BradNut/TofuStack
1
0
Fork 0
mirror of https://github.com/BradNut/TofuStack synced 2025-09-08 17:40:26 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
TofuStack/src/lib/server/api/middlewares/auth.middleware.ts
rykuno b33590edad refactored auth services
2024-09-03 22:18:38 -05:00

42 lines
No EOL
1.4 KiB
TypeScript
Raw Blame History

import type { MiddlewareHandler } from 'hono';
import { createMiddleware } from 'hono/factory';
import { verifyRequestOrigin } from 'lucia';
import type { HonoTypes } from '../common/types/hono';
import { container } from 'tsyringe';
import { LuciaService } from '../services/lucia.service';
// resolve dependencies from the container
const { lucia } = container.resolve(LuciaService)
// Middleware to verify the origin of the request
export const verifyOrigin: MiddlewareHandler<HonoTypes> = createMiddleware(async (c, next) => {
if (c.req.method === "GET") {
return next();
}
const originHeader = c.req.header("Origin") ?? null;
const hostHeader = c.req.header("Host") ?? null;
if (!originHeader || !hostHeader || !verifyRequestOrigin(originHeader, [hostHeader])) {
return c.body(null, 403);
}
return next();
})
export const validateAuthSession: MiddlewareHandler<HonoTypes> = createMiddleware(async (c, next) => {
const sessionId = lucia.readSessionCookie(c.req.header("Cookie") ?? "");
if (!sessionId) {
c.set("user", null);
c.set("session", null);
return next();
}
const { session, user } = await lucia.validateSession(sessionId);
if (session && session.fresh) {
c.header("Set-Cookie", lucia.createSessionCookie(session.id).serialize(), { append: true });
}
if (!session) {
c.header("Set-Cookie", lucia.createBlankSessionCookie().serialize(), { append: true });
}
c.set("session", session);
c.set("user", user);
return next();
})
Reference in a new issue View git blame Copy permalink