dev
/
backend
mirror of https://github.com/sussy-code/backend.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Handle errors in challenge assertion

This commit is contained in:
William Oldham 2023-11-04 09:43:00 +00:00
parent 9c19cf509b
commit 5d32933ba0
1 changed files with 22 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/services/challenge.ts
View File

@ -1,4 +1,8 @@
import { ChallengeCode } from '@/db/models/ChallengeCode'; import {
ChallengeCode,
ChallengeFlow,
ChallengeType,
} from '@/db/models/ChallengeCode';
import { StatusError } from '@/services/error'; import { StatusError } from '@/services/error';
import { EntityManager } from '@mikro-orm/core'; import { EntityManager } from '@mikro-orm/core';
import forge from 'node-forge'; import forge from 'node-forge';
@ -28,6 +32,7 @@ export async function assertChallengeCode(
if (challenge.expiresAt.getTime() <= now) if (challenge.expiresAt.getTime() <= now)
throw new StatusError('Challenge Code Expired', 401); throw new StatusError('Challenge Code Expired', 401);
try {
const verifiedChallenge = forge.pki.ed25519.verify({ const verifiedChallenge = forge.pki.ed25519.verify({
publicKey: new forge.util.ByteStringBuffer( publicKey: new forge.util.ByteStringBuffer(
Buffer.from(publicKey, 'base64url'), Buffer.from(publicKey, 'base64url'),
@ -43,4 +48,7 @@ export async function assertChallengeCode(
throw new StatusError('Challenge Code Signature Invalid', 401); throw new StatusError('Challenge Code Signature Invalid', 401);
em.remove(challenge); em.remove(challenge);
} catch (e) {
throw new StatusError('Challenge Code Signature Invalid', 401);
}
} }