Added docs
This commit is contained in:
sianida26
parent
e4c5ddd04c
commit
7806111f7d
|
|
@ -1,26 +1,37 @@
|
||||||
import { StatusCode } from "hono/utils/http-status";
|
import { StatusCode } from "hono/utils/http-status";
|
||||||
import DashboardErrorParameter from "../types/DashboardErrorParameter";
|
import DashboardErrorParameter from "../types/DashboardErrorParameter";
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Custom error class for handling specific dashboard-related errors with detailed context.
|
||||||
|
*
|
||||||
|
* @extends Error
|
||||||
|
*/
|
||||||
class DashboardError extends Error {
|
class DashboardError extends Error {
|
||||||
public readonly errorCode: string;
|
public readonly errorCode: string;
|
||||||
public readonly statusCode: StatusCode = 500;
|
public readonly statusCode: StatusCode = 500;
|
||||||
public readonly message: string;
|
|
||||||
public readonly formErrors?: Record<string, string>;
|
public readonly formErrors?: Record<string, string>;
|
||||||
public readonly severity: "CRITICAL" | "HIGH" | "MEDIUM" | "LOW" =
|
public readonly severity: "CRITICAL" | "HIGH" | "MEDIUM" | "LOW" =
|
||||||
"CRITICAL";
|
"CRITICAL";
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Creates an instance of DashboardError.
|
||||||
|
* @param options - Configuration object for the error.
|
||||||
|
*/
|
||||||
constructor(options: DashboardErrorParameter) {
|
constructor(options: DashboardErrorParameter) {
|
||||||
super(options.message);
|
super(options.message);
|
||||||
|
|
||||||
this.errorCode = options.errorCode;
|
this.errorCode = options.errorCode;
|
||||||
this.statusCode = options.statusCode ?? this.statusCode;
|
this.statusCode = options.statusCode ?? this.statusCode;
|
||||||
this.message = options.message;
|
|
||||||
this.formErrors = options.formErrors;
|
this.formErrors = options.formErrors;
|
||||||
|
|
||||||
Object.setPrototypeOf(this, new.target.prototype);
|
Object.setPrototypeOf(this, new.target.prototype);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Throws a 'not found' error with customizable parameters.
|
||||||
|
* @param options - Optional parameters to override default not found error properties.
|
||||||
|
*/
|
||||||
export const notFound = (options?: Partial<DashboardErrorParameter>) => {
|
export const notFound = (options?: Partial<DashboardErrorParameter>) => {
|
||||||
throw new DashboardError({
|
throw new DashboardError({
|
||||||
errorCode: options?.errorCode ?? "NOT_FOUND",
|
errorCode: options?.errorCode ?? "NOT_FOUND",
|
||||||
|
|
@ -31,6 +42,10 @@ export const notFound = (options?: Partial<DashboardErrorParameter>) => {
|
||||||
});
|
});
|
||||||
};
|
};
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Throws an 'unauthorized' error with customizable parameters.
|
||||||
|
* @param options - Optional parameters to override default unauthorized error properties.
|
||||||
|
*/
|
||||||
export const unauthorized = (options?: Partial<DashboardErrorParameter>) => {
|
export const unauthorized = (options?: Partial<DashboardErrorParameter>) => {
|
||||||
throw new DashboardError({
|
throw new DashboardError({
|
||||||
errorCode: options?.errorCode ?? "UNAUTHORIZED",
|
errorCode: options?.errorCode ?? "UNAUTHORIZED",
|
||||||
|
|
@ -41,4 +56,14 @@ export const unauthorized = (options?: Partial<DashboardErrorParameter>) => {
|
||||||
});
|
});
|
||||||
};
|
};
|
||||||
|
|
||||||
|
export const forbidden = (options?: Partial<DashboardErrorParameter>) => {
|
||||||
|
throw new DashboardError({
|
||||||
|
errorCode: options?.errorCode ?? "FORBIDDEN",
|
||||||
|
message: options?.message ?? "Forbidden",
|
||||||
|
formErrors: options?.formErrors,
|
||||||
|
severity: options?.severity ?? "LOW",
|
||||||
|
statusCode: options?.statusCode ?? 403,
|
||||||
|
});
|
||||||
|
};
|
||||||
|
|
||||||
export default DashboardError;
|
export default DashboardError;
|
||||||
|
|
|
||||||
|
|
@ -1,14 +1,19 @@
|
||||||
import jwt from "jsonwebtoken";
|
import jwt from "jsonwebtoken";
|
||||||
|
|
||||||
|
// Environment variables for secrets, defaulting to a random secret if not set.
|
||||||
const accessTokenSecret =
|
const accessTokenSecret =
|
||||||
process.env.ACCESS_TOKEN_SECRET ?? "some-random-secret";
|
process.env.ACCESS_TOKEN_SECRET ?? "some-random-secret";
|
||||||
const refreshTokenSecret =
|
const refreshTokenSecret =
|
||||||
process.env.REFRESH_TOKEN_SECRET ?? "some-very-random-secret";
|
process.env.REFRESH_TOKEN_SECRET ?? "some-very-random-secret";
|
||||||
|
|
||||||
|
// Algorithm to be used for JWT encoding.
|
||||||
const algorithm: jwt.Algorithm = "HS256";
|
const algorithm: jwt.Algorithm = "HS256";
|
||||||
|
|
||||||
export const accessTokenExpiry: number | string | null = null; // null for no expiry
|
// Expiry settings for tokens. 'null' signifies no expiry.
