Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Auth directive fails when excludeAddUserInContext is true #1158

Open
bmanturner opened this issue Aug 2, 2021 · 2 comments
Open

Auth directive fails when excludeAddUserInContext is true #1158

bmanturner opened this issue Aug 2, 2021 · 2 comments
Labels
bug

Comments

@bmanturner
Copy link

I would like to use @auth without having to make a trip to the db on each request.

My expected behavior:

context.userId would be populated by jwtData and the @auth directive would work when excludeAddUserInContext: true
@bmanturner bmanturner added the bug label Aug 2, 2021
@pradel
Copy link
Member

pradel commented Aug 3, 2021

Happy to merge a pr with the fix!

You might also want to use https://www.accountsjs.com/docs/server#stateless-session if you want to avoid other db calls on each request.

@bmanturner
Copy link
Author

bmanturner commented Aug 3, 2021
edited
Loading

I unfortunately do not have the time but maybe this can help someone else in the same spot in the future.

export const createAccountContext = async ({ req }: AccountsRequest): Promise<AccountsModuleContext> => {
  if (!req) {
    return {
      ip: '',
      userAgent: '',
      infos: {
        ip: '',
        userAgent: '',
      },
    };
  }

  const headerName = 'Authorization';
  let authToken = (req.headers[headerName] || req.headers[headerName.toLowerCase()]) as string;
  authToken = authToken && authToken.replace('Bearer ', '');

  let userId = '';
  if (authToken) {
    let sessionToken: string;
    try {
      const decodedAccessToken = jwt.verify(authToken, accountsServer.options.tokenSecret) as { data: JwtData };
      sessionToken = decodedAccessToken.data.token;
      userId = decodedAccessToken.data.userId;
    } catch (err) {
      throw new AccountsJsError('Auth token is not valid', ResumeSessionErrors.TokenVerificationFailed)
    }

    if (!accountsServer.options.useStatelessSession) {
      const session = await accountsMongo.findSessionByToken(sessionToken);
      if (!session) {
        throw new AccountsJsError('Session not found', ResumeSessionErrors.SessionNotFound);
      }
      if (!session.valid) {
        throw new AccountsJsError('Invalid Session', ResumeSessionErrors.InvalidSession);
      }
    }
  }

  const ip = getClientIp(req);
  let userAgent: string = (req.headers['user-agent'] as string) || '';
  if (req.headers['x-ucbrowser-ua']) {
    // special case of UC Browser
    userAgent = req.headers['x-ucbrowser-ua'] as string;
  }

  return {
    authToken,
    userAgent,
    userId,
    ip,
    infos: {
      userAgent,
      ip,
    },
  };
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pradel @bmanturner