typescript source code of firebase-normal-user-login.strategy

Project: mamori-i-japan-api (GitHub Link)

mamori-i-japan-api-master
- src
  - lambda-swagger.ts
  - lambda-schedule.ts
  - app.module.ts
  - app.service.ts
  - app.controller.spec.ts
  - lambda-main.ts
  - admins
    - dto
      - create-admin.dto.spec.ts
      - create-admin.dto.ts
    - classes
      - admin.class.ts
    - admins.repository.ts
    - admins.module.ts
    - admins.service.ts
    - admins.service.spec.ts
    - admins.controller.ts
    - admins.controller.spec.ts
  - users
    - dto
      - create-user.dto.ts
      - create-user.dto.spec.ts
      - create-diagnosis-keys.dto.spec.ts
      - create-diagnosis-keys.dto.ts
      - delete-diagnosis-keys.dto.spec.ts
      - delete-diagnosis-keys.dto.ts
    - classes
      - user.class.ts
    - users.controller.spec.ts
    - users.repository.ts
    - users.controller.ts
    - users.service.spec.ts
    - users.service.ts
    - users.module.ts
    - constants.ts
  - prefectures
    - dto
      - create-prefecture.dto.ts
      - create-prefecture.dto.spec.ts
    - prefectures.repository.ts
    - prefectures.controller.ts
    - prefectures.module.ts
    - classes
      - prefecture.class.ts
    - prefectures.controller.spec.ts
    - prefectures.service.spec.ts
    - prefectures.service.ts
  - main.ts
  - app.controller.ts
  - auth
    - auth.controller.ts
    - dto
      - login-normal-user.dto.spec.ts
      - login-normal-user.dto.ts
    - auth.service.spec.ts
    - strategies
      - firebase-normal-user-validate.strategy.ts
      - firebase-normal-user-login.strategy.ts
      - firebase-admin-user-validate.strategy.ts
      - firebase-admin-user-login.strategy.ts
    - auth.service.ts
    - util
      - auth.ts
      - index.ts
    - auth.controller.spec.ts
    - guards
      - firebase-admin-user-login.guard.ts
      - firebase-admin-user-validate.guard.ts
      - firebase-normal-user-login.guard.ts
      - firebase-normal-user-validate.guard.ts
    - auth.module.ts
  - shared
    - acl
      - index.ts
      - acl.constants.ts
      - acl.util.ts
      - acl.class.ts
    - classes
      - no-response-body.class.spec.ts
      - no-response-body.class.ts
      - pagination-params.class.ts
    - shared.module.ts
    - interceptors
      - logging.interceptor.spec.ts
      - no-response-body.interceptor.ts
      - no-response-body.interceptor.spec.ts
      - logging.interceptor.ts
    - middleware
      - request-id.middleware.ts
    - firebase
      - firebase.service.ts
      - firebase.module.ts
    - config
      - module-options.ts
      - configuration.ts
    - constants
      - index.ts
      - common.ts
      - validation-pipe.ts
    - filters
      - all-exceptions.filter.ts
    - interfaces
      - index.ts
      - request-user.interface.ts
    - logger
      - logger.module.ts
      - logger.service.ts
- .circleci
  - config.yml
- serverless.yml
- firebase.firestore.rules
- .prettierrc
- LICENSE
- test
  - app.e2e-spec.ts
  - util.ts
  - jest-e2e.json
  - auth.e2e-spec.ts
- firebase.storage.rules
- firebase.json
- CHANGELOG.md
- .env.template
- .firebaserc
- tsconfig.build.json
- README.md
- package.json
- CODE_OF_CONDUCT.md
- firebase.firestore.indexes.json
- .eslintrc.js
- fdt-generator-webapp
  - email-link.html
  - anon.html
  - phone-invisible.html
  - index.html
- tsconfig.json
- .gitignore
- docs
  - acl.pu
  - README.md
  - auth.pu
- .vscode
  - settings.json
  - tasks.json
  - extensions.json
- nest-cli.json

import { Strategy, VerifiedCallback } from 'passport-custom'
import { PassportStrategy } from '@nestjs/passport'
import { Injectable, UnauthorizedException } from '@nestjs/common'
import { ExtractJwt } from 'passport-jwt'
import { Request } from 'express'
import * as firebaseAdmin from 'firebase-admin'
import { validateNormalTokenAnonymousPayload } from '../util'

@Injectable()
export class FirebaseNormalUserLoginStrategy extends PassportStrategy(
  Strategy,
  'firebase-normal-user-login'
) {
  async validate(req: Request, done: VerifiedCallback): Promise<any> {
    const extractorFunction = ExtractJwt.fromAuthHeaderAsBearerToken()
    const token = extractorFunction(req)

    if (!token) {
      throw new UnauthorizedException('No bearer token found in the header')
    }

    let userDecodedToken: firebaseAdmin.auth.DecodedIdToken
    try {
      userDecodedToken = await firebaseAdmin.auth().verifyIdToken(token)
    } catch (error) {
      throw new UnauthorizedException(error.message)
    }

    // Expect all normal access tokens (FDT) to have provider id anonymous data.
    validateNormalTokenAnonymousPayload(userDecodedToken)

    // NOTE : Passport automatically creates a user object, based on the value we return here.
    done(null, userDecodedToken)
  }
}