duckil_plm/fems-api/src/middleware/auth.middleware.js

// src/middleware/auth.middleware.js
const jwt = require("jsonwebtoken");
const config = require("../config/config");
const { User, Role } = require("../models");

const authMiddleware = async (req, res, next) => {
  try {
    const authHeader = req.headers.authorization;
    if (!authHeader || !authHeader.startsWith("Bearer ")) {
      return res
        .status(401)
        .json({ message: "Authentication token is required" });
    }

    const token = authHeader.split(" ")[1];
    const decoded = jwt.verify(token, config.jwt.secret);

    const user = await User.findOne({
      where: { id: decoded.id },
      include: [
        {
          model: Role,
          through: { attributes: [] },
          attributes: ["id", "name", "permissions"],
          required: false,
        },
      ],
      attributes: {
        exclude: ["password"],
      },
    });

    if (!user || !user.isActive) {
      return res.status(401).json({ message: "User not found or inactive" });
    }

    // 권한 정보 처리
    const permissions = {
      "basic:view": true, // 기본 권한
    };

    if (user.Roles) {
      user.Roles.forEach((role) => {
        if (role.permissions) {
          Object.entries(role.permissions).forEach(([key, value]) => {
            permissions[key] = permissions[key] || value;
          });
        }
      });
    }

    // user 객체에서 Roles 제거하고 permissions 추가
    const userData = user.toJSON();
    delete userData.Roles;
    userData.permissions = permissions;

    req.user = userData;
    next();
  } catch (error) {
    return res.status(401).json({ message: "Invalid token" });
  }
};

module.exports = authMiddleware;
auto commit 2024-11-02 02:05:37 +09:00			`// src/middleware/auth.middleware.js`
auto commit 2024-11-09 06:22:41 +09:00			`const jwt = require("jsonwebtoken");`
			`const config = require("../config/config");`
auto commit 2024-11-09 08:58:47 +09:00			`const { User, Role } = require("../models");`
auto commit 2024-11-02 02:05:37 +09:00
			`const authMiddleware = async (req, res, next) => {`
			`try {`
auto commit 2024-11-09 08:58:47 +09:00			`const authHeader = req.headers.authorization;`
			`if (!authHeader \|\| !authHeader.startsWith("Bearer ")) {`
			`return res`
			`.status(401)`
			`.json({ message: "Authentication token is required" });`
auto commit 2024-11-02 02:05:37 +09:00			`}`

auto commit 2024-11-09 08:58:47 +09:00			`const token = authHeader.split(" ")[1];`
			`const decoded = jwt.verify(token, config.jwt.secret);`
auto commit 2024-11-02 02:05:37 +09:00
auto commit 2024-11-09 08:58:47 +09:00			`const user = await User.findOne({`
			`where: { id: decoded.id },`
auto commit 2024-11-09 06:22:41 +09:00			`include: [`
			`{`
			`model: Role,`
auto commit 2024-11-09 08:58:47 +09:00			`through: { attributes: [] },`
			`attributes: ["id", "name", "permissions"],`
			`required: false,`
auto commit 2024-11-09 06:22:41 +09:00			`},`
			`],`
auto commit 2024-11-09 08:58:47 +09:00			`attributes: {`
			`exclude: ["password"],`
			`},`
auto commit 2024-11-09 06:22:41 +09:00			`});`

auto commit 2024-11-09 08:58:47 +09:00			`if (!user \|\| !user.isActive) {`
			`return res.status(401).json({ message: "User not found or inactive" });`
			`}`
auto commit 2024-11-09 06:22:41 +09:00
auto commit 2024-11-09 08:58:47 +09:00			`// 권한 정보 처리`
			`const permissions = {`
			`"basic:view": true, // 기본 권한`
			`};`

			`if (user.Roles) {`
			`user.Roles.forEach((role) => {`
			`if (role.permissions) {`
			`Object.entries(role.permissions).forEach(([key, value]) => {`
			`permissions[key] = permissions[key] \|\| value;`
			`});`
			`}`
			`});`
			`}`
auto commit 2024-11-09 06:22:41 +09:00
auto commit 2024-11-09 08:58:47 +09:00			`// user 객체에서 Roles 제거하고 permissions 추가`
			`const userData = user.toJSON();`
			`delete userData.Roles;`
			`userData.permissions = permissions;`
auto commit 2024-11-09 06:22:41 +09:00
auto commit 2024-11-09 08:58:47 +09:00			`req.user = userData;`
			`next();`
			`} catch (error) {`
			`return res.status(401).json({ message: "Invalid token" });`
auto commit 2024-11-09 06:22:41 +09:00			`}`
			`};`

auto commit 2024-11-09 08:58:47 +09:00			`module.exports = authMiddleware;`