Skip to content

GlobalFishingWatch/auth-middleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

40 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Auth Middleware

Auth library with the middleware for the GFW microservices

Middlewares

koa.obtainUser()

Koa Middleware.

Check if the user header is present in the request. If not, the middleware throw a ForbiddenException (403). If it's present, it add the user object in ctx.state.user.

ctx.state.user:

{
  "email": "<email>", // email of the user. If it's a application token, then this field does not exist
  "firstName": "<firstName>", // firstName of the user. If it's a application token, then this field does not exist
  "lastName": "<lastName>", // lastName of the user. If it's a application token, then this field does not exist
  "id": <id>, // id of the user or application
  "photo": "<urlPhoto>", // photo of the user. If it's a application token, then this field does not exist
  "type": "<type>", // possible values: user or application
}

koa.obtainPermissions()

Obtain all permissions of the logged user and add to ctx.state.permissions. Important! It's necessary declare the obtainUser middleware before this middleware.

ctx.state.permissions:

[
    {
      "type": "<type>", // resource type
      "value": "<value>", // resource value
      "action": "<action>" // action
    },
    ...
]

koa.checkPermissions(permissions)

Check if the logged user has at least one of the permissions passed as a parameter. Important! It's necessary declare the obtainUser middleware before this middleware.

permission:


[
  {
    "type": "<type>", // resource type
    "value": "<value>", // resource value
    "action": "<action>" // action
  },
  ...
]

koa.checkPermissionsWithRequestParams(permissions)

Check if the logged user has at least one of the permissions passed as a parameter. The difference from koa.checkPermissions is that the value can be obtained from a param of the url. Important! It's necessary declare the obtainUser middleware before this middleware.

permission:


[
  {
    "type": "<type>", // resource type
    "value": "<value>", or "valueParam": "<paramName>" // resource value
    "action": "<action>""// action
  },
  ...
]

koa.health(checkFn)

Middleware for set health endpoint in the microservice. This middleware responds to /health endpoint. It's possible to pass a function to check more features in the health endpoint.

checkFn: Async function to execute in each call to the endpoint. It's not required.

koa.request(ctx, options)

Util function to do a request to a internal microservice.

ctx: Koa Context obj. (Required) options: The same object that you use in the request-promise library. (Required)

HTTP Errors

errors.ForbiddenException - 403

Object with the info of the unauthorized error. A object of this class is throwed when the user doesn't have permission

Utils

utils.checkExistPermissionInList(permissions, {permission})

Return true if the permission is contained in the permissions list.

permissions:


[
  {
    "type": "<type>", // resource type
    "value": "<value>", or "valueParam": "<paramName>" // resource value
    "action": "<action>""// action
  },
  ...
]

permission:


[
  {
    "type": "<type>", // resource type
    "value": "<value>" // resource value
    "action": "<action>""// action
  },
  ...
]

Example:

const permissions = [{type: 'dataset', value:'carriers:', action: 'read'}, {type: 'dataset', value:'carriers:', action: 'write'}]

utils.checkExistPermissionInList(permissions, {type: 'dataset', value:'carriers:dev', action: 'read'})

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages