Skip to content
Snippets Groups Projects
Commit 78a7b057 authored by Markus Grigull's avatar Markus Grigull
Browse files

Validate token user

parent 77837adb
Branches
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 12 additions and 3 deletions
auth.js
+ 12
3
View file @ 78a7b057
...@@ -25,6 +25,8 @@ var jwt = require('jsonwebtoken'); ...@@ -25,6 +25,8 @@ var jwt = require('jsonwebtoken');
var config = require('./config')[process.env.NODE_ENV || 'development']; var config = require('./config')[process.env.NODE_ENV || 'development'];
var roles = require('./roles'); var roles = require('./roles');
var User = require('./models/user');
module.exports = { module.exports = {
validateToken: function(req, res, next) { validateToken: function(req, res, next) {
// check for token // check for token
...@@ -38,9 +40,16 @@ module.exports = { ...@@ -38,9 +40,16 @@ module.exports = {
return res.status(403).send({ success: false, message: 'Authentication failed' }); return res.status(403).send({ success: false, message: 'Authentication failed' });
} }
// save to request in other routes // check if decoded user is valid
req.decoded = decoded; User.findOne({ _id: decoded._id }, function(err, user) {
next(); if (err) {
return res.status(403).send({ success: false, message: 'Authentication failed' });
}
// save to request in other routes
req.decoded = decoded;
next();
});
}); });
}, },
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment