typescript source code of auth-token.middleware

relate-master
- .huskyrc
- .github
  - PULL_REQUEST_TEMPLATE.md
  - ISSUE_TEMPLATE
    - relate-issue-template.md
- .eslintignore
- lerna.json
- .prettierrc
- .nvmrc
- .eslintrc.json
- e2e
  - jest-global.config.js
  - relate fixtures
    - test-plugin-source.json
    - config
      - environments
        test.json
    - data
      - acceptedTerms
      - .GITIGNORED
    - cache
      - .GITIGNORED
  - jest-global.setup.js
- LICENSE
- .npmrc
- CONTRIBUTING.md
- .editorconfig
- .lintstagedrc
- packages
  - web
    - src
      - info.ts
      - health
        services
        health.service.ts
        index.ts
        health.module.ts
      - utils
        open-api.utils.ts
        file-watcher.utils.ts
        subscription.utils.ts
      - server.ts
      - interceptors
        environment.interceptor.ts
      - index.ts
      - files
        services
        files.service.ts
        index.ts
        files.module.ts
      - global.types.ts
      - configs
        dev.config.ts
      - web.module.ts
      - auth
        services
        auth.service.ts
        index.ts
        middleware
        api-token.middleware.ts
        auth-token.middleware.ts
        auth.module.ts
      - entities
        dbms-plugins
        dbms-plugins.e2e.ts
        dbms-plugins.module.ts
        index.ts
        dbms-plugins.resolver.ts
        dbms-plugins.types.ts
        db
        dto
        auth-token.input.ts
        index.ts
        db.types.ts
        db.resolver.ts
        db.module.ts
        db.e2e.ts
        project
        project.module.ts
        index.ts
        graphql-upload.ts
        project.e2e.ts
        project.types.ts
        project.resolver.ts
        extension
        extension.module.ts
        services
        apps.service.ts
        extension.types.ts
        index.ts
        extension.resolver.ts
        extension.e2e.ts
        dbms
        dto
        auth-token.input.ts
        index.ts
        dbms.e2e.ts
        dbms.module.ts
        dbms.resolver.ts
        dbms.types.ts
      - guards
        environment.guard.ts
      - constants.ts
    - jest.config.js
    - .npmignore
    - .eslintrc.json
    - .npmrc
    - typings
      - global.d.ts
    - README.md
    - package.json
    - bin
      - run
      - run.cmd
    - tsconfig.json
    - nodemon.json
  - client
    - src
      - index.ts
      - relate-client.class.ts
      - utils.ts
      - constants.ts
    - .npmignore
    - .eslintrc.json
    - .npmrc
    - README.md
    - package.json
    - tsconfig.json
  - cli
    - src
      - help
        index.ts
      - utils
        display.utils.ts
        entity.utils.ts
      - hooks
        command-not-found.ts
      - index.ts
      - commands
        backup
        remove.ts
        create.ts
        list.ts
        restore.ts
        db
        create.ts
        drop.ts
        load.ts
        list.ts
        dump.ts
        exec.ts
        dbms-plugin
        add-sources.ts
        list-sources.ts
        install.ts
        uninstall.ts
        list.ts
        remove-sources.ts
        project
        list-dbmss.ts
        init.ts
        link.ts
        add-dbms.ts
        remove-dbms.ts
        list.ts
        add-file.ts
        install-sample.ts
        remove-file.ts
        open.ts
        list-files.ts
        environment
        login.ts
        init.ts
        list.ts
        api-token.ts
        use.ts
        open.ts
        extension
        link.ts
        install.ts
        uninstall.ts
        list.ts
        dbms
        info.ts
        remove-tag.ts
        stop.ts
        link.ts
        upgrade.ts
        access-token.ts
        add-tag.ts
        install.ts
        uninstall.ts
        list.ts
        start.ts
        open.ts
        app
        open.ts
      - base.command.ts
      - stdin.ts
      - prompts
        index.ts
        input.prompt.ts
        password.prompt.ts
        select.prompt.ts
      - errors
        index.ts
        required-args.error.ts
      - modules
        backup
        restore.module.ts
        create.module.ts
        list.module.ts
        remove.module.ts
        db
        exec.module.ts
        create.module.ts
        drop.module.ts
        list.module.ts
        db.e2e.ts
        dump.module.ts
        load.module.ts
        dbms-plugin
        uninstall.module.ts
        install.module.ts
        list-sources.module.ts
        list.module.ts
        add-sources.module.ts
        dbms-plugin.e2e.ts
        remove-sources.module.ts
        project
        list-files.module.ts
        add-dbms.module.ts
        link.module.ts
        list-dbmss.module.ts
        add-file.module.ts
        open.module.ts
        remove-file.module.ts
        list.module.ts
        install-sample.module.ts
        project.e2e.ts
        init.module.ts
        remove-dbms.module.ts
        environment
        environment.local.e2e.ts
        open.module.ts
        login.module.ts
        list.module.ts
        use.module.ts
        init.module.ts
        api-token.module.ts
        extension
        link.module.ts
        uninstall.module.ts
        install.module.ts
        list.module.ts
        extension.e2e.ts
        dbms
        info.module.ts
        remove-tag.module.ts
        add-tag.module.ts
        link.module.ts
        uninstall.module.ts
        start.module.ts
        dbms.e2e.ts
        install.module.ts
        open.module.ts
        access-token.module.ts
        list.module.ts
        upgrade.module.ts
        movies.cypher
        stop.module.ts
        app
        app.e2e.ts
        open.module.ts
      - constants.ts
    - jest.config.js
    - .npmignore
    - .npmrc
    - package-lock.json
    - typings
      - global.d.ts
    - README.md
    - package.json
    - bin
      - run.js
      - run
      - run.cmd
    - tsconfig.json
    - docs
      - environment.md
      - db.md
      - extension.md
      - project.md
      - dbms.md
      - backup.md
      - autocomplete.md
      - app.md
      - help.md
      - dbms-plugin.md
  - common
    - src
      - utils
        extensions
        extension-versions.ts
        get-app-base-paths.test.ts
        index.ts
        get-app-launch-url.ts
        get-installed-extensions.ts
        download-extension.ts
        get-app-base-path.ts
        extension-versions.test.ts
        load-extensions-for.ts
        extract-extension.ts
        dbms-plugins
        update-dbms-config.ts
        update-dbms-config.test.ts
        index.ts
        list-versions.ts
        list-sources.ts
        download.ts
        graphql.ts
        event-hooks.test.ts
        index.ts
        files
        index.ts
        read-properties-file.test.ts
        map-file-to-model.ts
        write-properties-file.ts
        read-properties-file.ts
        write-properties-file.test.ts
        is-symlink.ts
        extract.ts
        env-paths.test.ts
        backups
        index.ts
        update-restored-entity-manifest.ts
