2024-02-17 11:55:31 +00:00
|
|
|
import { Authorizer } from '@authorizerdev/authorizer-js';
|
|
|
|
|
import { Server } from '@hocuspocus/server';
|
2024-02-17 11:40:34 +00:00
|
|
|
|
|
|
|
|
const authorizer = new Authorizer({
|
2024-02-17 11:57:28 +00:00
|
|
|
clientID: process.env.AUTHORIZER_CLIENT_ID || '',
|
2024-02-17 11:40:34 +00:00
|
|
|
authorizerURL: 'https://auth.discours.io',
|
|
|
|
|
redirectURL: 'https://testing.discours.io',
|
2024-02-17 11:55:31 +00:00
|
|
|
});
|
|
|
|
|
|
2024-02-17 12:25:44 +00:00
|
|
|
const server = Server.configure({
|
|
|
|
|
port: process.env.PORT || 4000,
|
|
|
|
|
onConnect({ connection }) {
|
|
|
|
|
connection.requiresAuthentication = true;
|
|
|
|
|
},
|
|
|
|
|
onAuthenticate(data) {
|
|
|
|
|
if (data.requestHeaders) {
|
|
|
|
|
const params = {
|
|
|
|
|
token_type: 'access_token',
|
|
|
|
|
token: data.requestHeaders['authorization'] || '',
|
|
|
|
|
};
|
|
|
|
|
if (params.token) {
|
|
|
|
|
authorizer.validateJWTToken(params)
|
|
|
|
|
.then(response => {
|
|
|
|
|
|
2024-02-17 11:40:34 +00:00
|
|
|
if (response?.data?.is_valid) {
|
2024-02-17 11:55:31 +00:00
|
|
|
const { sub: user, allowed_roles: roles } = response.data.claims;
|
|
|
|
|
console.debug(`user_id: ${user} roles: ${roles}`);
|
2024-02-17 11:40:34 +00:00
|
|
|
return {
|
|
|
|
|
id: user,
|
|
|
|
|
roles,
|
2024-02-17 11:55:31 +00:00
|
|
|
};
|
2024-02-17 11:40:34 +00:00
|
|
|
}
|
2024-02-17 12:25:44 +00:00
|
|
|
}).catch((e) => {
|
|
|
|
|
console.error(e)
|
2024-02-17 11:55:31 +00:00
|
|
|
console.error('no valid auth token presented');
|
|
|
|
|
throw new Error('Not authorized!');
|
2024-02-17 12:25:44 +00:00
|
|
|
})
|
2024-02-17 11:40:34 +00:00
|
|
|
}
|
2024-02-17 12:25:44 +00:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
});
|
2024-02-17 11:40:34 +00:00
|
|
|
|
2024-02-17 12:25:44 +00:00
|
|
|
server.listen();
|
