2025-10-27 06:41:51 +00:00
|
|
|
import {
|
|
|
|
|
CanActivate,
|
|
|
|
|
ExecutionContext,
|
|
|
|
|
Injectable,
|
|
|
|
|
UnauthorizedException,
|
|
|
|
|
} from '@nestjs/common';
|
|
|
|
|
import { ConfigService } from '@nestjs/config';
|
|
|
|
|
import { JwtService } from '@nestjs/jwt';
|
2025-10-28 07:41:24 +00:00
|
|
|
import { Request } from 'express';
|
2025-10-27 06:41:51 +00:00
|
|
|
|
|
|
|
|
@Injectable()
|
|
|
|
|
export class AuthGuard implements CanActivate {
|
|
|
|
|
constructor(
|
|
|
|
|
private jwtService: JwtService,
|
|
|
|
|
private configService: ConfigService,
|
|
|
|
|
) {}
|
|
|
|
|
|
|
|
|
|
async canActivate(context: ExecutionContext): Promise<boolean> {
|
|
|
|
|
const request = context.switchToHttp().getRequest();
|
2025-10-28 07:41:24 +00:00
|
|
|
const token = this.extractTokenFromCookie(request);
|
2025-10-27 06:41:51 +00:00
|
|
|
if (!token) {
|
|
|
|
|
throw new UnauthorizedException();
|
|
|
|
|
}
|
|
|
|
|
try {
|
|
|
|
|
const payload = await this.jwtService.verifyAsync(token, {
|
|
|
|
|
secret: this.configService.get<string>('JWT_SECRET'),
|
|
|
|
|
});
|
|
|
|
|
request['user'] = payload;
|
|
|
|
|
} catch {
|
|
|
|
|
throw new UnauthorizedException();
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private extractTokenFromHeader(request: any): string | undefined {
|
|
|
|
|
const [type, token] = request.headers?.authorization?.split(' ') ?? [];
|
|
|
|
|
return type === 'Bearer' ? token : undefined;
|
|
|
|
|
}
|
2025-10-28 07:41:24 +00:00
|
|
|
|
|
|
|
|
private extractTokenFromCookie(request: Request): string | undefined {
|
|
|
|
|
return request.cookies?.access_token;
|
|
|
|
|
}
|
2025-10-27 06:41:51 +00:00
|
|
|
}
|
