33 lines
604 B
JavaScript
33 lines
604 B
JavaScript
const jwt = require('jsonwebtoken');
|
|
const { tokens } = require('../database/models');
|
|
|
|
const generate = require('./token-generate');
|
|
const destroy = require('./token-destroy');
|
|
|
|
module.exports = (token, callback) => {
|
|
if (!token) {
|
|
return callback(401);
|
|
}
|
|
|
|
const tokenRecord = tokens.findOne({
|
|
where: {
|
|
token
|
|
}
|
|
});
|
|
|
|
if (!tokenRecord) {
|
|
return callback(403);
|
|
}
|
|
|
|
jwt.verify(token, process.env.SECRET_REFRESH, (err, user) => {
|
|
if (err) {
|
|
return callback(403);
|
|
}
|
|
|
|
const result = generate(user.username, user.privilege);
|
|
|
|
destroy(token);
|
|
|
|
return callback(null, result);
|
|
});
|
|
}; |