mirrors/mStream
3
0
Fork 0
mirror of https://github.com/IrosTheBeggar/mStream.git synced 2025-10-27 07:31:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
affd207c69
mStream/modules/shared.js
Paul Sori 37ddd09a77 login cleanup
2018-10-28 18:41:22 -04:00

78 lines
2.1 KiB
JavaScript
Raw Blame History

const winston = require('winston');
const uuidV4 = require('uuid/v4');
const jwt = require('jsonwebtoken');
const loki = require('lokijs');
const shareDB = new loki('share.db'); // TODO: Add this to config
var shareCollection;
shareDB.loadDatabase({}, err => {
shareCollection = shareDB.getCollection('playlists');
if (shareCollection === null) {
shareCollection = shareDB.addCollection("playlists");
}
});
// TODO: Automatically delete expired shared playlists
exports.setupBeforeSecurity = function (mstream, program) {
mstream.post('/shared/get-token-and-playlist', (req, res) => {
if (!req.body.tokenid) {
res.status(500).json({ error: 'Please Supply Token' });
return;
}
const playlistItem = shareCollection.findOne({ 'playlist_id': req.body.tokenid });
if(!playlistItem) {
return res.status(404).json({ error: 'Playlist Not Found' })
}
jwt.verify(playlistItem.token, program.secret, (err, decoded) => {
if (err) {
return res.redirect('/access-denied');
}
res.json({
token: playlistItem.token,
playlist: decoded.allowedFiles
});
});
});
}
exports.setupAfterSecurity = function (mstream, program) {
mstream.post('/shared/make-shared', (req, res) => {
if(!req.body.playlist) {
return res.status(403).json({ error: 'Missing Input Params' });
}
var shareTimeInDays = req.body.time;
const playlist = req.body.playlist; // TODO: Verify this
// Verify Share Time
if (!shareTimeInDays || !Number.isInteger(shareTimeInDays) || shareTimeInDays < 1) {
shareTimeInDays = 14;
}
// Setup Token Data
const tokenData = {
allowedFiles: playlist,
shareToken: true,
username: req.user.username
}
const sharedItem = {
playlist_id: uuidV4(),
token: jwt.sign(tokenData, program.secret, { expiresIn: shareTimeInDays + 'd' })
};
// Save to DB
shareCollection.insert(sharedItem);
shareDB.saveDatabase(err => {
if (err) {
winston.error(`DB Save Error : ${err}`);
}
});
// Return Token and ID
res.json(sharedItem);
});
}
Reference in New Issue View Git Blame Copy Permalink