- COMPLETAMENTO PASSAGGIO A VITE - versione 1.2.2:

- Sistemato RefreshToken - Integrato modifiche di PiuCheBuono - Aggiornato a Node 22 - Aggiornato Server a Mongodb 8.0.
2025-03-10 17:20:57 +01:00
parent 6579c6bb3f
commit 4758ce0857
20 changed files with 118 additions and 116 deletions
--- a/src/server/middleware/authenticate.js
+++ b/src/server/middleware/authenticate.js
@@ -88,39 +88,45 @@ const authenticate_noerror = (req, res, next) => {
    const token = req.header('x-auth');
    const refreshToken = req.header('x-refrtok');

-    const idapp = getIdApp(req);
-
-    const access = 'auth';
-    return User.findByToken(token, access, false, idapp).then((ris) => {
-      if (ris.code !== server_constants.RIS_CODE_OK) {
-        req.user = null;
-        req.token = null;
-        req.access = null;
-        req.code = ris.code;
-      } else {
-        req.user = ris.user;
-        req.token = token;
-        req.refreshToken = refreshToken;
-        req.access = access;
-        req.code = ris.code;
-      }
-      if (ris.code === server_constants.RIS_CODE_HTTP_FORBIDDEN_TOKEN_EXPIRED) {
-        return res.status(server_constants.RIS_CODE_HTTP_FORBIDDEN_TOKEN_EXPIRED).send();
-      } else {
-        // Vai avanti ad eseguire il codice, in ogni modo !
-        next();
-      }
-    }).catch((e) => {
+    if (!token) {
      req.user = null;
      req.token = null;
-      req.access = null;
-      req.code = 0;
+      req.code = server_constants.RIS_CODE_HTTP_INVALID_TOKEN;
+      return next();
+    }

-      // Continua comunque !
-      next();
-    });
+    User.findByToken(token, 'auth', false, getIdApp(req))
+      .then((ris) => {
+        if (ris.code !== server_constants.RIS_CODE_OK) {
+          req.user = null;
+          req.token = null;
+          req.code = ris.code;
+        } else {
+          req.user = ris.user;
+          req.token = token;
+          req.refreshToken = refreshToken;
+          req.code = ris.code;
+        }
+
+        if (ris.code === server_constants.RIS_CODE_HTTP_FORBIDDEN_TOKEN_EXPIRED) {
+          return res.status(server_constants.RIS_CODE_HTTP_FORBIDDEN_TOKEN_EXPIRED).send();
+        }
+
+        next();
+      })
+      .catch((e) => {
+        console.error('Errore durante l\'autenticazione:', e);
+        req.user = null;
+        req.token = null;
+        req.code = server_constants.RIS_CODE_HTTP_INVALID_TOKEN;
+        next();
+      });
  } catch (e) {
-    console.error('Err', e);
+    console.error('Errore nel middleware di autenticazione:', e);
+    req.user = null;
+    req.token = null;
+    req.code = server_constants.RIS_CODE_HTTP_INVALID_TOKEN;
+    next();
  }
 };