cartodb/CartoDB-SQL-API
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1011ecce89
CartoDB-SQL-API/app/middlewares/authenticated-request.js
Daniel García Aubert 15949d2fc2 Fix wrong function name
2017-11-24 15:55:16 +01:00

36 lines
1.1 KiB
JavaScript
Raw Blame History

'use strict';
var _ = require('underscore');
var AuthApi = require('../auth/auth_api');
var handleException = require('../utils/error_handler');
function authenticatedMiddleware(userDatabaseService) {
return function middleware(req, res, next) {
req.profiler.start('sqlapi.job');
req.profiler.done('init');
var body = (req.body) ? req.body : {};
// clone so don't modify req.params or req.body so oauth is not broken
var params = _.extend({}, req.query, body);
var authApi = new AuthApi(req, params);
userDatabaseService.getConnectionParams(authApi, res.locals.user, function connectionParams(err, userDbParams) {
req.profiler.done('setDBAuth');
if (err) {
return handleException(err, res);
}
if (!userDbParams.authenticated) {
return handleException(new Error('permission denied'), res);
}
res.locals.userDbParams = userDbParams;
return next(null);
});
};
}
module.exports = authenticatedMiddleware;
Reference in New Issue View Git Blame Copy Permalink