21 lines
855 B
JavaScript
21 lines
855 B
JavaScript
import { globalConfig, db } from "../index.js"
|
|
|
|
/**
|
|
* (DEPRECATED) Checks if a token exists in the sessions file (authentication) and if it has the correct permissions (authorization)
|
|
* @param {string} token Token as received by client
|
|
* @param {string} scope Scope the token will need to have in order to succeed
|
|
* @returns {boolean} True for successful authentication and authorization, false if either fail
|
|
*/
|
|
async function checkToken(token,scope) {
|
|
return await db`select s.token, s.scopes, s.expires, u.username from sessions s join users u on s.owner = u.id where s.token = ${token}`.then(response => {
|
|
if (response.length === 0) {
|
|
return false
|
|
} else if (response[0]?.scopes.split(",").includes(scope)) {
|
|
return true
|
|
} else {
|
|
return false
|
|
}
|
|
})
|
|
}
|
|
|
|
export {checkToken} |