,
lastname: user.lastname,
id: user.id,
roles: user.roles
},
Noco.getConfig().auth.jwt.secret,
Noco.getConfig().auth.jwt.options
);
// Treat default baseUrl as siteUrl from req object // Treat default baseUrl as siteUrl from req object
let baseURL = (req as any).ncSiteUrl; let baseURL = (req as any).ncSiteUrl;

18
packages/nocodb/src/lib/meta/api/userApi/helpers.ts
Unescape View File

@ -0,0 +1,18 @@
import * as jwt from 'jsonwebtoken';
import User from '../../../models/User';
import { NcConfig } from '../../../../interface/config';
export function genJwt(user: User, config: NcConfig) {
return jwt.sign(
{
email: user.email,
firstname: user.firstname,
lastname: user.lastname,
id: user.id,
roles: user.roles,
token_version: user.token_version
},
config.auth.jwt.secret,
config.auth.jwt.options
);
}

41
packages/nocodb/src/lib/meta/api/userApi/userApis.ts
Unescape View File

@ -10,7 +10,6 @@ import User from '../../../models/User';
import { Tele } from 'nc-help'; import { Tele } from 'nc-help';
const { v4: uuidv4 } = require('uuid'); const { v4: uuidv4 } = require('uuid');
import * as jwt from 'jsonwebtoken';
import Audit from '../../../models/Audit'; import Audit from '../../../models/Audit';
import crypto from 'crypto'; import crypto from 'crypto';
import NcPluginMgrv2 from '../../helpers/NcPluginMgrv2'; import NcPluginMgrv2 from '../../helpers/NcPluginMgrv2';
@ -20,6 +19,7 @@ import extractProjectIdAndAuthenticate from '../../helpers/extractProjectIdAndAu
import ncMetaAclMw from '../../helpers/ncMetaAclMw'; import ncMetaAclMw from '../../helpers/ncMetaAclMw';
import { MetaTable } from '../../../utils/globals'; import { MetaTable } from '../../../utils/globals';
import Noco from '../../../Noco'; import Noco from '../../../Noco';
import { genJwt } from './helpers';
export async function signup(req: Request, res: Response<TableType>) { export async function signup(req: Request, res: Response<TableType>) {
const { const {
@ -147,18 +147,7 @@ export async function signup(req: Request, res: Response<TableType>) {
}); });
res.json({ res.json({
token: jwt.sign( token: genJwt(user, Noco.getConfig())
{
email: user.email,
firstname: user.firstname,
lastname: user.lastname,
id: user.id,
roles: user.roles,
token_version: user.token_version
},
Noco.getConfig().auth.jwt.secret,
Noco.getConfig().auth.jwt.options
)
} as any); } as any);
} }
@ -205,19 +194,7 @@ async function successfulSignIn({
}); });
res.json({ res.json({
token: jwt.sign( token: genJwt(user, Noco.getConfig())
{
email: user.email,
firstname: user.firstname,
lastname: user.lastname,
id: user.id,
roles: user.roles,
token_version
},
Noco.getConfig().auth.jwt.secret,
Noco.getConfig().auth.jwt.options
)
} as any); } as any);
} catch (e) { } catch (e) {
console.log(e); console.log(e);
@ -477,17 +454,7 @@ async function refreshToken(req, res): Promise<any> {
setTokenCookie(res, refreshToken); setTokenCookie(res, refreshToken);
res.json({ res.json({
token: jwt.sign( token: genJwt(user, Noco.getConfig())
{
email: user.email,
firstname: user.firstname,
lastname: user.lastname,
id: user.id,
roles: user.roles
},
Noco.getConfig().auth.jwt.secret,
Noco.getConfig().auth.jwt.options
)
} as any); } as any);
} catch (e) { } catch (e) {
return res.status(400).json({ msg: e.message }); return res.status(400).json({ msg: e.message });

Write Preview
Loading…
Cancel
Save