auth: Fix UnauthorizedException throwing

Move conversion of Errors from AuthService to TokenStrategy. This is necessary to correctly test the validateToken method. Signed-off-by: Philip Molares <philip.molares@udo.edu>
2024-11-22 09:46:30 -05:00 · 2021-01-29 22:00:47 +01:00 · 2021-01-29 22:00:47 +01:00 · aa10e10412
commit aa10e10412
parent 46b5cdfb47
2 changed files with 25 additions and 24 deletions
--- a/src/auth/auth.service.ts
+++ b/src/auth/auth.service.ts
@ -4,7 +4,7 @@
 * SPDX-License-Identifier: AGPL-3.0-only
 */

-import { Injectable, UnauthorizedException } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
 import { UsersService } from '../users/users.service';
 import { User } from '../users/user.entity';
 import { AuthToken } from './auth-token.entity';
@ -35,28 +35,18 @@ export class AuthService {
  }

  async validateToken(token: string): Promise<User> {
-    try {
-      const [keyId, secret] = token.split('.');
-      if (secret.length > 72) {
-        // Only the first 72 characters of the tokens are considered by bcrypt
-        // This should prevent strange corner cases
-        // At the very least it won't hurt us
-        throw new TokenNotValidError(
-          `AuthToken '${secret}' is too long the be a proper token`,
-        );
-      }
-      const accessToken = await this.getAuthTokenAndValidate(keyId, secret);
-      await this.setLastUsedToken(keyId);
-      return this.usersService.getUserByUsername(accessToken.user.userName);
-    } catch (error) {
-      if (
-        error instanceof NotInDBError ||
-        error instanceof TokenNotValidError
-      ) {
-        throw new UnauthorizedException(error.message);
-      }
-      throw error;
+    const [keyId, secret] = token.split('.');
+    if (secret.length > 72) {
+      // Only the first 72 characters of the tokens are considered by bcrypt
+      // This should prevent strange corner cases
+      // At the very least it won't hurt us
+      throw new TokenNotValidError(
+        `AuthToken '${secret}' is too long the be a proper token`,
+      );
    }
+    const accessToken = await this.getAuthTokenAndValidate(keyId, secret);
+    await this.setLastUsedToken(keyId);
+    return this.usersService.getUserByUsername(accessToken.user.userName);
  }

  async hashPassword(cleartext: string): Promise<string> {
--- a/src/auth/token.strategy.ts
+++ b/src/auth/token.strategy.ts
@ -6,9 +6,10 @@

 import { Strategy } from 'passport-http-bearer';
 import { PassportStrategy } from '@nestjs/passport';
-import { Injectable } from '@nestjs/common';
+import { Injectable, UnauthorizedException } from '@nestjs/common';
 import { AuthService } from './auth.service';
 import { User } from '../users/user.entity';
+import { NotInDBError, TokenNotValidError } from '../errors/errors';

@Injectable()
 export class TokenStrategy extends PassportStrategy(Strategy, 'token') {
@ -17,6 +18,16 @@ export class TokenStrategy extends PassportStrategy(Strategy, 'token') {
  }

  async validate(token: string): Promise<User> {
-    return this.authService.validateToken(token);
+    try {
+      return await this.authService.validateToken(token);
+    } catch (error) {
+      if (
+        error instanceof NotInDBError ||
+        error instanceof TokenNotValidError
+      ) {
+        throw new UnauthorizedException(error.message);
+      }
+      throw error;
+    }
  }
 }