File: /var/www/api-management/dist/middleware/auditor.middleware.js
"use strict";
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __metadata = (this && this.__metadata) || function (k, v) {
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.AuditMiddleware = void 0;
const common_1 = require("@nestjs/common");
const auditor_service_1 = require("../app/auditor/services/auditor.service");
const jwt_1 = require("@nestjs/jwt");
const jsonwebtoken_1 = require("jsonwebtoken");
const mongoose_1 = require("mongoose");
const messages_1 = require("../shared/messages/messages");
let AuditMiddleware = class AuditMiddleware {
constructor(auditService, jwtService) {
this.auditService = auditService;
this.jwtService = jwtService;
}
async use(req, res, next) {
const { method, originalUrl, headers, body } = req;
const originalSend = res.send;
res.send = function (data, ...restArgs) {
res.locals.data = data;
return originalSend.apply(res, [data, ...restArgs]);
};
let tokenExpiredAt = null;
let userId = null;
if (headers.authorization) {
const token = headers.authorization.split(' ')[1];
try {
const decoded = this.jwtService.verify(token, {
secret: process.env.JWT_SECRET,
});
userId = new mongoose_1.Types.ObjectId(decoded.sub);
}
catch (e) {
if (e instanceof jsonwebtoken_1.TokenExpiredError) {
tokenExpiredAt = e.expiredAt;
return res.status(401).json({
status: 401,
message: messages_1.default.error.token.message,
error: messages_1.default.error.token.summary,
});
}
else {
return res.status(401).json({
status: 401,
message: messages_1.default.error.token.message,
error: messages_1.default.error.token.summary,
});
}
}
}
res.on('finish', async () => {
const response = res.locals.data || {};
if (userId) {
const auditLog = {
userId,
method,
url: originalUrl,
headers,
body,
response: typeof response === 'string' ? JSON.parse(response) : response,
tokenExpiredAt,
};
await this.auditService.log(auditLog);
}
});
next();
}
};
exports.AuditMiddleware = AuditMiddleware;
exports.AuditMiddleware = AuditMiddleware = __decorate([
(0, common_1.Injectable)(),
__metadata("design:paramtypes", [auditor_service_1.AuditService,
jwt_1.JwtService])
], AuditMiddleware);
//# sourceMappingURL=auditor.middleware.js.map