test:example

yuval-hazaz · yuval-hazaz · commit db0c5cb3d192 · 2025-03-11T12:53:45.000+02:00
diff --git a/plugins/auth-jwt/src/index.ts b/plugins/auth-jwt/src/index.ts
@@ -41,7 +41,7 @@ import {
 } from "./constants";
 import { getPluginSettings } from "./util/getPluginSettings";
 import { beforeCreateSeed } from "./events/createSeed";
-
+import { replacePlaceholdersInModuleMap } from "./static-file-utils";
 const ARGS_ID = builders.identifier("args");
 const PASSWORD_FIELD_ASYNC_METHODS = new Set(["create", "update"]);
 const DATA_ID = builders.identifier("data");
@@ -141,6 +141,16 @@ class JwtAuthPlugin implements AmplicationPlugin {
       context.serverDirectories.srcDirectory
     );
 
+    const updatedModuleMap = replacePlaceholdersInModuleMap(
+      modules,
+      {
+        "{{USER_SERVICE}}": "userService",
+      },
+      {
+        "{{USER_SERVICE}}": "userService",
+      }
+    );
+
     // 1. create jwtStrategy base file.
     const jwyStrategyBase = await createJwtStrategyBase(context);
     await modules.set(jwyStrategyBase);
diff --git a/plugins/auth-jwt/src/middle.ts b/plugins/auth-jwt/src/middle.ts
@@ -0,0 +1,49 @@
+import { NextFunction } from "express";
+import { AuthServicePlaceholderService } from "../authServicePlaceholder/authServicePlaceholder.service";
+import { Injectable, NestMiddleware } from "@nestjs/common";
+import * as jwt from "jsonwebtoken";
+
+@Injectable()
+export class UserValidateActiveDirectory implements NestMiddleware {
+  constructor(private userService: AuthServicePlaceholderService) {}
+
+  async use(req: any, res: any, next: NextFunction) {
+    try {
+      // Extract the token from the Authorization header
+      const authHeader = req.headers["authorization"];
+      if (!authHeader || !authHeader.startsWith("Bearer ")) {
+        return res.status(401).send({
+          status: "error",
+          text: "Authorization header is missing or invalid",
+        });
+      }
+      const token = authHeader.split(" ")[1]; // Remove "Bearer " prefix
+      try {
+        // Decode the token without verification (this assumes you're not verifying the signature here)
+        const decodedToken = jwt.decode(token) as { tokenFieldName?: string };
+        res.tokenFieldName = (decodedToken as any)["cognito:username"];
+        const loginUser = await this.userService.authServicePlaceholder({
+          where: { authEntityFieldName: res.tokenFieldName },
+        });
+        if (loginUser) {
+          req.user = loginUser;
+          next();
+        } else {
+          res.send({
+            status: "error",
+            text: "user with the given tokenFieldName does not exist",
+          });
+        }
+      } catch (error) {
+        // Handle errors (e.g., invalid token)
+        console.error("Error decoding token:", error);
+        return null;
+      }
+    } catch (error) {
+      console.error("Error in middleware:", error);
+      res
+        .status(500)
+        .send({ status: "error", text: "Internal server error", error });
+    }
+  }
+}
diff --git a/plugins/auth-jwt/src/static-file-utils.ts b/plugins/auth-jwt/src/static-file-utils.ts
@@ -0,0 +1,36 @@
+import { ModuleMap } from "@amplication/code-gen-types";
+
+export function replacePlaceholdersInModuleMap(
+  moduleMap: ModuleMap,
+  templateReplacements: Record<string, string>,
+  stringReplacements: Record<string, string>
+): ModuleMap {
+  moduleMap.modules().forEach((module) => {
+    module.code = replacePlaceholders(module.code, templateReplacements);
+    module.code = replaceText(module.code, stringReplacements);
+  });
+
+  return moduleMap;
+}
+
+export function replacePlaceholders(
+  template: string,
+  replacements: Record<string, string>
+): string {
+  return template.replace(/{{(.*?)}}/g, (match, key) => {
+    // Return the replacement value if it exists (even if it's an empty string)
+    // Otherwise, keep the placeholder
+    return Object.prototype.hasOwnProperty.call(replacements, key.trim())
+      ? replacements[key.trim()]
+      : match;
+  });
+}
+
+export function replaceText(
+  template: string,
+  replacements: Record<string, string>
+): string {
+  return Object.entries(replacements).reduce((result, [key, value]) => {
+    return result.replaceAll(key, value);
+  }, template);
+}
diff --git a/plugins/auth-jwt/src/types.ts b/plugins/auth-jwt/src/types.ts
@@ -1,7 +1,4 @@
 export interface Settings {
-  /**
-   * The Secrets Provider reference for the jwt secret key used to sign the JWT token.
-   * i.e. for the basic secrets provider (env variables), this would be the name of the environment variable containg the JWT Secret Key.
-   */
-  JwtSecretKeyReference: string;
+  tokenPropertyName: string;
+  authEntityFieldName: string;
 }
