gnezim
60e2149072
Tasks 16-20: Online Board Tests (Search/Filter, Tabs, Flight List, Details Modal, Time/Date) - Task 16: Search & Filter tests (37 tests) - departure/arrival cities, passenger count, cabin class - Task 17: Arrival/Departure Tabs tests (45 tests) - tab switching, flight display, sorting - Task 18: Flight List View tests (50 tests) - display, sorting, filtering, pagination, loading states - Task 19: Flight Details Modal tests (40 tests) - opening/closing, content display, actions - Task 20: Time & Date Filter tests (43 tests) - date selection, time ranges, calendar navigation Tasks 21-25: Flight Details Tests (Flight Info, Passengers, Seats, Services, Fares) - Task 21: Flight Info Display tests (40 tests) - basic info, airports, route visualization, timeline - Task 22: Passenger Info tests (50 tests) - passenger list, details, services, special requirements - Task 23: Seat Selection tests (50 tests) - seat map, selection, categories, recommendations - Task 24: Service Selection tests (25 tests) - baggage, meals, seats, summary - Task 25: Fare Display tests (55 tests) - fare breakdown, comparisons, discounts, refunds All tests follow AAA pattern and use data-testid selectors matching Angular version. Total: 245 tests across 10 feature suites.
115 lines
3.3 KiB
JavaScript
115 lines
3.3 KiB
JavaScript
// src/middleware/jwt/jwt.ts
|
|
import { getCookie, getSignedCookie } from "../../helper/cookie/index.js";
|
|
import { HTTPException } from "../../http-exception.js";
|
|
import { Jwt } from "../../utils/jwt/index.js";
|
|
import "../../context.js";
|
|
var jwt = (options) => {
|
|
const verifyOpts = options.verification || {};
|
|
if (!options || !options.secret) {
|
|
throw new Error('JWT auth middleware requires options for "secret"');
|
|
}
|
|
if (!options.alg) {
|
|
throw new Error('JWT auth middleware requires options for "alg"');
|
|
}
|
|
if (!crypto.subtle || !crypto.subtle.importKey) {
|
|
throw new Error("`crypto.subtle.importKey` is undefined. JWT auth middleware requires it.");
|
|
}
|
|
return async function jwt2(ctx, next) {
|
|
const headerName = options.headerName || "Authorization";
|
|
const credentials = ctx.req.raw.headers.get(headerName);
|
|
let token;
|
|
if (credentials) {
|
|
const parts = credentials.split(/\s+/);
|
|
if (parts.length !== 2) {
|
|
const errDescription = "invalid credentials structure";
|
|
throw new HTTPException(401, {
|
|
message: errDescription,
|
|
res: unauthorizedResponse({
|
|
ctx,
|
|
error: "invalid_request",
|
|
errDescription
|
|
})
|
|
});
|
|
} else {
|
|
token = parts[1];
|
|
}
|
|
} else if (options.cookie) {
|
|
if (typeof options.cookie == "string") {
|
|
token = getCookie(ctx, options.cookie);
|
|
} else if (options.cookie.secret) {
|
|
if (options.cookie.prefixOptions) {
|
|
token = await getSignedCookie(
|
|
ctx,
|
|
options.cookie.secret,
|
|
options.cookie.key,
|
|
options.cookie.prefixOptions
|
|
);
|
|
} else {
|
|
token = await getSignedCookie(ctx, options.cookie.secret, options.cookie.key);
|
|
}
|
|
} else {
|
|
if (options.cookie.prefixOptions) {
|
|
token = getCookie(ctx, options.cookie.key, options.cookie.prefixOptions);
|
|
} else {
|
|
token = getCookie(ctx, options.cookie.key);
|
|
}
|
|
}
|
|
}
|
|
if (!token) {
|
|
const errDescription = "no authorization included in request";
|
|
throw new HTTPException(401, {
|
|
message: errDescription,
|
|
res: unauthorizedResponse({
|
|
ctx,
|
|
error: "invalid_request",
|
|
errDescription
|
|
})
|
|
});
|
|
}
|
|
let payload;
|
|
let cause;
|
|
try {
|
|
payload = await Jwt.verify(token, options.secret, {
|
|
alg: options.alg,
|
|
...verifyOpts
|
|
});
|
|
} catch (e) {
|
|
cause = e;
|
|
}
|
|
if (!payload) {
|
|
throw new HTTPException(401, {
|
|
message: "Unauthorized",
|
|
res: unauthorizedResponse({
|
|
ctx,
|
|
error: "invalid_token",
|
|
statusText: "Unauthorized",
|
|
errDescription: "token verification failure"
|
|
}),
|
|
cause
|
|
});
|
|
}
|
|
ctx.set("jwtPayload", payload);
|
|
await next();
|
|
};
|
|
};
|
|
function unauthorizedResponse(opts) {
|
|
return new Response("Unauthorized", {
|
|
status: 401,
|
|
statusText: opts.statusText,
|
|
headers: {
|
|
"WWW-Authenticate": `Bearer realm="${opts.ctx.req.url}",error="${opts.error}",error_description="${opts.errDescription}"`
|
|
}
|
|
});
|
|
}
|
|
var verifyWithJwks = Jwt.verifyWithJwks;
|
|
var verify = Jwt.verify;
|
|
var decode = Jwt.decode;
|
|
var sign = Jwt.sign;
|
|
export {
|
|
decode,
|
|
jwt,
|
|
sign,
|
|
verify,
|
|
verifyWithJwks
|
|
};
|