mirror of
https://gitlab.com/timvisee/send.git
synced 2024-11-14 07:02:30 +01:00
55 lines
1.2 KiB
JavaScript
55 lines
1.2 KiB
JavaScript
const fetch = require('node-fetch');
|
|
const config = require('./config');
|
|
|
|
const KEY_SCOPE = config.fxa_key_scope;
|
|
let fxaConfig = null;
|
|
let lastConfigRefresh = 0;
|
|
|
|
async function getFxaConfig() {
|
|
if (fxaConfig && Date.now() - lastConfigRefresh < 1000 * 60 * 5) {
|
|
return fxaConfig;
|
|
}
|
|
try {
|
|
const res = await fetch(
|
|
`${config.fxa_url}/.well-known/openid-configuration`,
|
|
{ timeout: 3000 }
|
|
);
|
|
fxaConfig = await res.json();
|
|
fxaConfig.key_scope = KEY_SCOPE;
|
|
lastConfigRefresh = Date.now();
|
|
} catch (e) {
|
|
// continue with previous fxaConfig
|
|
}
|
|
return fxaConfig;
|
|
}
|
|
|
|
module.exports = {
|
|
getFxaConfig,
|
|
verify: async function(token) {
|
|
if (!token) {
|
|
return null;
|
|
}
|
|
|
|
const c = await getFxaConfig();
|
|
try {
|
|
const verifyUrl = c.jwks_uri.replace('jwks', 'verify'); //HACK
|
|
const result = await fetch(verifyUrl, {
|
|
method: 'POST',
|
|
headers: { 'Content-Type': 'application/json' },
|
|
body: JSON.stringify({ token })
|
|
});
|
|
const info = await result.json();
|
|
if (
|
|
info.scope &&
|
|
Array.isArray(info.scope) &&
|
|
info.scope.includes(KEY_SCOPE)
|
|
) {
|
|
return info.user;
|
|
}
|
|
} catch (e) {
|
|
// gulp
|
|
}
|
|
return null;
|
|
}
|
|
};
|