mirror of
https://github.com/Steffo99/festa.git
synced 2025-01-05 13:29:44 +00:00
142 lines
4.8 KiB
TypeScript
142 lines
4.8 KiB
TypeScript
import { client } from "./prismaClient"
|
|
import { AccountTelegram, Token, User } from "@prisma/client"
|
|
import nodecrypto from "crypto"
|
|
import { TelegramLoginData } from "../types/user"
|
|
|
|
|
|
/**
|
|
* A {@link TelegramLoginData} object extended with various utility methods.
|
|
*/
|
|
export class TelegramUserDataClass {
|
|
id: number
|
|
firstName: string
|
|
lastName?: string
|
|
username?: string
|
|
photoUrl?: string
|
|
authDate: Date
|
|
hash: string
|
|
lang?: string
|
|
|
|
/**
|
|
* Construct a {@link TelegramUserDataClass} object from a {@link TelegramLoginData}, validating it in the process.
|
|
*
|
|
* @param u The {@link TelegramLoginData} to use.
|
|
*/
|
|
constructor(u: TelegramLoginData) {
|
|
if(!u.id) throw new Error("Missing `id`")
|
|
if(!u.first_name) throw new Error("Missing `first_name`")
|
|
if(!u.auth_date) throw new Error("Missing `auth_date`")
|
|
if(!u.hash) throw new Error("Missing `hash`")
|
|
|
|
this.id = u.id
|
|
this.firstName = u.first_name
|
|
this.lastName = u.last_name
|
|
this.username = u.username
|
|
this.photoUrl = u.photo_url
|
|
this.authDate = new Date(u.auth_date * 1000)
|
|
|
|
// https://stackoverflow.com/a/12372720/4334568
|
|
if(isNaN(this.authDate.getTime())) throw new Error("Invalid `auth_date`")
|
|
|
|
this.hash = u.hash
|
|
this.lang = u.lang
|
|
}
|
|
|
|
/**
|
|
* Convert this object back into a {@link TelegramLoginData}.
|
|
*
|
|
* @return The {@link TelegramLoginData} object, ready to be serialized.
|
|
*/
|
|
toObject(): TelegramLoginData {
|
|
return {
|
|
id: this.id,
|
|
first_name: this.firstName,
|
|
last_name: this.lastName,
|
|
username: this.username,
|
|
photo_url: this.photoUrl,
|
|
lang: this.lang,
|
|
auth_date: this.authDate.getTime() / 1000,
|
|
hash: this.hash,
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Convert this object into a partial {@link AccountTelegram} database object.
|
|
*/
|
|
toDatabase() {
|
|
return {
|
|
telegramId: this.id,
|
|
firstName: this.firstName,
|
|
lastName: this.lastName ?? null,
|
|
username: this.username ?? null,
|
|
photoUrl: this.photoUrl ?? null,
|
|
lang: this.lang ?? null,
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Convert this object in a string, using [the format required to verify a Telegram Login](https://core.telegram.org/widgets/login#checking-authorization).
|
|
*
|
|
* @param data The data to encode.
|
|
* @returns The stringified data.
|
|
*/
|
|
toString(): string {
|
|
const string = Object.entries(this.toObject())
|
|
.filter(([key, _]) => key !== "hash")
|
|
.filter(([_, value]) => value !== undefined)
|
|
.map(([key, value]) => `${key}=${value}`)
|
|
.sort()
|
|
.join("\n")
|
|
return string
|
|
}
|
|
|
|
/**
|
|
* Check if the `auth_date` of the response is recent: it must be in the past, but within `maxMs` from the current date.
|
|
*
|
|
* @param maxMs The maximum number of milliseconds that may pass after authentication for the response to be considered valid.
|
|
* @returns `true` if the request was sent within the requested timeframe, `false` otherwise.
|
|
*/
|
|
isRecent(maxMs: number): boolean {
|
|
const diff = new Date().getTime() - this.authDate.getTime()
|
|
return diff <= maxMs
|
|
}
|
|
|
|
/**
|
|
* Calculate the "`hash`" of this object using [the Telegram Login verification procedure](https://core.telegram.org/widgets/login#checking-authorization).
|
|
*
|
|
* _Only works on Node.js, due to usage of the `crypto` module._
|
|
*
|
|
* @param token The bot token used to validate the signature.
|
|
* @returns The calculated value of the `hash` parameter.
|
|
*/
|
|
hmac(token: string): string {
|
|
const hash = nodecrypto.createHash("sha256")
|
|
hash.update(token)
|
|
const hmac = nodecrypto.createHmac("sha256", hash.digest())
|
|
hmac.update(this.toString())
|
|
return hmac.digest("hex")
|
|
}
|
|
|
|
/**
|
|
* Validate this object using [the Telegram Login verification procedure](https://core.telegram.org/widgets/login#checking-authorization).
|
|
*
|
|
* _Only works on Node.js, due to usage of the `crypto` module._
|
|
*
|
|
* @param token The bot token used to validate the signature.
|
|
* @returns `true` if the hash matches the value calculated with {@link hmac}, `false` otherwise.
|
|
*/
|
|
isValid(token: string): boolean {
|
|
const received = this.hash
|
|
const calculated = this.hmac(token)
|
|
return received === calculated
|
|
}
|
|
|
|
/**
|
|
* Get the Telegram "displayed name" of the user represented by this object.
|
|
*/
|
|
toTelegramName(): string {
|
|
if(this.username) return this.username
|
|
else if(this.lastName) return this.firstName + " " + this.lastName
|
|
else return this.firstName
|
|
}
|
|
}
|