backend/src/routes/api/auth/jwt.strategy.ts

import { ExtractJwt, Strategy } from 'passport-jwt';
import { PassportStrategy } from '@nestjs/passport';
import { Injectable, Logger, UnauthorizedException } from '@nestjs/common';
import { validate } from 'class-validator';
import { plainToClass } from 'class-transformer';
import Config from '../../../env';
import { JwtDataDto } from 'imagur-shared/dist/dto/auth.dto';
import { User } from 'imagur-shared/dist/dto/user.dto';

@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
  private readonly logger = new Logger('JwtStrategy');

  constructor() {
    super({
      jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
      ignoreExpiration: false,
      secretOrKey: Config.jwt.secret,
    });
  }

  async validate(payload: any): Promise<User> {
    const jwt = plainToClass(JwtDataDto, payload);

    const errors = await validate(jwt);
    if (errors.length > 0) {
      this.logger.warn(errors);
      throw new UnauthorizedException();
    }

    return jwt.user;
  }
}
base authentication 2022-02-21 14:53:21 +01:00			`import { ExtractJwt, Strategy } from 'passport-jwt';`
			`import { PassportStrategy } from '@nestjs/passport';`
			`import { Injectable, Logger, UnauthorizedException } from '@nestjs/common';`
			`import { validate } from 'class-validator';`
			`import { plainToClass } from 'class-transformer';`
create shared library 2022-02-24 22:56:27 +01:00			`import Config from '../../../env';`
better shared api calls 2022-02-25 12:22:00 +01:00			`import { JwtDataDto } from 'imagur-shared/dist/dto/auth.dto';`
			`import { User } from 'imagur-shared/dist/dto/user.dto';`
base authentication 2022-02-21 14:53:21 +01:00
			`@Injectable()`
cleanup backend 2022-02-23 11:10:25 +01:00			`export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {`
base authentication 2022-02-21 14:53:21 +01:00			`private readonly logger = new Logger('JwtStrategy');`

			`constructor() {`
			`super({`
			`jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),`
			`ignoreExpiration: false,`
			`secretOrKey: Config.jwt.secret,`
			`});`
			`}`

			`async validate(payload: any): Promise<User> {`
			`const jwt = plainToClass(JwtDataDto, payload);`

Add more consistent api 2022-02-24 21:32:31 +01:00			`const errors = await validate(jwt);`
base authentication 2022-02-21 14:53:21 +01:00			`if (errors.length > 0) {`
Better type validation 2022-02-24 11:22:28 +01:00			`this.logger.warn(errors);`
base authentication 2022-02-21 14:53:21 +01:00			`throw new UnauthorizedException();`
			`}`

			`return jwt.user;`
			`}`
			`}`