split/monofile
1
0
Fork 0
mirror of https://github.com/mollersuite/monofile.git synced 2024-11-24 22:56:26 -08:00
Code Issues Actions Packages Projects Releases 1 Wiki Activity

token-permissions: implement into tokens

Browse source
This commit is contained in:
May 2023-10-02 17:17:38 -07:00
parent 8a4dfd361c
commit b3efd8ca29
1 changed files with 27 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
src/server/lib/auth.ts
View file

@ -3,17 +3,41 @@ import { readFile, writeFile } from "fs/promises"
export let AuthTokens: AuthToken[] = [] export let AuthTokens: AuthToken[] = []
export let AuthTokenTO:{[key:string]:NodeJS.Timeout} = {} export let AuthTokenTO:{[key:string]:NodeJS.Timeout} = {}
export const ValidTokenPermissions = [
"user", // permissions to /auth/me, with email docked
"email", // adds email back to /auth/me
"upload", // allows an app to upload under an account
"manage", // allows an app to manage an account's files
"admin" // only available for accounts with admin
// gives an app access to all admin tools
] as const
export type TokenType = "User" | "App"
export type TokenPermission = typeof ValidTokenPermissions[number]
export interface AuthToken { export interface AuthToken {
account: string, account: string,
token: string, token: string,
expire: number expire: number,
type?: TokenType, // if !type, assume User
tokenPermissions?: TokenPermission[] // default to user if type is App,
// give full permissions if type is User
} }
export function create(id:string,expire:number=(24*60*60*1000)) { export function create(
id:string,
expire:number=(24*60*60*1000),
type:TokenType="User",
tokenPermissions?:TokenPermission[]
) {
let token = { let token = {
account:id, account:id,
token:crypto.randomBytes(36).toString('hex'), token:crypto.randomBytes(36).toString('hex'),
expire:Date.now()+expire expire:Date.now()+expire,
type,
tokenPermissions
} }
AuthTokens.push(token) AuthTokens.push(token)