Initial commit 🍀

src/api/authenticate.ts

@@ -0,0 +1,61 @@
+import * as express from 'express';
+import App from './models/app';
+import User from './models/user';
+import Userkey from './models/userkey';
+
+export interface IAuthContext {
+	/**
+	 * App which requested
+	 */
+	app: any;
+
+	/**
+	 * Authenticated user
+	 */
+	user: any;
+
+	/**
+	 * Weather if the request is via the (Misskey Web Client or user direct) or not
+	 */
+	isSecure: boolean;
+}
+
+export default (req: express.Request) =>
+	new Promise<IAuthContext>(async (resolve, reject) => {
+	const token = req.body['i'];
+	if (token) {
+		const user = await User
+			.findOne({ token: token });
+
+		if (user === null) {
+			return reject('user not found');
+		}
+
+		return resolve({
+			app: null,
+			user: user,
+			isSecure: true
+		});
+	}
+
+	const userkey = req.headers['userkey'] || req.body['_userkey'];
+	if (userkey) {
+		const userkeyDoc = await Userkey.findOne({
+			key: userkey
+		});
+
+		if (userkeyDoc === null) {
+			return reject('invalid userkey');
+		}
+
+		const app = await App
+			.findOne({ _id: userkeyDoc.app_id });
+
+		const user = await User
+			.findOne({ _id: userkeyDoc.user_id });
+
+		return resolve({ app: app, user: user, isSecure: false });
+	}
+
+	return resolve({ app: null, user: null, isSecure: false });
+});