wip

packages/auth/server/lib/utils/authorizer.ts

@@ -0,0 +1,22 @@
+import type { Context } from 'hono';
+
+import type { HonoAuthContext } from '../../types/context';
+import { createSession, generateSessionToken } from '../session/session';
+import { setSessionCookie } from '../session/session-cookies';
+
+type AuthorizeUser = {
+  userId: number;
+};
+
+/**
+ * Handles creating a session.
+ */
+export const onAuthorize = async (user: AuthorizeUser, c: Context<HonoAuthContext>) => {
+  const metadata = c.get('requestMetadata');
+
+  const sessionToken = generateSessionToken();
+
+  await createSession(sessionToken, user.userId, metadata);
+
+  await setSessionCookie(c, sessionToken);
+};

packages/auth/server/lib/utils/debugger.ts

@@ -0,0 +1,5 @@
+export const authDebugger = (message: string) => {
+  if (process.env.NODE_ENV === 'development') {
+    console.log(`[DEBUG]: ${message}`);
+  }
+};

packages/auth/server/lib/utils/get-session.ts

@@ -0,0 +1,57 @@
+import type { Context } from 'hono';
+
+import { AppError } from '@documenso/lib/errors/app-error';
+
+import { AuthenticationErrorCode } from '../errors/error-codes';
+import type { SessionValidationResult } from '../session/session';
+import { validateSessionToken } from '../session/session';
+import { getSessionCookie } from '../session/session-cookies';
+import { authDebugger } from './debugger';
+
+export const getSession = async (c: Context | Request): Promise<SessionValidationResult> => {
+  // Todo: Make better
+  const sessionId = await getSessionCookie(mapRequestToContextForCookie(c));
+
+  authDebugger(`Session ID: ${sessionId}`);
+
+  if (!sessionId) {
+    return {
+      isAuthenticated: false,
+      session: null,
+      user: null,
+    };
+  }
+
+  return await validateSessionToken(sessionId);
+};
+
+export const getRequiredSession = async (c: Context | Request) => {
+  const { session, user } = await getSession(mapRequestToContextForCookie(c));
+
+  if (session && user) {
+    return { session, user };
+  }
+
+  // Todo: Test if throwing errors work
+  if (c instanceof Request) {
+    throw new Error('Unauthorized');
+  }
+
+  throw new AppError(AuthenticationErrorCode.Unauthorized);
+};
+
+const mapRequestToContextForCookie = (c: Context | Request) => {
+  if (c instanceof Request) {
+    // c.req.raw.headers.
+    const partialContext = {
+      req: {
+        raw: c,
+      },
+    };
+
+    // eslint-disable-next-line @typescript-eslint/consistent-type-assertions
+    return partialContext as unknown as Context;
+  }
+
+  return c;
+};