35 lines
1.2 KiB
JavaScript
35 lines
1.2 KiB
JavaScript
|
"use strict";
|
||
|
|
var __importDefault = (this && this.__importDefault) || function (mod) {
|
||
|
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
||
|
|
};
|
||
|
|
Object.defineProperty(exports, "__esModule", { value: true });
|
||
|
|
exports.requireAuth = requireAuth;
|
||
|
|
exports.getTokenPayload = getTokenPayload;
|
||
|
|
const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
|
||
|
|
const JWT_SECRET = process.env.JWT_SECRET || 'dev-secret-change-in-production';
|
||
|
|
function requireAuth(req, res, next) {
|
||
|
|
const token = req.cookies?.token ||
|
||
|
|
(req.headers.authorization?.startsWith('Bearer ')
|
||
|
|
? req.headers.authorization.slice(7)
|
||
|
|
: null);
|
||
|
|
if (!token) {
|
||
|
|
return res.status(401).json({ error: 'Требуется авторизация' });
|
||
|
|
}
|
||
|
|
try {
|
||
|
|
const decoded = jsonwebtoken_1.default.verify(token, JWT_SECRET);
|
||
|
|
req.user = { userId: decoded.userId, email: decoded.email };
|
||
|
|
next();
|
||
|
|
}
|
||
|
|
catch {
|
||
|
|
return res.status(401).json({ error: 'Недействительный или истёкший токен' });
|
||
|
|
}
|
||
|
|
}
|
||
|
|
function getTokenPayload(token) {
|
||
|
|
try {
|
||
|
|
return jsonwebtoken_1.default.verify(token, JWT_SECRET);
|
||
|
|
}
|
||
|
|
catch {
|
||
|
|
return null;
|
||
|
|
}
|
||
|
|
}
|
||
|
|
//# sourceMappingURL=auth.js.map
|