server/middlewares/oauth.js


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

'use strict'

const OAuthServer = require('express-oauth-server')

const constants = require('../initializers/constants')
const logger = require('../helpers/logger')

const oAuthServer = new OAuthServer({
  accessTokenLifetime: constants.OAUTH_LIFETIME.ACCESS_TOKEN,
  refreshTokenLifetime: constants.OAUTH_LIFETIME.REFRESH_TOKEN,
  model: require('../lib/oauth-model')
})

const oAuth = {
  authenticate,
  token
}

function authenticate (req, res, next) {
  oAuthServer.authenticate()(req, res, function (err) {
    if (err) {
      logger.error('Cannot authenticate.', { error: err })
      return res.sendStatus(500)
    }

    if (res.statusCode === 401 || res.statusCode === 400 || res.statusCode === 503) return res.end()

    return next()
  })
}

function token (req, res, next) {
  return oAuthServer.token()(req, res, next)
}

// ---------------------------------------------------------------------------

module.exports = oAuth