Implement remote runner jobs in server

Move ffmpeg functions to @shared
author: Chocobozzz <me@florianbigard.com> 2023-04-21 14:55:10 +0200
committer: Chocobozzz <chocobozzz@cpy.re> 2023-05-09 08:57:34 +0200
commit: 0c9668f77901e7540e2c7045eb0f2974a4842a69 (patch)
tree: 226d3dd1565b0bb56588897af3b8530e6216e96b /server/middlewares/auth.ts
parent: 6bcb854cdea8688a32240bc5719c7d139806e00b (diff)
download: PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.tar.gz
PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.tar.zst
PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.zip
1 files changed, 25 insertions, 2 deletions
diff --git a/server/middlewares/auth.ts b/server/middlewares/auth.ts
index e6025c8ce..0eefa2a8e 100644
--- a/server/middlewares/auth.ts
+++ b/server/middlewares/auth.ts
@@ -1,6 +1,7 @@
 import express from 'express'
 import { Socket } from 'socket.io'
 import { getAccessToken } from '@server/lib/auth/oauth-model'
+import { RunnerModel } from '@server/models/runner/runner'
 import { HttpStatusCode } from '../../shared/models/http/http-error-codes'
 import { logger } from '../helpers/logger'
 import { handleOAuthAuthenticate } from '../lib/auth/oauth'
@@ -27,7 +28,7 @@ function authenticate (req: express.Request, res: express.Response, next: expres
 function authenticateSocket (socket: Socket, next: (err?: any) => void) {
  const accessToken = socket.handshake.query['accessToken']
-  logger.debug('Checking socket access token %s.', accessToken)
+  logger.debug('Checking access token in runner.')
  if (!accessToken) return next(new Error('No access token provided'))
  if (typeof accessToken !== 'string') return next(new Error('Access token is invalid'))
@@ -73,9 +74,31 @@ function optionalAuthenticate (req: express.Request, res: express.Response, next
 // ---------------------------------------------------------------------------
+function authenticateRunnerSocket (socket: Socket, next: (err?: any) => void) {
+  const runnerToken = socket.handshake.auth['runnerToken']
+  logger.debug('Checking runner token in socket.')
+  if (!runnerToken) return next(new Error('No runner token provided'))
+  if (typeof runnerToken !== 'string') return next(new Error('Runner token is invalid'))
+  RunnerModel.loadByToken(runnerToken)
+    .then(runner => {
+      if (!runner) return next(new Error('Invalid runner token.'))
+      socket.handshake.auth.runner = runner
+      return next()
+    })
+    .catch(err => logger.error('Cannot get runner token.', { err }))
+}
+// ---------------------------------------------------------------------------
 export {
  authenticate,
  authenticateSocket,
  authenticatePromise,
-  optionalAuthenticate
+  optionalAuthenticate,
+  authenticateRunnerSocket
 }
author	Chocobozzz <me@florianbigard.com>	2023-04-21 14:55:10 +0200
committer	Chocobozzz <chocobozzz@cpy.re>	2023-05-09 08:57:34 +0200
commit	0c9668f77901e7540e2c7045eb0f2974a4842a69 (patch)
tree	226d3dd1565b0bb56588897af3b8530e6216e96b /server/middlewares/auth.ts
parent	6bcb854cdea8688a32240bc5719c7d139806e00b (diff)
download	PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.tar.gz PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.tar.zst PeerTube-0c9668f77901e7540e2c7045eb0f2974a4842a69.zip

diff --git a/server/middlewares/auth.ts b/server/middlewares/auth.ts index e6025c8ce..0eefa2a8e 100644 --- a/server/middlewares/auth.ts +++ b/server/middlewares/auth.ts
@@ -1,6 +1,7 @@
1	import express from 'express'	1	import express from 'express'
2	import { Socket } from 'socket.io'	2	import { Socket } from 'socket.io'
3	import { getAccessToken } from '@server/lib/auth/oauth-model'	3	import { getAccessToken } from '@server/lib/auth/oauth-model'
		4	import { RunnerModel } from '@server/models/runner/runner'
4	import { HttpStatusCode } from '../../shared/models/http/http-error-codes'	5	import { HttpStatusCode } from '../../shared/models/http/http-error-codes'
5	import { logger } from '../helpers/logger'	6	import { logger } from '../helpers/logger'
6	import { handleOAuthAuthenticate } from '../lib/auth/oauth'	7	import { handleOAuthAuthenticate } from '../lib/auth/oauth'
@@ -27,7 +28,7 @@ function authenticate (req: express.Request, res: express.Response, next: expres
27	function authenticateSocket (socket: Socket, next: (err?: any) => void) {	28	function authenticateSocket (socket: Socket, next: (err?: any) => void) {
28	const accessToken = socket.handshake.query['accessToken']	29	const accessToken = socket.handshake.query['accessToken']
29		30
30	logger.debug('Checking socket access token %s.', accessToken)	31	logger.debug('Checking access token in runner.')
31		32
32	if (!accessToken) return next(new Error('No access token provided'))	33	if (!accessToken) return next(new Error('No access token provided'))
33	if (typeof accessToken !== 'string') return next(new Error('Access token is invalid'))	34	if (typeof accessToken !== 'string') return next(new Error('Access token is invalid'))
@@ -73,9 +74,31 @@ function optionalAuthenticate (req: express.Request, res: express.Response, next
73		74
74	// ---------------------------------------------------------------------------	75	// ---------------------------------------------------------------------------
75		76
		77	function authenticateRunnerSocket (socket: Socket, next: (err?: any) => void) {
		78	const runnerToken = socket.handshake.auth['runnerToken']
		79
		80	logger.debug('Checking runner token in socket.')
		81
		82	if (!runnerToken) return next(new Error('No runner token provided'))
		83	if (typeof runnerToken !== 'string') return next(new Error('Runner token is invalid'))
		84
		85	RunnerModel.loadByToken(runnerToken)
		86	.then(runner => {
		87	if (!runner) return next(new Error('Invalid runner token.'))
		88
		89	socket.handshake.auth.runner = runner
		90
		91	return next()
		92	})
		93	.catch(err => logger.error('Cannot get runner token.', { err }))
		94	}
		95
		96	// ---------------------------------------------------------------------------
		97
76	export {	98	export {
77	authenticate,	99	authenticate,
78	authenticateSocket,	100	authenticateSocket,
79	authenticatePromise,	101	authenticatePromise,
80	optionalAuthenticate	102	optionalAuthenticate,
		103	authenticateRunnerSocket
81	}	104	}