auth: checkpoint

Author: frixaco

.gitignore

@@ -9,4 +9,5 @@ tsconfig.lsif.json
 *.lsif
 *.db
 .vscode/
-.env
+.env
+.pnpm-debug.log

server/package.json

@@ -6,14 +6,17 @@
     "dev": "ts-node ./src/index.ts"
   },
   "dependencies": {
-    "@prisma/client": "^3.12.0",
-    "express": "^4.17.3"
+    "@prisma/client": "^3.14.0",
+    "dotenv": "^16.0.1",
+    "express": "^4.17.3",
+    "jsonwebtoken": "^8.5.1"
   },
   "devDependencies": {
     "@types/express": "^4.17.13",
+    "@types/jsonwebtoken": "^8.5.8",
     "@types/node": "^17.0.23",
     "esbuild": "^0.14.34",
-    "prisma": "^3.12.0",
+    "prisma": "^3.14.0",
     "ts-node": "^10.7.0",
     "typescript": "^4.6.3"
   }

server/pnpm-lock.yaml

@@ -14,9 +14,8 @@ datasource db {
 
 model User {
   id        Int      @id @default(autoincrement())
-  username  String
   password  String
-  email     String
+  email     String   @unique
   devices   Device[]
   changes   Change[]
   createdAt DateTime @default(now())

server/prisma/schema.prisma

@@ -2,4 +2,22 @@ import { PrismaClient } from "@prisma/client";
 
 const db = new PrismaClient();
 
+/** 
+  * Exclude keys from user
+  *
+  * ts```
+  * const user = await prisma.user.findUnique({ where: 1 })
+  * const userWithoutPassword = exclude(user, 'password')
+  * ```
+  */
+export function exclude<User, Key extends keyof User>(
+  user: User,
+  ...keys: Key[]
+): Omit<User, Key> {
+  for (let key of keys) {
+    delete user[key]
+  }
+  return user
+}
+
 export default db;

server/src/db.ts

@@ -0,0 +1,42 @@
+import jwt, { JwtPayload }  from 'jsonwebtoken'
+import { Token } from '../types'
+
+export const issueAccessToken = (payload: {[key: string]: string | number}) => issueToken(payload, process.env.JWT_ACCESS_TOKEN as string, 10 * 60 * 1000) // 10 mins
+export const issueRefreshToken = (payload: {[key: string]: string | number}) => issueToken(payload, process.env.JWT_ACCESS_TOKEN as string, 14 * 24 * 60 * 60 * 1000) // 14 days
+export const verifyAccessToken = (token: string) => verifyToken(token, process.env.JWT_ACCESS_TOKEN as string)
+export const verifyRefreshToken = (token: string) => verifyToken(token, process.env.JWT_ACCESS_TOKEN as string)
+
+export async function issueToken(payload: {[key: string]: string | number}, secret: string, expiresIn: number): Promise<Token> {
+    try {
+		const token = await jwt.sign(payload, secret, { expiresIn });
+		const expirationDateValue = (addSeconds(new Date(), expiresIn/1000)).valueOf();
+
+		const fullToken = { token, expiresIn, expirationDateValue };
+		return Promise.resolve(fullToken);
+	}
+	catch(error) {
+		return Promise.reject(error);
+	}
+}
+
+export async function verifyToken(token: string, secret: string): Promise<JwtPayload | string> {
+    try {
+		const parsedToken = await jwt.verify(token, secret, {});
+		return Promise.resolve(parsedToken);
+	}
+	catch(error) {
+		return Promise.reject(error);
+	}
+}
+
+export function addSeconds(date: Date, seconds=0) {
+	const newDate = new Date(date.valueOf());
+	newDate.setSeconds(newDate.getSeconds() + seconds);
+	return newDate;
+}
+
+export function addDays(date: Date, days=0) {
+	const newDate = new Date(date.valueOf());
+	newDate.setDate(newDate.getDate() + days);
+	return newDate;
+}

server/src/helpers/jwt.ts

@@ -1,3 +1,6 @@
+import dotenv from "dotenv"
+dotenv.config()
+
 import express from "express";
 
 const PORT = process.env.PORT || 3001;