e2net/iceshrimp-legacy
2
0
Fork 0
Code Issues Pull requests Packages Projects Releases Activity
iceshrimp-legacy/src/server/api/endpoints/auth/session/userkey.ts
syuilo a7e6b766be
Resolve #2623
2018-11-02 12:49:08 +09:00

75 lines
1.3 KiB
TypeScript
Raw Blame History

import $ from 'cafy';
import App from '../../../../../models/app';
import AuthSess from '../../../../../models/auth-session';
import AccessToken from '../../../../../models/access-token';
import { pack } from '../../../../../models/user';
import getParams from '../../../get-params';
export const meta = {
requireCredential: false,
params: {
appSecret: {
validator: $.str
},
token: {
validator: $.str
}
}
};
export default (params: any) => new Promise(async (res, rej) => {
const [ps, psErr] = getParams(meta, params);
if (psErr) return rej(psErr);
// Lookup app
const app = await App.findOne({
secret: ps.appSecret
});
if (app == null) {
return rej('app not found');
}
// Fetch token
const session = await AuthSess
.findOne({
token: ps.token,
appId: app._id
});
if (session === null) {
return rej('session not found');
}
if (session.userId == null) {
return rej('this session is not allowed yet');
}
// Lookup access token
const accessToken = await AccessToken.findOne({
appId: app._id,
userId: session.userId
});
// Delete session
/* https://github.com/Automattic/monk/issues/178
AuthSess.deleteOne({
_id: session._id
});
*/
AuthSess.remove({
_id: session._id
});
// Response
res({
accessToken: accessToken.token,
user: await pack(session.userId, null, {
detail: true
})
});
});
Reference in a new issue View git blame Copy permalink