Home Explore Help
Sign In
Operations
/
joystream
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

storage-node-v2: Add timestamp validation on upload request.

Shamil Gadelshin 3 years ago
parent
60ced50c86
commit
a312cf5491
2 changed files with 12 additions and 2 deletions
Split View Show Diff Stats
  1. 5 1
      storage-node-v2/src/services/helpers/auth.ts
  2. 7 1
      storage-node-v2/src/services/webApi/controllers/publicApi.ts

+ 5 - 1
storage-node-v2/src/services/helpers/auth.ts
View File 

@@ -20,7 +20,7 @@ export interface RequestData {
 
 }
 
 
 export interface UploadTokenBody extends RequestData {
 
-  timestamp: number
 
+  validUntil: number // timestamp
 
 }
 
 
 export interface UploadToken {
 
@@ -82,4 +82,8 @@ export function verifyUploadTokenData(
 
   if (token.data.bagId !== request.bagId) {
 
     throw new Error('Unexpected bagId')
 
   }
 
+
 
+  if (token.data.validUntil < Date.now()) {
 
+    throw new Error('Token expired')
 
+  }
 
 }

+ 7 - 1
storage-node-v2/src/services/webApi/controllers/publicApi.ts
View File 

@@ -68,7 +68,7 @@ export async function authToken(
 
     await validateTokenRequest(api, tokenRequest)
 
 
     const tokenBody: UploadTokenBody = {
 
-      timestamp: Date.now(),
 
+      validUntil: getTokenExpirationTime(),
 
       ...tokenRequest.data,
 
     }
 
     const signedToken = createUploadToken(tokenBody, account)
 
@@ -150,3 +150,9 @@ async function validateTokenRequest(
 
     throw new Error(`Provided controller account and member id don't match.`)
 
   }
 
 }
 
+
 
+// TODO: move to config or set to 10 seconds
 
+const TokenExpirationPeriod: number = 100 * 1000 // seconds
 
+function getTokenExpirationTime(): number {
 
+  return Date.now() + TokenExpirationPeriod
 
+}