|
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354 |
- import express from 'express'
- import { HttpStatusCode, OAuthClientLocal } from '@peertube/peertube-models'
- import { isTestOrDevInstance } from '@peertube/peertube-node-utils'
- import { OAuthClientModel } from '@server/models/oauth/oauth-client.js'
- import { logger } from '../../helpers/logger.js'
- import { CONFIG } from '../../initializers/config.js'
- import { apiRateLimiter, asyncMiddleware, openapiOperationDoc } from '../../middlewares/index.js'
-
- const oauthClientsRouter = express.Router()
-
- oauthClientsRouter.use(apiRateLimiter)
-
- oauthClientsRouter.get('/local',
- openapiOperationDoc({ operationId: 'getOAuthClient' }),
- asyncMiddleware(getLocalClient)
- )
-
- // Get the client credentials for the PeerTube front end
- async function getLocalClient (req: express.Request, res: express.Response, next: express.NextFunction) {
- const serverHostname = CONFIG.WEBSERVER.HOSTNAME
- const serverPort = CONFIG.WEBSERVER.PORT
- let headerHostShouldBe = serverHostname
- if (serverPort !== 80 && serverPort !== 443) {
- headerHostShouldBe += ':' + serverPort
- }
-
- // Don't make this check if this is a test instance
- if (!isTestOrDevInstance() && req.get('host') !== headerHostShouldBe) {
- logger.info(
- 'Getting client tokens for host %s is forbidden (expected %s).', req.get('host'), headerHostShouldBe,
- { webserverConfig: CONFIG.WEBSERVER }
- )
-
- return res.fail({
- status: HttpStatusCode.FORBIDDEN_403,
- message: `Getting client tokens for host ${req.get('host')} is forbidden`
- })
- }
-
- const client = await OAuthClientModel.loadFirstClient()
- if (!client) throw new Error('No client available.')
-
- const json: OAuthClientLocal = {
- client_id: client.clientId,
- client_secret: client.clientSecret
- }
- return res.json(json)
- }
-
- // ---------------------------------------------------------------------------
-
- export {
- oauthClientsRouter
- }
|
