iceshrimp-legacy/src/server/api/endpoints/auth/session/userkey.ts

import $ from 'cafy';
import App from '../../../../../models/app';
import AuthSess from '../../../../../models/auth-session';
import AccessToken from '../../../../../models/access-token';
import { pack } from '../../../../../models/user';
import define from '../../../define';

export const meta = {
	requireCredential: false,

	params: {
		appSecret: {
			validator: $.str
		},

		token: {
			validator: $.str
		}
	}
};

export default define(meta, (ps) => new Promise(async (res, rej) => {
	// Lookup app
	const app = await App.findOne({
		secret: ps.appSecret
	});

	if (app == null) {
		return rej('app not found');
	}

	// Fetch token
	const session = await AuthSess
		.findOne({
			token: ps.token,
			appId: app._id
		});

	if (session === null) {
		return rej('session not found');
	}

	if (session.userId == null) {
		return rej('this session is not allowed yet');
	}

	// Lookup access token
	const accessToken = await AccessToken.findOne({
		appId: app._id,
		userId: session.userId
	});

	// Delete session

	/* https://github.com/Automattic/monk/issues/178
	AuthSess.deleteOne({
		_id: session._id
	});
	*/
	AuthSess.remove({
		_id: session._id
	});

	// Response
	res({
		accessToken: accessToken.token,
		user: await pack(session.userId, null, {
			detail: true
		})
	});
}));
:v: 2017-03-08 19:50:09 +01:00			`import $ from 'cafy';`
整理した 2018-03-29 13:32:18 +02:00			`import App from '../../../../../models/app';`
			`import AuthSess from '../../../../../models/auth-session';`
			`import AccessToken from '../../../../../models/access-token';`
			`import { pack } from '../../../../../models/user';`
Refactor 2018-11-02 05:47:44 +01:00			`import define from '../../../define';`
Resolve #2623 2018-11-02 04:49:08 +01:00
			`export const meta = {`
			`requireCredential: false,`

			`params: {`
			`appSecret: {`
			`validator: $.str`
			`},`

			`token: {`
			`validator: $.str`
			`}`
			`}`
			`};`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Refactor 2018-11-02 05:47:44 +01:00			`export default define(meta, (ps) => new Promise(async (res, rej) => {`
Follow linter 2017-03-03 20:28:38 +01:00			`// Lookup app`
			`const app = await App.findOne({`
Resolve #2623 2018-11-02 04:49:08 +01:00			`secret: ps.appSecret`
Follow linter 2017-03-03 20:28:38 +01:00			`});`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`if (app == null) {`
			`return rej('app not found');`
			`}`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`// Fetch token`
			`const session = await AuthSess`
			`.findOne({`
Resolve #2623 2018-11-02 04:49:08 +01:00			`token: ps.token,`
Resolve conflicts 2018-03-29 07:48:47 +02:00			`appId: app._id`
Follow linter 2017-03-03 20:28:38 +01:00			`});`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`if (session === null) {`
			`return rej('session not found');`
			`}`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Resolve conflicts 2018-03-29 07:48:47 +02:00			`if (session.userId == null) {`
Follow linter 2017-03-03 20:28:38 +01:00			`return rej('this session is not allowed yet');`
			`}`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`// Lookup access token`
			`const accessToken = await AccessToken.findOne({`
Resolve conflicts 2018-03-29 07:48:47 +02:00			`appId: app._id,`
			`userId: session.userId`
Follow linter 2017-03-03 20:28:38 +01:00			`});`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`// Delete session`
[API] Fix bug 2017-02-08 18:15:34 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`/* https://github.com/Automattic/monk/issues/178`
			`AuthSess.deleteOne({`
			`_id: session._id`
			`});`
			`*/`
			`AuthSess.remove({`
			`_id: session._id`
			`});`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
Follow linter 2017-03-03 20:28:38 +01:00			`// Response`
			`res({`
Resolve conflicts 2018-03-29 07:48:47 +02:00			`accessToken: accessToken.token,`
			`user: await pack(session.userId, null, {`
Follow linter 2017-03-03 20:28:38 +01:00			`detail: true`
			`})`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00			`});`
Refactor 2018-11-02 05:47:44 +01:00			`}));`