azures04
5dd1de1521
Introduces new routes under /minecraftservices and /mojangapi for profile, skin, cape, blocklist, privileges, and certificate management. Adds a comprehensive userService module to handle user-related operations, and extends userRepository with methods for username changes, skin/cape management, blocking, and profile lookups. Refactors username availability logic into authService, updates error handling, and improves logger and utility functions. Also updates route handlers to use consistent return statements and enhances route registration logging.
41 lines
1.3 KiB
JavaScript
41 lines
1.3 KiB
JavaScript
const express = require("express")
|
|
const router = express.Router()
|
|
const { YggdrasilError } = require("../../errors/errors")
|
|
const rateLimit = require("express-rate-limit")
|
|
const authService = require("../../services/authService")
|
|
const logger = require("../../modules/logger")
|
|
|
|
const limiter = rateLimit({
|
|
windowMs: 15 * 60 * 1000,
|
|
max: 20,
|
|
standardHeaders: true,
|
|
legacyHeaders: false,
|
|
handler: (req, res) => {
|
|
return res.status(429).json({
|
|
error: "TooManyRequestsException",
|
|
errorMessage: "Too many login attempts, please try again later."
|
|
})
|
|
}
|
|
})
|
|
|
|
router.post("/", limiter, async (req, res) => {
|
|
const { username, password, clientToken, requestUser } = req.body
|
|
try {
|
|
const result = await authService.authenticate({
|
|
identifier: username,
|
|
password,
|
|
clientToken,
|
|
requireUser: requestUser || false
|
|
})
|
|
|
|
logger.log(`User authenticated: ${username}`, ["AUTH", "green"])
|
|
return res.status(200).json(result.response)
|
|
} catch (err) {
|
|
if (err instanceof DefaultError) {
|
|
throw new YggdrasilError( err.code, err.error || "ForbiddenOperationException", err.message, "Invalid credentials")
|
|
}
|
|
throw err
|
|
}
|
|
})
|
|
|
|
module.exports = router |