feat(cop-api): requireToken

Alwatr · Feb 11, 2023 · d1e3c61 · d1e3c61
1 parent e4dbe33
commit d1e3c61
Show file tree

Hide file tree

Showing 4 changed files with 16 additions and 13 deletions.
diff --git a/uniquely/com-api/demo.http b/uniquely/com-api/demo.http
@@ -8,11 +8,13 @@ GET {{apiUrl}}/
 
 ### Get all product
 Get {{apiUrl}}/product/
+Authorization: Bearer {{token}}
 
 ### New order of user
 PUT {{apiUrl}}/order/?userId=abc123
-Authorization: Bearer {{userToken}}
+Authorization: Bearer {{token}}
 Content-Type: application/json
+client-id: 2b6861f4-a8d7-4065-a5a5-3caa54b71a20
 
 {
   "itemList": [
@@ -42,4 +44,4 @@ Content-Type: application/json
 
 ### Get all orders list of special user
 get {{apiUrl}}/order/?userId=abc123
-Authorization: Bearer {{userToken}}
+Authorization: Bearer {{token}}
diff --git a/uniquely/com-api/src/route/get-order.ts b/uniquely/com-api/src/route/get-order.ts
@@ -1,7 +1,6 @@
-import {logger} from '../lib/config.js';
+import {config, logger} from '../lib/config.js';
 import {nanoServer} from '../lib/server.js';
 import {storageClient} from '../lib/storage.js';
-import {tokenGenerator} from '../lib/token.js';
 
 import type {Order} from '@alwatr/type/customer-order-management.js';
 
@@ -10,9 +9,10 @@ nanoServer.route('GET', '/order/', async (connection) => {
   logger.logMethod('get-order');
 
   const params = connection.requireQueryParams<{userId: string}>({userId: 'string'});
-  connection.requireToken((token: string) => {
-    return tokenGenerator.verify(params.userId, token) === 'valid';
-  });
+  // connection.requireToken((token: string) => {
+  //   return tokenGenerator.verify(params.userId, token) === 'valid';
+  // });
+  connection.requireToken(config.nanoServer.accessToken);
 
   return await storageClient.getStorage<Order>(params.userId);
 });
diff --git a/uniquely/com-api/src/route/get-product.ts b/uniquely/com-api/src/route/get-product.ts
@@ -4,7 +4,8 @@ import {storageClient} from '../lib/storage.js';
 
 import type {Product} from '@alwatr/type/src/customer-order-management.js';
 
-nanoServer.route('GET', '/product/', async () => {
+nanoServer.route('GET', '/product/', async (connection) => {
   logger.logMethod('get-product');
+  connection.requireToken(config.nanoServer.accessToken);
   return await storageClient.getStorage<Product>(config.storage.productStorageName);
 });
diff --git a/uniquely/com-api/src/route/put-order.ts b/uniquely/com-api/src/route/put-order.ts
@@ -1,7 +1,6 @@
-import {logger} from '../lib/config.js';
+import {config, logger} from '../lib/config.js';
 import {nanoServer} from '../lib/server.js';
 import {storageClient} from '../lib/storage.js';
-import {tokenGenerator} from '../lib/token.js';
 
 import type {Order} from '@alwatr/type/customer-order-management.js';
 
@@ -10,9 +9,10 @@ nanoServer.route('PUT', '/order/', async (connection) => {
   logger.logMethod('put-order');
 
   const params = connection.requireQueryParams<{userId: string}>({userId: 'string'});
-  connection.requireToken((token: string) => {
-    return tokenGenerator.verify(params.userId, token) === 'valid';
-  });
+  // connection.requireToken((token: string) => {
+  //   return tokenGenerator.verify(params.userId, token) === 'valid';
+  // });
+  connection.requireToken(config.nanoServer.accessToken);
   const remoteAddress = connection.getRemoteAddress();
   const clientId = connection.requireClientId();