Home Explore Help
Register Sign In
chengnan
/
s202226701001
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
s202226701001
/
sever-test
/
node_modules
/
firebase-admin
/
lib
/
app-check
/
app-check.js

app-check.js 3.8 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101 
  1. /*! firebase-admin v12.1.1 */
    2. 

  2. "use strict";
    3. 

  3. /*!
    4. 

  4.  * @license
    5. 

  5.  * Copyright 2021 Google Inc.
    6. 

  6.  *
    7. 

  7.  * Licensed under the Apache License, Version 2.0 (the "License");
    8. 

  8.  * you may not use this file except in compliance with the License.
    9. 

  9.  * You may obtain a copy of the License at
    10. 

  10.  *
    11. 

  11.  *   http://www.apache.org/licenses/LICENSE-2.0
    12. 

  12.  *
    13. 

  13.  * Unless required by applicable law or agreed to in writing, software
    14. 

  14.  * distributed under the License is distributed on an "AS IS" BASIS,
    15. 

  15.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    16. 

  16.  * See the License for the specific language governing permissions and
    17. 

  17.  * limitations under the License.
    18. 

  18.  */
    19. 

  19. Object.defineProperty(exports, "__esModule", { value: true });
    20. 

  20. exports.AppCheck = void 0;
    21. 

  21. const validator = require("../utils/validator");
    22. 

  22. const app_check_api_client_internal_1 = require("./app-check-api-client-internal");
    23. 

  23. const token_generator_1 = require("./token-generator");
    24. 

  24. const token_verifier_1 = require("./token-verifier");
    25. 

  25. const crypto_signer_1 = require("../utils/crypto-signer");
    26. 

  26. /**
    27. 

  27.  * The Firebase `AppCheck` service interface.
    28. 

  28.  */
    29. 

  29. class AppCheck {
    30. 

  30.     /**
    31. 

  31.      * @param app - The app for this AppCheck service.
    32. 

  32.      * @constructor
    33. 

  33.      * @internal
    34. 

  34.      */
    35. 

  35.     constructor(app) {
    36. 

  36.         this.app = app;
    37. 

  37.         this.client = new app_check_api_client_internal_1.AppCheckApiClient(app);
    38. 

  38.         try {
    39. 

  39.             this.tokenGenerator = new token_generator_1.AppCheckTokenGenerator((0, crypto_signer_1.cryptoSignerFromApp)(app));
    40. 

  40.         }
    41. 

  41.         catch (err) {
    42. 

  42.             throw (0, token_generator_1.appCheckErrorFromCryptoSignerError)(err);
    43. 

  43.         }
    44. 

  44.         this.appCheckTokenVerifier = new token_verifier_1.AppCheckTokenVerifier(app);
    45. 

  45.     }
    46. 

  46.     /**
    47. 

  47.      * Creates a new {@link AppCheckToken} that can be sent
    48. 

  48.      * back to a client.
    49. 

  49.      *
    50. 

  50.      * @param appId - The app ID to use as the JWT app_id.
    51. 

  51.      * @param options - Optional options object when creating a new App Check Token.
    52. 

  52.      *
    53. 

  53.      * @returns A promise that fulfills with a `AppCheckToken`.
    54. 

  54.      */
    55. 

  55.     createToken(appId, options) {
    56. 

  56.         return this.tokenGenerator.createCustomToken(appId, options)
    57. 

  57.             .then((customToken) => {
    58. 

  58.             return this.client.exchangeToken(customToken, appId);
    59. 

  59.         });
    60. 

  60.     }
    61. 

  61.     /**
    62. 

  62.      * Verifies a Firebase App Check token (JWT). If the token is valid, the promise is
    63. 

  63.      * fulfilled with the token's decoded claims; otherwise, the promise is
    64. 

  64.      * rejected.
    65. 

  65.      *
    66. 

  66.      * @param appCheckToken - The App Check token to verify.
    67. 

  67.      * @param options - Optional {@link VerifyAppCheckTokenOptions} object when verifying an App Check Token.
    68. 

  68.      *
    69. 

  69.      * @returns A promise fulfilled with the token's decoded claims
    70. 

  70.      *   if the App Check token is valid; otherwise, a rejected promise.
    71. 

  71.      */
    72. 

  72.     verifyToken(appCheckToken, options) {
    73. 

  73.         this.validateVerifyAppCheckTokenOptions(options);
    74. 

  74.         return this.appCheckTokenVerifier.verifyToken(appCheckToken)
    75. 

  75.             .then((decodedToken) => {
    76. 

  76.             if (options?.consume) {
    77. 

  77.                 return this.client.verifyReplayProtection(appCheckToken)
    78. 

  78.                     .then((alreadyConsumed) => {
    79. 

  79.                     return {
    80. 

  80.                         alreadyConsumed,
    81. 

  81.                         appId: decodedToken.app_id,
    82. 

  82.                         token: decodedToken,
    83. 

  83.                     };
    84. 

  84.                 });
    85. 

  85.             }
    86. 

  86.             return {
    87. 

  87.                 appId: decodedToken.app_id,
    88. 

  88.                 token: decodedToken,
    89. 

  89.             };
    90. 

  90.         });
    91. 

  91.     }
    92. 

  92.     validateVerifyAppCheckTokenOptions(options) {
    93. 

  93.         if (typeof options === 'undefined') {
    94. 

  94.             return;
    95. 

  95.         }
    96. 

  96.         if (!validator.isNonNullObject(options)) {
    97. 

  97.             throw new app_check_api_client_internal_1.FirebaseAppCheckError('invalid-argument', 'VerifyAppCheckTokenOptions must be a non-null object.');
    98. 

  98.         }
    99. 

  99.     }
    100. 

  100. }
    101. 

  101. exports.AppCheck = AppCheck;
    102.