evyos-center-server/production-evyos-systems-and-services-4
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

auth module controllers carried

Browse Source
This commit is contained in:
Berkay
2025-07-26 21:51:27 +03:00
parent 2e10de9758
commit f39dc541e1
58 changed files with 745 additions and 527 deletions
Download Patch File Download Diff File Expand all files Collapse all files

66
ServicesApi/src/middleware/access-control.guard.ts Normal file
View File

@@ -0,0 +1,66 @@
import {
CanActivate,
ExecutionContext,
Injectable,
ForbiddenException,
} from '@nestjs/common';
import { RedisHandlers } from '@/src/utils/auth/redis_handlers';
const getAccessTokenFromHeader = (req: Request): string => {
console.log(req.headers);
const token = req.headers['acs'];
if (!token) {
throw new ForbiddenException('Access token header is missing');
}
return token;
};
const getSelectTokenFromHeader = (req: Request): string => {
const token = req.headers['slc'];
if (!token) {
throw new ForbiddenException('Select token header is missing');
}
return token;
};
@Injectable()
export class AuthControlGuard implements CanActivate {
constructor(private cacheService: RedisHandlers) {}
async canActivate(context: ExecutionContext): Promise<boolean> {
const req = context.switchToHttp().getRequest();
const accessToken = getAccessTokenFromHeader(req);
console.log('AuthControlGuard', accessToken);
// const hasAccess = accessObject.permissions?.some(
// (p: any) => p.method === method && p.url === path,
// );
// if (!hasAccess) {
// throw new ForbiddenException('Access denied to this route');
// }
return true;
}
}
@Injectable()
export class EndpointControlGuard implements CanActivate {
constructor(private cacheService: RedisHandlers) {}
async canActivate(context: ExecutionContext): Promise<boolean> {
const req = context.switchToHttp().getRequest();
const selectToken = getSelectTokenFromHeader(req);
const method = req.method;
const path = req.route?.path;
console.log('EndpointControlGuard', selectToken, method, path);
// const hasAccess = accessObject.permissions?.some(
// (p: any) => p.method === method && p.url === path,
// );
// if (!hasAccess) {
// throw new ForbiddenException('Access denied to this route');
// }
return true;
}
}