mirror of
https://github.com/strapi/strapi.git
synced 2025-07-18 14:32:56 +00:00
42 lines
1.1 KiB
JavaScript
42 lines
1.1 KiB
JavaScript
'use strict';
|
|
|
|
module.exports = strapi => ({
|
|
initialize() {
|
|
const passportMiddleware = strapi.admin.services.passport.init();
|
|
|
|
strapi.app.use(passportMiddleware);
|
|
|
|
strapi.app.use(async (ctx, next) => {
|
|
if (
|
|
ctx.request.header.authorization &&
|
|
ctx.request.header.authorization.split(' ')[0] === 'Bearer'
|
|
) {
|
|
const token = ctx.request.header.authorization.split(' ')[1];
|
|
|
|
const { payload, isValid } = strapi.admin.services.token.decodeJwtToken(token);
|
|
|
|
if (isValid) {
|
|
// request is made by an admin
|
|
const admin = await strapi
|
|
.query('strapi::user')
|
|
.findOne({ where: { id: payload.id }, populate: ['roles'] });
|
|
|
|
if (!admin || !(admin.isActive === true)) {
|
|
return ctx.forbidden('Invalid credentials');
|
|
}
|
|
|
|
ctx.state.admin = admin;
|
|
ctx.state.user = admin;
|
|
ctx.state.userAbility = await strapi.admin.services.permission.engine.generateUserAbility(
|
|
admin
|
|
);
|
|
ctx.state.isAuthenticatedAdmin = true;
|
|
return next();
|
|
}
|
|
}
|
|
|
|
return next();
|
|
});
|
|
},
|
|
});
|