feat: change validation workflow

suriyun-mmorpg · Sep 1, 2024 · 36bda6e · 36bda6e
1 parent 6cdc38d
commit 36bda6e
Showing 1 changed file with 15 additions and 6 deletions.
diff --git a/src/index.ts b/src/index.ts
@@ -1,20 +1,29 @@
 import fastify, { FastifyListenOptions } from 'fastify'
 import authPlugin from '@fastify/auth'
-import bearerAuthPlugin from '@fastify/bearer-auth'
 import { PrismaClient as GuildWarClient } from '../prisma/generated/guildwar-client'
 import { OccupyForm } from './interfaces'
 import { GuildWarService } from './functions'
 
 const secretKeys: string = process.env.SECRET_KEYS ? process.env.SECRET_KEYS : "[\"secret\"]"
 const guildWarClient = new GuildWarClient()
 
+const validateAppAccess = async(request: any, reply: any, done: (err?: Error) => void) =>
+{
+ const header = request.headers['x-api-key']!
+ if (!header) {
+ done(new Error('No secret key'))
+ return
+ }
+ const keys = JSON.parse(secretKeys)
+ if (keys.indexOf(header) < 0) {
+ done(new Error('Invalid secret key'))
+ return
+ }
+}
+
 const functions = new GuildWarService(guildWarClient)
 const server = fastify({ logger: true })
  .register(authPlugin)
- .register(bearerAuthPlugin, {
- keys: JSON.parse(secretKeys),
- addHook: false,
- })
  .after(() => {
  server.get('/:mapName', functions.getEntryApi)
 
@@ -26,7 +35,7 @@ const server = fastify({ logger: true })
 
  server.post<{ Body: OccupyForm }>('/internal/occupy', {
  preHandler: server.auth([
- server.verifyBearerAuth!
+ validateAppAccess
  ]),
  }, functions.postOccupyApi)
  })