        generic
        array-has-items.test.ts
        is-url-available.ts
        array-has-items.ts
        is-valid-url.test.ts
        index.ts
        is-valid-url.ts
        apply-entity-filters.ts
        env-vars.ts
        extract.test.ts
        system
        get-manifest-name.ts
        test-environment.ts
        index.ts
        test-dbmss.ts
        create-environment-instance.ts
        test-extensions.ts
        dbmss
        resolve-dbms.ts
        spawn-promise.ts
        extract-neo4j.ts
        resolve-dbms.test.ts
        dbms-versions.test.ts
        download-neo4j.ts
        download-neo4j.test.ts
        index.ts
        supports-access-tokens.ts
        cypher-shell.ts
        resolve-java.ts
        dbms-upgrade-config.ts
        neo4j-cmd.ts
        upgrade-neo4j.ts
        parse-neo4j-config-port.test.ts
        dbms-versions.ts
        neo4j-process-win.ts
        neo4j-admin-cmd.ts
        dbms-stop.ts
        system-db-query.ts
        is-dbms-online.ts
        parse-neo4j-config-port.ts
        generate-plugin-certs.ts
        event-hooks.ts
        system-access-token.ts
        env-paths.ts
      - token.service.ts
      - index.ts
      - models
        manifest.model.ts
        dbms.model.ts
        extension.model.ts
        index.ts
        auth-token.model.ts
        authentication.model.ts
        custom-validators.ts
        file.model.ts
        relate-backup.model.ts
        model.abstract.ts
        environment.model.ts
        project-install.model.ts
        app-launch-token.model.ts
        dbms-plugin.model.ts
        project.model.ts
      - system
        index.ts
        files
        ensure-files.test.ts
        properties-file.test.ts
        properties-file.ts
        index.ts
        ensure-files.ts
        properties-file.constants.ts
        ensure-files.constants.ts
        system.provider.ts
        system.provider.test.ts
        verifyAcceptedTerms.ts
        system.module.ts
      - entities
        extensions
        extensions.local.ts
        index.ts
        extensions.abstract.ts
        extensions.remote.ts
        extensions.constants.ts
        install.test.ts
        dbms-plugins
        dbms-plugins.remote.ts
        dbms-plugins.local.test.ts
        index.ts
        dbms-plugins.local.ts
        dbms-plugins.abstract.ts
        backups
        backup.remote.ts
        backup.local.ts
        index.ts
        backup.abstract.ts
        backups.local.test.ts
        projects
        projects.local.ts
        index.ts
        link.test.ts
        projects.local.test.ts
        projects.remote.ts
        projects.abstract.ts
        manifest
        index.ts
        manifest.remote.ts
        manifest.abstract.ts
        manifest.local.ts
        dbmss
        list.test.ts
        upgrade.test.ts
        index.ts
        link.test.ts
        manifest.local.test.ts
        dbmss.abstract.ts
        dbmss.remote.ts
        clone.test.ts
        dbmss.local.ts
        install.test.ts
        info.test.ts
        dbs
        dbs.local.ts
        dbs.remote.ts
        dbs.constants.ts
        index.ts
        dbs.abstract.ts
        environments
        authentication
        authentication.types.ts
        client.authentication.ts
        index.ts
        auth-utils.ts
        auth-redirect-server.ts
        authentication.constants.ts
        google.authentication.ts
        index.ts
        environment.remote.ts
        environment.abstract.ts
        environment.local.ts
        environment.constants.ts
      - errors
        not-found.error.ts
        integrity.error.ts
        cypher-parameter.error.ts
        invalid-config.error.ts
        graphql.error.ts
        index.ts
        target-exists.error.ts
        ambiguous-target.error.ts
        file-upload.error.ts
        extension-exists.error.ts
        dependency.error.ts
        undefined.error.ts
        dbms-upgrade.error.ts
        invalid-argument.error.ts
        authentication.error.ts
        file-structure.error.ts
        dbms-query.error.ts
        fetch.error.ts
        relate-backup.error.ts
        not-allowed.error.ts
        timeout.error.ts
        not-supported.error.ts
        validation-failure.error.ts
        dbms-exists.error.ts
        error.abstract.ts
      - constants.ts
    - jest.config.js
    - typedoc.json
    - .npmignore
    - .npmrc
    - documentation
      - classes
        backupabstract.md
        environmentabstract.md
        dbsabstract.md
        projectsabstract.md
        dbmspluginsabstract.md
        manifestabstract.md
        extensionsabstract.md
        dbmssabstract.md
      - README.md
    - README.md
    - package.json
    - tsconfig.json
    - neo4j-start.ps1
  - types
    - src
      - utils
        iterable.utils.ts
        array.utils.ts
      - index.ts
      - monads
        monad.test.ts
        primitive
        str.test.ts
        list.test.ts
        num.test.ts
        bool.monad.ts
        str.monad.ts
        bool.test.ts
        none.monad.ts
        maybe.test.ts
        list.monad.ts
        nil.monad.ts
        maybe.monad.ts
        num.monad.ts
        nil.test.ts
        none.test.ts
        dict.test.ts
        dict.monad.ts
        index.ts
        monad.ts
    - jest.config.js
    - typedoc.json
    - .npmignore
    - .eslintrc.json
    - .npmrc
    - documentation
      - classes
        str.md
        bool.md
        monad.md
        nil.md
        list.md
        maybe.md
        num.md
        none.md
        dict.md
      - README.md
      - interfaces
        iasobject.md
        imonad.md
    - README.md
    - package.json
    - tsconfig.json
  - electron
    - src
      - electron.module.ts
      - electron.e2e.ts
      - index.ts
      - window
        index.ts
        window.module.ts
      - dev.ts
      - configs
        dev.config.ts
      - constants.ts
    - jest.config.js
    - .npmignore
    - .npmrc
    - typings
      - global.d.ts
    - README.md
    - package.json
    - tsconfig.json
- documentation
  - PULL_REQUEST_TEMPLATE.md
  - MONADIC_TYPES.md
  - EXTENSIONS.md
  - NEO4J_ON_WINDOWS.md
  - FIRST_USE_GUIDE.md
  - ISSUE_TEMPLATE.md
  - DBMS_PLUGINS.md
  - RFCs
    - dbms-plugins
      - dbms-plugins.rfc.md
    - relate-client
      - relate-client.rfc.md
    - rfc-template.md
    - relate-api
      - cli
        environment.md
        db.md
        dbms.md
        autocomplete.md
        help.md
        README.md
      - relate-api.graphql
      - relate-api.rfc.md
    - relate-extensions
      - relate-extensions.rfc.md
  - README.md
  - CODE_OF_CONDUCT.md
  - EVENT_HOOKS.md
  - TESTING.md
  - CODE_STYLE.md
- README.md
- package.json
- scripts
  - static_data
    - NOTICE_HEADER.txt
    - LICENSES_HEADER.txt
  - licenses
    - reader.js
    - licenses.generator.js
    - index.js
    - notices.generator.js
  - tests
    - teardown.js
    - setup.js
    - xvfb.sh
- tsconfig.json
- .gitignore
- .prettierignore

