aiolabs/lightning-pub
2
0
Fork 0
Code Issues 9 Pull requests 4 Projects Releases Packages Wiki Activity Actions

API now checks for wallet unlock status before executing any requests

Browse source
This commit is contained in:
emad-salah 2019-12-17 13:25:25 +01:00
parent 745c50be79
commit 9a3dbdb5f5
3 changed files with 88 additions and 33 deletions
Download patch file Download diff file Expand all files Collapse all files

49
src/routes.js
View file

@ -14,6 +14,7 @@ const auth = require("../services/auth/auth");
const FS = require("../utils/fs"); const FS = require("../utils/fs");
const LightningServices = require("../utils/lightningServices"); const LightningServices = require("../utils/lightningServices");
const GunDB = require("../services/gunDB/Mediator"); const GunDB = require("../services/gunDB/Mediator");
const { unprotectedRoutes } = require("../utils/protectedRoutes");
const DEFAULT_MAX_NUM_ROUTES_TO_QUERY = 10; const DEFAULT_MAX_NUM_ROUTES_TO_QUERY = 10;
@ -181,6 +182,54 @@ module.exports = (
} }
}; };
app.use(async (req, res, next) => {
try {
console.log("Route:", req.path)
if (unprotectedRoutes[req.method][req.path]) {
next();
return;
}
if (req.path.includes("/api/lnd")) {
const walletStatus = await walletExists();
const availableService = await getAvailableService();
const statusMessage = availableService.walletStatus;
if (walletStatus) {
if (statusMessage === "unlocked") {
return next();
}
return res
.status(401)
.json({
field: "wallet",
errorMessage: statusMessage
? statusMessage
: "unknown"
})
}
return res
.status(401)
.json({
field: "wallet",
errorMessage: "Please create a wallet before using the API"
});
}
} catch (err) {
logger.error(err);
res
.status(500)
.json({
field: "wallet",
errorMessage: err.message
? err.message
: err
});
}
});
app.use(["/ping"], responseTime()); app.use(["/ping"], responseTime());
/** /**

42
src/server.js
View file

@ -9,11 +9,12 @@ const server = program => {
const Express = require("express"); const Express = require("express");
const LightningServices = require("../utils/lightningServices"); const LightningServices = require("../utils/lightningServices");
const app = Express(); const app = Express();
const FS = require("../utils/fs"); const FS = require("../utils/fs");
const bodyParser = require("body-parser"); const bodyParser = require("body-parser");
const session = require("express-session"); const session = require("express-session");
const methodOverride = require("method-override"); const methodOverride = require("method-override");
const { unprotectedRoutes, sensitiveRoutes } = require("../utils/protectedRoutes");
// load app default configuration data // load app default configuration data
const defaults = require("../config/defaults")(program.mainnet); const defaults = require("../config/defaults")(program.mainnet);
// define useful global variables ====================================== // define useful global variables ======================================
@ -46,26 +47,6 @@ const server = program => {
// init lnd module ================= // init lnd module =================
const lnd = require("../services/lnd/lnd")(LightningServices.services.lightning); const lnd = require("../services/lnd/lnd")(LightningServices.services.lightning);
const unprotectedRoutes = {
GET: {
"/healthz": true,
"/ping": true,
// Errors out when viewing an API page from the browser
"/favicon.ico": true,
"/api/lnd/connect": true,
"/api/lnd/wallet/status": true,
"/api/lnd/auth": true
},
POST: {
"/api/lnd/connect": true,
"/api/lnd/wallet": true,
"/api/lnd/wallet/existing": true,
"/api/lnd/auth": true
},
PUT: {},
DELETE: {}
};
const auth = require("../services/auth/auth"); const auth = require("../services/auth/auth");
app.use(async (req, res, next) => { app.use(async (req, res, next) => {
@ -80,24 +61,19 @@ const server = program => {
if (response.valid) { if (response.valid) {
next(); next();
} else { } else {
res.status(401).json({ message: "Please log in" }); res.status(401).json({ field: "authorization", errorMessage: "The authorization token you've supplied is invalid" });
} }
} catch (err) { } catch (err) {
logger.error(err); logger.error(
res.status(401).json({ message: "Please log in" }); !req.headers.authorization
? "Please add an Authorization header"
: err
);
res.status(401).json({ field: "authorization", errorMessage: "Please log in" });
} }
} }
}); });
const sensitiveRoutes = {
GET: {},
POST: {
"/api/lnd/connect": true,
"/api/lnd/wallet": true
},
PUT: {},
DELETE: {}
};
app.use((req, res, next) => { app.use((req, res, next) => {
if (sensitiveRoutes[req.method][req.path]) { if (sensitiveRoutes[req.method][req.path]) {
console.log( console.log(

30
utils/protectedRoutes.js Normal file
View file

@ -0,0 +1,30 @@
module.exports = {
unprotectedRoutes: {
GET: {
"/healthz": true,
"/ping": true,
// Errors out when viewing an API page from the browser
"/favicon.ico": true,
"/api/lnd/connect": true,
"/api/lnd/wallet/status": true,
"/api/lnd/auth": true
},
POST: {
"/api/lnd/connect": true,
"/api/lnd/wallet": true,
"/api/lnd/wallet/existing": true,
"/api/lnd/auth": true
},
PUT: {},
DELETE: {}
},
sensitiveRoutes: {
GET: {},
POST: {
"/api/lnd/connect": true,
"/api/lnd/wallet": true
},
PUT: {},
DELETE: {}
}
}