|
||||||
export const refreshTokenExpiry: number | string | null = "30d"; // null for no expiry
|
export const accessTokenExpiry: number | string | null = null;
|
||||||
|
export const refreshTokenExpiry: number | string | null = "30d";
|
||||||
|
|
||||||
|
// Interfaces to describe the payload structure for access and refresh tokens.
|
||||||
interface AccessTokenPayload {
|
interface AccessTokenPayload {
|
||||||
uid: string;
|
uid: string;
|
||||||
}
|
}
|
||||||
|
|
@ -17,6 +22,12 @@ interface RefreshTokenPayload {
|
||||||
uid: string;
|
uid: string;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Generates a JSON Web Token (JWT) for access control using a specified payload.
|
||||||
|
*
|
||||||
|
* @param payload - The payload containing user-specific data for the token.
|
||||||
|
* @returns A promise that resolves to the generated JWT string.
|
||||||
|
*/
|
||||||
export const generateAccessToken = async (payload: AccessTokenPayload) => {
|
export const generateAccessToken = async (payload: AccessTokenPayload) => {
|
||||||
const token = jwt.sign(payload, accessTokenSecret, {
|
const token = jwt.sign(payload, accessTokenSecret, {
|
||||||
algorithm,
|
algorithm,
|
||||||
|
|
@ -25,6 +36,12 @@ export const generateAccessToken = async (payload: AccessTokenPayload) => {
|
||||||
return token;
|
return token;
|
||||||
};
|
};
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Generates a JSON Web Token (JWT) for refresh purposes using a specified payload.
|
||||||
|
*
|
||||||
|
* @param payload - The payload containing user-specific data for the token.
|
||||||
|
* @returns A promise that resolves to the generated JWT string.
|
||||||
|
*/
|
||||||
export const generateRefreshToken = async (payload: RefreshTokenPayload) => {
|
export const generateRefreshToken = async (payload: RefreshTokenPayload) => {
|
||||||
const token = jwt.sign(payload, refreshTokenSecret, {
|
const token = jwt.sign(payload, refreshTokenSecret, {
|
||||||
algorithm,
|
algorithm,
|
||||||
|
|
@ -33,6 +50,12 @@ export const generateRefreshToken = async (payload: RefreshTokenPayload) => {
|
||||||
return token;
|
return token;
|
||||||
};
|
};
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Verifies a given access token and decodes the payload if the token is valid.
|
||||||
|
*
|
||||||
|
* @param token - The JWT string to verify.
|
||||||
|
* @returns A promise that resolves to the decoded payload or null if verification fails.
|
||||||
|
*/
|
||||||
export const verifyAccessToken = async (token: string) => {
|
export const verifyAccessToken = async (token: string) => {
|
||||||
try {
|
try {
|
||||||
const payload = jwt.verify(
|
const payload = jwt.verify(
|
||||||
|
|
@ -45,6 +68,12 @@ export const verifyAccessToken = async (token: string) => {
|
||||||
}
|
}
|
||||||
};
|
};
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Verifies a given refresh token and decodes the payload if the token is valid.
|
||||||
|
*
|
||||||
|
* @param token - The JWT string to verify.
|
||||||
|
* @returns A promise that resolves to the decoded payload or null if verification fails.
|
||||||
|
*/
|
||||||
export const verifyRefreshToken = async (token: string) => {
|
export const verifyRefreshToken = async (token: string) => {
|
||||||
try {
|
try {
|
||||||
const payload = jwt.verify(
|
const payload = jwt.verify(
|
||||||
|
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
||||||
import { HTTPException } from "hono/http-exception";
|
|
||||||
|
|
||||||
export const forbidden = () => {
|
|
||||||
throw new HTTPException(403, {
|
|
||||||
message: "You are not allowed nor authorized to do this action",
|
|
||||||
});
|
|
||||||
};
|
|
||||||
|
|
@ -1,11 +1,25 @@
|
||||||
import bcrypt from "bcrypt";
|
import bcrypt from "bcrypt";
|
||||||
|
|
||||||
|
// Number of rounds for generating the salt.
|
||||||
const saltRounds = 10;
|
const saltRounds = 10;
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Hashes a password using bcrypt with a predefined number of salt rounds.
|
||||||
|
*
|
||||||
|
* @param password - The plaintext password to hash.
|
||||||
|
* @returns A promise that resolves to the hashed password string.
|
||||||
|
*/
|
||||||
export const hashPassword = async (password: string) => {
|
export const hashPassword = async (password: string) => {
|
||||||
return await bcrypt.hash(password, saltRounds);
|
return await bcrypt.hash(password, saltRounds);
|
||||||
};
|
};
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Checks if a plaintext password matches a given hash.
|
||||||
|
*
|
||||||
|
* @param password - The plaintext password to verify.
|
||||||
|
* @param hash - The hash to compare against the password.
|
||||||
|
* @returns A promise that resolves to a boolean indicating whether the password matches the hash.
|
||||||
|
*/
|
||||||
export const checkPassword = async (password: string, hash: string) => {
|
export const checkPassword = async (password: string, hash: string) => {
|
||||||
return await bcrypt.compare(password, hash);
|
return await bcrypt.compare(password, hash);
|
||||||
};
|
};
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue
Block a user