From 0ca7c01bc4a6c5ab50ac80f9a8e5d5c5db442f45 Mon Sep 17 00:00:00 2001
From: Rory& <root@rory.gay>
Date: Sun, 1 Jun 2025 08:04:30 +0200
Subject: Register works, part of login and auth middleware

---
 src/api/middlewares/authMiddleware.js | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 src/api/middlewares/authMiddleware.js

(limited to 'src/api/middlewares/authMiddleware.js')

diff --git a/src/api/middlewares/authMiddleware.js b/src/api/middlewares/authMiddleware.js
new file mode 100644
index 0000000..4cdbb51
--- /dev/null
+++ b/src/api/middlewares/authMiddleware.js
@@ -0,0 +1,25 @@
+import { validateJwtToken } from '#util/jwtUtils.js';
+import { DbUser } from '#db/schemas/index.js';
+
+/**
+ * @param options {AuthValidationOptions}
+ * @returns {(function(*, *, *): void)|*}
+ */
+export function validateAuth(options) {
+    return async function (req, res, next) {
+        var auth = validateJwtToken(req.headers.authorization);
+        if (!auth) {
+            res.status(401).send('Unauthorized');
+            return;
+        }
+
+        req.user = await DbUser.findById(auth.id).exec();
+
+        req.auth = auth;
+        req = next();
+    };
+}
+
+class AuthValidationOptions {
+    roles;
+}
-- 
cgit 1.5.1