dsql-admin/dsql-app/.local_dist/server/chunks/1007.js

43 lines
1.6 KiB
JavaScript
Raw Normal View History

2024-11-05 11:12:42 +00:00
"use strict";
exports.id = 1007;
exports.ids = [1007];
exports.modules = {
/***/ 1007:
/***/ ((module, __unused_webpack_exports, __webpack_require__) => {
// @ts-check
const fs = __webpack_require__(7147);
const decrypt = __webpack_require__(5425);
2024-11-27 11:23:44 +00:00
/** @type {import("../../types").CheckApiCredentialsFn} */ const grabApiCred = ({ key , database , table , user_id })=>{
2024-11-06 12:06:51 +00:00
if (!key) return null;
2024-11-27 11:23:44 +00:00
if (!user_id) return null;
2024-11-05 11:12:42 +00:00
try {
const allowedKeysPath = process.env.DSQL_API_KEYS_PATH;
if (!allowedKeysPath) throw new Error("process.env.DSQL_API_KEYS_PATH variable not found");
const ApiJSON = decrypt(key);
2024-11-06 12:06:51 +00:00
/** @type {import("../../types").ApiKeyObject} */ const ApiObject = JSON.parse(ApiJSON || "");
2024-11-05 11:12:42 +00:00
const isApiKeyValid = fs.existsSync(`${allowedKeysPath}/${ApiObject.sign}`);
2024-11-27 11:23:44 +00:00
if (String(ApiObject.user_id) !== String(user_id)) return null;
2024-11-05 11:12:42 +00:00
if (!isApiKeyValid) return null;
if (!ApiObject.target_database) return ApiObject;
if (!database && ApiObject.target_database) return null;
const isDatabaseAllowed = ApiObject.target_database?.split(",").includes(String(database));
if (isDatabaseAllowed && !ApiObject.target_table) return ApiObject;
if (isDatabaseAllowed && !table && ApiObject.target_table) return null;
const isTableAllowed = ApiObject.target_table?.split(",").includes(String(table));
if (isTableAllowed) return ApiObject;
return null;
2024-11-05 14:18:40 +00:00
} catch (/** @type {any} */ error) {
console.log(`api-cred ERROR: ${error.message}`);
2024-11-05 11:12:42 +00:00
return null;
}
};
module.exports = grabApiCred;
/***/ })
};
;