| 
									
										
										
										
											2017-11-16 14:12:03 +01:00
										 |  |  | 'use strict'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * Jwt.js service | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * @description: A set of functions similar to controller's actions to avoid code duplication. | 
					
						
							|  |  |  |  */ | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | const _ = require('lodash'); | 
					
						
							|  |  |  | const jwt = require('jsonwebtoken'); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | module.exports = { | 
					
						
							|  |  |  |   issue: (payload) => { | 
					
						
							|  |  |  |     return jwt.sign( | 
					
						
							|  |  |  |       _.clone(payload.toJSON()), | 
					
						
							|  |  |  |       process.env.JWT_SECRET || _.get(strapi, 'api.user.config.jwtSecret') || 'oursecret' | 
					
						
							|  |  |  |     ); | 
					
						
							| 
									
										
										
										
											2017-11-27 16:47:16 +01:00
										 |  |  |   }, | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   verify: (token) => { | 
					
						
							|  |  |  |     return new Promise(function (resolve, reject) { | 
					
						
							|  |  |  |       jwt.verify( | 
					
						
							|  |  |  |         token, | 
					
						
							|  |  |  |         process.env.JWT_SECRET || _.get(strapi, 'api.user.config.jwtSecret') || 'oursecret', | 
					
						
							|  |  |  |         {}, | 
					
						
							|  |  |  |         function (err, user) { | 
					
						
							|  |  |  |           if (err || !user || !user.id) { | 
					
						
							|  |  |  |             return reject('Invalid token.'); | 
					
						
							|  |  |  |           } | 
					
						
							|  |  |  |           resolve(user); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  |       ); | 
					
						
							|  |  |  |     }); | 
					
						
							|  |  |  |   }, | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   getToken: function (ctx) { | 
					
						
							|  |  |  |     const params = _.assign({}, ctx.request.body, ctx.request.query); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     let token = ''; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if (ctx.request && ctx.request.header && ctx.request.header.authorization) { | 
					
						
							|  |  |  |       const parts = ctx.request.header.authorization.split(' '); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |       if (parts.length === 2) { | 
					
						
							|  |  |  |         const scheme = parts[0]; | 
					
						
							|  |  |  |         const credentials = parts[1]; | 
					
						
							|  |  |  |         if (/^Bearer$/i.test(scheme)) { | 
					
						
							|  |  |  |           token = credentials; | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  |       } else { | 
					
						
							|  |  |  |         throw new Error('Invalid authorization header format. Format is Authorization: Bearer [token]'); | 
					
						
							|  |  |  |       } | 
					
						
							|  |  |  |     } else if (params.token) { | 
					
						
							|  |  |  |       token = params.token; | 
					
						
							|  |  |  |     } else { | 
					
						
							|  |  |  |       throw new Error('No authorization header was found'); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     return this.verify(token); | 
					
						
							| 
									
										
										
										
											2017-11-16 14:12:03 +01:00
										 |  |  |   } | 
					
						
							|  |  |  | }; |