Startsida Utforska Hjälp
Logga in
Front
/
ppai
2
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: e6197bdf65
Grenar Taggar
ppai
/
server
/
middleware
/
requireInternalToken.js

requireInternalToken.js 603 B
Historik

12345678910111213141516171819 
  1. import { safeEqual } from '../libs/auth.js';
    2. 

  2. 

  3. const getBearerToken = (authorization = '') => {
    4. 

  4.   const [scheme, token] = authorization.split(' ');
    5. 

  5.   return scheme?.toLowerCase() === 'bearer' ? token : '';
    6. 

  6. };
    7. 

  7. 

  8. const requireInternalToken = (req, res, next) => {
    9. 

  9.   const expectedToken = process.env.PPAI_INTERNAL_API_TOKEN;
    10. 

  10.   const providedToken = req.get('x-internal-token') || getBearerToken(req.get('authorization'));
    11. 

  11. 

  12.   if (expectedToken && safeEqual(providedToken, expectedToken)) {
    13. 

  13.     return next();
    14. 

  14.   }
    15. 

  15. 

  16.   return res.unauthorized('Invalid internal token');
    17. 

  17. };
    18. 

  18. 

  19. export default requireInternalToken;
    20.