fosrl.pangolin/server/routers/olm/getOlmToken.ts

import { generateSessionToken } from "@server/auth/sessions/app";
import { db } from "@server/db";
import { olms } from "@server/db";
import HttpCode from "@server/types/HttpCode";
import response from "@server/lib/response";
import { eq } from "drizzle-orm";
import { NextFunction, Request, Response } from "express";
import createHttpError from "http-errors";
import { z } from "zod";
import { fromError } from "zod-validation-error";
import {
    createOlmSession,
    validateOlmSessionToken
} from "@server/auth/sessions/olm";
import { verifyPassword } from "@server/auth/password";
import logger from "@server/logger";
import config from "@server/lib/config";

export const olmGetTokenBodySchema = z.object({
    olmId: z.string(),
    secret: z.string(),
    token: z.string().optional()
});

export type OlmGetTokenBody = z.infer<typeof olmGetTokenBodySchema>;

export async function getOlmToken(
    req: Request,
    res: Response,
    next: NextFunction
): Promise<any> {
    const parsedBody = olmGetTokenBodySchema.safeParse(req.body);

    if (!parsedBody.success) {
        return next(
            createHttpError(
                HttpCode.BAD_REQUEST,
                fromError(parsedBody.error).toString()
            )
        );
    }

    const { olmId, secret, token } = parsedBody.data;

    try {
        if (token) {
            const { session, olm } = await validateOlmSessionToken(token);
            if (session) {
                if (config.getRawConfig().app.log_failed_attempts) {
                    logger.info(
                        `Olm session already valid. Olm ID: ${olmId}. IP: ${req.ip}.`
                    );
                }
                return response<null>(res, {
                    data: null,
                    success: true,
                    error: false,
                    message: "Token session already valid",
                    status: HttpCode.OK
                });
            }
        }

        const existingOlmRes = await db
            .select()
            .from(olms)
            .where(eq(olms.olmId, olmId));
        if (!existingOlmRes || !existingOlmRes.length) {
            return next(
                createHttpError(
                    HttpCode.BAD_REQUEST,
                    "No olm found with that olmId"
                )
            );
        }

        const existingOlm = existingOlmRes[0];

        const validSecret = await verifyPassword(
            secret,
            existingOlm.secretHash
        );
        if (!validSecret) {
            if (config.getRawConfig().app.log_failed_attempts) {
                logger.info(
                    `Olm id or secret is incorrect. Olm: ID ${olmId}. IP: ${req.ip}.`
                );
            }
            return next(
                createHttpError(HttpCode.BAD_REQUEST, "Secret is incorrect")
            );
        }

        logger.debug("Creating new olm session token");

        const resToken = generateSessionToken();
        await createOlmSession(resToken, existingOlm.olmId);

        logger.debug("Token created successfully");

        return response<{ token: string }>(res, {
            data: {
                token: resToken
            },
            success: true,
            error: false,
            message: "Token created successfully",
            status: HttpCode.OK
        });
    } catch (error) {
        logger.error(error);
        return next(
            createHttpError(
                HttpCode.INTERNAL_SERVER_ERROR,
                "Failed to authenticate olm"
            )
        );
    }
}
add failed auth logging 2025-01-27 22:43:32 -05:00			`import { generateSessionToken } from "@server/auth/sessions/app";`
add exit node name and fix db import issues 2025-06-15 17:49:27 -04:00			`import { db } from "@server/db";`
			`import { olms } from "@server/db";`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`import HttpCode from "@server/types/HttpCode";`
refactor and reorganize 2025-01-01 21:41:31 -05:00			`import response from "@server/lib/response";`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`import { eq } from "drizzle-orm";`
			`import { NextFunction, Request, Response } from "express";`
			`import createHttpError from "http-errors";`
			`import { z } from "zod";`
			`import { fromError } from "zod-validation-error";`
add failed auth logging 2025-01-27 22:43:32 -05:00			`import {`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`createOlmSession,`
			`validateOlmSessionToken`
			`} from "@server/auth/sessions/olm";`
reset password flow 2024-12-22 16:59:30 -05:00			`import { verifyPassword } from "@server/auth/password";`
add failed auth logging 2025-01-27 22:43:32 -05:00			`import logger from "@server/logger";`
			`import config from "@server/lib/config";`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`export const olmGetTokenBodySchema = z.object({`
			`olmId: z.string(),`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`secret: z.string(),`
reset password flow 2024-12-22 16:59:30 -05:00			`token: z.string().optional()`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`});`

