apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
25837 Commits
708 Branches
1181 Tags
2.0 GiB
 
 
 
 
 
Tag: Branch: Tree: 35985d7e18
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '35985d7e18'
${ noResults }
Rocket.Chat/apps/meteor/app/lib/server/methods/createToken.ts

46 lines
1.4 KiB
Raw Blame History

import { User } from '@rocket.chat/core-services';
import type { ServerMethods } from '@rocket.chat/ui-contexts';
import { Accounts } from 'meteor/accounts-base';
import { Meteor } from 'meteor/meteor';
import { hasPermissionAsync } from '../../../authorization/server/functions/hasPermission';
import { methodDeprecationLogger } from '../lib/deprecationWarningLogger';
declare module '@rocket.chat/ui-contexts' {
// eslint-disable-next-line @typescript-eslint/naming-convention
interface ServerMethods {
createToken(userId: string): { userId: string; authToken: string };
}
}
export async function generateAccessToken(callee: string, userId: string) {
if (
!['yes', 'true'].includes(String(process.env.CREATE_TOKENS_FOR_USERS)) ||
(callee !== userId && !(await hasPermissionAsync(callee, 'user-generate-access-token')))
) {
throw new Meteor.Error('error-not-authorized', 'Not authorized', { method: 'createToken' });
}
const token = Accounts._generateStampedLoginToken();
Accounts._insertLoginToken(userId, token);
await User.ensureLoginTokensLimit(userId);
return {
userId,
authToken: token.token,
};
}
Meteor.methods<ServerMethods>({
async createToken(userId) {
methodDeprecationLogger.method('createToken', '8.0.0');
const callee = Meteor.userId();
if (!callee) {
throw new Meteor.Error('error-invalid-user', 'Invalid user', { method: 'createToken' });
}
return generateAccessToken(callee, userId);
},
});