| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 |
- import { Body, Controller, Get, Post, Req } from "@nestjs/common";
- import { LoginDto } from "./login.dto";
- import { AuthService } from "../../auth/auth.service";
- import { RolesGuard } from "../../auth/roles-guard";
- import { Role } from "../../auth/role";
- import { UserEntity } from "../../entity/user/user.entity";
- @Controller('auth')
- export class AuthController {
- constructor(private authService: AuthService) {}
- /**
- * Attempts a login given the username and password of a user. If successful, returns
- * the user data and a token to be used by Bearer auth.
- */
- @Post('login')
- async login(@Body() loginDto: LoginDto) {
- const { user, token } = await this.authService.createToken(loginDto.username, loginDto.password);
- if (token) {
- return {
- token,
- user: this.publiclyAccessibleUser(user)
- };
- }
- }
- /**
- * Returns information about the current authenticated user.
- */
- @RolesGuard([Role.Authenticated])
- @Get('me')
- async me(@Req() request) {
- const user = request.user as UserEntity;
- return this.publiclyAccessibleUser(user);
- }
- /**
- * Exposes a subset of the UserEntity properties which we want to expose to the public API.
- */
- private publiclyAccessibleUser(user: UserEntity): Pick<UserEntity, 'id' | 'identifier' | 'roles'> {
- return {
- id: user.id,
- identifier: user.identifier,
- roles: user.roles
- };
- }
- }
|
