????
Your IP : 3.138.170.222
"use strict";
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __metadata = (this && this.__metadata) || function (k, v) {
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.AuthService = void 0;
const common_1 = require("@nestjs/common");
const users_service_1 = require("../users/users.service");
const password_1 = require("../../utils/password");
const token_service_1 = require("./token.service");
let AuthService = class AuthService {
constructor(usersService, tokenService) {
this.usersService = usersService;
this.tokenService = tokenService;
}
async login(res, credentials) {
const { username, password } = credentials;
const user = await this.usersService.findOne({
where: { username },
});
if (!user) {
throw new common_1.UnauthorizedException('Username is not exist');
}
const passwordsMatch = (0, password_1.verifyPassword)(user.password, password);
if (!passwordsMatch) {
throw new common_1.UnauthorizedException('Password is incorrect');
}
const userRole = await this.usersService.getUserPermissions(user.id);
const token = await this.tokenService.createTokens(user.id);
return this.returnTokens(res, token, userRole);
}
async refreshToken(req, res) {
const { signedCookies } = req;
const { refreshToken } = signedCookies;
if (!refreshToken) {
return res.sendStatus(204);
}
try {
const token = await this.tokenService.exchangeRefreshToken(refreshToken);
const user = await this.usersService.getUserPermissions(token.userId);
if (!user)
throw new common_1.UnauthorizedException('Tài khoản người dùng không tồn tại!');
return this.returnTokens(res, token, user);
}
catch (error) {
throw new common_1.UnauthorizedException(error.message);
}
}
async logout(req, res) {
const { signedCookies } = req;
const { refreshToken } = signedCookies;
if (refreshToken) {
await this.tokenService.revokeToken(refreshToken, 'refresh_token');
}
const accessToken = this.tokenService.extractTokenFromHeader(req);
if (accessToken) {
await this.tokenService.revokeToken(accessToken, 'access_token');
}
res.clearCookie('refreshToken', {
httpOnly: true,
secure: process.env.NODE_ENV !== 'development',
signed: true,
});
}
returnTokens(res, token, user) {
res.cookie('refreshToken', token.refreshToken, {
httpOnly: true,
secure: !(process.env.NODE_ENV === 'development'),
signed: true,
expires: token.refreshTokenExpiresAt,
});
delete user.roles;
return res.send({
user,
accessToken: token.accessToken,
expiresAt: token.accessTokenExpiresAt,
});
}
};
exports.AuthService = AuthService;
exports.AuthService = AuthService = __decorate([
(0, common_1.Injectable)(),
__metadata("design:paramtypes", [users_service_1.UsersService,
token_service_1.TokenService])
], AuthService);
//# sourceMappingURL=auth.service.js.map