import {Inject, Injectable, NestMiddleware} from '@nestjs/common';
import {NextFunction, Request, Response} from 'express';
import _ from 'lodash';
import {AUTH_TOKEN_HEADER, SystemProvider, AUTHENTICATION_BASE_ENDPOINT, HEALTH_BASE_ENDPOINT} from '@relate/common';
import {getRequestToken} from '../services/auth.service';

@Injectable()
export class AuthTokenMiddleware implements NestMiddleware {
    constructor(@Inject(SystemProvider) private readonly systemProvider: SystemProvider) {}

    async use(req: Request, res: Response, next: NextFunction) {
        if (_.startsWith(req.path, AUTHENTICATION_BASE_ENDPOINT) || _.startsWith(req.path, HEALTH_BASE_ENDPOINT)) {
            next();
            return;
        }

        const authToken = getRequestToken(req, AUTH_TOKEN_HEADER);
        const environment = await this.systemProvider.getEnvironment();

        try {
            await environment.verifyAuthToken(authToken);
            next();
        } catch (e) {
            res.clearCookie(AUTH_TOKEN_HEADER);

            if (req.method !== 'GET') {
                res.sendStatus(401);
                return;
            }

            const {authUrl} = await environment.login(req.url);

            res.redirect(authUrl);
        }
    }
}