refactor: move guard checks to service

2025-02-19 01:55:48 -05:00 · 2023-01-31 13:53:23 +01:00 · 2023-01-31 13:53:23 +01:00 · cd9d828686
commit cd9d828686
parent 233c26e5cf
3 changed files with 16 additions and 19 deletions
--- a/backend/src/share/guard/shareSecurity.guard.ts
+++ b/backend/src/share/guard/shareSecurity.guard.ts
@ -34,12 +34,10 @@ export class ShareSecurityGuard implements CanActivate {
      include: { security: true },
    });

-    if (
-      !share ||
-      (moment().isAfter(share.expiration) &&
-        moment(share.expiration).unix() !== 0)
-    )
-      throw new NotFoundException("Share not found");
+    const isExpired =
+      moment().isAfter(share.expiration) && !moment(share.expiration).isSame(0);
+
+    if (!share || isExpired) throw new NotFoundException("Share not found");

    if (share.security?.password && !shareToken)
      throw new ForbiddenException(
--- a/backend/src/share/guard/shareTokenSecurity.guard.ts
+++ b/backend/src/share/guard/shareTokenSecurity.guard.ts
@ -1,7 +1,6 @@
 import {
  CanActivate,
  ExecutionContext,
-  ForbiddenException,
  Injectable,
  NotFoundException,
 } from "@nestjs/common";
@ -27,18 +26,10 @@ export class ShareTokenSecurity implements CanActivate {
      include: { security: true },
    });

-    if (
-      !share ||
-      (moment().isAfter(share.expiration) &&
-        !moment(share.expiration).isSame(0))
-    )
-      throw new NotFoundException("Share not found");
+    const isExpired =
+      moment().isAfter(share.expiration) && !moment(share.expiration).isSame(0);

-    if (share.security?.maxViews && share.security.maxViews <= share.views)
-      throw new ForbiddenException(
-        "Maximum views exceeded",
-        "share_max_views_exceeded"
-      );
+    if (!share || isExpired) throw new NotFoundException("Share not found");

    return true;
  }
--- a/backend/src/share/share.service.ts
+++ b/backend/src/share/share.service.ts
@ -273,8 +273,16 @@ export class ShareService {
    if (
      share?.security?.password &&
      !(await argon.verify(share.security.password, password))
-    )
+    ) {
      throw new ForbiddenException("Wrong password");
+    }
+
+    if (share.security?.maxViews && share.security.maxViews <= share.views) {
+      throw new ForbiddenException(
+        "Maximum views exceeded",
+        "share_max_views_exceeded"
+      );
+    }

    const token = await this.generateShareToken(shareId);
    await this.increaseViewCount(share);