btwedutech/hoppscotch
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 6 Wiki Activity

chore: replaced hardcoded values with env variables in app.module.ts, main.ts and utils.ts

Browse Source
This commit is contained in:
Balu Babu
2023-01-20 07:56:19 +05:30
parent 509604833e
commit a6ad86bd59
6 changed files with 22 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
packages/hoppscotch-backend/prisma/migrations/20230119072446_auth/migration.sql → packages/hoppscotch-backend/prisma/migrations/20230119233519_auth/migration.sql
View File

4
packages/hoppscotch-backend/src/app.module.ts
View File

@@ -8,6 +8,10 @@ import { AuthModule } from './auth/auth.module';
@Module({ @Module({
imports: [ imports: [
GraphQLModule.forRoot<ApolloDriverConfig>({ GraphQLModule.forRoot<ApolloDriverConfig>({
cors: process.env.PRODUCTION !== 'true' && {
origin: ['http://localhost:3170', 'http://localhost:3000'],
credentials: true,
},
playground: process.env.PRODUCTION !== 'true', playground: process.env.PRODUCTION !== 'true',
debug: process.env.PRODUCTION !== 'true', debug: process.env.PRODUCTION !== 'true',
autoSchemaFile: true, autoSchemaFile: true,

2
packages/hoppscotch-backend/src/auth/auth.controller.ts
View File

@@ -63,8 +63,6 @@ export class AuthController {
async googleAuthRedirect(@Request() req, @Res() res) { async googleAuthRedirect(@Request() req, @Res() res) {
const authTokens = await this.authService.generateAuthTokens(req.user.uid); const authTokens = await this.authService.generateAuthTokens(req.user.uid);
if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left); if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);
console.log('google', authTokens);
authCookieHandler(res, authTokens.right, true); authCookieHandler(res, authTokens.right, true);
} }

3
packages/hoppscotch-backend/src/auth/strategies/jwt.strategy.ts
View File

@@ -22,8 +22,6 @@ export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
super({ super({
jwtFromRequest: ExtractJwt.fromExtractors([ jwtFromRequest: ExtractJwt.fromExtractors([
(request: Request) => { (request: Request) => {
console.log('here1', request.cookies);
const ATCookie = request.cookies['access_token']; const ATCookie = request.cookies['access_token'];
if (!ATCookie) { if (!ATCookie) {
throw new ForbiddenException(COOKIES_NOT_FOUND); throw new ForbiddenException(COOKIES_NOT_FOUND);
@@ -37,7 +35,6 @@ export class JwtStrategy extends PassportStrategy(Strategy, 'jwt') {
async validate(payload: AccessTokenPayload) { async validate(payload: AccessTokenPayload) {
if (!payload) throw new ForbiddenException(INVALID_ACCESS_TOKEN); if (!payload) throw new ForbiddenException(INVALID_ACCESS_TOKEN);
console.log('here', payload);
const user = await this.usersService.findUserById(payload.sub); const user = await this.usersService.findUserById(payload.sub);
if (O.isNone(user)) { if (O.isNone(user)) {

4
packages/hoppscotch-backend/src/main.ts
View File

@@ -19,8 +19,10 @@ async function bootstrap() {
if (process.env.PRODUCTION === 'false') { if (process.env.PRODUCTION === 'false') {
console.log('Enabling CORS with development settings'); console.log('Enabling CORS with development settings');
app.enableCors({ app.enableCors({
origin: true, origin: process.env.WHITELISTED_ORIGINS.split(','),
credentials: true,
}); });
} else { } else {
console.log('Enabling CORS with production settings'); console.log('Enabling CORS with production settings');

16
packages/hoppscotch-backend/src/utils.ts
View File

@@ -146,17 +146,31 @@ export const authCookieHandler = (
authTokens: AuthTokens, authTokens: AuthTokens,
redirect: boolean, redirect: boolean,
) => { ) => {
const currentTime = DateTime.now();
const accessTokenValidity = currentTime
.plus({
milliseconds: parseInt(process.env.ACCESS_TOKEN_VALIDITY),
})
.toMillis();
const refreshTokenValidity = currentTime
.plus({
milliseconds: parseInt(process.env.REFRESH_TOKEN_VALIDITY),
})
.toMillis();
res.cookie('access_token', authTokens.access_token, { res.cookie('access_token', authTokens.access_token, {
httpOnly: true, httpOnly: true,
secure: true, secure: true,
sameSite: 'lax', sameSite: 'lax',
maxAge: accessTokenValidity,
}); });
res.cookie('refresh_token', authTokens.refresh_token, { res.cookie('refresh_token', authTokens.refresh_token, {
httpOnly: true, httpOnly: true,
secure: true, secure: true,
sameSite: 'lax', sameSite: 'lax',
maxAge: refreshTokenValidity,
}); });
if (redirect) { if (redirect) {
res.status(HttpStatus.OK).redirect('http://localhost:3170/graphql'); res.status(HttpStatus.OK).redirect(process.env.REDIRECT_URL);
} else res.status(HttpStatus.OK).send(); } else res.status(HttpStatus.OK).send();
}; };