Get new api endpoints working 2025-02-21 16:12:21 -05:00			`export type OlmGetTokenBody = z.infer<typeof olmGetTokenBodySchema>;`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`export async function getOlmToken(`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`req: Request,`
			`res: Response,`
			`next: NextFunction`
			`): Promise<any> {`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`const parsedBody = olmGetTokenBodySchema.safeParse(req.body);`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
			`if (!parsedBody.success) {`
			`return next(`
			`createHttpError(`
			`HttpCode.BAD_REQUEST,`
			`fromError(parsedBody.error).toString()`
			`)`
			`);`
			`}`

Get new api endpoints working 2025-02-21 16:12:21 -05:00			`const { olmId, secret, token } = parsedBody.data;`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
			`try {`
			`if (token) {`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`const { session, olm } = await validateOlmSessionToken(token);`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`if (session) {`
add failed auth logging 2025-01-27 22:43:32 -05:00			`if (config.getRawConfig().app.log_failed_attempts) {`
			`logger.info(`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`Olm session already valid. Olm ID: ${olmId}. IP: ${req.ip}.`
add failed auth logging 2025-01-27 22:43:32 -05:00			`);`
			`}`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`return response<null>(res, {`
			`data: null,`
			`success: true,`
			`error: false,`
			`message: "Token session already valid",`
reset password flow 2024-12-22 16:59:30 -05:00			`status: HttpCode.OK`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`});`
			`}`
			`}`

Get new api endpoints working 2025-02-21 16:12:21 -05:00			`const existingOlmRes = await db`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`.select()`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`.from(olms)`
			`.where(eq(olms.olmId, olmId));`
			`if (!existingOlmRes \|\| !existingOlmRes.length) {`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`return next(`
			`createHttpError(`
			`HttpCode.BAD_REQUEST,`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`"No olm found with that olmId"`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`)`
			`);`
			`}`

Get new api endpoints working 2025-02-21 16:12:21 -05:00			`const existingOlm = existingOlmRes[0];`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
reset password flow 2024-12-22 16:59:30 -05:00			`const validSecret = await verifyPassword(`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`secret,`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`existingOlm.secretHash`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`);`
			`if (!validSecret) {`
add failed auth logging 2025-01-27 22:43:32 -05:00			`if (config.getRawConfig().app.log_failed_attempts) {`
			`logger.info(`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`Olm id or secret is incorrect. Olm: ID ${olmId}. IP: ${req.ip}.`
add failed auth logging 2025-01-27 22:43:32 -05:00			`);`
			`}`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`return next(`
reset password flow 2024-12-22 16:59:30 -05:00			`createHttpError(HttpCode.BAD_REQUEST, "Secret is incorrect")`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`);`
			`}`

Get new api endpoints working 2025-02-21 16:12:21 -05:00			`logger.debug("Creating new olm session token");`

Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`const resToken = generateSessionToken();`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`await createOlmSession(resToken, existingOlm.olmId);`

			`logger.debug("Token created successfully");`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00
			`return response<{ token: string }>(res, {`
			`data: {`
			`token: resToken`
			`},`
			`success: true,`
			`error: false,`
			`message: "Token created successfully",`
reset password flow 2024-12-22 16:59:30 -05:00			`status: HttpCode.OK`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`});`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`} catch (error) {`
			`logger.error(error);`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`return next(`
			`createHttpError(`
			`HttpCode.INTERNAL_SERVER_ERROR,`
Get new api endpoints working 2025-02-21 16:12:21 -05:00			`"Failed to authenticate olm"`
Basic websocket and auth for newt 2024-11-10 17:08:11 -05:00			`)`
			`);`
			`}`
			`}`