-
-
Notifications
You must be signed in to change notification settings - Fork 47
/
cookies.scheme.ts
77 lines (65 loc) · 2.15 KB
/
cookies.scheme.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
import {
AuthClaims,
AuthenticationScheme,
Identity,
} from "../../core/auth.interface.ts";
import {
SESSION_SIGNATURE_PREFIX_KEY,
SessionInterface,
} from "../../../session/src/session.interface.ts";
import { deleteCookie } from "https://deno.land/std@0.87.0/http/cookie.ts";
import { SecurityContext } from "../../../context/security-context.ts";
import { Redirect } from "../../../../renderer/redirect.ts";
export const IdentityKey = "__identity_cookie";
export class CookiesScheme implements AuthenticationScheme {
constructor(private readonly loginUrl: string) {
}
public async authenticate(context: SecurityContext): Promise<void> {
await this.setIdentity(context);
return undefined;
}
private async setIdentity(context: SecurityContext) {
if (context.security.session) {
const identity: any = await context.security.session.get(IdentityKey);
context.security.auth.identity = () => identity;
}
}
public async signInAsync<I, R>(
context: SecurityContext,
identity: Identity<I>,
claims?: AuthClaims,
): Promise<R> {
const session = getSession(context);
await session.set(IdentityKey, identity);
await this.setIdentity(context);
return <unknown> true as R;
}
public async signOutAsync<T, R>(context: SecurityContext): Promise<R> {
const session = getSession(context);
const sid = session.sessionId;
await session.store.delete(sid);
context.security.auth.identity = () => undefined;
deleteCookie(context.response, context.security.session!.sessionKey);
deleteCookie(
context.response,
session.sessionKey + SESSION_SIGNATURE_PREFIX_KEY,
);
return <unknown> true as R;
}
onFailureResult(context: SecurityContext): void {
context.response.result = Redirect(this.loginUrl);
context.response.setImmediately();
}
onSuccessResult(context: SecurityContext): void {
// nothing
}
}
function getSession(context: SecurityContext): SessionInterface {
if (context.security.session) {
return context.security.session;
} else {
throw new Error(
"Session middleware is required for use CookiesScheme Authentication",
);
}
}